Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 20-08-2017 Uruchomiony przez Adam (09-09-2017 11:48:27) Uruchomiony z C:\Users\adam1\Downloads Windows 10 Home Wersja 1703 (X64) (2017-05-22 20:28:15) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Adam (S-1-5-21-2257015987-4230492318-3150798801-1001 - Administrator - Enabled) => C:\Users\adam1 Administrator (S-1-5-21-2257015987-4230492318-3150798801-500 - Administrator - Disabled) Ewa (S-1-5-21-2257015987-4230492318-3150798801-1002 - Limited - Enabled) => C:\Users\Ewa Gość (S-1-5-21-2257015987-4230492318-3150798801-501 - Limited - Disabled) Konto domyślne (S-1-5-21-2257015987-4230492318-3150798801-503 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 17.012.20093 - Adobe Systems Incorporated) Adobe Flash Player 26 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 26.0.0.151 - Adobe Systems Incorporated) AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.8 - Advanced Micro Devices, Inc.) AVG PC TuneUp (HKLM-x32\...\{A3DEEC4D-7D8A-465E-90BD-B853A19DDF82}) (Version: 16.75.1 - AVG Technologies) Hidden Backup and Sync from Google (HKLM-x32\...\{4E99D34D-1CF8-45FA-BB4D-FBF30EA6E2FE}) (Version: 3.35.6251.4621 - Google, Inc.) Bethesda.net Launcher (HKLM-x32\...\{3448917E-E4FE-4E30-9502-9FD52EABB6F5}_is1) (Version: 1.18.5 - Bethesda Softworks) Catalyst Control Center Next Localization BR (HKLM\...\{D8E9CF75-AF85-630C-4DA2-92A0B62B1345}) (Version: 2017.0821.2358.41324 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization BR (HKLM\...\{E7AA1A02-575C-14C6-FBEF-4BE6D46A5B74}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization CHS (HKLM\...\{66BDD6D5-8170-7F73-B5D1-E989BAB32712}) (Version: 2017.0821.2358.41324 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization CHS (HKLM\...\{EB6C44F1-0F78-FE10-BC63-90BA50AB0CE9}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization CHT (HKLM\...\{A132FB12-6F9A-2636-6219-394CE9B4C0C2}) (Version: 2017.0821.2358.41324 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization CHT (HKLM\...\{B26D75B8-FAB7-6F8B-767F-BAF975383D91}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization CS (HKLM\...\{36EDC500-E4C0-371C-9865-08450415C1E9}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization CS (HKLM\...\{E4DD9318-7498-873A-8F5D-0B090C1C622D}) (Version: 2017.0821.2358.41324 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization DA (HKLM\...\{30F940EB-3A54-30CC-63D5-80D38133DD7D}) (Version: 2017.0821.2358.41324 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization DA (HKLM\...\{4C2FB7FD-89FD-BA5C-585A-3811F326AD34}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization DE (HKLM\...\{4A0CAE52-5496-9886-C426-0ACDCB539B78}) (Version: 2017.0821.2358.41324 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization DE (HKLM\...\{D74218A3-C503-57EF-AC9F-2220082E7ADE}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization EL (HKLM\...\{08FF9EBF-1C82-5559-1294-622A54545909}) (Version: 2017.0821.2358.41324 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization EL (HKLM\...\{DA433FCF-90A1-19A5-65A7-FDF82DE4826D}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization ES (HKLM\...\{949F125B-A6CC-5A5E-EEE7-4AC50305C1FA}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization ES (HKLM\...\{D558297D-84E0-B55A-5B86-7A33EC581355}) (Version: 2017.0821.2358.41324 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization FI (HKLM\...\{20D46801-147B-30AD-7C5A-AC4560A79096}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization FI (HKLM\...\{4DA1BF9D-01CC-8585-9B2E-0B38DEC0B876}) (Version: 2017.0821.2358.41324 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization FR (HKLM\...\{22C39711-2747-D264-319A-1550BEEAAEC6}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization FR (HKLM\...\{703F64F4-A466-8DC6-ACF6-043D6EBED0DF}) (Version: 2017.0821.2358.41324 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization HU (HKLM\...\{1DBACFDB-5E43-7882-36BD-53526D34BD22}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization HU (HKLM\...\{8B26B1B6-7A9B-3ACA-D8B0-31DD5B57D665}) (Version: 2017.0821.2358.41324 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization IT (HKLM\...\{08906BE7-8A0E-690D-FEB4-C245B55914F5}) (Version: 2017.0821.2358.41324 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization IT (HKLM\...\{A91FC4BF-C1EC-ADCA-79D1-F4F0671F1D60}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization JA (HKLM\...\{2ACEE96B-842E-ACFB-5D01-0D462C00B80C}) (Version: 2017.0821.2358.41324 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization JA (HKLM\...\{ED75A775-03A7-F214-868D-497748707968}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization KO (HKLM\...\{07BFBD5C-2F63-6828-1B61-B41A44113F3B}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization KO (HKLM\...\{DDF34EEA-C984-FDE7-E999-569BA9FED07B}) (Version: 2017.0821.2358.41324 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization NL (HKLM\...\{691F1AE7-4F47-4FEE-2265-FCE609C42A9F}) (Version: 2017.0821.2358.41324 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization NL (HKLM\...\{E6038D3E-5D87-8DF7-6D05-BE7532C3E73E}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization NO (HKLM\...\{4AA2F520-BC58-547E-1E08-BB0649EEDE0B}) (Version: 2017.0821.2358.41324 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization NO (HKLM\...\{DFAD9DAC-4768-C8BB-4E0E-5239605A9BEA}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization PL (HKLM\...\{429F09A8-73D3-9000-B252-FA367AFD9BB6}) (Version: 2017.0821.2358.41324 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization PL (HKLM\...\{FFBFBD1F-B160-A119-7C43-8584FA2E5665}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization RU (HKLM\...\{37E52ACF-0152-D200-E93A-289A2240C051}) (Version: 2017.0821.2358.41324 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization RU (HKLM\...\{4D1D5407-9B69-6422-629C-8518A26004A4}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization SV (HKLM\...\{9D0C90AC-3585-4C8F-0E68-2231F2DCBE12}) (Version: 2017.0821.2358.41324 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization SV (HKLM\...\{A8379BAB-59A9-C0A3-8BCC-4852EA403692}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization TH (HKLM\...\{24DF617A-CD23-6E6A-126B-23630D2781CE}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization TH (HKLM\...\{AE689C68-E1FE-BADE-3D04-F6083B506245}) (Version: 2017.0821.2358.41324 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization TR (HKLM\...\{83DDDFD8-AD42-72F9-E4F1-5456FDB304C9}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization TR (HKLM\...\{AD98C659-9EC7-3916-0273-547B4BA894DB}) (Version: 2017.0821.2358.41324 - Advanced Micro Devices, Inc.) Hidden ChallengeMe.GG Client version 1.5 (HKLM-x32\...\{7A91C052-5E4E-441C-A3A5-84B100B98166}_is1) (Version: 1.5 - CME.GG) Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve) FACEIT Client version 1.0 (HKLM\...\{1419E44C-0EF4-4822-9194-9F1A4D43973D}_is1) (Version: 1.0 - FACEIT LTD) Gfinity CS:GO Client Beta version 3.0 (HKLM-x32\...\Gfinity CS:GO Client Beta_is1) (Version: 3.0 - ) GG (HKU\S-1-5-21-2257015987-4230492318-3150798801-1001\...\GG) (Version: 12 - GG Network S.A.) Google Chrome (HKU\S-1-5-21-2257015987-4230492318-3150798801-1001\...\Google Chrome) (Version: 61.0.3163.79 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden Java 8 Update 141 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180141F0}) (Version: 8.0.1410.15 - Oracle Corporation) Java 8 Update 141 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180141F0}) (Version: 8.0.1410.15 - Oracle Corporation) Java SE Development Kit 8 Update 141 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180141}) (Version: 8.0.1410.15 - Oracle Corporation) Lightshot-5.4.0.10 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.4.0.10 - Skillbrains) Malwarebytes (wersja 3.2.2.2018) (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.2.2.2018 - Malwarebytes) Microsoft Office Professional 2016 - pl-pl (HKLM\...\ProfessionalRetail - pl-pl) (Version: 16.0.8326.2096 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2257015987-4230492318-3150798801-1001\...\OneDriveSetup.exe) (Version: 17.3.6943.0625 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang) My.com Game Center (HKU\S-1-5-21-2257015987-4230492318-3150798801-1001\...\MyComGames) (Version: 3.210 - My.com B.V.) Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.4.1 - Notepad++ Team) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.8326.2096 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.8326.2096 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0415-1000-0000000FF1CE}) (Version: 16.0.8326.2096 - Microsoft Corporation) Hidden Quake Champions (HKLM-x32\...\Quake Champions) (Version: - Bethesda Softworks) Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.103 - Skype Technologies S.A.) Spybot Anti-Beacon (HKLM-x32\...\{419A7FCF-93E1-474D-BFE9-987CF3F90C88}_is1) (Version: 1.6 - Safer-Networking Ltd.) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.1.5 - TeamSpeak Systems GmbH) VLC media player (HKLM\...\VLC media player) (Version: 2.2.6 - VideoLAN) Vulkan Run Time Libraries 1.0.51.0 (HKLM\...\VulkanRT1.0.51.0) (Version: 1.0.51.0 - LunarG, Inc.) Vulkan Run Time Libraries 1.0.54.0 (HKLM\...\VulkanRT1.0.54.0) (Version: 1.0.54.0 - LunarG, Inc.) Warface My.Com (HKU\S-1-5-21-2257015987-4230492318-3150798801-1001\...\Warface My.Com) (Version: 1.44 - My.com B.V.) WinRAR 5.40 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-2257015987-4230492318-3150798801-1001_Classes\CLSID\{144DF3B2-2402-47AE-9583-5A045929A8D4}\InprocServer32 -> C:\Users\adam1\AppData\Local\Google\Update\1.3.33.5\psuser_64.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-2257015987-4230492318-3150798801-1001_Classes\CLSID\{E68D0A55-3C40-4712-B90D-DCFA93FF2534}\InprocServer32 -> C:\Users\adam1\AppData\Roaming\GG\ggdrive\ggdrive-menu.dll (GG Network S.A.) CustomCLSID: HKU\S-1-5-21-2257015987-4230492318-3150798801-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\adam1\AppData\Local\Google\Update\1.3.33.5\psuser_64.dll (Google Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-07-19] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-07-19] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-07-19] (Google) ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Brak pliku ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2017-05-18] () ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-07-19] (Google) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-09-19] (Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext32.dll [2016-09-19] (Alexander Roshal) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Anti-Malware\mbshlext.dll [2017-08-21] (Malwarebytes) ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-07-19] (Google) ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2017-08-21] (Advanced Micro Devices, Inc.) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Anti-Malware\mbshlext.dll [2017-08-21] (Malwarebytes) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-09-19] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext32.dll [2016-09-19] (Alexander Roshal) ContextMenuHandlers1_S-1-5-21-2257015987-4230492318-3150798801-1001: [GGDriveMenu] -> {E68D0A55-3C40-4712-B90D-DCFA93FF2534} => C:\Users\adam1\AppData\Roaming\GG\ggdrive\ggdrive-menu.dll [2014-03-20] (GG Network S.A.) ContextMenuHandlers4_S-1-5-21-2257015987-4230492318-3150798801-1001: [GGDriveMenu] -> {E68D0A55-3C40-4712-B90D-DCFA93FF2534} => C:\Users\adam1\AppData\Roaming\GG\ggdrive\ggdrive-menu.dll [2014-03-20] (GG Network S.A.) ContextMenuHandlers5_S-1-5-21-2257015987-4230492318-3150798801-1001: [GGDriveMenu] -> {E68D0A55-3C40-4712-B90D-DCFA93FF2534} => C:\Users\adam1\AppData\Roaming\GG\ggdrive\ggdrive-menu.dll [2014-03-20] (GG Network S.A.) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0C1368FC-B6AE-4E30-BADB-135B5CF7CA2C} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-08-28] (Microsoft Corporation) Task: {11241A89-800C-4A11-A1F5-ECB82AEE0C58} - System32\Tasks\Safer-Networking\Spybot Anti-Beacon\Refresh Anti-Beacon immunization => C:\Program Files (x86)\Spybot Anti-Beacon\SDAntiBeacon.exe [2016-11-11] (Safer-Networking Ltd.) Task: {25BAAFEE-2CB9-43D8-BE7A-9E63F6B6FED7} - System32\Tasks\S-1-5-21-2257015987-4230492318-3150798801-1001\DataSenseLiveTileTask => C:\Windows\System32\DataUsageLiveTileTask.exe [2017-03-18] (Microsoft Corporation) Task: {3FC5614C-7D42-49E8-B367-4CFC5383C8E6} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-09-02] () Task: {4017318E-D218-4DF2-9842-1EF0B629EADB} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2257015987-4230492318-3150798801-1001Core => C:\Users\adam1\AppData\Local\Google\Update\GoogleUpdate.exe [2017-05-22] (Google Inc.) Task: {496B4964-144A-497E-8F1E-DDD1568AB506} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe Task: {4B7FD5BA-37B4-4820-A361-04DCBCD6BDAD} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2257015987-4230492318-3150798801-1001UA => C:\Users\adam1\AppData\Local\Google\Update\GoogleUpdate.exe [2017-05-22] (Google Inc.) Task: {5D5BDD5A-047E-4F08-B9C9-327B8F876C31} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2017-04-12] (TODO: ) Task: {7354BC59-77CD-4893-B22A-75BD1B7A42B7} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_26_0_0_151_pepper.exe [2017-08-08] (Adobe Systems Incorporated) Task: {7F5C439F-2B75-4207-9CC5-E0B5C3C3BC9F} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [2017-08-22] (Advanced Micro Devices, Inc.) Task: {8948F25A-566C-48F2-8BD1-576E8DC7B259} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-09-02] () Task: {AF2ED21C-0BC9-4F4D-BBE1-D3AB168FD216} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2017-07-12] (Oracle Corporation) Task: {B281577A-F0EA-41B8-BFE2-7C36545C75D3} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-07-19] (Adobe Systems Incorporated) Task: {BD79BAC5-EDF1-45F7-8A41-C39916C10443} - System32\Tasks\{8368E0F1-3E82-43BD-A308-1DFDA0F9BC04} => "c:\users\adam1\appdata\local\google\chrome\application\chrome.exe" hxxps://ui.skype.com/ui/0/7.39.0.102/pl/abandoninstall?source=lightinstaller&page=tsMain Task: {C993A214-99CE-4B0A-A394-11750A419EC1} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-08-28] (Microsoft Corporation) Task: {D4FC974A-6B70-4903-845B-3591E56D7C14} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-08-08] (Adobe Systems Incorporated) Task: {DC3D6088-3FBC-4821-803E-2E9559DFF613} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-09-03] (Google Inc.) Task: {DD7F8FEB-90A5-44DB-8FE5-FABF044CFA6B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-09-03] (Google Inc.) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\update-S-1-5-21-2257015987-4230492318-3150798801-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe Task: C:\Windows\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) Shortcut: C:\Users\adam1\Desktop\Download Video and Audio Online.lnk -> hxxp://video-box.org/Content/Images/favicon3.ico Shortcut: C:\Users\adam1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Gооglе Сhrоmе.lnk -> C:\Users\adam1\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) <==== Cyrillic Shortcut: C:\Users\adam1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Intеrnеt Ехрlоrеr.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) <==== Cyrillic Shortcut: C:\Users\adam1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\63f64848708c6231\Аdаm - Сhrоmе.lnk -> C:\Users\adam1\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) <==== Cyrillic ShortcutWithArgument: C:\Users\adam1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\63f64848708c6231\Adam - Chrome.lnk -> C:\Users\adam1\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 2" ==================== Załadowane moduły (filtrowane) ============== 2017-09-09 11:29 - 2017-08-24 11:27 - 002264528 _____ () C:\PROGRAM FILES (X86)\ANTI-MALWARE\MwacLib.dll 2017-03-18 22:58 - 2017-03-18 22:58 - 000138000 _____ () C:\Windows\SYSTEM32\inputhost.dll 2016-09-13 01:34 - 2016-09-13 01:34 - 000014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll 2016-09-13 01:34 - 2016-09-13 01:34 - 000739840 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll 2016-09-13 01:34 - 2016-09-13 01:34 - 000014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll 2016-09-13 01:34 - 2016-09-13 01:34 - 000071168 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll 2016-09-13 01:34 - 2016-09-13 01:34 - 000011776 _____ () C:\Program Files\AMD\CNext\CNext\libEGL.dll 2016-09-13 01:34 - 2016-09-13 01:34 - 002013696 _____ () C:\Program Files\AMD\CNext\CNext\libGLESv2.dll 2016-09-13 01:34 - 2016-09-13 01:34 - 000191488 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll 2017-03-18 22:59 - 2017-03-20 06:01 - 001731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2017-03-18 22:58 - 2017-03-18 22:58 - 000047616 _____ () C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUITelemetry.dll 2017-07-11 21:10 - 2017-07-07 08:15 - 002331136 _____ () C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUIViewModels.dll 2017-07-11 21:10 - 2017-07-07 08:15 - 002836480 _____ () C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUIDataModel.dll 2017-09-07 19:01 - 2017-09-04 10:12 - 002692440 _____ () C:\Users\adam1\AppData\Local\Google\Chrome\Application\61.0.3163.79\swiftshader\libglesv2.dll 2017-09-07 19:01 - 2017-09-04 10:12 - 000138584 _____ () C:\Users\adam1\AppData\Local\Google\Chrome\Application\61.0.3163.79\swiftshader\libegl.dll 2017-08-08 23:06 - 2017-07-28 07:18 - 004125088 _____ () C:\Windows\SystemApps\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\ContentDeliveryManager.Background.dll 2017-05-22 22:59 - 2017-08-04 23:19 - 000678176 _____ () C:\Program Files (x86)\Steam\SDL2.dll 2017-05-22 22:59 - 2016-09-01 03:02 - 004969248 _____ () C:\Program Files (x86)\Steam\v8.dll 2017-05-22 22:59 - 2017-09-07 06:51 - 002505504 _____ () C:\Program Files (x86)\Steam\video.dll 2017-05-22 22:59 - 2016-01-27 09:49 - 000332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll 2017-05-22 22:59 - 2016-01-27 09:49 - 000442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll 2017-05-22 22:59 - 2016-01-27 09:49 - 000491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll 2017-05-22 22:59 - 2016-01-27 09:49 - 002549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll 2017-05-22 22:59 - 2016-01-27 09:49 - 000485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll 2017-05-22 22:59 - 2016-09-01 03:02 - 001195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll 2017-05-22 22:59 - 2016-09-01 03:02 - 001563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll 2017-05-22 22:59 - 2017-09-07 06:51 - 000885024 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL 2017-05-22 22:59 - 2016-07-05 00:17 - 000266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll 2017-05-22 23:00 - 2017-07-18 00:50 - 073115424 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll 2017-06-08 20:46 - 2017-05-17 03:54 - 000678176 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\SDL2.dll 2017-05-22 22:59 - 2015-09-25 01:52 - 000119208 _____ () C:\Program Files (x86)\Steam\winh264.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: ========================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2017-03-18 23:03 - 2017-09-09 11:39 - 000005396 _____ C:\Windows\system32\Drivers\etc\hosts 0.0.0.0 a.ads1.msn.com 0.0.0.0 a.ads2.msads.net 0.0.0.0 a.ads2.msn.com 0.0.0.0 a.rad.msn.com 0.0.0.0 a-0001.a-msedge.net 0.0.0.0 a-0002.a-msedge.net 0.0.0.0 a-0003.a-msedge.net 0.0.0.0 a-0004.a-msedge.net 0.0.0.0 a-0005.a-msedge.net 0.0.0.0 a-0006.a-msedge.net 0.0.0.0 a-0007.a-msedge.net 0.0.0.0 a-0008.a-msedge.net 0.0.0.0 a-0009.a-msedge.net 0.0.0.0 ac3.msn.com 0.0.0.0 ad.doubleclick.net 0.0.0.0 adnexus.net 0.0.0.0 adnxs.com 0.0.0.0 ads.msn.com 0.0.0.0 ads1.msads.net 0.0.0.0 ads1.msn.com 0.0.0.0 aidps.atdmt.com 0.0.0.0 aka-cdn-ns.adtech.de 0.0.0.0 a-msedge.net 0.0.0.0 apps.skype.com 0.0.0.0 az361816.vo.msecnd.net 0.0.0.0 az512334.vo.msecnd.net 0.0.0.0 b.ads1.msn.com 0.0.0.0 b.ads2.msads.net 0.0.0.0 b.rad.msn.com 0.0.0.0 bs.serving-sys.com Wykryto więcej niż wyliczono: 99 linii. ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-2257015987-4230492318-3150798801-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\adam1\Desktop\W_2013_232.jpg DNS Servers: 192.168.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == MSCONFIG\Services: SkypeUpdate => 2 HKLM\...\StartupApproved\Run: => "SecurityHealth" HKLM\...\StartupApproved\Run: => "AvgUi" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKU\S-1-5-21-2257015987-4230492318-3150798801-1001\...\StartupApproved\Run: => "Google Update" HKU\S-1-5-21-2257015987-4230492318-3150798801-1001\...\StartupApproved\Run: => "GG" HKU\S-1-5-21-2257015987-4230492318-3150798801-1001\...\StartupApproved\Run: => "Skype" HKU\S-1-5-21-2257015987-4230492318-3150798801-1001\...\StartupApproved\Run: => "MyComGames" ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{90B93CD9-A536-498C-919F-7B380784FCA2}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{177DB45C-C716-42FE-9760-2163959C8FB7}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{FD84FE76-4F02-43B4-AB31-FA3D60A77641}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{AB6509AF-8ECF-4929-B9B3-FF539A9749BD}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{84B8F99F-7EFA-4516-9CD9-1F4950158161}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{9B480C9A-D32A-43A1-8990-64C73DFFAB16}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [TCP Query User{8940B3DB-40A7-4A09-9C8C-8C8579B4EF84}C:\program files (x86)\bethesda.net launcher\games\quakechampions\client\bin\pc\quakechampions.exe] => (Allow) C:\program files (x86)\bethesda.net launcher\games\quakechampions\client\bin\pc\quakechampions.exe FirewallRules: [UDP Query User{A49AE756-8167-4FA3-A94F-0DB809AD1B03}C:\program files (x86)\bethesda.net launcher\games\quakechampions\client\bin\pc\quakechampions.exe] => (Allow) C:\program files (x86)\bethesda.net launcher\games\quakechampions\client\bin\pc\quakechampions.exe FirewallRules: [{87628ECA-893A-4299-8EF8-B1C27E76DB72}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{1BAB8F1B-792A-4201-A18C-7F982726F55D}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe FirewallRules: [{17AE19EE-69EF-421E-99AF-4A41A6D551CA}] => (Allow) C:\Windows\system32\rundll32.exe FirewallRules: [{D2971739-0271-460D-8663-18B9220D071E}] => (Allow) C:\Windows\System32\rundll32.exe FirewallRules: [{7ACE66CB-902F-4B75-A096-98B99D4E3EA7}] => (Allow) C:\Windows\System32\rundll32.exe ==================== Punkty Przywracania systemu ========================= 26-08-2017 11:18:31 Zaplanowany punkt kontrolny 29-08-2017 18:05:53 Windows Update 07-09-2017 20:22:57 Zaplanowany punkt kontrolny 09-09-2017 11:08:08 Removed Online Application ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (09/09/2017 11:23:18 AM) (Source: SideBySide) (EventID: 33) (User: ) Description: Activation context generation failed for "F:\Pobrane\Smart_Switch_PC_Setup.exe". Dependent Assembly Microsoft.VC90.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8" could not be found. Please use sxstrace.exe for detailed diagnosis. Error: (09/09/2017 11:06:41 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: YNZDMxkTM.exe, version: 0.0.0.0, time stamp: 0x58ee5e7e Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000 Exception code: 0xc0000005 Fault offset: 0x36883672 Faulting process ID: 0x12dc Faulting application start time: 0x01d3294ae6db306e Faulting application path: C:\Users\adam1\AppData\Local\Temp\YNZDMxkTM\YNZDMxkTM.exe Faulting module path: unknown Report ID: 2fab76f4-3716-408b-83bd-5cce0be3fcc9 Faulting package full name: Faulting package-relative application ID: Error: (09/09/2017 11:06:40 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: YNZDMxkTM.exe, version: 0.0.0.0, time stamp: 0x58ee5e7e Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000 Exception code: 0xc0000005 Fault offset: 0x36883672 Faulting process ID: 0x12dc Faulting application start time: 0x01d3294ae6db306e Faulting application path: C:\Users\adam1\AppData\Local\Temp\YNZDMxkTM\YNZDMxkTM.exe Faulting module path: unknown Report ID: 992c0c9e-db64-416e-b80d-ba9405fdf964 Faulting package full name: Faulting package-relative application ID: Error: (09/09/2017 11:06:39 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: YNZDMxkTM.exe, version: 0.0.0.0, time stamp: 0x58ee5e7e Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000 Exception code: 0xc0000005 Fault offset: 0x36883672 Faulting process ID: 0x12dc Faulting application start time: 0x01d3294ae6db306e Faulting application path: C:\Users\adam1\AppData\Local\Temp\YNZDMxkTM\YNZDMxkTM.exe Faulting module path: unknown Report ID: 0521c736-6089-4d8d-bc53-cfe741c6d3a3 Faulting package full name: Faulting package-relative application ID: Error: (09/09/2017 11:06:39 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: YNZDMxkTM.exe, version: 0.0.0.0, time stamp: 0x58ee5e7e Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000 Exception code: 0xc0000005 Fault offset: 0x36883672 Faulting process ID: 0x12dc Faulting application start time: 0x01d3294ae6db306e Faulting application path: C:\Users\adam1\AppData\Local\Temp\YNZDMxkTM\YNZDMxkTM.exe Faulting module path: unknown Report ID: f17a524a-5e63-4886-a9dd-d5ee2d739c85 Faulting package full name: Faulting package-relative application ID: Error: (09/09/2017 11:06:38 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: YNZDMxkTM.exe, version: 0.0.0.0, time stamp: 0x58ee5e7e Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000 Exception code: 0xc0000005 Fault offset: 0x36883672 Faulting process ID: 0x12dc Faulting application start time: 0x01d3294ae6db306e Faulting application path: C:\Users\adam1\AppData\Local\Temp\YNZDMxkTM\YNZDMxkTM.exe Faulting module path: unknown Report ID: c1b4cdad-3083-41ab-bc07-d06576f7e050 Faulting package full name: Faulting package-relative application ID: Error: (09/09/2017 11:06:38 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: YNZDMxkTM.exe, version: 0.0.0.0, time stamp: 0x58ee5e7e Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000 Exception code: 0xc0000005 Fault offset: 0x36883672 Faulting process ID: 0x12dc Faulting application start time: 0x01d3294ae6db306e Faulting application path: C:\Users\adam1\AppData\Local\Temp\YNZDMxkTM\YNZDMxkTM.exe Faulting module path: unknown Report ID: 3f0bed8c-6387-4a51-b6d0-32a69bca556d Faulting package full name: Faulting package-relative application ID: Error: (09/09/2017 11:06:37 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: YNZDMxkTM.exe, version: 0.0.0.0, time stamp: 0x58ee5e7e Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000 Exception code: 0xc0000005 Fault offset: 0x36883672 Faulting process ID: 0x12dc Faulting application start time: 0x01d3294ae6db306e Faulting application path: C:\Users\adam1\AppData\Local\Temp\YNZDMxkTM\YNZDMxkTM.exe Faulting module path: unknown Report ID: 2fe37be3-2131-444e-a4f1-fdcedf1eca95 Faulting package full name: Faulting package-relative application ID: Error: (09/09/2017 11:06:37 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: AVG_Internet_Security_17_6.exe, version: 14.0.23409.0, time stamp: 0x59b2877a Faulting module name: AVG_Internet_Security_17_6.exe, version: 14.0.23409.0, time stamp: 0x59b2877a Exception code: 0xc0000005 Fault offset: 0x0003d970 Faulting process ID: 0x200c Faulting application start time: 0x01d3294abee49c18 Faulting application path: C:\Users\adam1\AppData\Local\Temp\Rar$EXa0.345\AVG_Internet_Security_17_6.exe Faulting module path: C:\Users\adam1\AppData\Local\Temp\Rar$EXa0.345\AVG_Internet_Security_17_6.exe Report ID: 5f51b260-05ee-4b1e-a3e5-fc372ff51f05 Faulting package full name: Faulting package-relative application ID: Error: (09/09/2017 11:06:37 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: YNZDMxkTM.exe, version: 0.0.0.0, time stamp: 0x58ee5e7e Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000 Exception code: 0xc0000005 Fault offset: 0x36883672 Faulting process ID: 0x12dc Faulting application start time: 0x01d3294ae6db306e Faulting application path: C:\Users\adam1\AppData\Local\Temp\YNZDMxkTM\YNZDMxkTM.exe Faulting module path: unknown Report ID: df1b9fac-b95a-4abb-b574-6b853c6d0944 Faulting package full name: Faulting package-relative application ID: Dziennik System: ============= Error: (09/09/2017 11:37:20 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The lsid61607 service terminated unexpectedly. It has done this 1 time(s). Error: (09/09/2017 11:34:52 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The CldFlt service failed to start due to the following error: The request is not supported. Error: (09/09/2017 11:34:09 AM) (Source: DCOM) (EventID: 10010) (User: ADAM) Description: The server {260EB9DE-5CBE-4BFF-A99A-3710AF55BF1E} did not register with DCOM within the required timeout. Error: (09/09/2017 11:34:07 AM) (Source: DCOM) (EventID: 10010) (User: ADAM) Description: The server {260EB9DE-5CBE-4BFF-A99A-3710AF55BF1E} did not register with DCOM within the required timeout. Error: (09/09/2017 11:27:36 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: ZARZĄDZANIE NT) Description: There was an error while attempting to read the local hosts file. Error: (09/09/2017 11:20:52 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The CldFlt service failed to start due to the following error: The request is not supported. Error: (09/09/2017 11:20:04 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The Steam Client Service service terminated unexpectedly. It has done this 1 time(s). Error: (09/09/2017 11:20:04 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Instalator Windows service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 120000 milliseconds: Uruchom usługę ponownie. Error: (09/09/2017 11:20:04 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Karta wydajności WMI service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 120000 milliseconds: Uruchom usługę ponownie. Error: (09/09/2017 11:20:04 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Usługa Szybka instalacja pakietu Microsoft Office service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 0 milliseconds: Uruchom usługę ponownie. CodeIntegrity: =================================== Date: 2017-08-27 12:54:36.059 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements. Date: 2017-08-27 12:54:35.958 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements. Date: 2017-08-27 12:54:34.617 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements. Date: 2017-08-08 14:37:41.005 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements. Date: 2017-08-08 14:34:52.199 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements. Date: 2017-08-08 14:34:52.199 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements. Date: 2017-08-06 12:12:00.302 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements. Date: 2017-08-06 12:10:03.279 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements. Date: 2017-08-06 12:10:00.776 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM) i5-4460 CPU @ 3.20GHz Procent pamięci w użyciu: 34% Całkowita pamięć fizyczna: 8120 MB Dostępna pamięć fizyczna: 5339.42 MB Całkowita pamięć wirtualna: 9400 MB Dostępna pamięć wirtualna: 6440.03 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:438.9 GB) (Free:348.87 GB) NTFS Drive e: (P_B2017PLv3A_SP) (CDROM) (Total:3.74 GB) (Free:0 GB) CDFS Drive f: () (Fixed) (Total:492 GB) (Free:475.36 GB) ReFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: 98A180BE) Partition: GPT. ==================== Koniec Addition.txt ============================