PrevNext

Wrzucaj teksty, notatki, kody i linki

Kopiuj, wklej i podziel się bez ograniczeń

Treść schowka:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-05-2020 01
Ran by Rafal (17-05-2020 11:59:46)
Running from C:\Users\Rafal\Downloads
Windows 7 Ultimate Service Pack 1 (X64) (2014-07-12 12:17:49)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1193567628-3741132159-961158197-500 - Administrator - Disabled)
Guest (S-1-5-21-1193567628-3741132159-961158197-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1193567628-3741132159-961158197-1003 - Limited - Enabled)
Rafal (S-1-5-21-1193567628-3741132159-961158197-1000 - Administrator - Enabled) => C:\Users\Rafal

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 20.009.20063 - Adobe Systems Incorporated)
Aktualizacje NVIDIA 36.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 36.0.0.0 - NVIDIA Corporation) Hidden
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 20.1.2397 - AVAST Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 81.0.4053.113 - AVAST Software)
Blackmagic RAW Common Components (HKLM\...\{8F57BC8F-7DAC-4E4B-BD13-A55B1AC0DF43}) (Version: 1.6 - Blackmagic Design)
Call of Duty (HKLM-x32\...\Call of Duty) (Version:  - )
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.)
Club777 (HKU\S-1-5-21-1193567628-3741132159-961158197-1000\...\Club777) (Version:  - )
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Discord (HKU\S-1-5-21-1193567628-3741132159-961158197-1000\...\Discord) (Version: 0.0.306 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 425.31 - NVIDIA Corporation) Hidden
EA SPORTS FIFA World (HKLM-x32\...\{8F9AC744-EEF6-43DB-A4B6-FA1A18F1C640}) (Version: 9.4.0.60779 - Electronic Arts, Inc.)
Epic Games Launcher (HKLM-x32\...\{0F3B0E4D-F8F7-45FC-A661-100AE5495A31}) (Version: 1.1.133.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
e-pity 11.2.1 za rok 2019 (HKLM-x32\...\{80D8170E-5590-218-B9ED-E24E4C99A11D}_is1) (Version: 11.2.1 - e-file sp. z o.o. sp.k.)
ETDWare PS/2-X64 11.13.2.4_WHQL (HKLM\...\Elantech) (Version: 11.13.2.4 - ELAN Microelectronic Corp.)
FIFA 19 (HKLM-x32\...\{3391E07D-8484-4124-817E-FCBDA859FD62}) (Version: 1.0.61.54442 - Electronic Arts)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 81.0.4044.138 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\{5454083B-1308-4485-BF17-1110000D8301}) (Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\Grand Theft Auto IV_is1) (Version:  - )
Huawei E3272 (HKLM-x32\...\Huawei E3272) (Version: 22.001.22.00.1202 - Huawei Technologies Co.,Ltd)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1310 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.18.10.3186 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.5.0.1066 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 3.0.0.66956 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.0.19 - Intel Corporation)
Internet Manager (HKLM-x32\...\Internet Manager) (Version: 22.001.18.13.49 - Huawei Technologies Co.,Ltd)
ipla 2.9 (HKLM-x32\...\ipla) (Version: 2.9 - Cyfrowy Polsat S.A.)
Java 8 Update 73 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218073F0}) (Version: 8.0.730.2 - Oracle Corporation)
K-Lite Codec Pack 11.6.5 Basic (HKLM-x32\...\KLiteCodecPack_is1) (Version: 11.6.5 - )
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Łatka polonizacyjna GTA IV v0.99 (HKLM-x32\...\Łatka polonizacyjna GTA IV v0.99) (Version: 0.99 - GTAPOLSKA.PL)
McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.92 - McAfee, LLC.)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{FD052FB9-FE90-4438-B355-15EDC89D8FB1}) (Version: 2.0.673.0 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office SharePoint Designer 2007 (HKLM-x32\...\SharePointDesigner) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25008 (HKLM-x32\...\{f1e7e313-06df-4c56-96a9-99fdfd149c51}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25008 (HKLM-x32\...\{c239cea1-d49e-4e16-8e87-8c055765f7ec}) (Version: 14.10.25008.0 - Microsoft Corporation)
My Program version 1.5 (HKLM-x32\...\My Program_is1) (Version: 1.5 - )
novaPDF 8 Printer Driver (HKLM\...\{78348298-772C-42B6-A670-7906495C30BB}) (Version: 8.9.950 - Softland)
novaPDF 8 SDK COM (x64) (HKLM\...\{DC8F19A6-7BE4-4274-9B07-763AFAB18506}) (Version: 8.9.950 - Softland)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.15 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.18.0.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.18.0.94 - NVIDIA Corporation)
NVIDIA Oprogramowanie systemu PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NVIDIA Sterownik graficzny 425.31 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 425.31 - NVIDIA Corporation)
OpenOffice 4.1.2 (HKLM-x32\...\{E0ED9630-38E3-418F-A615-A9B2B5758BE5}) (Version: 4.12.9782 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 10.5.56.33908 - Electronic Arts, Inc.)
Panel sterowania NVIDIA 425.31 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 425.31 - NVIDIA Corporation) Hidden
PlayReady PC Runtime x86 (HKLM-x32\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation)
Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile PLK Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Polski pakiet językowy dla programu Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended PLK Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
PowerDVD (HKLM-x32\...\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}) (Version: 7.0.3409.a - CyberLink Corporation)
PowerProducer (HKLM-x32\...\{B7A0CE06-068E-11D6-97FD-0050BACBF861}) (Version:  - )
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Qualcomm Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.13 - Qualcomm Atheros Communications Inc.)
RadiAnt DICOM Viewer (64-bit) (HKLM-x32\...\RadiAnt64) (Version: 4.6.9.18463 - Medixant)
REALTEK Bluetooth Driver (HKLM-x32\...\{9D3D8C60-A5EF-4123-B2B9-172095903AB}) (Version: 3.728.728.042813 - REALTEK Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6914 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30127 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{9DAABC60-A5EF-41FF-B2B9-17329590CD5}) (Version: 1.00.0212 - REALTEK Semiconductor Corp.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.15 - TeamSpeak Systems GmbH)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.51a - Ghisler Software GmbH)
Uplay (HKLM-x32\...\Uplay) (Version: 2.0 - Ubisoft)
Vegas Pro 12.0 (64-bit) (HKLM\...\{87CEB7C0-1D35-11E2-8F19-F04DA23A5C58}) (Version: 12.0.394 - Sony)
WinRAR 5.70 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
Xfire (HKLM-x32\...\Xfire) (Version:  - )

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2210608 2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-02-25] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-02-25] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-02-25] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [BtSendToMenuEx] -> {CF24E6B8-F148-4BCB-9108-ADF313966E80} => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\DevMenuExt.dll [2013-03-25] (Realtek Semiconductor Corporation) [File not signed]
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-03-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-03-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-02-25] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2013-05-17] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2019-04-09] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-02-25] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-03-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-03-01] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [VIDC.XFR1] => C:\Windows\system32\xfcodec64.dll [28544 2013-03-21] (Xfire Inc -> )
HKLM\...\Drivers32: [VIDC.XFR1] => C:\Windows\SysWOW64\xfcodec.dll [42880 2013-03-21] (Xfire Inc -> )

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2015-01-16 14:34 - 2013-12-19 04:20 - 000043008 _____ () [File not signed] C:\ProgramData\Internet Manager\OnlineUpdate\libgcc_s_dw2-1.dll
2015-01-16 14:34 - 2013-12-19 04:20 - 000011362 _____ () [File not signed] C:\ProgramData\Internet Manager\OnlineUpdate\mingwm10.dll
2015-01-16 14:34 - 2013-12-19 04:20 - 002417152 _____ () [File not signed] C:\ProgramData\Internet Manager\OnlineUpdate\QtCore4.dll
2015-01-16 14:34 - 2013-12-19 04:20 - 001148416 _____ () [File not signed] C:\ProgramData\Internet Manager\OnlineUpdate\QtNetwork4.dll
2014-07-12 14:43 - 2013-04-26 04:24 - 000073728 ____R (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.dll
2013-03-22 08:38 - 2013-03-22 08:38 - 000531456 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\ISDI2.dll
2013-03-22 08:38 - 2013-03-22 08:38 - 000286720 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\PsiData.dll
2016-06-08 12:44 - 2016-06-08 12:44 - 000225280 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll
2014-07-12 14:38 - 2012-02-14 19:37 - 000594432 _____ (Realtek Semiconductor Corp. ) [File not signed] C:\Windows\system32\Rtlihvs.dll
2014-07-12 14:35 - 2013-04-09 14:42 - 000041472 _____ (Realtek Semiconductor Corporation) [File not signed] C:\Program Files (x86)\REALTEK\Realtek Bluetooth\AvrcpCtrlr.dll
2014-07-12 14:35 - 2013-04-09 14:42 - 000024064 _____ (Realtek Semiconductor Corporation) [File not signed] C:\Program Files (x86)\REALTEK\Realtek Bluetooth\AvrcpIo64.dll
2014-07-12 14:35 - 2013-04-23 13:50 - 000432640 _____ (Realtek Semiconductor Corporation) [File not signed] C:\Program Files (x86)\REALTEK\Realtek Bluetooth\DllMonoCtrl.dll
2014-07-12 14:35 - 2011-11-11 17:42 - 000032768 _____ (Realtek Semiconductor Corporation) [File not signed] C:\Program Files (x86)\REALTEK\Realtek Bluetooth\Dun.dll
2014-07-12 14:35 - 2012-10-26 11:45 - 000069632 _____ (Realtek Semiconductor Corporation) [File not signed] C:\Program Files (x86)\REALTEK\Realtek Bluetooth\gap.dll
2014-07-12 14:35 - 2013-03-01 16:17 - 000073216 _____ (Realtek Semiconductor Corporation) [File not signed] C:\Program Files (x86)\REALTEK\Realtek Bluetooth\gatt_api.dll
2014-07-12 14:35 - 2013-03-01 16:17 - 000044544 _____ (Realtek Semiconductor Corporation) [File not signed] C:\Program Files (x86)\REALTEK\Realtek Bluetooth\GattExport.dll
2014-07-12 14:35 - 2013-03-01 16:17 - 000266752 _____ (Realtek Semiconductor Corporation) [File not signed] C:\Program Files (x86)\REALTEK\Realtek Bluetooth\LeDll.dll
2014-07-12 14:35 - 2012-10-19 14:21 - 000026624 _____ (Realtek Semiconductor Corporation) [File not signed] C:\Program Files (x86)\REALTEK\Realtek Bluetooth\LeIoctlExport.dll
2014-07-12 14:35 - 2013-04-23 13:50 - 000705024 _____ (Realtek Semiconductor Corporation) [File not signed] C:\Program Files (x86)\REALTEK\Realtek Bluetooth\obexpf.dll
2014-07-12 14:35 - 2013-03-01 16:17 - 000045568 _____ (Realtek Semiconductor Corporation) [File not signed] C:\Program Files (x86)\REALTEK\Realtek Bluetooth\rtsocket.dll
2014-07-12 14:35 - 2013-04-02 14:29 - 000290304 _____ (Realtek Semiconductor Corporation) [File not signed] C:\Program Files (x86)\REALTEK\Realtek Bluetooth\StereoControl.dll
2014-07-12 14:35 - 2012-10-19 14:21 - 000023040 _____ (Realtek Semiconductor Corporation) [File not signed] C:\Program Files (x86)\REALTEK\Realtek Bluetooth\VendorCmdExport.dll
2017-06-06 20:02 - 2017-06-06 20:02 - 000018944 _____ (Softland) [File not signed] C:\Windows\System32\novamn8.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2019-01-04 12:59 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\OpenCL SDK\3.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\3.0\bin\x64;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR
HKU\S-1-5-21-1193567628-3741132159-961158197-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Rafal\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.55.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is disabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{75BE27B0-A487-4982-86A3-DEA8F51E699A}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe => No File
FirewallRules: [{BF957924-4CCE-4652-9560-AC9EBE15327B}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe => No File
FirewallRules: [TCP Query User{272F0CA3-3D09-416A-B2CB-1C821A5D06DE}E:\call of duty 4 - modern warfare\iw3mp.exe] => (Allow) E:\call of duty 4 - modern warfare\iw3mp.exe () [File not signed]
FirewallRules: [UDP Query User{A2B497FF-9B6A-44D7-88BE-E9127E143E95}E:\call of duty 4 - modern warfare\iw3mp.exe] => (Allow) E:\call of duty 4 - modern warfare\iw3mp.exe () [File not signed]
FirewallRules: [TCP Query User{B88AB62F-CFA0-40C3-8F51-A87EBAD64BF1}E:\fifa 14\fifa 14\game\fifa14.exe] => (Allow) E:\fifa 14\fifa 14\game\fifa14.exe => No File
FirewallRules: [UDP Query User{2EB7BA73-C373-4F07-B1DD-DA54122795DB}E:\fifa 14\fifa 14\game\fifa14.exe] => (Allow) E:\fifa 14\fifa 14\game\fifa14.exe => No File
FirewallRules: [TCP Query User{39FBD3C3-3436-412D-9AC6-EB18DDECFE13}E:\xfire\xfire.exe] => (Allow) E:\xfire\xfire.exe (Xfire Inc -> Xfire Inc.)
FirewallRules: [UDP Query User{C4694A22-D245-4DB9-925F-3AEF8E5E046D}E:\xfire\xfire.exe] => (Allow) E:\xfire\xfire.exe (Xfire Inc -> Xfire Inc.)
FirewallRules: [TCP Query User{D253C951-1AF4-4CA6-8FED-CFA33AAD331B}E:\cod do fw\codmp.exe] => (Allow) E:\cod do fw\codmp.exe () [File not signed]
FirewallRules: [UDP Query User{BD355BF0-12EA-4CCA-89CE-BA2855773975}E:\cod do fw\codmp.exe] => (Allow) E:\cod do fw\codmp.exe () [File not signed]
FirewallRules: [TCP Query User{CC58FC44-08C2-4284-9143-EEFBE68C4409}E:\cod-jump\cod do jmp\codmp.exe] => (Allow) E:\cod-jump\cod do jmp\codmp.exe () [File not signed]
FirewallRules: [UDP Query User{B44087BE-D961-4443-9F25-91107263D0BD}E:\cod-jump\cod do jmp\codmp.exe] => (Allow) E:\cod-jump\cod do jmp\codmp.exe () [File not signed]
FirewallRules: [TCP Query User{21404389-AC9D-439A-97C6-9813DFA5432A}E:\totalcmd\totalcmd64.exe] => (Allow) E:\totalcmd\totalcmd64.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [UDP Query User{CF7E9BBC-ACA0-47B0-9441-5CCA47F6DFA4}E:\totalcmd\totalcmd64.exe] => (Allow) E:\totalcmd\totalcmd64.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [TCP Query User{87DE1BC3-6FA6-46CD-AF7E-8FAC5505E9B8}E:\assassin creed 2\assassin's creed ii\assassinscreediigame.exe] => (Allow) E:\assassin creed 2\assassin's creed ii\assassinscreediigame.exe () [File not signed]
FirewallRules: [UDP Query User{1BAEA379-9FF0-4DA6-A319-165EDD19846E}E:\assassin creed 2\assassin's creed ii\assassinscreediigame.exe] => (Allow) E:\assassin creed 2\assassin's creed ii\assassinscreediigame.exe () [File not signed]
FirewallRules: [{1546BA8A-0AE7-41DF-AE1F-E5DB398B74B6}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD\PowerDVD.EXE (CyberLink -> CyberLink Corp.)
FirewallRules: [{83BFA270-9F39-4D06-A8B9-AC6FB7D85E28}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{97FB1E34-7265-4C04-99E8-F4330C58757C}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{69D69A03-E536-4898-A161-3BF25C11C1A0}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{5C7557B7-161B-4036-A119-E20C57B5A1D0}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{45743B24-6151-4975-940B-B2B0A88C2ABA}] => (Allow) E:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{86B28C0F-A14E-450F-81A9-ED03DCB52E2A}] => (Allow) E:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{8832EA85-19F6-414F-AC18-DA0E23E02C65}] => (Allow) E:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{04C3E362-57B8-4210-B7AD-489167FE48C7}] => (Allow) E:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{57BF7151-D319-4769-A74C-B4ED6315C7CB}] => (Allow) E:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{DBEBCB5A-DD02-49F5-B20B-52D6EBACEEE1}] => (Allow) E:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{F29429B8-59DC-4AB4-A500-05795F73E9F4}] => (Allow) LPort=8501
FirewallRules: [{7FADCEC8-892C-43E5-80DB-0433B864EDB1}] => (Allow) LPort=8501
FirewallRules: [{D5E6327C-1190-4656-8F39-D9FDB0A2A9E8}] => (Allow) E:\Fifa19\FIFA 19\FIFASetup\fifaconfig.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{66CC3944-57D3-4BCB-910E-F85FE7F14A2A}] => (Allow) E:\Fifa19\FIFA 19\FIFASetup\fifaconfig.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{707E5CC7-E484-4590-915C-7D5C1D263907}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{C55D4DA3-1CCA-45A1-A5F9-FF758B069C62}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{2FB0C436-4E79-47B1-815A-70F841BC6E74}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{C0585372-07B9-479B-BAF1-AF86DB9C2348}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{DA11634C-096A-4CA1-B338-535377CC3B7D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{747FF753-D491-4B8F-8BB3-956DBE072A33}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{7B540E78-7704-41DB-A16B-A3B14E95A084}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E7CF4B48-207B-4CD7-886E-67F3C2BDB17A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)

==================== Restore Points =========================

16-05-2020 21:46:14 Windows Update
16-05-2020 21:47:44 Windows Update
17-05-2020 11:45:33 Restore Point Created by FRST

==================== Faulty Device Manager Devices ============

Name: Teredo Tunneling Pseudo-Interface
Description: Karta tunelowania Teredo firmy Microsoft
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: ========================

Application errors:
==================
Error: (05/17/2020 11:45:32 AM) (Source: VSS) (EventID: 8194) (User: )
Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas badania interfejsu IVssWriterCallback. hr = 0x80070005, Access is denied.
.
To jest często spowodowane przez niepoprawne ustawienia zabezpieczeń w procesie zapisującym lub żądającym.


Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {44e735ec-ecc1-4217-aeef-ce76806aec49}

Error: (05/16/2020 10:15:02 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. The specified account already exists.

Error: (05/16/2020 10:13:37 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. The specified account already exists.

Error: (05/16/2020 10:00:30 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. The specified account already exists.

Error: (05/16/2020 09:40:53 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. The specified account already exists.

Error: (05/16/2020 09:35:57 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. The specified account already exists.

Error: (05/16/2020 09:26:27 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program FRST64.exe w wersji 13.5.2020.1 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji.

Identyfikator procesu: 1d94

Godzina rozpoczęcia: 01d62bb7bc1bfd78

Godzina zakończenia: 1

Ścieżka aplikacji: C:\Users\Rafal\Downloads\FRST64.exe

Identyfikator raportu: 21999ed1-97ab-11ea-b5b4-54271e251c25

Error: (05/16/2020 09:24:02 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program FRST64.exe w wersji 13.5.2020.0 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji.

Identyfikator procesu: 1e9c

Godzina rozpoczęcia: 01d62bb76972b5e9

Godzina zakończenia: 1

Ścieżka aplikacji: C:\Users\Rafal\Downloads\FRST64.exe

Identyfikator raportu: cbc84d3a-97aa-11ea-b5b4-54271e251c25


System errors:
=============
Error: (05/17/2020 11:59:25 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Odebrano następujący alert krytyczny: 80.

Error: (05/17/2020 11:59:25 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Odebrano następujący alert krytyczny: 70.

Error: (05/17/2020 11:58:06 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Usługa Windows Update zawiesiła się podczas uruchamiania.

Error: (05/17/2020 11:55:25 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Odebrano następujący alert krytyczny: 80.

Error: (05/17/2020 11:55:25 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Odebrano następujący alert krytyczny: 70.

Error: (05/17/2020 11:53:21 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Odebrano następujący alert krytyczny: 80.

Error: (05/17/2020 11:53:21 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Odebrano następujący alert krytyczny: 70.

Error: (05/17/2020 11:52:21 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi Origin Web Helper Service z powodu następującego błędu: 
Usługa nie odpowiada na sygnał uruchomienia lub sygnał sterujący w oczekiwanym czasie.


CodeIntegrity:
===================================

Date: 2017-08-17 12:12:19.351
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\aswKbd.sys because the set of per-page image hashes could not be found on the system.

Date: 2017-08-17 12:12:19.055
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system.

Date: 2017-08-12 21:16:41.102
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\aswKbd.sys because the set of per-page image hashes could not be found on the system.

Date: 2017-08-12 21:16:40.852
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system.

Date: 2017-08-11 22:22:08.429
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\aswKbd.sys because the set of per-page image hashes could not be found on the system.

Date: 2017-08-11 22:22:08.164
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system.

Date: 2017-08-11 12:49:37.414
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\aswKbd.sys because the set of per-page image hashes could not be found on the system.

Date: 2017-08-11 12:49:37.180
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system.

==================== Memory info =========================== 

BIOS: American Megatrends Inc. E1758IMS.10E 11/14/2013
Motherboard: Micro-Star International Co., Ltd. MS-1758
Processor: Intel(R) Core(TM) i5-4200M CPU @ 2.50GHz
Percentage of memory in use: 54%
Total physical RAM: 8112.54 MB
Available physical RAM: 3728.88 MB
Total Virtual: 16223.22 MB
Available Virtual: 10818.11 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:97.66 GB) (Free:23.46 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive e: (Nowy) (Fixed) (Total:683.59 GB) (Free:494.59 GB) NTFS


==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 8C6504DB)
Partition 1: (Active) - (Size=97.7 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=683.6 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================
  1. Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-05-2020 01
  2. Ran by Rafal (17-05-2020 11:59:46)
  3. Running from C:\Users\Rafal\Downloads
  4. Windows 7 Ultimate Service Pack 1 (X64) (2014-07-12 12:17:49)
  5. Boot Mode: Normal
  6. ==========================================================
  7.  
  8.  
  9. ==================== Accounts: =============================
  10.  
  11. Administrator (S-1-5-21-1193567628-3741132159-961158197-500 - Administrator - Disabled)
  12. Guest (S-1-5-21-1193567628-3741132159-961158197-501 - Limited - Disabled)
  13. HomeGroupUser$ (S-1-5-21-1193567628-3741132159-961158197-1003 - Limited - Enabled)
  14. Rafal (S-1-5-21-1193567628-3741132159-961158197-1000 - Administrator - Enabled) => C:\Users\Rafal
  15.  
  16. ==================== Security Center ========================
  17.  
  18. (If an entry is included in the fixlist, it will be removed.)
  19.  
  20. AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
  21. AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
  22. AS: Avast Antivirus (Enabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}
  23.  
  24. ==================== Installed Programs ======================
  25.  
  26. (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
  27.  
  28. Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 20.009.20063 - Adobe Systems Incorporated)
  29. Aktualizacje NVIDIA 36.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 36.0.0.0 - NVIDIA Corporation) Hidden
  30. Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 20.1.2397 - AVAST Software)
  31. Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 81.0.4053.113 - AVAST Software)
  32. Blackmagic RAW Common Components (HKLM\...\{8F57BC8F-7DAC-4E4B-BD13-A55B1AC0DF43}) (Version: 1.6 - Blackmagic Design)
  33. Call of Duty (HKLM-x32\...\Call of Duty) (Version:  - )
  34. Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
  35. Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.)
  36. Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.)
  37. Club777 (HKU\S-1-5-21-1193567628-3741132159-961158197-1000\...\Club777) (Version:  - )
  38. DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
  39. Discord (HKU\S-1-5-21-1193567628-3741132159-961158197-1000\...\Discord) (Version: 0.0.306 - Discord Inc.)
  40. DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 425.31 - NVIDIA Corporation) Hidden
  41. EA SPORTS FIFA World (HKLM-x32\...\{8F9AC744-EEF6-43DB-A4B6-FA1A18F1C640}) (Version: 9.4.0.60779 - Electronic Arts, Inc.)
  42. Epic Games Launcher (HKLM-x32\...\{0F3B0E4D-F8F7-45FC-A661-100AE5495A31}) (Version: 1.1.133.0 - Epic Games, Inc.)
  43. Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
  44. e-pity 11.2.1 za rok 2019 (HKLM-x32\...\{80D8170E-5590-218-B9ED-E24E4C99A11D}_is1) (Version: 11.2.1 - e-file sp. z o.o. sp.k.)
  45. ETDWare PS/2-X64 11.13.2.4_WHQL (HKLM\...\Elantech) (Version: 11.13.2.4 - ELAN Microelectronic Corp.)
  46. FIFA 19 (HKLM-x32\...\{3391E07D-8484-4124-817E-FCBDA859FD62}) (Version: 1.0.61.54442 - Electronic Arts)
  47. Google Chrome (HKLM-x32\...\Google Chrome) (Version: 81.0.4044.138 - Google LLC)
  48. Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
  49. Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
  50. Grand Theft Auto IV (HKLM-x32\...\{5454083B-1308-4485-BF17-1110000D8301}) (Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
  51. Grand Theft Auto IV (HKLM-x32\...\Grand Theft Auto IV_is1) (Version:  - )
  52. Huawei E3272 (HKLM-x32\...\Huawei E3272) (Version: 22.001.22.00.1202 - Huawei Technologies Co.,Ltd)
  53. Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1310 - Intel Corporation)
  54. Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.18.10.3186 - Intel Corporation)
  55. Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.5.0.1066 - Intel Corporation)
  56. Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 3.0.0.66956 - Intel Corporation)
  57. Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.0.19 - Intel Corporation)
  58. Internet Manager (HKLM-x32\...\Internet Manager) (Version: 22.001.18.13.49 - Huawei Technologies Co.,Ltd)
  59. ipla 2.9 (HKLM-x32\...\ipla) (Version: 2.9 - Cyfrowy Polsat S.A.)
  60. Java 8 Update 73 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218073F0}) (Version: 8.0.730.2 - Oracle Corporation)
  61. K-Lite Codec Pack 11.6.5 Basic (HKLM-x32\...\KLiteCodecPack_is1) (Version: 11.6.5 - )
  62. Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
  63. Łatka polonizacyjna GTA IV v0.99 (HKLM-x32\...atka polonizacyjna GTA IV v0.99) (Version: 0.99 - GTAPOLSKA.PL)
  64. McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.92 - McAfee, LLC.)
  65. Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
  66. Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{FD052FB9-FE90-4438-B355-15EDC89D8FB1}) (Version: 2.0.673.0 - Microsoft Corporation)
  67. Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
  68. Microsoft Office SharePoint Designer 2007 (HKLM-x32\...\SharePointDesigner) (Version: 12.0.4518.1014 - Microsoft Corporation)
  69. Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
  70. Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
  71. Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
  72. Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
  73. Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
  74. Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
  75. Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
  76. Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
  77. Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
  78. Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
  79. Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
  80. Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
  81. Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
  82. Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
  83. Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25008 (HKLM-x32\...\{f1e7e313-06df-4c56-96a9-99fdfd149c51}) (Version: 14.10.25008.0 - Microsoft Corporation)
  84. Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25008 (HKLM-x32\...\{c239cea1-d49e-4e16-8e87-8c055765f7ec}) (Version: 14.10.25008.0 - Microsoft Corporation)
  85. My Program version 1.5 (HKLM-x32\...\My Program_is1) (Version: 1.5 - )
  86. novaPDF 8 Printer Driver (HKLM\...\{78348298-772C-42B6-A670-7906495C30BB}) (Version: 8.9.950 - Softland)
  87. novaPDF 8 SDK COM (x64) (HKLM\...\{DC8F19A6-7BE4-4274-9B07-763AFAB18506}) (Version: 8.9.950 - Softland)
  88. NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.15 - NVIDIA Corporation) Hidden
  89. NVIDIA GeForce Experience 3.18.0.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.18.0.94 - NVIDIA Corporation)
  90. NVIDIA Oprogramowanie systemu PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
  91. NVIDIA Sterownik graficzny 425.31 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 425.31 - NVIDIA Corporation)
  92. OpenOffice 4.1.2 (HKLM-x32\...\{E0ED9630-38E3-418F-A615-A9B2B5758BE5}) (Version: 4.12.9782 - Apache Software Foundation)
  93. Origin (HKLM-x32\...\Origin) (Version: 10.5.56.33908 - Electronic Arts, Inc.)
  94. Panel sterowania NVIDIA 425.31 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 425.31 - NVIDIA Corporation) Hidden
  95. PlayReady PC Runtime x86 (HKLM-x32\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation)
  96. Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile PLK Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
  97. Polski pakiet językowy dla programu Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended PLK Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
  98. PowerDVD (HKLM-x32\...\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}) (Version: 7.0.3409.a - CyberLink Corporation)
  99. PowerProducer (HKLM-x32\...\{B7A0CE06-068E-11D6-97FD-0050BACBF861}) (Version:  - )
  100. PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
  101. Qualcomm Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.13 - Qualcomm Atheros Communications Inc.)
  102. RadiAnt DICOM Viewer (64-bit) (HKLM-x32\...\RadiAnt64) (Version: 4.6.9.18463 - Medixant)
  103. REALTEK Bluetooth Driver (HKLM-x32\...\{9D3D8C60-A5EF-4123-B2B9-172095903AB}) (Version: 3.728.728.042813 - REALTEK Semiconductor Corp.)
  104. Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6914 - Realtek Semiconductor Corp.)
  105. Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30127 - Realtek Semiconductor Corp.)
  106. REALTEK Wireless LAN Driver (HKLM-x32\...\{9DAABC60-A5EF-41FF-B2B9-17329590CD5}) (Version: 1.00.0212 - REALTEK Semiconductor Corp.)
  107. Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
  108. TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.15 - TeamSpeak Systems GmbH)
  109. Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.51a - Ghisler Software GmbH)
  110. Uplay (HKLM-x32\...\Uplay) (Version: 2.0 - Ubisoft)
  111. Vegas Pro 12.0 (64-bit) (HKLM\...\{87CEB7C0-1D35-11E2-8F19-F04DA23A5C58}) (Version: 12.0.394 - Sony)
  112. WinRAR 5.70 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
  113. Xfire (HKLM-x32\...\Xfire) (Version:  - )
  114.  
  115. ==================== Custom CLSID (Whitelisted): ==============
  116.  
  117. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  118.  
  119. ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2210608 2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
  120. ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-02-25] (Avast Software s.r.o. -> AVAST Software)
  121. ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-02-25] (Avast Software s.r.o. -> AVAST Software)
  122. ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-02-25] (Avast Software s.r.o. -> AVAST Software)
  123. ContextMenuHandlers1: [BtSendToMenuEx] -> {CF24E6B8-F148-4BCB-9108-ADF313966E80} => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\DevMenuExt.dll [2013-03-25] (Realtek Semiconductor Corporation) [File not signed]
  124. ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-03-01] (win.rar GmbH -> Alexander Roshal)
  125. ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-03-01] (win.rar GmbH -> Alexander Roshal)
  126. ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-02-25] (Avast Software s.r.o. -> AVAST Software)
  127. ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2013-05-17] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
  128. ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2019-04-09] (NVIDIA Corporation -> NVIDIA Corporation)
  129. ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-02-25] (Avast Software s.r.o. -> AVAST Software)
  130. ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-03-01] (win.rar GmbH -> Alexander Roshal)
  131. ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-03-01] (win.rar GmbH -> Alexander Roshal)
  132.  
  133. ==================== Codecs (Whitelisted) ====================
  134.  
  135. (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
  136.  
  137. HKLM\...\Drivers32: [VIDC.XFR1] => C:\Windows\system32\xfcodec64.dll [28544 2013-03-21] (Xfire Inc -> )
  138. HKLM\...\Drivers32: [VIDC.XFR1] => C:\Windows\SysWOW64\xfcodec.dll [42880 2013-03-21] (Xfire Inc -> )
  139.  
  140. ==================== Shortcuts & WMI ========================
  141.  
  142. ==================== Loaded Modules (Whitelisted) =============
  143.  
  144. 2015-01-16 14:34 - 2013-12-19 04:20 - 000043008 _____ () [File not signed] C:\ProgramData\Internet Manager\OnlineUpdate\libgcc_s_dw2-1.dll
  145. 2015-01-16 14:34 - 2013-12-19 04:20 - 000011362 _____ () [File not signed] C:\ProgramData\Internet Manager\OnlineUpdate\mingwm10.dll
  146. 2015-01-16 14:34 - 2013-12-19 04:20 - 002417152 _____ () [File not signed] C:\ProgramData\Internet Manager\OnlineUpdate\QtCore4.dll
  147. 2015-01-16 14:34 - 2013-12-19 04:20 - 001148416 _____ () [File not signed] C:\ProgramData\Internet Manager\OnlineUpdate\QtNetwork4.dll
  148. 2014-07-12 14:43 - 2013-04-26 04:24 - 000073728 ____R (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.dll
  149. 2013-03-22 08:38 - 2013-03-22 08:38 - 000531456 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\ISDI2.dll
  150. 2013-03-22 08:38 - 2013-03-22 08:38 - 000286720 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\PsiData.dll
  151. 2016-06-08 12:44 - 2016-06-08 12:44 - 000225280 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll
  152. 2014-07-12 14:38 - 2012-02-14 19:37 - 000594432 _____ (Realtek Semiconductor Corp. ) [File not signed] C:\Windows\system32\Rtlihvs.dll
  153. 2014-07-12 14:35 - 2013-04-09 14:42 - 000041472 _____ (Realtek Semiconductor Corporation) [File not signed] C:\Program Files (x86)\REALTEK\Realtek Bluetooth\AvrcpCtrlr.dll
  154. 2014-07-12 14:35 - 2013-04-09 14:42 - 000024064 _____ (Realtek Semiconductor Corporation) [File not signed] C:\Program Files (x86)\REALTEK\Realtek Bluetooth\AvrcpIo64.dll
  155. 2014-07-12 14:35 - 2013-04-23 13:50 - 000432640 _____ (Realtek Semiconductor Corporation) [File not signed] C:\Program Files (x86)\REALTEK\Realtek Bluetooth\DllMonoCtrl.dll
  156. 2014-07-12 14:35 - 2011-11-11 17:42 - 000032768 _____ (Realtek Semiconductor Corporation) [File not signed] C:\Program Files (x86)\REALTEK\Realtek Bluetooth\Dun.dll
  157. 2014-07-12 14:35 - 2012-10-26 11:45 - 000069632 _____ (Realtek Semiconductor Corporation) [File not signed] C:\Program Files (x86)\REALTEK\Realtek Bluetooth\gap.dll
  158. 2014-07-12 14:35 - 2013-03-01 16:17 - 000073216 _____ (Realtek Semiconductor Corporation) [File not signed] C:\Program Files (x86)\REALTEK\Realtek Bluetooth\gatt_api.dll
  159. 2014-07-12 14:35 - 2013-03-01 16:17 - 000044544 _____ (Realtek Semiconductor Corporation) [File not signed] C:\Program Files (x86)\REALTEK\Realtek Bluetooth\GattExport.dll
  160. 2014-07-12 14:35 - 2013-03-01 16:17 - 000266752 _____ (Realtek Semiconductor Corporation) [File not signed] C:\Program Files (x86)\REALTEK\Realtek Bluetooth\LeDll.dll
  161. 2014-07-12 14:35 - 2012-10-19 14:21 - 000026624 _____ (Realtek Semiconductor Corporation) [File not signed] C:\Program Files (x86)\REALTEK\Realtek Bluetooth\LeIoctlExport.dll
  162. 2014-07-12 14:35 - 2013-04-23 13:50 - 000705024 _____ (Realtek Semiconductor Corporation) [File not signed] C:\Program Files (x86)\REALTEK\Realtek Bluetooth\obexpf.dll
  163. 2014-07-12 14:35 - 2013-03-01 16:17 - 000045568 _____ (Realtek Semiconductor Corporation) [File not signed] C:\Program Files (x86)\REALTEK\Realtek Bluetooth\rtsocket.dll
  164. 2014-07-12 14:35 - 2013-04-02 14:29 - 000290304 _____ (Realtek Semiconductor Corporation) [File not signed] C:\Program Files (x86)\REALTEK\Realtek Bluetooth\StereoControl.dll
  165. 2014-07-12 14:35 - 2012-10-19 14:21 - 000023040 _____ (Realtek Semiconductor Corporation) [File not signed] C:\Program Files (x86)\REALTEK\Realtek Bluetooth\VendorCmdExport.dll
  166. 2017-06-06 20:02 - 2017-06-06 20:02 - 000018944 _____ (Softland) [File not signed] C:\Windows\System32\novamn8.dll
  167.  
  168. ==================== Alternate Data Streams (Whitelisted) ========
  169.  
  170. ==================== Safe Mode (Whitelisted) ==================
  171.  
  172. ==================== Association (Whitelisted) =================
  173.  
  174. ==================== Internet Explorer trusted/restricted ==========
  175.  
  176. ==================== Hosts content: =========================
  177.  
  178. (If needed Hosts: directive could be included in the fixlist to reset Hosts.)
  179.  
  180. 2009-07-14 04:34 - 2019-01-04 12:59 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
  181.  
  182. ==================== Other Areas ===========================
  183.  
  184. (Currently there is no automatic fix for this section.)
  185.  
  186. HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\OpenCL SDK\3.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\3.0\bin\x64;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR
  187. HKU\S-1-5-21-1193567628-3741132159-961158197-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Rafal\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
  188. DNS Servers: 192.168.55.1
  189. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
  190. Windows Firewall is disabled.
  191.  
  192. ==================== MSCONFIG/TASK MANAGER disabled items ==
  193.  
  194. ==================== FirewallRules (Whitelisted) ================
  195.  
  196. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  197.  
  198. FirewallRules: [{75BE27B0-A487-4982-86A3-DEA8F51E699A}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe => No File
  199. FirewallRules: [{BF957924-4CCE-4652-9560-AC9EBE15327B}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe => No File
  200. FirewallRules: [TCP Query User{272F0CA3-3D09-416A-B2CB-1C821A5D06DE}E:\call of duty 4 - modern warfare\iw3mp.exe] => (Allow) E:\call of duty 4 - modern warfare\iw3mp.exe () [File not signed]
  201. FirewallRules: [UDP Query User{A2B497FF-9B6A-44D7-88BE-E9127E143E95}E:\call of duty 4 - modern warfare\iw3mp.exe] => (Allow) E:\call of duty 4 - modern warfare\iw3mp.exe () [File not signed]
  202. FirewallRules: [TCP Query User{B88AB62F-CFA0-40C3-8F51-A87EBAD64BF1}E:\fifa 14\fifa 14\game\fifa14.exe] => (Allow) E:\fifa 14\fifa 14\game\fifa14.exe => No File
  203. FirewallRules: [UDP Query User{2EB7BA73-C373-4F07-B1DD-DA54122795DB}E:\fifa 14\fifa 14\game\fifa14.exe] => (Allow) E:\fifa 14\fifa 14\game\fifa14.exe => No File
  204. FirewallRules: [TCP Query User{39FBD3C3-3436-412D-9AC6-EB18DDECFE13}E:\xfire\xfire.exe] => (Allow) E:\xfire\xfire.exe (Xfire Inc -> Xfire Inc.)
  205. FirewallRules: [UDP Query User{C4694A22-D245-4DB9-925F-3AEF8E5E046D}E:\xfire\xfire.exe] => (Allow) E:\xfire\xfire.exe (Xfire Inc -> Xfire Inc.)
  206. FirewallRules: [TCP Query User{D253C951-1AF4-4CA6-8FED-CFA33AAD331B}E:\cod do fw\codmp.exe] => (Allow) E:\cod do fw\codmp.exe () [File not signed]
  207. FirewallRules: [UDP Query User{BD355BF0-12EA-4CCA-89CE-BA2855773975}E:\cod do fw\codmp.exe] => (Allow) E:\cod do fw\codmp.exe () [File not signed]
  208. FirewallRules: [TCP Query User{CC58FC44-08C2-4284-9143-EEFBE68C4409}E:\cod-jump\cod do jmp\codmp.exe] => (Allow) E:\cod-jump\cod do jmp\codmp.exe () [File not signed]
  209. FirewallRules: [UDP Query User{B44087BE-D961-4443-9F25-91107263D0BD}E:\cod-jump\cod do jmp\codmp.exe] => (Allow) E:\cod-jump\cod do jmp\codmp.exe () [File not signed]
  210. FirewallRules: [TCP Query User{21404389-AC9D-439A-97C6-9813DFA5432A}E:\totalcmd\totalcmd64.exe] => (Allow) E:\totalcmd\totalcmd64.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
  211. FirewallRules: [UDP Query User{CF7E9BBC-ACA0-47B0-9441-5CCA47F6DFA4}E:\totalcmd\totalcmd64.exe] => (Allow) E:\totalcmd\totalcmd64.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
  212. FirewallRules: [TCP Query User{87DE1BC3-6FA6-46CD-AF7E-8FAC5505E9B8}E:\assassin creed 2\assassin's creed ii\assassinscreediigame.exe] => (Allow) E:\assassin creed 2\assassin's creed ii\assassinscreediigame.exe () [File not signed]
  213. FirewallRules: [UDP Query User{1BAEA379-9FF0-4DA6-A319-165EDD19846E}E:\assassin creed 2\assassin's creed ii\assassinscreediigame.exe] => (Allow) E:\assassin creed 2\assassin's creed ii\assassinscreediigame.exe () [File not signed]
  214. FirewallRules: [{1546BA8A-0AE7-41DF-AE1F-E5DB398B74B6}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD\PowerDVD.EXE (CyberLink -> CyberLink Corp.)
  215. FirewallRules: [{83BFA270-9F39-4D06-A8B9-AC6FB7D85E28}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
  216. FirewallRules: [{97FB1E34-7265-4C04-99E8-F4330C58757C}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
  217. FirewallRules: [{69D69A03-E536-4898-A161-3BF25C11C1A0}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
  218. FirewallRules: [{5C7557B7-161B-4036-A119-E20C57B5A1D0}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
  219. FirewallRules: [{45743B24-6151-4975-940B-B2B0A88C2ABA}] => (Allow) E:\Steam\Steam.exe (Valve -> Valve Corporation)
  220. FirewallRules: [{86B28C0F-A14E-450F-81A9-ED03DCB52E2A}] => (Allow) E:\Steam\Steam.exe (Valve -> Valve Corporation)
  221. FirewallRules: [{8832EA85-19F6-414F-AC18-DA0E23E02C65}] => (Allow) E:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
  222. FirewallRules: [{04C3E362-57B8-4210-B7AD-489167FE48C7}] => (Allow) E:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
  223. FirewallRules: [{57BF7151-D319-4769-A74C-B4ED6315C7CB}] => (Allow) E:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
  224. FirewallRules: [{DBEBCB5A-DD02-49F5-B20B-52D6EBACEEE1}] => (Allow) E:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
  225. FirewallRules: [{F29429B8-59DC-4AB4-A500-05795F73E9F4}] => (Allow) LPort=8501
  226. FirewallRules: [{7FADCEC8-892C-43E5-80DB-0433B864EDB1}] => (Allow) LPort=8501
  227. FirewallRules: [{D5E6327C-1190-4656-8F39-D9FDB0A2A9E8}] => (Allow) E:\Fifa19\FIFA 19\FIFASetup\fifaconfig.exe (Electronic Arts, Inc. -> Electronic Arts)
  228. FirewallRules: [{66CC3944-57D3-4BCB-910E-F85FE7F14A2A}] => (Allow) E:\Fifa19\FIFA 19\FIFASetup\fifaconfig.exe (Electronic Arts, Inc. -> Electronic Arts)
  229. FirewallRules: [{707E5CC7-E484-4590-915C-7D5C1D263907}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
  230. FirewallRules: [{C55D4DA3-1CCA-45A1-A5F9-FF758B069C62}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
  231. FirewallRules: [{2FB0C436-4E79-47B1-815A-70F841BC6E74}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
  232. FirewallRules: [{C0585372-07B9-479B-BAF1-AF86DB9C2348}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
  233. FirewallRules: [{DA11634C-096A-4CA1-B338-535377CC3B7D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
  234. FirewallRules: [{747FF753-D491-4B8F-8BB3-956DBE072A33}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
  235. FirewallRules: [{7B540E78-7704-41DB-A16B-A3B14E95A084}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
  236. FirewallRules: [{E7CF4B48-207B-4CD7-886E-67F3C2BDB17A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
  237.  
  238. ==================== Restore Points =========================
  239.  
  240. 16-05-2020 21:46:14 Windows Update
  241. 16-05-2020 21:47:44 Windows Update
  242. 17-05-2020 11:45:33 Restore Point Created by FRST
  243.  
  244. ==================== Faulty Device Manager Devices ============
  245.  
  246. Name: Teredo Tunneling Pseudo-Interface
  247. Description: Karta tunelowania Teredo firmy Microsoft
  248. Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
  249. Manufacturer: Microsoft
  250. Service: tunnel
  251. Problem: : This device cannot start. (Code10)
  252. Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
  253. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
  254.  
  255.  
  256. ==================== Event log errors: ========================
  257.  
  258. Application errors:
  259. ==================
  260. Error: (05/17/2020 11:45:32 AM) (Source: VSS) (EventID: 8194) (User: )
  261. Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas badania interfejsu IVssWriterCallback. hr = 0x80070005, Access is denied.
  262. .
  263. To jest często spowodowane przez niepoprawne ustawienia zabezpieczeń w procesie zapisującym lub żądającym.
  264.  
  265.  
  266. Operation:
  267.    Gathering Writer Data
  268.  
  269. Context:
  270.    Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
  271.    Writer Name: System Writer
  272.    Writer Instance ID: {44e735ec-ecc1-4217-aeef-ce76806aec49}
  273.  
  274. Error: (05/16/2020 10:15:02 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
  275. Description: Product: Avast Update Helper -- Error 1316. The specified account already exists.
  276.  
  277. Error: (05/16/2020 10:13:37 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
  278. Description: Product: Avast Update Helper -- Error 1316. The specified account already exists.
  279.  
  280. Error: (05/16/2020 10:00:30 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
  281. Description: Product: Avast Update Helper -- Error 1316. The specified account already exists.
  282.  
  283. Error: (05/16/2020 09:40:53 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
  284. Description: Product: Avast Update Helper -- Error 1316. The specified account already exists.
  285.  
  286. Error: (05/16/2020 09:35:57 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
  287. Description: Product: Avast Update Helper -- Error 1316. The specified account already exists.
  288.  
  289. Error: (05/16/2020 09:26:27 PM) (Source: Application Hang) (EventID: 1002) (User: )
  290. Description: Program FRST64.exe w wersji 13.5.2020.1 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji.
  291.  
  292. Identyfikator procesu: 1d94
  293.  
  294. Godzina rozpoczęcia: 01d62bb7bc1bfd78
  295.  
  296. Godzina zakończenia: 1
  297.  
  298. Ścieżka aplikacji: C:\Users\Rafal\Downloads\FRST64.exe
  299.  
  300. Identyfikator raportu: 21999ed1-97ab-11ea-b5b4-54271e251c25
  301.  
  302. Error: (05/16/2020 09:24:02 PM) (Source: Application Hang) (EventID: 1002) (User: )
  303. Description: Program FRST64.exe w wersji 13.5.2020.0 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji.
  304.  
  305. Identyfikator procesu: 1e9c
  306.  
  307. Godzina rozpoczęcia: 01d62bb76972b5e9
  308.  
  309. Godzina zakończenia: 1
  310.  
  311. Ścieżka aplikacji: C:\Users\Rafal\Downloads\FRST64.exe
  312.  
  313. Identyfikator raportu: cbc84d3a-97aa-11ea-b5b4-54271e251c25
  314.  
  315.  
  316. System errors:
  317. =============
  318. Error: (05/17/2020 11:59:25 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
  319. Description: Odebrano następujący alert krytyczny: 80.
  320.  
  321. Error: (05/17/2020 11:59:25 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
  322. Description: Odebrano następujący alert krytyczny: 70.
  323.  
  324. Error: (05/17/2020 11:58:06 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
  325. Description: Usługa Windows Update zawiesiła się podczas uruchamiania.
  326.  
  327. Error: (05/17/2020 11:55:25 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
  328. Description: Odebrano następujący alert krytyczny: 80.
  329.  
  330. Error: (05/17/2020 11:55:25 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
  331. Description: Odebrano następujący alert krytyczny: 70.
  332.  
  333. Error: (05/17/2020 11:53:21 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
  334. Description: Odebrano następujący alert krytyczny: 80.
  335.  
  336. Error: (05/17/2020 11:53:21 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
  337. Description: Odebrano następujący alert krytyczny: 70.
  338.  
  339. Error: (05/17/2020 11:52:21 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
  340. Description: Nie można uruchomić usługi Origin Web Helper Service z powodu następującego błędu: 
  341. Usługa nie odpowiada na sygnał uruchomienia lub sygnał sterujący w oczekiwanym czasie.
  342.  
  343.  
  344. CodeIntegrity:
  345. ===================================
  346.  
  347. Date: 2017-08-17 12:12:19.351
  348. Description: 
  349. Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\aswKbd.sys because the set of per-page image hashes could not be found on the system.
  350.  
  351. Date: 2017-08-17 12:12:19.055
  352. Description: 
  353. Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system.
  354.  
  355. Date: 2017-08-12 21:16:41.102
  356. Description: 
  357. Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\aswKbd.sys because the set of per-page image hashes could not be found on the system.
  358.  
  359. Date: 2017-08-12 21:16:40.852
  360. Description: 
  361. Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system.
  362.  
  363. Date: 2017-08-11 22:22:08.429
  364. Description: 
  365. Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\aswKbd.sys because the set of per-page image hashes could not be found on the system.
  366.  
  367. Date: 2017-08-11 22:22:08.164
  368. Description: 
  369. Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system.
  370.  
  371. Date: 2017-08-11 12:49:37.414
  372. Description: 
  373. Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\aswKbd.sys because the set of per-page image hashes could not be found on the system.
  374.  
  375. Date: 2017-08-11 12:49:37.180
  376. Description: 
  377. Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system.
  378.  
  379. ==================== Memory info =========================== 
  380.  
  381. BIOS: American Megatrends Inc. E1758IMS.10E 11/14/2013
  382. Motherboard: Micro-Star International Co., Ltd. MS-1758
  383. Processor: Intel(R) Core(TM) i5-4200M CPU @ 2.50GHz
  384. Percentage of memory in use: 54%
  385. Total physical RAM: 8112.54 MB
  386. Available physical RAM: 3728.88 MB
  387. Total Virtual: 16223.22 MB
  388. Available Virtual: 10818.11 MB
  389.  
  390. ==================== Drives ================================
  391.  
  392. Drive c: () (Fixed) (Total:97.66 GB) (Free:23.46 GB) NTFS ==>[drive with boot components (obtained from BCD)]
  393. Drive e: (Nowy) (Fixed) (Total:683.59 GB) (Free:494.59 GB) NTFS
  394.  
  395.  
  396. ==================== MBR & Partition Table ====================
  397.  
  398. ==========================================================
  399. Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 8C6504DB)
  400. Partition 1: (Active) - (Size=97.7 GB) - (Type=07 NTFS)
  401. Partition 2: (Not Active) - (Size=683.6 GB) - (Type=07 NTFS)
  402.  
  403. ==================== End of Addition.txt =======================


Strona korzysta z plików cookies w celu realizacji usług zgodnie z Polityką Plików Cookies. Możesz określić warunki przechowywania lub dostępu do plików cookies w Twojej przeglądarce.

close-button