wklejto.pl

Dodane przez: ~Anonim (2020-09-22 08:34) -> text
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.
14.
15.
16.
17.
18.
19.
20.
21.
22.
23.
24.
25.
26.
27.
28.
29.
30.
31.
32.
33.
34.
35.
36.
37.
38.
39.
40.
41.
42.
43.
44.
45.
46.
47.
48.
49.
50.
51.
52.
53.
54.
55.
56.
57.
58.
59.
60.
61.
62.
63.
64.
65.
66.
67.
68.
69.
70.
71.
72.
73.
74.
75.
76.
77.
78.
79.
80.
81.
82.
83.
84.
85.
86.
87.
88.
89.
90.
91.
92.
93.
94.
95.
96.
97.
98.
99.
100.
101.
102.
103.
104.
105.
106.
107.
108.
109.
110.
111.
112.
113.
114.
115.
116.
117.
118.
119.
120.
121.
122.
123.
124.
125.
126.
127.
128.
129.
130.
131.
132.
133.
134.
135.
136.
137.
138.
139.
140.
141.
142.
143.
144.
145.
146.
147.
148.
149.
150.
151.
152.
153.
154.
155.
156.
157.
158.
159.
160.
161.
162.
163.
164.
165.
166.
167.
168.
169.
170.
171.
172.
173.
174.
175.
176.
177.
178.
179.
180.
181.
182.
183.
184.
185.
186.
187.
188.
189.
190.
191.
192.
193.
194.
195.
196.
197.
198.
199.
200.
201.
202.
203.
204.
205.
206.
207.
208.
209.
210.
211.
212.
213.
214.
215.
216.
217.
218.
219.
220.
221.
222.
223.
224.
225.
226.
227.
228.
229.
230.
231.
232.
233.
234.
235.
236.
237.
238.
239.
240.
241.
242.
243.
244.
245.
246.
247.
248.
249.
250.
251.
252.
253.
254.
255.
256.
257.
258.
259.
260.
261.
262.
263.
264.
265.
266.
267.
268.
269.
270.
271.
272.
273.
274.
275.
276.
277.
278.
279.
280.
281.
282.
283.
284.
285.
286.
287.
288.
289.
290.
291.
292.
293.
294.
295.
296.
297.
298.
299.
300.
301.
302.
303.
304.
305.
306.
307.
308.
309.
310.
311.
312.
313.
314.
315.
316.
317.
318.
319.
320.
321.
322.
323.
324.
325.
326.
327.
328.
329.
330.
331.
332.
333.
334.
335.
336.
337.
338.
339.
340.
341.
342.
343.
344.
345.
346.
347.
348.
349.
350.
351.
352.
353.
354.
355.
356.
357.
358.
359.
360.
361.
362.
363.
364.
365.
366.
367.
368.
369.
370.
371.
372.
373.
374.
375.
376.
377.
378.
379.
380.
381.
382.
383.
384.
385.
386.
387.
388.
389.
390.
391.
392.
393.
394.
395.
396.
397.
398.
399.
400.
401.
402.
403.
404.
405.
406.
407.
408.
409.
410.
411.
412.
413.
414.
415.
416.
417.
418.
419.
420.
421.
422.
423.
424.
425.
426.
427.
428.
429.
430.
431.
432.
433.
434.
435.
436.
437.
438.
439.
440.
441.
442.
443.
444.
445.
446.
447.
448.
449.
450.
451.
452.
453.
454.
455.
456.
457.
458.
459.
460.
461.
462.
463.
464.
465.
466.
467.
468.
469.
470.
471.
472.
473.
474.
475.
476.
477.
478.
479.
480.
481.
482.
483.
484.
485.
486.
487.
488.
489.
490.
491.
492.
493.
494.
495.
496.
497.
498.
499.
500.
501.
502.
503.
504.
505.
506.
507.
508.
509.
510.
511.
512.
513.
514.
515.
516.
517.
518.
519.
520.
521.
522.
523.
524.
525.
526.
527.
528.
529.
530.
531.
532.
533.
534.
535.
536.
537.
538.
539.
540.
541.
542.
543.
544.
545.
546.
547.
548.
549.
550.
551.
552.
553.
Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 20-09-2020
Uruchomiony przez Szymon (22-09-2020 10:30:49)
Uruchomiony z C:\Users\dawid\Desktop
Windows 10 Home Wersja 1903 18362.1082 (X64) (2019-09-30 21:28:20)
Tryb startu: Normal
==========================================================
 
 
==================== Konta użytkowników: =============================
 
Administrator (S-1-5-21-4016905503-1915356772-76512361-500 - Administrator - Disabled)
Gość (S-1-5-21-4016905503-1915356772-76512361-501 - Limited - Disabled)
Konto domyślne (S-1-5-21-4016905503-1915356772-76512361-503 - Limited - Disabled)
Szymon (S-1-5-21-4016905503-1915356772-76512361-1001 - Administrator - Enabled) => C:\Users\dawid
WDAGUtilityAccount (S-1-5-21-4016905503-1915356772-76512361-504 - Limited - Disabled)
 
==================== Centrum zabezpieczeń ========================
 
(Załączenie wejścia w fixlist spowoduje jego usunięcie.)
 
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
 
==================== Zainstalowane programy ======================
 
(W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.)
 
µTorrent (HKU\S-1-5-21-4016905503-1915356772-76512361-1001\...\uTorrent) (Version: 3.5.5.45790 - BitTorrent Inc.)
Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 20.012.20043 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 32.0.0.89 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.171 - Adobe)
Aktualizacje NVIDIA 38.0.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.4.0 - NVIDIA Corporation) Hidden
Audacity 2.2.2 (HKLM-x32\...\Audacity_is1) (Version: 2.2.2 - Audacity Team)
CCleaner (HKLM\...\CCleaner) (Version: 5.70 - Piriform)
Cisco Webex Meetings Desktop App (HKLM-x32\...\{17F99ECC-97B2-48AC-AE3D-4EB1123DF354}) (Version: 40.4.12.8 - Cisco Webex LLC)
Common Desktop Agent (HKLM\...\{031A0E14-0413-4C97-9772-2639B782F46F}) (Version: 1.62.0 - OEM) Hidden
Counter-Strike 1.6 v23 (HKU\S-1-5-21-4016905503-1915356772-76512361-1001\...\{6A8BC91F-83AF-4CA0-AA88-06B6FD071444}_is1) (Version: v23 - CSSetti.pl)
Counter-Strike Source Classic (HKU\S-1-5-21-4016905503-1915356772-76512361-1001\...\{80E0A581-D4DD-42B9-A0F2-EFC1C2AF5BAF}_is1) (Version: Classic - CSSetti.pl)
CPUID CPU-Z 1.85 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.85 - CPUID, Inc.)
CWClient version 1.0 (HKLM-x32\...\{4D64BA0F-CF7B-4A53-AA81-6E5F33510B04}_is1) (Version: 1.0 - AbsolutSoft)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.8.0.0466 - Disc Soft Ltd)
dBpoweramp (HKLM-x32\...\dBpoweramp) (Version: Release 16.4 - Illustrate)
Deluxe Ski Jump 4 (HKLM-x32\...\Deluxe Ski Jump 4_is1) (Version: 1.6.1 - Mediamond Tmi)
Diagnostyka drukarki Samsung (HKLM-x32\...\Samsung Printer Diagnostics) (Version: 1.0.4.28 - HP Printing Korea Co., Ltd.)
Discord (HKU\S-1-5-21-4016905503-1915356772-76512361-1001\...\Discord) (Version: 0.0.307 - Discord Inc.)
e-Deklaracje Desktop (HKLM-x32\...\{3AD91A12-B1B6-513A-6E80-61854D41CB46}) (Version: 12.0.1 - Ministerstwo Finansow) Hidden
e-Deklaracje Desktop (HKLM-x32\...\e-Deklaracje.A1909296681C7ACEFE45687D3A64758C8659BF46.1) (Version: 12.0.1 - Ministerstwo Finansow)
Epic Games Launcher (HKLM-x32\...\{9BDC8B60-A7CD-4554-B66A-C5FFC1E1437C}) (Version: 1.1.279.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
EXIFeditor (HKLM-x32\...\{50FC1CE8-FF32-4F3B-B654-050DD6ECD474}) (Version: 1.0.0 - kiwi.software.NET)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 85.0.4183.102 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Grand Theft Auto IV (HKLM-x32\...\{5454083B-1308-4485-BF17-1110000D8301}) (Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\{5454083B-1308-4485-BF17-1110000D8302}) (Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\{5454083B-1308-4485-BF17-1110000D8303}) (Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
GTA San Andreas (HKLM-x32\...\{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}) (Version: 1.00.00001 - Rockstar Games)
HWiNFO64 Version 6.20 (HKLM\...\HWiNFO64_is1) (Version: 6.20 - Martin Malik - REALiX)
Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version: 6.38.1 - Tonec Inc.)
Java 7 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417051FF}) (Version: 7.0.510 - Oracle)
Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.510 - Oracle)
Java 8 Update 201 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180201F0}) (Version: 8.0.2010.9 - Oracle Corporation)
Java 8 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218060F0}) (Version: 8.0.600.27 - Oracle Corporation)
K-Lite Codec Pack 14.2.5 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 14.2.5 - KLCP)
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version:  - )
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Malwarebytes version 4.2.1.89 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.2.1.89 - Malwarebytes)
Mała Księgowość (HKLM-x32\...\MalaKsiegowosc) (Version:  - )
Mario Forever 6.00 Fixed Version (HKLM-x32\...\Mario Forever 6.00 Fixed Version) (Version:  - )
Microsoft Office Professional Plus 2016 - pl-pl (HKLM\...\ProplusRetail - pl-pl) (Version: 16.0.13127.20408 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 18.151.0729.0013 - Microsoft Corporation)
Microsoft Project Professional 2016 - pl-pl (HKLM\...\ProjectProRetail - pl-pl) (Version: 16.0.13127.20408 - Microsoft Corporation)
Microsoft Visio - pl-pl (HKLM\...\VisioProRetail - pl-pl) (Version: 16.0.13127.20408 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61186 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.22.27821 (HKLM-x32\...\{6361b579-2795-4886-b2a8-53d5239b6452}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821 (HKLM-x32\...\{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual Studio Code (User) (HKU\S-1-5-21-4016905503-1915356772-76512361-1001\...\{771FD6B0-FA20-440A-A002-3B3BAC16DC50}_is1) (Version: 1.29.1 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{756E195A-CB58-4B99-917F-0DDA0D881204}) (Version: 1.0.4.0 - Mojang)
Mozilla Firefox 80.0.1 (x64 pl) (HKLM\...\Mozilla Firefox 80.0.1 (x64 pl)) (Version: 80.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 60.0.2 - Mozilla)
MTA:SA v1.5.5 (HKLM-x32\...\MTA:SA 1.5) (Version: v1.5.5 - Multi Theft Auto)
Need for Speed Most Wanted (black edition) (HKLM-x32\...\Need for Speed Most Wanted (black edition)) (Version: 1.3 - Electronic Arts)
NetSpeedMonitor 2.5.4.0 x64 (HKLM\...\{88F41EE2-949B-4B52-933D-C7F8F67BC1D2}) (Version: 2.5.4.0 - Florian Gilles)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.7 - Notepad++ Team)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.2.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.2.34 - NVIDIA Corporation)
NVIDIA GeForce NOW 2.0.21.106 (HKU\S-1-5-21-4016905503-1915356772-76512361-1001\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GeforceNOW) (Version: 2.0.21.106 - NVIDIA Corporation)
NVIDIA Install Application (HKU\S-1-5-21-4016905503-1915356772-76512361-1001\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer) (Version: 2.1002.344.0 - NVIDIA Corporation) Hidden
NVIDIA Oprogramowanie systemu PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NVIDIA Sterownik dźwięku HD 1.3.38.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.21 - NVIDIA Corporation)
NVIDIA Sterownik graficzny 441.66 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 441.66 - NVIDIA Corporation)
Oblivion Mouse Driver (HKLM-x32\...\{CF14367C-43D0-4946-AEA3-1CD7F80A49CB}) (Version: 1.0 - )
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.13127.20164 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.13127.20378 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0415-1000-0000000FF1CE}) (Version: 16.0.13127.20164 - Microsoft Corporation) Hidden
Panel sterowania NVIDIA 441.66 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 441.66 - NVIDIA Corporation) Hidden
Pepakura Designer 4 (HKLM-x32\...\pepakura_designer4en) (Version:  - TamaSoftware)
Podatnik.info PIT pro 2019 wersja 2.6.7.0 (HKLM-x32\...\{B239B43B-3E99-40B0-80BF-1B1BCA868D4E}_is1) (Version: 2.6.7.0 - Podatnik S.A.)
Python 2.7.10 (HKLM-x32\...\{E2B51919-207A-43EB-AE78-733F9C6797C2}) (Version: 2.7.10150 - Python Software Foundation)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7841 - Realtek Semiconductor Corp.)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.27.272 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.6.5 - Rockstar Games)
Samsung Easy Printer Manager (HKLM-x32\...\Samsung Easy Printer Manager) (Version: 2.00.01.24 - HP Printing Korea Co., Ltd.)
Samsung Printer Center (HKLM-x32\...\Samsung Printer Center) (Version: 1.0.0.28 - Samsung Electronics Co., Ltd.)
Samsung Scan Process Machine (HKLM-x32\...\Samsung Scan Process Machine) (Version: 1.03.05.28 - Samsung Electronics Co., Ltd.) Hidden
Stellarium 0.20.2 (HKLM\...\Stellarium_is1) (Version: 0.20.2 - Stellarium team)
TeamSpeak 3 Client (HKU\S-1-5-21-4016905503-1915356772-76512361-1001\...\TeamSpeak 3 Client) (Version: 3.2.1 - TeamSpeak Systems GmbH)
Uninstall Samsung Printer Software (HKLM-x32\...\TotalUninstaller) (Version: 4.0.0.67 - Samsung Electronics CO., LTD.)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
Vegas Pro 13.0 (64-bit) (HKLM\...\{CDA02BF0-BFBC-11E3-AFA0-F04DA23A5C58}) (Version: 13.0.290 - Sony)
Windscribe (HKLM-x32\...\{fa690e90-ddb0-4f0c-b3f1-136c084e5fc7}_is1) (Version: 1.83 Build 20 - Windscribe Limited)
WinRAR 5.70 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
Wtyczka e-Deklaracje (HKLM-x32\...\{E104739D-425A-4EE3-965D-E129E2F39487}) (Version: 5.0.2 - Ministerstwo Finansów)
 
Packages:
=========
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-08] (Autodesk Inc.)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.4.255.0_x64__rz1tebttyb220 [2020-08-29] (Dolby Laboratories)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-24] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-24] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.8101.0_x64__8wekyb3d8bbwe [2020-08-19] (Microsoft Studios) [MS Ad]
Xbox One SmartGlass -> C:\Program Files\WindowsApps\Microsoft.XboxOneSmartGlass_2.2.1702.2004_x64__8wekyb3d8bbwe [2019-01-30] (Microsoft Corporation)
 
==================== Niestandardowe rejestracje CLSID (filtrowane): ==============
 
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
 
ShellIconOverlayIdentifiers: [                  IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2019-05-02] (Tonec Inc. -> Tonec Inc.)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} =>  -> Brak pliku
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> Brak pliku
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => E:\Program Files (x86)\Notepad++\NppShell_06.dll [2019-05-19] (Notepad++ -> )
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> Brak pliku
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => E:\Program Files\WinRAR\rarext.dll [2019-03-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => E:\Program Files\WinRAR\rarext32.dll [2019-03-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => E:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-06-20] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => E:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-06-20] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-09-21] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} =>  -> Brak pliku
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} =>  -> Brak pliku
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> Brak pliku
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> Brak pliku
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-12-07] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> Brak pliku
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-09-21] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> Brak pliku
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => E:\Program Files\WinRAR\rarext.dll [2019-03-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => E:\Program Files\WinRAR\rarext32.dll [2019-03-01] (win.rar GmbH -> Alexander Roshal)
 
==================== Codecs (filtrowane) ====================
 
(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)
 
HKLM\...\Drivers32: [VIDC.FICV] => C:\Windows\system32\ficvdec_x64.dll [652288 2013-05-28] () [Brak podpisu cyfrowego]
HKLM\...\Drivers32: [VIDC.FICV] => C:\Windows\SysWOW64\ficvdec_x86.dll [641024 2013-05-28] () [Brak podpisu cyfrowego]
HKLM\...\Drivers32: [msacm.vorbis] => C:\Windows\SysWOW64\vorbis.acm [1554944 2009-09-15] (HMS hxxp://hp.vector.co.jp/authors/VA012897/) [Brak podpisu cyfrowego]
 
==================== Skróty & WMI ========================
 
==================== Załadowane moduły (filtrowane) =============
 
2018-06-20 11:34 - 2020-09-22 10:24 - 000026112 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\AXSP\1.01.02\PEbiosinterface32.dll
2019-02-12 17:39 - 2016-08-10 13:07 - 002847744 _____ () [Brak podpisu cyfrowego] C:\WINDOWS\system32\DlgSearchEngine.dll
2010-04-04 23:08 - 2010-04-04 23:08 - 001253376 _____ (Florian Gilles) [Brak podpisu cyfrowego] C:\Program Files\NetSpeedMonitor\nsm.dll
 
==================== Alternate Data Streams (filtrowane) ========
 
==================== Tryb awaryjny (filtrowane) ==================
 
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.)
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
 
==================== Powiązania plików (filtrowane) =================
 
==================== Internet Explorer (filtrowane) ==========
 
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2020-05-28] (Tonec Inc. -> Internet Download Manager, Tonec Inc.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_201\bin\ssv.dll [2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_201\bin\jp2ssv.dll [2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2020-05-28] (Tonec Inc. -> Internet Download Manager, Tonec Inc.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-09-11] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll [2020-07-27] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll [2020-07-27] (Oracle America, Inc. -> Oracle Corporation)
DPF: HKLM-x32 {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} 
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-09-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-09-11] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-09-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-09-11] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-09-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-09-11] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-09-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-09-11] (Microsoft Corporation -> Microsoft Corporation)
 
==================== Hosts - zawartość: =========================
 
(Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.)
 
2019-12-26 15:48 - 2020-09-21 22:14 - 000000027 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1       localhost
 
2020-03-20 23:31 - 2020-03-20 23:32 - 000000000 ____R C:\WINDOWS\system32\drivers\etc\hosts.ics
 
==================== Inne obszary ===========================
 
(Obecnie brak automatycznej naprawy dla tej sekcji.)
 
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Python27\;C:\Python27\Scripts;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Users\dawid\AppData\Local\Microsoft\WindowsApps;E:\Users\dawid\AppData\Local\Programs\Microsoft VS Code\bin;C:\Users\dawid\Documents\ffmpeg\bin
HKU\S-1-5-21-4016905503-1915356772-76512361-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\dawid\Desktop\5d5212deabea53577c5ae3f406645e7e.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Block)
Zapora systemu Windows [funkcja włączona]
 
==================== MSCONFIG/TASK MANAGER - Wyłączone elementy ==
 
(Załączenie wejścia w fixlist spowoduje jego usunięcie.)
 
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "CDAServer"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "Oblivion Mouse Driver"
HKLM\...\StartupApproved\Run32: => "WidgetPodatnikInfo"
HKU\S-1-5-21-4016905503-1915356772-76512361-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-4016905503-1915356772-76512361-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-4016905503-1915356772-76512361-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-4016905503-1915356772-76512361-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-4016905503-1915356772-76512361-1001\...\StartupApproved\Run: => "SteamServerBrowser"
HKU\S-1-5-21-4016905503-1915356772-76512361-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-4016905503-1915356772-76512361-1001\...\StartupApproved\Run: => "ProductAuthenticationService"
HKU\S-1-5-21-4016905503-1915356772-76512361-1001\...\StartupApproved\Run: => "RGSC"
HKU\S-1-5-21-4016905503-1915356772-76512361-1001\...\StartupApproved\Run: => "AVGBrowserAutoLaunch_08442760B268E8492BB419D37C932EB5"
HKU\S-1-5-21-4016905503-1915356772-76512361-1001\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-4016905503-1915356772-76512361-1001\...\StartupApproved\Run: => "PTOneClick"
HKU\S-1-5-21-4016905503-1915356772-76512361-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-4016905503-1915356772-76512361-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
 
==================== Reguły Zapory systemu Windows (filtrowane) ================
 
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
 
FirewallRules: [UDP Query User{62547308-6372-425A-8FB7-47A97304ACFB}C:\users\dawid\desktop\programy\minecraft note block studio\minecraft note block studio.exe] => (Allow) C:\users\dawid\desktop\programy\minecraft note block studio\minecraft note block studio.exe (www.stuffbydavid.com) [Brak podpisu cyfrowego]
FirewallRules: [TCP Query User{72ED321F-4C4F-4CC8-8631-549CF617FAFA}C:\users\dawid\desktop\programy\minecraft note block studio\minecraft note block studio.exe] => (Allow) C:\users\dawid\desktop\programy\minecraft note block studio\minecraft note block studio.exe (www.stuffbydavid.com) [Brak podpisu cyfrowego]
FirewallRules: [UDP Query User{37D11C3B-A81F-4C99-96C3-59356C9850A4}C:\program files (x86)\samsung\easy printer manager\easyprintermanagerv2.exe] => (Allow) C:\program files (x86)\samsung\easy printer manager\easyprintermanagerv2.exe (HP Inc. -> )
FirewallRules: [TCP Query User{11088ABF-E78E-40FB-A480-919A6B269722}C:\program files (x86)\samsung\easy printer manager\easyprintermanagerv2.exe] => (Allow) C:\program files (x86)\samsung\easy printer manager\easyprintermanagerv2.exe (HP Inc. -> )
FirewallRules: [{745CB6E7-C43A-4BEA-9F26-E9B5E3B10811}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Printer Diagnostics\SEInstall\SPD\WebInstallAgent\SPNTInst.exe (HP Inc. -> )
FirewallRules: [{FBF83F03-E987-49E0-BF25-A7B8F8934E1C}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Printer Diagnostics\SEInstall\SPD\ESM.exe (HP Inc. -> )
FirewallRules: [{164581DF-BDEB-4149-8A0A-A3466B18C97A}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Printer Center\SamsungPrinterCenter.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{623B7CA1-AEB6-4EBE-A4BB-EE03460E620D}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{60C03137-5D21-46E1-AE5A-560EF0298BDF}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{173EBF29-365C-4ED7-B6AF-56BAEF1EE263}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{58FD2AC0-0532-4C7F-BF05-9E129CFB7C50}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{71ADE4B4-DB92-4841-8661-C91787518CFB}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2Migrator.exe (HP Inc. -> )
FirewallRules: [{770DE786-0E19-4755-BA42-1AC3D4CE3F5E}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2AlertList.exe (HP Inc. -> HP Printing Korea Co., Ltd.)
FirewallRules: [{FA26BA90-EA22-4042-85B5-F7DA2A3299A7}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe (HP Inc. -> HP Printing Korea Co., Ltd.)
FirewallRules: [{875C8729-F2EA-42A7-BCF3-91EF952E7D7C}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\EasyPrinterManagerV2.exe (HP Inc. -> )
FirewallRules: [UDP Query User{2136D85A-D9F6-41B1-AECE-46025719A67B}C:\program files (x86)\windscribe\wsappcontrol.exe] => (Allow) C:\program files (x86)\windscribe\wsappcontrol.exe (Windscribe Limited -> Windscribe Limited)
FirewallRules: [TCP Query User{F9F49510-EABE-4C4D-90B7-46EB219D753B}C:\program files (x86)\windscribe\wsappcontrol.exe] => (Allow) C:\program files (x86)\windscribe\wsappcontrol.exe (Windscribe Limited -> Windscribe Limited)
FirewallRules: [{A0D2339D-5575-490B-AAB8-4B196DDA7C07}] => (Allow) E:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{2117BD6F-4EE4-441E-B04E-A7C1CD1F19BF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{2BC6EA4C-AE83-4362-9052-1921F402D490}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{6B230266-424C-4C91-BCB8-E90B4BF858AA}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{2923750F-F577-470D-9CC5-655A86B1AB06}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{C6E3036E-E688-40D6-BFDC-16339EED3C17}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{3A5B5DA1-F6A4-43B4-A965-9D2374926153}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{CE7360FE-A1E2-4FD7-A1B4-949458B0AA7C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{767C71DD-5B9D-49BF-A00C-607AA8897026}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{93AA42EC-9526-4905-B585-E77104FB2CF5}C:\program files (x86)\droidcam\droidcamapp.exe] => (Allow) C:\program files (x86)\droidcam\droidcamapp.exe (DEV47 APPS -> )
FirewallRules: [UDP Query User{F0CAF9D2-895B-4197-AAA3-BBA3234D6162}C:\program files (x86)\droidcam\droidcamapp.exe] => (Allow) C:\program files (x86)\droidcam\droidcamapp.exe (DEV47 APPS -> )
FirewallRules: [TCP Query User{18A22213-D3DB-4877-80FF-49E884B17699}C:\users\dawid\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe] => (Allow) C:\users\dawid\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [UDP Query User{CFEDB2A6-A3AA-4EF2-A5B6-EA6B2B8F11EE}C:\users\dawid\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe] => (Allow) C:\users\dawid\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{4A525FF2-0DB1-44C8-ADD0-28073A4548BB}C:\python27\python.exe] => (Allow) C:\python27\python.exe () [Brak podpisu cyfrowego]
FirewallRules: [UDP Query User{1AE6189F-E435-46A5-9F1F-AFE34B8BE1F3}C:\python27\python.exe] => (Allow) C:\python27\python.exe () [Brak podpisu cyfrowego]
FirewallRules: [TCP Query User{8E2728AC-1238-4C60-81A5-C3216B2404FD}D:\program files (x86)\nfs world offline\need for speed world\data\nfsw.exe] => (Allow) D:\program files (x86)\nfs world offline\need for speed world\data\nfsw.exe (Electronic Arts -> Electronic Arts)
FirewallRules: [UDP Query User{8222ED68-7A08-4A5B-9B38-04440DB786BF}D:\program files (x86)\nfs world offline\need for speed world\data\nfsw.exe] => (Allow) D:\program files (x86)\nfs world offline\need for speed world\data\nfsw.exe (Electronic Arts -> Electronic Arts)
FirewallRules: [TCP Query User{4BB79A49-7C20-43BA-B592-5F90FDFC4794}D:\program files\epic games\gtav\gta5.exe] => (Allow) D:\program files\epic games\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{564180DD-53FC-4510-8CD8-04FF16061574}D:\program files\epic games\gtav\gta5.exe] => (Allow) D:\program files\epic games\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{D3587FA5-E861-4DE8-A5F9-2BDA925E313E}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{ECA521E4-17F1-427B-8C51-B3ECE1D0D3C2}C:\windows\syswow64\svchost.exe] => (Block) C:\windows\syswow64\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [UDP Query User{36AB2560-5233-470C-86C2-483ED40A1626}C:\windows\syswow64\svchost.exe] => (Block) C:\windows\syswow64\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
 
==================== Punkty Przywracania systemu =========================
 
UWAGA: Przywracanie systemu jest wyłączone (Total:60.07 GB) (Free:3.87 GB) (6%)
 
==================== Wadliwe urządzenia w Menedżerze urządzeń ============
 
 
==================== Błędy w Dzienniku zdarzeń: ========================
 
Dziennik Aplikacja:
==================
Error: (09/21/2020 09:50:45 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (9632,R,98) TILEREPOSITORYS-1-5-18: Wystąpił błąd -1023 (0xfffffc01) podczas otwierania pliku dziennika C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
 
Error: (09/21/2020 09:35:08 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (3728,R,98) TILEREPOSITORYS-1-5-18: Wystąpił błąd -1023 (0xfffffc01) podczas otwierania pliku dziennika C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
 
Error: (09/21/2020 09:27:55 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (4816,R,98) TILEREPOSITORYS-1-5-18: Wystąpił błąd -1023 (0xfffffc01) podczas otwierania pliku dziennika C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
 
Error: (09/21/2020 09:13:38 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas wywoływania procedury CoCreateInstance.  hr = 0x8007045b, Trwa proces zamykania systemu.
.
 
Error: (09/21/2020 09:13:38 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informacje Usługi kopiowania woluminów w tle: nie można uruchomić serwera usługi COM z identyfikatorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} i nazwą CEventSystem. [0x8007045b, Trwa proces zamykania systemu.
]
 
Error: (09/21/2020 09:13:38 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas wywoływania procedury CoCreateInstance.  hr = 0x8007045b, Trwa proces zamykania systemu.
.
 
Error: (09/21/2020 09:13:38 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informacje Usługi kopiowania woluminów w tle: nie można uruchomić serwera usługi COM z identyfikatorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} i nazwą CEventSystem. [0x8007045b, Trwa proces zamykania systemu.
]
 
Error: (09/21/2020 08:51:21 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (9492,R,98) TILEREPOSITORYS-1-5-18: Wystąpił błąd -1023 (0xfffffc01) podczas otwierania pliku dziennika C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
 
 
Dziennik System:
=============
Error: (09/22/2020 10:26:32 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi Usługa %1!s! Update (avast) z powodu następującego błędu: 
Usługa nie odpowiada na sygnał uruchomienia lub sygnał sterujący w oczekiwanym czasie.
 
Error: (09/22/2020 10:26:32 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą Usługa 30000!s! Update (avast).
 
Error: (09/22/2020 10:24:22 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: Poprzednie zamknięcie systemu przy 09:45:53 na ‎22.‎09.‎2020 było nieoczekiwane.
 
Error: (09/22/2020 10:23:40 AM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: ZARZĄDZANIE NT)
Description: 3221225684Wystąpił błąd krytyczny podczas przetwarzania danych przywracania.
 
Error: (09/22/2020 09:19:32 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi eapihdrv z powodu następującego błędu: 
Nastąpiło zablokowanie ładowania sterownika
 
Error: (09/22/2020 09:19:32 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\dawid\AppData\Local\Temp\ehdrv.sys
 
Error: (09/22/2020 09:19:31 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi eapihdrv z powodu następującego błędu: 
Nastąpiło zablokowanie ładowania sterownika
 
Error: (09/22/2020 09:19:31 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\dawid\AppData\Local\Temp\ehdrv.sys
 
 
Windows Defender:
===================================
Date: 2020-09-21 13:40:31.289
Description: 
Produkt Program antywirusowy Windows Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie.
Aby uzyskać więcej informacji, zobacz:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Wacatac.D6!ml&threatid=2147757785&enterprise=0
Nazwa: Trojan:Win32/Wacatac.D6!ml
Identyfikator: 2147757785
Ważność: Poważny
Kategoria: Koń trojański
Ścieżka: file:_C:\Users\dawid\Desktop\FRST.exe
Pochodzenie wykrycia: Komputer lokalny
Typ wykrycia: FastPath
Źródło wykrycia: Użytkownik
Użytkownik: DESKTOP-NKVS9OE\Szymon
Nazwa procesu: Unknown
Wersja analizy zabezpieczeń: AV: 1.323.1614.0, AS: 1.323.1614.0, NIS: 1.323.1614.0
Wersja aparatu: AM: 1.1.17400.5, NIS: 1.1.17400.5
 
Date: 2020-09-21 13:39:11.154
Description: 
Produkt Program antywirusowy Windows Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie.
Aby uzyskać więcej informacji, zobacz:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Wacatac.D6!ml&threatid=2147757785&enterprise=0
Nazwa: Trojan:Win32/Wacatac.D6!ml
Identyfikator: 2147757785
Ważność: Poważny
Kategoria: Koń trojański
Ścieżka: file:_C:\Users\dawid\AppData\Local\Temp\srti2v0dik3\ifhvvyy.exe; file:_C:\Users\dawid\AppData\Local\Temp\t0jrgiwxint\ifhvvyy.exe; file:_C:\Users\dawid\AppData\Local\Temp\ve5y4prhbfn\ifhvvyy.exe
Pochodzenie wykrycia: Komputer lokalny
Typ wykrycia: FastPath
Źródło wykrycia: Ochrona w czasie rzeczywistym
Użytkownik: DESKTOP-NKVS9OE\Szymon
Nazwa procesu: C:\Program Files\CCleaner\CCleaner64.exe
Wersja analizy zabezpieczeń: AV: 1.323.1614.0, AS: 1.323.1614.0, NIS: 1.323.1614.0
Wersja aparatu: AM: 1.1.17400.5, NIS: 1.1.17400.5
 
Date: 2020-09-21 13:39:10.713
Description: 
Produkt Program antywirusowy Windows Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie.
Aby uzyskać więcej informacji, zobacz:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Wacatac.D6!ml&threatid=2147757785&enterprise=0
Nazwa: Trojan:Win32/Wacatac.D6!ml
Identyfikator: 2147757785
Ważność: Poważny
Kategoria: Koń trojański
Ścieżka: file:_C:\Users\dawid\AppData\Local\Temp\srti2v0dik3\ifhvvyy.exe; file:_C:\Users\dawid\AppData\Local\Temp\t0jrgiwxint\ifhvvyy.exe
Pochodzenie wykrycia: Komputer lokalny
Typ wykrycia: FastPath
Źródło wykrycia: Ochrona w czasie rzeczywistym
Użytkownik: DESKTOP-NKVS9OE\Szymon
Nazwa procesu: C:\Program Files\CCleaner\CCleaner64.exe
Wersja analizy zabezpieczeń: AV: 1.323.1614.0, AS: 1.323.1614.0, NIS: 1.323.1614.0
Wersja aparatu: AM: 1.1.17400.5, NIS: 1.1.17400.5
 
Date: 2020-09-21 13:39:09.553
Description: 
Produkt Program antywirusowy Windows Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie.
Aby uzyskać więcej informacji, zobacz:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Wacatac.D6!ml&threatid=2147757785&enterprise=0
Nazwa: Trojan:Win32/Wacatac.D6!ml
Identyfikator: 2147757785
Ważność: Poważny
Kategoria: Koń trojański
Ścieżka: file:_C:\Users\dawid\AppData\Local\Temp\srti2v0dik3\ifhvvyy.exe
Pochodzenie wykrycia: Komputer lokalny
Typ wykrycia: FastPath
Źródło wykrycia: Ochrona w czasie rzeczywistym
Użytkownik: DESKTOP-NKVS9OE\Szymon
Nazwa procesu: C:\Program Files\CCleaner\CCleaner64.exe
Wersja analizy zabezpieczeń: AV: 1.323.1614.0, AS: 1.323.1614.0, NIS: 1.323.1614.0
Wersja aparatu: AM: 1.1.17400.5, NIS: 1.1.17400.5
 
Date: 2020-09-21 13:35:18.729
Description: 
Produkt Program antywirusowy Windows Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie.
Aby uzyskać więcej informacji, zobacz:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Wacatac.D6!ml&threatid=2147757785&enterprise=0
Nazwa: Trojan:Win32/Wacatac.D6!ml
Identyfikator: 2147757785
Ważność: Poważny
Kategoria: Koń trojański
Ścieżka: file:_C:\Users\dawid\AppData\Local\Temp\s1b3urahuao\ifhvvyy.exe; file:_C:\Users\dawid\AppData\Local\Temp\zdg2ru54vix\te1rlrxlkxe.exe; file:_C:\Users\dawid\AppData\Local\Temp\zrsoshjmzgb\adm5ibrqm1u.exe
Pochodzenie wykrycia: Komputer lokalny
Typ wykrycia: FastPath
Źródło wykrycia: Ochrona w czasie rzeczywistym
Użytkownik: DESKTOP-NKVS9OE\Szymon
Nazwa procesu: C:\Program Files\CCleaner\CCleaner64.exe
Wersja analizy zabezpieczeń: AV: 1.323.1614.0, AS: 1.323.1614.0, NIS: 1.323.1614.0
Wersja aparatu: AM: 1.1.17400.5, NIS: 1.1.17400.5
 
Date: 2020-04-17 20:43:03.189
Description: 
Produkt Program antywirusowy Windows Defender napotkał błąd podczas próby aktualizacji analizy zabezpieczeń.
Nowa wersja analizy zabezpieczeń: 
Poprzednia wersja analizy zabezpieczeń: 1.313.1752.0
Źródło aktualizacji: Serwer usługi Microsoft Update
Typ analizy zabezpieczeń: Oprogramowanie antywirusowe
Typ aktualizacji: Pełne
Użytkownik: ZARZĄDZANIE NT\SYSTEM
Bieżąca wersja aparatu: 
Poprzednia wersja aparatu: 1.1.16900.4
Kod błędu: 0x80240438
Opis błędu: Podczas sprawdzania aktualizacji wystąpił nieoczekiwany problem. Aby uzyskać informacje na temat instalowania aktualizacji i rozwiązywania problemów z nimi, zobacz Pomoc i obsługę techniczną. 
 
Date: 2020-04-16 10:07:01.057
Description: 
Produkt Program antywirusowy Windows Defender napotkał błąd podczas próby załadowania analizy zabezpieczeń i podejmie próbę powrotu do znanej dobrej wersji.
%Analiza zabezpieczeń objęta próbą: Kopia zapasowa
Kod błędu: 0x80070013
Opis błędu: Nośnik jest zabezpieczony przed zapisem. 
Wersja analizy zabezpieczeń: 1.313.1556.0;1.313.1556.0
Wersja aparatu: 1.1.16900.4
 
Date: 2020-04-16 10:06:58.073
Description: 
Produkt Program antywirusowy Windows Defender napotkał błąd podczas próby załadowania analizy zabezpieczeń i podejmie próbę powrotu do znanej dobrej wersji.
%Analiza zabezpieczeń objęta próbą: Bieżące
Kod błędu: 0x80070013
Opis błędu: Nośnik jest zabezpieczony przed zapisem. 
Wersja analizy zabezpieczeń: 1.313.1607.0;1.313.1607.0
Wersja aparatu: 1.1.16900.4
 
CodeIntegrity:
===================================
 
Date: 2020-09-22 10:24:10.704
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\drivers\tapwindscribe0901.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
Date: 2020-09-22 09:04:45.483
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\drivers\tapwindscribe0901.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
Date: 2020-09-22 08:20:04.149
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\drivers\tapwindscribe0901.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
Date: 2020-09-21 22:16:41.706
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\drivers\tapwindscribe0901.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
Date: 2020-09-21 21:14:38.883
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\drivers\tapwindscribe0901.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
Date: 2020-09-21 21:01:59.453
Description: 
Windows blocked file \Device\HarddiskVolume5\Windows\System32\scrobj.dll which has been disallowed for protected processes.
 
Date: 2020-09-21 21:01:58.929
Description: 
Windows blocked file \Device\HarddiskVolume5\Windows\System32\scrobj.dll which has been disallowed for protected processes.
 
Date: 2020-09-21 17:01:29.775
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
==================== Statystyki pamięci =========================== 
 
BIOS: American Megatrends Inc. 2201 11/25/2014
Płyta główna: ASUSTeK COMPUTER INC. H81M-P
Procesor: Intel(R) Celeron(R) CPU G1840 @ 2.80GHz
Procent pamięci w użyciu: 41%
Całkowita pamięć fizyczna: 8127.61 MB
Dostępna pamięć fizyczna: 4779.05 MB
Całkowita pamięć wirtualna: 16419.61 MB
Dostępna pamięć wirtualna: 12309.75 MB
 
==================== Dyski ================================
 
Drive c: (OS) (Fixed) (Total:60.07 GB) (Free:3.87 GB) NTFS
Drive d: (Gry) (Fixed) (Total:240.01 GB) (Free:99.25 GB) NTFS
Drive e: (Programy) (Fixed) (Total:70.01 GB) (Free:69.23 GB) NTFS
Drive f: (Multimedia) (Fixed) (Total:79.99 GB) (Free:21 GB) NTFS
 
\\?\Volume{09434758-53c2-46d0-b99d-896ec65cb303}\ (WinRE) (Fixed) (Total:0.34 GB) (Free:0.09 GB) NTFS
\\?\Volume{7a45b368-9531-448a-b872-77a2479a0064}\ (Recovery) (Fixed) (Total:14.65 GB) (Free:6.31 GB) NTFS
\\?\Volume{4fadd8fe-ed63-4dde-97e3-681f0e99e52b}\ () (Fixed) (Total:0.47 GB) (Free:0.04 GB) NTFS
\\?\Volume{6473d73e-ef09-4e61-959a-a6a51837035c}\ (SYSTEM) (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
 
==================== MBR & Tablica partycji ====================
 
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 08410081)
 
Partition: GPT.
 
==================== Koniec  Addition.txt =======================
Wygenerowano w 0.009s, przy pomocy GeSHi 1.0.8
'
Podziel się na Facebook Podziel się na BLIP Podziel się na Twitter Podziel się na Buzz Podziel się na Flaker Dodaj zakładkę Google Podziel się na Delicious Wykop to!

Nowy Komentarz:

Komentarze:

Brak Komentarzy!