Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 14-12-2019 Uruchomiony przez Mateusz (21-12-2019 13:18:20) Uruchomiony z E:\Internet\FRST Windows 10 Education Wersja 1809 17763.914 (X64) (2019-05-05 15:04:11) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-742678756-2304139027-1524245951-500 - Administrator - Disabled) Gość (S-1-5-21-742678756-2304139027-1524245951-501 - Limited - Disabled) Konto domyślne (S-1-5-21-742678756-2304139027-1524245951-503 - Limited - Disabled) Mateusz (S-1-5-21-742678756-2304139027-1524245951-1001 - Administrator - Enabled) => C:\Users\Mateusz WDAGUtilityAccount (S-1-5-21-742678756-2304139027-1524245951-504 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKU\S-1-5-21-742678756-2304139027-1524245951-1001\...\uTorrent) (Version: 3.5.5.45395 - BitTorrent Inc.) 7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov) A Way Out (HKLM-x32\...\A Way Out_is1) (Version: - ) Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 19.021.20061 - Adobe Systems Incorporated) Adobe Illustrator 2019 (HKLM-x32\...\ILST_23_0_3) (Version: 23.0.3 - Adobe Systems Incorporated) Adobe InDesign CC 2014 (HKLM-x32\...\{CCDCB9C4-72BA-1014-A3F8-D123F2F18BC2}) (Version: 10.0 - Adobe Systems Incorporated) Adobe Photoshop CC 2019 (HKLM-x32\...\PHSP_20_0_3) (Version: 20.0.3 - Adobe Systems Incorporated) Aktualizacje NVIDIA 38.0.2.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.2.0 - NVIDIA Corporation) Hidden AORUS ENGINE (HKLM-x32\...\AORUS ENGINE_is1) (Version: 1.7.5.0 - GIGABYTE Technology Co.,Inc.) Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 19.8.2393 - AVAST Software) CCleaner (HKLM\...\CCleaner) (Version: 5.58 - Piriform) cFosSpeed v10.27 (HKLM\...\cFosSpeed) (Version: 10.27 - cFos Software GmbH, Bonn) CORSAIR iCUE Software (HKLM-x32\...\{5FC3591B-B144-4C9B-A454-2E1A505E5278}) (Version: 3.23.66 - Corsair) Darksiders Genesis (HKU\S-1-5-21-742678756-2304139027-1524245951-1001\...\Darksiders Genesis) (Version: - HOODLUM) Epic Games Launcher (HKLM-x32\...\{FFE08CF5-9092-48EA-85FD-590725B78B21}) (Version: 1.1.236.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden FIFA 19 (HKLM-x32\...\{3391E07D-8484-4124-817E-FCBDA859FD62}) (Version: 1.0.58.64628 - Electronic Arts) Firewatch (HKLM-x32\...\Firewatch_R.G. Mechanics_is1) (Version: - R.G. Mechanics, markfiter) Futuremark SystemInfo (HKLM-x32\...\{D22F5556-1049-4406-B8FD-AE7721679179}) (Version: 5.25.802.0 - Futuremark) GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 79.0.3945.88 - Google LLC) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.421 - Google LLC) Hidden Hellblade: Senua's Sacrifice (HKLM\...\aGVsbGJsYWRlc2VudWFzc2FjcmlmaWNl_is1) (Version: 1 - ) HP DeskJet 2130 series — podstawowe oprogramowanie urządzenia (HKLM\...\{A69F1024-5FCE-43BC-A860-427D8418435B}) (Version: 40.11.1124.17107 - HP Inc.) HP DeskJet 2130 series Pomoc (HKLM-x32\...\{EB0F877F-000D-4FCA-81E5-B7689B2CEB77}) (Version: 35.0.0 - Hewlett Packard) HP Dropbox Plugin (HKLM-x32\...\{8A3F1F3A-A88B-4090-83C6-3C4CBDE3F8CC}) (Version: 36.0.41.58587 - HP) HP Google Drive Plugin (HKLM-x32\...\{958F5926-D507-4C87-B83B-8D6CA34195D9}) (Version: 36.0.41.58587 - HP) Intel Extreme Tuning Utility (HKLM-x32\...\{79E98F35-0524-446C-8EF5-4E863C4D87E2}) (Version: 6.2.0.24 - Intel Corporation) Hidden Intel Extreme Tuning Utility (HKLM-x32\...\{7afa48c7-9901-40fa-8f9b-f0707e2bc5b6}) (Version: 6.2.0.24 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1068 - Intel Corporation) Intel(R) Network Connections 23.1.100.0 (HKLM\...\PROSetDX) (Version: 23.1.100.0 - Intel) Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1633.3 - Intel Corporation) Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.49.166.0 - Intel Corporation) Hidden Intel(R) Trusted Connect Services Client (HKLM-x32\...\{df682aff-4294-4ad1-aaa7-276931d5781f}) (Version: 1.49.166.0 - Intel Corporation) Hidden IrfanView 4.53 (64-bit) (HKLM\...\IrfanView64) (Version: 4.53 - Irfan Skiljan) Journey (HKLM-x32\...\Journey_is1) (Version: - ) K-Lite Codec Pack 14.9.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 14.9.0 - KLCP) KMPlayer (HKLM\...\The KMPlayer) (Version: 4.2.2.34 - PandoraTV) Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Magicka 2 v1.0 / RePack by Azaq (HKLM-x32\...\Magicka 2_is1) (Version: - ) Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-742678756-2304139027-1524245951-1001\...\OneDriveSetup.exe) (Version: 19.192.0926.0012 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.22.27821 (HKLM-x32\...\{6361b579-2795-4886-b2a8-53d5239b6452}) (Version: 14.22.27821.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.23.27820 (HKLM-x32\...\{852adda4-4c78-4a38-b583-c0b360a329d6}) (Version: 14.23.27820.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821 (HKLM-x32\...\{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 - Microsoft Corporation) MSI Command Center (HKLM-x32\...\{85A2564E-9ED9-448A-91E4-B9211EE58A08}_is1) (Version: 2.0.0.56 - MSI) MSI Gaming APP (HKLM-x32\...\{E0229316-E73B-484B-B9E0-45098AB38D8C}}_is1) (Version: 6.2.0.84 - MSI) MSI Gaming Lan Manager (HKLM-x32\...\{3318282C-D4D6-4B29-BBD5-95FC34B54FF0}_is1) (Version: 1.0.0.69 - MSI) MSI Live Update 6 (HKLM-x32\...\{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1) (Version: 6.2.0.56 - MSI) MSI USB Speed Up (HKLM-x32\...\{79D5FA63-7003-4398-B882-C70ED18778D1}_is1) (Version: 1.0.0.11 - MSI) MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation) NapiProjekt (2.2.0.2399) (HKLM-x32\...\NapiProjekt_is1) (Version: - ) Narzędzia sprawdzające pakietu Microsoft Office 2016 — polski (HKLM\...\{90160000-001F-0415-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden novaPDF 8 Printer Driver (HKLM\...\{78348298-772C-42B6-A670-7906495C30BB}) (Version: 8.9.950 - Softland) novaPDF 8 SDK COM (x64) (HKLM\...\{DC8F19A6-7BE4-4274-9B07-763AFAB18506}) (Version: 8.9.950 - Softland) NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden NVIDIA GeForce Experience 3.20.1.57 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.1.57 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation) NVIDIA PhysX (HKLM-x32\...\{64F67489-76BB-4CDD-A236-F954BE774B35}) (Version: 9.09.0025 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.38.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.21 - NVIDIA Corporation) NVIDIA Sterownik graficzny 441.66 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 441.66 - NVIDIA Corporation) NVIDIA USBC Driver 1.38.831.832 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.38.831.832 - NVIDIA Corporation) Oprogramowanie mikroukładu Intel® (HKLM-x32\...\{44ded3eb-1686-46a6-9770-fd79096c29f7}) (Version: 10.1.1.45 - Intel(R) Corporation) Hidden Panel sterowania NVIDIA 441.66 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 441.66 - NVIDIA Corporation) Hidden Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8627 - Realtek Semiconductor Corp.) Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.15.182 - Rockstar Games) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.4.1 - Rockstar Games) Spotify (HKU\S-1-5-21-742678756-2304139027-1524245951-1001\...\Spotify) (Version: 1.1.21.1654.g282a2807 - Spotify AB) Star Wars Jedi Fallen Order (HKLM-x32\...\Star Wars Jedi Fallen Order_is1) (Version: - ) STATISTICA 13.3.721.1 64-bit (PL) (HKLM\...\{34f34ebe-ba2c-46f7-829f-86d044675145}) (Version: 13.3.721.1 - TIBCO Software Inc.) Statistica PDF (HKLM\...\{3ECD0A45-0A6A-4467-9F5C-96EDA4E805E4}) (Version: 8.9.950 - Softland) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version: - TechPowerUp) The Godfather II version 1.0.764.0 (HKLM-x32\...\The Godfather II_is1) (Version: 1.0.764.0 - KNIGHT) The Sims 4 v.1.56.52.1020 (HKLM-x32\...\The Sims 4_is1) (Version: - ) TIDAL (HKU\S-1-5-21-742678756-2304139027-1524245951-1001\...\TIDAL) (Version: 2.8.0 - TIDAL Music AS) Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT) UninstallTabletDeviceDriver (HKLM\...\{39089688-F09E-4DAD-8C80-647D3DF68630}_is1) (Version: v13.14.13.170626 - ) Update for Skype for Business 2016 (KB3114846) 64-Bit Edition (HKLM\...\{90160000-0011-0000-1000-0000000FF1CE}_Office16.PROPLUS_{286F464B-2FDF-4107-83A5-DEB08D2AD268}) (Version: - Microsoft) Update for Skype for Business 2016 (KB3114846) 64-Bit Edition (HKLM\...\{90160000-00C1-0000-1000-0000000FF1CE}_Office16.PROPLUS_{286F464B-2FDF-4107-83A5-DEB08D2AD268}) (Version: - Microsoft) Update for Skype for Business 2016 (KB3114846) 64-Bit Edition (HKLM\...\{90160000-012B-0415-1000-0000000FF1CE}_Office16.PROPLUS_{286F464B-2FDF-4107-83A5-DEB08D2AD268}) (Version: - Microsoft) WinSCP 5.15.1 (HKLM-x32\...\winscp3_is1) (Version: 5.15.1 - Martin Prikryl) Wondershare Helper Compact 2.6.0 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.6.0 - Wondershare) Packages: ========= HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_105.1.623.0_x64__v10z8vjag6ke6 [2019-11-15] (HP Inc.) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-04-30] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-04-30] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.5.12061.0_x64__8wekyb3d8bbwe [2019-12-11] (Microsoft Studios) [MS Ad] MSN Pogoda -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.34.13393.0_x64__8wekyb3d8bbwe [2019-12-18] (Microsoft Corporation) [MS Ad] ==================== Niestandardowe rejestracje CLSID (filtrowane): ============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-02] (AVAST Software s.r.o. -> AVAST Software) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Brak podpisu cyfrowego] ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-02] (AVAST Software s.r.o. -> AVAST Software) ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-02] (AVAST Software s.r.o. -> AVAST Software) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Brak podpisu cyfrowego] ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-12-07] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Brak podpisu cyfrowego] ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-02] (AVAST Software s.r.o. -> AVAST Software) ==================== Codecs (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Drivers32-x32: [vidc.XVID] => xvidvfw.dll HKLM\...\Drivers32-x32: [VIDC.VP80] => vp8vfw.dll ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ShortcutWithArgument: C:\Users\Mateusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikacje Chrome\Pulpit zdalny Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=gbchcmhmhahfdphkhkmpfmihenigjmpp ==================== Załadowane moduły (filtrowane) ============= 2019-07-08 17:31 - 2016-07-21 09:54 - 000137728 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll 2019-07-08 17:31 - 2017-09-12 09:34 - 001506304 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll 2019-11-29 13:42 - 2019-11-29 13:42 - 000209408 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\quazip.dll 2019-11-29 13:41 - 2019-11-29 13:41 - 000101376 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\zlib.dll 2019-04-30 10:43 - 2005-07-18 12:43 - 000160256 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\MSI\Live Update\unrar.dll 2019-04-30 11:01 - 2016-04-20 13:12 - 000772608 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\Lib\USB_DLL.dll 2019-12-10 21:18 - 2019-12-10 21:18 - 000048128 _____ () [Brak podpisu cyfrowego] C:\Users\Mateusz\AppData\Local\GOG.com\Galaxy\plugins\installed\epic_24d5f405-7211-4198-83c4-50a6f63b1dcf\aiohttp\_frozenlist.cp37-win32.pyd 2019-12-10 21:18 - 2019-12-10 21:18 - 000036864 _____ () [Brak podpisu cyfrowego] C:\Users\Mateusz\AppData\Local\GOG.com\Galaxy\plugins\installed\epic_24d5f405-7211-4198-83c4-50a6f63b1dcf\aiohttp\_helpers.cp37-win32.pyd 2019-12-10 21:18 - 2019-12-10 21:18 - 000216064 _____ () [Brak podpisu cyfrowego] C:\Users\Mateusz\AppData\Local\GOG.com\Galaxy\plugins\installed\epic_24d5f405-7211-4198-83c4-50a6f63b1dcf\aiohttp\_http_parser.cp37-win32.pyd 2019-12-10 21:18 - 2019-12-10 21:18 - 000032256 _____ () [Brak podpisu cyfrowego] C:\Users\Mateusz\AppData\Local\GOG.com\Galaxy\plugins\installed\epic_24d5f405-7211-4198-83c4-50a6f63b1dcf\aiohttp\_http_writer.cp37-win32.pyd 2019-12-10 21:18 - 2019-12-10 21:18 - 000022528 _____ () [Brak podpisu cyfrowego] C:\Users\Mateusz\AppData\Local\GOG.com\Galaxy\plugins\installed\epic_24d5f405-7211-4198-83c4-50a6f63b1dcf\aiohttp\_websocket.cp37-win32.pyd 2019-12-10 21:18 - 2019-12-10 21:18 - 000010240 _____ () [Brak podpisu cyfrowego] C:\Users\Mateusz\AppData\Local\GOG.com\Galaxy\plugins\installed\epic_24d5f405-7211-4198-83c4-50a6f63b1dcf\multidict\_istr.cp37-win32.pyd 2019-12-10 21:18 - 2019-12-10 21:18 - 000085504 _____ () [Brak podpisu cyfrowego] C:\Users\Mateusz\AppData\Local\GOG.com\Galaxy\plugins\installed\epic_24d5f405-7211-4198-83c4-50a6f63b1dcf\multidict\_multidict.cp37-win32.pyd 2019-12-10 21:18 - 2019-12-10 21:18 - 000061952 _____ () [Brak podpisu cyfrowego] C:\Users\Mateusz\AppData\Local\GOG.com\Galaxy\plugins\installed\epic_24d5f405-7211-4198-83c4-50a6f63b1dcf\psutil\_psutil_windows.cp37-win32.pyd 2019-12-10 21:18 - 2019-12-10 21:18 - 000069120 _____ () [Brak podpisu cyfrowego] C:\Users\Mateusz\AppData\Local\GOG.com\Galaxy\plugins\installed\epic_24d5f405-7211-4198-83c4-50a6f63b1dcf\yarl\_quoting.cp37-win32.pyd 2019-12-21 11:17 - 2019-12-21 11:17 - 000048128 _____ () [Brak podpisu cyfrowego] C:\Users\Mateusz\AppData\Local\GOG.com\Galaxy\plugins\installed\steam_ca27391f-2675-49b1-92c0-896d43afa4f8\aiohttp\_frozenlist.cp37-win32.pyd 2019-12-21 11:17 - 2019-12-21 11:17 - 000036864 _____ () [Brak podpisu cyfrowego] C:\Users\Mateusz\AppData\Local\GOG.com\Galaxy\plugins\installed\steam_ca27391f-2675-49b1-92c0-896d43afa4f8\aiohttp\_helpers.cp37-win32.pyd 2019-12-21 11:17 - 2019-12-21 11:17 - 000216064 _____ () [Brak podpisu cyfrowego] C:\Users\Mateusz\AppData\Local\GOG.com\Galaxy\plugins\installed\steam_ca27391f-2675-49b1-92c0-896d43afa4f8\aiohttp\_http_parser.cp37-win32.pyd 2019-12-21 11:17 - 2019-12-21 11:17 - 000032256 _____ () [Brak podpisu cyfrowego] C:\Users\Mateusz\AppData\Local\GOG.com\Galaxy\plugins\installed\steam_ca27391f-2675-49b1-92c0-896d43afa4f8\aiohttp\_http_writer.cp37-win32.pyd 2019-12-21 11:17 - 2019-12-21 11:17 - 000022528 _____ () [Brak podpisu cyfrowego] C:\Users\Mateusz\AppData\Local\GOG.com\Galaxy\plugins\installed\steam_ca27391f-2675-49b1-92c0-896d43afa4f8\aiohttp\_websocket.cp37-win32.pyd 2019-12-21 11:17 - 2019-12-21 11:17 - 000014848 _____ () [Brak podpisu cyfrowego] C:\Users\Mateusz\AppData\Local\GOG.com\Galaxy\plugins\installed\steam_ca27391f-2675-49b1-92c0-896d43afa4f8\google\protobuf\internal\_api_implementation.cp37-win32.pyd 2019-12-21 11:17 - 2019-12-21 11:17 - 001055232 _____ () [Brak podpisu cyfrowego] C:\Users\Mateusz\AppData\Local\GOG.com\Galaxy\plugins\installed\steam_ca27391f-2675-49b1-92c0-896d43afa4f8\google\protobuf\pyext\_message.cp37-win32.pyd 2019-12-21 11:17 - 2019-12-21 11:17 - 000133632 _____ () [Brak podpisu cyfrowego] C:\Users\Mateusz\AppData\Local\GOG.com\Galaxy\plugins\installed\steam_ca27391f-2675-49b1-92c0-896d43afa4f8\lxml\_elementpath.cp37-win32.pyd 2019-12-21 11:17 - 2019-12-21 11:17 - 003499008 _____ () [Brak podpisu cyfrowego] C:\Users\Mateusz\AppData\Local\GOG.com\Galaxy\plugins\installed\steam_ca27391f-2675-49b1-92c0-896d43afa4f8\lxml\etree.cp37-win32.pyd 2019-12-21 11:17 - 2019-12-21 11:17 - 000186880 _____ () [Brak podpisu cyfrowego] C:\Users\Mateusz\AppData\Local\GOG.com\Galaxy\plugins\installed\steam_ca27391f-2675-49b1-92c0-896d43afa4f8\lxml\html\clean.cp37-win32.pyd 2019-12-21 11:17 - 2019-12-21 11:17 - 000033792 _____ () [Brak podpisu cyfrowego] C:\Users\Mateusz\AppData\Local\GOG.com\Galaxy\plugins\installed\steam_ca27391f-2675-49b1-92c0-896d43afa4f8\multidict\_multidict.cp37-win32.pyd 2019-12-21 11:17 - 2019-12-21 11:17 - 000009728 _____ () [Brak podpisu cyfrowego] C:\Users\Mateusz\AppData\Local\GOG.com\Galaxy\plugins\installed\steam_ca27391f-2675-49b1-92c0-896d43afa4f8\websockets\speedups.cp37-win32.pyd 2019-12-21 11:17 - 2019-12-21 11:17 - 000073216 _____ () [Brak podpisu cyfrowego] C:\Users\Mateusz\AppData\Local\GOG.com\Galaxy\plugins\installed\steam_ca27391f-2675-49b1-92c0-896d43afa4f8\yarl\_quoting.cp37-win32.pyd 2019-12-10 21:44 - 2019-12-10 21:44 - 000231424 _____ () [Brak podpisu cyfrowego] C:\Users\Mateusz\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\_yaml.cp37-win32.pyd 2019-12-10 21:44 - 2019-12-10 21:44 - 000048128 _____ () [Brak podpisu cyfrowego] C:\Users\Mateusz\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\aiohttp\_frozenlist.cp37-win32.pyd 2019-12-10 21:44 - 2019-12-10 21:44 - 000036864 _____ () [Brak podpisu cyfrowego] C:\Users\Mateusz\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\aiohttp\_helpers.cp37-win32.pyd 2019-12-10 21:44 - 2019-12-10 21:44 - 000216064 _____ () [Brak podpisu cyfrowego] C:\Users\Mateusz\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\aiohttp\_http_parser.cp37-win32.pyd 2019-12-10 21:44 - 2019-12-10 21:44 - 000032256 _____ () [Brak podpisu cyfrowego] C:\Users\Mateusz\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\aiohttp\_http_writer.cp37-win32.pyd 2019-12-10 21:44 - 2019-12-10 21:44 - 000022528 _____ () [Brak podpisu cyfrowego] C:\Users\Mateusz\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\aiohttp\_websocket.cp37-win32.pyd 2019-12-10 21:44 - 2019-12-10 21:44 - 000009216 _____ () [Brak podpisu cyfrowego] C:\Users\Mateusz\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\multidict\_istr.cp37-win32.pyd 2019-12-10 21:44 - 2019-12-10 21:44 - 000095744 _____ () [Brak podpisu cyfrowego] C:\Users\Mateusz\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\multidict\_multidict.cp37-win32.pyd 2019-12-10 21:44 - 2019-12-10 21:44 - 000061952 _____ () [Brak podpisu cyfrowego] C:\Users\Mateusz\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\psutil\_psutil_windows.cp37-win32.pyd 2019-12-10 21:44 - 2019-12-10 21:44 - 000069120 _____ () [Brak podpisu cyfrowego] C:\Users\Mateusz\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\yarl\_quoting.cp37-win32.pyd 2019-04-30 11:00 - 2015-06-23 15:41 - 000082432 _____ (Fintek) [Brak podpisu cyfrowego] C:\Program Files (x86)\MSI\Gaming APP\Lib\FintekUSBDll.dll 2019-04-30 10:56 - 2019-02-21 17:00 - 000078336 _____ (Igor Pavlov) [Brak podpisu cyfrowego] C:\Program Files\7-Zip\7-zip.dll 2019-10-18 11:06 - 2019-10-18 11:06 - 000090112 _____ (Silicon Laboratories, Inc.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\SiUSBXp.dll 2017-06-06 20:02 - 2017-06-06 20:02 - 000018944 _____ (Softland) [Brak podpisu cyfrowego] C:\WINDOWS\System32\novamn8.dll 2019-11-14 14:50 - 2019-11-14 14:50 - 002516480 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Brak podpisu cyfrowego] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\libcrypto-1_1.dll 2019-11-14 14:50 - 2019-11-14 14:50 - 000530432 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Brak podpisu cyfrowego] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\libssl-1_1.dll 2019-11-29 14:30 - 2019-11-29 14:30 - 005139576 _____ (The Qt Company Oy -> The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Qt5Core.dll 2019-07-08 17:31 - 2017-09-12 09:36 - 000708608 _____ (Wondershare) [Brak podpisu cyfrowego] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSProducstInfo.dll ==================== Alternate Data Streams (filtrowane) ======== (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\Users\Mateusz\OneDrive:${3D0CE612-FDEE-43f7-8ACA-957BEC0CCBA0}.SyncRootIdentity [118] AlternateDataStreams: C:\Users\Mateusz\AppData\Local\Temp:com.affinity.designer.1 [240] ==================== Tryb awaryjny (filtrowane) ================== ==================== Powiązania plików (filtrowane) ================= ==================== Internet Explorer - Witryny zaufane i z ograniczeniami ========== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) IE trusted site: HKU\S-1-5-21-742678756-2304139027-1524245951-1001\...\localhost -> localhost IE trusted site: HKU\S-1-5-21-742678756-2304139027-1524245951-1001\...\webcompanion.com -> hxxp://webcompanion.com ==================== Hosts - zawartość: ========================= (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2019-04-29 17:45 - 2019-04-29 17:44 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Inne obszary =========================== (Obecnie brak automatycznej naprawy dla tej sekcji.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\iCLS\;C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;;C:\Program Files\Common Files\Datawatch\Drivers\7.1.5\jre\bin;C:\Program Files\Common Files\Datawatch\Drivers\7.1.5\jre\bin\server;C:\Program Files\NVIDIA Corporation\NVIDIA NGX HKU\S-1-5-21-742678756-2304139027-1524245951-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Mateusz\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\ws_modern_batman_logo_1920x1080.jpg DNS Servers: 37.8.214.2 - 31.11.202.254 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Zapora systemu Windows [funkcja włączona] Network Binding: ============= Ethernet: cFosSpeed for faster Internet connections (NDIS 6) -> cfosspeed (enabled) ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Załączenie wejścia w fixlist spowoduje jego usunięcie.) HKLM\...\StartupApproved\Run32: => "Command Center" HKLM\...\StartupApproved\Run32: => "MSI Gaming Lan Manager" HKLM\...\StartupApproved\Run32: => "Live Update" HKLM\...\StartupApproved\Run32: => "USB_Speed_Up" HKU\S-1-5-21-742678756-2304139027-1524245951-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-742678756-2304139027-1524245951-1001\...\StartupApproved\Run: => "Web Companion" HKU\S-1-5-21-742678756-2304139027-1524245951-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount" ==================== Reguły Zapory systemu Windows (filtrowane) ================ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{F58EDFAB-4EC3-4141-8069-E30EFA27011E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{D8BAD621-D447-4FD7-AF0F-05F8315643F6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{0A8848B4-C8FE-4DF8-895E-F4077D82EF4D}] => (Allow) C:\Users\Mateusz\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{EB5A846D-CFD2-406B-B2BB-F85DE200E977}] => (Allow) C:\Users\Mateusz\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{63317952-8DA1-4E0E-A680-900EF3888594}] => (Allow) F:\Gry\Fifa 19\FIFASetup\fifaconfig.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{EAB4E1F1-D01F-4D16-BEA3-F8B7215AA5A7}] => (Allow) F:\Gry\Fifa 19\FIFASetup\fifaconfig.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [TCP Query User{94CB999B-3BFD-4399-8D9D-DD4C972C323C}F:\gry\fifa 19\fifa19.exe] => (Allow) F:\gry\fifa 19\fifa19.exe (Electronic Arts) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{97C912BD-197B-4B55-A5B9-FDEC6693DDF2}F:\gry\fifa 19\fifa19.exe] => (Allow) F:\gry\fifa 19\fifa19.exe (Electronic Arts) [Brak podpisu cyfrowego] FirewallRules: [{A6394460-880A-47B1-B898-36E2A6340DAA}] => (Allow) E:\NapiProjekt\napisy.exe () [Brak podpisu cyfrowego] FirewallRules: [{39898DDE-000F-47D9-81CF-DDDDEEF44B33}] => (Allow) E:\NapiProjekt\napisy.exe () [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{361A8501-55B2-481B-88A8-9ED7104B57F8}F:\gry\fifa 19\fifa19.exe] => (Allow) F:\gry\fifa 19\fifa19.exe (Electronic Arts) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{548B1625-1000-4648-BF96-D06E4F77E54A}F:\gry\fifa 19\fifa19.exe] => (Allow) F:\gry\fifa 19\fifa19.exe (Electronic Arts) [Brak podpisu cyfrowego] FirewallRules: [{D4DEFF09-0160-4CA0-91CA-3B00E4907807}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe (Ubisoft Massive -> Ubisoft) FirewallRules: [{28892DF1-D5BF-43D0-AC72-304D9F7087D6}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe (Ubisoft Massive -> Ubisoft) FirewallRules: [{D226CBFC-8AAB-4392-883B-D09488AEA5DB}] => (Allow) E:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{6C4A365C-05D5-40E4-9945-73635D8FB060}] => (Allow) E:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{98415E52-DC87-4AF3-B2EF-47B5B8CD90F6}] => (Allow) E:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe Brak pliku FirewallRules: [{E4E86C42-493B-4971-9B36-8EFCC279B32F}] => (Allow) E:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe Brak pliku FirewallRules: [TCP Query User{3CA21EEB-170B-4516-A8B2-BECEDB2A3756}F:\gry\portal 2\portal2.exe] => (Allow) F:\gry\portal 2\portal2.exe Brak pliku FirewallRules: [UDP Query User{CE8BB4C5-D225-49CF-98B9-6CBB443BDD3C}F:\gry\portal 2\portal2.exe] => (Allow) F:\gry\portal 2\portal2.exe Brak pliku FirewallRules: [TCP Query User{135EC775-D45D-4B06-9DBA-5EDBA96F4212}S:\borderlands 2 remastered\binaries\win32\borderlands2.exe] => (Allow) S:\borderlands 2 remastered\binaries\win32\borderlands2.exe Brak pliku FirewallRules: [UDP Query User{B4B170D9-D5E7-40FD-8C39-5CAE93D04397}S:\borderlands 2 remastered\binaries\win32\borderlands2.exe] => (Allow) S:\borderlands 2 remastered\binaries\win32\borderlands2.exe Brak pliku FirewallRules: [TCP Query User{DE1DFB2C-6CCE-4242-915A-C8A08FC7CBD3}F:\gry\lol\game\league of legends.exe] => (Allow) F:\gry\lol\game\league of legends.exe Brak pliku FirewallRules: [UDP Query User{848A3DEE-100E-4389-8F91-544D933F90C5}F:\gry\lol\game\league of legends.exe] => (Allow) F:\gry\lol\game\league of legends.exe Brak pliku FirewallRules: [TCP Query User{D5BF1E06-A3DE-4DFE-9CF6-9AC312D9E86F}C:\users\mateusz\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\mateusz\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [UDP Query User{29BC18CF-22B1-412F-9679-A92E427FC6E0}C:\users\mateusz\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\mateusz\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{3CE86A71-5B1B-49C6-98F5-AA9A0D38BFC4}] => (Allow) E:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{D5748DF2-8C42-41D3-95BF-5F66F0EEE7B4}] => (Allow) E:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [TCP Query User{23A74B0F-8382-4FED-A1E3-BB408B9D086A}C:\users\mateusz\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\mateusz\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [UDP Query User{29EDF97C-F14E-4EB8-BC45-627F77F7F7F0}C:\users\mateusz\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\mateusz\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [TCP Query User{4AE3435E-8BD2-4186-9F91-2CBE33D66D69}F:\games\the sims 4\game\bin\ts4_x64.exe] => (Allow) F:\games\the sims 4\game\bin\ts4_x64.exe (Electronic Arts Inc.) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{19695330-9C2F-4647-AB0D-186A321A2BEF}F:\games\the sims 4\game\bin\ts4_x64.exe] => (Allow) F:\games\the sims 4\game\bin\ts4_x64.exe (Electronic Arts Inc.) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{67899490-50D8-4F46-B756-E8D51F9D6A1E}S:\games\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) S:\games\kingdom come deliverance\bin\win64\kingdomcome.exe Brak pliku FirewallRules: [UDP Query User{0FD7D396-56BB-4F64-9432-FE2C3FA0BAF7}S:\games\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) S:\games\kingdom come deliverance\bin\win64\kingdomcome.exe Brak pliku FirewallRules: [{68A23330-BB60-45AE-A74B-3429E468EA04}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{1298F37E-418C-4A21-8C7F-3294F4A46E48}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{44491437-82AF-4143-99EB-8412C62EE585}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{D957EDEE-5633-4451-85ED-A9D08FA88EA2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{D9D07A97-CAD8-4C43-A69C-C97C7F53C4C8}] => (Allow) C:\Program Files\HP\HP DeskJet 2130 series\Bin\USBSetup.exe (Hewlett Packard -> HP Inc.) FirewallRules: [{8260E561-C5CE-49DD-BAF4-C47C7674A9F6}] => (Allow) C:\Program Files\HP\HP DeskJet 2130 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> HP Inc.) FirewallRules: [TCP Query User{D299A541-0A43-49E1-9504-73B535D309EA}S:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe] => (Allow) S:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe (Respawn Entertainment) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{9833A56A-7AEE-425A-ADD0-5DD79739A3AF}S:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe] => (Allow) S:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe (Respawn Entertainment) [Brak podpisu cyfrowego] FirewallRules: [{796904AD-0C2D-4F6E-8E76-A3DB1B311100}] => (Allow) LPort=8501 FirewallRules: [{A28F0208-DC56-4860-BAC0-2DE83E059244}] => (Allow) LPort=8501 FirewallRules: [{9F11457A-08A0-474D-B7A4-C11E0586D0B0}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\3DMark\3DMarkLauncher.exe (FUTUREMARK INC -> Futuremark) FirewallRules: [{515E6E44-1115-472F-8591-A314B59F8A66}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\3DMark\3DMarkLauncher.exe (FUTUREMARK INC -> Futuremark) FirewallRules: [{B208F073-1382-4946-9AE1-9495D483A84F}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x86\3DMark.exe (FUTUREMARK INC -> ) FirewallRules: [{E8C60C66-A7D7-43C5-BF8D-939CE4CF0617}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x86\3DMark.exe (FUTUREMARK INC -> ) FirewallRules: [{16B28D48-3204-4320-BDAF-22539927EB3D}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x64\3DMark.exe (FUTUREMARK INC -> ) FirewallRules: [{827A7F72-77C9-4F73-9EE2-0411C5DB86E1}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x64\3DMark.exe (FUTUREMARK INC -> ) FirewallRules: [TCP Query User{4EDC906C-1E66-419C-89D4-12B0B1EB768B}F:\gry\reddeadredemption2\rdr2.exe] => (Allow) F:\gry\reddeadredemption2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [UDP Query User{EA278AFB-F697-4CC4-AA45-90FDD7EC8025}F:\gry\reddeadredemption2\rdr2.exe] => (Allow) F:\gry\reddeadredemption2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [{4E09C520-F935-44F8-A92F-E70D61561316}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{92377F4E-5321-4340-B7E4-89376288B970}] => (Allow) LPort=26789 ==================== Punkty Przywracania systemu ========================= UWAGA: Przywracanie systemu jest wyłączone (Total:92.17 GB) (Free:14.93 GB) (16%) ==================== Wadliwe urządzenia w Menedżerze urządzeń ============ Name: Standardowa klawiatura PS/2 Description: Standardowa klawiatura PS/2 Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318} Manufacturer: (Klawiatury standardowe) Service: i8042prt Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Mysz Microsoft PS/2 Description: Mysz Microsoft PS/2 Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: i8042prt Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. ==================== Błędy w Dzienniku zdarzeń: ======================== Dziennik Aplikacja: ================== Error: (12/21/2019 11:23:13 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Error: (12/21/2019 11:14:21 AM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: ZARZĄDZANIE NT) Description: System Windows nie może załadować biblioteki DLL rozszerzalnego licznika „C:\WINDOWS\system32\sysmain.dll” (kod błędu systemu Win32: 126). Error: (12/19/2019 08:39:14 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Error: (12/19/2019 08:31:21 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: ZARZĄDZANIE NT) Description: System Windows nie może załadować biblioteki DLL rozszerzalnego licznika „C:\WINDOWS\system32\sysmain.dll” (kod błędu systemu Win32: 126). Error: (12/18/2019 09:45:46 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Error: (12/17/2019 11:37:45 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: HellbladeGame-Win64-Shipping.exe, wersja: 1.0.0.0, sygnatura czasowa: 0x597f3f34 Nazwa modułu powodującego błąd: HellbladeGame-Win64-Shipping.exe, wersja: 1.0.0.0, sygnatura czasowa: 0x597f3f34 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x00000000007f74cb Identyfikator procesu powodującego błąd: 0x24d4 Godzina uruchomienia aplikacji powodującej błąd: 0x01d5b52a8f5658cb Ścieżka aplikacji powodującej błąd: E:\Program Files\Hellblade Senuas Sacrifice\HellbladeGame\Binaries\Win64\HellbladeGame-Win64-Shipping.exe Ścieżka modułu powodującego błąd: E:\Program Files\Hellblade Senuas Sacrifice\HellbladeGame\Binaries\Win64\HellbladeGame-Win64-Shipping.exe Identyfikator raportu: 37aa8e5a-43b1-4516-8c13-1dbef1fbd391 Pełna nazwa pakietu powodującego błąd: Identyfikator aplikacji względem pakietu powodującego błąd: Error: (12/17/2019 10:32:15 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Error: (12/16/2019 01:32:57 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Dziennik System: ============= Error: (12/21/2019 01:17:27 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-7KBQ4JA) Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Aktywacja do aplikacji serwera COM z identyfikatorem klasy CLSID {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} i identyfikatorem aplikacji APPID {15C20B67-12E7-4BB6-92BB-7AFF07997402} użytkownikowi DESKTOP-7KBQ4JA\Mateusz o identyfikatorze zabezpieczeń SID (S-1-5-21-742678756-2304139027-1524245951-1001) z adresu LocalHost (użycie LRPC) działającemu w kontenerze aplikacji o identyfikatorze SID Niedostępny (Niedostępny). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. Error: (12/21/2019 01:17:14 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-7KBQ4JA) Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Aktywacja do aplikacji serwera COM z identyfikatorem klasy CLSID {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} i identyfikatorem aplikacji APPID {15C20B67-12E7-4BB6-92BB-7AFF07997402} użytkownikowi DESKTOP-7KBQ4JA\Mateusz o identyfikatorze zabezpieczeń SID (S-1-5-21-742678756-2304139027-1524245951-1001) z adresu LocalHost (użycie LRPC) działającemu w kontenerze aplikacji o identyfikatorze SID Niedostępny (Niedostępny). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. Error: (12/21/2019 01:08:18 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-7KBQ4JA) Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Aktywacja do aplikacji serwera COM z identyfikatorem klasy CLSID {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} i identyfikatorem aplikacji APPID {15C20B67-12E7-4BB6-92BB-7AFF07997402} użytkownikowi DESKTOP-7KBQ4JA\Mateusz o identyfikatorze zabezpieczeń SID (S-1-5-21-742678756-2304139027-1524245951-1001) z adresu LocalHost (użycie LRPC) działającemu w kontenerze aplikacji o identyfikatorze SID Niedostępny (Niedostępny). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. Error: (12/21/2019 01:07:32 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-7KBQ4JA) Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Aktywacja do aplikacji serwera COM z identyfikatorem klasy CLSID {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} i identyfikatorem aplikacji APPID {15C20B67-12E7-4BB6-92BB-7AFF07997402} użytkownikowi DESKTOP-7KBQ4JA\Mateusz o identyfikatorze zabezpieczeń SID (S-1-5-21-742678756-2304139027-1524245951-1001) z adresu LocalHost (użycie LRPC) działającemu w kontenerze aplikacji o identyfikatorze SID Niedostępny (Niedostępny). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. Error: (12/21/2019 01:02:55 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-7KBQ4JA) Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Aktywacja do aplikacji serwera COM z identyfikatorem klasy CLSID {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} i identyfikatorem aplikacji APPID {15C20B67-12E7-4BB6-92BB-7AFF07997402} użytkownikowi DESKTOP-7KBQ4JA\Mateusz o identyfikatorze zabezpieczeń SID (S-1-5-21-742678756-2304139027-1524245951-1001) z adresu LocalHost (użycie LRPC) działającemu w kontenerze aplikacji o identyfikatorze SID Niedostępny (Niedostępny). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. Error: (12/21/2019 11:54:28 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-7KBQ4JA) Description: Serwer {F9717507-6651-4EDB-BFF7-AE615179BCCF} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (12/21/2019 11:25:42 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Corsair Gaming Audio Configuration Service z powodu następującego błędu: Nie można odnaleźć określonego pliku. Error: (12/21/2019 11:22:45 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-7KBQ4JA) Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Aktywacja do aplikacji serwera COM z identyfikatorem klasy CLSID {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} i identyfikatorem aplikacji APPID {15C20B67-12E7-4BB6-92BB-7AFF07997402} użytkownikowi DESKTOP-7KBQ4JA\Mateusz o identyfikatorze zabezpieczeń SID (S-1-5-21-742678756-2304139027-1524245951-1001) z adresu LocalHost (użycie LRPC) działającemu w kontenerze aplikacji o identyfikatorze SID Niedostępny (Niedostępny). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. CodeIntegrity: =================================== Date: 2019-12-21 13:18:43.942 Description: Code Integrity determined that a process (\Device\HarddiskVolume7\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume7\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements. Date: 2019-12-21 13:18:43.940 Description: Code Integrity determined that a process (\Device\HarddiskVolume7\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume7\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements. Date: 2019-12-21 13:18:42.893 Description: Code Integrity determined that a process (\Device\HarddiskVolume7\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume7\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements. Date: 2019-12-21 13:18:42.891 Description: Code Integrity determined that a process (\Device\HarddiskVolume7\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume7\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements. Date: 2019-12-21 13:18:42.593 Description: Code Integrity determined that a process (\Device\HarddiskVolume7\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume7\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements. Date: 2019-12-21 13:18:42.589 Description: Code Integrity determined that a process (\Device\HarddiskVolume7\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume7\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements. Date: 2019-12-21 13:18:42.448 Description: Code Integrity determined that a process (\Device\HarddiskVolume7\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume7\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements. Date: 2019-12-21 13:18:42.446 Description: Code Integrity determined that a process (\Device\HarddiskVolume7\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume7\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements. ==================== Statystyki pamięci =========================== BIOS: American Megatrends Inc. 1.B0 07/22/2016 Płyta główna: MSI Z170A GAMING PRO (MS-7984) Procesor: Intel(R) Core(TM) i7-6700K CPU @ 4.00GHz Procent pamięci w użyciu: 32% Całkowita pamięć fizyczna: 16342.07 MB Dostępna pamięć fizyczna: 11031.39 MB Całkowita pamięć wirtualna: 18774.07 MB Dostępna pamięć wirtualna: 11096.57 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:92.17 GB) (Free:14.93 GB) NTFS Drive e: (HDD 2) (Fixed) (Total:490.66 GB) (Free:187.77 GB) NTFS Drive f: (HDD 1) (Fixed) (Total:440.83 GB) (Free:131.34 GB) NTFS Drive s: (SSD) (Fixed) (Total:140.11 GB) (Free:81.16 GB) NTFS \\?\Volume{7bf63657-3848-4c7b-8b42-e7a2d85d57f0}\ (Odzyskiwanie) (Fixed) (Total:0.49 GB) (Free:0.08 GB) NTFS \\?\Volume{bb93d552-3103-4fce-8e81-24554628f2f5}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Tablica partycji ==================== ========================================================== Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 1 (Protective MBR) (Size: 232.9 GB) (Disk ID: 00000000) Partition: GPT. ==================== Koniec Addition.txt =======================