Additional scan result of Farbar Recovery Scan Tool (x64) Version:05-07-2015 Ran by Gr at 2017-11-19 21:20:34 Running from C:\Users\Gr\Desktop Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-1946104158-849987808-3721883152-500 - Administrator - Disabled) Gość (S-1-5-21-1946104158-849987808-3721883152-501 - Limited - Disabled) Gr (S-1-5-21-1946104158-849987808-3721883152-1001 - Administrator - Enabled) => C:\Users\Gr Konto domyślne (S-1-5-21-1946104158-849987808-3721883152-503 - Limited - Disabled) ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) µTorrent (HKLM-x32\...\uTorrent) (Version: 2.2.1 - ) Ace Stream Media 3.1.11 (HKU\S-1-5-21-1946104158-849987808-3721883152-1001\...\AceStream) (Version: 3.1.11 - Ace Stream Media) <==== ATTENTION! Active Directory Authentication Library for SQL Server (Version: 13.0.1601.5 - Microsoft Corporation) Hidden Active Directory Authentication Library for SQL Server (x86) (x32 Version: 13.0.1601.5 - Microsoft Corporation) Hidden Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 18.009.20044 - Adobe Systems Incorporated) Adobe Flash Player 27 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 27.0.0.187 - Adobe Systems Incorporated) Airline Tycoon 2 (HKLM\...\Steam App 201490) (Version: - b-Alive) Aktualizacje NVIDIA 29.1.0.0 (Version: 29.1.0.0 - NVIDIA Corporation) Hidden Application Insights Tools for Visual Studio 2015 (HKLM-x32\...\{0E4C791E-B78E-477D-BD5A-CDD0985BA6EC}) (Version: 7.0.20622.1 - Microsoft Corporation) Application Verifier x64 External Package (Version: 10.1.15063.468 - Microsoft) Hidden Application Verifier x64 External Package (Version: 10.1.16299.15 - Microsoft) Hidden Ashampoo Burning Studio FREE v.1.14.5 (HKLM-x32\...\{91B33C97-91F8-FFB3-581B-BC952C901685}_is1) (Version: 1.14.5 - Ashampoo GmbH & Co. KG) Autodesk Content Service Language Pack (x32 Version: 3.1.3.0 - Autodesk) Hidden Azure AD Authentication Connected Service (x32 Version: 14.0.25420 - Microsoft Corporation) Hidden AzureTools.Notifications (x32 Version: 2.7.30611.1601 - Microsoft Corporation) Hidden Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Battlefield: Bad Company™ 2 (HKLM-x32\...\{3AC8457C-0385-4BEA-A959-E095F05D6D67}) (Version: 1.0.1.0 - Electronic Arts) Blend for Visual Studio SDK for .NET 4.5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden calibre 64bit (HKLM\...\{54EFBCD2-A4FB-4C37-A720-9A8195EFC7B4}) (Version: 2.45.0 - Kovid Goyal) Call of Duty WWII Deluxe Edition MULTi10 - ElAmigos wersja 1.0 (HKLM-x32\...\{5807406C-DD54-45E9-A154-71EA884B40E5}_is1) (Version: 1.0 - Activision) Call of Duty: Black Ops II - Multiplayer (HKLM\...\Steam App 202990) (Version: - Treyarch) Call of Duty: Black Ops II - Zombies (HKLM\...\Steam App 212910) (Version: - ) Call of Duty: Black Ops II (HKLM\...\Steam App 202970) (Version: - Treyarch) Call of Duty: Modern Warfare 3 - Multiplayer (HKLM\...\Steam App 42690) (Version: - Infinity Ward) Call of Duty: Modern Warfare 3 (HKLM\...\Steam App 42680) (Version: - Infinity Ward) ClickOnce Bootstrapper Package for Microsoft .NET Framework (x32 Version: 4.6.01590 - Microsoft Corporation) Hidden Command & Conquer™ Red Alert 2 and Yuri’s Revenge (HKLM-x32\...\{F5275D1C-D133-486D-8F07-D6C571F0A8EC}) (Version: 1.0.0.0 - Electronic Arts, Inc.) Company of Heroes 2 (HKLM\...\Steam App 231430) (Version: - Relic Entertainment) DiagnosticsHub_CollectionService (Version: 15.0.26823 - Microsoft Corporation) Hidden DiRT 3 Complete Edition (HKLM-x32\...\Steam App 321040) (Version: - Codemasters Racing Studio) DoNotSpy10 (HKLM-x32\...\{32D066BD-F94C-4948-8FA8-84653EE9617E}_is1) (Version: 1.0.0.2 - pXc-coding.com) Dotfuscator and Analytics Community Edition 5.22.0 (x32 Version: 5.22.0.3788 - PreEmptive Solutions) Hidden Dual-Core Optimizer (HKLM-x32\...\{9FD6F1A8-5550-46AF-8509-271DF0E768B5}) (Version: 1.1.4.0169 - AMD) Empire: Total War (HKLM-x32\...\Steam App 10500) (Version: - The Creative Assembly) Entity Framework 6.1.3 Tools for Visual Studio 15 (x32 Version: 6.1.60104.0 - Microsoft Corporation) Hidden Entity Framework 6.1.3 Tools for Visual Studio 2015 Update 1 (HKLM-x32\...\{2A56910C-69C8-495D-8ED8-9080F0A14E58}) (Version: 14.0.41103.0 - Microsoft Corporation) Europa Universalis III (HKLM-x32\...\Steam App 25800) (Version: - Paradox Development Studio) Football Manager 2014 (HKLM-x32\...\Steam App 231670) (Version: - Sports Interactive) GDR 2269 for SQL Server 2014 (KB3045324) (64-bit) (HKLM\...\KB3045324) (Version: 12.0.2269.0 - Microsoft Corporation) Glary Utilities PRO 5.87 (HKLM-x32\...\Glary Utilities 5) (Version: 5.87.0.108 - Glarysoft Ltd) GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com) Greenshot 1.2.10.6 (HKLM\...\Greenshot_is1) (Version: 1.2.10.6 - Greenshot) icecap_collection_neutral (x32 Version: 15.0.26621 - Microsoft Corporation) Hidden icecap_collection_x64 (Version: 15.0.26621 - Microsoft Corporation) Hidden icecap_collectionresources (x32 Version: 15.0.26621 - Microsoft Corporation) Hidden icecap_collectionresourcesx64 (x32 Version: 15.0.26621 - Microsoft Corporation) Hidden IIS 10.0 Express (HKLM\...\{13FD7E30-D2F1-498D-ABC2-A4242DB6610E}) (Version: 10.0.1736 - Microsoft Corporation) IIS Express Application Compatibility Database for x64 (HKLM\...\{08274920-8908-45c2-9258-8ad67ff77b09}.sdb) (Version: - ) IIS Express Application Compatibility Database for x86 (HKLM\...\{ad846bae-d44b-4722-abad-f7420e08bcd9}.sdb) (Version: - ) Intel(R) Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{A6C48A9F-694A-4234-B3AA-62590B668927}) (Version: 1.0.0.36702 - Intel Corporation) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.5.2.1001 - Intel Corporation) Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation) Intellisense Lang Pack Mobile Extension SDK 10.0.15063.0 (x32 Version: 10.1.15063.468 - Microsoft Corporation) Hidden IntelliTraceProfilerProxy (x32 Version: 15.0.25.0 - Microsoft Corporation) Hidden Java 8 Update 151 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180151F0}) (Version: 8.0.1510.12 - Oracle Corporation) JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH) Kane & Lynch 2: Dog Days (HKLM\...\Steam App 28000) (Version: - IO Interactive) Kits Configuration Installer (x32 Version: 10.1.15063.468 - Microsoft) Hidden Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version: - Valve) LibreOffice 5.1.5.2 (HKLM-x32\...\{03E3A5F6-2B2C-4CF6-9C18-FBB28AFA512B}) (Version: 5.1.5.2 - The Document Foundation) LIMBO (HKLM\...\Steam App 48000) (Version: - Playdead) Łatka polonizacyjna GTA IV v1.0 (HKLM-x32\...\Łatka polonizacyjna GTA IV v1.0) (Version: 1.0 - GTAPOLSKA.PL) Metro 2033 (HKLM-x32\...\Steam App 43110) (Version: - 4A Games) Mi PC Suite (HKU\S-1-5-21-1946104158-849987808-3721883152-1001\...\MiPhoneManager) (Version: - Xiaomi Inc.) Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (ENU) (HKLM-x32\...\{290FC320-2F5A-329E-8840-C4193BD7A9EE}) (Version: 4.5.51209 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (HKLM-x32\...\{19E8AE59-4D4A-3534-B567-6CC08FA4102E}) (Version: 4.5.51651 - Microsoft Corporation) Microsoft .NET Framework 4.6 SDK (HKLM-x32\...\{B5915D37-0637-4A26-A3AA-C5DC9F856370}) (Version: 4.6.00081 - Microsoft Corporation) Microsoft .NET Framework 4.6 Targeting Pack (ENU) (HKLM-x32\...\{034547E9-D8FA-49E7-8B9C-4C9861FB9146}) (Version: 4.6.00127 - Microsoft Corporation) Microsoft .NET Framework 4.6 Targeting Pack (HKLM-x32\...\{2CC6A4A7-AAC2-46C9-9DBB-3727B5954F65}) (Version: 4.6.00081 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 SDK (HKLM-x32\...\{2F0ECC80-B9E4-4485-8083-CD32F22ABD92}) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 SDK (Polski) (HKLM-x32\...\{A9D7F21C-C602-46C5-A080-4E44E440F249}) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 Targeting Pack (ENU) (HKLM-x32\...\{8EEB28EE-5141-411C-9CF0-9952264FE4AF}) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 Targeting Pack (HKLM-x32\...\{8BC3EEC9-090F-4C53-A8DA-1BEC913040F9}) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 z dodatkiem Targeting Pack (Polski) (HKLM-x32\...\{EDC3FD45-C9CE-483F-8013-D18C69EF3F85}) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Version Manager (x64) 1.0.0-beta5 (HKLM\...\{c5a4aba3-1aba-3ef8-b2d5-c3fa37f59738}) (Version: 1.0.10609.0 - Microsoft Corporation) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{42AA4CA8-DCD8-4308-BCAB-0B6D75856A9D}) (Version: 3.5.95.0 - Microsoft Corporation) Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation) Microsoft Help Viewer 1.1 (HKLM\...\Microsoft Help Viewer 1.1) (Version: 1.1.40219 - Microsoft Corporation) Microsoft Help Viewer 2.2 (HKLM-x32\...\Microsoft Help Viewer 2.2) (Version: 2.2.25420 - Microsoft Corporation) Microsoft ODBC Driver 11 for SQL Server (HKLM\...\{A106FA6F-E94C-44C9-8A0F-C34BD82C9FE6}) (Version: 12.0.2000.8 - Microsoft Corporation) Microsoft Office Word Viewer 2003 (HKLM-x32\...\{90850415-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1946104158-849987808-3721883152-1001\...\OneDriveSetup.exe) (Version: 17.3.7076.1026 - Microsoft Corporation) Microsoft Report Viewer 2014 Runtime (HKLM-x32\...\{327E9C0D-1687-414F-923E-F5979E549548}) (Version: 12.0.2000.8 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation) Microsoft SQL Server 2008 R2 Management Objects (HKLM-x32\...\{83F2B8F4-5CF3-4BE9-9772-9543EAE4AC5F}) (Version: 10.51.2500.0 - Microsoft Corporation) Microsoft SQL Server 2008 Setup Support Files (HKLM\...\{6292D514-17A4-403F-98F9-E150F10C043D}) (Version: 10.3.5500.0 - Microsoft Corporation) Microsoft SQL Server 2012 Command Line Utilities (HKLM\...\{9D573E71-1077-4C7E-B4DB-4E22A5D2B48B}) (Version: 11.0.2100.60 - Microsoft Corporation) Microsoft SQL Server 2012 Native Client (HKLM\...\{49D665A2-4C2A-476E-9AB8-FCC425F526FC}) (Version: 11.0.2100.60 - Microsoft Corporation) Microsoft SQL Server 2014 (64-bit) (HKLM\...\Microsoft SQL Server SQLServer2014) (Version: - Microsoft Corporation) Microsoft SQL Server 2014 Express LocalDB (HKLM\...\{D9C53793-2E6A-4C6D-BA0B-898A17876A5D}) (Version: 12.0.2269.0 - Microsoft Corporation) Microsoft SQL Server 2014 Management Objects (HKLM-x32\...\{2774595F-BC2A-4B12-A25B-0C37A37049B0}) (Version: 12.0.2000.8 - Microsoft Corporation) Microsoft SQL Server 2014 Management Objects (x64) (HKLM\...\{1F9EB3B6-AED7-4AA7-B8F1-8E314B74B2A5}) (Version: 12.0.2000.8 - Microsoft Corporation) Microsoft SQL Server 2014 Policies (HKLM-x32\...\{1C30FE7E-8A8C-4492-89D6-10CB20C3B0EB}) (Version: 12.0.2000.8 - Microsoft Corporation) Microsoft SQL Server 2014 Setup (English) (HKLM\...\{37C44B5C-E839-4A9D-9E20-A93E1B2FD35A}) (Version: 12.0.2269.0 - Microsoft Corporation) Microsoft SQL Server 2014 Transact-SQL Compiler Service (HKLM\...\{537203CB-708E-43A3-BA16-3D5C14A587BB}) (Version: 12.0.2269.0 - Microsoft Corporation) Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{020CDFE0-C127-4047-B571-37C82396B662}) (Version: 12.0.2000.8 - Microsoft Corporation) Microsoft SQL Server 2014 T-SQL Language Service (HKLM-x32\...\{47D08E7A-92A1-489B-B0BF-415516497BCE}) (Version: 12.0.2000.8 - Microsoft Corporation) Microsoft SQL Server 2016 LocalDB (HKLM\...\{E359515A-92E6-4FA3-A2C9-E1BA02D8DE6E}) (Version: 13.0.1601.5 - Microsoft Corporation) Microsoft SQL Server 2016 Management Objects (HKLM-x32\...\{0F1C8E2F-199A-4946-B3BF-0906DACFD032}) (Version: 13.0.1601.5 - Microsoft Corporation) Microsoft SQL Server 2016 Management Objects (x64) (HKLM\...\{20EA85AA-2A1D-4F11-B09F-4BA2BF3C8989}) (Version: 13.0.1601.5 - Microsoft Corporation) Microsoft SQL Server 2016 T-SQL Language Service (HKLM-x32\...\{8BFDE775-C5B8-46DB-84EF-43FFC8A2E8AD}) (Version: 13.0.14500.10 - Microsoft Corporation) Microsoft SQL Server 2016 T-SQL ScriptDom (HKLM\...\{D091DE8C-EA0F-49AF-8DE3-BD6C79737C6E}) (Version: 13.0.1601.5 - Microsoft Corporation) Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation) Microsoft SQL Server Data Tools - enu (14.0.60519.0) (HKLM-x32\...\{4E27B0EF-7BAB-432A-AF3D-3FC8F3F7353F}) (Version: 14.0.60519.0 - Microsoft Corporation) Microsoft SQL Server System CLR Types (HKLM-x32\...\{C3F6F200-6D7B-4879-B9EE-700C0CE1FCDA}) (Version: 10.51.2500.0 - Microsoft Corporation) Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{FC3BB979-AA54-4B60-BBA3-2C4DA6E08D80}) (Version: 12.0.2402.29 - Microsoft Corporation) Microsoft System CLR Types for SQL Server 2014 (HKLM-x32\...\{091CE6AA-2753-4F6E-AD1C-0E875744EB54}) (Version: 12.0.2402.29 - Microsoft Corporation) Microsoft System CLR Types for SQL Server 2016 (HKLM\...\{96EB5054-C775-4BEF-B7B9-AA96A295EDCD}) (Version: 13.0.1601.5 - Microsoft Corporation) Microsoft System CLR Types for SQL Server 2016 (HKLM-x32\...\{84C23ECA-FE4D-494F-9247-3EBAD57E7F0C}) (Version: 13.0.1601.5 - Microsoft Corporation) Microsoft System CLR Types for SQL Server 2017 CTP2.1 (HKLM\...\{9BAD8F82-A221-42CE-AFF0-7CAB825790C9}) (Version: 14.0.600.250 - Microsoft Corporation) Microsoft System CLR Types for SQL Server 2017 CTP2.1 (HKLM-x32\...\{F0DD1AA8-44D7-4ACE-AF65-7378EA5D884C}) (Version: 14.0.600.250 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Runtime - 10.0.40219 (HKLM-x32\...\{5D9ED403-94DE-3BA0-B1D6-71F4BDA412E6}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x64) - 14.11.25325 (HKLM-x32\...\{6c6356fe-cbfa-4944-9bed-a9e99f45cb7a}) (Version: 14.11.25325.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x86) - 14.11.25325 (HKLM-x32\...\{404c9c27-8377-4fd1-b607-7ca635db4e49}) (Version: 14.11.25325.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Shell (Isolated) - ENU (HKLM-x32\...\{D64B6984-242F-32BC-B008-752806E5FC44}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Microsoft Visual Studio 2017 (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 1.12.111.1002 - Microsoft Corporation) Microsoft Visual Studio Community 2015 with Updates (HKLM-x32\...\{79b486b9-c5f0-4096-a00c-8351f59587c2}) (Version: 14.0.25420.1 - Microsoft Corporation) Microsoft VSS Writer for SQL Server 2014 (HKLM\...\{366CD715-2FF4-40B4-A8B4-A05E5D21A945}) (Version: 12.0.2000.8 - Microsoft Corporation) Microsoft Web Deploy 3.6 (HKLM\...\{94E1227C-08A9-4962-B388-1F05D89AEA75}) (Version: 3.1238.1962 - Microsoft Corporation) Minimal ADB and Fastboot version 1.4 (HKLM-x32\...\{C5564379-582D-457A-9E68-A9E7C1F1C4EC}_is1) (Version: 1.4 - Sam Rodberg) Mobile Partner (HKLM-x32\...\Mobile Partner) (Version: 23.009.05.00.69 - Huawei Technologies Co.,Ltd) MSBuild/NuGet Integration 14.0 (x86) (x32 Version: 14.0.25420 - Microsoft Corporation) Hidden MSI Development Tools (x32 Version: 10.1.16299.15 - Microsoft Corporation) Hidden Multi-Device Hybrid Apps using C# - Templates - ENU (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden NapiProjekt (2.2.0.2399) (HKLM-x32\...\NapiProjekt_is1) (Version: - ) Napisy24 (HKLM-x32\...\{D1985DBC-F09E-4317-91B8-932AD0FD4A27}_is1) (Version: 1.9.1 - Napisy24.pl) NVIDIA GeForce Experience 3.10.0.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.10.0.95 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation) NVIDIA Sterownik graficzny 388.31 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.31 - NVIDIA Corporation) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Opera Stable 49.0.2725.39 (HKLM-x32\...\Opera 49.0.2725.39) (Version: 49.0.2725.39 - Opera Software) Oprogramowanie Intel® PROSet/Wireless (HKLM-x32\...\{c9967fbd-e3c3-4ed0-992a-5b33260f2944}) (Version: 16.1.5 - Intel Corporation) Origin (HKLM-x32\...\Origin) (Version: 10.5.5.6040 - Electronic Arts, Inc.) Pakiet sterowników systemu Windows - Samsung Electronics Co. Ltd. (RadioHIDMini) HIDClass (07/27/2012 20.57.1.735) (HKLM\...\9F04C462DAB591BDCCE784F77E4D4F1736010B92) (Version: 07/27/2012 20.57.1.735 - Samsung Electronics Co. Ltd.) Pakiet zbiorczy funkcji IntelliSense platformy Microsoft .NET Framework Cumulative Intellisense Pack dla programu Visual Studio (Polski) (x32 Version: 4.6.01604 - Microsoft Corporation) Hidden Pakiet zgodności dla systemu Office 2007 (HKLM-x32\...\{90120000-0020-0415-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Panel sterowania NVIDIA 388.31 (Version: 388.31 - NVIDIA Corporation) Hidden PlayReady PC Runtime x86 (HKLM-x32\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation) Polski pakiet językowy dla narzędzi Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PLK) (Version: 10.0.50903 - Microsoft Corporation) PreEmptive Analytics Visual Studio Components (x32 Version: 1.2.5134.1 - PreEmptive Solutions) Hidden Prerequisites for SSDT (HKLM-x32\...\{21373064-AD95-48DB-A32E-0D9E08EF7355}) (Version: 12.0.2000.8 - Microsoft Corporation) Prerequisites for SSDT (HKLM-x32\...\{B7E94916-7AE6-4F7F-A377-7A410A42BA19}) (Version: 13.0.1601.5 - Microsoft Corporation) PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7543 - Realtek Semiconductor Corp.) Realtek PC Camera (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.9200.10296 - Realtek Semiconductor Corp.) Risen (HKLM-x32\...\Steam App 40300) (Version: - Piranha – Bytes) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.7.8 - Rockstar Games) Roslyn Language Services - x86 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden Roslyn Language Services - x86 (x32 Version: 14.0.25431 - Microsoft Corporation) Hidden S Agent (Version: 1.1.54 - Samsung Electronics CO., LTD.) Hidden Seer 0.8.1 (HKLM-x32\...\Seer) (Version: 0.8.1 - Corey) SopCast 3.9.6 (HKLM-x32\...\SopCast) (Version: 3.9.6 - www.sopcast.com) Spotify (HKU\S-1-5-21-1946104158-849987808-3721883152-1001\...\Spotify) (Version: 1.0.64.399.g4637b02a - Spotify AB) SQL Server 2014 Client Tools (Version: 12.0.2000.8 - Microsoft Corporation) Hidden SQL Server 2014 Common Files (Version: 12.0.2000.8 - Microsoft Corporation) Hidden SQL Server 2014 Database Engine Services (Version: 12.0.2000.8 - Microsoft Corporation) Hidden SQL Server 2014 Database Engine Shared (Version: 12.0.2000.8 - Microsoft Corporation) Hidden SQL Server 2014 Documentation Components (Version: 12.0.2000.8 - Microsoft Corporation) Hidden SQL Server 2014 Full text search (Version: 12.0.2000.8 - Microsoft Corporation) Hidden SQL Server 2014 Management Studio (Version: 12.0.2000.8 - Microsoft Corporation) Hidden SQL Server 2014 Reporting Services (Version: 12.0.2000.8 - Microsoft Corporation) Hidden SQL Server Browser for SQL Server 2014 (HKLM-x32\...\{3204DE95-97D2-4261-A286-98A262E171D4}) (Version: 12.0.2000.8 - Microsoft Corporation) Sql Server Customer Experience Improvement Program (Version: 12.0.2000.8 - Microsoft Corporation) Hidden StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Support Center FAQ (x32 Version: 1.0.17 - Samsung Electronics CO., LTD.) Hidden Syberia (HKLM\...\Steam App 46500) (Version: - Microids) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.2.1.8 - Synaptics Incorporated) Team Explorer for Microsoft Visual Studio 2015 Update 3.1 (x32 Version: 14.102.25619 - Microsoft) Hidden TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.83369 - TeamViewer) Telegram Desktop version 1.1.7 (HKU\S-1-5-21-1946104158-849987808-3721883152-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 1.1.7 - Telegram Messenger LLP) Test Tools for Microsoft Visual Studio 2015 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden The Darkness II (HKLM\...\Steam App 67370) (Version: - Digital Extremes) The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version: - Bethesda Game Studios) Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.10 release candidate 1 - Ghisler Software GmbH) Tropico 4 (HKLM-x32\...\Steam App 57690) (Version: - Haemimont Games) TypeScript Power Tool (x32 Version: 1.8.34.0 - Microsoft Corporation) Hidden TypeScript SDK (x32 Version: 2.3.5.0 - Microsoft Corporation) Hidden TypeScript Tools for Microsoft Visual Studio 2015 (x32 Version: 1.8.36.0 - Microsoft Corporation) Hidden Universal CRT Extension SDK (x32 Version: 10.1.15063.468 - Microsoft Corporation) Hidden Universal CRT Extension SDK (x32 Version: 10.1.16299.15 - Microsoft Corporation) Hidden Universal CRT Headers Libraries and Sources (x32 Version: 10.1.15063.468 - Microsoft Corporation) Hidden Universal CRT Headers Libraries and Sources (x32 Version: 10.1.16299.15 - Microsoft Corporation) Hidden Universal CRT Redistributable (x32 Version: 10.1.16299.15 - Microsoft Corporation) Hidden Universal CRT Tools x64 (Version: 10.1.16299.15 - Microsoft Corporation) Hidden Universal CRT Tools x86 (x32 Version: 10.1.16299.15 - Microsoft Corporation) Hidden Universal General MIDI DLS Extension SDK (x32 Version: 10.1.15063.468 - Microsoft Corporation) Hidden Universal General MIDI DLS Extension SDK (x32 Version: 10.1.16299.15 - Microsoft Corporation) Hidden Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation) Uplay (HKLM-x32\...\Uplay) (Version: 22.2 - Ubisoft) vcpp_crt.redist.clickonce (x32 Version: 14.11.25325 - Microsoft Corporation) Hidden Visual Studio 2010 Prerequisites - English (HKLM\...\{662014D2-0450-37ED-ABAE-157C88127BEB}) (Version: 10.0.40219 - Microsoft Corporation) Visual Studio 2015 Update 3 (KB3022398) (HKLM-x32\...\{7a68448b-9cf2-4049-bd73-5875f1aa7ba2}) (Version: 14.0.25420 - Microsoft Corporation) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN) VS Immersive Activate Helper (x32 Version: 16.0.71.0 - Microsoft Corporation) Hidden VS JIT Debugger (Version: 16.0.71.0 - Microsoft Corporation) Hidden VS Script Debugging Common (Version: 16.0.71.0 - Microsoft Corporation) Hidden VS Update core components (x32 Version: 14.0.25431 - Microsoft Corporation) Hidden vs_BlendMsi (x32 Version: 15.0.26621 - Microsoft Corporation) Hidden vs_clickoncebootstrappermsi (x32 Version: 15.0.26621 - Microsoft Corporation) Hidden vs_clickoncebootstrappermsires (x32 Version: 15.0.26621 - Microsoft Corporation) Hidden vs_clickoncesigntoolmsi (x32 Version: 15.0.26621 - Microsoft Corporation) Hidden vs_communitymsi (x32 Version: 15.0.26711 - Microsoft Corporation) Hidden vs_communitymsires (x32 Version: 15.0.26621 - Microsoft Corporation) Hidden vs_devenvmsi (x32 Version: 15.0.26621 - Microsoft Corporation) Hidden vs_filehandler_amd64 (x32 Version: 15.0.26711 - Microsoft Corporation) Hidden vs_filehandler_x86 (x32 Version: 15.0.26711 - Microsoft Corporation) Hidden vs_FileTracker_Singleton (x32 Version: 15.0.26621 - Microsoft Corporation) Hidden vs_Graphics_Singletonx64 (Version: 15.0.26621 - Microsoft Corporation) Hidden vs_Graphics_Singletonx86 (x32 Version: 15.0.26621 - Microsoft Corporation) Hidden vs_minshellinteropmsi (x32 Version: 15.0.26621 - Microsoft Corporation) Hidden vs_minshellmsi (x32 Version: 15.0.26906 - Microsoft Corporation) Hidden vs_minshellmsires (x32 Version: 15.0.26621 - Microsoft Corporation) Hidden vs_SQLClickOnceBootstrappermsi (x32 Version: 15.0.26621 - Microsoft Corporation) Hidden vs_tipsmsi (x32 Version: 15.0.26621 - Microsoft Corporation) Hidden vs_update3notification (x32 Version: 14.0.25431 - Microsoft Corporation) Hidden Vulkan Run Time Libraries 1.0.61.0 (Version: 1.0.61.0 - LunarG, Inc.) Hidden WCF Data Services 5.6.4 Runtime (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden WCF Data Services Tools for Microsoft Visual Studio 2015 (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden WestwoodOnline (HKLM-x32\...\{BBCD6D56-8A26-4DDE-9482-DBC9C7B7341D}) (Version: 1.0.0.0 - WestwoodOnline) WinAppDeploy (x32 Version: 10.1.15063.468 - Microsoft Corporation) Hidden WinAppDeploy (x32 Version: 10.1.16299.15 - Microsoft Corporation) Hidden Windows 10 Update and Privacy Settings (HKLM\...\{293F2009-0145-450B-B4AA-063D43FB368C}) (Version: 1.0.13.0 - Microsoft Corporation) Windows SDK AddOn (HKLM-x32\...\{350F0ECD-0783-4529-8797-98F0AD33EAC0}) (Version: 10.1.0.0 - Microsoft Corporation) Windows Software Development Kit - Windows 10.0.15063.468 (HKLM-x32\...\{0a829ae9-ca13-4f58-a168-648e80cf6739}) (Version: 10.1.15063.468 - Microsoft Corporation) Windows Software Development Kit - Windows 10.0.16299.15 (HKLM-x32\...\{6195c203-b53c-4bb7-983a-6070a902e704}) (Version: 10.1.16299.15 - Microsoft Corporation) WinRAR 5.21 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH) WinRT Intellisense Desktop - en-us (x32 Version: 10.1.15063.468 - Microsoft Corporation) Hidden WinRT Intellisense Desktop - en-us (x32 Version: 10.1.16299.15 - Microsoft Corporation) Hidden WinRT Intellisense Desktop - Other Languages (x32 Version: 10.1.15063.468 - Microsoft Corporation) Hidden WinRT Intellisense Desktop - Other Languages (x32 Version: 10.1.16299.15 - Microsoft Corporation) Hidden WinRT Intellisense IoT - en-us (x32 Version: 10.1.15063.468 - Microsoft Corporation) Hidden WinRT Intellisense IoT - en-us (x32 Version: 10.1.16299.15 - Microsoft Corporation) Hidden WinRT Intellisense IoT - Other Languages (x32 Version: 10.1.15063.468 - Microsoft Corporation) Hidden WinRT Intellisense IoT - Other Languages (x32 Version: 10.1.16299.15 - Microsoft Corporation) Hidden WinRT Intellisense Mobile - en-us (x32 Version: 10.1.16299.15 - Microsoft Corporation) Hidden WinRT Intellisense PPI - en-us (x32 Version: 10.1.15063.468 - Microsoft Corporation) Hidden WinRT Intellisense PPI - en-us (x32 Version: 10.1.16299.15 - Microsoft Corporation) Hidden WinRT Intellisense PPI - Other Languages (x32 Version: 10.1.15063.468 - Microsoft Corporation) Hidden WinRT Intellisense PPI - Other Languages (x32 Version: 10.1.16299.15 - Microsoft Corporation) Hidden WinRT Intellisense UAP - en-us (x32 Version: 10.1.15063.468 - Microsoft Corporation) Hidden WinRT Intellisense UAP - en-us (x32 Version: 10.1.16299.15 - Microsoft Corporation) Hidden WinRT Intellisense UAP - Other Languages (x32 Version: 10.1.15063.468 - Microsoft Corporation) Hidden WinRT Intellisense UAP - Other Languages (x32 Version: 10.1.16299.15 - Microsoft Corporation) Hidden Worms Clan Wars (HKLM-x32\...\Steam App 233840) (Version: - Team17 Digital Ltd) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-1946104158-849987808-3721883152-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1946104158-849987808-3721883152-1001_Classes\CLSID\{021E4F06-9DCC-49AD-88CF-ECC2DA314C8A}\localserver32 -> C:\Users\Gr\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\FileCoAuth.exe (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1946104158-849987808-3721883152-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Gr\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\amd64\FileSyncShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1946104158-849987808-3721883152-1001_Classes\CLSID\{389510b7-9e58-40d7-98bf-60b911cb0ea9}\localserver32 -> C:\Users\Gr\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\FileCoAuth.exe (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1946104158-849987808-3721883152-1001_Classes\CLSID\{4410DC33-BC7C-496B-AA84-4AEA3EEE75F7}\InprocServer32 -> C:\Users\Gr\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\amd64\FileCoAuthLib64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1946104158-849987808-3721883152-1001_Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}\InprocServer32 -> C:\Users\Gr\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\amd64\FileSyncShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1946104158-849987808-3721883152-1001_Classes\CLSID\{6A221957-2D85-42A7-8E19-BE33950D1DEB}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe No File CustomCLSID: HKU\S-1-5-21-1946104158-849987808-3721883152-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Gr\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\FileCoAuth.exe (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1946104158-849987808-3721883152-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Gr\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\amd64\FileSyncShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1946104158-849987808-3721883152-1001_Classes\CLSID\{7DE1BE5C-CEBA-4F1D-ACBC-9CE11EE9A2A1}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe /Automation No File CustomCLSID: HKU\S-1-5-21-1946104158-849987808-3721883152-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation) CustomCLSID: HKU\S-1-5-21-1946104158-849987808-3721883152-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Gr\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\amd64\FileSyncShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1946104158-849987808-3721883152-1001_Classes\CLSID\{9AA2F32D-362A-42D9-9328-24A483E2CCC3}\InprocServer32 -> C:\Users\Gr\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\amd64\FileSyncShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1946104158-849987808-3721883152-1001_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Gr\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\amd64\FileSyncShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1946104158-849987808-3721883152-1001_Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}\InprocServer32 -> C:\Users\Gr\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\amd64\FileSyncShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1946104158-849987808-3721883152-1001_Classes\CLSID\{A926714B-7BFC-4D08-A035-80021395FFA8}\localserver32 -> C:\Users\Gr\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\FileCoAuth.exe (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1946104158-849987808-3721883152-1001_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Gr\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\amd64\FileSyncShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1946104158-849987808-3721883152-1001_Classes\CLSID\{BD0DEB94-63DB-4392-9420-6EEE05094B1F}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe /Automation No File CustomCLSID: HKU\S-1-5-21-1946104158-849987808-3721883152-1001_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\Gr\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\amd64\FileSyncShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1946104158-849987808-3721883152-1001_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2014\pl-PL\acadficn.dll No File CustomCLSID: HKU\S-1-5-21-1946104158-849987808-3721883152-1001_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Gr\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\amd64\FileSyncShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1946104158-849987808-3721883152-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Gr\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\amd64\FileSyncApi64.dll (Microsoft Corporation) ==================== Restore Points ========================= ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2013-08-22 14:25 - 2017-11-04 13:50 - 00000925 ____A C:\WINDOWS\system32\Drivers\etc\hosts 0.0.0.0 keystone.mwbsys.com 0.0.0.0 telemetry.malwarebytes.com ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {0421080C-701E-4CFA-A903-DF6E69DAD1F9} - System32\Tasks\Microsoft\Windows\Maps\MapsUpdateTask Task: {0554F263-AE1F-4A38-9456-993516B21680} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\HandleCommand Task: {05B9E168-2EA8-421D-80BF-E175B1D21BBF} - System32\Tasks\Microsoft\Windows\License Manager\TempSignedLicenseExchange Task: {05E2082C-D22E-4C31-BFAB-672A358AD81A} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyRefreshTask Task: {0601453C-71F6-44E3-8ABD-CCD9F1F97003} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d No Task File <==== ATTENTION Task: {0C518199-F01B-42CF-9CB7-16710B002812} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask => C:\Windows\system32\MDMAgent.exe [2017-03-18] (Microsoft Corporation) Task: {1052FED2-54C5-4DBD-9F21-43D5A8DC030E} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Automatic App Update Task: {1CB5D022-FC9D-413F-8DDF-ECF15FE088F5} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2012-06-14] (Intel Corporation) Task: {240478A4-B7D2-43B1-AF21-626C77E72C1F} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics => C:\Windows\system32\disksnapshot.exe [2017-03-18] (Microsoft Corporation) Task: {24365631-D240-4AA7-84FA-1A1FCDD26F31} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\Uninstallation Task: {24EC8240-61F0-41DA-8FA7-C04A77DD5619} - System32\Tasks\GlaryUpdate 5 => C:\Program Files (x86)\Glary Utilities 5\CheckUpdate.exe [2017-11-03] (Glarysoft Ltd) Task: {2532DB2F-A598-4946-BA1F-6EBE9D19C34C} - System32\Tasks\Microsoft\Windows\Location\WindowsActionDialog => C:\Windows\System32\WindowsActionDialog.exe [2017-03-18] (Microsoft Corporation) Task: {26BF6849-5FE6-4138-B500-8AD422EE3BBA} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-11-14] (NVIDIA Corporation) Task: {27E50876-1871-4B02-984F-886A56851431} - System32\Tasks\Microsoft\Windows\AppID\EDP Policy Manager Task: {28664ED5-BB94-450C-90BB-7B2A87EF49A4} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2012-06-14] (Intel Corporation) Task: {3087247B-25A7-4EE1-AFB4-06AE6529DF9A} - System32\Tasks\GlaryInitialize 5 => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe [2017-11-03] (Glarysoft Ltd) Task: {319C9452-E5C7-4C19-ADA6-B84D0AAA0CF5} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_27_0_0_187_pepper.exe [2017-11-18] (Adobe Systems Incorporated) Task: {33C04DDB-DE68-4033-8570-ADDDBFF99E1B} - System32\Tasks\Microsoft\Windows\NlaSvc\WiFiTask => C:\Windows\System32\WiFiTask.exe [2017-03-18] (Microsoft Corporation) Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe Task: {363EB2E6-F24C-4865-A7E6-98F29C07E620} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-11-14] (NVIDIA Corporation) Task: {36AFFBD2-58EB-4638-B166-747EECEE70B8} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan => C:\Windows\system32\usoclient.exe [2017-03-18] (Microsoft Corporation) Task: {39831D16-5E78-418E-BEA7-D26A29FCA937} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2017-10-10] (Microsoft Corporation) Task: {3EDAF9A0-CC33-4FD4-B705-9B2F01B8F349} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\LocateCommandUserSession Task: {434DFEB0-9EB6-4FBE-87C5-D9AEAC7B47D7} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceLocationRightsChange Task: {47DB1666-8514-40D3-9BD7-1DCB92D3B8BB} - System32\Tasks\GU5SkipUAC => C:\Program Files (x86)\Glary Utilities 5\Integrator.exe [2017-11-03] (Glarysoft Ltd) Task: {4A5D4628-E32A-4422-9B01-D37DD4C1CE75} - System32\Tasks\Microsoft\Windows\WwanSvc\NotificationTask => C:\Windows\System32\WiFiTask.exe [2017-03-18] (Microsoft Corporation) Task: {4B6926D3-D490-4D93-82CE-D109F1D1BC80} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sih => C:\Windows\System32\sihclient.exe [2017-11-02] (Microsoft Corporation) Task: {4D905E47-516E-4B06-B81D-75E8EE1553FA} - System32\Tasks\Microsoft\VisualStudio\VSIX Auto Update 14 => C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\VSIXAutoUpdate.exe [2016-06-20] (Microsoft Corporation) Task: {51B7FB15-4DCB-400E-9A98-10E802F21FB3} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceScreenOnOff Task: {521E9934-565D-4381-BFDD-744CBB22BD4B} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval => C:\WINDOWS\system32\MusNotification.exe [2017-11-02] (Microsoft Corporation) Task: {53EC7382-8349-4510-8DB8-B091BA6C16A1} - \Microsoft\Windows\Setup\gwx\launchtrayprocess No Task File <==== ATTENTION Task: {5BC5A21F-4785-41A6-B4B1-62FB9B08FABD} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join => C:\Windows\System32\dsregcmd.exe [2017-03-18] (Microsoft Corporation) Task: {5C326114-085E-444C-9B7A-D3E2E59C549E} - System32\Tasks\Microsoft\Windows\Device Information\Device => C:\Windows\system32\devicecensus.exe [2017-11-02] (Microsoft Corporation) Task: {5C43827A-D8C9-495B-AC43-3E0C135AA98D} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDevicePolicyChange Task: {5D4475A5-CA1F-4554-BEC6-BFD5263AA87A} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d No Task File <==== ATTENTION Task: {5D81326C-D6EC-49A0-AAB5-D8A874E06E83} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot => C:\Windows\system32\MusNotification.exe [2017-11-02] (Microsoft Corporation) Task: {60ECA01D-DA53-442F-B332-6A3FC93FF4C4} - System32\Tasks\Microsoft\Windows\EDP\EDP Auth Task Task: {611C823C-437B-46E7-9683-5312DFFCFD7B} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Policy Install => C:\Windows\system32\usoclient.exe [2017-03-18] (Microsoft Corporation) Task: {614FA2BE-B952-489E-80FA-F05D6506B657} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDevicePeriodic24 Task: {64D227A1-CAF2-4F62-893C-CB71B7F5593F} - System32\Tasks\Microsoft\Windows\EDP\EDP Inaccessible Credentials Task Task: {6772AC65-7600-4DF2-9BD5-F17292FAAE4B} - System32\Tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask => C:\Windows\system32\speech_onecore\common\SpeechModelDownload.exe [2017-03-18] (Microsoft Corporation) Task: {68558A1D-7C33-4A4A-9B0F-3711ACDDFF5B} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d No Task File <==== ATTENTION Task: {68861600-8DE1-4D43-8F44-847C6947AA70} - System32\Tasks\Microsoft\Windows\EDP\EDP App Launch Task Task: {693F02EA-12F7-4661-8730-A5DF1AFD642F} - System32\Tasks\Microsoft\Windows\BitLocker\BitLocker MDM policy Refresh Task: {6B14B27A-2145-41DB-9412-B1DF02D5594E} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceSettingChange Task: {6BD9FDA3-C8EE-4C02-95CB-1B221BF24F79} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceProtectionStateChanged Task: {6CD42E30-FE69-4192-A847-1B04D7CB40CE} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\AikCertEnrollTask Task: {7072963F-3763-4E9F-A1F5-DE9703BAE827} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyMonitorToastTask Task: {70E0A093-79B7-461E-A9C7-B67CD7B1511E} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload => C:\Windows\system32\dmclient.exe [2017-03-18] (Microsoft Corporation) Task: {720D34DF-8EB7-44C7-A4DF-0CB97DD83812} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-11-14] (NVIDIA Corporation) Task: {725EF1C9-888B-492C-B70F-D9FE39DF6B06} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B No Task File <==== ATTENTION Task: {744C9FEA-08B7-43E1-A729-0F94647D655C} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Resume On Boot => C:\Windows\system32\usoclient.exe [2017-03-18] (Microsoft Corporation) Task: {786E9D92-5BB1-4399-958E-2550B6CEEFA8} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\HandleWnsCommand Task: {78F76D6D-0B70-46A9-8DEB-4FCB650A6627} - System32\Tasks\Microsoft\Windows\SharedPC\Account Cleanup => Rundll32.exe %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance Task: {799AC654-A37D-49AA-B0F3-433D7D5EBBD9} - System32\Tasks\Microsoft\Windows\WCM\WiFiTask => C:\Windows\System32\WiFiTask.exe [2017-03-18] (Microsoft Corporation) Task: {7A3FC220-2DFA-448D-8CDA-5ACC0ACC317F} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\KeyPreGenTask Task: {7E48EB16-2459-437A-B3B5-DD91866302CC} - System32\Tasks\Microsoft\Windows\EDP\StorageCardEncryption Task Task: {7EE03738-E972-4883-9315-6B6E0C706337} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\IntegrityCheck Task: {829C695F-E874-432A-9A9F-7862D04236B9} - System32\Tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup => C:\Windows\system32\dstokenclean.exe [2017-03-18] (Microsoft Corporation) Task: {8412054C-838C-44EA-A21B-44ECD00D8227} - System32\Tasks\SAgent => C:\Program Files\Samsung\S Agent\CommonAgent.exe [2015-08-05] (Samsung Electronics CO., LTD.) Task: {8478C771-AE7D-47EA-9D79-22DC82C4E3F6} - System32\Tasks\Microsoft\Windows\DiskFootprint\StorageSense Task: {848DCC36-520C-4946-BF68-C7EFFEFA2F84} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot => C:\windows\system32\MusNotification.exe [2017-11-02] (Microsoft Corporation) Task: {88E18EB0-E633-47C9-8FE5-84CEAB8F5EF7} - System32\Tasks\microsoft\windows\applicationdata\appuriverifierdaily => C:\Windows\system32\AppHostRegistrationVerifier.exe [2017-03-18] (Microsoft Corporation) Task: {89444A93-E92C-49F5-AE73-FE81603C831F} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-11-14] (NVIDIA Corporation) Task: {896ED842-4861-49E9-A2C1-0AE31689F876} - System32\Tasks\Microsoft\Windows\Clip\License Validation => C:\Windows\system32\ClipUp.exe [2017-03-18] (Microsoft Corporation) Task: {8B172305-21A7-4BDB-96E0-90AF2827635B} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-11-18] (Adobe Systems Incorporated) Task: {8D1F0180-37DD-4215-9D89-E0F876767C4C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent No Task File <==== ATTENTION Task: {904E1DE2-5540-491F-BD2A-2370E083C967} - \CCleanerSkipUAC No Task File <==== ATTENTION Task: {91B9F5D3-9FAA-4AAB-826B-643DBBC07D03} - System32\Tasks\Microsoft\Windows\TPM\Tpm-HASCertRetr Task: {920CE90B-0997-4585-992E-967D7E69EA0E} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d No Task File <==== ATTENTION Task: {93FEEEFF-D5A3-468A-ABB5-21B709359DE9} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-11-14] (NVIDIA Corporation) Task: {95E3575D-2FE9-43EF-8F3D-659CEC5F07FF} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig No Task File <==== ATTENTION Task: {9A3424C8-A166-452E-A8D1-009DDBA186B3} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1946104158-849987808-3721883152-1001 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe Task: {9BFBFF63-27D1-4C7C-ADFA-AE5B98B90F78} - System32\Tasks\Microsoft\Windows\BrokerInfrastructure\BgTaskRegistrationMaintenanceTask Task: {9DC56D08-3AB7-4DFE-B855-BCD9E0834276} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\Installation Task: {9E3B1957-F3F0-4BB3-A303-4DE78269C029} - System32\Tasks\Microsoft\Windows\ErrorDetails\EnableErrorDetailsUpdate Task: {9EB59ED9-90BB-4732-8839-5DD18C378A53} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Combined Scan Download Install => C:\Windows\system32\usoclient.exe [2017-03-18] (Microsoft Corporation) Task: {A364E297-00AD-490D-900E-22AC34598C71} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install => C:\Windows\system32\usoclient.exe [2017-03-18] (Microsoft Corporation) Task: {A4364607-71C2-4C43-9A89-EB93B93E7B72} - System32\Tasks\Microsoft\XblGameSave\XblGameSaveTaskLogon => C:\Windows\System32\XblGameSaveTask.exe [2017-03-18] (Microsoft Corporation) Task: {A6E65064-E4EE-4502-843E-7E32315DA5D8} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\AC Power Download => C:\Windows\system32\usoclient.exe [2017-03-18] (Microsoft Corporation) Task: {AEFA6A26-21C9-4251-844B-EEA3CCB0E228} - System32\Tasks\Microsoft\Windows\Subscription\EnableLicenseAcquisition => C:\Windows\system32\ClipRenew.exe [2017-03-20] (Microsoft Corporation) Task: {AF8C81AB-2CD9-4042-89CE-DACC4CBEE0F0} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterUserDevice Task: {B0B01AAA-FF6C-4441-B75E-44A24B0B37CD} - System32\Tasks\Microsoft\Windows\DUSM\dusmtask => C:\Windows\System32\dusmtask.exe [2017-03-18] (Microsoft Corporation) Task: {B15D1C35-5189-44F4-8371-861C4A1215C5} - System32\Tasks\Microsoft\Windows\UNP\RunCampaignManager => C:\Windows\System32\UNP\UNPCampaignManager.exe [2017-04-02] (Microsoft Corporation) Task: {B320E058-C6FA-413F-876B-0C9B4428AE66} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDevicePeriodic6 Task: {B5EA650A-8EE9-4BA5-BAA0-2A8ACE00500D} - System32\Tasks\Microsoft\Windows\SpacePort\SpaceManagerTask => C:\Windows\system32\spaceman.exe [2017-03-18] (Microsoft Corporation) Task: {B7727546-7C18-4F3A-89CE-1100CFFCC996} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-11-14] (NVIDIA Corporation) Task: {B921E180-BDB8-492E-B516-9E26427AE714} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\CryptoPolicyTask Task: {BA8778F6-60E2-4ECA-A1F8-0008BF0DD664} - System32\Tasks\Opera scheduled Autoupdate 1432666121 => C:\Program Files (x86)\Opera\launcher.exe [2017-11-15] (Opera Software) Task: {BADCD9F0-BE48-420C-A2A8-84136226659D} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceAccountChange Task: {BB6BFBD8-CE78-46AE-AB26-03F0B55EA5BD} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-09-17] (Realtek Semiconductor) Task: {BD69C6ED-AD55-467C-B787-533200C3B376} - System32\Tasks\Microsoft\XblGameSave\XblGameSaveTask => C:\Windows\System32\XblGameSaveTask.exe [2017-03-18] (Microsoft Corporation) Task: {BEAC0BB1-6CF7-4835-BA51-BDA155F04F0F} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent No Task File <==== ATTENTION Task: {BEDDD5FD-F69C-4BF1-A04B-66F1D2C41FA2} - System32\Tasks\Microsoft\Windows\Subscription\LicenseAcquisition => C:\Windows\system32\ClipRenew.exe [2017-03-20] (Microsoft Corporation) Task: {C05E2FFD-7D0D-4F6B-952B-A3318F829D19} - System32\Tasks\Microsoft\Windows\Management\Provisioning\Cellular => C:\Windows\system32\ProvTool.exe [2017-03-18] (Microsoft Corporation) Task: {C6B2579B-4962-4D12-883D-BBD420573A6C} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDevicePeriodic1 Task: {C8AB61DD-2103-4930-9F3A-DA77A548F877} - System32\Tasks\Microsoft\Windows\Sysmain\ResPriStaticDbSync Task: {CDC553D2-B5AD-4AF3-BB6D-5AA47466C1F9} - System32\Tasks\Microsoft\Windows\Management\Provisioning\Logon => C:\Windows\system32\ProvTool.exe [2017-03-18] (Microsoft Corporation) Task: {CFE9501D-B60F-45DB-B48F-19C572F7F30E} - System32\Tasks\microsoft\windows\applicationdata\appuriverifierinstall => C:\Windows\system32\AppHostRegistrationVerifier.exe [2017-03-18] (Microsoft Corporation) Task: {D19A2726-897E-4F7D-9CE4-0773B449CE9E} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceConnectedToNetwork Task: {D5EBF28C-A33D-4CBA-8355-0F457EE12498} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => C:\Windows\system32\compattelrunner.exe [2017-11-02] (Microsoft Corporation) Task: {D6E065B9-B906-4EB6-8336-F43D8AED22B6} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Refresh Settings => C:\Windows\system32\usoclient.exe [2017-03-18] (Microsoft Corporation) Task: {E11183CC-FCAC-479E-B422-6A72654C14EA} - System32\Tasks\Microsoft\Windows\Location\Notifications => C:\Windows\System32\LocationNotificationWindows.exe [2017-03-18] (Microsoft Corporation) Task: {E8F513D6-F6C4-49D9-8D94-09D2DBB453F1} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d No Task File <==== ATTENTION Task: {EA3F661E-B31C-44A9-B40C-E3D5D56149D4} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display => C:\windows\system32\MusNotification.exe [2017-11-02] (Microsoft Corporation) Task: {EB76E6C0-98F0-4599-96D2-2E4F5E002B9D} - System32\Tasks\Microsoft\Windows\Maps\MapsToastTask Task: {EC11A6F7-343D-49E9-A974-A3716157F2C1} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => C:\Windows\system32\compattelrunner.exe [2017-11-02] (Microsoft Corporation) Task: {F4849504-26F5-4199-BE6A-B38AF9DE2D4C} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-11-14] (NVIDIA Corporation) Task: {F48B140D-10F9-4075-AE54-49020F4C3DCD} - System32\Tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Management Initialization Task: {F4B41664-0597-4E77-B148-54F2D9E78B6E} - System32\Tasks\Microsoft\Windows\ErrorDetails\ErrorDetailsUpdate Task: {F88E01C2-99E3-4AF6-BFAA-7ACC8EF521D4} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClient => C:\Windows\system32\dmclient.exe [2017-03-18] (Microsoft Corporation) Task: {F9015704-44A7-4962-B811-A4C0206CF851} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sihboot => C:\Windows\System32\sihclient.exe [2017-11-02] (Microsoft Corporation) Task: {FA5DD966-0721-4C2E-AF1C-CB4291655771} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-09-27] (Adobe Systems Incorporated) Task: {FB86C0C2-CF61-4CE8-96F8-25AD84A2E376} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd No Task File <==== ATTENTION Task: {FEDC9220-29C7-4F60-9F50-F9C660A65EB9} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-11-14] (NVIDIA Corporation) Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe ==================== Loaded Modules (Whitelisted) ============== 2011-03-14 16:27 - 2011-03-14 16:27 - 00346976 _____ () C:\ProgramData\DatacardService\HWDeviceService64.exe 2015-12-06 19:17 - 2016-01-18 19:34 - 00075136 _____ () C:\WINDOWS\SysWOW64\PnkBstrA.exe 2015-06-20 20:13 - 2012-09-22 03:32 - 00655744 _____ () C:\ProgramData\Mobile Partner\OnlineUpdate\ouc.exe 2017-03-18 21:58 - 2017-03-18 21:58 - 00138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll 2017-03-18 21:59 - 2017-03-20 05:01 - 01731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2016-04-30 14:37 - 2012-08-06 08:08 - 00515072 _____ () C:\Program Files (x86)\Mobile Partner\Mobile Partner.exe 2015-08-05 16:32 - 2015-08-05 16:32 - 00088624 _____ () C:\Program Files\Samsung\S Agent\ToastX64.dll 2015-06-20 20:13 - 2009-01-10 11:32 - 00011362 _____ () C:\ProgramData\Mobile Partner\OnlineUpdate\mingwm10.dll 2015-06-20 20:13 - 2009-06-22 19:42 - 00043008 _____ () C:\ProgramData\Mobile Partner\OnlineUpdate\libgcc_s_dw2-1.dll 2015-06-20 20:13 - 2010-07-23 05:58 - 02415104 _____ () C:\ProgramData\Mobile Partner\OnlineUpdate\QtCore4.dll 2015-06-20 20:13 - 2010-02-10 15:10 - 01148416 _____ () C:\ProgramData\Mobile Partner\OnlineUpdate\QtNetwork4.dll 2015-06-20 20:13 - 2012-09-22 03:32 - 00843264 _____ () C:\ProgramData\Mobile Partner\OnlineUpdate\QueryStrategy.dll 2015-06-20 20:13 - 2010-02-10 15:06 - 00398336 _____ () C:\ProgramData\Mobile Partner\OnlineUpdate\QtXml4.dll 2016-04-30 14:37 - 2012-08-06 08:05 - 00286720 _____ () C:\Program Files (x86)\Mobile Partner\sdk.dll 2016-04-30 14:37 - 2009-01-10 11:32 - 00011362 _____ () C:\Program Files (x86)\Mobile Partner\mingwm10.dll 2016-04-30 14:37 - 2009-06-22 19:42 - 00043008 _____ () C:\Program Files (x86)\Mobile Partner\libgcc_s_dw2-1.dll 2016-04-30 14:37 - 2010-02-10 15:43 - 09515520 _____ () C:\Program Files (x86)\Mobile Partner\QtGui4.dll 2016-04-30 14:37 - 2010-07-23 05:58 - 02415104 _____ () C:\Program Files (x86)\Mobile Partner\QtCore4.dll 2016-04-30 14:37 - 2012-08-06 08:05 - 00518144 _____ () C:\Program Files (x86)\Mobile Partner\core.dll 2016-04-30 14:37 - 2012-08-06 08:05 - 00405504 _____ () C:\Program Files (x86)\Mobile Partner\Proxy.DLL 2016-04-30 14:37 - 2012-08-06 08:04 - 00628224 _____ () C:\Program Files (x86)\Mobile Partner\Common.dll 2016-04-30 14:37 - 2012-08-06 08:05 - 00157184 _____ () C:\Program Files (x86)\Mobile Partner\Trace.dll 2016-04-30 14:37 - 2012-08-06 08:05 - 00583168 _____ () C:\Program Files (x86)\Mobile Partner\PluginContainer.dll 2016-04-30 14:37 - 2012-08-06 08:05 - 00646144 _____ () C:\Program Files (x86)\Mobile Partner\AtCodec.dll 2016-04-30 14:37 - 2012-08-06 08:05 - 00729088 _____ () C:\Program Files (x86)\Mobile Partner\DeviceSrvPlugin.dll 2016-04-30 14:37 - 2012-08-06 08:05 - 00195584 _____ () C:\Program Files (x86)\Mobile Partner\XCodec.dll 2016-04-30 14:37 - 2012-08-06 08:05 - 00241152 _____ () C:\Program Files (x86)\Mobile Partner\NetSrvPlugin.dll 2016-04-30 14:37 - 2012-08-06 08:05 - 00164864 _____ () C:\Program Files (x86)\Mobile Partner\OSDialup.dll 2016-04-30 14:37 - 2012-08-06 08:05 - 00155136 _____ () C:\Program Files (x86)\Mobile Partner\DataServicePlugin.dll 2016-04-30 14:37 - 2012-08-06 08:05 - 00177152 _____ () C:\Program Files (x86)\Mobile Partner\CallSrvPlugin.dll 2016-04-30 14:37 - 2012-08-06 08:05 - 00672768 _____ () C:\Program Files (x86)\Mobile Partner\AddrBookSrvPlugin.dll 2016-04-30 14:37 - 2012-08-06 08:05 - 00219648 _____ () C:\Program Files (x86)\Mobile Partner\SmsSrvPlugin.dll 2016-04-30 14:37 - 2012-08-06 08:05 - 00142336 _____ () C:\Program Files (x86)\Mobile Partner\USSDSrvPlugin.dll 2016-04-30 14:37 - 2012-08-06 08:05 - 00157184 _____ () C:\Program Files (x86)\Mobile Partner\STKSrvPlugin.dll 2016-04-30 14:37 - 2012-08-06 08:05 - 00730624 _____ () C:\Program Files (x86)\Mobile Partner\DeviceAppPlugin.dll 2016-04-30 14:37 - 2012-08-06 08:05 - 00065536 _____ () C:\Program Files (x86)\Mobile Partner\OSPowerMgr.dll 2016-04-30 14:37 - 2012-06-06 02:22 - 00155648 _____ () C:\Program Files (x86)\Mobile Partner\Win7Support.dll 2016-04-30 14:37 - 2012-08-06 08:05 - 01124352 _____ () C:\Program Files (x86)\Mobile Partner\AddrBookPlugin.dll 2016-04-30 14:37 - 2012-08-06 08:05 - 00704000 _____ () C:\Program Files (x86)\Mobile Partner\SmsAppPlugin.dll 2016-04-30 14:37 - 2012-08-06 08:05 - 00187392 _____ () C:\Program Files (x86)\Mobile Partner\CallAppPlugin.dll 2016-04-30 14:37 - 2012-08-06 08:05 - 00569344 _____ () C:\Program Files (x86)\Mobile Partner\CallLogSrvPlugin.dll 2016-04-30 14:37 - 2012-08-06 08:05 - 00158720 _____ () C:\Program Files (x86)\Mobile Partner\NetConnectSrvPlugin.dll 2016-04-30 14:37 - 2012-08-06 08:05 - 00236032 _____ () C:\Program Files (x86)\Mobile Partner\DialUpPlugin.dll 2016-04-30 14:37 - 2012-08-06 08:05 - 00102400 _____ () C:\Program Files (x86)\Mobile Partner\OSAdapt.dll 2016-04-30 14:37 - 2012-08-06 08:05 - 00201216 _____ () C:\Program Files (x86)\Mobile Partner\NDISPlugin.dll 2016-04-30 14:37 - 2012-08-06 08:05 - 00131584 _____ () C:\Program Files (x86)\Mobile Partner\OSNDIS.dll 2016-04-30 14:37 - 2012-07-27 07:53 - 01114112 _____ () C:\Program Files (x86)\Mobile Partner\NDISAPI.dll 2016-04-30 14:37 - 2012-08-06 08:05 - 00702464 _____ () C:\Program Files (x86)\Mobile Partner\NetInfoSrvPlugin.dll 2016-04-30 14:37 - 2012-08-06 08:05 - 00062976 _____ () C:\Program Files (x86)\Mobile Partner\OSCall.dll 2016-04-30 14:37 - 2012-06-06 02:22 - 00224256 _____ () C:\Program Files (x86)\Mobile Partner\tdpcvoice.dll 2016-04-30 14:37 - 2012-08-06 08:06 - 00581120 _____ () C:\Program Files (x86)\Mobile Partner\DeviceMgrUIPlugin.dll 2016-04-30 14:37 - 2010-02-10 15:06 - 00398336 _____ () C:\Program Files (x86)\Mobile Partner\QtXml4.dll 2016-04-30 14:37 - 2012-08-06 08:05 - 00168960 _____ () C:\Program Files (x86)\Mobile Partner\ATR2SMgr.dll 2016-04-30 14:37 - 2012-08-06 08:06 - 00270848 _____ () C:\Program Files (x86)\Mobile Partner\XFramePlugin.dll 2016-04-30 14:37 - 2012-08-06 08:06 - 00323584 _____ () C:\Program Files (x86)\Mobile Partner\StatusBarMgrPlugin.dll 2016-04-30 14:37 - 2012-08-06 08:06 - 00359936 _____ () C:\Program Files (x86)\Mobile Partner\NetConnectPlugin.dll 2016-04-30 14:37 - 2012-08-06 08:05 - 00592896 _____ () C:\Program Files (x86)\Mobile Partner\DialupUIPlugin.dll 2016-04-30 14:37 - 2012-08-06 08:06 - 00097792 _____ () C:\Program Files (x86)\Mobile Partner\NotifyServicePlugin.dll 2016-04-30 14:37 - 2012-08-06 08:06 - 00117248 _____ () C:\Program Files (x86)\Mobile Partner\LayoutPlugin.dll 2016-04-30 14:37 - 2012-08-06 08:08 - 00119296 _____ () C:\Program Files (x86)\Mobile Partner\ConnectMgrUIPlugin.dll 2016-04-30 14:37 - 2012-08-06 08:06 - 00330752 _____ () C:\Program Files (x86)\Mobile Partner\MenuMgrPlugin.dll 2016-04-30 14:37 - 2012-08-06 08:07 - 00302592 _____ () C:\Program Files (x86)\Mobile Partner\DiagnosisPlugin.dll 2016-04-30 14:37 - 2012-08-06 08:07 - 00493568 _____ () C:\Program Files (x86)\Mobile Partner\NetInfoUIExPlugin.dll 2016-04-30 14:37 - 2012-08-06 08:06 - 00854528 _____ () C:\Program Files (x86)\Mobile Partner\SMSUIPlugin.dll 2016-04-30 14:37 - 2012-08-06 08:06 - 00818688 _____ () C:\Program Files (x86)\Mobile Partner\AddrBookUIPlugin.dll 2016-04-30 14:37 - 2012-08-06 08:06 - 00219648 _____ () C:\Program Files (x86)\Mobile Partner\ToolBarMgrPlugin.dll 2016-04-30 14:37 - 2012-09-22 03:32 - 00694272 _____ () C:\Program Files (x86)\Mobile Partner\LiveUpdateInterface.DLL 2016-04-30 14:37 - 2010-02-10 15:10 - 01148416 _____ () C:\Program Files (x86)\Mobile Partner\QtNetwork4.dll 2016-04-30 14:37 - 2012-06-06 02:21 - 00082944 _____ () C:\Program Files (x86)\Mobile Partner\plugins\imageformats\qgif4.dll 2016-04-30 14:37 - 2012-06-06 02:21 - 00081920 _____ () C:\Program Files (x86)\Mobile Partner\plugins\imageformats\qico4.dll 2016-04-30 14:37 - 2012-06-06 02:21 - 00192000 _____ () C:\Program Files (x86)\Mobile Partner\plugins\imageformats\qjpeg4.dll 2016-04-30 14:37 - 2012-06-06 02:21 - 00350720 _____ () C:\Program Files (x86)\Mobile Partner\plugins\imageformats\qmng4.dll 2016-04-30 14:37 - 2012-06-06 02:21 - 00370176 _____ () C:\Program Files (x86)\Mobile Partner\plugins\imageformats\qtiff4.dll 2010-05-07 00:10 - 2010-05-07 00:10 - 02240512 _____ () C:\Program Files (x86)\Seer\LIBZPLAY.DLL 2015-07-27 09:02 - 2015-07-27 09:02 - 01719808 _____ () C:\Program Files (x86)\Seer\poppler-qt5.dll 2015-09-17 13:03 - 2015-09-17 13:03 - 01435648 _____ () C:\Program Files (x86)\Seer\qscintilla2.dll 2014-11-06 11:59 - 2014-11-06 11:59 - 00359936 _____ () C:\Program Files (x86)\Seer\OpenAL32.dll 2015-07-27 08:51 - 2015-07-27 08:51 - 00228352 _____ () C:\Program Files (x86)\Seer\openjpeg.dll 2015-10-23 13:06 - 2015-10-23 13:06 - 00831134 _____ () C:\Program Files (x86)\Seer\icudt54.dll 2013-10-05 18:17 - 2013-10-05 18:17 - 00112142 _____ () C:\Program Files (x86)\Seer\libgcc_s_dw2-1.dll 2015-07-27 09:17 - 2015-07-27 09:17 - 00107520 _____ () C:\Program Files (x86)\Seer\zlib1.dll 2016-02-20 04:08 - 2016-02-20 04:08 - 00028672 _____ () C:\Program Files (x86)\Seer\imageformats\qpsd.dll 2015-05-26 04:09 - 2015-05-26 04:08 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll 2017-11-03 09:06 - 2017-11-03 09:06 - 00087024 _____ () C:\Program Files (x86)\Glary Utilities 5\zlib1.dll 2017-11-19 18:51 - 2017-11-15 09:33 - 69359912 _____ () C:\Program Files (x86)\Opera\49.0.2725.39\opera_browser.dll 2017-11-19 18:51 - 2017-11-15 09:33 - 03194152 _____ () C:\Program Files (x86)\Opera\49.0.2725.39\libglesv2.dll 2017-11-19 18:51 - 2017-11-15 09:33 - 00095528 _____ () C:\Program Files (x86)\Opera\49.0.2725.39\libegl.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) AlternateDataStreams: C:\Minimal ADB and Fastboot:Win32App_1 AlternateDataStreams: C:\Program Files\Application Verifier:Win32App_1 AlternateDataStreams: C:\Program Files\Calibre2:Win32App_1 AlternateDataStreams: C:\Program Files\Greenshot:Win32App_1 AlternateDataStreams: C:\Program Files\IIS:Win32App_1 AlternateDataStreams: C:\Program Files\IIS Express:Win32App_1 AlternateDataStreams: C:\Program Files\Intel:Win32App_1 AlternateDataStreams: C:\Program Files\Microsoft Silverlight:Win32App_1 AlternateDataStreams: C:\Program Files\Microsoft SQL Server:Win32App_1 AlternateDataStreams: C:\Program Files\Microsoft SQL Server Compact Edition:Win32App_1 AlternateDataStreams: C:\Program Files\UNP:Win32App_1 AlternateDataStreams: C:\Program Files\WinRAR:Win32App_1 AlternateDataStreams: C:\Program Files (x86)\Application Verifier:Win32App_1 AlternateDataStreams: C:\Program Files (x86)\DoNotSpy10:Win32App_1 AlternateDataStreams: C:\Program Files (x86)\GalaxyClient:Win32App_1 AlternateDataStreams: C:\Program Files (x86)\IIS Express:Win32App_1 AlternateDataStreams: C:\Program Files (x86)\LibreOffice 5:Win32App_1 AlternateDataStreams: C:\Program Files (x86)\Microsoft SDKs:Win32App_1 AlternateDataStreams: C:\Program Files (x86)\Microsoft Silverlight:Win32App_1 AlternateDataStreams: C:\Program Files (x86)\Microsoft SQL Server:Win32App_1 AlternateDataStreams: C:\Program Files (x86)\Microsoft Visual Studio 10.0:Win32App_1 AlternateDataStreams: C:\Program Files (x86)\Microsoft Visual Studio 14.0:Win32App_1 AlternateDataStreams: C:\Program Files (x86)\Microsoft Web Tools:Win32App_1 AlternateDataStreams: C:\Program Files (x86)\MSBuild:Win32App_1 AlternateDataStreams: C:\Program Files (x86)\NapiProjekt:Win32App_1 AlternateDataStreams: C:\Program Files (x86)\Napisy24:Win32App_1 AlternateDataStreams: C:\Program Files (x86)\Opera:Win32App_1 AlternateDataStreams: C:\Program Files (x86)\Origin:Win32App_1 AlternateDataStreams: C:\Program Files (x86)\PlayReady:Win32App_1 AlternateDataStreams: C:\Program Files (x86)\TeamViewer:Win32App_1 AlternateDataStreams: C:\Program Files (x86)\uTorrent:Win32App_1 AlternateDataStreams: C:\Program Files (x86)\WestwoodOnline:Win32App_1 AlternateDataStreams: C:\Program Files\Common Files\microsoft shared:Win32App_1 AlternateDataStreams: C:\ProgramData\Windows App Certification Kit:Win32App_1 AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2014:Win32App_1 AlternateDataStreams: C:\Users\Gr\OneDrive:ms-properties AlternateDataStreams: C:\Users\Gr\AppData\Local\JDownloader v2.0:Win32App_1 ==================== Safe Mode (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52} => ""="Firmware" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Ahcache.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CoreMessagingRegistrar => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NetSetupSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SpbCx.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\StateRepository => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TileDataModelSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\uefi.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\UserManager => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52} => ""="Firmware" ==================== EXE Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-1946104158-849987808-3721883152-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Gr\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img13.jpg HKU\S-1-5-80-2885764129-887777008-271615777-1616004480-2722851051\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg HKU\S-1-5-80-3263513310-3392720605-1798839546-683002060-3227631582\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg HKU\S-1-5-80-3880718306-3832830129-1677859214-2598158968-1052248003\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg DNS Servers: 212.2.96.51 - 212.2.96.52 ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) HKLM\...\StartupApproved\Run32: => "ADSKAppManager" HKU\S-1-5-21-1946104158-849987808-3721883152-1001\...\StartupApproved\StartupFolder: => "internet — skrót .lnk" HKU\S-1-5-21-1946104158-849987808-3721883152-1001\...\StartupApproved\Run: => "Skype" HKU\S-1-5-21-1946104158-849987808-3721883152-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-1946104158-849987808-3721883152-1001\...\StartupApproved\Run: => "MiPhoneManager" HKU\S-1-5-21-1946104158-849987808-3721883152-1001\...\StartupApproved\Run: => "Napisy24.pl" HKU\S-1-5-21-1946104158-849987808-3721883152-1001\...\StartupApproved\Run: => "Napisy24Update" HKU\S-1-5-21-1946104158-849987808-3721883152-1001\...\StartupApproved\Run: => "Spotify Web Helper" HKU\S-1-5-21-1946104158-849987808-3721883152-1001\...\StartupApproved\Run: => "Spotify" HKU\S-1-5-21-1946104158-849987808-3721883152-1001\...\StartupApproved\Run: => "IPLA!" ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [WirelessDisplay-Infra-In-TCP] => (Allow) %systemroot%\system32\CastSrv.exe FirewallRules: [{BB28725E-307E-42DA-B758-B08FAE42287A}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{3DE27BF1-87F2-4E99-82DB-F8678E5CD9D7}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{BDF2907A-FEC6-47F9-9758-53BB3828E815}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{F50FEDD5-AB36-4855-983C-D7C64AECAC21}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{555154AA-64ED-4A67-9E90-BAB98606E5D8}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{8A77D502-7C8F-4A4E-945E-4CA1D80F6C5D}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{8EBD9EE3-17C2-4AE3-B42A-26D1B1244DBF}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{FD973DBC-DD4D-479A-BFA8-B8228599F570}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{1977DE4A-2996-4F0E-B35B-B9CC3B7FED2B}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{BDC70A4D-2CDE-43DC-A776-26554C145D02}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{4A83A29A-A611-43B3-9BCB-05AC5C3C5826}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{C6B4A918-1E1D-480D-BED0-4455C04DA774}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{EFEB39BF-675D-468C-91D6-C0A325AB8DF2}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{CF349E31-44CE-4B6C-9FC0-8025A5F44625}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{FE629A50-C4BC-4977-89B9-38022F308518}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{3454A647-9EE0-44BE-9177-496DF414938C}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{3BC8B766-01D7-4875-98D1-498D844D838D}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{3E3772EE-F95C-489A-AD3B-57CEA534B994}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{65531846-6B68-427A-8DC6-42D181D04FB6}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{0223138F-7914-49DE-90D2-02DA5FFDD202}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{EBA09C01-B2C4-4EFD-8E57-168F347223FD}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{3E0BF5B9-E435-4DB3-98C9-7B828A552EC7}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{87823902-88C6-4D7D-9311-A0FBD9B863B9}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{23E5AB04-C5B3-4D18-ACF2-88FA09048F27}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{7D6CE0D4-11B1-4D2D-A316-ADE83733C70D}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{FF04A79B-58F0-4F91-ACBD-DC294222D037}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{3683460E-A79D-4337-B27A-FF6760E655D9}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{3FFEA003-233E-4ED5-A215-3D51CF89BA04}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{96766474-6EE2-4C7A-8F1C-F79E7752CC19}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{8E60BFCF-0623-461B-9F3A-5A2BDA811CE1}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{BFEFEF77-BA06-429C-AD22-2A0AFB573DB8}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{EFE5CFA6-538A-4FB6-A893-315E16DA87B2}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{C55A6844-6058-43AE-83EA-076EABDA2136}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{956622FC-6E00-4BB9-8A33-17634802CA3D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{489C0027-26D6-42AD-932E-438C6D45992D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{2B5F831A-BE9F-4575-A335-9704ECABBD9E}] => (Allow) C:\Users\Gr\AppData\Roaming\ACEStream\engine\ace_engine.exe FirewallRules: [{12CD287D-2036-4A79-A4FC-395B2E06CA8C}] => (Allow) C:\Users\Gr\AppData\Roaming\ACEStream\engine\ace_engine.exe FirewallRules: [{E6C3C4EB-DE8F-4DA4-AE33-50F72A305EBC}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{A2293246-C91F-4B68-ACDD-03BA22E4AE4D}] => (Block) C:\program files (x86)\portforward\port forward network utilities\pfportchecker.exe FirewallRules: [{3B26F1DF-4101-41D1-BE6A-91D62C3DDFE1}] => (Block) C:\program files (x86)\portforward\port forward network utilities\pfportchecker.exe FirewallRules: [UDP Query User{B7DD6ECC-16AF-440C-BBFF-9DA07B3A0957}C:\program files (x86)\portforward\port forward network utilities\pfportchecker.exe] => (Allow) C:\program files (x86)\portforward\port forward network utilities\pfportchecker.exe FirewallRules: [TCP Query User{DD84117E-5506-4382-9E58-E4ADC0EDDE52}C:\program files (x86)\portforward\port forward network utilities\pfportchecker.exe] => (Allow) C:\program files (x86)\portforward\port forward network utilities\pfportchecker.exe FirewallRules: [{603ECD4F-8F87-425B-84F0-62F07CFB88BC}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe FirewallRules: [UDP Query User{094A17B5-901E-486A-B4F2-2CB2BBD06303}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe FirewallRules: [TCP Query User{C275C9CC-606D-4F3F-8B1A-085EB57D951A}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe FirewallRules: [{870497E2-D6DB-46E0-B5D5-B2A50D78E037}] => (Block) C:\program files (x86)\pc remote\pc remote\pcremote.exe FirewallRules: [{3FC7C40A-0394-43A2-99F3-314023EAE1DE}] => (Block) C:\program files (x86)\pc remote\pc remote\pcremote.exe FirewallRules: [UDP Query User{8E424CAC-72C0-4E19-8810-545750001B7C}C:\program files (x86)\pc remote\pc remote\pcremote.exe] => (Allow) C:\program files (x86)\pc remote\pc remote\pcremote.exe FirewallRules: [TCP Query User{1DA01825-267E-491F-B67D-E0E08C6954C5}C:\program files (x86)\pc remote\pc remote\pcremote.exe] => (Allow) C:\program files (x86)\pc remote\pc remote\pcremote.exe FirewallRules: [{3D9B8EC5-F5FD-46A4-AEC2-36E9AF3142C5}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Red Alert II\RA2Launcher.exe FirewallRules: [{D858B5BC-B778-4986-8042-83228CBDCA8B}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Red Alert II\RA2Launcher.exe FirewallRules: [UDP Query User{E8CD9018-BF9A-4EEC-9C95-5027A366E6CC}C:\program files (x86)\origin games\fifa 15\fifa15.exe] => (Block) C:\program files (x86)\origin games\fifa 15\fifa15.exe FirewallRules: [TCP Query User{22731149-39AF-401B-BA02-671C20C7BD1F}C:\program files (x86)\origin games\fifa 15\fifa15.exe] => (Block) C:\program files (x86)\origin games\fifa 15\fifa15.exe FirewallRules: [UDP Query User{D8F1398F-656E-43CA-A72D-D04091471763}C:\program files (x86)\origin games\fifa 16 demo\fifa16_demo.exe] => (Block) C:\program files (x86)\origin games\fifa 16 demo\fifa16_demo.exe FirewallRules: [TCP Query User{18232E87-C073-497D-B1F1-4BD387BB1000}C:\program files (x86)\origin games\fifa 16 demo\fifa16_demo.exe] => (Block) C:\program files (x86)\origin games\fifa 16 demo\fifa16_demo.exe FirewallRules: [{1FB7E8B8-81F8-4A7E-8BBE-09D99EA1AE8D}] => (Block) C:\users\gr\appdata\roaming\xiaomi\miphonemanager\plugin\xunlei\download\minithunderplatform.exe FirewallRules: [{206AD9AA-DFAE-485E-86A0-777429AB20B0}] => (Block) C:\users\gr\appdata\roaming\xiaomi\miphonemanager\plugin\xunlei\download\minithunderplatform.exe FirewallRules: [UDP Query User{95A63612-5F22-4CC2-B43B-A09EA454DF3A}C:\users\gr\appdata\roaming\xiaomi\miphonemanager\plugin\xunlei\download\minithunderplatform.exe] => (Allow) C:\users\gr\appdata\roaming\xiaomi\miphonemanager\plugin\xunlei\download\minithunderplatform.exe FirewallRules: [TCP Query User{66E841CA-9835-481A-88AC-AC54BB479F00}C:\users\gr\appdata\roaming\xiaomi\miphonemanager\plugin\xunlei\download\minithunderplatform.exe] => (Allow) C:\users\gr\appdata\roaming\xiaomi\miphonemanager\plugin\xunlei\download\minithunderplatform.exe FirewallRules: [{32F92852-D5DC-422E-81E9-4F2892E751C7}] => (Block) C:\users\gr\appdata\roaming\spotify\spotify.exe FirewallRules: [{370EFA2F-D2B5-4D6A-B54F-DAA535FFAA9F}] => (Block) C:\users\gr\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{C6D58902-BD73-4A15-9858-D7780BAFABFD}C:\users\gr\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\gr\appdata\roaming\spotify\spotify.exe FirewallRules: [TCP Query User{E7DC9354-DE80-4D82-B14F-D7BF2953CB20}C:\users\gr\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\gr\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{FD3B242C-E4F7-4E94-970A-CA5CDFAD03D6}C:\users\gr\appdata\roaming\acestream\engine\ace_engine.exe] => (Block) C:\users\gr\appdata\roaming\acestream\engine\ace_engine.exe FirewallRules: [TCP Query User{F90CFD6F-065A-48F7-A2AB-F290475B8146}C:\users\gr\appdata\roaming\acestream\engine\ace_engine.exe] => (Block) C:\users\gr\appdata\roaming\acestream\engine\ace_engine.exe FirewallRules: [{1DEF3CD2-725E-41AC-AC3F-2A62B7283521}] => (Block) C:\program files (x86)\sopcast\sopcast.exe FirewallRules: [{2DC53EF3-A67E-464A-A2BF-EF817FA3CC1C}] => (Block) C:\program files (x86)\sopcast\sopcast.exe FirewallRules: [UDP Query User{2FDC1BE6-687F-426F-B67D-853D2D4E25A6}C:\program files (x86)\sopcast\sopcast.exe] => (Allow) C:\program files (x86)\sopcast\sopcast.exe FirewallRules: [TCP Query User{BAB758C6-6C88-46C9-9AD7-79FEF0947094}C:\program files (x86)\sopcast\sopcast.exe] => (Allow) C:\program files (x86)\sopcast\sopcast.exe FirewallRules: [{E7D7952A-5A4A-40EB-A53D-F906229225DD}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe FirewallRules: [{2E0BC829-0789-4EDE-9009-91E8BF349E6D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{852A2D1C-495D-4C58-B20D-AD12C4114EA0}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{01BE2D18-8E0A-4899-AC74-0DDA19A4509D}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe FirewallRules: [{5A265EB9-8240-4FE8-BCD0-36601458E265}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe FirewallRules: [{436041B8-4157-4215-A703-C857BB5470C7}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{AB4C6283-BD95-4012-9D1C-0B7287EBE65B}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{06236F25-D8CE-4679-AA90-B52A9FEAE7DB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Football Manager 2014\fm.exe FirewallRules: [{36A14C61-8EB4-49C5-9506-95F5E216DFD8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Football Manager 2014\fm.exe FirewallRules: [TCP Query User{CDC051C0-E8A6-4C37-A071-54239DB9A704}C:\program files (x86)\origin games\fifa 15\fifa15.exe] => (Allow) C:\program files (x86)\origin games\fifa 15\fifa15.exe FirewallRules: [UDP Query User{473863A9-BE1E-4F96-A9D1-F9164D35DFCA}C:\program files (x86)\origin games\fifa 15\fifa15.exe] => (Allow) C:\program files (x86)\origin games\fifa 15\fifa15.exe FirewallRules: [{9AAE7DDF-2DFB-4DEC-8BC8-C124A152C650}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Europa Universalis III - Complete\eu3game.exe FirewallRules: [{BA5AC509-5E48-4AF7-8C51-3ECA829EDA80}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Europa Universalis III - Complete\eu3game.exe FirewallRules: [{641064BA-D7EA-462F-892E-0554AA8184D2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Risen\bin\Risen.exe FirewallRules: [{874F3C23-1616-4AA4-924B-4BDAD1C7D4A8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Risen\bin\Risen.exe FirewallRules: [{EC87D085-6C24-45A9-BCCA-18AA6FC968DD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe FirewallRules: [{F5B62ED2-B95D-4CE3-BE49-D48245A5255A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe FirewallRules: [TCP Query User{E5BD41D2-0EC2-42AC-9283-F5AF3CAA463B}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe FirewallRules: [UDP Query User{EBBFCCE8-E31F-4B7F-BEBA-9F7A2FF51C7E}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe FirewallRules: [{EC1E70A0-F90D-4F36-A7ED-952D5FBE5DB5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tropico 4\Tropico4.exe FirewallRules: [{946BFF78-4550-4D1E-8399-BD676DB271E0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tropico 4\Tropico4.exe FirewallRules: [TCP Query User{7043632C-AAF1-46F1-ADEE-B41719C6CFFB}C:\users\gr\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\gr\appdata\local\akamai\netsession_win.exe FirewallRules: [UDP Query User{003F4EBA-78D8-4F74-BD78-4EB7C118D59C}C:\users\gr\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\gr\appdata\local\akamai\netsession_win.exe FirewallRules: [TCP Query User{C00D3149-AC4A-4816-BF20-35E2D7076473}C:\users\gr\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\gr\appdata\local\akamai\netsession_win.exe FirewallRules: [UDP Query User{EC1D1F1A-CF5A-4A2F-836D-4F4D53C3D024}C:\users\gr\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\gr\appdata\local\akamai\netsession_win.exe FirewallRules: [{1A145069-A86E-4BBC-8906-C96FC338F733}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe FirewallRules: [{572303FC-FCA6-47AE-B2A7-7599553B871A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Empire Total War\Empire.exe FirewallRules: [{AFF4048F-2A04-4D7D-AFB1-877E190A9050}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Empire Total War\Empire.exe FirewallRules: [{3AAFC225-1D3D-4D8C-8572-1613C2210E02}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{AC7D5363-7367-4E8E-8256-5E7D1D10AF2D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{0A1D0812-88B3-4AA1-AF7E-9FE3E4DAB76F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{C51078B2-F6C9-4D15-B21B-D4FF5EFCA952}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{F0BF48D2-5CFF-4116-99BF-871332CCE201}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [TCP Query User{8736A443-0A18-4525-9770-F2C30C0BB167}C:\program files (x86)\activision\call of duty - black ops\blackops.exe] => (Block) C:\program files (x86)\activision\call of duty - black ops\blackops.exe FirewallRules: [UDP Query User{376AF671-D03F-4BFB-839F-D86239428F1C}C:\program files (x86)\activision\call of duty - black ops\blackops.exe] => (Block) C:\program files (x86)\activision\call of duty - black ops\blackops.exe FirewallRules: [TCP Query User{4D952740-D661-4F59-B2D9-6C43C6720EE5}C:\program files\blackmagic design\fusion\eyeonscript.exe] => (Allow) C:\program files\blackmagic design\fusion\eyeonscript.exe FirewallRules: [UDP Query User{C7095839-15C8-44E8-8E88-C82B8331C870}C:\program files\blackmagic design\fusion\eyeonscript.exe] => (Allow) C:\program files\blackmagic design\fusion\eyeonscript.exe FirewallRules: [{8DCA8D36-75BC-43D3-A3BA-09692DECE667}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield Bad Company 2\BFBC2Game.exe FirewallRules: [{4198E33A-F322-4ED6-83F8-F8A49973ECCD}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield Bad Company 2\BFBC2Game.exe FirewallRules: [{BB35E24C-AFA8-4CA9-8D31-D9E9DC1D75F2}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{E479347B-C1A4-4D7E-913B-5024FD2B802E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DiRT 3 Complete Edition\dirt3_game.exe FirewallRules: [{AAF1E2F7-AA27-4CB6-BD3A-3ABCBD787F5E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DiRT 3 Complete Edition\dirt3_game.exe FirewallRules: [{DF45C4B2-A4AD-486C-8703-6938A203797C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe FirewallRules: [{8030BD96-E270-4B68-ACD7-22C77C4999CE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe FirewallRules: [{6342B22A-8613-44CB-9C9C-EEADEE63C41C}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{11689465-ABD4-458C-B75C-4A99057FB97C}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{EFB843C5-8476-4F92-849B-E1220EE597AA}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{FEB452CA-FDC6-4F26-A756-2DB546F91C19}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{B075067E-F6F3-48C5-8F88-FBC7070736E5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Metro 2033\metro2033.exe FirewallRules: [{2842F023-FFA9-4039-AE4B-81C2A4F099D5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Metro 2033\metro2033.exe FirewallRules: [{AC7C0780-7A03-4B55-96F5-B267AAE91EBC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Worms Clan Wars\WormsClanWars.exe FirewallRules: [{48463F58-2ADC-4F9B-B7A1-CD9D2303BB39}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Worms Clan Wars\WormsClanWars.exe FirewallRules: [TCP Query User{0F1E4E84-F5C2-4A29-8F89-C7FA5E27C3EA}C:\program files (x86)\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe FirewallRules: [UDP Query User{71D5B8AB-0D98-4D3D-B5B3-A14547360BBF}C:\program files (x86)\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe FirewallRules: [{A5F5627D-C9E2-45D3-ABE0-3C79B20C8133}] => (Allow) C:\Users\Gr\AppData\Local\MiPhoneManager\main\MiPCSuite.exe FirewallRules: [{A6F3EC27-76E8-406F-8004-F2ABC128CFAB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes 2\RelicCoH2.exe FirewallRules: [{7BC0377C-4F9C-43A6-A40D-265FD14C56A0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes 2\RelicCoH2.exe FirewallRules: [{252CF54B-CED4-4C17-94DF-4C344E5BC468}] => (Allow) C:\Program Files (x86)\NapiProjekt\napisy.exe FirewallRules: [{1F05DD15-2100-4078-ACD5-935DAE5C4667}] => (Allow) C:\Program Files (x86)\NapiProjekt\napisy.exe FirewallRules: [{FCA5163F-5AEE-4FB7-B7F2-88D7376A8498}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Limbo\limbo.exe FirewallRules: [{24449CA4-DA71-4A1B-89F6-B1B587BD370C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Limbo\limbo.exe FirewallRules: [{CF02468A-2FB3-486C-9232-4E12DC65A3D5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Darkness II\DarknessII.exe FirewallRules: [{E0C0DBC2-08C3-4EBA-A7BE-87B188961A3D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Darkness II\DarknessII.exe FirewallRules: [{4E18219D-C6D5-467F-816F-19AA9454DF6C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Kane & Lynch 2 - Dog Days\kl2.exe FirewallRules: [{FF3A1C64-3EA4-44BE-8E66-CCD0983D3814}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Kane & Lynch 2 - Dog Days\kl2.exe FirewallRules: [{99CA7416-0604-4C88-99FE-C5C2B3AAEB9D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Syberia\Game.exe FirewallRules: [{6F643BDE-04CA-4DD9-85A4-9F0B5DECFB96}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Syberia\Game.exe FirewallRules: [{D011E77F-8736-4373-BA3B-710FD083FD2A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Airline Tycoon 2\AirlineTycoon2.exe FirewallRules: [{4F800A35-19AC-4C32-83FF-7EF6E50BBEE8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Airline Tycoon 2\AirlineTycoon2.exe FirewallRules: [{27A86AA1-21DE-4EC5-A8E2-ABF77D39F133}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Modern Warfare 3\iw5sp.exe FirewallRules: [{E90BA9FF-F786-4286-A163-1483BF02C971}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Modern Warfare 3\iw5sp.exe FirewallRules: [{BB191AD0-A6B7-4DB0-8975-F55BCF3345B7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Modern Warfare 3\iw5mp.exe FirewallRules: [{A617592B-0B84-476F-A3C4-466CBA89BCAC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Modern Warfare 3\iw5mp.exe FirewallRules: [{D4223266-FA68-4675-AF50-6DDDD9839EFD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Black Ops II\t6sp.exe FirewallRules: [{ACD1A57E-F8F1-459F-8334-45DF49F42097}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Black Ops II\t6sp.exe FirewallRules: [{B07B34B6-6FB8-48BC-BDBB-ECBCDAFA052C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Black Ops II\t6mp.exe FirewallRules: [{EF332C05-6C18-4B0F-AAF4-FA869DBBC36C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Black Ops II\t6mp.exe FirewallRules: [{465D675C-BAC5-4E7D-97D4-DCB14E697A2E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Black Ops II\t6zm.exe FirewallRules: [{8F0208DA-5D12-4DCF-9BBF-BA5F779945FA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Black Ops II\t6zm.exe FirewallRules: [{3381115E-F878-4F47-8F39-43B077BF04D7}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{F8C8C0AF-7A3E-4EE0-A6A2-9F87F257B989}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{0C6DC7DD-5FA6-4857-A6B8-AABB2ED0059E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{994948B2-8EB2-4EF7-AB55-3C078C7E518A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [TCP Query User{ABF4E7A9-0E94-4977-9637-39A74341BEA9}C:\program files\blackmagic design\fusion\eyeonscript.exe] => (Block) C:\program files\blackmagic design\fusion\eyeonscript.exe FirewallRules: [UDP Query User{82B9C1F6-7119-472E-A4CD-53FAE21F125B}C:\program files\blackmagic design\fusion\eyeonscript.exe] => (Block) C:\program files\blackmagic design\fusion\eyeonscript.exe FirewallRules: [{2262D871-B199-4F0A-B76E-B23695C5ECE2}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{1011F3A1-3CBA-469D-B005-AA0650FDD146}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{B54B3F30-92C1-469B-A6BA-3813D14E57B3}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{F0F6F298-D60A-46E6-9021-3E4AAC5D602B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{82682200-8E5B-4144-BC73-AE8548EA1E81}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{AEC6A813-4E59-441F-B84F-6731048AC31B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{7024FD3A-7C7E-4208-85DE-0BE831BA486D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{B36CD7BB-49E0-4A4C-BDBE-3533FFB66A18}] => (Allow) C:\Program Files (x86)\Opera\48.0.2685.52\opera.exe FirewallRules: [{46620B1D-BC81-4913-A606-361874AEF0CD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{63000CE5-CE31-425D-8C1D-F3E41F1CE10C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{E2592441-A002-4AEC-A933-1BAF424D21B3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{D81F247D-0841-40AC-B0D7-46BAFC815222}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{7D2B061A-1E7B-4976-AC9D-6D4795F3DFEC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{4CC62B0E-1317-4698-80D8-1CC56F43C406}] => (Allow) C:\Program Files (x86)\Opera\49.0.2725.39\opera.exe ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (11/19/2017 08:09:45 PM) (Source: MSSQLSERVER) (EventID: 3409) (User: ) Description: Performance counter shared memory setup failed with error -1. Reinstall sqlctr.ini for this instance, and ensure that the instance login account has correct registry permissions. Error: (11/19/2017 08:09:45 PM) (Source: MSSQLSERVER) (EventID: 8310) (User: ) Description: Cannot create (or open) named file mapping object 'Global\SQL_110_MEMOBJ_24_MSSQLSERVER_0'. SQL Server performance counters are disabled. Error: (11/19/2017 08:02:35 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Program dllhost.exe w wersji 10.0.15063.0 przestał współpracować z systemem Windows i został zamknięty. Aby sprawdzić, czy jest dostępnych więcej informacji na temat tego problemu, sprawdź historię problemu w oknie Zabezpieczenia i konserwacja w Panelu sterowania. Identyfikator procesu: 7cc Godzina rozpoczęcia: 01d361688b2a5d7c Godzina zakończenia: 3 Ścieżka aplikacji: C:\Windows\System32\dllhost.exe Identyfikator raportu: efe60af7-433a-4e21-b25d-c41b0e78ea39 Pełna nazwa pakietu powodującego błąd: Identyfikator aplikacji względem pakietu powodującego błąd: Error: (11/19/2017 07:55:58 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: MATEUSZ) Description: Działanie pakietu Microsoft.Windows.ShellExperienceHost_10.0.15063.675_neutral_neutral_cw5n1h2txyewy+App zostało zakończone, ponieważ operacja wstrzymywania pakietu trwała zbyt długo. Error: (11/19/2017 07:34:55 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: mmc.exe, wersja: 10.0.15063.0, sygnatura czasowa: 0xc39bfa6e Nazwa modułu powodującego błąd: KERNELBASE.dll, wersja: 10.0.15063.726, sygnatura czasowa: 0x1a9bbe0b Kod wyjątku: 0xc000041d Przesunięcie błędu: 0x0000000000069d98 Identyfikator procesu powodującego błąd: 0x29a8 Godzina uruchomienia aplikacji powodującej błąd: 0xmmc.exe0 Ścieżka aplikacji powodującej błąd: mmc.exe1 Ścieżka modułu powodującego błąd: mmc.exe2 Identyfikator raportu: mmc.exe3 Pełna nazwa pakietu powodującego błąd: mmc.exe4 Identyfikator aplikacji względem pakietu powodującego błąd: mmc.exe5 Error: (11/19/2017 07:34:48 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: mmc.exe, wersja: 10.0.15063.0, sygnatura czasowa: 0xc39bfa6e Nazwa modułu powodującego błąd: KERNELBASE.dll, wersja: 10.0.15063.726, sygnatura czasowa: 0x1a9bbe0b Kod wyjątku: 0xe0434352 Przesunięcie błędu: 0x0000000000069d98 Identyfikator procesu powodującego błąd: 0x29a8 Godzina uruchomienia aplikacji powodującej błąd: 0xmmc.exe0 Ścieżka aplikacji powodującej błąd: mmc.exe1 Ścieżka modułu powodującego błąd: mmc.exe2 Identyfikator raportu: mmc.exe3 Pełna nazwa pakietu powodującego błąd: mmc.exe4 Identyfikator aplikacji względem pakietu powodującego błąd: mmc.exe5 Error: (11/19/2017 07:34:48 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Aplikacja: mmc.exe Wersja architektury: v4.0.30319 Opis: proces został przerwany z powodu nieobsłużonego wyjątku. Informacje o wyjątku: System.Runtime.InteropServices.COMException w Microsoft.ManagementConsole.Interop.IWaitDialog.CompleteRequest() w Microsoft.ManagementConsole.Executive.WaitDialog.InnerCompleteDialog() w Microsoft.ManagementConsole.Executive.WaitDialog.CompleteDialog() w Microsoft.ManagementConsole.Executive.SnapInInitializationOperation.TerminateWaitDialog() w Microsoft.ManagementConsole.Executive.Operation.OnThreadTransfer(Microsoft.ManagementConsole.Executive.SimpleOperationCallback) Informacje o wyjątku: System.Reflection.TargetInvocationException w Microsoft.ManagementConsole.Executive.MmcThreadMessageWindow.OnThreadException(System.Exception) w System.Windows.Forms.NativeWindow.Callback(IntPtr, Int32, IntPtr, IntPtr) Error: (11/19/2017 07:14:15 PM) (Source: MSSQLSERVER) (EventID: 3409) (User: ) Description: Performance counter shared memory setup failed with error -1. Reinstall sqlctr.ini for this instance, and ensure that the instance login account has correct registry permissions. Error: (11/19/2017 07:14:15 PM) (Source: MSSQLSERVER) (EventID: 8310) (User: ) Description: Cannot create (or open) named file mapping object 'Global\SQL_110_MEMOBJ_24_MSSQLSERVER_0'. SQL Server performance counters are disabled. Error: (11/19/2017 07:08:16 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Program dllhost.exe w wersji 10.0.15063.0 przestał współpracować z systemem Windows i został zamknięty. Aby sprawdzić, czy jest dostępnych więcej informacji na temat tego problemu, sprawdź historię problemu w oknie Zabezpieczenia i konserwacja w Panelu sterowania. Identyfikator procesu: 216c Godzina rozpoczęcia: 01d3616140a1ac99 Godzina zakończenia: 15 Ścieżka aplikacji: C:\Windows\System32\dllhost.exe Identyfikator raportu: 889bd828-7336-456c-9d5f-a3e29a7c285e Pełna nazwa pakietu powodującego błąd: Identyfikator aplikacji względem pakietu powodującego błąd: System errors: ============= Error: (11/19/2017 08:14:53 PM) (Source: DCOM) (EventID: 10010) (User: ZARZĄDZANIE NT) Description: {784E29F4-5EBE-4279-9948-1E8FE941646D} Error: (11/19/2017 08:11:44 PM) (Source: DCOM) (EventID: 10016) (User: ZARZĄDZANIE NT) Description: właściwe dla aplikacjiLokalnyAktywacja{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}ZARZĄDZANIE NTUSŁUGA LOKALNAS-1-5-19LocalHost (użycie LRPC)NiedostępnyNiedostępny Error: (11/19/2017 08:11:44 PM) (Source: DCOM) (EventID: 10016) (User: ZARZĄDZANIE NT) Description: właściwe dla aplikacjiLokalnyAktywacja{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}ZARZĄDZANIE NTUSŁUGA LOKALNAS-1-5-19LocalHost (użycie LRPC)NiedostępnyNiedostępny Error: (11/19/2017 08:09:24 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Mobile Partner. RunOuc z powodu następującego błędu: %%1053 Error: (11/19/2017 08:09:24 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą Mobile Partner. RunOuc. Error: (11/19/2017 08:09:21 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi CldFlt z powodu następującego błędu: %%50 Error: (11/19/2017 08:08:22 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa Intel(R) ME Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (11/19/2017 08:08:22 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa Intel(R) Management and Security Application User Notification Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (11/19/2017 08:08:16 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa SQL Full-text Filter Daemon Launcher (MSSQLSERVER) niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (11/19/2017 08:08:16 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Usługa buforowania czcionek platformy Windows Presentation Foundation, wersja 3.0.0.0 niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 0 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Microsoft Office: ========================= Error: (11/19/2017 08:09:45 PM) (Source: MSSQLSERVER) (EventID: 3409) (User: ) Description: -1 Error: (11/19/2017 08:09:45 PM) (Source: MSSQLSERVER) (EventID: 8310) (User: ) Description: Global\SQL_110_MEMOBJ_24_MSSQLSERVER_0 Error: (11/19/2017 08:02:35 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: dllhost.exe10.0.15063.07cc01d361688b2a5d7c3C:\Windows\System32\dllhost.exeefe60af7-433a-4e21-b25d-c41b0e78ea39 Error: (11/19/2017 07:55:58 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: MATEUSZ) Description: Microsoft.Windows.ShellExperienceHost_10.0.15063.675_neutral_neutral_cw5n1h2txyewy+App Error: (11/19/2017 07:34:55 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: mmc.exe10.0.15063.0c39bfa6eKERNELBASE.dll10.0.15063.7261a9bbe0bc000041d0000000000069d9829a801d36164ee19d3a9C:\WINDOWS\system32\mmc.exeC:\WINDOWS\System32\KERNELBASE.dll57afae67-c61d-43ce-857a-b6a14648018c Error: (11/19/2017 07:34:48 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: mmc.exe10.0.15063.0c39bfa6eKERNELBASE.dll10.0.15063.7261a9bbe0be04343520000000000069d9829a801d36164ee19d3a9C:\WINDOWS\system32\mmc.exeC:\WINDOWS\System32\KERNELBASE.dll97b4ac68-8685-47c3-b243-60ffb49b176e Error: (11/19/2017 07:34:48 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Aplikacja: mmc.exe Wersja architektury: v4.0.30319 Opis: proces został przerwany z powodu nieobsłużonego wyjątku. Informacje o wyjątku: System.Runtime.InteropServices.COMException w Microsoft.ManagementConsole.Interop.IWaitDialog.CompleteRequest() w Microsoft.ManagementConsole.Executive.WaitDialog.InnerCompleteDialog() w Microsoft.ManagementConsole.Executive.WaitDialog.CompleteDialog() w Microsoft.ManagementConsole.Executive.SnapInInitializationOperation.TerminateWaitDialog() w Microsoft.ManagementConsole.Executive.Operation.OnThreadTransfer(Microsoft.ManagementConsole.Executive.SimpleOperationCallback) Informacje o wyjątku: System.Reflection.TargetInvocationException w Microsoft.ManagementConsole.Executive.MmcThreadMessageWindow.OnThreadException(System.Exception) w System.Windows.Forms.NativeWindow.Callback(IntPtr, Int32, IntPtr, IntPtr) Error: (11/19/2017 07:14:15 PM) (Source: MSSQLSERVER) (EventID: 3409) (User: ) Description: -1 Error: (11/19/2017 07:14:15 PM) (Source: MSSQLSERVER) (EventID: 8310) (User: ) Description: Global\SQL_110_MEMOBJ_24_MSSQLSERVER_0 Error: (11/19/2017 07:08:16 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: dllhost.exe10.0.15063.0216c01d3616140a1ac9915C:\Windows\System32\dllhost.exe889bd828-7336-456c-9d5f-a3e29a7c285e CodeIntegrity Errors: =================================== Date: 2017-11-15 12:51:18.458 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvsmwu.inf_amd64_40e2f893a8ddfad8\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-11-13 12:51:34.939 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvsmwu.inf_amd64_40e2f893a8ddfad8\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-11-09 14:07:43.920 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvsmwu.inf_amd64_40e2f893a8ddfad8\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-11-05 17:07:55.437 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvsmwu.inf_amd64_40e2f893a8ddfad8\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-10-23 20:04:41.100 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvsmwu.inf_amd64_40e2f893a8ddfad8\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-10-11 14:41:59.033 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvsmwu.inf_amd64_40e2f893a8ddfad8\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-09-20 15:16:19.606 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvsmwu.inf_amd64_40e2f893a8ddfad8\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-09-15 14:26:12.159 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvsmwu.inf_amd64_40e2f893a8ddfad8\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-08-24 17:53:32.555 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvsmwu.inf_amd64_40e2f893a8ddfad8\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-07-12 16:43:53.695 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvsmwu.inf_amd64_40e2f893a8ddfad8\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Memory info =========================== Processor: Intel(R) Core(TM) i5-3210M CPU @ 2.50GHz Percentage of memory in use: 33% Total physical RAM: 8079.39 MB Available physical RAM: 5356.68 MB Total Virtual: 9359.39 MB Available Virtual: 6358.3 MB ==================== Drives ================================ Drive b: (Dysk lokalny) (Fixed) (Total:488.28 GB) (Free:21.37 GB) NTFS Drive c: () (Fixed) (Total:415.11 GB) (Free:52.2 GB) NTFS Drive e: (Mobile Partner) (CDROM) (Total:0.03 GB) (Free:0 GB) CDFS Drive g: () (Removable) (Total:14.63 GB) (Free:14.63 GB) FAT32 ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: B3DC33BE) Partition: GPT Partition Type. ======================================================== Disk: 1 (Size: 14.6 GB) (Disk ID: 00000000) Partition: GPT Partition Type. ==================== End of log ============================