Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 15.09.2018 Uruchomiony przez Futro (19-09-2018 00:46:22) Uruchomiony z C:\Users\Futro\Desktop Windows 10 Pro Wersja 1803 17134.285 (X64) (2018-05-16 21:39:52) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-2106114458-2818333635-434725237-500 - Administrator - Disabled) Futro (S-1-5-21-2106114458-2818333635-434725237-1001 - Administrator - Enabled) => C:\Users\Futro Gość (S-1-5-21-2106114458-2818333635-434725237-501 - Limited - Disabled) Konto domyślne (S-1-5-21-2106114458-2818333635-434725237-503 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-2106114458-2818333635-434725237-504 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: AVG Antivirus (Enabled - Up to date) {C50510DE-367A-330C-FD5C-556ACFB11243} AS: AVG Antivirus (Enabled - Up to date) {7E64F13A-1040-3C82-C7EC-6E18B43658FE} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: AVG Antivirus (Enabled) {FD3E91FB-7C15-3254-D603-FC5F31625538} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) 4K YouTube to MP3 3.3 (HKLM-x32\...\{C69BC04F-DABD-4723-9921-09905F977F0C}) (Version: 3.3.7.1819 - Open Media LLC) Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 18.011.20058 - Adobe Systems Incorporated) Adobe Flash Player 31 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 31.0.0.108 - Adobe Systems Incorporated) Aktualizacje NVIDIA 31.1.10.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 31.1.10.0 - NVIDIA Corporation) Hidden Audacity 2.2.2 (HKLM-x32\...\Audacity_is1) (Version: 2.2.2 - Audacity Team) AVG (HKLM\...\{136B57DF-DA9E-4361-A165-09AB4422BCD1}) (Version: 1.231.3 - AVG Technologies) Hidden AVG Internet Security (HKLM-x32\...\AVG Antivirus) (Version: 18.6.3066 - AVG Technologies) AVG PC TuneUp (HKLM-x32\...\{F0A7F6FC-97BC-4D27-B33B-6E1EFE1BB42D}) (Version: 16.78.2 - AVG Technologies) Hidden AVG PC TuneUp (HKLM-x32\...\AVG PC TuneUp) (Version: 16.78.3.33194 - AVG Technologies) AVG Secure VPN (HKLM\...\{078F51FA-D92F-419A-9E69-08BC59265F7E}_is1) (Version: 1.1.588.1 - AVG) AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.3.7.452 - AVG Technologies) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) CCleaner (HKLM\...\CCleaner) (Version: 5.46 - Piriform) Discord (HKU\S-1-5-21-2106114458-2818333635-434725237-1001\...\Discord) (Version: 0.0.301 - Discord Inc.) DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 397.64 - NVIDIA Corporation) Hidden FMW 1 (HKLM\...\{4CC5FB14-3F4D-4FA8-B921-00A9B40145C4}) (Version: 1.227.45 - AVG Technologies) Hidden foobar2000 v1.3.14 (HKLM-x32\...\foobar2000) (Version: 1.3.14 - Peter Pawlowski) Genesis GX44 (HKLM-x32\...\{D218B440-C7C5-4608-8BD6-F6448523EE83}_is1) (Version: 1.0 - Genesis GX44 Gaming Mouse) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 65.0.3325.181 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden Java 8 Update 151 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180151F0}) (Version: 8.0.1510.12 - Oracle Corporation) Java 8 Update 161 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180161F0}) (Version: 8.0.1610.12 - Oracle Corporation) Java 8 Update 172 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180172F0}) (Version: 8.0.1720.11 - Oracle Corporation) Java 8 Update 181 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180181F0}) (Version: 8.0.1810.13 - Oracle Corporation) LibreOffice 5.3.1.2 (HKLM-x32\...\{6E0E33C7-0706-4174-BCF2-8E7343E7F311}) (Version: 5.3.1.2 - The Document Foundation) Malwarebytes (wersja 3.5.1.2522) (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.5.1.2522 - Malwarebytes) Microsoft OneDrive (HKU\S-1-5-21-2106114458-2818333635-434725237-1001\...\OneDriveSetup.exe) (Version: 18.151.0729.0006 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Mozilla Firefox 62.0 (x64 pl) (HKLM\...\Mozilla Firefox 62.0 (x64 pl)) (Version: 62.0 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 54.0 - Mozilla) NVIDIA GeForce Experience 3.13.1.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.13.1.30 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation) NVIDIA Sterownik 3D Vision 397.64 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 397.64 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.37.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.37.1 - NVIDIA Corporation) NVIDIA Sterownik graficzny 397.64 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 397.64 - NVIDIA Corporation) NVIDIA Sterownik kontrolera 3D Vision 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation) Panel sterowania NVIDIA 397.64 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 397.64 - NVIDIA Corporation) Hidden Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.3 - VideoLAN) Vulkan Run Time Libraries 1.1.70.0 (HKLM\...\VulkanRT1.1.70.0) (Version: 1.1.70.0 - LunarG, Inc.) Hidden WinRAR 5.40 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Brak pliku ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShA64.dll [2018-08-31] (AVG Technologies CZ, s.r.o.) ContextMenuHandlers1: [AVG Shredder Shell Extension] -> {4858E7D9-8E12-45a3-B6A3-1CD128C9D403} => C:\Program Files (x86)\AVG\AVG PC TuneUp\SDShelEx-x64.dll [2018-07-26] (AVG Technologies CZ, s.r.o.) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-09-19] (Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-09-19] (Alexander Roshal) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes) ContextMenuHandlers4: [AVG Disk Space Explorer Shell Extension] -> {4838CD50-7E5D-4811-9B17-C47A85539F28} => C:\Program Files (x86)\AVG\AVG PC TuneUp\DseShExt-x64.dll [2018-07-26] (AVG Technologies CZ, s.r.o.) ContextMenuHandlers4: [AVG Shredder Shell Extension] -> {4858E7D9-8E12-45a3-B6A3-1CD128C9D403} => C:\Program Files (x86)\AVG\AVG PC TuneUp\SDShelEx-x64.dll [2018-07-26] (AVG Technologies CZ, s.r.o.) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-05-07] (NVIDIA Corporation) ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShA64.dll [2018-08-31] (AVG Technologies CZ, s.r.o.) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-09-19] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-09-19] (Alexander Roshal) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {01D27065-9B23-4F19-BEF5-954978ACBBAD} - System32\Tasks\Antivirus Emergency Update => C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe [2018-08-31] (AVG Technologies CZ, s.r.o.) Task: {1606320D-5D76-453C-84F6-F51B7522A5F3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-08-20] (Google Inc.) Task: {1AF0062D-B671-4614-A90A-A5393025FF7A} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-05-07] (NVIDIA Corporation) Task: {24D13B59-637C-41A3-8D7F-D4BD819953FB} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-08-24] (Piriform Ltd) Task: {299CCE14-0501-4949-990D-2F3984FB02A9} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-05-07] (NVIDIA Corporation) Task: {2AB717BD-318F-454C-9A3F-181E4B70B95C} - System32\Tasks\AVG Secure VPN Update => C:\Program Files (x86)\AVG\Secure VPN\VpnUpdate.exe [2018-07-30] (AVG Technologies CZ, s.r.o.) Task: {2C34F8B4-FE31-41CF-8361-F4EF0B439C25} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_108_Plugin.exe [2018-09-12] (Adobe Systems Incorporated) Task: {46E61844-B261-42ED-A0F2-23BA702379B6} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] () Task: {6704D239-01E6-4F61-9673-80249984CE58} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-05-07] (NVIDIA Corporation) Task: {7146E59A-5C52-42ED-BCFB-41C61DEFC1C8} - \Microsoft\Windows\UNP\RunCampaignManager -> Brak pliku <==== UWAGA Task: {8F9C8D95-4675-4BCB-9803-CD2CB1ACAAA8} - System32\Tasks\GenesisGX44-TaskPlan => C:\Program Files\GenesisGX44\GenesisGX44.exe [2015-04-23] (Natec) Task: {9D945BD4-860B-4735-8CDB-198B36687B87} - System32\Tasks\{0C53FD69-33A0-479E-8C02-54D8D5E72479} => "c:\program files (x86)\mozilla firefox\firefox.exe" hxxps://ui.skype.com/ui/0/7.32.0.103/pl/abandoninstall?source=lightinstaller&page=tsInstall Task: {ACA92AE7-630A-40D0-9C1F-55712B06E2DF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-08-20] (Google Inc.) Task: {B685883A-A0B4-4FB6-858E-B70E7043D67F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-14] (Adobe Systems Incorporated) Task: {C87EC45D-DEA7-46F8-93D3-7C76E3C853BE} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-05-07] (NVIDIA Corporation) Task: {CFA16E10-63F3-41C2-A892-E79DAD36B113} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-05-07] (NVIDIA Corporation) Task: {DB61EC95-205A-42F5-8D41-B9FB1FFFD0B9} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe [2018-07-26] (AVG Technologies CZ, s.r.o.) Task: {E022DDF8-054C-484B-B6BF-EABD2CE5B19B} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2018-05-07] (NVIDIA Corporation) Task: {E15B4EDC-8DCB-4B9F-8E55-74E9288A2A31} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2018-05-07] (NVIDIA Corporation) Task: {E4C28EED-4B45-4D1E-9C93-818C6AF106E6} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-05-07] (NVIDIA Corporation) Task: {E72B2522-DF60-40FC-8793-77CCBAEB80F8} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-08-24] (Piriform Ltd) Task: {EE0CEF09-86B0-4F8C-861C-D6FEBAFC6C41} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2018-07-07] (Oracle Corporation) Task: {F6106BDB-93CA-44A9-82F9-B6177EB49E67} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2018-09-15] (AVG Technologies CZ, s.r.o.) Task: {FCE5E1A3-CFF7-4763-8900-930FC0FF698A} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-09-12] (Adobe Systems Incorporated) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ==================== Załadowane moduły (filtrowane) ============== 2017-01-24 19:34 - 2018-05-07 23:04 - 001267648 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2018-09-19 00:04 - 2018-07-24 12:32 - 002681424 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll 2018-04-12 01:34 - 2018-04-12 01:34 - 000491744 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll 2018-04-12 01:34 - 2018-04-12 01:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll 2018-04-12 01:34 - 2018-04-12 01:34 - 002759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll 2018-09-13 08:57 - 2018-08-31 05:12 - 002185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2018-08-31 10:41 - 2018-09-05 22:14 - 001055520 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\SDL2.dll 2018-08-31 10:41 - 2018-08-27 22:52 - 098006816 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libcef.dll 2018-08-31 10:41 - 2018-08-27 22:52 - 004443424 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libglesv2.dll 2018-08-31 10:41 - 2018-08-27 22:52 - 000100128 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libegl.dll 2018-08-31 12:21 - 2018-08-31 12:21 - 000574192 _____ () c:\program files (x86)\avg\antivirus\streamback.dll 2017-01-24 19:34 - 2018-05-07 23:04 - 001041344 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll 2017-01-24 19:34 - 2018-05-07 23:04 - 081563584 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll 2018-06-11 13:06 - 2018-09-05 22:14 - 000876320 _____ () C:\Program Files (x86)\Steam\SDL2.dll 2018-06-11 13:06 - 2016-09-01 03:02 - 004969248 _____ () C:\Program Files (x86)\Steam\v8.dll 2018-06-11 13:06 - 2018-09-08 22:31 - 002646304 _____ () C:\Program Files (x86)\Steam\video.dll 2018-06-11 13:06 - 2016-09-01 03:02 - 001563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll 2018-06-11 13:06 - 2016-09-01 03:02 - 001195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll 2018-06-11 13:06 - 2017-12-20 03:43 - 005137696 _____ () C:\Program Files (x86)\Steam\libavcodec-57.dll 2018-06-11 13:06 - 2017-12-20 03:43 - 000695584 _____ () C:\Program Files (x86)\Steam\libavformat-57.dll 2018-06-11 13:06 - 2017-12-20 03:43 - 000351520 _____ () C:\Program Files (x86)\Steam\libavresample-3.dll 2018-06-11 13:06 - 2017-12-20 03:43 - 000847136 _____ () C:\Program Files (x86)\Steam\libavutil-55.dll 2018-06-11 13:06 - 2017-12-20 03:43 - 000783648 _____ () C:\Program Files (x86)\Steam\libswscale-4.dll 2018-06-11 13:06 - 2018-09-08 22:31 - 001015584 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL 2018-06-11 13:06 - 2016-07-05 00:17 - 000266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll 2018-03-21 18:06 - 2018-03-21 18:06 - 067127976 _____ () C:\Program Files (x86)\AVG\Antivirus\libcef.dll 2018-05-11 14:32 - 2018-05-07 23:04 - 002478016 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\swiftshader\libglesv2.dll 2018-05-11 14:32 - 2018-05-07 23:04 - 000125376 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\swiftshader\libegl.dll 2018-07-01 01:16 - 2018-07-01 01:16 - 067127976 _____ () C:\Program Files (x86)\AVG\Secure VPN\libcef.dll 2017-01-26 18:17 - 2017-01-26 18:17 - 048920064 _____ () C:\Program Files (x86)\AVG\UiDll\2623\libcef.dll 2018-01-25 17:37 - 2018-01-25 17:37 - 000186992 _____ () C:\Program Files (x86)\AVG\Secure VPN\OpenVpn\liblzo2-2.dll 2018-01-25 17:36 - 2018-01-25 17:36 - 000123064 _____ () C:\Program Files (x86)\AVG\Secure VPN\OpenVpn\libpkcs11-helper-1.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2015-07-31 00:42 - 2018-09-18 23:51 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-2106114458-2818333635-434725237-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Futro\Desktop\Audi-A4-B7-Avant-Tuning-3.jpg DNS Servers: 37.8.214.2 - 31.11.202.254 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKU\S-1-5-21-2106114458-2818333635-434725237-1001\...\StartupApproved\Run: => "Discord" HKU\S-1-5-21-2106114458-2818333635-434725237-1001\...\StartupApproved\Run: => "OneDrive" ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{E7C5B00D-8ACA-4C9C-98C5-5720441D15F5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{5ABFA3D5-C8EA-4F45-ACD2-2CAF763A0A6A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{4D8F03CC-DBAD-4836-9480-9565BB8B7B6B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{8191D1D9-E6AE-4AE4-8124-13634F994D08}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{0512BCC5-8108-4952-B56C-87FCA5B6FB92}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{69CE0F58-D8C2-4253-BDA0-866DC799DA85}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{E6E84224-13CA-4786-8D92-DB876F9D3379}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{42C28DA4-1617-44CB-9223-F1B7ABDD3D66}] => (Block) G:\diablo iii\x64\diablo iii64.exe FirewallRules: [{C401C190-88C1-4A05-9D3E-A58C18BC6C76}] => (Block) G:\diablo iii\x64\diablo iii64.exe FirewallRules: [{1FDE5E90-AA91-4F03-8ED9-2C0D41FA4E68}] => (Block) G:\overwatch\overwatch.exe FirewallRules: [{DE5A2045-6F1B-4DFC-9F03-A678FFB5E5A2}] => (Block) G:\overwatch\overwatch.exe FirewallRules: [UDP Query User{577E23B3-D37F-41CC-9B49-0A5082F98DA3}G:\overwatch\overwatch.exe] => (Allow) G:\overwatch\overwatch.exe FirewallRules: [TCP Query User{979DFE5F-9822-4172-8FBD-3546E6456016}G:\overwatch\overwatch.exe] => (Allow) G:\overwatch\overwatch.exe FirewallRules: [UDP Query User{17087561-CBCB-46E0-B427-4E1E4DD9A01B}G:\diablo iii\x64\diablo iii64.exe] => (Allow) G:\diablo iii\x64\diablo iii64.exe FirewallRules: [TCP Query User{4F1547D6-4FF5-46BA-92F4-B9908B3DB7FF}G:\diablo iii\x64\diablo iii64.exe] => (Allow) G:\diablo iii\x64\diablo iii64.exe FirewallRules: [{A0219865-CD26-4076-8B35-55F66CD048F2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe FirewallRules: [{CEDC7212-8412-46A7-8084-F3FF2E5CCDDA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe FirewallRules: [{CFE21E13-EF2E-4B8C-8BF3-5F5952D2959C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{7272878F-A73D-4387-B9BE-6B216DB6A108}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [TCP Query User{82007842-85EB-41BC-BB8F-4BB5AA8EA038}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [UDP Query User{B1271192-9D27-4453-8F3C-85EAF0FB8B94}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [{719D497E-5444-47E1-8F4E-DD1037F12537}] => (Block) %ProgramFiles% (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{90754234-492C-4815-BDF1-19C2980E4627}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{2D0DF2DA-6EFD-40DC-84C9-B58E11A672BE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{768E3D6D-F349-4C70-9CC3-4160E91915A6}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{13527FDF-D62C-45DD-B750-C770018E57B3}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{2BBCA6DD-D09A-4ADB-B43C-470A89DE95F0}] => (Allow) G:\SteamLibrary\steamapps\common\Realm Royale\Binaries\Win64\RealmEAC.exe FirewallRules: [{CB61B266-FF1C-456B-9E10-293890CE4D73}] => (Allow) G:\SteamLibrary\steamapps\common\Realm Royale\Binaries\Win64\RealmEAC.exe FirewallRules: [{94A86ADA-2062-4157-AA40-68DE2AFD7F17}] => (Allow) G:\SteamLibrary\steamapps\common\Golf With Your Friends\Golf With Your Friends.exe FirewallRules: [{2176D064-E8DF-40BA-9A84-EE4F59666FE1}] => (Allow) G:\SteamLibrary\steamapps\common\Golf With Your Friends\Golf With Your Friends.exe FirewallRules: [{2BDAF197-7094-40A7-9077-83F217B291E8}] => (Allow) G:\SteamLibrary\steamapps\common\APB Reloaded\Launcher\APBLauncher.exe FirewallRules: [{7EB425A0-36F7-4891-AF95-6207139AC32A}] => (Allow) G:\SteamLibrary\steamapps\common\APB Reloaded\Launcher\APBLauncher.exe FirewallRules: [{1539AEFE-74FB-430A-85B7-B32556A7E6A4}] => (Allow) G:\SteamLibrary\steamapps\common\APB Reloaded\Binaries\APB.exe FirewallRules: [{D78F0C8B-8AB2-42A9-9C7C-F2CCA1ED7A16}] => (Allow) G:\SteamLibrary\steamapps\common\APB Reloaded\Binaries\APB.exe FirewallRules: [{477B7128-291A-48FC-809C-268887436E94}] => (Allow) G:\SteamLibrary\steamapps\common\APB Reloaded\Binaries\APB_BE.exe FirewallRules: [{3B414E5A-C87C-47BA-94EF-C68EE39E0319}] => (Allow) G:\SteamLibrary\steamapps\common\APB Reloaded\Binaries\APB_BE.exe FirewallRules: [{1C65F5B5-6EB3-4DA6-91D5-DFDC52FE3D19}] => (Allow) G:\SteamLibrary\steamapps\common\APB Reloaded\Binaries\VivoxVoiceService.exe FirewallRules: [{3FEE50DB-EA94-4959-BEE4-0316E1E42FBD}] => (Allow) G:\SteamLibrary\steamapps\common\APB Reloaded\Binaries\VivoxVoiceService.exe FirewallRules: [{3F05CBA1-B960-4355-B4A7-F8EE4436E4EA}] => (Allow) G:\SteamLibrary\steamapps\common\The Binding Of Isaac\Isaac.exe FirewallRules: [{0120BED4-9FAE-4A42-A328-E17F7F047358}] => (Allow) G:\SteamLibrary\steamapps\common\The Binding Of Isaac\Isaac.exe FirewallRules: [{B03B8558-51D8-4061-B5F3-E6C4ECCDB5DD}] => (Allow) C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe FirewallRules: [{F1BA570A-B723-4912-A2E5-820DDC199733}] => (Allow) C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe FirewallRules: [{4EAC2E13-068B-458D-9832-CAA33EC6653F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe FirewallRules: [{71E8DF17-3931-4C49-B6FA-4DD7385A0B4D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe FirewallRules: [{3000721D-D32D-446F-8AC9-2FF4DD81DC9E}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe FirewallRules: [{22187590-E2AE-4DDF-B1B9-AE706668F95E}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe ==================== Punkty Przywracania systemu ========================= UWAGA: Przywracanie systemu jest wyłączone ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: Standardowa klawiatura PS/2 Description: Standardowa klawiatura PS/2 Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318} Manufacturer: (Klawiatury standardowe) Service: i8042prt Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Mysz Microsoft PS/2 Description: Mysz Microsoft PS/2 Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: i8042prt Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (09/19/2018 12:35:10 AM) (Source: Steam Client Service) (EventID: 1) (User: ) Description: Error: Failed to add firewall exception for C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe Dziennik System: ============= Error: (09/19/2018 12:35:11 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-2ELHLA3) Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Aktywacja do aplikacji serwera COM z identyfikatorem klasy CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} i identyfikatorem aplikacji APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} użytkownikowi DESKTOP-2ELHLA3\Futro o identyfikatorze zabezpieczeń SID (S-1-5-21-2106114458-2818333635-434725237-1001) z adresu LocalHost (użycie LRPC) działającemu w kontenerze aplikacji o identyfikatorze SID Niedostępny (Niedostępny). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. Error: (09/19/2018 12:34:16 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-2ELHLA3) Description: Serwer {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (09/19/2018 12:34:16 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-2ELHLA3) Description: Serwer {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (09/19/2018 12:34:16 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-2ELHLA3) Description: Serwer {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} nie zarejestrował się w modelu DCOM w wymaganym czasie. CodeIntegrity: =================================== Date: 2018-05-30 16:44:13.055 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. Date: 2018-05-30 16:44:13.054 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM) i5-6500 CPU @ 3.20GHz Procent pamięci w użyciu: 30% Całkowita pamięć fizyczna: 8139.46 MB Dostępna pamięć fizyczna: 5643.4 MB Całkowita pamięć wirtualna: 12491.46 MB Dostępna pamięć wirtualna: 8685.38 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:110.83 GB) (Free:22.89 GB) NTFS Drive d: () (Fixed) (Total:146.04 GB) (Free:145.92 GB) NTFS Drive f: (Futro) (Fixed) (Total:146.48 GB) (Free:58.8 GB) NTFS Drive g: () (Fixed) (Total:172.79 GB) (Free:131.4 GB) NTFS \\?\Volume{f09c6be2-0000-0000-0000-100000000000}\ (Zastrzeżone przez system) (Fixed) (Total:0.49 GB) (Free:0.45 GB) NTFS \\?\Volume{f09c6be2-0000-0000-0000-90d41b000000}\ () (Fixed) (Total:0.47 GB) (Free:0.08 GB) NTFS \\?\Volume{facafaca-0000-0000-0000-b08224000000}\ () (Fixed) (Total:0.44 GB) (Free:0.1 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: F09C6BE2) Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=110.8 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=478 MB) - (Type=27) ======================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: FACAFACA) Partition 1: (Active) - (Size=146 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=450 MB) - (Type=27) Partition 3: (Not Active) - (Size=319.3 GB) - (Type=0F Extended) ==================== Koniec Addition.txt ============================