Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 22-01-2020 01 Uruchomiony przez Yello (24-01-2020 01:15:51) Uruchomiony z C:\Users\Yello\Downloads Windows 10 Home Wersja 1909 18363.592 (X64) (2019-12-28 19:44:20) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-540779359-3396742334-3837969491-500 - Administrator - Disabled) Gość (S-1-5-21-540779359-3396742334-3837969491-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-540779359-3396742334-3837969491-1003 - Limited - Enabled) Konto domyślne (S-1-5-21-540779359-3396742334-3837969491-503 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-540779359-3396742334-3837969491-504 - Limited - Disabled) Yello (S-1-5-21-540779359-3396742334-3837969491-1001 - Administrator - Enabled) => C:\Users\Yello ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Bitdefender Antivirus Free Antimalware (Enabled - Up to date) {EA21BCE8-A461-99C3-3A0D-4C964E75494E} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Bitdefender Antivirus Free Antimalware (Enabled - Up to date) {51405D0C-825B-964D-00BD-77E435F203F3} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKU\S-1-5-21-540779359-3396742334-3837969491-1001\...\uTorrent) (Version: 3.5.0.44090 - BitTorrent Inc.) 4K Stogram 2.6 (HKLM-x32\...\{11D9DBB1-3D3F-4DEB-957C-C02733A3BD66}) (Version: 2.6.13.1580 - Open Media LLC) 4K Video Downloader 4.3 (HKLM-x32\...\{D0CA3944-0FD5-40FF-97A1-FEDFFB5EE31F}) (Version: 4.3.2.2215 - Open Media LLC) 4K Video to MP3 2.4 (HKLM-x32\...\{00748275-9C7E-48BA-AB7B-FEA1D9BBBAE5}) (Version: 2.4.0.863 - Open Media LLC) 8GadgetPack (HKLM-x32\...\{4F88ECAA-A619-44CD-ADE2-5CA3685D6C5D}) (Version: 20.0.0 - Helmut Buhler) AAA Logo 2014 v4.11 FULL (HKLM-x32\...\AAA Logo 2014_is1) (Version: - SWGSoft) abcFaktury (HKLM\...\abcFaktury_is1) (Version: 18.4.6 - BinSoft) Aegisub 3.2.2 (HKLM-x32\...\{24BC8B57-716C-444F-B46B-A3349B9164C5}_is1) (Version: 3.2.2 - Aegisub Team) AIMP (HKLM-x32\...\AIMP) (Version: v4.51.2084, 01.12.2018 - AIMP DevTeam) Alcor Micro USB Card Reader Driver (HKLM-x32\...\{304BCF39-F1F8-4DD2-8BF3-40417F1C6204}) (Version: 20.7.20117.44409 - Alcor Micro Corp.) Hidden Alcor Micro USB Card Reader Driver (HKLM-x32\...\InstallShield_{304BCF39-F1F8-4DD2-8BF3-40417F1C6204}) (Version: 20.7.20117.44409 - Alcor Micro Corp.) Any Audio Converter 6.1.9 (HKLM-x32\...\Any Audio Converter) (Version: 6.1.9 - Anvsoft) AOMEI Partition Assistant Standard Edition 6.6 (HKLM-x32\...\{02F850ED-FD0E-4ED1-BE0B-54981f5BD3D4}_is1) (Version: - AOMEI Technology Co., Ltd.) Ashampoo Burning Studio 2016 v.16.0.0 (HKLM-x32\...\{91B33C97-B4A4-B41A-6B97-C62C82CEB6A9}_is1) (Version: 16.0.0 - Ashampoo GmbH & Co. KG) ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.1.6 - ASUS) Asystent uaktualnienia do systemu Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17354 - Microsoft Corporation) ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0050 - ASUS) AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.0.105 - ICEpower a/s) Avira (HKLM-x32\...\{00BC4EC0-D21B-444F-9DF9-51E60BF71EFB}) (Version: 1.2.142.15897 - Avira Operations GmbH & Co. KG) Hidden Avira (HKLM-x32\...\{8c081090-e39c-462d-8d04-49136b93ff98}) (Version: 1.2.142.15897 - Avira Operations GmbH & Co. KG) Avira Privacy Pal (HKLM-x32\...\{F2BC8305-DFBE-4C02-A906-9BBD8EE299A3}_is1) (Version: 2.1.0.1934 - Avira Operations GmbH & Co. KG) Backup and Sync from Google (HKLM\...\{7B473CF8-CE4F-4AE1-A86D-CFBDDCC85FAF}) (Version: 3.47.8667.1399 - Google, Inc.) Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 1.0.1 - Bitdefender) Bitdefender Antivirus Free (HKLM\...\{1FCCF41D-5F00-4FE2-9653-162D0486C8B4}) (Version: 1.0.16.146 - Bitdefender) Brother MFL-Pro Suite DCP-385C (HKLM-x32\...\{48D082B9-18F6-4426-AFAC-8B6A3E7021B1}) (Version: 2.0.0.0 - Brother Industries, Ltd.) Chrome Remote Desktop Host (HKLM-x32\...\{EF08968E-F7E7-43EA-95B1-1E8ACC8CC459}) (Version: 80.0.3987.18 - Google Inc.) Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.66.26.50 - Conexant) DeviceClient version 2.0.8.5 (HKLM-x32\...\{9FA06957-C278-4BC2-9C58-0107C160D761}}_is1) (Version: 2.0.8.5 - ) Dropbox (HKLM-x32\...\Dropbox) (Version: 89.4.278 - Dropbox, Inc.) Dropbox 25 GB (HKLM-x32\...\{597A58EC-42D6-4940-8739-FB94491B013C}) (Version: 1.0.8.0 - Dropbox, Inc.) Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.241.1 - Dropbox, Inc.) Hidden Dual Controller (HKLM-x32\...\{BFF9E0A4-2669-4139-8320-9C5F76727DAA}) (Version: 2.62 - LG Electronics Inc) EGR-ShellExtension (HKLM-x32\...\EGR-ShellExtension) (Version: 1.2.1.100 - EasternGraphics) ELISOFT Faktury 2016 wersja 11.8.8 (HKLM-x32\...\ELISOFT Faktury 2016_is1) (Version: 11.8.8 - ELISOFT) e-mikrofirma (HKLM-x32\...\{FD8B3CEE-530D-4E86-BA16-E3A78A315147}) (Version: 1.2.1.2 - Aplikacje Krytyczne sp. z o. o.) Encrypto version 1.0.1 (HKLM\...\{5C39608C-6AFB-484F-BED4-3D16158CC19E}_is1) (Version: 1.0.1 - MacPaw, Inc.) Evernote v. 6.19.2 (HKLM-x32\...\{B02117F0-97C1-11E9-9D3F-005056951CAD}) (Version: 6.19.2.8555 - Evernote Corp.) FastStone Image Viewer 6.1 (HKLM-x32\...\FastStone Image Viewer) (Version: 6.1 - FastStone Soft) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 79.0.3945.130 - Google LLC) Google Photos Backup (HKU\S-1-5-21-540779359-3396742334-3837969491-1001\...\Google Photos Backup) (Version: 1.1.2.13 - Google, Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.421 - Google LLC) Hidden Hardwipe 5.2.1 (HKLM\...\{0F322F97-B3FB-4423-B23E-4E486693CD16}) (Version: 5.2.1 - Big Angry Dog) HD Tune Pro 5.70 (HKLM-x32\...\HD Tune Pro_is1) (Version: - EFD Software) HiSuite (HKLM-x32\...\Hi Suite) (Version: 9.0.3.300 - Huawei Technologies Co.,Ltd) HitFilm 4 Express (HKLM\...\{F8BB3662-69A1-4EF1-8674-ADD90AAD3D08}) (Version: 4.0.5723.10801 - FXHOME) Inkscape 0.92.4 (HKLM-x32\...\Inkscape) (Version: 0.92.4 - Inkscape Project) Intel(R) Chipset Device Software (HKLM-x32\...\{a2d9fda8-65eb-4c06-81ef-31e0a4daa335}) (Version: 10.1.1.11 - Intel(R) Corporation) Hidden Intel(R) Computing Improvement Program (HKLM\...\{96FD0BEE-6848-48BB-AA99-A2033DB7F4E4}) (Version: 2.2.03942 - Intel Corporation) Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10603.192 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1169 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 21.20.16.4550 - Intel Corporation) Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1519.7 - Intel Corporation) Intel(R) WiDi (HKLM\...\{C7CD6D54-26AF-4D93-B06F-D81ACE8624CB}) (Version: 6.0.40.0 - Intel Corporation) Intel(R) WiDi Software Asset Manager (HKLM-x32\...\{5B5CD20C-29F0-4857-A4FA-A4F4C716B019}) (Version: 1.1.347 - Intel Corporation) Hidden Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000070-0200-1045-84C8-B8D95FA3C8C3}) (Version: 20.70.0 - Intel Corporation) Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation) Java 8 Update 131 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180131F0}) (Version: 8.0.1310.11 - Oracle Corporation) JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH) Kaspersky Secure Connection (HKLM-x32\...\{F33C0717-8E04-4EB5-90C8-47221287DB4F}) (Version: 18.0.0.405 - Kaspersky Lab) Hidden Kaspersky Secure Connection (HKLM-x32\...\InstallWIX_{F33C0717-8E04-4EB5-90C8-47221287DB4F}) (Version: 18.0.0.405 - Kaspersky Lab) LibreOffice 6.1.6.3 (HKLM\...\{FDD378C0-438D-4E89-A692-6D010D5AF9D0}) (Version: 6.1.6.3 - The Document Foundation) LibreOffice 6.2.3.2 SDK (HKLM\...\{00197D5B-2077-495E-A5A0-B508A22ABBFA}) (Version: 6.2.3.2 - The Document Foundation) Lightworks (HKLM-x32\...\{E94DD4E4-7746-472c-AA7B-1242FED0CFC8}) (Version: 14.0.0.0 - EditShare) Loaris Trojan Remover 3.0.87 (HKLM\...\{29988DC6-9C4A-49B2-AC86-5C380B29ADB9}_is1) (Version: 3.0.87 - Loaris, LLC.) MagicInfo Express 2 (HKLM-x32\...\MagicInfo Express 2) (Version: 1012.8 - Samsung Electronics) MagicInfo Express Content Creator (HKLM-x32\...\MagicInfo Express Content Creator) (Version: 1004.2 - Samsung Electronics) Malwarebytes (wersja 3.7.1.2839) (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.7.1.2839 - Malwarebytes) MergeModule_x64 (HKLM\...\{12DCC5A7-0100-4433-B4FF-217A3C5DC83B}) (Version: 9.3.00 - Sony Corporation) Hidden MergeModule_x86 (HKLM-x32\...\{42251A8D-C4AE-4D3B-8A50-948CB98A0969}) (Version: 10.5.00 - Sony Corporation) Hidden Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 12.181.137.0 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-540779359-3396742334-3837969491-1001\...\OneDriveSetup.exe) (Version: 19.222.1110.0006 - Microsoft Corporation) Microsoft SQL Server 2008 Setup Support Files (HKLM-x32\...\{D441BD04-E548-4F8E-97A4-1B66135BAAA8}) (Version: 10.1.2731.0 - Microsoft Corporation) Microsoft SQL Server 2012 (HKLM-x32\...\Microsoft SQL Server SQLServer2012) (Version: - Microsoft Corporation) Microsoft SQL Server 2012 Native Client (HKLM\...\{9AE22681-C27C-402A-A136-15854DFF693D}) (Version: 11.3.6020.0 - Microsoft Corporation) Microsoft SQL Server 2012 Setup (English) (HKLM-x32\...\{22645997-D3F4-4056-A21A-88A018A90C1F}) (Version: 11.3.6020.0 - Microsoft Corporation) Microsoft SQL Server 2012 Transact-SQL ScriptDom (HKLM\...\{076FF390-D283-4174-B602-B0B7B72BD024}) (Version: 11.3.6020.0 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x64) - 14.11.25325 (HKLM-x32\...\{6c6356fe-cbfa-4944-9bed-a9e99f45cb7a}) (Version: 14.11.25325.0 - Microsoft Corporation) Microsoft VSS Writer for SQL Server 2012 (HKLM\...\{3E0DD83F-BE4C-4478-86A0-AD0D79D1353E}) (Version: 11.3.6020.0 - Microsoft Corporation) MKVToolNix 11.0.0.0 (64bit) (HKLM-x32\...\MKVToolNix) (Version: 11.0.0.0 - Moritz Bunkus) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 68.3.0.7288 - Mozilla) Mozilla Thunderbird 68.3.1 (x86 pl) (HKLM-x32\...\Mozilla Thunderbird 68.3.1 (x86 pl)) (Version: 68.3.1 - Mozilla) MPC-BE x64 1.4.6.1590 (HKLM\...\{FE09AF6D-78B2-4093-B012-FCDAF78693CE}_is1) (Version: 1.4.6.1590 - MPC-BE Team) NapiProjekt (2.2.0.2399) (HKLM-x32\...\NapiProjekt_is1) (Version: - ) Navitel Navigator update center (HKLM-x32\...\Navitel Navigator update center) (Version: 2.2.0.49 - Center of Navigation Technologies) Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.7.1 - Notepad++ Team) OBS Studio (HKLM-x32\...\OBS Studio) (Version: 18.0.1 - OBS Project) Odinstaluj Business Everywhere (HKLM-x32\...\{BEWINTERNET-PL}.UninstallSuite) (Version: - ) OnScreen Control (HKLM-x32\...\{E5C1B339-0E4E-49A5-859E-5E1DE1938706}) (Version: 4.43 - LG Electronics Inc) Opanda IExif 2.3 (HKLM-x32\...\Opanda IExif_is1) (Version: 2.3 - Opanda Studio) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) oPlayer (HKLM-x32\...\{D5715FE9-B5D0-4247-92C4-9ADB94592AC4}) (Version: 1.1.40 - APLink) Oprogramowanie Intel® PROSet/Wireless (HKLM-x32\...\{bb524cb9-b65f-4f06-97f4-48c851e87a57}) (Version: 20.80.0 - Intel Corporation) Pakiet sterowników systemu Windows - ASUS (AsusSGDrv) Mouse (06/18/2015 8.0.0.16) (HKLM\...\545B999BD5E2E239335F95C2AF9BED5D511CEC95) (Version: 06/18/2015 8.0.0.16 - ASUS) Pakiet sterowników systemu Windows - ASUS (AsusSGDrv) Mouse (10/06/2015 8.0.0.23) (HKLM\...\DA2E0A005E6CD7900733D89DA6D9F31585E338DF) (Version: 10/06/2015 8.0.0.23 - ASUS) Pakiet sterowników systemu Windows - ASUS (AsusSGDrv) Mouse (11/11/2015 8.0.0.23) (HKLM\...\FF0137EA2940E916D51DA702B6425126CC7C89BF) (Version: 11/11/2015 8.0.0.23 - ASUS) pCon.planner STD (HKLM\...\{2015BD4D-96C3-414D-9771-597D3EAB12E2}) (Version: 8.0.0.102 - EasternGraphics) PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.322.10 - Tracker Software Products Ltd) PDF-XChange Viewer (HKLM\...\{9ED333F8-3E6C-4A38-BAFA-728454121CDA}) (Version: 2.5.317.0 - Tracker Software Products (Canada) Ltd.) PhotoScape (HKLM-x32\...\PhotoScape) (Version: - ) Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.259 - Google, Inc.) Pile 0.2.2 (only current user) (HKU\S-1-5-21-540779359-3396742334-3837969491-1001\...\d540a92d-080b-5336-b581-153c2ea1878c) (Version: 0.2.2 - Fing) Pixie 1.4.1 (HKLM-x32\...\Pixie_is1) (Version: 1.4.1 - Pixie Developers) PLAY ONLINE (HKLM-x32\...\PLAY ONLINE) (Version: 21.005.11.14.264 - Huawei Technologies Co.,Ltd) PMB_ModeEditor (HKLM-x32\...\{E95982CA-945F-41F2-B156-A603897AB242}) (Version: 10.3.00 - Sony Corporation) Hidden Prey Anti-Theft (HKLM-x32\...\{DEFFF10A-EF1F-4A8B-A358-BCF5086D0658}) (Version: 1.6.6 - Prey, Inc.) Hidden QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.) Realtek USB Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{04201224-2B34-4EE7-862B-B7BBF89DB3AB}) (Version: 10.2.616.2015 - Realtek) Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform) Scribus 1.4.7 (64bit) (HKLM\...\Scribus 1.4.7) (Version: 1.4.7 - The Scribus Team) SearchPro version 1.0.3 (HKLM-x32\...\{999D5F50-CCB2-4B28-B7BC-98038EFC5D7A}_is1) (Version: 1.0.3 - SearchPro, Inc.) Service Pack 3 for SQL Server 2012 (KB3072779) (HKLM-x32\...\KB3072779) (Version: 11.3.6020.0 - Microsoft Corporation) Shotcut (HKLM-x32\...\Shotcut) (Version: - ) SQL Server 2012 Common Files (HKLM-x32\...\{124D51A1-F3C2-45AE-B812-D3CA71247093}) (Version: 11.3.6020.0 - Microsoft Corporation) Hidden SQL Server 2012 Common Files (HKLM-x32\...\{7D29ED63-84F9-4EC7-B49F-994A3A3195B2}) (Version: 11.3.6020.0 - Microsoft Corporation) Hidden SQL Server 2012 Database Engine Services (HKLM-x32\...\{87D50333-E534-493A-8E98-0A49BC28F64B}) (Version: 11.3.6020.0 - Microsoft Corporation) Hidden SQL Server 2012 Database Engine Services (HKLM-x32\...\{C22613C2-C7A4-4761-A906-116ECD4E7477}) (Version: 11.3.6020.0 - Microsoft Corporation) Hidden SQL Server 2012 Database Engine Shared (HKLM-x32\...\{54F84805-0116-467F-8713-899DFC472235}) (Version: 11.3.6020.0 - Microsoft Corporation) Hidden SQL Server 2012 Database Engine Shared (HKLM-x32\...\{D0F44C37-A22B-4733-BBA7-86C9F4988725}) (Version: 11.3.6020.0 - Microsoft Corporation) Hidden SQL Server Browser for SQL Server 2012 (HKLM-x32\...\{4B9E6EB0-0EED-4E74-9479-F982C3254F71}) (Version: 11.3.6020.0 - Microsoft Corporation) Sql Server Customer Experience Improvement Program (HKLM-x32\...\{30CA21F2-901A-44DB-A43F-FC31CD0F2493}) (Version: 11.3.6020.0 - Microsoft Corporation) Hidden StrongRecovery 3.8.6.3 (HKLM-x32\...\StrongRecovery_is1) (Version: - Drobinski Maciej StrongRecovery) Sweet Home 3D version 6.2 (HKLM\...\Sweet Home 3D_is1) (Version: 6.2 - eTeks) Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.0a - Ghisler Software GmbH) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{B2E25355-C24E-4E7D-8AD3-455D59810838}) (Version: 2.57.0.0 - Microsoft Corporation) UpdateAssistant (HKLM-x32\...\{139493B2-F1BC-4F05-A974-B49297C1EB04}) (Version: 1.1.0.0 - Microsoft Corporation) Hidden VisualRoute Lite Edition (HKLM-x32\...\VisualRoute Lite Edition) (Version: - ) VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN) Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation) Windows Movie Maker 2.6 (HKLM-x32\...\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}) (Version: 2.6.4037.0 - Microsoft Corporation) Windscribe (HKLM-x32\...\{fa690e90-ddb0-4f0c-b3f1-136c084e5fc7}_is1) (Version: 1.82 Build 17 - Windscribe Limited) WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.0.1 - ASUS) WinRAR 5.71 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH) Wise Folder Hider (HKLM-x32\...\Wise Folder Hider_is1) (Version: 4.2.8 - WiseCleaner.com, Inc.) Wise Video Downloader 2.6.1 (HKLM-x32\...\Wise Video Downloader_is1) (Version: 2.6.1 - WiseCleaner.com, Inc.) WPS Office (HKU\S-1-5-21-540779359-3396742334-3837969491-1001\...\Kingsoft Office) (Version: 10.2.0.7646 - Kingsoft Corp.) WPS Office for ASUS (HKLM-x32\...\Kingsoft Office) (Version: 10.2.0.5908 - Kingsoft Corp.) XnView 2.48 (HKLM-x32\...\XnView_is1) (Version: 2.48 - Gougelet Pierre-e) YI Home (HKLM-x32\...\YI Home) (Version: 1.0.0.0_201903291000 - XiaoYi) Youtube Downloader HD v. 2.9.9.70 (HKLM-x32\...\Youtube Downloader HD_is1) (Version: - YoutubeDownloaderHD.com) Packages: ========= AccuWeather - Weather for Life -> C:\Program Files\WindowsApps\AccuWeather.AccuWeatherforWindows8_10.0.348.1000_x64__8zz2pj9h1h1d8 [2019-11-09] (AccuWeather) [MS Ad] Animotica -> C:\Program Files\WindowsApps\24711Mixilab.Animotica_1.1.85.0_x64__c39s816dkej80 [2020-01-19] (Mixilab) ASUS GIFTBOX -> C:\Program Files\WindowsApps\B9ECED6F.ASUSGIFTBOX_3.1.8.0_x64__qmba6cd70vzyy [2019-11-18] (ASUSTeK COMPUTER INC.) Dodatek Aparat multimediów dla aplikacji Zdjęcia -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-11-20] (Microsoft Corporation) Dodatek Zdjęcia -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2019-11-09] (Microsoft Corporation) Flipboard -> C:\Program Files\WindowsApps\Flipboard.Flipboard_2.1.3.0_neutral__3f5azkryzdbc4 [2019-11-09] (Flipboard) Gameloft Games -> C:\Program Files\WindowsApps\A278AB0D.GameloftGames_1.0.2.6_x86__h6adky7gbf63m [2019-11-09] (Gameloft.) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-11-09] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-11-09] (Microsoft Corporation) [MS Ad] Microsoft News - Wiadomości -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.34.20074.0_x64__8wekyb3d8bbwe [2020-01-16] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.5.12061.0_x64__8wekyb3d8bbwe [2019-12-18] (Microsoft Studios) [MS Ad] MSN Finanse -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.34.20074.0_x64__8wekyb3d8bbwe [2020-01-15] (Microsoft Corporation) [MS Ad] MSN Pogoda -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.34.13393.0_x64__8wekyb3d8bbwe [2019-12-18] (Microsoft Corporation) [MS Ad] OneDrive -> C:\Program Files\WindowsApps\microsoft.microsoftskydrive_19.22.5.0_x64__8wekyb3d8bbwe [2019-11-18] (Microsoft Corporation) Take Webpage Screenshots Entirely - FireShot -> C:\Program Files\WindowsApps\16575getfireshot.com.FireShotCaptureWebpageScreens_0.98.97.0_neutral__wg1hpdwptqa3g [2019-11-09] (getfireshot.com) TripAdvisor Hotels Flights Restaurants -> C:\Program Files\WindowsApps\TripAdvisorLLC.TripAdvisorHotelsFlightsRestaurants_1.5.10.0_x64__qj0v5chwq8f2g [2019-11-09] (TripAdvisor LLC) Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2019-11-09] (Twitter Inc.) uBlock Origin -> C:\Program Files\WindowsApps\37833NikRolls.uBlockOrigin_1.15.24.0_neutral__f8jsg5mm64m62 [2019-11-09] (Nik Rolls) ==================== Niestandardowe rejestracje CLSID (filtrowane): ============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-540779359-3396742334-3837969491-1001_Classes\CLSID\{083f5ae0-2b0a-11dd-bd0b-0800200c9a66}\InprocServer32 -> C:\Users\Yello\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter.gadget\CoreTempReader.dll (AddGadgets IT -> ) CustomCLSID: HKU\S-1-5-21-540779359-3396742334-3837969491-1001_Classes\CLSID\{0B7AD8D3-094A-44DE-A348-83C6C3FA347C}\InprocServer32 -> C:\Users\Yello\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Sidebar7.gadget\Release\Clipboarder64.dll => Brak pliku CustomCLSID: HKU\S-1-5-21-540779359-3396742334-3837969491-1001_Classes\CLSID\{0E7BE950-4ACC-47CB-834B-41A8B96BBFF9}\InprocServer32 -> C:\Users\Yello\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Sidebar7.gadget\Release\Sidebar7.64.dll (Helmut Buhler) [Brak podpisu cyfrowego] CustomCLSID: HKU\S-1-5-21-540779359-3396742334-3837969491-1001_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4}\InprocServer32 -> C:\Users\Yello\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll (Google Inc -> Google Inc.) CustomCLSID: HKU\S-1-5-21-540779359-3396742334-3837969491-1001_Classes\CLSID\{67F4D210-BFC2-4ADD-9A2A-C9B9E1F42C4F}\InprocServer32 -> C:\Program Files (x86)\Kingsoft\WPS Office\10.2.0.7646\office6\qingshellext64.dll (Zhuhai Kingsoft Office Software Co., Ltd. -> Zhuhai Kingsoft Office Software Co.,Ltd) CustomCLSID: HKU\S-1-5-21-540779359-3396742334-3837969491-1001_Classes\CLSID\{70239788-4DAE-49B8-9270-5D8614384B49}\InprocServer32 -> C:\Program Files (x86)\Kingsoft\WPS Office\10.2.0.7646\office6\addons\kpdf2wordshellext\kpdf2wordshellext64.dll (Zhuhai Kingsoft Office Software Co., Ltd. -> Zhuhai Kingsoft Office Software Co.,Ltd) CustomCLSID: HKU\S-1-5-21-540779359-3396742334-3837969491-1001_Classes\CLSID\{89BB4535-5AE9-43a0-89C5-19B4697E5C5E}\InprocServer32 -> C:\Users\Yello\AppData\Local\Microsoft\Windows Sidebar\Gadgets\iBattery.gadget\bin\Gadget.Interop.dll () [Brak podpisu cyfrowego] CustomCLSID: HKU\S-1-5-21-540779359-3396742334-3837969491-1001_Classes\CLSID\{A4FEF2CE-E494-419e-ABCC-B2E993FB6BC0}\InprocServer32 -> C:\Users\Yello\AppData\Local\Microsoft\Windows Sidebar\Gadgets\GlassyCPUMonitor.gadget\Release\ProcessMonitor64.dll (TODO: ) [Brak podpisu cyfrowego] CustomCLSID: HKU\S-1-5-21-540779359-3396742334-3837969491-1001_Classes\CLSID\{DEDBE4C9-9E87-40C5-B437-9AAB7EB9C667}\InprocServer32 -> C:\Program Files (x86)\EasternGraphics\EGR-ShellExtension\Win64\egr_se.dll (EasternGraphics GmbH -> EasternGraphics) CustomCLSID: HKU\S-1-5-21-540779359-3396742334-3837969491-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\Yello\Dropbox [2020-01-10 01:50] CustomCLSID: HKU\S-1-5-21-540779359-3396742334-3837969491-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Yello\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll (Google Inc -> Google Inc.) ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2020-01-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2020-01-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2020-01-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2020-01-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2020-01-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2020-01-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2020-01-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2020-01-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2020-01-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2020-01-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-12-22] (Google LLC -> Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-12-22] (Google LLC -> Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-12-22] (Google LLC -> Google) ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7191} => -> Brak pliku ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D809} => C:\Program Files (x86)\Common Files\AWS\2.2.12.577\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.) [Brak podpisu cyfrowego] ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4E} => C:\Program Files (x86)\Common Files\AWS\2.2.12.577\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.) [Brak podpisu cyfrowego] ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2020-01-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2020-01-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2020-01-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2020-01-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2020-01-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2020-01-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2020-01-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2020-01-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2020-01-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2020-01-07] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers1: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP\System\aimp_menu64.dll [2019-04-18] (Artem Izmaylov -> AIMP DevTeam) ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2019-06-16] (Notepad++ -> ) ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2020-01-07] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers1: [EncryptoShellExt] -> {3AFE7597-9014-4D74-9A45-B76165818F98} => C:\Program Files\Encrypto\Encrypto.ShellExt.dll [2018-05-24] (MacPaw INC -> MacPaw Inc.) ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2019-12-22] (Google LLC -> Google) ContextMenuHandlers1: [Loaris Trojan Remover] -> {4B884539-D34B-4F5B-B008-3A6F3B213E5C} => C:\Program Files\Loaris Trojan Remover\shellext.dll [2019-05-23] () [Brak podpisu cyfrowego] ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-05-07] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-05-07] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [BigAngryDog_HWipe] -> {B0FFE529-A5D3-4ECE-91C0-9E3585C373D8} => C:\Program Files\Hardwipe\hw-bin\hwshell.dll [2017-04-03] (Big Angry Dog Ltd -> Big Angry Dog) ContextMenuHandlers2: [Loaris Trojan Remover] -> {4B884539-D34B-4F5B-B008-3A6F3B213E5C} => C:\Program Files\Loaris Trojan Remover\shellext.dll [2019-05-23] () [Brak podpisu cyfrowego] ContextMenuHandlers3: [BackupContextMenuExtension] -> {b1b96b20-da1d-4a3c-92c1-7229b32f2326} => C:\Program Files (x86)\Common Files\AWS\2.2.12.577\ASUSWSContextMenu.dll [2016-10-19] (ASUS Cloud Corporation -> ASUS Cloud Corporation) ContextMenuHandlers3: [BigAngryDog_HWipe] -> {8154B7C1-BB68-457C-931A-5BFABBA86CD9} => C:\Program Files\Hardwipe\hw-bin\hwshell.dll [2017-04-03] (Big Angry Dog Ltd -> Big Angry Dog) ContextMenuHandlers4: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP\System\aimp_menu64.dll [2019-04-18] (Artem Izmaylov -> AIMP DevTeam) ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2020-01-07] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers4: [EncryptoShellExt] -> {3AFE7597-9014-4D74-9A45-B76165818F98} => C:\Program Files\Encrypto\Encrypto.ShellExt.dll [2018-05-24] (MacPaw INC -> MacPaw Inc.) ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2019-12-22] (Google LLC -> Google) ContextMenuHandlers4: [Loaris Trojan Remover] -> {4B884539-D34B-4F5B-B008-3A6F3B213E5C} => C:\Program Files\Loaris Trojan Remover\shellext.dll [2019-05-23] () [Brak podpisu cyfrowego] ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => D:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd) ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2020-01-07] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Brak pliku ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\igfxDTCM.dll [2016-11-30] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ContextMenuHandlers6: [Loaris Trojan Remover] -> {4B884539-D34B-4F5B-B008-3A6F3B213E5C} => C:\Program Files\Loaris Trojan Remover\shellext.dll [2019-05-23] () [Brak podpisu cyfrowego] ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => D:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-05-07] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-05-07] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1_S-1-5-21-540779359-3396742334-3837969491-1001: [ qingshellext] -> {67F4D210-BFC2-4ADD-9A2A-C9B9E1F42C4F} => C:\Program Files (x86)\Kingsoft\WPS Office\10.2.0.7646\office6\qingshellext64.dll [2019-11-05] (Zhuhai Kingsoft Office Software Co., Ltd. -> Zhuhai Kingsoft Office Software Co.,Ltd) ContextMenuHandlers1_S-1-5-21-540779359-3396742334-3837969491-1001: [kpdf2wordshellext] -> {70239788-4DAE-49B8-9270-5D8614384B49} => C:\Program Files (x86)\Kingsoft\WPS Office\10.2.0.7646\office6\addons\kpdf2wordshellext\kpdf2wordshellext64.dll [2019-11-05] (Zhuhai Kingsoft Office Software Co., Ltd. -> Zhuhai Kingsoft Office Software Co.,Ltd) ContextMenuHandlers4_S-1-5-21-540779359-3396742334-3837969491-1001: [ qingshellext] -> {67F4D210-BFC2-4ADD-9A2A-C9B9E1F42C4F} => C:\Program Files (x86)\Kingsoft\WPS Office\10.2.0.7646\office6\qingshellext64.dll [2019-11-05] (Zhuhai Kingsoft Office Software Co., Ltd. -> Zhuhai Kingsoft Office Software Co.,Ltd) ContextMenuHandlers5_S-1-5-21-540779359-3396742334-3837969491-1001: [ qingshellext] -> {67F4D210-BFC2-4ADD-9A2A-C9B9E1F42C4F} => C:\Program Files (x86)\Kingsoft\WPS Office\10.2.0.7646\office6\qingshellext64.dll [2019-11-05] (Zhuhai Kingsoft Office Software Co., Ltd. -> Zhuhai Kingsoft Office Software Co.,Ltd) ==================== Codecs (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Drivers32: [VIDC.LWLR] => C:\Windows\SysWOW64\RGBACodec.dll [37488 2017-04-03] (EditShare EMEA (X-Edit Limited) -> ) ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) Shortcut: C:\Users\Yello\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ministerstwo Finansów\Aplikacje Krytyczne sp. z o. o..lnk -> hxxp://akmf.pl Shortcut: C:\Users\Yello\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ministerstwo Finansów\Jednolity Plik Kontrolny.lnk -> hxxp://jpk.mf.gov.pl Shortcut: C:\Users\Yello\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ministerstwo Finansów\Ministerstwo Finansów.lnk -> hxxp://www.mf.gov.pl ShortcutWithArgument: C:\Users\Yello\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikacje Chrome\Pocket.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default --app-id=mjcnijlhddpbdemagnpefmlkjdagkogk ShortcutWithArgument: C:\Users\Yello\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikacje Chrome\Pulpit zdalny Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default --app-id=gbchcmhmhahfdphkhkmpfmihenigjmpp ShortcutWithArgument: C:\Users\Yello\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\a24f81a7f079671a\magicinfo-express-2.lnk -> C:\Program Files (x86)\MagicInfo Express 2\magicinfo-express-2.exe (The NW.js Community) -> --user-data-dir="C:\Users\Yello\AppData\Local\magicinfo-express-2\User Data" --profile-directory=Default --app-id=nopnmlfcpkgendgoeadheehojnjapohb ==================== Załadowane moduły (filtrowane) ============= 2017-11-27 18:27 - 2019-07-05 13:25 - 001844224 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\LG Electronics\OnScreen Control\bin\FirmwareUpdateDLL.dll 2019-10-24 18:48 - 2019-01-29 09:14 - 000059392 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\LG Electronics\OnScreen Control\bin\ScreenSplitterHook1.dll 2019-10-24 18:48 - 2019-01-29 09:14 - 000066048 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\LG Electronics\OnScreen Control\bin\ScreenSplitterHook641.dll 2019-10-24 18:48 - 2018-10-10 08:19 - 006175232 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\LG Electronics\OnScreen Control\bin\TracerLib.dll 2019-11-06 18:10 - 2019-05-23 16:29 - 001801728 _____ () [Brak podpisu cyfrowego] C:\Program Files\Loaris Trojan Remover\shellext.dll 2017-08-10 10:41 - 2017-08-10 10:41 - 000043008 _____ () [Brak podpisu cyfrowego] C:\ProgramData\PLAY ONLINE\OnlineUpdate\libgcc_s_dw2-1.dll 2017-08-10 10:41 - 2017-08-10 10:41 - 000011362 _____ () [Brak podpisu cyfrowego] C:\ProgramData\PLAY ONLINE\OnlineUpdate\mingwm10.dll 2017-08-10 10:41 - 2017-08-10 10:41 - 002415104 _____ () [Brak podpisu cyfrowego] C:\ProgramData\PLAY ONLINE\OnlineUpdate\QtCore4.dll 2017-08-10 10:41 - 2017-08-10 10:41 - 001148416 _____ () [Brak podpisu cyfrowego] C:\ProgramData\PLAY ONLINE\OnlineUpdate\QtNetwork4.dll 2017-08-10 10:41 - 2017-08-10 10:41 - 000398336 _____ () [Brak podpisu cyfrowego] C:\ProgramData\PLAY ONLINE\OnlineUpdate\QtXml4.dll 2017-08-10 10:41 - 2017-08-10 10:41 - 000384512 _____ () [Brak podpisu cyfrowego] C:\ProgramData\PLAY ONLINE\OnlineUpdate\QueryStrategy.dll 2015-04-22 14:59 - 2015-04-22 14:59 - 001489920 _____ (ASUS Cloud Corporation.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Common Files\AWS\2.2.12.577\ASUSWSShellExt64.dll 2019-04-11 19:55 - 2019-05-23 16:29 - 001422336 _____ (Igor Pavlov) [Brak podpisu cyfrowego] C:\Program Files\Loaris Trojan Remover\7z.dll 2019-04-19 00:19 - 2019-02-01 08:56 - 000026112 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qico.dll 2019-04-19 00:19 - 2019-02-01 08:56 - 000020992 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qsvg.dll 2019-04-19 00:19 - 2019-02-01 08:56 - 001181184 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Malwarebytes\Anti-Malware\platforms\qwindows.dll 2017-09-28 21:12 - 2019-02-01 08:55 - 005010944 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll 2017-09-28 21:12 - 2019-02-01 08:56 - 005139968 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Gui.dll 2017-09-28 21:12 - 2019-02-01 08:56 - 002234880 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Network.dll 2017-09-28 21:12 - 2019-02-01 08:56 - 002950144 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Qml.dll 2017-09-28 21:12 - 2019-02-01 08:56 - 003084800 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Quick.dll 2017-09-28 21:12 - 2019-02-01 08:56 - 000259584 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Svg.dll 2017-09-28 21:12 - 2019-02-01 08:56 - 004571648 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Widgets.dll 2017-09-28 21:12 - 2019-02-01 08:56 - 000438272 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Malwarebytes\Anti-Malware\Qt5WinExtras.dll 2019-04-19 00:19 - 2019-02-01 08:56 - 000014848 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Malwarebytes\Anti-Malware\QtQml\Models.2\modelsplugin.dll 2019-04-19 00:19 - 2019-02-01 08:56 - 000014848 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick.2\qtquick2plugin.dll 2019-04-19 00:19 - 2019-02-01 08:56 - 000729088 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\qtquickcontrolsplugin.dll 2019-04-19 00:19 - 2019-02-01 08:56 - 000179712 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\dialogplugin.dll 2019-04-19 00:19 - 2019-02-01 08:56 - 000073216 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Layouts\qquicklayoutsplugin.dll 2019-04-19 00:19 - 2019-02-01 08:56 - 000101888 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\PrivateWidgets\widgetsplugin.dll 2019-04-19 00:19 - 2019-02-01 08:56 - 000014848 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Window.2\windowplugin.dll 2019-04-19 00:19 - 2019-02-01 08:56 - 000124928 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Malwarebytes\Anti-Malware\styles\qwindowsvistastyle.dll ==================== Alternate Data Streams (filtrowane) ======== ==================== Tryb awaryjny (filtrowane) ================== ==================== Powiązania plików (filtrowane) ================= ==================== Internet Explorer - Witryny zaufane i z ograniczeniami ========== ==================== Hosts - zawartość: ========================= (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2015-07-10 12:04 - 2019-12-04 13:27 - 000000824 ____R C:\WINDOWS\system32\drivers\etc\hosts ==================== Inne obszary =========================== (Obecnie brak automatycznej naprawy dla tej sekcji.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Hardwipe\;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Microsoft SQL Server\110\Tools\Binn\;C:\Program Files (x86)\Microsoft SQL Server\110\DTS\Binn\;C:\Program Files (x86)\QuickTime\QTSystem\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;%PIXIEHOME%\bin HKU\S-1-5-21-540779359-3396742334-3837969491-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Yello\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper HKU\S-1-5-80-1708958382-1225314969-3040366088-2957102912-3332197768\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg DNS Servers: 192.168.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Załączenie wejścia w fixlist spowoduje jego usunięcie.) HKLM\...\StartupApproved\Run: => "iTunesHelper" HKLM\...\StartupApproved\Run: => "Logitech Download Assistant" HKLM\...\StartupApproved\Run32: => "ControlCenter3" HKLM\...\StartupApproved\Run32: => "BrMfcWnd" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKLM\...\StartupApproved\Run32: => "OnScreen Control" HKLM\...\StartupApproved\Run32: => "Avira SystrayStartTrigger" HKLM\...\StartupApproved\Run32: => "Dropbox" HKU\S-1-5-21-540779359-3396742334-3837969491-1001\...\StartupApproved\StartupFolder: => "Sidebar46.lnk" HKU\S-1-5-21-540779359-3396742334-3837969491-1001\...\StartupApproved\Run: => "uTorrent" HKU\S-1-5-21-540779359-3396742334-3837969491-1001\...\StartupApproved\Run: => "GoogleDriveSync" HKU\S-1-5-21-540779359-3396742334-3837969491-1001\...\StartupApproved\Run: => "Google Update" HKU\S-1-5-21-540779359-3396742334-3837969491-1001\...\StartupApproved\Run: => "Google Photos Backup" HKU\S-1-5-21-540779359-3396742334-3837969491-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-540779359-3396742334-3837969491-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_71887DBAFC57A80AE021E4F0C5DD4B6F" HKU\S-1-5-21-540779359-3396742334-3837969491-1001\...\StartupApproved\Run: => "Service for Navitel Navigator Update Center" HKU\S-1-5-21-540779359-3396742334-3837969491-1001\...\StartupApproved\Run: => "iCloudServices" HKU\S-1-5-21-540779359-3396742334-3837969491-1001\...\StartupApproved\Run: => "AsDriverCD" ==================== Reguły Zapory systemu Windows (filtrowane) ================ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{4DC0579A-3CE7-4C5A-84C4-49591E22D7E1}] => (Allow) C:\Program Files (x86)\LG Electronics\Dual Controller\bin\DualControlEventGeneratorHelper.exe Brak pliku FirewallRules: [{5BC24EA2-0FF6-4E3E-91F5-49BF2F5DE04B}] => (Allow) C:\Program Files (x86)\LG Electronics\Dual Controller\bin\DualControlEventGrabberHelper.exe Brak pliku FirewallRules: [{2F1B9B76-559A-4335-A3A7-BA863F4B3D3F}] => (Allow) C:\Program Files (x86)\LG Electronics\Dual Controller\bin\DualControlFileTransferSession.exe (LG Electronics Inc. -> LG Electronics Inc) FirewallRules: [{CEBDBB1D-4E1A-40AD-8724-CBD956344AF6}] => (Allow) C:\Program Files (x86)\LG Electronics\Dual Controller\bin\DualController.exe (LG Electronics Inc. -> ) FirewallRules: [{F459AFE1-45B7-49E9-930A-76C80FBB96F8}] => (Allow) C:\Program Files (x86)\LG Electronics\Dual Controller\bin\DualController.exe (LG Electronics Inc. -> ) FirewallRules: [{8B24AA83-52CB-452D-92E8-296A1474D189}] => (Allow) C:\Program Files (x86)\LG Electronics\Dual Controller\bin\DualController.exe (LG Electronics Inc. -> ) FirewallRules: [{0260FE6A-7290-4753-9793-C036A4837833}] => (Allow) C:\Program Files (x86)\LG Electronics\Dual Controller\bin\DualController.exe (LG Electronics Inc. -> ) FirewallRules: [{EAF107F3-F476-431E-927A-DED3E345031F}] => (Allow) C:\Program Files (x86)\LG Electronics\Dual Controller\bin\DualController.exe (LG Electronics Inc. -> ) FirewallRules: [{B9C08ECA-4FC7-4BE5-8DCE-BA1A26AF6A4E}] => (Allow) C:\Program Files (x86)\LG Electronics\Dual Controller\bin\DualController.exe (LG Electronics Inc. -> ) FirewallRules: [{6E94DEBC-7757-4043-B82D-0BC0C292AD6A}] => (Allow) C:\Program Files (x86)\LG Electronics\Dual Controller\bin\DualController.exe (LG Electronics Inc. -> ) FirewallRules: [{F87F0B69-D0A6-4E89-8911-EE747817BE55}] => (Allow) C:\Program Files (x86)\LG Electronics\Dual Controller\bin\DualController.exe (LG Electronics Inc. -> ) FirewallRules: [{034ECBBA-9BB6-4BFE-B9A7-8425D805189A}] => (Allow) C:\Program Files (x86)\LG Electronics\Dual Controller\bin\DualController.exe (LG Electronics Inc. -> ) FirewallRules: [{46228B2B-C395-40FF-A237-F3D262D92A77}] => (Allow) C:\Program Files (x86)\LG Electronics\Dual Controller\bin\DualController.exe (LG Electronics Inc. -> ) FirewallRules: [{2D03E196-640A-4E74-8936-8B59C312C230}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe Brak pliku FirewallRules: [{23A93CAC-EDB7-4A62-90E1-07E3E4ED1FC0}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe Brak pliku FirewallRules: [{5B0CBE43-ADEC-4A72-86B9-F60A29003D49}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe Brak pliku FirewallRules: [UDP Query User{F9306A23-13B7-4574-86CF-BE2ABE423A56}C:\program files (x86)\magicinfo express\magicinfohybridauthor.exe] => (Allow) C:\program files (x86)\magicinfo express\magicinfohybridauthor.exe (TODO: ) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{EB3269E8-AD39-4CAA-9DCA-5FBCB3EE25D0}C:\program files (x86)\magicinfo express\magicinfohybridauthor.exe] => (Allow) C:\program files (x86)\magicinfo express\magicinfohybridauthor.exe (TODO: ) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{2A3E7EC5-7DD0-4C86-A3FF-6A788032BDEE}C:\program files (x86)\searchpro\searchpro.exe] => (Allow) C:\program files (x86)\searchpro\searchpro.exe () [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{5AC0FBDE-835F-4DF6-8866-331844A93BAF}C:\program files (x86)\searchpro\searchpro.exe] => (Allow) C:\program files (x86)\searchpro\searchpro.exe () [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{BE02E6B3-76E6-4707-8562-8CA18EEE7388}C:\users\yello\downloads\search_tool4\search_tool4\search_tool4.2.exe] => (Allow) C:\users\yello\downloads\search_tool4\search_tool4\search_tool4.2.exe Brak pliku FirewallRules: [TCP Query User{4A3D06A9-3523-4B0A-AFF3-E02EB49C8811}C:\users\yello\downloads\search_tool4\search_tool4\search_tool4.2.exe] => (Allow) C:\users\yello\downloads\search_tool4\search_tool4\search_tool4.2.exe Brak pliku FirewallRules: [UDP Query User{F260D50B-5BF2-4BFE-9775-45DAD7378576}C:\program files (x86)\deviceclient\onlineplayback.exe] => (Allow) C:\program files (x86)\deviceclient\onlineplayback.exe Brak pliku FirewallRules: [TCP Query User{650628BA-97DA-44B8-8C65-46BFBDCFC3C9}C:\program files (x86)\deviceclient\onlineplayback.exe] => (Allow) C:\program files (x86)\deviceclient\onlineplayback.exe Brak pliku FirewallRules: [UDP Query User{86585620-D83C-4751-8104-F22F65640029}C:\users\yello\downloads\search_tool4\search_tool4\search_tool4.2.exe] => (Allow) C:\users\yello\downloads\search_tool4\search_tool4\search_tool4.2.exe Brak pliku FirewallRules: [TCP Query User{03104F09-F18D-4ECF-807E-CB57BF3541AC}C:\users\yello\downloads\search_tool4\search_tool4\search_tool4.2.exe] => (Allow) C:\users\yello\downloads\search_tool4\search_tool4\search_tool4.2.exe Brak pliku FirewallRules: [UDP Query User{E9ECE06D-5173-4E1B-A4B6-C276ED911C95}C:\program files (x86)\deviceclient\onlineplayback.exe] => (Allow) C:\program files (x86)\deviceclient\onlineplayback.exe Brak pliku FirewallRules: [TCP Query User{0B026898-915A-4CA9-9E39-11A6EF7F2720}C:\program files (x86)\deviceclient\onlineplayback.exe] => (Allow) C:\program files (x86)\deviceclient\onlineplayback.exe Brak pliku FirewallRules: [UDP Query User{9B86FF2E-9286-4907-8B5F-C49D21DDE502}C:\program files (x86)\windscribe\wsappcontrol.exe] => (Block) C:\program files (x86)\windscribe\wsappcontrol.exe (Windscribe Limited -> Windscribe Limited) FirewallRules: [TCP Query User{BEC40BA5-4230-4005-99B2-258B3DB83A8A}C:\program files (x86)\windscribe\wsappcontrol.exe] => (Block) C:\program files (x86)\windscribe\wsappcontrol.exe (Windscribe Limited -> Windscribe Limited) FirewallRules: [UDP Query User{FF030C0F-C42C-4429-A937-ADB65F258F82}C:\program files (x86)\windscribe\wsappcontrol.exe] => (Allow) C:\program files (x86)\windscribe\wsappcontrol.exe (Windscribe Limited -> Windscribe Limited) FirewallRules: [TCP Query User{A57CEB24-6DBD-4823-B955-922360B07C9E}C:\program files (x86)\windscribe\wsappcontrol.exe] => (Allow) C:\program files (x86)\windscribe\wsappcontrol.exe (Windscribe Limited -> Windscribe Limited) FirewallRules: [{A81091B8-FDD0-445F-9AAB-3806A99AC18A}] => (Allow) C:\Program Files (x86)\NapiProjekt\napisy.exe () [Brak podpisu cyfrowego] FirewallRules: [{94F841E2-BFEF-4799-A889-F1D83F9A02FD}] => (Allow) C:\Program Files (x86)\NapiProjekt\napisy.exe () [Brak podpisu cyfrowego] FirewallRules: [{6C323F08-D488-460D-8214-CA123D44BE68}] => (Allow) C:\Users\Yello\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{B4FF9192-E6E1-47A4-99DF-EA6957A5CE07}] => (Allow) C:\Users\Yello\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{9CFA0A08-55F2-42CC-911E-920D288DBF9D}] => (Allow) C:\Users\Yello\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{6A03B6F0-27CB-45FB-A1F4-884FBF5AA449}] => (Allow) C:\Users\Yello\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{D5E4A161-D497-4E8D-985C-B8EDC7DD5301}] => (Allow) C:\Users\Yello\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{6BD63455-EFD7-48B9-90E0-45EA0430F6F1}] => (Allow) C:\Users\Yello\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{0AFE1AE1-19C7-4571-BDA9-A9837D8F148D}] => (Allow) C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe (Intel(R) Wireless Display -> Intel) FirewallRules: [{6FA2A556-6728-498E-94E2-BF6964671E61}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\SmartAgentTest.exe (Intel(R) Wireless Display -> ) FirewallRules: [{995A2433-E77D-4DFD-BCF7-281EF723D46D}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\Next\WirelessDisplay.exe Brak pliku FirewallRules: [{D8800D66-AEBE-443F-864D-8A046C824F99}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\WiDiAppOld.exe (Intel(R) Wireless Display -> Intel Corporation) FirewallRules: [{1135F122-170D-4566-BBDA-D5C444165DC4}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\WiDiApp.exe Brak pliku FirewallRules: [{8D360587-41F5-465D-BB40-8A72B290616C}] => (Allow) C:\Program Files (x86)\NapiProjekt\napisy.exe () [Brak podpisu cyfrowego] FirewallRules: [{BE79E864-5D94-406C-A0FA-69FDEE4F6578}] => (Allow) C:\Program Files (x86)\NapiProjekt\napisy.exe () [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{968BCC44-4DC1-4FC1-ACC5-CA399106E7F5}C:\program files (x86)\magicinfo express 2\magicinfo-express-2.exe] => (Allow) C:\program files (x86)\magicinfo express 2\magicinfo-express-2.exe (The NW.js Community) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{47FE1DB4-9197-473C-B6AA-93D7C9D5E018}C:\program files (x86)\magicinfo express 2\magicinfo-express-2.exe] => (Allow) C:\program files (x86)\magicinfo express 2\magicinfo-express-2.exe (The NW.js Community) [Brak podpisu cyfrowego] FirewallRules: [{818A4C00-0018-41C2-A0AE-B93E7BAD3F69}] => (Allow) C:\Program Files\Lightworks\lightworks.exe (EditShare EMEA (X-Edit Limited) -> ) FirewallRules: [{89CC9727-B990-43BD-92D1-F00D929AA6CE}] => (Allow) C:\Program Files\Lightworks\lightworks.exe (EditShare EMEA (X-Edit Limited) -> ) FirewallRules: [{DDD6DFB8-B140-468B-87C6-9CA93093761F}] => (Allow) C:\Program Files\Lightworks\ntcardvt.exe (EditShare EMEA (X-Edit Limited) -> Editshare EMEA) FirewallRules: [{F2B9A572-580F-4012-8E56-2DED93D6D882}] => (Allow) C:\Program Files\Lightworks\ntcardvt.exe (EditShare EMEA (X-Edit Limited) -> Editshare EMEA) FirewallRules: [{21D871CE-572A-461C-AB47-9779BE2E1F63}] => (Allow) C:\Program Files (x86)\Kingsoft\WPS Office\10.2.0.7646\office6\wpscloudsvr.exe (Zhuhai Kingsoft Office Software Co., Ltd. -> Zhuhai Kingsoft Office Software Co.,Ltd) FirewallRules: [TCP Query User{C7401259-9EE3-496E-9AF3-914108F362EB}C:\program files (x86)\deviceclient\deviceclient.exe] => (Allow) C:\program files (x86)\deviceclient\deviceclient.exe Brak pliku FirewallRules: [UDP Query User{E27A0E1E-B129-441A-8155-2119D5EB43F2}C:\program files (x86)\deviceclient\deviceclient.exe] => (Allow) C:\program files (x86)\deviceclient\deviceclient.exe Brak pliku FirewallRules: [TCP Query User{8DF62FD6-89DA-4797-BE4F-381B024076D1}C:\program files (x86)\deviceclient\deviceclient.exe] => (Allow) C:\program files (x86)\deviceclient\deviceclient.exe Brak pliku FirewallRules: [UDP Query User{502AADA0-23F0-4C4C-B70C-E4AB38673CF6}C:\program files (x86)\deviceclient\deviceclient.exe] => (Allow) C:\program files (x86)\deviceclient\deviceclient.exe Brak pliku FirewallRules: [{36BEB6FC-E549-47F2-A0BE-3571507AF289}] => (Allow) C:\Windows\Prey\versions\1.7.2\bin\node.exe (Node.js Foundation -> Node.js) FirewallRules: [{233C46F0-5739-4938-89C9-E1DA44D6BBDD}] => (Allow) C:\Users\Yello\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{E1B30E99-5913-48F5-B22B-A17BDD3D9BAA}] => (Allow) C:\Users\Yello\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [TCP Query User{5D37920F-E0F2-4138-9DFB-F65529A402F0}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN) FirewallRules: [UDP Query User{8CABA8F0-71C2-4C17-AC93-5A2EB3D2E007}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN) FirewallRules: [TCP Query User{1051CB60-EE4C-4A07-9EBA-62829BC74A39}D:3\sdi_update\sdi_x64_r526.exe] => (Block) D:3\sdi_update\sdi_x64_r526.exe Brak pliku FirewallRules: [UDP Query User{566FDBFD-E754-4433-AB99-6D29D3C08C4E}D:3\sdi_update\sdi_x64_r526.exe] => (Block) D:3\sdi_update\sdi_x64_r526.exe Brak pliku FirewallRules: [TCP Query User{700D709A-09E8-4078-BF30-A1B0373C58F0}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN) FirewallRules: [UDP Query User{2ED98AE7-27CC-4C76-BD15-58517A29732C}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN) FirewallRules: [{6C5AC9F9-7900-47AC-9531-B59D26308CC9}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> ) FirewallRules: [{52167D54-C52E-40FF-8D80-42350D2F072C}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> ) FirewallRules: [{907A8D8B-A5D9-48D4-BF85-5E8817473A8C}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> ) FirewallRules: [{53B6ED8A-94CE-4A23-93D7-FF2C0E41EC00}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> ) FirewallRules: [{71C9CBFD-4CF5-4120-989E-912917AB676C}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> ) FirewallRules: [TCP Query User{504B8C8E-2043-4ED3-B8BD-9A03182D1525}C:\program files (x86)\yihomepcclientintl\yihomepcclientintl.exe] => (Allow) C:\program files (x86)\yihomepcclientintl\yihomepcclientintl.exe (Shanghai Xiaoyi Technology Co., Ltd. -> Shanghai Xiaoyi Technology Co., Ltd.) FirewallRules: [UDP Query User{9E307C76-3D6F-4963-8B0B-973CE905097B}C:\program files (x86)\yihomepcclientintl\yihomepcclientintl.exe] => (Allow) C:\program files (x86)\yihomepcclientintl\yihomepcclientintl.exe (Shanghai Xiaoyi Technology Co., Ltd. -> Shanghai Xiaoyi Technology Co., Ltd.) FirewallRules: [TCP Query User{A60E3AC7-5C54-41DE-A645-4C8634F23801}C:\users\yello\downloads\filmy\nowy folder\warcraft iii\war3.exe] => (Allow) C:\users\yello\downloads\filmy\nowy folder\warcraft iii\war3.exe Brak pliku FirewallRules: [UDP Query User{ACE787CE-ACF4-4F0C-AABF-DEF529EDD232}C:\users\yello\downloads\filmy\nowy folder\warcraft iii\war3.exe] => (Allow) C:\users\yello\downloads\filmy\nowy folder\warcraft iii\war3.exe Brak pliku FirewallRules: [TCP Query User{D50F0C96-3EDA-4BAD-AA53-E6B4036CC289}C:\program files (x86)\magicinfo express 2\magicinfo-express-2.exe] => (Allow) C:\program files (x86)\magicinfo express 2\magicinfo-express-2.exe (The NW.js Community) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{EA256111-946D-42A0-AC37-0B7540C3026A}C:\program files (x86)\magicinfo express 2\magicinfo-express-2.exe] => (Allow) C:\program files (x86)\magicinfo express 2\magicinfo-express-2.exe (The NW.js Community) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{7717395E-6386-4DC5-BF45-F7240D04D0F7}C:\program files (x86)\yihomepcclientintl\yihomepcclientintl.exe] => (Allow) C:\program files (x86)\yihomepcclientintl\yihomepcclientintl.exe (Shanghai Xiaoyi Technology Co., Ltd. -> Shanghai Xiaoyi Technology Co., Ltd.) FirewallRules: [UDP Query User{F3774020-1C58-4B8C-8629-EADB62575321}C:\program files (x86)\yihomepcclientintl\yihomepcclientintl.exe] => (Allow) C:\program files (x86)\yihomepcclientintl\yihomepcclientintl.exe (Shanghai Xiaoyi Technology Co., Ltd. -> Shanghai Xiaoyi Technology Co., Ltd.) FirewallRules: [{EE5CE510-6A94-4CEC-B50E-370EA22D8E90}] => (Allow) C:\Program Files (x86)\Google\Chrome Remote Desktop\80.0.3987.18\remoting_host.exe (Google LLC -> Google Inc.) FirewallRules: [{FD4D9E79-E2B3-4170-8BBA-CFB6A94E5598}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{E0FCB6AC-54DD-4E3A-B2A5-511AD8456C60}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.) StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\OrangeBS\BEWInternet-PL\Connectivity\ConnectivityManager.exe] => enabled:CSS ==================== Punkty Przywracania systemu ========================= 15-01-2020 13:17:30 Zaplanowany punkt kontrolny 22-01-2020 18:35:46 Zaplanowany punkt kontrolny ==================== Wadliwe urządzenia w Menedżerze urządzeń ============ ==================== Błędy w Dzienniku zdarzeń: ======================== Dziennik Aplikacja: ================== Error: (01/24/2020 12:37:38 AM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (15680,R,98) TILEREPOSITORYS-1-5-18: Wystąpił błąd -1023 (0xfffffc01) podczas otwierania pliku dziennika C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (01/24/2020 12:20:21 AM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (2960,R,98) TILEREPOSITORYS-1-5-18: Wystąpił błąd -1023 (0xfffffc01) podczas otwierania pliku dziennika C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (01/23/2020 08:20:15 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (8216,R,98) TILEREPOSITORYS-1-5-18: Wystąpił błąd -1023 (0xfffffc01) podczas otwierania pliku dziennika C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (01/23/2020 07:24:32 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (1548,R,98) TILEREPOSITORYS-1-5-18: Wystąpił błąd -1023 (0xfffffc01) podczas otwierania pliku dziennika C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (01/23/2020 06:27:10 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (4672,R,98) TILEREPOSITORYS-1-5-18: Wystąpił błąd -1023 (0xfffffc01) podczas otwierania pliku dziennika C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (01/23/2020 05:20:14 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (1588,R,98) TILEREPOSITORYS-1-5-18: Wystąpił błąd -1023 (0xfffffc01) podczas otwierania pliku dziennika C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (01/23/2020 11:56:21 AM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (3488,R,98) TILEREPOSITORYS-1-5-18: Wystąpił błąd -1023 (0xfffffc01) podczas otwierania pliku dziennika C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (01/23/2020 11:51:13 AM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (14160,R,98) TILEREPOSITORYS-1-5-18: Wystąpił błąd -1023 (0xfffffc01) podczas otwierania pliku dziennika C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Dziennik System: ============= Error: (01/23/2020 11:11:13 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa Usługa wiadomości_1013d16c zakończyła działanie; wystąpił następujący błąd: Urządzenie nie jest gotowe. Error: (01/21/2020 05:49:07 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa Energy Server Service queencreek zakończyła działanie; wystąpił następujący błąd: Debuger przejął kontrolę C. Error: (01/21/2020 05:47:11 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa Usługa wiadomości_ca886 zakończyła działanie; wystąpił następujący błąd: Urządzenie nie jest gotowe. Error: (01/21/2020 05:47:05 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (45000 ms) podczas oczekiwania na połączenie się z usługą FTRTSVC. Error: (01/21/2020 05:46:22 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi PLAY ONLINE. RunOuc z powodu następującego błędu: Usługa nie odpowiada na sygnał uruchomienia lub sygnał sterujący w oczekiwanym czasie. Error: (01/21/2020 05:46:22 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (45000 ms) podczas oczekiwania na połączenie się z usługą PLAY ONLINE. RunOuc. Error: (01/16/2020 11:35:00 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa Energy Server Service queencreek zakończyła działanie; wystąpił następujący błąd: Debuger przejął kontrolę C. Error: (01/16/2020 11:32:56 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (45000 ms) podczas oczekiwania na połączenie się z usługą FTRTSVC. CodeIntegrity: =================================== Date: 2020-01-24 00:10:03.889 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bitdefender Antivirus Free\bdamsi\264409176091320000\antimalware_provider64.dll that did not meet the Windows signing level requirements. Date: 2020-01-24 00:10:03.881 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bitdefender Antivirus Free\bdamsi\264409176091320000\antimalware_provider64.dll that did not meet the Windows signing level requirements. Date: 2020-01-24 00:10:03.863 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bitdefender Antivirus Free\bdamsi\264409176091320000\antimalware_provider64.dll that did not meet the Windows signing level requirements. Date: 2020-01-24 00:02:52.711 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bitdefender Antivirus Free\bdamsi\264409176091320000\antimalware_provider64.dll that did not meet the Windows signing level requirements. Date: 2020-01-24 00:02:52.703 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bitdefender Antivirus Free\bdamsi\264409176091320000\antimalware_provider64.dll that did not meet the Windows signing level requirements. Date: 2020-01-24 00:02:52.692 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bitdefender Antivirus Free\bdamsi\264409176091320000\antimalware_provider64.dll that did not meet the Windows signing level requirements. Date: 2020-01-24 00:02:52.686 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bitdefender Antivirus Free\bdamsi\264409176091320000\antimalware_provider64.dll that did not meet the Windows signing level requirements. Date: 2020-01-24 00:02:52.648 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bitdefender Antivirus Free\bdamsi\264409176091320000\antimalware_provider64.dll that did not meet the Windows signing level requirements. ==================== Statystyki pamięci =========================== BIOS: American Megatrends Inc. UX305UA.201 10/12/2015 Płyta główna: ASUSTeK COMPUTER INC. UX305UA Procesor: Intel(R) Core(TM) i7-6500U CPU @ 2.50GHz Procent pamięci w użyciu: 87% Całkowita pamięć fizyczna: 8094.34 MB Dostępna pamięć fizyczna: 998.15 MB Całkowita pamięć wirtualna: 29174.26 MB Dostępna pamięć wirtualna: 3907.64 MB ==================== Dyski ================================ Drive c: (OS) (Fixed) (Total:237.72 GB) (Free:10.06 GB) NTFS ==>[system z komponentami startowymi (pozyskano odczytując dysk)] Drive d: () (Fixed) (Total:0.49 GB) (Free:0.46 GB) NTFS Drive e: () (Removable) (Total:14.63 GB) (Free:11.78 GB) FAT32 \\?\Volume{15cb2f0e-162d-4a3a-b450-39f40a1799c5}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32 ==================== MBR & Tablica partycji ==================== ========================================================== Disk: 0 (Size: 238.5 GB) (Disk ID: ACF03BD5) Partition: GPT. ========================================================== Disk: 1 (Protective MBR) (Size: 14.6 GB) (Disk ID: 00000000) Partition: GPT. ==================== Koniec Addition.txt =======================