Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 26-11-2021 Uruchomiony przez Nojasy (01-12-2021 00:59:34) Uruchomiony z C:\Users\Nojasy\Desktop\FRST Microsoft Windows 10 Home Wersja 21H2 19044.1348 (X64) (2020-08-06 15:40:25) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= (Załączenie wejścia w fixlist spowoduje jego usunięcie.) Administrator (S-1-5-21-2721533137-1662502331-562609926-500 - Administrator - Disabled) Gość (S-1-5-21-2721533137-1662502331-562609926-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-2721533137-1662502331-562609926-1003 - Limited - Enabled) Konto domyślne (S-1-5-21-2721533137-1662502331-562609926-503 - Limited - Disabled) Nojasy (S-1-5-21-2721533137-1662502331-562609926-1001 - Administrator - Enabled) => C:\Users\Nojasy WDAGUtilityAccount (S-1-5-21-2721533137-1662502331-562609926-504 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKU\S-1-5-21-2721533137-1662502331-562609926-1001\...\uTorrent) (Version: 3.5.5.46010 - BitTorrent Inc.) A360 Desktop (HKLM\...\{B65CD59E-A771-4354-AA4B-C3E01B496BCD}) (Version: 8.2.3.1800 - Autodesk) Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 21.007.20099 - Adobe Systems Incorporated) Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.465 - Adobe) Adobe Lightroom Classic (HKLM-x32\...\LTRM_10_2) (Version: 10.2 - Adobe Inc.) AmpliTube 3 version 3.9.1 (HKLM\...\{DA5202AC-12BF-4330-B8EA-BC77F991FA1C}_is1) (Version: 3.9.1 - IK Multimedia) AmpliTube 4 version 4.0.1 (HKLM\...\{21B0C8E0-7EB7-4832-B764-20A7DAE86E02}_is1) (Version: 4.0.1 - IK Multimedia) Any Audio Converter 6.3.8 (HKLM-x32\...\Any Audio Converter) (Version: 6.3.8 - Anvsoft) AOMEI Partition Assistant Standard Edition 8.6 (HKLM-x32\...\{02F850ED-FD0E-4ED1-BE0B-54981f5BD3D4}_is1) (Version: - AOMEI Technology Co., Ltd.) Aplikacja na pulpit firmy Autodesk (HKLM-x32\...\Autodesk Desktop App) (Version: 7.0.16.29 - Autodesk) Apple Application Support (HKLM-x32\...\{EB879750-CCBD-4013-BFD5-0294D4DA5BD0}) (Version: 2.1.7 - Apple Inc.) Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.13 - Michael Tippach) ASUS Device Activation (HKLM-x32\...\{9C4B0706-9F9A-47BF-B417-0A111FC52B04}) (Version: 1.0.4.0 - ASUSTeK COMPUTER INC.) ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.6.8 - ASUSTeK COMPUTER INC.) ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.18 - ASUS) ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.19.0004 - ASUS) ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.1.7 - ASUS) ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0043 - ASUS) Audacity 3.0.4 (HKLM\...\Audacity_is1) (Version: 3.0.4 - Audacity Team) AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.2.9 - ICEpower a/s) AutoCAD 2018 — polski (Polish) (HKLM\...\{28B89EEF-1001-0415-2102-CF3F3A09B77D}) (Version: 22.0.49.0 - Autodesk) Hidden Autodesk Advanced Material Library Image Library 2018 (HKLM-x32\...\{177AD7F6-9C77-4E50-BA53-B7259C5F282D}) (Version: 16.11.1.0 - Autodesk) Autodesk App Manager 2016-2018 (HKLM-x32\...\{20EC0CA2-346E-4660-9903-51B278DF15F6}) (Version: 2.4.0 - Autodesk) Autodesk AutoCAD 2018 — polski (Polish) (HKLM\...\AutoCAD 2018 — polski (Polish)) (Version: 22.0.49.0 - Autodesk) Autodesk AutoCAD 2018.1.2 (HKLM-x32\...\{b501e2dd-1001-0000-0102-2d66c6a91615}) (Version: 22.0.161.0 - Autodesk) Hidden Autodesk AutoCAD 2018.1.2 Update Combo Security Hotfix (HKLM-x32\...\{f4f9ba0b-1001-0000-0102-f66cecb16116}) (Version: 22.0.161.16 - Autodesk) Autodesk AutoCAD Performance Feedback Tool 1.2.8 (HKLM-x32\...\{214D3370-746E-4886-8EAA-5769EB87D044}) (Version: 1.2.8.0 - Autodesk) Autodesk Download Manager (HKLM-x32\...\{82428C7E-8FCE-44E4-9BDD-0C2C8C26F308}) (Version: 6.1.32.0 - Autodesk, Inc.) Autodesk DWG TrueView 2018 - English (HKLM\...\DWG TrueView 2018 - English) (Version: 22.0.50.0 - Autodesk) Autodesk Featured Apps 2016-2018 (HKLM-x32\...\{384C4B74-B749-4AB6-9367-4D51A6AA9CB8}) (Version: 2.4.0 - Autodesk) Autodesk Material Library 2018 (HKLM-x32\...\{7847611E-92E9-4917-B395-71C91D523104}) (Version: 16.11.1.0 - Autodesk) Autodesk Material Library Base Resolution Image Library 2018 (HKLM-x32\...\{FCDED119-A969-4E48-8A32-D21AD6B03253}) (Version: 16.11.1.0 - Autodesk) Autodesk ReCap (HKLM\...\Autodesk ReCap 360) (Version: 4.0.0.28 - Autodesk) BEHRINGER USB AUDIO DRIVER (HKLM\...\USB_AUDIO_DEusb-audio.deBehringer2902) (Version: - ) BIAS AMP 2 Pack (64bit) (HKLM\...\{F934EDE6-4D80-43AA-A3F3-EAFF86FF10ED}) (Version: 2.1.1.946 - PositiveGrid) BIAS FX Plugins Pack (64bit) (HKLM\...\{DC14D8C9-76F4-43E1-84DF-050E78F4F39D}) (Version: 1.3.2.1190 - PositiveGrid) BRPrintAuditor 3.0.7 (HKLM-x32\...\BRPrintAuditor 3.0.7) (Version: - ) Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.5.0.69 - Canon Inc.) Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 6.3.0 - Canon Inc.) CanoScan LiDE 400 Scanner Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_CNQ4813S) (Version: 1.00 - Canon Inc.) CCleaner (HKLM\...\CCleaner) (Version: 5.74 - Piriform) Core Temp 1.17.1 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.17.1 - ALCPU) CPUID CPU-Z 1.96 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.96 - CPUID, Inc.) Custom Shop version 1.7.0 (HKLM-x32\...\{21BAD046-50EC-49E2-BE7B-F9729704F2C3}_is1) (Version: 1.7.0 - IK Multimedia) Device Setup (HKLM-x32\...\{8D6B05E0-F457-408C-9D13-549334D8FAE1}) (Version: 2.0.3 - ASUSTek Computer Inc.) Dexed version 0.9.4 (HKLM\...\Dexed_is1) (Version: 0.9.4 - Digital Suburban) DWGsetup 4.1 (HKLM-x32\...\{5EFFBCAF-C7F4-4E9C-871E-7DCB2867B9C8}) (Version: 4.1 - PC|SCHEMATIC A/S) Hidden DWGsetup 4.1 (HKLM-x32\...\DWGsetup 4.1) (Version: 4.1 - PCSCHEMATIC A/S) e-pity 12.2.6 za rok 2020 (HKLM-x32\...\{80D8170E-5590-218-B9ED-E24E4C99A11D}_is1) (Version: 12.2.6 - e-file sp. z o.o. sp.k.) EXIFeditor (HKLM-x32\...\{50FC1CE8-FF32-4F3B-B654-050DD6ECD474}) (Version: 1.0.0 - kiwi.software.NET) EZdrummer 2 64-bit (HKLM\...\{B9217824-0EBE-49C7-98A0-A76CC46BBB7D}) (Version: 2.0.0 - Toontrack) Free Alpha 3.3 (HKU\S-1-5-21-2721533137-1662502331-562609926-1001\...\Free Alpha 3.3) (Version: - ) Free MKV to AVI Converter (32-bit) 1.8 (HKLM-x32\...\{EDFA6B29-7667-4FD2-86F3-9835AFCE837A}_is1) (Version: 1.8 - Jacek Pazera) HL-2130 (HKLM-x32\...\{E2A97415-BD97-4867-B906-05E39E9EE51F}) (Version: 1.1.6.0 - Brother Industries, Ltd.) IK Multimedia Authorization Manager version 1.0.15 (HKLM\...\{85BC0DCB-69E5-4279-AA25-F108EF896588}_is1) (Version: 1.0.15 - IK Multimedia) inSSIDer (HKU\S-1-5-21-2721533137-1662502331-562609926-1001\...\inSSIDer) (Version: 5.5.0 - MetaGeek, LLC) Intel(R) Chipset Device Software (HKLM-x32\...\{61a0f1f5-c77e-4992-ba85-029f93cd8d18}) (Version: 10.1.1.27 - Intel(R) Corporation) Hidden Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.2.10900.330 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.5.0.1015 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 26.20.100.7325 - Intel Corporation) Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.63.1620.3 - Intel Corporation) Intel® Security Assist (HKLM-x32\...\{8B08DDA1-FDE7-4897-8EB6-E0B048A6D88B}) (Version: 1.0.1.618 - Intel Corporation) Java(TM) SE Runtime Environment 6 (HKLM-x32\...\{3248F0A8-6813-11D6-A77B-00B0D0160000}) (Version: 1.6.0.0 - Sun Microsystems, Inc.) LibreOffice 7.2.3.2 (HKLM\...\{81490660-3C36-47B4-AE9F-73B6C5BD4F98}) (Version: 7.2.3.2 - The Document Foundation) Malwarebytes version 4.4.11.149 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.4.11.149 - Malwarebytes) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 96.0.1054.34 - Microsoft Corporation) Microsoft OneDrive (HKLM-x32\...\OneDriveSetup.exe) (Version: 21.220.1024.0005 - Microsoft Corporation) Microsoft SQL Server Compact 4.0 x64 ENU (HKLM\...\{8424B163-D1E0-48B7-88A2-C7A61767B3D7}) (Version: 4.0.8482.1 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{650c9b4a-60ec-4e4e-8d8e-32d85ce3b7c5}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.23.27820 (HKLM-x32\...\{852adda4-4c78-4a38-b583-c0b360a329d6}) (Version: 14.23.27820.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation) Minecraft Launcher (HKLM-x32\...\{733C3ACB-432D-4880-B0E1-660000D7974D}) (Version: 1.0.0.0 - Mojang) Mozilla Firefox (x64 pl) (HKLM\...\Mozilla Firefox 94.0.2 (x64 pl)) (Version: 94.0.2 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 57.0.4 - Mozilla) NVIDIA FrameView SDK 1.2.4999.30397803 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.2.4999.30397803 - NVIDIA Corporation) NVIDIA GeForce Experience 3.24.0.123 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.24.0.123 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation) NVIDIA Sterownik graficzny 496.76 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 496.76 - NVIDIA Corporation) OpenOffice 4.1.6 (HKLM-x32\...\{F03D2388-158B-4F8A-B195-CBCA5F459197}) (Version: 4.16.9790 - Apache Software Foundation) OpenShot Video Editor (wersja 2.4.4) (HKLM\...\{4BB0DCDC-BC24-49EC-8937-72956C33A470}_is1) (Version: 2.4.4 - OpenShot Studios, LLC) PCSCHEMATIC Automation 40 20.0 (HKLM-x32\...\PCSCHEMATIC Automation) (Version: - PCSCHEMATIC A/S) PDFill FREE PDF Tools (HKLM\...\{735A3951-E139-4E4A-AFAE-BA25E9FF5E6A}) (Version: 10.0 - PlotSoft LLC) Qualcomm Atheros 11ac Wireless LAN&Bluetooth Installer (HKLM-x32\...\{3241744A-BA36-41F0-B4AA-EF3946D00632}) (Version: 11.0.0.10373 - Qualcomm Atheros) QuickTime (HKLM-x32\...\{0E64B098-8018-4256-BA23-C316A43AD9B0}) (Version: 7.72.80.56 - Apple Inc.) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.14393.31233 - Realtek Semiconductor Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.9.422.2016 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7824 - Realtek Semiconductor Corp.) REAPER (x64) (HKLM\...\REAPER) (Version: - ) SmartShare (HKLM-x32\...\{BAB337AE-DD9E-45C3-BED6-0EE4732AEC60}) (Version: 2.3.1712.1201 - LG Electronics Inc.) SpeedTest.pl 1.0.1.0 (HKLM-x32\...\{C0005BFA-7ED7-42CF-81EE-0B814495F161}}_is1) (Version: - V-SPEED Sp. z o.o.) Sprawdzanie kondycji komputera z systemem Windows (HKLM\...\{645FE595-D9DD-4BD7-AB97-AFF65B8FBD62}) (Version: 3.1.2109.29003 - Microsoft Corporation) TotalRecovery Pro (HKLM-x32\...\TotalRecovery) (Version: 10.0.11.2 - FarStone Inc.) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.8 - VideoLAN) WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.2.2 - ASUSTeK COMPUTER INC.) WinRAR 5.70 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH) Packages: ========= Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-05] (Autodesk Inc.) Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_3.1.0.0_neutral__6e5tt8cgb93ep [2021-07-06] (Canon Inc.) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-19] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-19] (Microsoft Corporation) [MS Ad] Movie Maker - Video Editor -> C:\Program Files\WindowsApps\21336V3TApps.MovieMaker-FREE_3.3.4.0_x64__bzg06mxvgh4fa [2021-11-07] (V3TApps) MyASUS-Service Center -> C:\Program Files\WindowsApps\B9ECED6F.MyASUS_3.3.11.0_x86__qmba6cd70vzyy [2018-04-28] (ASUSTeK COMPUTER INC.) [Startup Task] Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-07-15] (Netflix, Inc.) NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-11-16] (NVIDIA Corp.) Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0 [2021-11-26] (Spotify AB) [Startup Task] Visions of Vinyl -> C:\Program Files\WindowsApps\Microsoft.VisionsofVinyl_1.0.0.0_neutral__8wekyb3d8bbwe [2019-09-19] (Microsoft Corporation) WiFi Analyzer -> C:\Program Files\WindowsApps\19965MATTHAFNER.WIFIANALYZER_2.6.1.0_x64__gs5k5vmxr2ste [2020-06-11] (Matt Hafner) ==================== Niestandardowe rejestracje CLSID (filtrowane): ============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-2721533137-1662502331-562609926-1001_Classes\CLSID\{3faa4380-a399-11cf-a466-00805fe418f6}\InprocServer32 -> C:\Program Files\Autodesk\DWG TrueView 2018 - English\en-US\dwgviewrficn.dll (Autodesk, Inc -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-2721533137-1662502331-562609926-1001_Classes\CLSID\{9AAF0EB6-42D8-46C1-A2EF-679511B37A0D}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2018\acad.exe (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-2721533137-1662502331-562609926-1001_Classes\CLSID\{B6EB585B-B467-4E46-A9C7-48D7D6FD26CB}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2018\acad.exe (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-2721533137-1662502331-562609926-1001_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2018\pl-PL\acadficn.dll (Autodesk Development Sarl -> Autodesk, Inc.) ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files (x86)\Microsoft OneDrive\21.220.1024.0005\amd64\FileSyncShell64.dll [2021-11-30] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files (x86)\Microsoft OneDrive\21.220.1024.0005\amd64\FileSyncShell64.dll [2021-11-30] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files (x86)\Microsoft OneDrive\21.220.1024.0005\amd64\FileSyncShell64.dll [2021-11-30] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files (x86)\Microsoft OneDrive\21.220.1024.0005\amd64\FileSyncShell64.dll [2021-11-30] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files (x86)\Microsoft OneDrive\21.220.1024.0005\amd64\FileSyncShell64.dll [2021-11-30] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files (x86)\Microsoft OneDrive\21.220.1024.0005\amd64\FileSyncShell64.dll [2021-11-30] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files (x86)\Microsoft OneDrive\21.220.1024.0005\amd64\FileSyncShell64.dll [2021-11-30] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2017-02-15] (Autodesk, Inc -> Autodesk, Inc.) ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files (x86)\Microsoft OneDrive\21.220.1024.0005\amd64\FileSyncShell64.dll [2021-11-30] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files (x86)\Microsoft OneDrive\21.220.1024.0005\amd64\FileSyncShell64.dll [2021-11-30] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files (x86)\Microsoft OneDrive\21.220.1024.0005\amd64\FileSyncShell64.dll [2021-11-30] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files (x86)\Microsoft OneDrive\21.220.1024.0005\amd64\FileSyncShell64.dll [2021-11-30] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files (x86)\Microsoft OneDrive\21.220.1024.0005\amd64\FileSyncShell64.dll [2021-11-30] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files (x86)\Microsoft OneDrive\21.220.1024.0005\amd64\FileSyncShell64.dll [2021-11-30] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files (x86)\Microsoft OneDrive\21.220.1024.0005\amd64\FileSyncShell64.dll [2021-11-30] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\21.220.1024.0005\amd64\FileSyncShell64.dll [2021-11-30] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers1: [AcShellExtension.AcContextMenuHandler] -> {2E7A2C6C-B938-40a4-BA1C-C7EC982DC202} => C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll [2017-02-15] (Autodesk, Inc -> Autodesk) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-11-30] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\21.220.1024.0005\amd64\FileSyncShell64.dll [2021-11-30] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\21.220.1024.0005\amd64\FileSyncShell64.dll [2021-11-30] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Brak pliku ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_9f310939ec1eebf9\igfxDTCM.dll [2019-10-30] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_0563af65101748e9\nvshext.dll [2021-11-11] (Nvidia Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-11-30] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Drivers32: [msacm.voxacm160] => C:\Windows\system32\vct3216.acm [82944 2003-05-21] (Voxware, Inc.) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [msacm.scg726] => C:\Windows\system32\scg726.acm [13239 2000-03-14] (SHARP Corporation) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [msacm.alf2cd] => C:\Windows\system32\alf2cd.acm [38912 2003-05-21] (NCT Company) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\system32\AC3ACM.acm [81920 2004-02-04] (fccHandler) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [msacm.lame] => C:\Windows\system32\lame.ax [245760 2005-08-01] () [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.dvsd] => C:\Windows\system32\mcdvd_32.dll [261632 2003-05-21] (MainConcept) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.mpg4] => C:\Windows\system32\mpg4c32.dll [413760 2002-08-19] (Microsoft Corporation) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.mp42] => C:\Windows\system32\mpg4c32.dll [413760 2002-08-19] (Microsoft Corporation) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.mp43] => C:\Windows\system32\mpg4c32.dll [413760 2002-08-19] (Microsoft Corporation) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.xvid] => C:\Windows\system32\xvidvfw.dll [139264 2004-07-03] () [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.DIVX] => C:\Windows\system32\DivX.dll [638976 2003-05-22] (DivXNetworks, Inc.) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.VP60] => C:\Windows\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.VP61] => C:\Windows\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.VP62] => C:\Windows\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.LAGS] => C:\Windows\system32\lagarith.dll [216064 2011-12-07] () [Brak podpisu cyfrowego] ==================== Skróty & WMI ======================== ==================== Załadowane moduły (filtrowane) ============= 2019-11-15 20:55 - 2015-07-28 17:02 - 000903168 _____ () [Brak podpisu cyfrowego] [Plik w użyciu] C:\Program Files (x86)\LG Software\LG Smart Share\DMR\LibMediaRenderer.dll 2021-12-01 00:52 - 2021-09-13 22:46 - 001078784 _____ () [Brak podpisu cyfrowego] \\?\C:\Users\Nojasy\AppData\Local\Temp\1y6QaG1dVqmqkzRvawVNVxn3bhE\resources\app.asar.unpacked\node_modules\sharp\build\Release\libcairo-2.dll 2021-12-01 00:52 - 2021-09-13 22:46 - 000234496 _____ () [Brak podpisu cyfrowego] \\?\C:\Users\Nojasy\AppData\Local\Temp\1y6QaG1dVqmqkzRvawVNVxn3bhE\resources\app.asar.unpacked\node_modules\sharp\build\Release\libexif-12.dll 2021-12-01 00:52 - 2021-09-13 22:46 - 000182272 _____ () [Brak podpisu cyfrowego] \\?\C:\Users\Nojasy\AppData\Local\Temp\1y6QaG1dVqmqkzRvawVNVxn3bhE\resources\app.asar.unpacked\node_modules\sharp\build\Release\libexpat-1.dll 2021-12-01 00:52 - 2021-09-13 22:46 - 000034304 _____ () [Brak podpisu cyfrowego] \\?\C:\Users\Nojasy\AppData\Local\Temp\1y6QaG1dVqmqkzRvawVNVxn3bhE\resources\app.asar.unpacked\node_modules\sharp\build\Release\libffi-7.dll 2021-12-01 00:52 - 2021-09-13 22:46 - 000336384 _____ () [Brak podpisu cyfrowego] \\?\C:\Users\Nojasy\AppData\Local\Temp\1y6QaG1dVqmqkzRvawVNVxn3bhE\resources\app.asar.unpacked\node_modules\sharp\build\Release\libfontconfig-1.dll 2021-12-01 00:52 - 2021-09-13 22:46 - 000124416 _____ () [Brak podpisu cyfrowego] \\?\C:\Users\Nojasy\AppData\Local\Temp\1y6QaG1dVqmqkzRvawVNVxn3bhE\resources\app.asar.unpacked\node_modules\sharp\build\Release\libfribidi-0.dll 2021-12-01 00:52 - 2021-09-13 22:46 - 001078251 _____ () [Brak podpisu cyfrowego] \\?\C:\Users\Nojasy\AppData\Local\Temp\1y6QaG1dVqmqkzRvawVNVxn3bhE\resources\app.asar.unpacked\node_modules\sharp\build\Release\libgcc_s_seh-1.dll 2021-12-01 00:52 - 2021-09-13 22:46 - 000047104 _____ () [Brak podpisu cyfrowego] \\?\C:\Users\Nojasy\AppData\Local\Temp\1y6QaG1dVqmqkzRvawVNVxn3bhE\resources\app.asar.unpacked\node_modules\sharp\build\Release\libgif-7.dll 2021-12-01 00:52 - 2021-09-13 22:46 - 000260608 _____ () [Brak podpisu cyfrowego] \\?\C:\Users\Nojasy\AppData\Local\Temp\1y6QaG1dVqmqkzRvawVNVxn3bhE\resources\app.asar.unpacked\node_modules\sharp\build\Release\libgsf-1-114.dll 2021-12-01 00:52 - 2021-09-13 22:46 - 000990720 _____ () [Brak podpisu cyfrowego] \\?\C:\Users\Nojasy\AppData\Local\Temp\1y6QaG1dVqmqkzRvawVNVxn3bhE\resources\app.asar.unpacked\node_modules\sharp\build\Release\libharfbuzz.dll 2021-12-01 00:52 - 2021-09-13 22:46 - 000633344 _____ () [Brak podpisu cyfrowego] \\?\C:\Users\Nojasy\AppData\Local\Temp\1y6QaG1dVqmqkzRvawVNVxn3bhE\resources\app.asar.unpacked\node_modules\sharp\build\Release\libjpeg-62.dll 2021-12-01 00:52 - 2021-09-13 22:46 - 000463872 _____ () [Brak podpisu cyfrowego] \\?\C:\Users\Nojasy\AppData\Local\Temp\1y6QaG1dVqmqkzRvawVNVxn3bhE\resources\app.asar.unpacked\node_modules\sharp\build\Release\liblcms2-2.dll 2021-12-01 00:52 - 2021-09-13 22:46 - 000738816 _____ () [Brak podpisu cyfrowego] \\?\C:\Users\Nojasy\AppData\Local\Temp\1y6QaG1dVqmqkzRvawVNVxn3bhE\resources\app.asar.unpacked\node_modules\sharp\build\Release\liborc-0.4-0.dll 2021-12-01 00:52 - 2021-09-13 22:46 - 000995840 _____ () [Brak podpisu cyfrowego] \\?\C:\Users\Nojasy\AppData\Local\Temp\1y6QaG1dVqmqkzRvawVNVxn3bhE\resources\app.asar.unpacked\node_modules\sharp\build\Release\libpixman-1-0.dll 2021-12-01 00:52 - 2021-09-13 22:46 - 000311296 _____ () [Brak podpisu cyfrowego] \\?\C:\Users\Nojasy\AppData\Local\Temp\1y6QaG1dVqmqkzRvawVNVxn3bhE\resources\app.asar.unpacked\node_modules\sharp\build\Release\libpng16-16.dll 2021-12-01 00:52 - 2021-09-13 22:46 - 002917376 _____ () [Brak podpisu cyfrowego] \\?\C:\Users\Nojasy\AppData\Local\Temp\1y6QaG1dVqmqkzRvawVNVxn3bhE\resources\app.asar.unpacked\node_modules\sharp\build\Release\librsvg-2-2.dll 2021-12-01 00:52 - 2021-09-13 22:46 - 000560640 _____ () [Brak podpisu cyfrowego] \\?\C:\Users\Nojasy\AppData\Local\Temp\1y6QaG1dVqmqkzRvawVNVxn3bhE\resources\app.asar.unpacked\node_modules\sharp\build\Release\libtiff-5.dll 2021-12-01 00:52 - 2021-09-13 22:46 - 005140992 _____ () [Brak podpisu cyfrowego] \\?\C:\Users\Nojasy\AppData\Local\Temp\1y6QaG1dVqmqkzRvawVNVxn3bhE\resources\app.asar.unpacked\node_modules\sharp\build\Release\libvips-42.dll 2021-12-01 00:52 - 2021-09-13 22:46 - 000381440 _____ () [Brak podpisu cyfrowego] \\?\C:\Users\Nojasy\AppData\Local\Temp\1y6QaG1dVqmqkzRvawVNVxn3bhE\resources\app.asar.unpacked\node_modules\sharp\build\Release\libvips-cpp.dll 2021-12-01 00:52 - 2021-09-13 22:46 - 000688640 _____ () [Brak podpisu cyfrowego] \\?\C:\Users\Nojasy\AppData\Local\Temp\1y6QaG1dVqmqkzRvawVNVxn3bhE\resources\app.asar.unpacked\node_modules\sharp\build\Release\libwebp-7.dll 2021-12-01 00:52 - 2021-09-13 22:46 - 000024576 _____ () [Brak podpisu cyfrowego] \\?\C:\Users\Nojasy\AppData\Local\Temp\1y6QaG1dVqmqkzRvawVNVxn3bhE\resources\app.asar.unpacked\node_modules\sharp\build\Release\libwebpdemux-2.dll 2021-12-01 00:52 - 2021-09-13 22:46 - 000047616 _____ () [Brak podpisu cyfrowego] \\?\C:\Users\Nojasy\AppData\Local\Temp\1y6QaG1dVqmqkzRvawVNVxn3bhE\resources\app.asar.unpacked\node_modules\sharp\build\Release\libwebpmux-3.dll 2021-12-01 00:52 - 2021-09-13 22:46 - 001572352 _____ () [Brak podpisu cyfrowego] \\?\C:\Users\Nojasy\AppData\Local\Temp\1y6QaG1dVqmqkzRvawVNVxn3bhE\resources\app.asar.unpacked\node_modules\sharp\build\Release\libxml2-2.dll 2021-12-01 00:52 - 2021-09-13 22:46 - 000107008 _____ () [Brak podpisu cyfrowego] \\?\C:\Users\Nojasy\AppData\Local\Temp\1y6QaG1dVqmqkzRvawVNVxn3bhE\resources\app.asar.unpacked\node_modules\sharp\build\Release\libz1.dll 2021-12-01 00:51 - 2021-09-13 22:46 - 000512512 _____ () [Brak podpisu cyfrowego] \\?\C:\Users\Nojasy\AppData\Local\Temp\1y6QaG1dVqmqkzRvawVNVxn3bhE\resources\app.asar.unpacked\node_modules\sharp\build\Release\sharp.node 2016-10-12 23:17 - 2016-10-12 23:17 - 000125440 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll 2016-10-12 23:17 - 2016-10-12 23:17 - 000033280 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll 2016-10-12 23:17 - 2016-10-12 23:17 - 000029184 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\Splendid\VideoEnhance.dll 2020-04-29 20:28 - 2009-02-27 15:38 - 000139264 ____R () [Brak podpisu cyfrowego] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll 2015-08-18 08:17 - 2015-08-18 08:17 - 000104448 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\FarStone\TotalRecovery Pro\EFB\BootConfig.dll 2015-08-18 05:26 - 2015-08-18 05:26 - 000223232 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\FarStone\TotalRecovery Pro\EFB\DiskClone.dll 2014-08-20 02:23 - 2014-08-20 02:23 - 000075264 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\FarStone\TotalRecovery Pro\EFB\DiskInterface.dll 2015-07-27 06:50 - 2015-07-27 06:50 - 000224256 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\FarStone\TotalRecovery Pro\EFB\DiskMgr.dll 2014-09-22 03:41 - 2014-09-22 03:41 - 000239104 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\FarStone\TotalRecovery Pro\EFB\diskpart.dll 2015-08-18 06:23 - 2015-08-18 06:23 - 000114176 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\FarStone\TotalRecovery Pro\EFB\EasyFuncs.dll 2014-11-25 04:22 - 2014-11-25 04:22 - 000089088 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\FarStone\TotalRecovery Pro\EFB\EfbCheckImg.dll 2014-09-22 03:40 - 2014-09-22 03:40 - 000194560 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\FarStone\TotalRecovery Pro\EFB\EFBSearchTool.dll 2015-08-18 08:18 - 2015-08-18 08:18 - 000332800 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\FarStone\TotalRecovery Pro\EFB\FBCmdDsp.dll 2014-09-22 03:40 - 2014-09-22 03:40 - 000022528 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\FarStone\TotalRecovery Pro\EFB\FBEventMgr.dll 2015-08-18 05:30 - 2015-08-18 05:30 - 000085504 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\FarStone\TotalRecovery Pro\EFB\FlBckpBk.dll 2015-08-18 05:28 - 2015-08-18 05:28 - 000323584 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\FarStone\TotalRecovery Pro\EFB\FlBckpRt.dll 2014-03-14 08:04 - 2014-03-14 08:04 - 000012288 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\FarStone\TotalRecovery Pro\EFB\FSFat32.dll 2014-05-21 04:04 - 2014-05-21 04:04 - 000018432 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\FarStone\TotalRecovery Pro\EFB\FSToken.dll 2014-03-25 10:14 - 2014-03-25 10:14 - 000194048 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\FarStone\TotalRecovery Pro\EFB\NetTool.dll 2014-03-14 08:04 - 2014-03-14 08:04 - 000201216 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\FarStone\TotalRecovery Pro\EFB\NtfsLib.dll 2014-09-04 03:41 - 2014-09-04 03:41 - 000037888 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\FarStone\TotalRecovery Pro\EFB\RapidClone.dll 2014-11-05 01:44 - 2014-11-05 01:44 - 000017408 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\FarStone\TotalRecovery Pro\EFB\VDiskConvert.dll 2014-03-14 08:04 - 2014-03-14 08:04 - 000013312 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\FarStone\TotalRecovery Pro\EFB\VssNew.dll 2014-03-25 10:14 - 2014-03-25 10:14 - 000088576 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\FarStone\TotalRecovery Pro\EFB\zlibwapi.dll 2019-11-15 20:55 - 2013-12-06 21:06 - 000642016 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\LG Software\LG Smart Share\DMS\sqlite3.dll 2021-12-01 00:52 - 2021-09-13 22:46 - 002700288 _____ () [Brak podpisu cyfrowego] C:\Users\Nojasy\AppData\Local\Temp\1y6QaG1dVqmqkzRvawVNVxn3bhE\ffmpeg.dll 2021-12-01 00:52 - 2021-09-13 22:46 - 000442368 _____ () [Brak podpisu cyfrowego] C:\Users\Nojasy\AppData\Local\Temp\1y6QaG1dVqmqkzRvawVNVxn3bhE\libegl.dll 2021-12-01 00:52 - 2021-09-13 22:46 - 008143872 _____ () [Brak podpisu cyfrowego] C:\Users\Nojasy\AppData\Local\Temp\1y6QaG1dVqmqkzRvawVNVxn3bhE\libglesv2.dll 2021-12-01 00:51 - 2021-12-01 00:51 - 000012288 _____ () [Brak podpisu cyfrowego] C:\Users\Nojasy\AppData\Local\Temp\nslA808.tmp\System.dll 2016-10-12 23:17 - 2016-10-12 23:17 - 001676288 _____ (ASUS TeK Computer Inc.) [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\Splendid\ApplyLUT.dll 2016-10-12 23:17 - 2016-10-12 23:17 - 000178176 _____ (ASUS TeK Computer Inc.) [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\Splendid\GenLUT.dll 2016-10-12 23:17 - 2016-10-12 23:17 - 000165888 _____ (ASUSTeK Computer Inc.) [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\Splendid\ColorU.dll 2014-04-14 02:21 - 2014-04-14 02:21 - 000196608 _____ (Farstone Technology Inc.) [Brak podpisu cyfrowego] C:\Program Files (x86)\FarStone\TotalRecovery Pro\EFB\FlBckp.dll 2014-08-12 04:22 - 2014-08-12 04:22 - 000230400 _____ (FarStone Technology Inc.) [Brak podpisu cyfrowego] C:\Program Files (x86)\FarStone\TotalRecovery Pro\EFB\UvsRsl.dll 2021-12-01 00:52 - 2021-09-13 22:46 - 000965632 _____ (Free Software Foundation) [Brak podpisu cyfrowego] \\?\C:\Users\Nojasy\AppData\Local\Temp\1y6QaG1dVqmqkzRvawVNVxn3bhE\resources\app.asar.unpacked\node_modules\sharp\build\Release\libiconv-2.dll 2021-12-01 00:52 - 2021-09-13 22:46 - 000129024 _____ (Free Software Foundation) [Brak podpisu cyfrowego] \\?\C:\Users\Nojasy\AppData\Local\Temp\1y6QaG1dVqmqkzRvawVNVxn3bhE\resources\app.asar.unpacked\node_modules\sharp\build\Release\libintl-8.dll 2014-04-03 04:25 - 2014-04-03 04:25 - 001028096 _____ (Microsoft Corporation) [Brak podpisu cyfrowego] C:\Program Files (x86)\FarStone\TotalRecovery Pro\EFB\MFC42.DLL 2021-12-01 00:52 - 2021-12-01 00:52 - 000102400 _____ (Muldersoft.com Free Software Division) [Brak podpisu cyfrowego] C:\Users\Nojasy\AppData\Local\Temp\nslA808.tmp\StdUtils.dll 2019-11-15 20:55 - 2011-11-30 14:52 - 000086071 _____ (Open Source Software community project) [Brak podpisu cyfrowego] C:\Program Files (x86)\LG Software\LG Smart Share\DMS\pthreadVSE2.dll 2021-12-01 00:52 - 2021-09-13 22:46 - 000309248 _____ (Red Hat Software) [Brak podpisu cyfrowego] \\?\C:\Users\Nojasy\AppData\Local\Temp\1y6QaG1dVqmqkzRvawVNVxn3bhE\resources\app.asar.unpacked\node_modules\sharp\build\Release\libpango-1.0-0.dll 2021-12-01 00:52 - 2021-09-13 22:46 - 000066560 _____ (Red Hat Software) [Brak podpisu cyfrowego] \\?\C:\Users\Nojasy\AppData\Local\Temp\1y6QaG1dVqmqkzRvawVNVxn3bhE\resources\app.asar.unpacked\node_modules\sharp\build\Release\libpangocairo-1.0-0.dll 2021-12-01 00:52 - 2021-09-13 22:46 - 000085504 _____ (Red Hat Software) [Brak podpisu cyfrowego] \\?\C:\Users\Nojasy\AppData\Local\Temp\1y6QaG1dVqmqkzRvawVNVxn3bhE\resources\app.asar.unpacked\node_modules\sharp\build\Release\libpangoft2-1.0-0.dll 2021-12-01 00:52 - 2021-09-13 22:46 - 000090112 _____ (Red Hat Software) [Brak podpisu cyfrowego] \\?\C:\Users\Nojasy\AppData\Local\Temp\1y6QaG1dVqmqkzRvawVNVxn3bhE\resources\app.asar.unpacked\node_modules\sharp\build\Release\libpangowin32-1.0-0.dll 2021-12-01 00:52 - 2021-09-13 22:46 - 000723968 _____ (The FreeType Project) [Brak podpisu cyfrowego] \\?\C:\Users\Nojasy\AppData\Local\Temp\1y6QaG1dVqmqkzRvawVNVxn3bhE\resources\app.asar.unpacked\node_modules\sharp\build\Release\libfreetype-6.dll 2021-12-01 00:52 - 2021-09-13 22:46 - 001659904 _____ (The GLib developer community) [Brak podpisu cyfrowego] \\?\C:\Users\Nojasy\AppData\Local\Temp\1y6QaG1dVqmqkzRvawVNVxn3bhE\resources\app.asar.unpacked\node_modules\sharp\build\Release\libgio-2.0-0.dll 2021-12-01 00:52 - 2021-09-13 22:46 - 001576960 _____ (The GLib developer community) [Brak podpisu cyfrowego] \\?\C:\Users\Nojasy\AppData\Local\Temp\1y6QaG1dVqmqkzRvawVNVxn3bhE\resources\app.asar.unpacked\node_modules\sharp\build\Release\libglib-2.0-0.dll 2021-12-01 00:52 - 2021-09-13 22:46 - 000024064 _____ (The GLib developer community) [Brak podpisu cyfrowego] \\?\C:\Users\Nojasy\AppData\Local\Temp\1y6QaG1dVqmqkzRvawVNVxn3bhE\resources\app.asar.unpacked\node_modules\sharp\build\Release\libgmodule-2.0-0.dll 2021-12-01 00:52 - 2021-09-13 22:46 - 000355328 _____ (The GLib developer community) [Brak podpisu cyfrowego] \\?\C:\Users\Nojasy\AppData\Local\Temp\1y6QaG1dVqmqkzRvawVNVxn3bhE\resources\app.asar.unpacked\node_modules\sharp\build\Release\libgobject-2.0-0.dll 2021-12-01 00:52 - 2021-09-13 22:46 - 000203776 _____ (The GTK developer community) [Brak podpisu cyfrowego] \\?\C:\Users\Nojasy\AppData\Local\Temp\1y6QaG1dVqmqkzRvawVNVxn3bhE\resources\app.asar.unpacked\node_modules\sharp\build\Release\libgdk_pixbuf-2.0-0.dll 2014-08-12 04:26 - 2014-08-12 04:26 - 000032768 _____ (TODO: <公司名>) [Brak podpisu cyfrowego] C:\Program Files (x86)\FarStone\TotalRecovery Pro\EFB\VMDKBackup.dll ==================== Alternate Data Streams (filtrowane) ======== ==================== Tryb awaryjny (filtrowane) ================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Powiązania plików (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) HKU\S-1-5-21-2721533137-1662502331-562609926-1001\Software\Classes\.scr: AutoCADScriptFile => ==================== Internet Explorer (filtrowane) ========== HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?bcutc=sp-006 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms} HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = HKU\S-1-5-21-2721533137-1662502331-562609926-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms} HKU\S-1-5-21-2721533137-1662502331-562609926-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?bcutc=sp-006 SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=PRASU1&src=IE11TR&pc=ASTE SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=PRASU1&src=IE11TR&pc=ASTE SearchScopes: HKLM-x32 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms} SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=PRASU1&src=IE11TR&pc=ASTE SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms} SearchScopes: HKU\S-1-5-21-2721533137-1662502331-562609926-1001 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms} SearchScopes: HKU\S-1-5-21-2721533137-1662502331-562609926-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-2721533137-1662502331-562609926-1001 -> {54E517B8-5DA8-46B2-9777-AC98250AAB06} URL = hxxp://www.nav-pl.com/search?q={searchTerms} SearchScopes: HKU\S-1-5-21-2721533137-1662502331-562609926-1001 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms} BHO: Brak nazwy -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> Brak pliku BHO-x32: SSVHelper Class -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.6.0\bin\ssv.dll [2021-02-07] (Sun Microsystems, Inc. -> Sun Microsystems, Inc.) BHO-x32: Brak nazwy -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> Brak pliku DPF: HKLM-x32 {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0-windows-i586.cab DPF: HKLM-x32 {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0-windows-i586.cab DPF: HKLM-x32 {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0-windows-i586.cab Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - Brak pliku ==================== Hosts - zawartość: ========================= (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2015-10-30 08:24 - 2019-01-04 23:27 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts 2018-04-13 16:57 - 2018-04-13 16:57 - 000000375 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics ==================== Inne obszary =========================== (Obecnie brak automatycznej naprawy dla tej sekcji.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files (x86)\QuickTime\QTSystem\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR HKU\S-1-5-21-2721533137-1662502331-562609926-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg DNS Servers: 192.168.50.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Załączenie wejścia w fixlist spowoduje jego usunięcie.) MSCONFIG\Services: 0167891515936146mcinstcleanup => 2 MSCONFIG\Services: AdAppMgrSvc => 2 MSCONFIG\Services: AdobeARMservice => 2 MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3 MSCONFIG\Services: Asus WebStorage Windows Service => 2 MSCONFIG\Services: CIJSRegister => 2 MSCONFIG\Services: dbupdate => 2 MSCONFIG\Services: dbupdatem => 3 MSCONFIG\Services: FvSvc => 3 MSCONFIG\Services: HomeNetSvc => 2 MSCONFIG\Services: IJPLMSVC => 2 MSCONFIG\Services: Kingsoft_WPS_UpdateService => 2 MSCONFIG\Services: McAWFwk => 3 MSCONFIG\Services: McBootDelayStartSvc => 2 MSCONFIG\Services: mccspsvc => 2 MSCONFIG\Services: McNaiAnn => 2 MSCONFIG\Services: McODS => 3 MSCONFIG\Services: mcpltsvc => 2 MSCONFIG\Services: McProxy => 2 MSCONFIG\Services: ModuleCoreService => 2 MSCONFIG\Services: MozillaMaintenance => 3 MSCONFIG\Services: PLAY INTERNET. RunOuc => 2 MSCONFIG\Services: TeamViewer => 2 HKLM\...\StartupApproved\Run32: => "WebStorage" HKLM\...\StartupApproved\Run32: => "Autodesk Desktop App" HKU\S-1-5-21-2721533137-1662502331-562609926-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-2721533137-1662502331-562609926-1001\...\StartupApproved\Run: => "CCleaner Monitoring" HKU\S-1-5-21-2721533137-1662502331-562609926-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning" HKU\S-1-5-21-2721533137-1662502331-562609926-1001\...\StartupApproved\Run: => "ChomikBox" HKU\S-1-5-21-2721533137-1662502331-562609926-1001\...\StartupApproved\Run: => "Autodesk Sync" ==================== Reguły Zapory systemu Windows (filtrowane) ================ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{D14CBB52-9226-43D0-898D-FC351AE272BA}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd) FirewallRules: [{84158555-3C3C-419C-9AF8-2BE72F1DD314}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd) FirewallRules: [{BF505BDF-81A0-4114-9C5C-D9AE98E64140}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe (Apple Inc. -> Apple Inc.) FirewallRules: [UDP Query User{AE183E93-4C53-431B-A2A5-2602679BF3CB}C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe] => (Allow) C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe => Brak pliku FirewallRules: [TCP Query User{DDA9794D-C140-432B-9EE0-466898C431EE}C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe] => (Allow) C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe => Brak pliku FirewallRules: [{FFF9FC97-5BD8-4096-BDCE-6CA620D016B4}] => (Allow) C:\Program Files (x86)\FarStone\TotalRecovery Pro\EFB\FBAgent.exe (FarStone Technology -> ) FirewallRules: [{F8BA1165-756E-4AC3-9A7B-92FC433F0F92}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{3E391AFC-3723-44F2-8EC7-A58A64D145B8}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [TCP Query User{C276A409-3207-45CF-87F9-9B54B8FC0F34}C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe] => (Allow) C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe => Brak pliku FirewallRules: [UDP Query User{EE78B1C2-7BCF-4CB4-84FF-7967B966BC8F}C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe] => (Allow) C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe => Brak pliku FirewallRules: [TCP Query User{BB6C87F9-33AB-41BE-90B8-1D3E44A8636A}C:\program files\openshot video editor\launch.exe] => (Allow) C:\program files\openshot video editor\launch.exe () [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{84A672AF-86AC-4350-8E4D-C91643BAD917}C:\program files\openshot video editor\launch.exe] => (Allow) C:\program files\openshot video editor\launch.exe () [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{6CDD3764-3147-4838-8005-95E5B748AE2E}C:\program files\openshot video editor\launch.exe] => (Allow) C:\program files\openshot video editor\launch.exe () [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{7A4FE014-5910-4045-A890-76ADBFC1A5FF}C:\program files\openshot video editor\launch.exe] => (Allow) C:\program files\openshot video editor\launch.exe () [Brak podpisu cyfrowego] FirewallRules: [{96C885DA-1C6C-4690-9FFB-B6EFED6E0727}] => (Allow) C:\Program Files (x86)\LG Software\LG Smart Share\DMS\SmartShareDMS.exe (LG Electronics Inc. -> LG Electronics Inc.) FirewallRules: [{49439B04-C476-4841-A37C-7B12AF3957E8}] => (Allow) C:\Program Files (x86)\LG Software\LG Smart Share\DMS\SmartShareDMS.exe (LG Electronics Inc. -> LG Electronics Inc.) FirewallRules: [{AC526650-FBAC-4651-836D-208354CDBF8C}] => (Allow) C:\Program Files (x86)\LG Software\LG Smart Share\DMR\SmartShareDMR.exe (LG Electronics Inc. -> ) FirewallRules: [{196A4C59-173D-441B-BF85-EB28459C9D2B}] => (Allow) C:\Program Files (x86)\LG Software\LG Smart Share\DMR\SmartShareDMR.exe (LG Electronics Inc. -> ) FirewallRules: [{6F7F362B-8434-411D-A234-797227B5681A}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe => Brak pliku FirewallRules: [{A48CF627-5FA1-47B4-ABC3-A0335AF0E563}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe => Brak pliku FirewallRules: [{3830C67E-69C8-45EA-833A-080DAA304143}] => (Allow) C:\Users\Nojasy\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{B86E78EC-2E76-451F-99E5-0E05F7CC62CE}] => (Allow) C:\Users\Nojasy\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{074DF750-C730-475D-B584-3ED17FA4EDF2}] => (Allow) C:\Program Files (x86)\Brother\BRPrintAuditor\BRAgtSrv.exe (Brother Industries, Ltd. -> ) FirewallRules: [{72D25654-F59B-4503-88C6-EF75FE66760D}] => (Allow) C:\Program Files (x86)\Brother\BRPrintAuditor\auditormailer.exe (Brother Industries, Ltd. -> Brother Industries, Ltd.) FirewallRules: [TCP Query User{8ECF3379-AADC-4CC9-915B-7138F46F612B}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [UDP Query User{A4EF7384-7EB1-4E2B-BDBF-E5B0910E8B7D}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{8AD8B999-AB7A-4CA3-A4BB-2935C2E3FCE5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{F30640CF-F741-4BF4-B71A-D96BA6BCCC34}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{C1EF71D7-A6E4-45D6-A943-4AD2F4E88339}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{06E4C5AD-ECDE-4705-9267-09FB61E16B04}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{9AA0B665-D043-4156-9313-7FADEE477FA5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{E6C776B2-D396-46E1-B5AB-4560EE60F130}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{0C35E85F-56EC-4C76-A807-331E1EB83106}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{BB313FE2-7D5F-42D9-A729-2D85C7DE57F3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{A6B60772-AB18-4CE1-90FA-A57837A810ED}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{99BF746C-1677-47F3-A7A4-823BC5B6DF3F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{DA79DD2D-8F4C-4F62-9210-64353B9E5E95}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{28EEBDC3-F7C7-431D-8FE8-6154598E5FED}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{BE1085BE-7C3A-455A-A3ED-C7C75BE77B27}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{386F24A9-5611-468E-9230-790BB7DDC194}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [TCP Query User{8A438CD2-30A3-4C23-B370-6EAF4AE6AAC7}C:\users\nojasy\appdata\local\temp\1xq0mkkmtm0ytel1jnxj2x0arfp\dll-propagation.exe] => (Block) C:\users\nojasy\appdata\local\temp\1xq0mkkmtm0ytel1jnxj2x0arfp\dll-propagation.exe (Microsoft Corporation) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{D786209B-7701-49EE-B4D0-D702F9D30EC6}C:\users\nojasy\appdata\local\temp\1xq0mkkmtm0ytel1jnxj2x0arfp\dll-propagation.exe] => (Block) C:\users\nojasy\appdata\local\temp\1xq0mkkmtm0ytel1jnxj2x0arfp\dll-propagation.exe (Microsoft Corporation) [Brak podpisu cyfrowego] ==================== Punkty Przywracania systemu ========================= 30-11-2021 11:40:10 Zaplanowany punkt kontrolny 30-11-2021 22:30:30 Removed Chrome Remote Desktop Host ==================== Wadliwe urządzenia w Menedżerze urządzeń ============ ==================== Błędy w Dzienniku zdarzeń: ======================== Dziennik Aplikacja: ================== Error: (12/01/2021 12:42:27 AM) (Source: SecurityCenter) (EventID: 17) (User: ) Description: Centrum zabezpieczeń nie może zweryfikować obiektu wywołującego z powodu błędu %1. Error: (12/01/2021 12:40:25 AM) (Source: Brother BrLog) (EventID: 1001) (User: ) Description: P3SMT BrtP3SMT: [2021/12/01 00:40:25.174]: [00008820]: smtp.cpp(1788) Failed to send: 513 Error: (12/01/2021 12:40:25 AM) (Source: Brother BrLog) (EventID: 1001) (User: ) Description: P3SMT BrtP3SMT: [2021/12/01 00:40:25.173]: [00008820]: smtp.cpp(375) Error in sending data. Error: (12/01/2021 12:40:25 AM) (Source: Brother BrLog) (EventID: 1001) (User: ) Description: P3SMT BrtP3SMT: [2021/12/01 00:40:25.173]: [00008820]: smtp.cpp(3191) OpenConnection failed : 515 Error: (12/01/2021 12:40:25 AM) (Source: Brother BrLog) (EventID: 1001) (User: ) Description: P3SMT BrtP3SMT: [2021/12/01 00:40:25.173]: [00008820]: smtp.cpp(321) socket : Failed to connect. : 0 Error: (12/01/2021 12:37:40 AM) (Source: SecurityCenter) (EventID: 17) (User: ) Description: Centrum zabezpieczeń nie może zweryfikować obiektu wywołującego z powodu błędu %1. Error: (12/01/2021 12:23:06 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: AsusTPCenter.exe, wersja: 1.0.0.87, sygnatura czasowa: 0x56b050c0 Nazwa modułu powodującego błąd: AsusTPApi.dll, wersja: 1.0.66.0, sygnatura czasowa: 0x56b0507a Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x0000000000004c31 Identyfikator procesu powodującego błąd: 0x2b8c Godzina uruchomienia aplikacji powodującej błąd: 0x01d7e64134d86fe5 Ścieżka aplikacji powodującej błąd: C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe Ścieżka modułu powodującego błąd: C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPApi.dll Identyfikator raportu: 9e099a4c-77e2-4612-af29-c74efdc9ea76 Pełna nazwa pakietu powodującego błąd: Identyfikator aplikacji względem pakietu powodującego błąd: Error: (12/01/2021 12:21:51 AM) (Source: SecurityCenter) (EventID: 17) (User: ) Description: Centrum zabezpieczeń nie może zweryfikować obiektu wywołującego z powodu błędu %1. Dziennik System: ============= Error: (12/01/2021 12:51:20 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa MessagingService_64f78 zakończyła działanie; wystąpił następujący błąd: Urządzenie nie jest gotowe. Error: (12/01/2021 12:43:02 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa MessagingService_61931 zakończyła działanie; wystąpił następujący błąd: Urządzenie nie jest gotowe. Error: (12/01/2021 12:42:28 AM) (Source: Microsoft-Windows-Bits-Client) (EventID: 16392) (User: ZARZĄDZANIE NT) Description: Uruchomienie usługi BITS nie powiodło się. Błąd 2147500053. Error: (12/01/2021 12:22:24 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa MessagingService_6270c zakończyła działanie; wystąpił następujący błąd: Urządzenie nie jest gotowe. Error: (12/01/2021 12:21:52 AM) (Source: Microsoft-Windows-Bits-Client) (EventID: 16392) (User: ZARZĄDZANIE NT) Description: Uruchomienie usługi BITS nie powiodło się. Błąd 2147500053. Error: (12/01/2021 12:12:35 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa MessagingService_5c39c zakończyła działanie; wystąpił następujący błąd: Urządzenie nie jest gotowe. Error: (12/01/2021 12:03:07 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa MessagingService_5590e zakończyła działanie; wystąpił następujący błąd: Urządzenie nie jest gotowe. Error: (12/01/2021 12:02:14 AM) (Source: DCOM) (EventID: 10010) (User: ZARZĄDZANIE NT) Description: Serwer {3C296D07-90AE-4FAC-86F9-65EAA8B82D22} nie zarejestrował się w modelu DCOM w wymaganym czasie. Windows Defender: ================ Date: 2021-11-30 23:08:59 Description: Skanowanie produktu Program antywirusowy Microsoft Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania: {2F3656DC-FC3B-4586-A7C0-E5FF634F4258} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Szybkie skanowanie Użytkownik: ZARZĄDZANIE NT\SYSTEM Date: 2021-11-30 22:41:17 Description: Skanowanie produktu Program antywirusowy Microsoft Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania: {0308B944-4E3C-4C49-B9C8-91093EEC11A8} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Szybkie skanowanie Użytkownik: ZARZĄDZANIE NT\SYSTEM Date: 2021-11-30 10:10:17 Description: Skanowanie produktu Program antywirusowy Microsoft Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania: {3DB12F0C-3DBA-4575-A016-40AB25F2C2E0} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Szybkie skanowanie Użytkownik: ZARZĄDZANIE NT\SYSTEM Date: 2021-11-28 20:09:45 Description: Produkt Program antywirusowy Microsoft Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz: https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win64/AutoKMS&threatid=2147723334&enterprise=0 Nazwa: HackTool:Win64/AutoKMS Identyfikator: 2147723334 Ważność: Wysoki Kategoria: Narzędzie Ścieżka: file:_C:\WINDOWS\SECOH-QAD.dll; file:_C:\WINDOWS\SECOH-QAD.exe Pochodzenie wykrycia: Komputer lokalny Typ wykrycia: Konkretne Źródło wykrycia: Użytkownik Użytkownik: NOJASY-ASUS\Nojasy Nazwa procesu: Unknown Wersja analizy zabezpieczeń: AV: 1.353.1751.0, AS: 1.353.1751.0, NIS: 0.0.0.0 Wersja aparatu: AM: 1.1.18700.4, NIS: 0.0.0.0 Date: 2021-11-28 19:46:32 Description: Produkt Program antywirusowy Microsoft Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz: https://go.microsoft.com/fwlink/?linkid=37020&name=VirTool:Win32/DefenderTamperingRestore&threatid=2147741622&enterprise=0 Nazwa: VirTool:Win32/DefenderTamperingRestore Identyfikator: 2147741622 Ważność: Poważny Kategoria: Narzędzie Ścieżka: regkeyvalue:_hklm\software\policies\microsoft\windows defender\real-time protection\\DisableBehaviorMonitoring Pochodzenie wykrycia: Nieznane Typ wykrycia: Konkretne Źródło wykrycia: System Użytkownik: ZARZĄDZANIE NT\SYSTEM Nazwa procesu: Unknown Wersja analizy zabezpieczeń: AV: 1.353.1751.0, AS: 1.353.1751.0, NIS: 0.0.0.0 Wersja aparatu: AM: 1.1.18700.4, NIS: 0.0.0.0  CodeIntegrity: =============== Date: 2021-12-01 00:37:35 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Mozilla Firefox\firefox.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements. Date: 2021-12-01 00:25:32 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Autodesk\Autodesk Sync\AdSyncNamespace.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Statystyki pamięci =========================== BIOS: American Megatrends Inc. X556UQK.318 08/08/2019 Płyta główna: ASUSTeK COMPUTER INC. X556UQK Procesor: Intel(R) Core(TM) i5-7200U CPU @ 2.50GHz Procent pamięci w użyciu: 40% Całkowita pamięć fizyczna: 12172.26 MB Dostępna pamięć fizyczna: 7235.4 MB Całkowita pamięć wirtualna: 14028.26 MB Dostępna pamięć wirtualna: 8279.73 MB ==================== Dyski ================================ Drive c: (OS) (Fixed) (Total:140.07 GB) (Free:35.23 GB) NTFS ==>[system z komponentami startowymi (pozyskano odczytując dysk)] Drive d: (Dane SSD) (Fixed) (Total:98.15 GB) (Free:74.68 GB) NTFS Drive e: () (Fixed) (Total:494.36 GB) (Free:42.08 GB) NTFS Drive f: () (Fixed) (Total:437.15 GB) (Free:113.73 GB) NTFS \\?\Volume{f5709090-4bca-45c0-8880-9ab8766df5c1}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32 ==================== MBR & Tablica partycji ==================== ========================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: 9BCA333F) Partition: GPT. ========================================================== Disk: 1 (Size: 238.5 GB) (Disk ID: 98335865) Partition: GPT. ==================== Koniec Addition.txt =======================