Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 25-02-2023 Uruchomiony przez przyb (26-02-2023 17:34:46) Uruchomiony z C:\Users\przyb\Desktop\Nowy folder Microsoft Windows 10 Pro Wersja 22H2 19045.2673 (X64) (2023-02-21 08:29:39) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= (Załączenie wejścia w fixlist spowoduje jego usunięcie.) Administrator (S-1-5-21-3411141071-3349320218-1670478341-500 - Administrator - Disabled) Gość (S-1-5-21-3411141071-3349320218-1670478341-501 - Limited - Disabled) Konto domyślne (S-1-5-21-3411141071-3349320218-1670478341-503 - Limited - Disabled) przyb (S-1-5-21-3411141071-3349320218-1670478341-1001 - Administrator - Enabled) => C:\Users\przyb WDAGUtilityAccount (S-1-5-21-3411141071-3349320218-1670478341-504 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Panda Dome (Enabled - Up to date) {E18DAE3C-0817-EA74-9F24-3E92157CCE76} FW: Panda Firewall (Enabled) {D9B62F19-4278-EB2C-B47B-97A7EBAF890D} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) Adobe Photoshop 2023 (HKLM-x32\...\PHSP_24_1_1) (Version: 24.1.1.238 - Adobe Inc.) AOMEI Backupper Professional (HKLM-x32\...\{A83692F5-3E9B-4E95-9E7E-B5DF5536CE9D}_is1) (Version: 7.2.0 - AOMEI International Network Limited.) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Call of Duty (HKLM-x32\...\Call of Duty) (Version: - Blizzard Entertainment) CrystalDiskInfo 8.17.14 (HKLM\...\CrystalDiskInfo_is1) (Version: 8.17.14 - Crystal Dew World) EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 12.120.0.5377 - Electronic Arts) Hidden EA app (HKLM-x32\...\{43e2863d-7b9d-458b-8a5a-b3d963699de5}) (Version: 12.120.0.5377 - Electronic Arts) EaseUS Partition Master (HKLM\...\EaseUS Partition Master_is1) (Version: - EaseUS) FIFA 23 (HKLM-x32\...\{B2A14ADC-C2DC-432C-BA7E-FA59282364AB}) (Version: 1.0.79.44776 - Electronic Arts) Java 8 Update 361 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180361F0}) (Version: 8.0.3610.9 - Oracle Corporation) MediaInfo 19.09 (HKLM\...\MediaInfo) (Version: 19.09 - MediaArea.net) Microsoft .NET Host - 6.0.11 (x64) (HKLM\...\{B92B890A-04F2-4880-BA20-20D4364FB263}) (Version: 48.47.50420 - Microsoft Corporation) Hidden Microsoft .NET Host FX Resolver - 6.0.11 (x64) (HKLM\...\{5E63E49B-C88C-46C5-855C-A7B07C11CDC8}) (Version: 48.47.50420 - Microsoft Corporation) Hidden Microsoft .NET Runtime - 6.0.11 (x64) (HKLM\...\{C3DD1448-513A-4DB8-978D-6991562EA63D}) (Version: 48.47.50420 - Microsoft Corporation) Hidden Microsoft ASP.NET Core 6.0.11 Shared Framework (x64) (HKLM\...\{4A34BC3F-E0C3-3BFF-9379-4F3F611AC617}) (Version: 6.0.11.22523 - Microsoft Corporation) Hidden Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 110.0.1587.56 - Microsoft Corporation) Microsoft GameInput (HKLM-x32\...\{6BBE9278-659F-FA16-E4B8-C2D60DE0DCC7}) (Version: 10.1.22621.1863 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{89581302-705F-42C5-99B0-E368A845DAD5}) (Version: 3.70.0.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X64 Additional Runtime - 14.34.31921 (HKLM\...\{EB61ACFC-A91D-47FD-A4FF-17E29ED06794}) (Version: 14.34.31921 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.34.31921 (HKLM\...\{5CD0C440-0D9B-435D-B5CF-CC20E04C669B}) (Version: 14.34.31921 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X86 Additional Runtime - 14.34.31823 (HKLM-x32\...\{EB6DFC76-FC58-4F00-811A-09FC83EDB02B}) (Version: 14.34.31823 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.34.31823 (HKLM-x32\...\{54AAF010-4412-441C-AFDF-5566370458AA}) (Version: 14.34.31823 - Microsoft Corporation) Hidden Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation) Motorola Mobile Drivers Installation 6.4.0 (HKLM\...\{27986EDD-C9EC-4B52-B92F-06D073F0AA52}) (Version: 6.4.0 - Motorola Mobility LLC) Mozilla Firefox (x64 pl) (HKLM\...\Mozilla Firefox 110.0 (x64 pl)) (Version: 110.0 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 110.0 - Mozilla) Need for Speed™ Unbound (HKLM-x32\...\{656F499B-81C7-4766-9851-D4C8DA1E24B7}) (Version: 1.0.6.3368 - Electronic Arts) NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.39.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.39.16 - NVIDIA Corporation) NVIDIA Sterownik graficzny 528.49 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 528.49 - NVIDIA Corporation) O&O Defrag Professional (HKLM\...\{C6CD258F-5FAF-4C35-86BD-A74E4374C146}) (Version: 25.6.7601 - O&O Software GmbH) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Panda Cloud Cleaner (HKLM-x32\...\{92B2B132-C7F0-43DC-921A-4493C04F78A4}_is1) (Version: 1.1.10 - Panda Security) Panda Devices Agent (HKLM-x32\...\{DB0164A2-ADE9-4FEE-B080-D506BDD6427F}) (Version: 1.08.09 - Panda Security) Hidden Panda Devices Agent (HKLM-x32\...\Panda Devices Agent) (Version: 1.03.09 - Panda Security) Hidden Panda Dome (HKLM\...\{2A0B4ADE-1FA7-4B2B-9785-F951390FD5FF}) (Version: 12.02.00 - Panda Security) Hidden Panda Dome (HKLM-x32\...\Panda Universal Agent Endpoint) (Version: 22.00.00.0000 - Panda Security) PC HelpSoft Driver Updater 6.3.914 (HKLM-x32\...\PC HelpSoft Driver Updater_is1) (Version: 6.3.914 - LR) PrivaZer 4.0.66 (HKLM-x32\...\PrivaZer_is1) (Version: 4.0.66 - LR) qBittorrent (HKLM-x32\...\qBittorrent) (Version: 4.5.1 - The qBittorrent project) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9273.1 - Realtek Semiconductor Corp.) Rescue and Smart Assistant (HKLM-x32\...\Rescue and Smart Assistant) (Version: 6.4.2.13 - Lenovo) Revo Uninstaller 2.4.2 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.4.2 - VS Revo Group, Ltd.) Roblox Player for przyb (HKU\S-1-5-21-3411141071-3349320218-1670478341-1001\...\roblox-player) (Version: - Roblox Corporation) Roblox Studio for przyb (HKU\S-1-5-21-3411141071-3349320218-1670478341-1001\...\roblox-studio) (Version: - Roblox Corporation) SharewareOnSale Notifier (HKU\S-1-5-21-3411141071-3349320218-1670478341-1001\...\SharewareOnSale Notifier) (Version: 20 - SharewareOnSale) Spotify 1.2.3.1115 (HKLM-x32\...\Spotify_is1) (Version: 1.2.3.1115 - LR) Sprawdzanie kondycji komputera z systemem Windows (HKLM\...\{82AAB16D-A8C4-4E74-A575-70145EAEDB1D}) (Version: 3.7.2204.15001 - Microsoft Corporation) SSDFresh 2022 (HKLM-x32\...\{71149886-0AA3-4F31-81F9-CC90EA0D55EF}_is1) (Version: 11.07 - Abelssoft) Środowisko uruchomieniowe Microsoft Edge WebView2 (HKLM-x32\...\Microsoft EdgeWebView) (Version: 110.0.1587.50 - Microsoft Corporation) UE4 Prerequisites (x64) (HKLM\...\{36EAD5CF-44EF-4FCF-8BE1-D96C4835D7A4}) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden UltraUXThemePatcher (HKLM-x32\...\UltraUXThemePatcher) (Version: 4.3.4.0 - Manuel Hoefs (Zottel)) UXP WebView Support (HKLM-x32\...\UXPW_1_1_0) (Version: 1.1.0 - Adobe Inc.) VLC media player (HKLM\...\VLC media player) (Version: 3.0.18 - VideoLAN) WinRAR 6.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.21.0 - win.rar GmbH) Packages: ========= Atomic Heart - Windows -> C:\Program Files\WindowsApps\FocusHomeInteractiveSA.579645D26CFD_1.0.2.0_x64__4hny5m903y3g0 [2023-02-23] (Focus Home Interactive SA) Messenger -> C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_1720.28.215.0_x64__8xx8rvfyw5nnt [2023-02-24] (Meta) [Startup Task] Microsoft Flight Simulator -> C:\Program Files\WindowsApps\Microsoft.FlightSimulator_1.30.12.0_x64__8wekyb3d8bbwe [2023-02-03] (Microsoft Studios) Microsoft Flight Simulator Digital Ownership -> C:\Program Files\WindowsApps\Microsoft.DigitalOwnership_1.0.1.0_x64__8wekyb3d8bbwe [2023-02-03] (Microsoft Studios) Mozilla Firefox -> C:\Program Files\WindowsApps\Mozilla.Firefox_110.0.0.0_x64__n80bbvh6b1yt2 [2023-02-23] (Mozilla) NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.963.0_x64__56jybvy8sckqj [2023-02-22] (NVIDIA Corp.) Outlook for Windows -> C:\Program Files\WindowsApps\Microsoft.OutlookForWindows_1.2023.118.100_x64__8wekyb3d8bbwe [2023-02-21] (Microsoft Corporation) Superliminal -> C:\Program Files\WindowsApps\PillowCastle.Superliminal_1.0.5.0_x64__r6zr3eg4hg8h4 [2023-02-25] (Pillow Castle) TranslucentTB -> C:\Program Files\WindowsApps\28017CharlesMilette.TranslucentTB_2022.1.0.0_x64__v826wp6bftszj [2023-02-23] (Charles Milette) [Startup Task] WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2306.4.0_x64__cv1g1gvanyjgm [2023-02-23] (WhatsApp Inc.) [Startup Task] WindowsAppRuntime.1.2 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.2_2000.777.2143.0_x64__8wekyb3d8bbwe [2023-02-23] (Microsoft Corporation) WindowsAppRuntime.1.2 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.2_2000.777.2143.0_x86__8wekyb3d8bbwe [2023-02-23] (Microsoft Corporation) ==================== Niestandardowe rejestracje CLSID (filtrowane): ============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-3411141071-3349320218-1670478341-1001_Classes\CLSID\{ce58a493-1357-cae0-d669-fe54fb63756c}\localserver32 -> C:\Program Files\OO Software\Defrag\oodtrwnd.exe (O&O Software GmbH -> O&O Software GmbH) ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2022-11-30] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2022-11-30] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2022-11-30] (Adobe Inc. -> ) ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2022-11-30] (Adobe Inc. -> ) ContextMenuHandlers1: [OODefrag] -> {48EAD1E1-ECF2-4a85-AA09-1C44FBEED451} => C:\Program Files\OO Software\Defrag\oodsh.dll [2022-08-18] (O&O Software GmbH -> O&O Software GmbH) ContextMenuHandlers1: [PrivaZer] -> {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} => C:\Program Files (x86)\PrivaZer\PrivaMenu6.dll [2021-10-30] (Goversoft LLC -> ) ContextMenuHandlers1: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAShell.dll [2023-01-02] (Panda Security S.L. -> Panda Security, S.L.) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-02-16] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-02-16] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [OODefrag] -> {48EAD1E1-ECF2-4a85-AA09-1C44FBEED451} => C:\Program Files\OO Software\Defrag\oodsh.dll [2022-08-18] (O&O Software GmbH -> O&O Software GmbH) ContextMenuHandlers2: [PrivaZer] -> {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} => C:\Program Files (x86)\PrivaZer\PrivaMenu6.dll [2021-10-30] (Goversoft LLC -> ) ContextMenuHandlers3: [PrivaZer] -> {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} => C:\Program Files (x86)\PrivaZer\PrivaMenu6.dll [2021-10-30] (Goversoft LLC -> ) ContextMenuHandlers4: [PrivaZer] -> {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} => C:\Program Files (x86)\PrivaZer\PrivaMenu6.dll [2021-10-30] (Goversoft LLC -> ) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_da725289af73928f\nvshext.dll [2023-02-03] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers5: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAShell.dll [2023-01-02] (Panda Security S.L. -> Panda Security, S.L.) ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2022-11-30] (Adobe Inc. -> ) ContextMenuHandlers6: [OODefrag] -> {48EAD1E1-ECF2-4a85-AA09-1C44FBEED451} => C:\Program Files\OO Software\Defrag\oodsh.dll [2022-08-18] (O&O Software GmbH -> O&O Software GmbH) ContextMenuHandlers6: [PrivaZer] -> {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} => C:\Program Files (x86)\PrivaZer\PrivaMenu6.dll [2021-10-30] (Goversoft LLC -> ) ContextMenuHandlers6: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAShell.dll [2023-01-02] (Panda Security S.L. -> Panda Security, S.L.) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-02-16] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-02-16] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (filtrowane) ==================== ==================== Skróty & WMI ======================== ==================== Załadowane moduły (filtrowane) ============= 2023-02-23 17:45 - 2023-02-23 17:45 - 001530368 _____ () [Brak podpisu cyfrowego] C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2306.4.0_x64__cv1g1gvanyjgm\e_sqlite3.dll 2023-02-23 17:45 - 2023-02-23 17:45 - 104974336 _____ () [Brak podpisu cyfrowego] C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2306.4.0_x64__cv1g1gvanyjgm\WhatsApp.dll 2023-02-23 17:45 - 2023-02-23 17:45 - 008795648 _____ () [Brak podpisu cyfrowego] C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2306.4.0_x64__cv1g1gvanyjgm\WhatsAppNative.dll 2023-02-23 15:45 - 2023-02-23 15:45 - 000093696 _____ (Microsoft Corporation) [Brak podpisu cyfrowego] C:\WINDOWS\SYSTEM32\uxinit.dll 2023-02-21 09:03 - 2023-02-21 09:03 - 000065536 _____ (Microsoft Corporation) [Brak podpisu cyfrowego] C:\WINDOWS\WinSxS\x86_microsoft.vc80.openmp_1fc8b3b9a1e18e3b_8.0.50727.762_none_7b33aa7d218504d2\vcomp.dll ==================== Alternate Data Streams (filtrowane) ======== ==================== Tryb awaryjny (filtrowane) ================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NanoServiceMain => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PSUAService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NanoServiceMain => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PSUAService => ""="Service" ==================== Powiązania plików (filtrowane) ================= ==================== Internet Explorer (filtrowane) ========== BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_361\bin\ssv.dll [2023-01-09] (Oracle America, Inc. -> Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_361\bin\jp2ssv.dll [2023-01-09] (Oracle America, Inc. -> Oracle Corporation) ==================== Hosts - zawartość: ========================= (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2023-02-15 14:36 - 2023-02-25 21:04 - 000000178 _____ C:\WINDOWS\system32\drivers\etc\hosts 127.0.0.1 localhost 127.0.0.1 reg.wisecleaner.com ==================== Inne obszary =========================== (Obecnie brak automatycznej naprawy dla tej sekcji.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\dotnet\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\AOMEI\AOMEI Backupper\7.2.0 HKU\S-1-5-21-3411141071-3349320218-1670478341-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\przyb\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\ali-falak-fotosessiia-shatenka-krasotka-vzgliad-portret-boke.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Załączenie wejścia w fixlist spowoduje jego usunięcie.) HKLM\...\StartupApproved\Run: => "Everything" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKLM\...\StartupApproved\Run32: => "OODefragTray" HKU\S-1-5-21-3411141071-3349320218-1670478341-1001\...\StartupApproved\Run: => "EpicGamesLauncher" HKU\S-1-5-21-3411141071-3349320218-1670478341-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_A2995B52FBFC27EA3F81CFC4FCD45E47" HKU\S-1-5-21-3411141071-3349320218-1670478341-1001\...\StartupApproved\Run: => "IDMan" ==================== Reguły Zapory systemu Windows (filtrowane) ================ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{84BFA5FC-1A13-4082-87E2-75B9B0B20F01}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\110.0.1587.50\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{3B1BF4F9-D371-47E3-A7D8-236E34BB48FF}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{CE9D0505-C495-4E78-9B7C-74C91A5A61A9}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [UDP Query User{BDC88AA8-AD21-47E8-89E4-02A9379C809B}J:\call of duty\_retail_\cod.exe] => (Allow) J:\call of duty\_retail_\cod.exe (Activision Publishing Inc -> Activision) FirewallRules: [TCP Query User{5BF81903-0926-4C3B-8746-1ACC8DE24E60}J:\call of duty\_retail_\cod.exe] => (Allow) J:\call of duty\_retail_\cod.exe (Activision Publishing Inc -> Activision) FirewallRules: [{CF130836-EAD2-4A65-81E8-672A7142FC9F}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> ) FirewallRules: [{CFBFDA0E-7CCB-4207-9B14-EA56F9EA6475}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> ) FirewallRules: [{6EF8EFD1-5876-498F-A51A-001406B756FA}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> ) FirewallRules: [{9BE3996E-E594-4966-BA19-D75C1D489C15}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> ) FirewallRules: [UDP Query User{5D6F45C9-A933-4C18-A68C-2CF50885FFB8}J:\fifa 23\fifa23.exe] => (Allow) J:\fifa 23\fifa23.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [TCP Query User{FE69268E-8D41-4A30-8202-5B1F54F2EDAC}J:\fifa 23\fifa23.exe] => (Allow) J:\fifa 23\fifa23.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{C8366E9B-AEFE-4DE7-A66C-B4C92F2524B5}] => (Allow) J:\FIFA 23\EAAntiCheat.GameServiceLauncher.exe (Electronic Arts, Inc. -> ) FirewallRules: [{13DA71D3-DA1C-4BB9-8DE6-18F7D4FC39A2}] => (Allow) J:\FIFA 23\EAAntiCheat.GameServiceLauncher.exe (Electronic Arts, Inc. -> ) FirewallRules: [UDP Query User{074FDCC2-0E81-45C4-93B5-79BE9EFE27A1}G:\nowy folder\microsoft flight simulator\content\flightsimulator.exe] => (Allow) G:\nowy folder\microsoft flight simulator\content\flightsimulator.exe (Odmowa dostępu) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{1CBDB8BA-E30D-4C94-B462-B616BB041249}G:\nowy folder\microsoft flight simulator\content\flightsimulator.exe] => (Allow) G:\nowy folder\microsoft flight simulator\content\flightsimulator.exe (Odmowa dostępu) [Brak podpisu cyfrowego] FirewallRules: [{5682D6CC-2A81-4746-9ACC-98D5D231DE66}] => (Allow) C:\Program Files\Rescue and Smart Assistant\Rescue and Smart Assistant.exe (Lenovo -> ) FirewallRules: [UDP Query User{59BFB966-36B8-4091-A974-0BFEB0CF09C0}G:\nowy folder\microsoft flight simulator\content\flightsimulator.exe] => (Allow) G:\nowy folder\microsoft flight simulator\content\flightsimulator.exe (Odmowa dostępu) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{930AF767-675D-4F6D-9593-5B2A933A173F}G:\nowy folder\microsoft flight simulator\content\flightsimulator.exe] => (Allow) G:\nowy folder\microsoft flight simulator\content\flightsimulator.exe (Odmowa dostępu) [Brak podpisu cyfrowego] FirewallRules: [{9BC96FFB-36C3-4445-B566-AA08B91BA71E}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{AF5A47F7-41A4-4B1A-A018-DFA917E8DAD0}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{07E08326-B65B-4039-8283-3701563C130D}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{C2C69415-C754-4BE8-935C-34E3DE20BFF2}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{447D5586-0055-4652-8BA5-A2983DC433EC}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{CC9FAB07-630A-4401-B54A-A70AAF180533}] => (Allow) C:\Users\przyb\AppData\Roaming\Spotify\Spotify.exe (Spotify Ltd) [Brak podpisu cyfrowego] FirewallRules: [{34106439-7E59-4791-BC8D-6A61EE19B93B}] => (Allow) C:\Users\przyb\AppData\Roaming\Spotify\Spotify.exe (Spotify Ltd) [Brak podpisu cyfrowego] FirewallRules: [{E1F4BDF3-DF94-40AA-853F-2DD5EBE6C382}] => (Allow) LPort=31931 FirewallRules: [{021CA6F3-F4EE-4C71-95C0-DA949672A763}] => (Allow) LPort=14714 FirewallRules: [{222CC85D-289C-486A-AEE8-3F1A5173C152}] => (Allow) LPort=12972 FirewallRules: [{C4D1B25F-7E50-4055-BF23-C22F4378BAAB}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [Brak podpisu cyfrowego] FirewallRules: [{417F7927-2BF1-4CB0-8F34-B8C69E62FBC6}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [Brak podpisu cyfrowego] FirewallRules: [{7DB53E9E-A5F9-4D47-90C0-E181576CC348}] => (Allow) J:\FIFA 23\EAAntiCheat.GameServiceLauncher.exe (Electronic Arts, Inc. -> ) FirewallRules: [{6E2AC0B8-CA68-4D2E-83D1-0965659196DA}] => (Allow) J:\FIFA 23\EAAntiCheat.GameServiceLauncher.exe (Electronic Arts, Inc. -> ) FirewallRules: [{C19FBFF3-54E1-402A-B4AA-CB609B4C787A}] => (Allow) F:\GRY\Need for Speed Unbound\NeedForSpeedUnboundTrial.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{C524AA3D-517D-4B85-9674-D8B8C7880130}] => (Allow) F:\GRY\Need for Speed Unbound\NeedForSpeedUnboundTrial.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{B73E2B93-D9FA-4E1D-8FAA-2C33A0AB45FF}] => (Allow) F:\GRY\Need for Speed Unbound\NeedForSpeedUnbound.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{FDB2659E-2292-4DA1-B8C6-935D2CF42010}] => (Allow) F:\GRY\Need for Speed Unbound\NeedForSpeedUnbound.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{63D61689-0528-4341-AF46-C98A0AA4A20F}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [Brak podpisu cyfrowego] FirewallRules: [{1D9B762E-9C19-4176-8AD8-B541F36C3008}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [Brak podpisu cyfrowego] FirewallRules: [{166A89AA-C4FC-4F6E-A6BC-8F12B818D66A}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper\7.2.0\ABService.exe (AOMEI International Network Limited -> AOMEI International Network Limited) FirewallRules: [{6D4C6E6F-AC92-4B9D-B767-535D01546B89}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper\7.2.0\ABService.exe (AOMEI International Network Limited -> AOMEI International Network Limited) ==================== Punkty Przywracania systemu ========================= UWAGA: Przywracanie systemu jest wyłączone (Total:77.53 GB) (Free:35.91 GB) (46%) ==================== Wadliwe urządzenia w Menedżerze urządzeń ============ Name: Toshiba RFBUS Driver Description: Toshiba RFBUS Driver Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Błędy w Dzienniku zdarzeń: ======================== Dziennik Aplikacja: ================== Dziennik System: ============= Error: (02/26/2023 05:29:46 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-9SEQ30P) Description: Serwer {9BA05972-F6A8-11CF-A442-00A0C90A8F39} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (02/26/2023 05:29:46 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-9SEQ30P) Description: Serwer {9AA46009-3CE0-458A-A354-715610A075E6} nie zarejestrował się w modelu DCOM w wymaganym czasie. CodeIntegrity: =============== Date: 2023-02-26 17:32:17 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files (x86)\Panda Security\Panda Security Protection\PSNWSC.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Statystyki pamięci =========================== BIOS: American Megatrends Inc. 3805 05/07/2018 Płyta główna: ASUSTeK COMPUTER INC. H110M-D Procesor: Intel(R) Core(TM) i5-6400 CPU @ 2.70GHz Procent pamięci w użyciu: 27% Całkowita pamięć fizyczna: 16327.05 MB Dostępna pamięć fizyczna: 11809.56 MB Całkowita pamięć wirtualna: 22215.05 MB Dostępna pamięć wirtualna: 15877.87 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:77.53 GB) (Free:35.91 GB) (Model: CT500MX500SSD1) NTFS Drive d: (CPRA_X64FRE) (Removable) (Total:7.2 GB) (Free:3.45 GB) FAT32 Drive f: (dysk 3) (Fixed) (Total:465.76 GB) (Free:347.77 GB) (Model: WDC WD5000AAKX-75U6AA0) NTFS Drive g: (dysk 2) (Fixed) (Total:465.75 GB) (Free:256.78 GB) (Model: ST3500312CS) NTFS Drive j: (gry 1 ) (Fixed) (Total:387.64 GB) (Free:197.69 GB) (Model: CT500MX500SSD1) NTFS \\?\Volume{752a4579-1e1c-4be6-8c2d-c28c109e0b2e}\ () (Fixed) (Total:0.48 GB) (Free:0.06 GB) NTFS \\?\Volume{dc5e685c-d7db-4061-a8ef-7db649f0464d}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Tablica partycji ==================== ========================================================== Disk: 0 (Size: 465.8 GB) (Disk ID: 03395672) Partition 1: (Not Active) - (Size=465.8 GB) - (Type=0F Extended) ========================================================== Disk: 1 (Size: 465.8 GB) (Disk ID: 06BAA2EF) Partition: GPT. ========================================================== Disk: 2 (Size: 465.8 GB) (Disk ID: E5F3E7BA) Partition: GPT. ========================================================== Disk: 3 (Size: 7.2 GB) (Disk ID: 07D0DFA1) Partition: GPT. ==================== Koniec Addition.txt =======================