Additional scan result of Farbar Recovery Scan Tool (x64) Version: 07-01-2015 Ran by Kamilo at 2016-12-31 01:11:35 Running from C:\Users\Kamilo\Desktop\Naprawa Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) µTorrent (HKU\S-1-5-21-1256599488-1644380691-1454373047-1000\...\uTorrent) (Version: 3.4.9.43085 - BitTorrent Inc.) 3100_3200_3300_Help (x32 Version: 82.0.242.000 - Hewlett-Packard) Hidden 3100_3200_3300trb (x32 Version: 82.0.242.000 - Hewlett-Packard) Hidden 3200 (x32 Version: 130.0.421.000 - Hewlett-Packard) Hidden 64 Bit HP CIO Components Installer (Version: 6.2.1 - Hewlett-Packard) Hidden Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 15.020.20042 - Adobe Systems Incorporated) AIMP (HKLM-x32\...\AIMP) (Version: v4.12.1878, 25.12.2016 - AIMP DevTeam) AIO_CDB_ProductContext (x32 Version: 130.0.365.000 - Hewlett-Packard) Hidden AIO_CDB_Software (x32 Version: 130.0.365.000 - Hewlett-Packard) Hidden AIO_Scan (x32 Version: 130.0.421.000 - Hewlett-Packard) Hidden Aktualizacje NVIDIA 2.13.0.21 (Version: 2.13.0.21 - NVIDIA Corporation) Hidden ALLPlayer V7.X (HKLM-x32\...\ALLPlayer_is1) (Version: - ALLPlayer Group, Ltd.) Ansel (Version: 376.33 - NVIDIA Corporation) Hidden Ashampoo Burning Studio 16 (HKLM-x32\...\{91B33C97-A730-69CE-7A4F-4ADF378BB993}_is1) (Version: 16.0.7 - Ashampoo GmbH & Co. KG) Ashampoo Burning Studio 18 wersja 18.0.0 (HKLM-x32\...\Ashampoo Burning Studio 18_is1) (Version: 18.0.0 - ) Assassins Creed IV Black Flag Update v1.06 (HKLM-x32\...\QXNzYXNzaW5zQ3JlZWRJVkJsYWNrRmxhZw==_is1) (Version: 1 - ) Assassin's Creed Rogue (HKLM-x32\...\Uplay Install 895) (Version: - Ubisoft) Assassins Creed Syndicate (HKLM-x32\...\Assassins Creed Syndicate_is1) (Version: - ) Assassin's Creed Unity Dead Kings DLC (HKLM-x32\...\QXNzYXNzaW5zQ3JlZWRVbml0eQ==_is1) (Version: 1 - ) Auslogics Disk Defrag (HKLM-x32\...\{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1) (Version: 7.1.1.0 - Auslogics Labs Pty Ltd) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Battlefield 4 Update 4 (HKLM-x32\...\QmF0dGxlZmllbGQ0_is1) (Version: 1 - ) Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.0.0.0 - Electronic Arts) BufferChm (x32 Version: 130.0.331.000 - Hewlett-Packard) Hidden CCleaner (HKLM\...\CCleaner) (Version: 5.25 - Piriform) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.5.0.0220 - Disc Soft Ltd) DocProc (x32 Version: 13.0.0.0 - Hewlett-Packard) Hidden eReg (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden Far Cry 4 Update v1.7 (HKLM-x32\...\RmFyQ3J5NA==_is1) (Version: 1 - ) GG (HKU\S-1-5-21-1256599488-1644380691-1454373047-1000\...\GG) (Version: 12 - GG Network S.A.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 55.0.2883.87 - Google Inc.) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment) HPDiagnosticAlert (x32 Version: 1.00.0001 - Microsoft) Hidden HPPhotoGadget (x32 Version: 130.0.282.000 - Hewlett-Packard) Hidden IconPackager (HKLM-x32\...\IconPackager) (Version: - Stardock Corporation) IconPackager (x32 Version: 5.00 - Stardock Corporation) Hidden Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation) Kursory (HKLM-x32\...\CursorXP) (Version: - ) Logitech Gaming Software 8.88 (HKLM\...\Logitech Gaming Software) (Version: 8.88.30 - Logitech Inc.) Malwarebytes Anti-Malware wersja 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUSR) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) NapiProjekt (2.2.0.2399) (HKLM-x32\...\NapiProjekt_is1) (Version: - ) Narzędzia sprawdzające pakietu Microsoft Office 2013 — polski (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Network64 (Version: 130.0.572.000 - Hewlett-Packard) Hidden Network64 (Version: 140.0.221.000 - Hewlett-Packard) Hidden NVIDIA GeForce Experience 3.1.2.31 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.1.2.31 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation) NVIDIA Sterownik 3D Vision 376.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 376.33 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation) NVIDIA Sterownik graficzny 376.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.33 - NVIDIA Corporation) NVIDIA Sterownik kontrolera 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation) NvNodejs (Version: 3.1.2.31 - NVIDIA Corporation) Hidden NvTelemetry (Version: 1.2.0.0 - NVIDIA Corporation) Hidden Panel sterowania NVIDIA 376.33 (Version: 376.33 - NVIDIA Corporation) Hidden Scan (x32 Version: 140.0.80.000 - Hewlett-Packard) Hidden Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft) Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (Version: - Microsoft) Hidden SHIELD Streaming (Version: 7.1.0340 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 3.1.2.31 - NVIDIA Corporation) Hidden Skype™ 7.30 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.30.105 - Skype Technologies S.A.) StarCraft II - Legacy of the Void (HKLM-x32\...\StarCraft II - Legacy of the Void_is1) (Version: - ) Toolbox (x32 Version: 130.0.648.000 - Hewlett-Packard) Hidden UnloadSupport (x32 Version: 11.0.0 - Hewlett-Packard) Hidden Update for Skype for Business 2015 (KB3039776) 64-Bit Edition (HKLM\...\{90150000-012B-0415-1000-0000000FF1CE}_Office15.PROPLUSR_{67847964-08E2-4A8F-B09D-B08D5CE69250}) (Version: - Microsoft) Update for Skype for Business 2015 (KB3127976) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{E0107125-62C7-43B6-8E66-0582F397469E}) (Version: - Microsoft) Update for Skype for Business 2015 (KB3127976) 64-Bit Edition (HKLM\...\{90150000-012B-0415-1000-0000000FF1CE}_Office15.PROPLUSR_{E0107125-62C7-43B6-8E66-0582F397469E}) (Version: - Microsoft) Update for Skype for Business 2015 (KB3127976) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{E0107125-62C7-43B6-8E66-0582F397469E}) (Version: - Microsoft) Uplay (HKLM-x32\...\Uplay) (Version: 4.3 - Ubisoft) Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.) WebReg (x32 Version: 130.0.132.017 - Hewlett-Packard) Hidden WinRAR 5.21 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH) ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) CustomCLSID: HKU\S-1-5-21-1256599488-1644380691-1454373047-1000_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1256599488-1644380691-1454373047-1000_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Kamilo\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\amd64\FileSyncShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1256599488-1644380691-1454373047-1000_Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}\InprocServer32 -> C:\Users\Kamilo\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\amd64\FileSyncShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1256599488-1644380691-1454373047-1000_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Kamilo\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\FileCoAuth.exe (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1256599488-1644380691-1454373047-1000_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Kamilo\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\amd64\FileSyncShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1256599488-1644380691-1454373047-1000_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Kamilo\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\amd64\FileSyncShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1256599488-1644380691-1454373047-1000_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Kamilo\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\amd64\FileSyncShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1256599488-1644380691-1454373047-1000_Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}\InprocServer32 -> C:\Users\Kamilo\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\amd64\FileSyncShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1256599488-1644380691-1454373047-1000_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Kamilo\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\amd64\FileSyncShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1256599488-1644380691-1454373047-1000_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\Kamilo\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\amd64\FileSyncShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1256599488-1644380691-1454373047-1000_Classes\CLSID\{E68D0A55-3C40-4712-B90D-DCFA93FF2534}\InprocServer32 -> C:\Users\Kamilo\AppData\Roaming\GG\ggdrive\ggdrive-menu.dll (GG Network S.A.) CustomCLSID: HKU\S-1-5-21-1256599488-1644380691-1454373047-1000_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Kamilo\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\amd64\FileSyncShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1256599488-1644380691-1454373047-1000_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Kamilo\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\amd64\FileSyncApi64.dll (Microsoft Corporation) ==================== Restore Points ========================= ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {002E612E-385D-4E40-8F13-204610C5F922} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClient => C:\Windows\system32\dmclient.exe [2016-07-16] (Microsoft Corporation) Task: {014833AD-91B1-4001-B63A-A4F945E2BDFB} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics => C:\Windows\system32\disksnapshot.exe [2016-07-16] (Microsoft Corporation) Task: {03896D04-23AB-4F74-A27D-B1B71EE41E2C} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask => C:\Windows\system32\MDMAgent.exe [2016-07-16] (Microsoft Corporation) Task: {051FE1A2-5076-4BAA-AEA7-7862B2ABA941} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-12-12] (NVIDIA Corporation) Task: {06664D31-D30D-4746-9B52-EB6BF8B1F2FD} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B No Task File <==== ATTENTION Task: {06BB1EBB-0053-418A-AD00-B8F42B3DF200} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\Uninstallation Task: {09927742-5C49-4C77-9EA4-9E62592D1B60} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Policy Install => C:\Windows\system32\usoclient.exe [2016-07-16] (Microsoft Corporation) Task: {0A825FA8-E7F9-47C9-A55B-33A8DEA20508} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe Task: {11EF8237-224D-4CF9-9039-61D08754EA5D} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => C:\Windows\system32\compattelrunner.exe [2016-10-15] (Microsoft Corporation) Task: {14F7D87B-9A0F-472E-8176-6843473B189E} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2016-12-12] (NVIDIA Corporation) Task: {16DEA092-FB0C-40D0-AE20-0536BECC21D9} - System32\Tasks\Microsoft\Windows\EDP\EDP App Launch Task Task: {179592D1-1261-461B-846B-9EC72A78C4BD} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Resume On Boot => C:\Windows\system32\usoclient.exe [2016-07-16] (Microsoft Corporation) Task: {184784E2-6ACB-4154-BD0F-A955BE13F177} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDevicePolicyChange Task: {186AFBE7-6E59-4C7B-AAC8-92E27DC9980B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-11] (Google Inc.) Task: {1B4C802F-0684-41A2-97E2-66BCED00A768} - System32\Tasks\{DC9F6BAA-75C2-4E40-BE3B-E34524C01679} => pcalua.exe -a "C:\Program Files (x86)\HP\Digital Imaging\{B61ED343-0B14-4241-999C-490CB1A20DA4}\setup\hpzscr40.exe" -c -datfile hposcr19.dat -onestop -forcereboot Task: {1B65DD58-D16B-45E8-BEB4-94D7E4D64DF7} - System32\Tasks\Microsoft\Windows\EDP\EDP Auth Task Task: {1C130A0B-D8E4-43B3-B667-ECB75D36BC91} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-12-12] (NVIDIA Corporation) Task: {1D927C8E-E81F-4C28-B6C1-20020F0B4257} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation) Task: {1E9D3616-64A9-4AA5-BEB5-36E996A8C82D} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation) Task: {1F12D9ED-71C7-43CD-A4A5-44CF76FA172D} - \Microsoft\Windows\Setup\gwx\launchtrayprocess No Task File <==== ATTENTION Task: {20286234-3059-4DF6-8BB5-E4188B182F59} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d No Task File <==== ATTENTION Task: {22F6D0DA-7641-4417-B170-2A16CF3B04F1} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe Task: {2410276A-AC66-4BC8-81DE-59EEA5BA7D65} - System32\Tasks\Microsoft\Windows\WCM\WiFiTask => C:\Windows\System32\WiFiTask.exe [2016-11-02] (Microsoft Corporation) Task: {2AB02207-56C7-47C2-881D-BF769DF7F8D2} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install => C:\Windows\system32\usoclient.exe [2016-07-16] (Microsoft Corporation) Task: {2DAE5377-A064-4664-B26E-2EF575CC8F7E} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe Task: {31E986C4-AD7C-4323-9217-1E0E51AC8122} - System32\Tasks\SidebarExecute => C:\Program Files\Windows Sidebar\sidebar.exe Task: {3301D009-C590-4FD8-A843-8E5C4E0EEF26} - \OfficeSoftwareProtectionPlatform\SvcRestartTask No Task File <==== ATTENTION Task: {33967F1F-606F-440E-8503-630278A85455} - System32\Tasks\Microsoft\Windows\Location\Notifications => C:\Windows\System32\LocationNotificationWindows.exe [2016-07-16] (Microsoft Corporation) Task: {34826D50-0B05-4366-8E1D-5FEBDE510615} - System32\Tasks\Microsoft\Windows\NlaSvc\WiFiTask => C:\Windows\System32\WiFiTask.exe [2016-11-02] (Microsoft Corporation) Task: {35A41E3D-CFF5-4BAA-97C7-2C61FE6BAD5B} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan => C:\Windows\system32\usoclient.exe [2016-07-16] (Microsoft Corporation) Task: {360A0047-C16E-47E4-B0C8-548A197E64D3} - System32\Tasks\Microsoft\XblGameSave\XblGameSaveTaskLogon => C:\Windows\System32\XblGameSaveTask.exe [2016-07-16] (Microsoft Corporation) Task: {3ABC5020-D3EE-4C55-95D5-404702531752} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe Task: {3B503941-0449-44AC-9088-EBBF51A02B8F} - System32\Tasks\Microsoft\Windows\License Manager\TempSignedLicenseExchange Task: {3D824E01-E1CE-4AF4-B933-501CB82CAB18} - System32\Tasks\Microsoft\Windows\ErrorDetails\ErrorDetailsUpdate Task: {4370FDE9-C768-4510-95CA-C4E9633532A8} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent No Task File <==== ATTENTION Task: {43DF67E8-D733-48FA-98F2-4E6D341E4A79} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => C:\Windows\system32\compattelrunner.exe [2016-10-15] (Microsoft Corporation) Task: {44AE62B5-E8C7-41A7-858B-A70552B9AF77} - System32\Tasks\Microsoft\Windows\Subscription\LicenseAcquisition => C:\Windows\system32\UpgradeSubscription.exe [2016-07-16] (Microsoft Corporation) Task: {45AEEE54-6F04-4E0C-800C-2DB64AF5CEBB} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d No Task File <==== ATTENTION Task: {4EF341D6-4087-46B4-BE7C-2E8CF3ABD60A} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d No Task File <==== ATTENTION Task: {51B7FB15-4DCB-400E-9A98-10E802F21FB3} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceScreenOnOff Task: {530B57AE-A138-4B53-ACA9-FA91C45C6E80} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe Task: {5654DFBB-E797-4758-B9A0-8BAE94A91F1D} - System32\Tasks\Microsoft\Windows\DUSM\dusmtask => C:\Windows\System32\dusmtask.exe [2016-07-16] (Microsoft Corporation) Task: {5A0986BC-560A-4D24-81E3-FAFD260EE3E5} - System32\Tasks\Microsoft\Windows\Clip\License Validation => C:\Windows\system32\ClipUp.exe [2016-10-15] (Microsoft Corporation) Task: {5D53D488-D24D-4C11-840D-FFF4068AF601} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe Task: {5DC04922-7D91-493D-A7D0-FB6DE695D5D4} - System32\Tasks\Microsoft\Windows\Subscription\EnableLicenseAcquisition => C:\Windows\system32\UpgradeSubscription.exe [2016-07-16] (Microsoft Corporation) Task: {5E5AC4AF-3F1F-4443-A13A-C4E12DC99557} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe Task: {5FAAF530-ED1B-4F7B-AD7B-1694AA0B202B} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\CryptoPolicyTask Task: {61392829-E427-4F5B-A7AE-221F52EDACD4} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe Task: {62021E15-7457-4EF6-9686-1B740662977B} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe Task: {6232090F-3BD0-4E1F-960B-78CBA797F685} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\HandleWnsCommand Task: {62D96EFC-A7E6-4C33-B05A-2B9A9616BC59} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe Task: {635A185A-88AD-4B41-9344-B07C284A75E9} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sih => C:\Windows\System32\sihclient.exe [2016-07-16] (Microsoft Corporation) Task: {6AE8C825-23F2-4AD7-BD56-9CFA0789ABCF} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot => C:\windows\system32\MusNotification.exe [2016-10-15] (Microsoft Corporation) Task: {6AFCFE4D-B65D-4288-A48C-94BDEDEB28C7} - System32\Tasks\Microsoft\Windows\TPM\Tpm-HASCertRetr Task: {6B1AE720-1359-4B9E-9C0F-60167361EF01} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyRefreshTask Task: {6D1C0035-5CAD-4340-A533-D63C9853BCC9} - System32\Tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Management Initialization Task: {6E07D3C4-DF11-4E24-B0B0-BC0844DA0226} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload => C:\Windows\system32\dmclient.exe [2016-07-16] (Microsoft Corporation) Task: {6E1EA129-9245-4752-B6CE-3E77EF91663B} - System32\Tasks\Microsoft\Windows\Management\Provisioning\Logon => C:\Windows\system32\ProvTool.exe [2016-08-20] (Microsoft Corporation) Task: {6E8AE752-C5D2-4B34-B351-338B4370A342} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\HandleCommand Task: {6ED0CE8E-66C9-4E62-A97D-6CA8BEE5D554} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent No Task File <==== ATTENTION Task: {7536C3A2-149A-40DE-9244-CD76D42B124D} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig No Task File <==== ATTENTION Task: {7AC5E1E2-2FD3-40CD-8842-88CE53A3609C} - System32\Tasks\Microsoft\Windows\DiskFootprint\StorageSense Task: {7E7280E4-311A-4CE7-A53D-6F8B9219821E} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sihboot => C:\Windows\System32\sihclient.exe [2016-07-16] (Microsoft Corporation) Task: {83FF038A-CF6F-4A05-A471-5B5DE0B72CCF} - System32\Tasks\Microsoft\Windows\SpacePort\SpaceManagerTask => C:\Windows\system32\spaceman.exe [2016-09-15] (Microsoft Corporation) Task: {8C344ADF-9F41-4933-A2E3-2590C016A25B} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe Task: {8D380F7B-3250-4DF0-BE81-7997B17BFA20} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe Task: {8D791FAA-0257-4EBC-A6DD-74E842528806} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceSettingChange Task: {8DB04B87-DFDF-41C3-8D83-48435A691114} - System32\Tasks\Microsoft\XblGameSave\XblGameSaveTask => C:\Windows\System32\XblGameSaveTask.exe [2016-07-16] (Microsoft Corporation) Task: {8E2D211D-09FC-4EA3-89EB-DA55E39D9CCD} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-12-06] (Piriform Ltd) Task: {903D0DD0-3277-4AB8-9E02-17E27CA7107C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation) Task: {9093EF7B-83FE-4C32-A6D7-EEFC040689A0} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Refresh Settings => C:\Windows\system32\usoclient.exe [2016-07-16] (Microsoft Corporation) Task: {91CA562D-F854-4585-924A-467679850CEA} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe Task: {9421FFF0-CD24-4F40-B591-01BDB9181D11} - System32\Tasks\Microsoft\Windows\Maps\MapsToastTask Task: {96FBB1D0-D278-46AD-8361-023AB7B9B974} - System32\Tasks\Microsoft\Windows\AppID\EDP Policy Manager Task: {9851188E-AC07-4F36-BA28-6D00BB2C9C46} - System32\Tasks\Microsoft\Windows\Device Information\Device => C:\Windows\system32\devicecensus.exe [2016-10-15] (Microsoft Corporation) Task: {9A532717-8D66-4C23-83E0-E6E35A03AF7E} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2016-12-12] (NVIDIA Corporation) Task: {9EBD87AD-E37B-4275-B8B9-E3D02225F555} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-10-21] (Adobe Systems Incorporated) Task: {9F26ADED-E4B1-44A9-B515-41A90274CEBC} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display => C:\windows\system32\MusNotification.exe [2016-10-15] (Microsoft Corporation) Task: {9FF6D684-2463-400B-AD7A-635A9C02993D} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d No Task File <==== ATTENTION Task: {A27C51D5-EF73-4120-B5E1-3679DAEE130D} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe Task: {A39F3F0D-72F1-46F3-9877-19B4C88F8A1B} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\Kamilo\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe [2016-10-10] (Microsoft Corporation) Task: {A86F0798-6E12-4D66-AA75-5EBBA7C55C21} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe Task: {A9ABD91E-6FC1-450F-9B6E-CC7325CE5CE2} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-12-12] (NVIDIA Corporation) Task: {AA8C8BF2-1945-49C9-A905-26411268B83A} - System32\Tasks\Microsoft\Windows\ErrorDetails\EnableErrorDetailsUpdate Task: {AA9415D4-2A2D-43AA-99FA-0952FEE4AD70} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join => C:\Windows\System32\dsregcmd.exe [2016-09-15] (Microsoft Corporation) Task: {ACBD7FB1-A692-4B46-80B5-C0C115621F26} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\KeyPreGenTask Task: {AF1F42B2-1919-470D-84AE-AF34B738F73D} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe Task: {B320E058-C6FA-413F-876B-0C9B4428AE66} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDevicePeriodic6 Task: {B6EE76B2-4F82-4E15-9345-C867A29CBAD0} - System32\Tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask => C:\Windows\system32\speech_onecore\common\SpeechModelDownload.exe [2016-08-05] (Microsoft Corporation) Task: {B99E0356-708C-4161-8693-F06794F8129D} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\AikCertEnrollTask Task: {BDDEF317-2692-422F-AEA2-FFD67DC7CEA3} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterUserDevice Task: {C125018F-0B81-4B64-B7DC-0E01220E5D0E} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceAccountChange Task: {C54BA01F-4A55-4F25-84C4-F441FF067C02} - System32\Tasks\Microsoft\Windows\Location\WindowsActionDialog => C:\Windows\System32\WindowsActionDialog.exe [2016-07-16] (Microsoft Corporation) Task: {C6B2579B-4962-4D12-883D-BBD420573A6C} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDevicePeriodic1 Task: {CC636E49-0109-402B-A40B-A37C29069A95} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\LocateCommandUserSession Task: {CFAF368C-FD41-43C0-A230-AE70D76F6883} - System32\Tasks\Microsoft\Windows\Sysmain\ResPriStaticDbSync Task: {D19A2726-897E-4F7D-9CE4-0773B449CE9E} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceConnectedToNetwork Task: {D21CEA40-2863-4A72-9EC3-A4B02C882E87} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe Task: {D226C671-4BCA-4B18-B914-5B4EBDB8737F} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Automatic App Update Task: {D394BE25-2E16-45D4-AAB2-3E8861A09351} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyMonitorToastTask Task: {D3C4106A-D511-42C6-9716-465644534C87} - System32\Tasks\microsoft\windows\applicationdata\appuriverifierinstall => C:\Windows\system32\AppHostRegistrationVerifier.exe [2016-07-16] (Microsoft Corporation) Task: {D941F53F-7907-4FBE-B1E7-69EBD5B3A5D8} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceLocationRightsChange Task: {D94F48B9-F868-485B-9671-BAE43E6C18E3} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe Task: {DAB886E6-0C52-4861-A3AB-25013B4EBE96} - System32\Tasks\Microsoft\Windows\Maps\MapsUpdateTask Task: {DBC49B44-659C-4396-A983-648CECC0A813} - System32\Tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup => C:\Windows\system32\dstokenclean.exe [2016-07-16] (Microsoft Corporation) Task: {DDAECFC0-67E3-4062-BF25-CD685F73B394} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\IntegrityCheck Task: {E028F85B-A1F0-4CD3-A580-44F71DB7F373} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-26] (Adobe Systems Incorporated) Task: {E4E7932E-1C4D-4F25-8F79-100B2392E772} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd No Task File <==== ATTENTION Task: {E7B04252-97CA-42C6-9920-F58B76B2C3E1} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDevicePeriodic24 Task: {E7B12CC1-5922-4A0B-A3D8-01E38C35CB43} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe Task: {EA9BAA00-6604-4A27-8A73-AFA65F0EE1B3} - System32\Tasks\Microsoft\Windows\SharedPC\Account Cleanup => Rundll32.exe %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance Task: {EB40B985-833B-4819-8305-1DE9A3FE481E} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval => C:\Windows\system32\MusNotification.exe [2016-10-15] (Microsoft Corporation) Task: {ECEDC57D-8965-4EB1-BD6F-84791D928E23} - System32\Tasks\microsoft\windows\applicationdata\appuriverifierdaily => C:\Windows\system32\AppHostRegistrationVerifier.exe [2016-07-16] (Microsoft Corporation) Task: {EE74E7C4-CD5A-4890-9C38-2D97C9F3CAF1} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\Installation Task: {EFD3771B-A0D0-4036-AC2E-E38C1CDFB96B} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-12-12] (NVIDIA Corporation) Task: {F200B6AE-7AD3-4DF7-B3EB-F1356CA5D011} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot => C:\Windows\system32\MusNotification.exe [2016-10-15] (Microsoft Corporation) Task: {F20E7200-6BAE-460F-BD64-8DCF22C4BB7E} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe Task: {F89130BE-4496-496A-9527-54116A68D746} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe Task: {FA5C7F75-DE46-4931-82E3-F52FD2BC3BA5} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d No Task File <==== ATTENTION Task: {FD5CF299-FCBC-4A7F-B0B2-54FF1A4E7F1E} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe Task: {FFD4A06F-61B2-43E8-ABF9-6B59B94A9782} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-11] (Google Inc.) Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe ==================== Loaded Modules (whitelisted) ============= 2011-03-14 16:27 - 2011-03-14 16:27 - 00346976 _____ () C:\ProgramData\DatacardService\HWDeviceService64.exe 2016-12-18 02:03 - 2016-12-12 04:03 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2016-12-18 02:03 - 2016-12-12 04:03 - 04489152 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll 2016-12-18 02:04 - 2016-12-12 04:03 - 00418752 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\_nvspserviceplugin64.dll 2013-11-22 23:34 - 2013-11-22 23:34 - 00076888 _____ () C:\WINDOWS\SysWoW64\PnkBstrA.exe 2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll 2016-12-18 00:37 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\System32\CoreUIComponents.dll 2016-12-18 02:02 - 2016-12-11 19:47 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2016-12-18 00:37 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll 2016-10-10 20:52 - 2016-10-10 20:52 - 01864384 _____ () C:\Users\Kamilo\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\amd64\ClientTelemetry.dll 2016-12-18 00:37 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2016-10-10 21:01 - 2016-09-07 05:56 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll 2016-12-18 00:37 - 2016-12-09 10:41 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll 2016-11-18 22:37 - 2016-11-02 11:21 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2016-11-18 22:37 - 2016-11-02 11:15 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2016-11-18 22:37 - 2016-11-02 11:14 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll 2016-11-18 22:37 - 2016-11-02 11:16 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2016-11-18 22:37 - 2016-11-02 11:17 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2015-03-07 01:07 - 2015-03-07 01:07 - 00908568 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll 2016-09-29 22:13 - 2016-09-29 22:13 - 01096824 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll 2015-03-07 01:07 - 2015-03-07 01:07 - 00060184 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll 2016-09-29 22:13 - 2016-09-29 22:13 - 00241784 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll 2016-12-17 23:55 - 2016-12-17 23:55 - 00055576 _____ () C:\Program Files\CCleaner\branding.dll 2016-12-06 15:09 - 2016-12-06 15:09 - 00065536 _____ () C:\Program Files\CCleaner\lang\lang-1045.dll 2016-12-18 02:04 - 2016-12-12 04:03 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2016-12-18 02:03 - 2016-12-12 04:03 - 00900032 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll 2016-12-18 02:03 - 2016-12-12 04:03 - 03774400 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll 2016-12-18 02:04 - 2016-12-12 04:03 - 00506424 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node 2016-12-18 02:04 - 2016-12-12 04:03 - 00252352 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node 2016-12-18 02:04 - 2016-12-12 04:03 - 02809912 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node 2016-12-18 02:04 - 2016-12-12 04:03 - 00245184 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node 2016-12-18 02:04 - 2016-12-12 04:03 - 00436792 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node 2016-12-18 02:04 - 2016-12-12 04:03 - 00338488 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node 2016-12-18 02:04 - 2016-12-12 04:03 - 00968248 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvCameraAPINode.node 2016-12-17 23:44 - 2016-12-08 08:29 - 01829208 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libglesv2.dll 2016-12-17 23:44 - 2016-12-08 08:29 - 00085848 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libegl.dll 2016-12-17 23:51 - 2016-12-17 23:51 - 17833560 _____ () C:\Users\Kamilo\AppData\Local\Google\Chrome\User Data\PepperFlash\24.0.0.186\pepflashplayer.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) AlternateDataStreams: C:\Assassin's Creed IV Black Flag:Win32App_1 AlternateDataStreams: C:\Program Files\ALLPlayer:Win32App_1 AlternateDataStreams: C:\Program Files\CCleaner:Win32App_1 AlternateDataStreams: C:\Program Files\DisplayLink Core Software:Win32App_1 AlternateDataStreams: C:\Program Files\Microsoft Office:Win32App_1 AlternateDataStreams: C:\Program Files\Microsoft Silverlight:Win32App_1 AlternateDataStreams: C:\Program Files\WinRAR:Win32App_1 AlternateDataStreams: C:\Program Files (x86)\Battle.net:Win32App_1 AlternateDataStreams: C:\Program Files (x86)\Hp:Win32App_1 AlternateDataStreams: C:\Program Files (x86)\Malwarebytes Anti-Malware:Win32App_1 AlternateDataStreams: C:\Program Files (x86)\Microsoft Silverlight:Win32App_1 AlternateDataStreams: C:\Program Files (x86)\Microsoft.NET:Win32App_1 AlternateDataStreams: C:\Program Files (x86)\NapiProjekt:Win32App_1 AlternateDataStreams: C:\Program Files\Common Files\DESIGNER:Win32App_1 AlternateDataStreams: C:\Program Files\Common Files\microsoft shared:Win32App_1 AlternateDataStreams: C:\ProgramData\Avg:Win32App_1 AlternateDataStreams: C:\ProgramData\AVG2015:Win32App_1 AlternateDataStreams: C:\ProgramData\HP:Win32App_1 AlternateDataStreams: C:\ProgramData\HP Product Assistant:Win32App_1 AlternateDataStreams: C:\ProgramData\regid.1991-06.com.microsoft:Win32App_1 ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52} => ""="Firmware" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Ahcache.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CoreMessagingRegistrar => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SpbCx.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\StateRepository => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TileDataModelSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\uefi.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\UserManager => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52} => ""="Firmware" ==================== EXE Association (whitelisted) ============= (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== MSCONFIG/TASK MANAGER disabled items ========= (Currently there is no automatic fix for this section.) ========================= Accounts: ========================== Administrator (S-1-5-21-1256599488-1644380691-1454373047-500 - Administrator - Disabled) Gość (S-1-5-21-1256599488-1644380691-1454373047-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-1256599488-1644380691-1454373047-1009 - Limited - Enabled) Kamilo (S-1-5-21-1256599488-1644380691-1454373047-1000 - Administrator - Enabled) => C:\Users\Kamilo Konto domyślne (S-1-5-21-1256599488-1644380691-1454373047-503 - Limited - Disabled) ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (12/31/2016 00:20:07 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: ) Description: Subscription licensing service failed: -1073418219 Error: (12/30/2016 11:50:02 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: burningstudio18.exe, wersja: 18.0.0.57, sygnatura czasowa: 0x583c295d Nazwa modułu powodującego błąd: unknown, wersja: 0.0.0.0, sygnatura czasowa: 0x00000000 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x05c90002 Identyfikator procesu powodującego błąd: 0x7c4 Godzina uruchomienia aplikacji powodującej błąd: 0xburningstudio18.exe0 Ścieżka aplikacji powodującej błąd: burningstudio18.exe1 Ścieżka modułu powodującego błąd: burningstudio18.exe2 Identyfikator raportu: burningstudio18.exe3 Pełna nazwa pakietu powodującego błąd: burningstudio18.exe4 Identyfikator aplikacji względem pakietu powodującego błąd: burningstudio18.exe5 Error: (12/30/2016 10:30:54 PM) (Source: ESENT) (EventID: 490) (User: ) Description: taskhostw (4524) WebCacheLocal: Próba otwarcia pliku „C:\Users\Kamilo\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.jfm” w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 (0x00000020): „Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. ”. Operacja otwierania pliku zostanie zakończona z błędem -1032 (0xfffffbf8). Error: (12/30/2016 10:30:31 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: ) Description: Subscription licensing service failed: -1073418219 Error: (12/29/2016 05:31:29 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: burningstudio18.exe, wersja: 18.0.0.57, sygnatura czasowa: 0x583c295d Nazwa modułu powodującego błąd: unknown, wersja: 0.0.0.0, sygnatura czasowa: 0x00000000 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x09990002 Identyfikator procesu powodującego błąd: 0x1958 Godzina uruchomienia aplikacji powodującej błąd: 0xburningstudio18.exe0 Ścieżka aplikacji powodującej błąd: burningstudio18.exe1 Ścieżka modułu powodującego błąd: burningstudio18.exe2 Identyfikator raportu: burningstudio18.exe3 Pełna nazwa pakietu powodującego błąd: burningstudio18.exe4 Identyfikator aplikacji względem pakietu powodującego błąd: burningstudio18.exe5 Error: (12/29/2016 03:51:25 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: ) Description: Subscription licensing service failed: -1073418219 Error: (12/28/2016 01:04:22 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: ) Description: Subscription licensing service failed: -1073418219 Error: (12/27/2016 11:49:28 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: burningstudio18.exe, wersja: 18.0.0.57, sygnatura czasowa: 0x583c295d Nazwa modułu powodującego błąd: unknown, wersja: 0.0.0.0, sygnatura czasowa: 0x00000000 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x052c0002 Identyfikator procesu powodującego błąd: 0x1b30 Godzina uruchomienia aplikacji powodującej błąd: 0xburningstudio18.exe0 Ścieżka aplikacji powodującej błąd: burningstudio18.exe1 Ścieżka modułu powodującego błąd: burningstudio18.exe2 Identyfikator raportu: burningstudio18.exe3 Pełna nazwa pakietu powodującego błąd: burningstudio18.exe4 Identyfikator aplikacji względem pakietu powodującego błąd: burningstudio18.exe5 Error: (12/27/2016 11:45:04 PM) (Source: ESENT) (EventID: 454) (User: ) Description: taskhostw (4192) WebCacheLocal: Odzyskiwanie/przywracanie bazy danych nie powiodło się z powodu nieoczekiwanego błędu: -1032. Error: (12/27/2016 11:45:04 PM) (Source: ESENT) (EventID: 490) (User: ) Description: taskhostw (4192) WebCacheLocal: Próba otwarcia pliku „C:\Users\Kamilo\AppData\Local\Microsoft\Windows\WebCache\V01.log” w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 (0x00000020): „Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. ”. Operacja otwierania pliku zostanie zakończona z błędem -1032 (0xfffffbf8). System errors: ============= Error: (12/29/2016 05:34:13 PM) (Source: Microsoft-Windows-Time-Service) (EventID: 34) (User: ZARZĄDZANIE NT) Description: The time service has detected that the system time needs to be changed by 103454 seconds. The time service will not change the system time by more than 54000 seconds. Verify that your time and time zone are correct, and that the time source time.windows.com,0x9 (ntp.m|0x9|0.0.0.0:123->52.169.179.91:123) is working properly. Error: (12/29/2016 05:34:11 PM) (Source: Microsoft-Windows-Time-Service) (EventID: 34) (User: ZARZĄDZANIE NT) Description: The time service has detected that the system time needs to be changed by 103454 seconds. The time service will not change the system time by more than 54000 seconds. Verify that your time and time zone are correct, and that the time source time.windows.com,0x9 (ntp.m|0x9|0.0.0.0:123->52.169.179.91:123) is working properly. Error: (12/29/2016 05:34:10 PM) (Source: Microsoft-Windows-Time-Service) (EventID: 34) (User: ZARZĄDZANIE NT) Description: The time service has detected that the system time needs to be changed by 103454 seconds. The time service will not change the system time by more than 54000 seconds. Verify that your time and time zone are correct, and that the time source time.windows.com,0x9 (ntp.m|0x9|0.0.0.0:123->52.169.179.91:123) is working properly. Error: (12/29/2016 05:34:09 PM) (Source: Microsoft-Windows-Time-Service) (EventID: 34) (User: ZARZĄDZANIE NT) Description: The time service has detected that the system time needs to be changed by 103454 seconds. The time service will not change the system time by more than 54000 seconds. Verify that your time and time zone are correct, and that the time source time.windows.com,0x9 (ntp.m|0x9|0.0.0.0:123->52.169.179.91:123) is working properly. Error: (12/29/2016 05:34:08 PM) (Source: Microsoft-Windows-Time-Service) (EventID: 34) (User: ZARZĄDZANIE NT) Description: The time service has detected that the system time needs to be changed by 103454 seconds. The time service will not change the system time by more than 54000 seconds. Verify that your time and time zone are correct, and that the time source time.windows.com,0x9 (ntp.m|0x9|0.0.0.0:123->52.169.179.91:123) is working properly. Error: (12/29/2016 05:34:06 PM) (Source: Microsoft-Windows-Time-Service) (EventID: 34) (User: ZARZĄDZANIE NT) Description: The time service has detected that the system time needs to be changed by 103454 seconds. The time service will not change the system time by more than 54000 seconds. Verify that your time and time zone are correct, and that the time source time.windows.com,0x9 (ntp.m|0x9|0.0.0.0:123->52.169.179.91:123) is working properly. Error: (12/29/2016 05:34:05 PM) (Source: Microsoft-Windows-Time-Service) (EventID: 34) (User: ZARZĄDZANIE NT) Description: The time service has detected that the system time needs to be changed by 103454 seconds. The time service will not change the system time by more than 54000 seconds. Verify that your time and time zone are correct, and that the time source time.windows.com,0x9 (ntp.m|0x9|0.0.0.0:123->52.169.179.91:123) is working properly. Error: (12/29/2016 05:34:03 PM) (Source: Microsoft-Windows-Time-Service) (EventID: 34) (User: ZARZĄDZANIE NT) Description: The time service has detected that the system time needs to be changed by 103454 seconds. The time service will not change the system time by more than 54000 seconds. Verify that your time and time zone are correct, and that the time source time.windows.com,0x9 (ntp.m|0x9|0.0.0.0:123->52.169.179.91:123) is working properly. Error: (12/29/2016 05:34:02 PM) (Source: Microsoft-Windows-Time-Service) (EventID: 34) (User: ZARZĄDZANIE NT) Description: The time service has detected that the system time needs to be changed by 103454 seconds. The time service will not change the system time by more than 54000 seconds. Verify that your time and time zone are correct, and that the time source time.windows.com,0x9 (ntp.m|0x9|0.0.0.0:123->52.169.179.91:123) is working properly. Error: (12/29/2016 05:34:01 PM) (Source: Microsoft-Windows-Time-Service) (EventID: 34) (User: ZARZĄDZANIE NT) Description: The time service has detected that the system time needs to be changed by 103454 seconds. The time service will not change the system time by more than 54000 seconds. Verify that your time and time zone are correct, and that the time source time.windows.com,0x9 (ntp.m|0x9|0.0.0.0:123->52.169.179.91:123) is working properly. Microsoft Office Sessions: ========================= Error: (12/31/2016 00:20:07 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: ) Description: Subscription licensing service failed: -1073418219 Error: (12/30/2016 11:50:02 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: burningstudio18.exe18.0.0.57583c295dunknown0.0.0.000000000c000000505c900027c401d262ef08f5a884C:\Program Files (x86)\Ashampoo\Ashampoo Burning Studio 18\burningstudio18.exeunknown12b892de-47dc-4720-9f3b-4b143091d086 Error: (12/30/2016 10:30:54 PM) (Source: ESENT) (EventID: 490) (User: ) Description: taskhostw4524WebCacheLocal: C:\Users\Kamilo\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.jfm-1032 (0xfffffbf8)32 (0x00000020)Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. Error: (12/30/2016 10:30:31 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: ) Description: Subscription licensing service failed: -1073418219 Error: (12/29/2016 05:31:29 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: burningstudio18.exe18.0.0.57583c295dunknown0.0.0.000000000c000000509990002195801d261f0c31ebc51C:\Program Files (x86)\Ashampoo\Ashampoo Burning Studio 18\burningstudio18.exeunknownc1b6248c-82e8-49d3-a2e8-5e24327938cf Error: (12/29/2016 03:51:25 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: ) Description: Subscription licensing service failed: -1073418219 Error: (12/28/2016 01:04:22 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: ) Description: Subscription licensing service failed: -1073418219 Error: (12/27/2016 11:49:28 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: burningstudio18.exe18.0.0.57583c295dunknown0.0.0.000000000c0000005052c00021b3001d26093745f6343C:\Program Files (x86)\Ashampoo\Ashampoo Burning Studio 18\burningstudio18.exeunknown4913d4d7-7c59-4acd-abe8-69e876e62968 Error: (12/27/2016 11:45:04 PM) (Source: ESENT) (EventID: 454) (User: ) Description: taskhostw4192WebCacheLocal: -1032 Error: (12/27/2016 11:45:04 PM) (Source: ESENT) (EventID: 490) (User: ) Description: taskhostw4192WebCacheLocal: C:\Users\Kamilo\AppData\Local\Microsoft\Windows\WebCache\V01.log-1032 (0xfffffbf8)32 (0x00000020)Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. CodeIntegrity Errors: =================================== Date: 2016-12-30 23:48:37.163 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-12-30 23:48:37.158 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-12-30 23:48:37.151 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-12-29 17:30:27.500 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-12-29 17:30:27.499 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-12-29 17:30:27.493 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-12-27 23:49:53.986 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-12-27 23:49:53.984 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-12-27 23:49:53.970 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-12-27 22:15:14.554 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Memory info =========================== Processor: Intel(R) Core(TM)2 Quad CPU Q6600 @ 2.40GHz Percentage of memory in use: 71% Total physical RAM: 4094.49 MB Available physical RAM: 1180.45 MB Total Pagefile: 9579.1 MB Available Pagefile: 4489 MB Total Virtual: 131072 MB Available Virtual: 131071.74 MB ==================== Drives ================================ Drive c: (Dysk SSD) (Fixed) (Total:111.25 GB) (Free:19.88 GB) NTFS Drive d: (Dysk HDD) (Fixed) (Total:372.61 GB) (Free:100 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: 3F05FA83) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=111.3 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=450 MB) - (Type=27) ======================================================== Disk: 1 (Size: 372.6 GB) (Disk ID: F29CF29C) Partition 1: (Not Active) - (Size=372.6 GB) - (Type=07 NTFS) ==================== End Of Log ============================