wklejto.pl

Dodane przez: ~Anonim (2018-06-17 17:58) -> text
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.
14.
15.
16.
17.
18.
19.
20.
21.
22.
23.
24.
25.
26.
27.
28.
29.
30.
31.
32.
33.
34.
35.
36.
37.
38.
39.
40.
41.
42.
43.
44.
45.
46.
47.
48.
49.
50.
51.
52.
53.
54.
55.
56.
57.
58.
59.
60.
61.
62.
63.
64.
65.
66.
67.
68.
69.
70.
71.
72.
73.
74.
75.
76.
77.
78.
79.
80.
81.
82.
83.
84.
85.
86.
87.
88.
89.
90.
91.
92.
93.
94.
95.
96.
97.
98.
99.
100.
101.
102.
103.
104.
105.
106.
107.
108.
109.
110.
111.
112.
113.
114.
115.
116.
117.
118.
119.
120.
121.
122.
123.
124.
125.
126.
127.
128.
129.
130.
131.
132.
133.
134.
135.
136.
137.
138.
139.
140.
141.
142.
143.
144.
145.
146.
147.
148.
149.
150.
151.
152.
153.
154.
155.
156.
157.
158.
159.
160.
161.
162.
163.
164.
165.
166.
167.
168.
169.
170.
171.
172.
173.
174.
175.
176.
177.
178.
179.
180.
181.
182.
183.
184.
185.
186.
187.
188.
189.
190.
191.
192.
193.
194.
195.
196.
197.
198.
199.
200.
201.
202.
203.
204.
205.
206.
207.
208.
209.
210.
211.
212.
213.
214.
215.
216.
217.
218.
219.
220.
221.
222.
223.
224.
225.
226.
227.
228.
229.
230.
231.
232.
233.
234.
235.
236.
237.
238.
239.
240.
241.
242.
243.
244.
245.
246.
247.
248.
249.
250.
251.
252.
253.
254.
255.
256.
257.
258.
259.
260.
261.
262.
263.
264.
265.
266.
267.
268.
269.
270.
271.
272.
273.
274.
275.
276.
277.
278.
279.
280.
281.
282.
283.
284.
285.
286.
287.
288.
289.
290.
291.
292.
293.
294.
295.
296.
297.
298.
299.
300.
301.
302.
303.
304.
305.
306.
307.
308.
309.
310.
311.
312.
313.
314.
315.
316.
317.
318.
319.
320.
321.
322.
323.
324.
325.
326.
327.
328.
329.
330.
331.
332.
333.
334.
335.
336.
337.
338.
339.
340.
341.
342.
343.
344.
345.
346.
347.
348.
349.
350.
351.
352.
353.
354.
355.
356.
357.
358.
359.
360.
361.
362.
363.
364.
365.
366.
367.
368.
369.
370.
371.
372.
373.
374.
375.
376.
377.
378.
379.
380.
381.
382.
383.
384.
385.
386.
387.
388.
389.
390.
391.
392.
393.
394.
395.
396.
397.
398.
399.
400.
401.
402.
403.
404.
405.
406.
407.
408.
409.
410.
411.
412.
413.
414.
415.
416.
417.
418.
419.
420.
421.
422.
423.
424.
425.
426.
427.
428.
429.
430.
431.
432.
433.
434.
435.
436.
437.
438.
439.
440.
441.
442.
443.
444.
445.
446.
447.
448.
449.
450.
451.
452.
453.
454.
455.
456.
457.
458.
459.
460.
461.
462.
463.
464.
465.
466.
467.
468.
469.
470.
471.
472.
473.
474.
475.
476.
477.
478.
479.
480.
481.
482.
483.
484.
485.
486.
487.
488.
489.
490.
491.
492.
493.
494.
495.
496.
497.
498.
499.
500.
501.
502.
503.
504.
505.
506.
507.
508.
509.
510.
511.
512.
513.
514.
515.
516.
517.
518.
519.
520.
521.
522.
523.
524.
525.
526.
527.
528.
529.
530.
531.
532.
533.
534.
535.
536.
537.
538.
539.
540.
541.
542.
543.
544.
545.
546.
547.
548.
549.
550.
551.
552.
553.
554.
555.
556.
557.
558.
559.
560.
561.
562.
563.
564.
565.
566.
567.
568.
569.
570.
571.
572.
573.
574.
575.
576.
577.
578.
579.
580.
581.
582.
583.
584.
585.
586.
587.
588.
589.
590.
591.
592.
593.
594.
595.
596.
597.
598.
599.
600.
601.
602.
603.
604.
605.
606.
607.
608.
609.
610.
611.
612.
613.
614.
615.
616.
617.
618.
619.
620.
621.
622.
623.
624.
625.
626.
627.
628.
629.
630.
631.
632.
633.
634.
635.
636.
637.
638.
639.
640.
641.
642.
643.
644.
645.
646.
647.
648.
649.
650.
651.
652.
653.
654.
655.
656.
657.
658.
659.
660.
661.
662.
663.
664.
665.
666.
667.
668.
669.
670.
671.
672.
673.
674.
675.
676.
677.
678.
679.
680.
681.
682.
683.
684.
685.
686.
687.
688.
689.
690.
691.
692.
693.
694.
695.
696.
697.
698.
699.
700.
701.
702.
703.
704.
705.
706.
707.
708.
709.
710.
711.
712.
713.
714.
715.
716.
717.
Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 06.06.2018 01
Uruchomiony przez DarkCreed (17-06-2018 17:52:46)
Uruchomiony z C:\Users\DarkCreed\Downloads
Windows 10 Pro Wersja 1803 17134.112 (X64) (2018-05-02 11:08:53)
Tryb startu: Normal
==========================================================
 
 
==================== Konta użytkowników: =============================
 
Administrator (S-1-5-21-3638004228-2167589276-2756934381-500 - Administrator - Disabled)
DarkCreed (S-1-5-21-3638004228-2167589276-2756934381-1000 - Administrator - Enabled) => C:\Users\DarkCreed
Gość (S-1-5-21-3638004228-2167589276-2756934381-501 - Limited - Disabled)
Konto domyślne (S-1-5-21-3638004228-2167589276-2756934381-503 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3638004228-2167589276-2756934381-504 - Limited - Disabled)
 
==================== Centrum zabezpieczeń ========================
 
(Załączenie wejścia w fixlist spowoduje jego usunięcie.)
 
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 
==================== Zainstalowane programy ======================
 
(W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.)
 
. . (HKLM\...\{3D383E25-72E7-4F09-AA1C-9ADE6A2EF42F}) (Version: 7.1 - Intel) Hidden
. . . (HKLM-x32\...\{0C9A6167-6560-4085-9C35-EDB1AE105328}) (Version: 3.2.0.9 - Intel) Hidden
Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 17.012.20098 - Adobe Systems Incorporated)
Adobe Flash Player 29 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 29.0.0.113 - Adobe Systems Incorporated)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 18.6.1 - Advanced Micro Devices, Inc.)
Aplikacja Blizzard (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Asystent uaktualnienia do systemu Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17384 - Microsoft Corporation)
AviSynth 2.5 (HKLM-x32\...\Avisynth) (Version:  - )
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB)
BitTorrent (HKU\S-1-5-21-3638004228-2167589276-2756934381-1000\...\BitTorrent) (Version: 7.10.3.44359 - BitTorrent Inc.)
Catalyst Control Center Next Localization BR (HKLM\...\{A16E186C-58C4-3BDC-5CCE-714EFEF5F27F}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{E42911E5-48F8-8557-ED20-D72AD1907D25}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{B4C30EF4-B2C5-1395-B534-7B63BCB6E8E4}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{62098A5F-E03B-31A3-5F9C-51A7F7D25744}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{1757AD9B-0E3C-05F9-FE43-4343BED7DA85}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{66B06F29-EE4F-9130-D96A-754826093FEA}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{821D0A0E-F246-BE40-0D68-93883C14C410}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{88BD74C4-23AB-4554-915C-6E1F0C81F6CD}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{A48E2AB0-0866-7783-9657-E1709EB18D02}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{E61CEF9A-BAC3-EAEE-F735-E257D2354DF2}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{DA0326BB-657D-AAFC-752C-363E8FA33755}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{B873A1FB-5EA0-EE5F-A861-1E38880AD08E}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{EC9DF9FF-9D75-4CDD-1D58-A2E887B0A42E}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{7ABACA7E-6E59-0EF9-8FA3-6B32E5F58127}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{3E196AAF-F81C-B384-E2AB-28EE2398FE5F}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{DAEFFE0C-CD05-1355-6AFC-7B3D4106A820}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{E392A425-53A7-DF90-96A0-E287A75DD3B2}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{D6F47BB4-700A-F612-0671-5F69EA311BB7}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{01FD9A26-3F61-9236-B360-BE5D043D82C0}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{64D4CCC3-63DF-252D-D29D-03491670225D}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{8DF90937-B869-9F76-5D45-5A8BDA0A33B6}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.43 - Piriform)
Chrome Remote Desktop Host (HKLM-x32\...\{FBB43A99-0B72-461A-A6D2-2F1B54D36B69}) (Version: 66.0.3359.12 - Google Inc.)
Commandos Strike Force (HKLM-x32\...\{D1D72957-368A-404E-AD5C-604D32C2A9C3}) (Version: 1.00.0000 - Eidos)
CPUID HWMonitor 1.30 (HKLM\...\CPUID HWMonitor_is1) (Version:  - )
CrystalDiskInfo 7.0.5 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 7.0.5 - Crystal Dew World)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.5.1.0230 - Disc Soft Ltd)
Defraggler (HKLM\...\Defraggler) (Version: 2.21 - Piriform)
Diablo (HKLM-x32\...\Diablo) (Version:  - )
Diablo (HKU\S-1-5-21-3638004228-2167589276-2756934381-1000\...\Diablo) (Version:  - )
Diablo II (HKLM-x32\...\Diablo II) (Version:  - Blizzard Entertainment)
Diablo Mod PL (HKLM-x32\...\Diablo Mod PL) (Version:  - )
Discord (HKU\S-1-5-21-3638004228-2167589276-2756934381-1000\...\Discord) (Version: 0.0.301 - Discord Inc.)
DooM 3 (HKLM-x32\...\DooM 3) (Version:  - )
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
Far Cry 4 (HKLM-x32\...\Uplay Install 420) (Version:  - Ubisoft)
foobar2000 v1.3.14 (HKLM-x32\...\foobar2000) (Version: 1.3.14 - Peter Pawlowski)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 9.0.0.29935 - Foxit Software Inc.)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version:  - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 67.0.3396.87 - Google Inc.)
Google Drive (HKLM-x32\...\{9BC95947-92FD-438B-A168-C01F9A5B7292}) (Version: 2.34.7529.6838 - Google, Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Gothic II - Modification Development Kit (HKLM-x32\...\G2MDK) (Version: 2.6 - Piranha Bytes)
Gothic_Patch (HKLM-x32\...\{302AC480-43D2-11D5-A818-00500435FC18}) (Version:  - )
GOTHIC1 - Wersja klasyczna - 'Pakiet systemowy' (HKLM-x32\...\GOTHIC1 - Wersja klasyczna - 'Pakiet systemowy') (Version: 1.7 - World of Gothic RU © 2017)
GOTHIC2 - Noc Kruka - 'Pakiet systemowy' (HKLM-x32\...\GOTHIC2 - Noc Kruka - 'Pakiet systemowy') (Version: 1.7 - World of Gothic RU © 2017)
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
HD Audio PCI-e Audio Device (HKLM-x32\...\{0B43B885-9188-404F-8D1B-56EAB075EB59}) (Version: 3.10 -  )
IL Download Manager (HKLM-x32\...\IL Download Manager) (Version:  - Image-Line)
Intel(R) Computing Improvement Program (HKLM\...\{F0385150-FF86-4A18-AA55-6ED9E5F87DA7}) (Version: 2.1.03638 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1158 - Intel Corporation)
Intel(R) Small Business Advantage (HKLM-x32\...\{6A6D86CD-B004-46b7-8951-7BB75A776F8C}) (Version: 3.1.53.8739 - Intel(R) Corporation)
Intel(R) Smart Connect Technology (HKLM\...\{4188E70A-4D3B-447C-B366-963C9E8B4538}) (Version: 5.0.10.2907 - Intel Corporation)
Intel(R) Update Manager (HKLM-x32\...\{7224B7CE-196C-4E2A-A1AE-1D7BF259FD36}) (Version: 3.4.1942 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.5.69 - Intel Corporation)
Intel® Driver & Support Assistant (HKLM-x32\...\{4d839fe1-a8d3-4edc-b0ca-844394309856}) (Version: 3.2.0.9 - Intel)
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
Java 8 Update 131 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180131F0}) (Version: 8.0.1310.11 - Oracle Corporation)
Just Cause (HKLM-x32\...\{3C0F8411-A350-4B57-BA19-7C7B036037E2}) (Version: 1.00.0000 - Eidos)
L.A. Noire PL [BDIP] wersja 1.01 (HKLM-x32\...\{C863E3ED-F40F-411B-925D-87824CC81DCF}_is1) (Version: 1.01 - BDIP)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Malwarebytes (wersja 3.5.1.2522) (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.5.1.2522 - Malwarebytes)
Mass Effect™ (HKLM-x32\...\{44A570EE-FD93-4086-8997-2C38DFDE0019}) (Version: 1.2.20608.0 - Electronic Arts)
Microsoft Application Compatibility Toolkit 5.6 (HKLM-x32\...\{0F5AEBB0-43F3-4571-ACE7-A7942E8AA179}) (Version: 5.6.7324.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{42AA4CA8-DCD8-4308-BCAB-0B6D75856A9D}) (Version: 3.5.95.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Mortal Kombat Komplete Edition PL wersja 1.4 (HKLM-x32\...\{B497DB5E-01AC-401A-8629-A340E7743098}_is1) (Version: 1.4 - Śledziowe spolszczenia)
Mozilla Firefox 60.0.2 (x64 pl) (HKLM\...\Mozilla Firefox 60.0.2 (x64 pl)) (Version: 60.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 59.0.2 - Mozilla)
Mp3tag v2.83 (HKLM-x32\...\Mp3tag) (Version: 2.83 - Florian Heidenreich)
MSI Live Update 6 (HKLM-x32\...\{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1) (Version: 6.2.0.23 - MSI)
Need for Speed™ Most Wanted (HKLM-x32\...\{A48B9CD8-C2BA-4EC9-0081-7260D238C7CF}) (Version:  - )
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.63.14 - Black Tree Gaming)
NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation)
Oblivion (HKLM-x32\...\{35CB6715-41F8-4F99-8881-6FC75BF054B0}) (Version: 1.00.0000 - Bethesda Softworks)
OCCT 4.4.2 (HKLM-x32\...\OCCT) (Version: 4.4.2 - Ocbase.com)
Odkurzacz (HKLM-x32\...\Odkurzacz 14.3_is1) (Version: 14.3.0.4600 - FranmoSoftware - Maciej Opaliński)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Oprogramowanie mikroukładu Intel® (HKLM-x32\...\{bb0592a7-5772-4736-9d55-2402740085db}) (Version: 10.1.1.38 - Intel(R) Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 10.5.20.63112 - Electronic Arts, Inc.)
Polski pakiet językowy dla narzędzi Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PLK) (Version: 10.0.50903 - Microsoft Corporation)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.9.422.2016 - Realtek)
Revo Uninstaller 2.0.5 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.5 - VS Revo Group, Ltd.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.3.8 - Rockstar Games)
S.T.A.L.K.E.R.: Lost Alpha DC version 1.4005 (HKLM-x32\...\S.T.A.L.K.E.R.: Lost Alpha DC_is1) (Version: 1.4005 - dezowave)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skype™ 7.41 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.41.101 - Skype Technologies S.A.)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version:  - )
Splinter Cell Blacklist (HKLM-x32\...\Uplay Install 91) (Version:  - Ubisoft)
Spolszczenie do SOMA (HKLM-x32\...\Spolszczenie do SOMA) (Version: 1.0 - GrajPoPolsku)
Spotify (HKU\S-1-5-21-3638004228-2167589276-2756934381-1000\...\Spotify) (Version: 1.0.82.447.g975ad224 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteelSeries Engine 3.12.3 (HKLM\...\SteelSeries Engine 3) (Version: 3.12.3 - SteelSeries ApS)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.1.4 - TeamSpeak Systems GmbH)
The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.31.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Free DLC program (16 DLC) (HKLM-x32\...\Free DLC program (16 DLC)_is1) (Version: 1.24.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Krew i Wino (HKLM-x32\...\Blood and Wine_is1) (Version: 1.24.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Serca z kamienia (HKLM-x32\...\Hearts of Stone_is1) (Version: 1.24.0.0 - GOG.com)
Tom Clancy's Rainbow Six Siege (HKLM-x32\...\Uplay Install 635) (Version:  - Ubisoft Montreal)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.0 release candidate 6 - Ghisler Software GmbH)
Updated Unofficial Fallout 3 Patch v2.1.0 (HKLM-x32\...\Updated Unofficial Fallout 3 Patch_is1) (Version: 2.1.0 - )
Uplay (HKLM-x32\...\Uplay) (Version: 18.1 - Ubisoft)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN)
Vulkan Run Time Libraries 1.1.70.0 (HKLM\...\VulkanRT1.1.70.0) (Version: 1.1.70.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.1.70.0 (HKLM\...\VulkanRT1.1.70.0-4) (Version: 1.1.70.0 - LunarG, Inc.) Hidden
WinDirStat 1.1.2 (HKU\S-1-5-21-3638004228-2167589276-2756934381-1000\...\WinDirStat) (Version:  - )
WinRAR 5.30 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.30.0 - win.rar GmbH)
Xvid Video Codec (HKLM-x32\...\Xvid Video Codec 1.3.2) (Version: 1.3.2 - Xvid Team)
 
==================== Niestandardowe rejestracje CLSID (filtrowane): ==========================
 
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
 
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-11-10] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-11-10] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-11-10] (Google)
ContextMenuHandlers1: [###MegaContextMenuExt] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\DarkCreed\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] ()
ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2016-03-08] (Piriform Ltd)
ContextMenuHandlers1: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2017-10-21] (Foxit Software Inc.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-11-10] (Google)
ContextMenuHandlers1: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2017-06-23] (Florian Heidenreich)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2015-11-18] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2015-11-18] (Alexander Roshal)
ContextMenuHandlers2: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2017-06-23] (Florian Heidenreich)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes)
ContextMenuHandlers4: [###MegaContextMenuExt] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\DarkCreed\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] ()
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-11-10] (Google)
ContextMenuHandlers4: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2017-06-23] (Florian Heidenreich)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2018-06-07] (Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} =>  -> Brak pliku
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> Brak pliku
ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2016-03-08] (Piriform Ltd)
ContextMenuHandlers6: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2017-10-21] (Foxit Software Inc.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2015-11-18] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2015-11-18] (Alexander Roshal)
 
==================== Zaplanowane zadania (filtrowane) =============
 
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
 
Task: {02226722-781E-470F-8B83-6FD9D9B625CD} - System32\Tasks\Odkurzacz => C:\Program Files (x86)\Odkurzacz\odkurzacz.exe [2017-01-18] (FranmoSoftware)
Task: {222DE26D-E1BB-4B49-83AC-8AEFDAE8D50A} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [2018-06-07] (Advanced Micro Devices, Inc.)
Task: {2B0B31F1-D570-483B-8576-AC6112C089F0} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [2017-07-13] (Intel Corporation)
Task: {35A4D0B8-420F-4409-8314-E9D834509E36} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-14] (Google Inc.)
Task: {38F8EAA0-3255-4EF9-9025-D381F4802D2C} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-05-24] (Piriform Ltd)
Task: {3E6847D0-BD39-4A2A-9599-5BB537B575F3} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2016-08-12] (Intel Corporation)
Task: {5033E241-05F3-440E-910C-D1ED3FFF1551} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2016-08-12] (Intel Corporation)
Task: {62A3B461-4B35-4280-B6D8-3D87ED930CCB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.16.17656.18052-0\MpCmdRun.exe [2018-05-31] (Microsoft Corporation)
Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] ()
Task: {789A2587-ED8E-43F2-8745-0BE6233ECE47} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-07-20] (Adobe Systems Incorporated)
Task: {78C5F9B6-E0BE-4AAF-A23A-5BAC107C1C3D} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\dvrcmd.exe [2018-06-07] (Advanced Micro Devices, Inc.)
Task: {8B9CC344-C558-4F95-A3EA-8255993C6F8E} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [2017-07-13] (Intel Corporation)
Task: {91FADA77-0DB5-4B5D-A884-B83054367804} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.16.17656.18052-0\MpCmdRun.exe [2018-05-31] (Microsoft Corporation)
Task: {9486731A-2368-4941-B5A9-E3F5D346964D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-14] (Google Inc.)
Task: {95E69281-1D64-4AB2-BB71-529FCB56717E} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2018-06-06] (AVAST Software)
Task: {9D4F8D19-8F1F-4433-98A0-94023A9D6AA4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.16.17656.18052-0\MpCmdRun.exe [2018-05-31] (Microsoft Corporation)
Task: {A2989E0A-996A-4C21-8B2B-ECE4ED59F5BC} - System32\Tasks\Driver Booster SkipUAC (DarkCreed) => C:\Program Files (x86)\IObit\Driver Booster\5.1.0\DriverBooster.exe
Task: {A7B58F50-1C00-48CC-B724-527053ED19E0} - System32\Tasks\Intel(R) Small Business Advantage\Notifier => C:\Program Files\Intel\Intel(R) Small Business Advantage\UI\SBA_Notifier.exe [2015-06-04] (Intel Corporation)
Task: {A9208C25-C592-4757-8853-A9071DBDA317} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
Task: {AB0F8596-A53F-4C5C-9605-3BBEC7608632} - System32\Tasks\S-1-5-21-3638004228-2167589276-2756934381-1000\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe [2018-04-12] (Microsoft Corporation)
Task: {AB93A7CD-B231-44D2-A744-F55CE27BE7D0} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-04-09] (Adobe Systems Incorporated)
Task: {BE633868-767F-4224-964A-5B539409E457} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {C754B717-83C8-4F69-B5C2-26C924A2B443} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.16.17656.18052-0\MpCmdRun.exe [2018-05-31] (Microsoft Corporation)
Task: {C7F66B5D-B52B-45D2-84CE-6511A7320BC4} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-05-24] (Piriform Ltd)
Task: {D21BA331-FFC1-41AC-9D57-BC86CCB4CFAD} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_29_0_0_113_pepper.exe [2018-04-09] (Adobe Systems Incorporated)
 
(Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.)
 
 
==================== Skróty & WMI ========================
 
(Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.)
 
 
ShortcutWithArgument: C:\Users\DarkCreed\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikacje Chrome\Pulpit zdalny Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory=Default --app-id=gbchcmhmhahfdphkhkmpfmihenigjmpp
 
==================== Załadowane moduły (filtrowane) ==============
 
2015-05-19 09:11 - 2015-05-19 09:11 - 000007680 _____ () C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
2016-03-18 13:53 - 2018-02-06 21:54 - 000076152 _____ () C:\WINDOWS\SysWOW64\PnkBstrA.exe
2018-03-07 16:56 - 2018-03-07 16:56 - 000183568 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
2018-04-12 01:34 - 2018-04-12 01:34 - 000491744 _____ () C:\Windows\System32\InputHost.dll
2013-09-05 01:17 - 2013-09-05 01:17 - 004300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\office.odf
2018-04-12 01:34 - 2018-04-12 01:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 002759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-04-24 22:17 - 2018-04-24 22:17 - 000015360 _____ () C:\Program Files\AMD\CNext\CNext\libEGL.DLL
2018-04-24 22:17 - 2018-04-24 22:17 - 002519040 _____ () C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2018-06-13 01:14 - 2018-06-08 10:56 - 002185216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-03-11 19:48 - 2013-04-25 22:16 - 000286720 _____ () C:\Windows\System\GfsMgr64.exe
2016-03-11 19:48 - 2013-04-25 22:16 - 000204800 _____ () C:\Windows\SysWOW64\GfsMgr.exe
2016-03-11 19:48 - 2011-02-26 03:07 - 000204800 _____ () C:\Windows\SysWOW64\ExMgr.exe
2017-11-11 22:52 - 2015-07-28 03:30 - 002401792 _____ () C:\Program Files\HD Audio PCI-e Audio Device\CPL\FaceLift_x64.exe
2018-06-17 17:32 - 2018-06-12 07:36 - 002663768 _____ () C:\Program Files (x86)\Google\Chrome\Application\67.0.3396.87\swiftshader\libglesv2.dll
2018-06-17 17:32 - 2018-06-12 07:36 - 000128856 _____ () C:\Program Files (x86)\Google\Chrome\Application\67.0.3396.87\swiftshader\libegl.dll
2018-05-20 21:05 - 2018-05-20 21:06 - 000062464 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11804.1001.10.0_x64__8wekyb3d8bbwe\WinStoreTasksWrapper.dll
2018-05-20 21:05 - 2018-05-20 21:06 - 000084992 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11804.1001.10.0_x64__8wekyb3d8bbwe\WinStore.Preview.dll
2017-12-09 12:25 - 2005-07-18 14:43 - 000160256 _____ () C:\Program Files (x86)\MSI\Live Update\unrar.dll
2018-06-14 00:19 - 2018-04-30 23:01 - 001891672 _____ () C:\Users\DarkCreed\AppData\Local\Discord\app-0.0.301\ffmpeg.dll
2018-06-14 00:19 - 2018-04-30 23:01 - 001937752 _____ () C:\Users\DarkCreed\AppData\Local\Discord\app-0.0.301\libglesv2.dll
2018-06-14 00:19 - 2018-04-30 23:01 - 000095576 _____ () C:\Users\DarkCreed\AppData\Local\Discord\app-0.0.301\libegl.dll
2018-06-14 00:19 - 2018-06-14 00:19 - 001910104 _____ () \\?\C:\Users\DarkCreed\AppData\Roaming\discord\0.0.301\modules\discord_spellcheck\node_modules\cld\build\Release\cld.node
2018-06-14 00:19 - 2018-06-14 00:19 - 000422744 _____ () \\?\C:\Users\DarkCreed\AppData\Roaming\discord\0.0.301\modules\discord_spellcheck\node_modules\spellchecker\build\Release\spellchecker.node
2018-06-14 00:19 - 2018-06-14 00:19 - 000145240 _____ () \\?\C:\Users\DarkCreed\AppData\Roaming\discord\0.0.301\modules\discord_spellcheck\node_modules\keyboard-layout\build\Release\keyboard-layout-manager.node
2018-06-14 00:19 - 2018-06-14 00:21 - 009820504 _____ () \\?\C:\Users\DarkCreed\AppData\Roaming\discord\0.0.301\modules\discord_voice\discord_voice.node
2018-06-14 00:19 - 2018-06-14 00:19 - 001530712 _____ () \\?\C:\Users\DarkCreed\AppData\Roaming\discord\0.0.301\modules\discord_utils\discord_utils.node
2018-06-14 00:19 - 2018-06-14 00:19 - 000512856 _____ () \\?\C:\Users\DarkCreed\AppData\Roaming\discord\0.0.301\modules\discord_erlpack\discord_erlpack.node
2018-06-14 00:19 - 2018-06-14 00:21 - 001578840 _____ () \\?\C:\Users\DarkCreed\AppData\Roaming\discord\0.0.301\modules\discord_game_utils\discord_game_utils.node
2018-06-14 00:19 - 2018-06-14 00:21 - 001728344 _____ () \\?\C:\Users\DarkCreed\AppData\Roaming\discord\0.0.301\modules\discord_overlay2\discord_overlay2.node
2018-06-14 00:19 - 2018-06-14 00:19 - 002722648 _____ () \\?\C:\Users\DarkCreed\AppData\Roaming\discord\0.0.301\modules\discord_rpc\discord_rpc.node
2018-06-14 00:23 - 2018-06-14 00:23 - 002760536 _____ () \\?\C:\Users\DarkCreed\AppData\Roaming\discord\0.0.301\modules\discord_contact_import\discord_contact_import.node
2018-06-14 00:22 - 2018-06-14 00:22 - 001249112 _____ () \\?\C:\Users\DarkCreed\AppData\Roaming\discord\0.0.301\modules\discord_vigilante\discord_vigilante.node
 
==================== Alternate Data Streams (filtrowane) =========
 
(Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.)
 
AlternateDataStreams: C:\WINDOWS\SysWOW64\zlib.dll:DocumentSummaryInformation [63]
AlternateDataStreams: C:\WINDOWS\SysWOW64\zlib.dll:SummaryInformation [63]
AlternateDataStreams: C:\WINDOWS\SysWOW64\zlib.dll:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\Public\AppData:CSM [468]
 
==================== Tryb awaryjny (filtrowane) ===================
 
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.)
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
 
==================== Powiązania plików (filtrowane) ===============
 
(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.)
 
 
==================== Internet Explorer - Witryny zaufane i z ograniczeniami ===============
 
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.)
 
 
==================== Hosts - zawartość: ===============================
 
(Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.)
 
2009-07-14 04:34 - 2018-06-17 13:03 - 000000027 _____ C:\WINDOWS\system32\Drivers\etc\hosts
 
127.0.0.1       localhost
 
==================== Inne obszary ============================
 
(Obecnie brak automatycznej naprawy dla tej sekcji.)
 
HKU\S-1-5-21-3638004228-2167589276-2756934381-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\DarkCreed\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.1.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
Zapora systemu Windows [funkcja włączona]
 
==================== MSCONFIG/TASK MANAGER - Wyłączone elementy ==
 
MSCONFIG\Services: DPS => 2
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: Command Center => C:\Program Files (x86)\MSI\Command Center\StartCommandCenter.exe
MSCONFIG\startupreg: EADM => "D:\Program Files (x86)\Origin\Origin.exe" -AutoStart
MSCONFIG\startupreg: GalaxyClient => C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe /launchViaAutoStart
MSCONFIG\startupreg: IMSS => "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe" "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe" 60
MSCONFIG\startupreg: ISCT Tray => C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
MSCONFIG\startupreg: Live Update => C:\Program Files (x86)\MSI\Live Update\Live Update.exe /REMINDER
MSCONFIG\startupreg: Raptr => C:\Program Files (x86)\Raptr\RAPTRS~1.EXE --startup
MSCONFIG\startupreg: RTHDVCPL => "C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
MSCONFIG\startupreg: StartCN => "C:\Program Files\AMD\CNext\CNext\cnext.exe" atlogon
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
MSCONFIG\startupreg: Super Charger => C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run: => "StartCN"
HKLM\...\StartupApproved\Run: => "Command Center"
HKLM\...\StartupApproved\Run32: => "DSATray"
HKLM\...\StartupApproved\Run32: => "StartCCC"
HKLM\...\StartupApproved\Run32: => "Fast Boot"
HKLM\...\StartupApproved\Run32: => "Super Charger"
HKLM\...\StartupApproved\Run32: => "Raptr"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "Live Update"
HKLM\...\StartupApproved\Run32: => "Command Center"
HKLM\...\StartupApproved\Run32: => "PlaysTV"
HKLM\...\StartupApproved\Run32: => "MSIRegister"
HKLM\...\StartupApproved\Run32: => "KiesTrayAgent"
HKLM\...\StartupApproved\Run32: => "IMSS"
HKU\S-1-5-21-3638004228-2167589276-2756934381-1000\...\StartupApproved\StartupFolder: => "GameRanger.lnk"
HKU\S-1-5-21-3638004228-2167589276-2756934381-1000\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-3638004228-2167589276-2756934381-1000\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3638004228-2167589276-2756934381-1000\...\StartupApproved\Run: => "BitTorrent"
HKU\S-1-5-21-3638004228-2167589276-2756934381-1000\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-3638004228-2167589276-2756934381-1000\...\StartupApproved\Run: => "DVSSkypeRecorder"
HKU\S-1-5-21-3638004228-2167589276-2756934381-1000\...\StartupApproved\Run: => "Xvid"
HKU\S-1-5-21-3638004228-2167589276-2756934381-1000\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-3638004228-2167589276-2756934381-1000\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-3638004228-2167589276-2756934381-1000\...\StartupApproved\Run: => "TIDAL"
HKU\S-1-5-21-3638004228-2167589276-2756934381-1000\...\StartupApproved\Run: => "GalaxyClient"
HKU\S-1-5-21-3638004228-2167589276-2756934381-1000\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-3638004228-2167589276-2756934381-1000\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-3638004228-2167589276-2756934381-1000\...\StartupApproved\Run: => "OneDriveSetup"
HKU\S-1-5-21-3638004228-2167589276-2756934381-1000\...\StartupApproved\Run: => "Application Restart #3"
 
==================== Reguły Zapory systemu Windows (filtrowane) ===============
 
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
 
FirewallRules: [{DB1B6621-1112-46AA-AC5E-C02D95431D7A}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{8CF94FA3-5E76-4888-B014-679B7D712C9C}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [UDP Query User{C3FF5F44-ACD9-4B2E-921B-E6B6B44B3CAD}C:\users\darkcreed\appdata\roaming\bittorrent\bittorrent.exe] => (Allow) C:\users\darkcreed\appdata\roaming\bittorrent\bittorrent.exe
FirewallRules: [TCP Query User{A0E7D704-95F9-4521-A5C9-1BCC3EBA74D4}C:\users\darkcreed\appdata\roaming\bittorrent\bittorrent.exe] => (Allow) C:\users\darkcreed\appdata\roaming\bittorrent\bittorrent.exe
FirewallRules: [UDP Query User{25F64132-9A5D-42B1-BAC5-0E3ACB87D3DF}C:\program files (x86)\ea games\need for speed most wanted\speed.exe] => (Block) C:\program files (x86)\ea games\need for speed most wanted\speed.exe
FirewallRules: [TCP Query User{91ED8943-929F-4C7F-9067-DD55501EF762}C:\program files (x86)\ea games\need for speed most wanted\speed.exe] => (Block) C:\program files (x86)\ea games\need for speed most wanted\speed.exe
FirewallRules: [{543835BA-EE0E-4F7E-8444-F5BB0E389F9A}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
FirewallRules: [{5BE8EAA2-F2A3-4BD5-ACB2-D644E7534CA5}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
FirewallRules: [{5E60E434-B0CD-43F1-A33A-BA87318B7E52}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
FirewallRules: [{DBB4490F-2008-45CD-82C7-93B72B934608}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
FirewallRules: [{84BBB831-1579-49BD-B7F3-4168997A1DAB}] => (Allow) D:\Steam Games\steamapps\common\Gothic II\system\Gothic2.exe
FirewallRules: [{5F0B4614-2774-47E6-8B30-AD2CA7B6380C}] => (Allow) D:\Steam Games\steamapps\common\Gothic II\system\Gothic2.exe
FirewallRules: [{6A76B74A-5600-4AA2-AAD3-D63D5A3FC967}] => (Allow) D:\Steam Games\steamapps\common\SOMA\ModLauncher.exe
FirewallRules: [{AD1AE0EC-D1E4-41B8-8E77-7DA2B00FC377}] => (Allow) D:\Steam Games\steamapps\common\SOMA\ModLauncher.exe
FirewallRules: [{ED024672-8140-4719-8EA8-023BED034E11}] => (Allow) D:\Steam Games\steamapps\common\SOMA\Soma.exe
FirewallRules: [{F0FEEEE2-7376-4FE2-A648-8B55881FBAA9}] => (Allow) D:\Steam Games\steamapps\common\SOMA\Soma.exe
FirewallRules: [{472EB6D0-2142-40BB-A843-6E1A86BFF8F9}] => (Allow) D:\Steam Games\steamapps\common\SpecOps_TheLine\Binaries\Win32\SpecOpsTheLine.exe
FirewallRules: [{A4F4806C-DF7F-41CA-BCA5-48C73EBB4C98}] => (Allow) D:\Steam Games\steamapps\common\SpecOps_TheLine\Binaries\Win32\SpecOpsTheLine.exe
FirewallRules: [UDP Query User{B3685871-9149-447E-863D-1288F8C94BA1}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{68F28208-572B-4F84-9EED-53A7FDB09367}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{D029E2CA-D9EE-48F2-9516-F0CD6C9FDF66}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{9ABE648D-771D-4F70-836D-628E8F6D81A2}] => (Allow) D:\Steam Games\steamapps\common\Stronghold\Stronghold.exe
FirewallRules: [{43EA27FC-D001-4EB1-91AC-83AF82F05163}] => (Allow) D:\Steam Games\steamapps\common\Stronghold\Stronghold.exe
FirewallRules: [{63F72836-77CA-4AD8-BBE4-B06F64EEA589}] => (Allow) D:\Steam Games\steamapps\common\Stronghold Crusader Extreme\Stronghold_Crusader_Extreme.exe
FirewallRules: [{0960BF4D-90E0-4DC2-BD7A-22F830DFCAD7}] => (Allow) D:\Steam Games\steamapps\common\Stronghold Crusader Extreme\Stronghold_Crusader_Extreme.exe
FirewallRules: [{0D0A8A6A-1314-4C8F-A2B0-9EA36E5B3877}] => (Allow) D:\Steam Games\steamapps\common\TheLongDark\tld.exe
FirewallRules: [{8BF59213-8C1B-46E4-B293-F2395846AA12}] => (Allow) D:\Steam Games\steamapps\common\TheLongDark\tld.exe
FirewallRules: [UDP Query User{421FB060-0FFD-485F-B6AD-5C262B6A429F}D:\steam games\steamapps\common\dishonored\binaries\win32\dishonored.exe] => (Allow) D:\steam games\steamapps\common\dishonored\binaries\win32\dishonored.exe
FirewallRules: [TCP Query User{45FDDE38-E2B0-4C33-B14B-9A930BCFDCA8}D:\steam games\steamapps\common\dishonored\binaries\win32\dishonored.exe] => (Allow) D:\steam games\steamapps\common\dishonored\binaries\win32\dishonored.exe
FirewallRules: [{B68D7584-A7DD-4278-A4FE-0050E99BA248}] => (Block) D:\Steam Games\steamapps\common\Skyrim Special Edition\SkyrimSE.exe
FirewallRules: [{018D1BBD-BCC1-4F52-9086-9C95AB4151C4}] => (Allow) D:\Steam Games\steamapps\common\Deus Ex - Human Revolution\dxhr.exe
FirewallRules: [{98B46261-D7D7-4EF1-9C0C-4C4D226EED12}] => (Allow) D:\Steam Games\steamapps\common\Deus Ex - Human Revolution\dxhr.exe
FirewallRules: [UDP Query User{791AEEE3-D2E2-42A9-8888-4395AF1B084F}D:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) D:\program files\rockstar games\grand theft auto v\gta5.exe
FirewallRules: [TCP Query User{07C40185-D7D5-45BA-B60C-9F1B7C47CF9B}D:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) D:\program files\rockstar games\grand theft auto v\gta5.exe
FirewallRules: [{F91E7A17-1D28-4E95-8834-35D3D453091C}] => (Allow) D:\Steam Games\steamapps\common\POSTAL2Complete\ShareThePain\System\Postal2MP.exe
FirewallRules: [{09565B6E-6AD5-4A21-ACF8-7406DE3FCBCC}] => (Allow) D:\Steam Games\steamapps\common\POSTAL2Complete\ShareThePain\System\Postal2MP.exe
FirewallRules: [{C49C313E-A373-4EDB-8304-576E2052ABC2}] => (Allow) D:\Steam Games\steamapps\common\POSTAL2Complete\System\Postal2.exe
FirewallRules: [{467A2599-07A5-4CA3-8212-7B2E608D4DA2}] => (Allow) D:\Steam Games\steamapps\common\POSTAL2Complete\System\Postal2.exe
FirewallRules: [{14C78AA1-93D3-4627-A092-1864391FA11C}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{D84F3AE5-8E92-4E38-9A14-3A3EC51A08AC}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{5FFBE87C-3263-4479-9BB9-06DC0BC541BB}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{8CD9820B-C4D6-4639-BDCD-D67C2AC034C8}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{550827BB-DF32-4F2A-B2CD-34D16CD3AB7E}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{A2CE3FFB-A55C-4A7D-8672-B816D81C8CBD}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [UDP Query User{97C6E1E9-83AC-46C9-ACFD-AA7DDC1EAFD5}C:\program files (x86)\ubisoft\ubisoft game launcher\games\r6\tom clancy's rainbow six siege\rainbowsix.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\r6\tom clancy's rainbow six siege\rainbowsix.exe
FirewallRules: [TCP Query User{99DEF6E9-2AA7-4593-BF0E-E2D59F4C191B}C:\program files (x86)\ubisoft\ubisoft game launcher\games\r6\tom clancy's rainbow six siege\rainbowsix.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\r6\tom clancy's rainbow six siege\rainbowsix.exe
FirewallRules: [{CAFE80AD-3D32-4C00-81B2-E5B6CACE6A40}] => (Allow) D:\Steam Games\steamapps\common\Skyrim Special Edition\SkyrimSELauncher.exe
FirewallRules: [{04BF2331-40EB-49F1-B897-8010BEFC8B61}] => (Allow) D:\Steam Games\steamapps\common\Skyrim Special Edition\SkyrimSELauncher.exe
FirewallRules: [{6B024625-8408-4848-83DA-62FCFB2DF41F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{D038D692-4B57-4C5C-9132-83DDBA54BA80}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{8805FD13-682F-4D97-B944-F966F8ED3213}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{C03355C7-6262-4420-BC77-EB748918C5D6}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [UDP Query User{4D138E37-88F2-4988-AB61-5788688457AD}C:\users\darkcreed\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\darkcreed\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{530B3AB5-A69E-40A3-A591-70FE1EB121D8}C:\users\darkcreed\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\darkcreed\appdata\roaming\spotify\spotify.exe
FirewallRules: [{F471A05B-42CA-4C19-BA30-9CC839E32134}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{07ADC17D-C79F-46CC-89B7-18F152346377}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{38FAFE4A-54D0-4B3C-91CF-38DE8C12277B}] => (Allow) D:\Steam Games\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{F1C3E893-148D-4E0A-B901-36F62BCDE65A}] => (Allow) D:\Steam Games\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{D2FAB978-3F7A-4223-BFB0-CC3E85AB99CA}] => (Allow) D:\Steam Games\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{50C9A3EB-DBFE-4E9A-B92F-9AF6D29E4782}] => (Allow) D:\Steam Games\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{78B58B33-984C-4B95-A177-C40CF365E654}] => (Allow) D:\Far Cry 4\bin\FarCry4.exe
FirewallRules: [{F4A12A10-D656-4D1B-915A-764EDBD38E36}] => (Allow) D:\Far Cry 4\bin\FarCry4.exe
FirewallRules: [{86A9386D-D185-47AC-9888-549CD496691A}] => (Allow) D:\Far Cry 4\bin\IGE_WPF64.exe
FirewallRules: [{C19E1F64-3E89-4207-91B1-E5136E7EAA43}] => (Allow) D:\Far Cry 4\bin\IGE_WPF64.exe
FirewallRules: [{BCC5F3C7-8177-4E52-8ED8-CC77A7D189BC}] => (Allow) D:\Steam Games\steamapps\common\KillingFloor\System\KillingFloor.exe
FirewallRules: [{043A8C3E-55DE-4F65-A882-7394FD445D77}] => (Allow) D:\Steam Games\steamapps\common\KillingFloor\System\KillingFloor.exe
FirewallRules: [TCP Query User{2BF61A83-7509-46BB-A56B-18575FE408DA}C:\program files (x86)\google\chrome\application\chrome.exe] => (Block) C:\program files (x86)\google\chrome\application\chrome.exe
FirewallRules: [UDP Query User{0E235C49-979F-4413-8308-8A4B093CD377}C:\program files (x86)\google\chrome\application\chrome.exe] => (Block) C:\program files (x86)\google\chrome\application\chrome.exe
FirewallRules: [{660BD2EC-1BEC-40EA-BE7F-347779DBB142}] => (Allow) C:\ProgramData\Microsoft\Windows\GPR\network\svcnetwk.exe
FirewallRules: [{3CA80C0F-CB84-4D63-988F-EB75976D8626}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{C5A94324-0372-4653-BFA4-07B86FF76B55}] => (Allow) C:\Program Files (x86)\Google\Chrome Remote Desktop\66.0.3359.12\remoting_host.exe
 
==================== Punkty Przywracania systemu =========================
 
13-06-2018 01:14:33 Windows Update
17-06-2018 17:35:40 Revo Uninstaller's restore point - Cent Browser
 
==================== Wadliwe urządzenia w Menedżerze urządzeń =============
 
 
==================== Błędy w Dzienniku zdarzeń: =========================
 
Dziennik Aplikacja:
==================
Error: (06/17/2018 05:47:24 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DarkCreed-komp)
Description: httphttp-2147467263
 
Error: (06/17/2018 05:35:40 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas badania interfejsu IVssWriterCallback. hr = 0x80070005, Odmowa dostępu.
.
To jest często spowodowane przez niepoprawne ustawienia zabezpieczeń w procesie zapisującym lub żądającym.
 
 
Operacja:
   Zbieranie danych modułu zapisującego
 
Kontekst:
   Identyfikator klasy modułu zapisującego: {e8132975-6f93-4464-a53e-1050253ae220}
   Nazwa modułu zapisującego: System Writer
   Identyfikator wystąpienia modułu zapisującego: {62cdbf88-eaca-4a96-b3fe-9aab58e5cb5f}
 
Error: (06/17/2018 05:31:13 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DarkCreed-komp)
Description: httphttp-2147467263
 
Error: (06/17/2018 04:57:36 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DarkCreed-komp)
Description: httphttp-2147467263
 
Error: (06/17/2018 04:28:47 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DarkCreed-komp)
Description: httphttp-2147467263
 
Error: (06/17/2018 03:31:42 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DarkCreed-komp)
Description: httphttp-2147467263
 
Error: (06/17/2018 03:25:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nazwa aplikacji powodującej błąd: AUDIODG.EXE, wersja: 10.0.17134.112, sygnatura czasowa: 0xecd85e98
Nazwa modułu powodującego błąd: ntdll.dll, wersja: 10.0.17134.112, sygnatura czasowa: 0x6529f37c
Kod wyjątku: 0xc0000374
Przesunięcie błędu: 0x00000000000f4d1b
Identyfikator procesu powodującego błąd: 0x1830
Godzina uruchomienia aplikacji powodującej błąd: 0x01d4063b5fc84a20
Ścieżka aplikacji powodującej błąd: C:\WINDOWS\system32\AUDIODG.EXE
Ścieżka modułu powodującego błąd: C:\WINDOWS\SYSTEM32\ntdll.dll
Identyfikator raportu: d0827a96-a1ac-4a6d-b3c9-4b6f49d07916
Pełna nazwa pakietu powodującego błąd: 
Identyfikator aplikacji względem pakietu powodującego błąd:
 
Error: (06/17/2018 02:14:40 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DarkCreed-komp)
Description: httphttp-2147467263
 
 
Dziennik System:
=============
Error: (06/17/2018 05:49:56 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Usługa Energy Server Service queencreek zakończyła działanie; wystąpił następujący błąd: 
Rozdzielczość czasomierza nie została wcześniej ustawiona przez bieżący proces.
 
Error: (06/17/2018 05:49:07 PM) (Source: DCOM) (EventID: 10016) (User: ZARZĄDZANIE NT)
Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Uruchom do aplikacji serwera COM z identyfikatorem klasy CLSID 
Windows.SecurityCenter.WscBrokerManager
 i identyfikatorem aplikacji APPID 
Niedostępny
 użytkownikowi ZARZĄDZANIE NT\SYSTEM o identyfikatorze zabezpieczeń SID (S-1-5-18) z adresu LocalHost (użycie LRPC) działającemu w kontenerze aplikacji o identyfikatorze SID Niedostępny (Niedostępny). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe.
 
Error: (06/17/2018 05:49:07 PM) (Source: DCOM) (EventID: 10016) (User: ZARZĄDZANIE NT)
Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Uruchom do aplikacji serwera COM z identyfikatorem klasy CLSID 
Windows.SecurityCenter.WscDataProtection
 i identyfikatorem aplikacji APPID 
Niedostępny
 użytkownikowi ZARZĄDZANIE NT\SYSTEM o identyfikatorze zabezpieczeń SID (S-1-5-18) z adresu LocalHost (użycie LRPC) działającemu w kontenerze aplikacji o identyfikatorze SID Niedostępny (Niedostępny). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe.
 
Error: (06/17/2018 05:49:05 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Usługa Energy Server Service queencreek zakończyła działanie; wystąpił następujący błąd: 
Rozdzielczość czasomierza nie została wcześniej ustawiona przez bieżący proces.
 
Error: (06/17/2018 05:47:33 PM) (Source: DCOM) (EventID: 10016) (User: DarkCreed-komp)
Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Aktywacja do aplikacji serwera COM z identyfikatorem klasy CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 i identyfikatorem aplikacji APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 użytkownikowi DarkCreed-komp\DarkCreed o identyfikatorze zabezpieczeń SID (S-1-5-21-3638004228-2167589276-2756934381-1000) z adresu LocalHost (użycie LRPC) działającemu w kontenerze aplikacji o identyfikatorze SID Niedostępny (Niedostępny). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe.
 
Error: (06/17/2018 05:46:55 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Usługa NetMsmqActivator zależy od usługi WAS, której nie można uruchomić z powodu następującego błędu: 
Nie można odnaleźć określonego pliku.
 
Error: (06/17/2018 05:46:55 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Usługa W3SVC zależy od usługi WAS, której nie można uruchomić z powodu następującego błędu: 
Nie można odnaleźć określonego pliku.
 
Error: (06/17/2018 05:46:55 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Usługa NetPipeActivator zależy od usługi WAS, której nie można uruchomić z powodu następującego błędu: 
Nie można odnaleźć określonego pliku.
 
 
Windows Defender:
===================================
Date: 2018-06-17 17:14:30.179
Description: 
Skanowanie produktu Program antywirusowy Windows Defender zostało zatrzymane przed ukończeniem.
Identyfikator skanowania: {94A24B60-8442-43E4-835D-31D5BC98262A}
Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem
Parametry skanowania: Pełne skanowanie
Użytkownik: DarkCreed-komp\DarkCreed
 
Date: 2018-06-17 00:32:08.752
Description: 
Produkt Program antywirusowy Windows Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie.
Aby uzyskać więcej informacji, zobacz:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Fuerboos.D!cl&threatid=2147723655&enterprise=0
Nazwa: Trojan:Win32/Fuerboos.D!cl
Identyfikator: 2147723655
Ważność: Poważny
Kategoria: Koń trojański
Ścieżka: file:_C:\Program Files\BZWDQATFZQ\uninstaller.exe;file:_C:\Program Files\CH04T9WDKY\uninstaller.exe;file:_C:\Program Files\GLAQY9F8PK\uninstaller.exe
Pochodzenie wykrycia: Komputer lokalny
Typ wykrycia: FastPath
Źródło wykrycia: System
Użytkownik: ZARZĄDZANIE NT\SYSTEM
Nazwa procesu: Unknown
Wersja podpisu: AV: 1.269.1354.0, AS: 1.269.1354.0, NIS: 1.269.1354.0
Wersja aparatu: AM: 1.1.14901.4, NIS: 1.1.14901.4
 
Date: 2018-06-17 00:31:18.403
Description: 
Skanowanie produktu Program antywirusowy Windows Defender zostało zatrzymane przed ukończeniem.
Identyfikator skanowania: {42B9387E-BB7A-49A3-B52B-898B0E42BF5F}
Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem
Parametry skanowania: Pełne skanowanie
Użytkownik: DarkCreed-komp\DarkCreed
 
Date: 2018-06-17 00:31:18.403
Description: 
Produkt Program antywirusowy Windows Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie.
Aby uzyskać więcej informacji, zobacz:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Fuery.B!cl&threatid=2147718514&enterprise=0
Nazwa: Trojan:Win32/Fuery.B!cl
Identyfikator: 2147718514
Ważność: Poważny
Kategoria: Koń trojański
Ścieżka: file:_C:\AdwCleaner\Quarantine\v1\20180616.233801\4\ShutdownTime\uninstaller.exe#1470D2C4B74034F9
Pochodzenie wykrycia: Komputer lokalny
Typ wykrycia: FastPath
Źródło wykrycia: Użytkownik
Użytkownik: DarkCreed-komp\DarkCreed
Nazwa procesu: Unknown
Wersja podpisu: AV: 1.269.1354.0, AS: 1.269.1354.0, NIS: 1.269.1354.0
Wersja aparatu: AM: 1.1.14901.4, NIS: 1.1.14901.4
 
Date: 2018-06-17 00:31:18.402
Description: 
Produkt Program antywirusowy Windows Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie.
Aby uzyskać więcej informacji, zobacz:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Bluteal.B!rfn&threatid=2147727314&enterprise=0
Nazwa: Trojan:Win32/Bluteal.B!rfn
Identyfikator: 2147727314
Ważność: Poważny
Kategoria: Koń trojański
Ścieżka: file:_C:\AdwCleaner\Quarantine\v1\20180616.233801\18\SystemHealer\khvxiy.dll#9454D4D147435F8D;file:_C:\AdwCleaner\Quarantine\v1\20180616.233801\9\FastDataX\ccbtf.dll#E2BF51C8430B88C9
Pochodzenie wykrycia: Komputer lokalny
Typ wykrycia: Konkretne
Źródło wykrycia: Użytkownik
Użytkownik: DarkCreed-komp\DarkCreed
Nazwa procesu: Unknown
Wersja podpisu: AV: 1.269.1354.0, AS: 1.269.1354.0, NIS: 1.269.1354.0
Wersja aparatu: AM: 1.1.14901.4, NIS: 1.1.14901.4
 
Date: 2018-06-17 03:13:04.024
Description: 
Produkt Program antywirusowy Windows Defender napotkał błąd podczas próby aktualizacji podpisów.
Nowa wersja podpisu: 
Poprzednia wersja podpisu: 1.269.1354.0
Źródło aktualizacji: Serwer usługi Microsoft Update
Typ podpisu: Oprogramowanie antywirusowe
Typ aktualizacji: Pełne
Użytkownik: ZARZĄDZANIE NT\SYSTEM
Bieżąca wersja aparatu: 
Poprzednia wersja aparatu: 1.1.14901.4
Kod błędu: 0x80096004
Opis błędu: Nie można zweryfikować podpisu certyfikatu. 
 
Date: 2018-06-16 23:48:32.804
Description: 
Produkt Program antywirusowy Windows Defender napotkał błąd podczas próby aktualizacji podpisów.
Nowa wersja podpisu: 
Poprzednia wersja podpisu: 1.269.1354.0
Źródło aktualizacji: Serwer usługi Microsoft Update
Typ podpisu: Oprogramowanie antywirusowe
Typ aktualizacji: Pełne
Użytkownik: ZARZĄDZANIE NT\SYSTEM
Bieżąca wersja aparatu: 
Poprzednia wersja aparatu: 1.1.14901.4
Kod błędu: 0x80096004
Opis błędu: Nie można zweryfikować podpisu certyfikatu. 
 
CodeIntegrity:
===================================
 
Date: 2018-06-17 17:25:36.486
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume1\Users\DarkCreed\AppData\Local\CentBrowser\Application\chrome.exe) attempted to load \Device\HarddiskVolume1\Program Files\Malwarebytes\Anti-Malware\mbae.dll that did not meet the Microsoft signing level requirements.
 
Date: 2018-06-13 23:27:49.159
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume1\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.
 
Date: 2018-06-13 23:27:49.142
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume1\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.
 
Date: 2018-06-13 23:27:49.123
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume1\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements.
 
Date: 2018-06-13 23:27:49.054
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume1\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.
 
Date: 2018-06-13 23:27:49.047
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume1\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.
 
Date: 2018-06-13 23:27:49.040
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume1\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements.
 
Date: 2018-06-13 23:27:47.833
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume1\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll that did not meet the Microsoft signing level requirements.
 
==================== Statystyki pamięci =========================== 
 
Procesor: Intel(R) Core(TM) i5-4460 CPU @ 3.20GHz
Procent pamięci w użyciu: 35%
Całkowita pamięć fizyczna: 8115.92 MB
Dostępna pamięć fizyczna: 5211.16 MB
Całkowita pamięć wirtualna: 16307.92 MB
Dostępna pamięć wirtualna: 12463.21 MB
 
==================== Dyski ================================
 
Drive c: () (Fixed) (Total:223.44 GB) (Free:59.55 GB) NTFS
Drive d: () (Fixed) (Total:931.41 GB) (Free:536.73 GB) NTFS
 
\\?\Volume{db0e5346-ba4f-11e5-a40a-806e6f6e6963}\ () (Fixed) (Total:0.1 GB) (Free:0.05 GB) NTFS
\\?\Volume{ea50e16f-0000-0000-0000-801c3a000000}\ () (Fixed) (Total:0.44 GB) (Free:0.05 GB) NTFS
 
==================== MBR & Tablica partycji ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: EA50E16F)
Partition 1: (Not Active) - (Size=223.4 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=9 GB) - (Type=84)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)
 
========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: FC38370A)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS)
 
==================== Koniec  Addition.txt ============================
Wygenerowano w 0.088s, przy pomocy GeSHi 1.0.8
'
Podziel się na Facebook Podziel się na BLIP Podziel się na Twitter Podziel się na Buzz Podziel się na Flaker Dodaj zakładkę Google Podziel się na Delicious Wykop to!

Nowy Komentarz:

Komentarze:

Brak Komentarzy!