Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 17-03-2021 Uruchomiony przez danie (20-03-2021 15:33:26) Uruchomiony z C:\Users\danie\Downloads Windows 10 Home Wersja 2004 19041.867 (X64) (2020-11-17 10:00:19) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-2794851035-1582714509-3820221992-500 - Administrator - Disabled) danie (S-1-5-21-2794851035-1582714509-3820221992-1001 - Administrator - Enabled) => C:\Users\danie defaultuser0 (S-1-5-21-2794851035-1582714509-3820221992-1000 - Limited - Disabled) => C:\Users\defaultuser0 Gość (S-1-5-21-2794851035-1582714509-3820221992-501 - Limited - Disabled) Konto domyślne (S-1-5-21-2794851035-1582714509-3820221992-503 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-2794851035-1582714509-3820221992-504 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Spybot - Search and Destroy (Disabled - Out of date) {F77C7796-45C4-531E-0DAE-B4A8229B11C8} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.363 - Adobe) Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.363 - Adobe) Anno 1800 (HKLM-x32\...\Uplay Install 4553) (Version: - Ubisoft) Art of Murder: Klątwa Lalkarza (HKLM-x32\...\Art of Murder 2/PL-Polish_is1) (Version: - City Interactive) Asystent aktualizacji do systemu Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22329 - Microsoft Corporation) BayHubTech Flash Memory Card Windows Driver (HKLM\...\{357682C3-2295-45C5-B7DD-8109E66656EC}) (Version: 3.4.00.30 - BayHub Technology LTD.) Hidden BayHubTech Flash Memory Card Windows Driver (HKLM-x32\...\InstallShield_{357682C3-2295-45C5-B7DD-8109E66656EC}) (Version: 3.4.00.30 - BayHub Technology LTD.) Box Sync (HKLM\...\{BFA57077-F78C-4B92-815E-7BCDA6B9686E}) (Version: 4.0.7911.0 - Box, Inc.) Box Sync (HKLM-x32\...\{26296606-18a0-4495-9b84-0d1603ef0097}) (Version: 4.0.7848.0 - Box Inc.) Hidden CCleaner (HKLM\...\CCleaner) (Version: 5.77 - Piriform) CCSDK Customer Engagement Service (HKLM-x32\...\{AE75190B-11B4-4F90-8254-DAB275CF2557}_is1) (Version: 1.3.0.3 - Lenovo) ChomikBox (HKLM-x32\...\{45B8131C-E239-4BE0-A92B-0E7FE1BBF83E}) (Version: 2.0.8.2 - Chomikuj.pl) CodeBlocks (HKU\S-1-5-21-2794851035-1582714509-3820221992-1001\...\CodeBlocks) (Version: 16.01 - The Code::Blocks Team) CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.6812 - CyberLink Corp.) CyberLink PowerDVD 14 (HKLM-x32\...\{32C8E300-BDB4-4398-92C2-E9B7D8A233DB}) (Version: 14.0.1.6408 - CyberLink Corp.) Dev-C++ (HKLM-x32\...\Dev-C++) (Version: 5.11 - Bloodshed Software) Dolby Audio X2 Windows API SDK (HKLM\...\{2A027A37-B09B-44FB-B1C9-2DD6BA0014E8}) (Version: 0.7.2.61 - Dolby Laboratories, Inc.) Dolby Audio X2 Windows APP (HKLM\...\{D765CF7F-14F9-4C80-B06C-10E68F10EBCC}) (Version: 0.7.2.62 - Dolby Laboratories, Inc.) FileZilla Client 3.40.0 (HKLM-x32\...\FileZilla Client) (Version: 3.40.0 - Tim Kosse) FreeCAD 0.18.4 (HKLM\...\FreeCAD0184) (Version: 0.18.4 - FreeCAD Team) GIMP 2.10.18 (HKLM\...\GIMP-2_is1) (Version: 2.10.18 - The GIMP Team) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 88.0.4324.190 - Google LLC) Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.123 - Google Inc.) Hidden Grand Theft Auto V (HKLM-x32\...\{5EFC6C07-6B87-43FC-9524-F9E967241741}) (Version: 1.0.2189.0 - Rockstar Games) Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1177 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4474 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.8.0.1042 - Intel Corporation) Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{2D99FCC8-CC4E-4ECC-8BD0-E76896DE73FB}) (Version: 19.00.1621.3340 - Intel Corporation) Lenovo App Explorer (HKU\S-1-5-21-2794851035-1582714509-3820221992-1000\...\Host App Service) (Version: 0.271.1.400 - SweetLabs for Lenovo) <==== UWAGA Lenovo Nerve Sense (HKLM\...\{DCB4DFB5-93CA-4BDD-9D08-CE880626B46E}_is1) (Version: 2.6.11.8 - Lenovo) Lenovo OneKey Recovery (HKLM\...\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.5708 - CyberLink Corp.) Hidden Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.5708 - CyberLink Corp.) Lenovo Photo Master (HKLM-x32\...\{BC94C56A-3649-420C-8756-2ADEBE399D33}) (Version: 2.5.5720.01 - CyberLink Corp.) Lenovo Product Demo (HKLM-x32\...\{AF211959-175F-4052-8404-DD0FDBB3540B}) (Version: 1.0.5 - Lenovo) Lenovo Vantage Service (HKLM-x32\...\VantageSRV_is1) (Version: 3.5.27.0 - Lenovo Group Ltd.) LenovoUtility (HKLM-x32\...\{6ADA7E88-8D16-4D0D-BC90-2B93AC5E56DA}) (Version: 3.0.0.4 - Lenovo) Hidden LenovoUtility (HKLM-x32\...\InstallShield_{6ADA7E88-8D16-4D0D-BC90-2B93AC5E56DA}) (Version: 3.0.0.4 - Lenovo) Malwarebytes version 4.3.0.98 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.3.0.98 - Malwarebytes) Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 89.0.774.57 - Microsoft Corporation) Microsoft Help Viewer 1.0 (HKLM\...\Microsoft Help Viewer 1.0) (Version: 1.0.30319 - Microsoft Corporation) Microsoft Office Professional Plus 2016 - pl-pl (HKLM\...\ProPlusRetail - pl-pl) (Version: 16.0.13801.20294 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2794851035-1582714509-3820221992-1001\...\OneDriveSetup.exe) (Version: 19.232.1124.0012 - Microsoft Corporation) Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 3.0.40818.0 - Microsoft Corporation) Microsoft SQL Server 2008 (64-bit) (HKLM\...\Microsoft SQL Server 10 Release) (Version: - Microsoft Corporation) Microsoft SQL Server 2008 Browser (HKLM-x32\...\{C688457E-03FD-4941-923B-A27F4D42A7DD}) (Version: 10.1.2531.0 - Microsoft Corporation) Microsoft SQL Server 2008 Native Client (HKLM\...\{BBDE8A3D-64A2-43A6-95F3-C27B87DF7AC1}) (Version: 10.1.2531.0 - Microsoft Corporation) Microsoft SQL Server 2008 Setup Support Files (HKLM\...\{B40EE88B-400A-4266-A17B-E3DE64E94431}) (Version: 10.1.2731.0 - Microsoft Corporation) Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation) Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation) Microsoft SQL Server VSS Writer (HKLM\...\{0826F9E4-787E-481D-83E0-BC6A57B056D5}) (Version: 10.1.2531.0 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{99FAF70F-9B61-4AB0-9EC0-B31F98FFDC4A}) (Version: 2.75.0.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (HKLM-x32\...\{B7E38540-E355-3503-AFD7-635B2F2F76E1}) (Version: 9.0.30729.4974 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 Express - ENU (HKLM-x32\...\Microsoft Visual C++ 2010 Express - ENU) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Express Prerequisites x64 - ENU (HKLM\...\{BCA26999-EC22-3007-BB79-638913079C9A}) (Version: 10.0.30319 - Microsoft Corporation) MsmPackage (HKLM-x32\...\{8F69A3AF-D6EA-4A41-9B83-13B2893DF985}) (Version: 1.00.0000 - lenovo) Hidden MsmPackage (HKLM-x32\...\InstallShield_{8F69A3AF-D6EA-4A41-9B83-13B2893DF985}) (Version: 1.00.0000 - lenovo) Hidden MySQL Connector C++ 8.0 (HKLM\...\{1AFB36EB-4D4C-484B-8961-03ECC994FDAB}) (Version: 8.0.21 - Oracle Corporation) MySQL Connector J (HKLM-x32\...\{D291E445-5955-4748-A3FB-CC61375E798A}) (Version: 8.0.21 - Oracle Corporation) MySQL Connector Net 8.0.21 (HKLM-x32\...\{B76BB4C5-40E4-4D2C-8A18-8C85C304D084}) (Version: 8.0.21 - Oracle) MySQL Connector Python v8.0.21 (HKLM\...\{01BD1626-78A6-493F-88DA-5CFEFA2A1F12}) (Version: 8.0.21 - Oracle) MySQL Connector/ODBC 8.0 (HKLM\...\{1E923AE9-0843-4562-ABAE-E434FE1B332D}) (Version: 8.0.21 - Oracle Corporation) MySQL Documents 5.7 (HKLM-x32\...\{56F4B159-41BC-4A46-967F-39C64F36EE9D}) (Version: 5.7.31 - Oracle Corporation) MySQL Examples and Samples 5.7 (HKLM-x32\...\{C8AC4BF0-EEC1-4657-A96A-C04FBFEFCAAB}) (Version: 5.7.31 - Oracle Corporation) MySQL Installer for Windows - Community (HKLM-x32\...\{476E27D2-3208-4221-8087-54F424E4B1C4}) (Version: 1.4.35.0 - Oracle Corporation) MySQL Notifier 1.1.8 (HKLM-x32\...\{13397C33-9B69-49D8-81FA-1630D751AEE5}) (Version: 1.1.8 - Oracle) MySQL Router 8.0 (HKLM\...\{386C9A9D-9B73-44FA-980C-161D742BDB65}) (Version: 8.0.21 - Oracle Corporation) MySQL Server 5.7 (HKLM\...\{EF810728-FC5A-4DCD-AB6F-8D9B617A270A}) (Version: 5.7.31 - Oracle Corporation) MySQL Shell 8.0.21 (HKLM\...\{5F9E7853-F468-4C60-87C6-C23AF8398066}) (Version: 8.0.21 - Oracle and/or its affiliates) MySQL Workbench 8.0 CE (HKLM\...\{03F63D22-E5CA-47A4-9F02-2DDFA25EE54B}) (Version: 8.0.21 - Oracle Corporation) Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.8.7 - Notepad++ Team) NVIDIA GeForce Experience 3.13.1.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.13.1.30 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation) NVIDIA Sterownik 3D Vision 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 376.54 - NVIDIA Corporation) NVIDIA Sterownik graficzny 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.54 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.13801.20274 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.13801.20274 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.13801.20274 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0415-0000-0000000FF1CE}) (Version: 16.0.13801.20274 - Microsoft Corporation) Hidden Opera Stable 74.0.3911.218 (HKU\S-1-5-21-2794851035-1582714509-3820221992-1001\...\Opera 74.0.3911.218) (Version: 74.0.3911.218 - Opera Software) Oprogramowanie Intel® PROSet/Wireless (HKLM-x32\...\{bc883058-299e-461f-8e52-4f1dbb355f86}) (Version: 19.0.1 - Intel Corporation) Oprogramowanie mikroukładu Intel® (HKLM-x32\...\{fb610cea-ba50-4d4b-a717-cf025419035c}) (Version: 10.1.1.13 - Intel(R) Corporation) Hidden Pakiet sterowników systemu Windows - Dai Nippon Printing DS-RX1 (08/20/2014 1.1.1.0) (HKLM\...\D00FB4EBA664DCF780408C5BF10D5A5E484CE84D) (Version: 08/20/2014 1.1.1.0 - Dai Nippon Printing) Paradox Launcher v2 (HKLM\...\{A8D4AE16-519B-409D-B5B4-2647C06805AD}) (Version: 2.0.3.0 - Paradox Interactive) Pivot Animator version 4.2.7 (HKLM-x32\...\Pivot Animator_is1) (Version: 4.2.7 - Motus Software Ltd) Pulse Secure Setup Client (HKU\S-1-5-21-2794851035-1582714509-3820221992-1001\...\Juniper_Setup_Client) (Version: 8.1.101.61631 - Pulse Secure, LLC) Pulse Secure Setup Client 64-bit Activex Control (HKLM\...\Juniper_Setup_Client Activex Control) (Version: 2.1.1.1 - Pulse Secure, LLC) Pulse Secure Setup Client Activex Control (HKLM-x32\...\Juniper_Setup_Client Activex Control) (Version: 2.1.1.1 - Pulse Secure, LLC) PyCharm Community Edition 2020.2.2 (HKLM-x32\...\PyCharm Community Edition 2020.2.2) (Version: 202.7319.64 - JetBrains s.r.o.) PyScripter 3.6.4 (x64) (HKLM\...\PyScripter_is1) (Version: 3.6.4 - PyScripter) Python 3.8.6 (64-bit) (HKU\S-1-5-21-2794851035-1582714509-3820221992-1001\...\{fef707d7-d438-4dd9-bb0f-5788ee658f4f}) (Version: 3.8.6150.0 - Python Software Foundation) Python 3.8.6 Add to Path (64-bit) (HKLM\...\{0CD35A78-6567-46C1-BC82-E258D6C3D66C}) (Version: 3.8.6150.0 - Python Software Foundation) Hidden Python 3.8.6 Core Interpreter (64-bit debug) (HKLM\...\{C4597468-0A06-4858-AAB0-428635AC8631}) (Version: 3.8.6150.0 - Python Software Foundation) Hidden Python 3.8.6 Core Interpreter (64-bit symbols) (HKLM\...\{2E286B59-9B38-4382-990D-55618DC9E842}) (Version: 3.8.6150.0 - Python Software Foundation) Hidden Python 3.8.6 Core Interpreter (64-bit) (HKLM\...\{DE282FFC-F4AD-416A-8479-F3C72F94C967}) (Version: 3.8.6150.0 - Python Software Foundation) Hidden Python 3.8.6 Development Libraries (64-bit debug) (HKLM\...\{CD9540D3-9033-45A6-BAEA-5AFF28219C88}) (Version: 3.8.6150.0 - Python Software Foundation) Hidden Python 3.8.6 Development Libraries (64-bit) (HKLM\...\{59704C10-77A1-4D72-A97B-8FB2A933985B}) (Version: 3.8.6150.0 - Python Software Foundation) Hidden Python 3.8.6 Documentation (64-bit) (HKLM\...\{558E2EFE-87D5-4E3F-B050-D4DEC548EA02}) (Version: 3.8.6150.0 - Python Software Foundation) Hidden Python 3.8.6 Executables (64-bit debug) (HKLM\...\{39DC9CD8-A50A-4852-86EF-DDAD6A37A47E}) (Version: 3.8.6150.0 - Python Software Foundation) Hidden Python 3.8.6 Executables (64-bit symbols) (HKLM\...\{2F797A5F-4C84-4ECB-BCEA-BE3EDB7578EF}) (Version: 3.8.6150.0 - Python Software Foundation) Hidden Python 3.8.6 Executables (64-bit) (HKLM\...\{7F55BD37-4437-47EE-8C82-3103E19DB114}) (Version: 3.8.6150.0 - Python Software Foundation) Hidden Python 3.8.6 pip Bootstrap (64-bit) (HKLM\...\{28B1EC39-1C9F-482C-BFF7-4D347CE5ADED}) (Version: 3.8.6150.0 - Python Software Foundation) Hidden Python 3.8.6 Standard Library (64-bit debug) (HKLM\...\{E1559414-31D3-4D8A-973B-7841D19ECD18}) (Version: 3.8.6150.0 - Python Software Foundation) Hidden Python 3.8.6 Standard Library (64-bit symbols) (HKLM\...\{83074D87-E55B-44D9-9333-A50255F1268E}) (Version: 3.8.6150.0 - Python Software Foundation) Hidden Python 3.8.6 Standard Library (64-bit) (HKLM\...\{04BA74DE-13BE-477C-8FE5-19F247C0D555}) (Version: 3.8.6150.0 - Python Software Foundation) Hidden Python 3.8.6 Tcl/Tk Support (64-bit debug) (HKLM\...\{AF9E8437-B777-448D-9F84-859DE7D72031}) (Version: 3.8.6150.0 - Python Software Foundation) Hidden Python 3.8.6 Tcl/Tk Support (64-bit symbols) (HKLM\...\{95BDA574-A1AB-43CA-9512-D4E7687BBE3E}) (Version: 3.8.6150.0 - Python Software Foundation) Hidden Python 3.8.6 Tcl/Tk Support (64-bit) (HKLM\...\{79C40B8F-BC99-4FFF-8E1E-F05D246E772C}) (Version: 3.8.6150.0 - Python Software Foundation) Hidden Python 3.8.6 Test Suite (64-bit debug) (HKLM\...\{FA5ED938-64FE-447F-B7B9-5F326CAAD3C7}) (Version: 3.8.6150.0 - Python Software Foundation) Hidden Python 3.8.6 Test Suite (64-bit symbols) (HKLM\...\{8F22841C-B9A2-4F3C-B6BC-4237DA64F597}) (Version: 3.8.6150.0 - Python Software Foundation) Hidden Python 3.8.6 Test Suite (64-bit) (HKLM\...\{3968C4C7-904D-4571-BC22-1CD8B87549D7}) (Version: 3.8.6150.0 - Python Software Foundation) Hidden Python 3.8.6 Utility Scripts (64-bit) (HKLM\...\{0A041F8F-4124-46CC-B021-AB8E70A873EC}) (Version: 3.8.6150.0 - Python Software Foundation) Hidden Python Launcher (HKLM-x32\...\{3B82A91D-DB48-4160-94D2-0B8C6D2B1710}) (Version: 3.8.7205.0 - Python Software Foundation) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.9.422.2016 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7898 - Realtek Semiconductor Corp.) Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.33.319 - Rockstar Games) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.7.5 - Rockstar Games) Scratch Desktop 3.6.0 (HKLM-x32\...\bad79d23-e888-5a7b-9e99-60ee89b6c8bf) (Version: 3.6.0 - Scratch Foundation) Service Pack 1 for SQL Server 2008 (KB968369) (64-bit) (HKLM\...\KB968369) (Version: 10.1.2531.0 - Microsoft Corporation) Sql Server Customer Experience Improvement Program (HKLM\...\{2F14965D-567B-4E59-ADEB-0A2CC1E3ADDF}) (Version: 10.1.2531.0 - Microsoft Corporation) Hidden Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{3BAE4496-6F6C-4330-A8AA-B93D3D346FA5}) (Version: 2.53.0.0 - Microsoft Corporation) UpdateAssistant (HKLM\...\{F339C545-24DC-4870-AA32-6EB6B0500B95}) (Version: 1.24.0.0 - Microsoft Corporation) Hidden Uplay (HKLM-x32\...\Uplay) (Version: 83.0 - Ubisoft) Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.) Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.) Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1-2) (Version: 1.0.65.1 - LunarG, Inc.) Hidden WinRAR 5.01 (32-bitowy) (HKLM-x32\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH) XAMPP (HKLM-x32\...\xampp) (Version: 7.3.0-0 - Bitnami) Zoom (HKU\S-1-5-21-2794851035-1582714509-3820221992-1001\...\ZoomUMX) (Version: 5.4.2 (58740.1105) - Zoom Video Communications, Inc.) Packages: ========= Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2020-01-10] (Autodesk Inc.) Dodatek Aparat multimediów dla aplikacji Zdjęcia -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-11-24] (Microsoft Corporation) Google -> C:\Program Files\WindowsApps\GoogleInc.GoogleSearch_2.1.19.0_x64__yfg5n0ztvskxp [2017-12-31] (Google Inc) Lenovo Settings -> C:\Program Files\WindowsApps\LenovoCorporation.LenovoSettings_3.177.0.0_x86__4642shxvsv8s2 [2017-12-19] (LENOVO INCORPORATED.) Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2011.20.0_x64__k1h2ywk1493x8 [2020-12-16] (LENOVO INC.) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-22] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-22] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.10142.0_x64__8wekyb3d8bbwe [2020-10-21] (Microsoft Studios) [MS Ad] Portal kont Lenovo -> C:\Program Files\WindowsApps\LenovoCorporation.LenovoID_2.0.37.0_x86__4642shxvsv8s2 [2017-12-09] (LENOVO INCORPORATED.) Samsung Printer Experience -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCO.LTD.SamsungPrinterExperience_1.3.15.0_x64__3c1yjt4zspk6g [2017-12-18] (Samsung Electronics Co. Ltd.) Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0 [2020-11-13] (Spotify AB) [Startup Task] ==================== Niestandardowe rejestracje CLSID (filtrowane): ============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-2794851035-1582714509-3820221992-1001_Classes\CLSID\{4A8FCD9F-623C-4283-96F0-10F41846A98A} -> [Box Sync] => C:\Users\danie\Box Sync [2017-12-17 10:58] ShellIconOverlayIdentifiers: [ BoxSyncFileLocked] -> {06395f73-8d75-3c47-ac2f-93524a83ce03} => C:\Program Files\Box\Box Sync\IconOverlayClient.DLL [2018-05-02] (Box, Inc. -> Box, Inc.) ShellIconOverlayIdentifiers: [ BoxSyncFileLockedByOther] -> {072d2f45-ddf0-35bd-a911-38b853695def} => C:\Program Files\Box\Box Sync\IconOverlayClient.DLL [2018-05-02] (Box, Inc. -> Box, Inc.) ShellIconOverlayIdentifiers: [ BoxSyncNotSynced] -> {88092007-0d01-3d32-a4b4-56f7e19a1c49} => C:\Program Files\Box\Box Sync\IconOverlayClient.DLL [2018-05-02] (Box, Inc. -> Box, Inc.) ShellIconOverlayIdentifiers: [ BoxSyncProblem] -> {507a0531-fd10-3efc-8eb8-64e35606e542} => C:\Program Files\Box\Box Sync\IconOverlayClient.DLL [2018-05-02] (Box, Inc. -> Box, Inc.) ShellIconOverlayIdentifiers: [ BoxSyncSynced] -> {b9b9e487-7684-373f-a7a2-6b04c8d772a8} => C:\Program Files\Box\Box Sync\IconOverlayClient.DLL [2018-05-02] (Box, Inc. -> Box, Inc.) ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files\Notepad++\NppShell_06.dll [2019-01-01] (Notepad++ -> ) ContextMenuHandlers1: [BoxContextMenuClient] -> {53792c99-3144-3699-8968-fa4278ad3c1e} => C:\Program Files\Box\Box Sync\ContextMenuClient.DLL [2018-05-02] (Box, Inc. -> Box, Inc.) ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2016-08-12] (CyberLink Corp. -> Cyberlink) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2013-12-03] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2013-12-03] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2016-08-12] (CyberLink Corp. -> Cyberlink) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers4: [BoxContextMenuClient] -> {53792c99-3144-3699-8968-fa4278ad3c1e} => C:\Program Files\Box\Box Sync\ContextMenuClient.DLL [2018-05-02] (Box, Inc. -> Box, Inc.) ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_1a33d2f73651d989\igfxDTCM.dll [2018-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-12-29] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2013-12-03] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2013-12-03] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (filtrowane) ==================== ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ShortcutWithArgument: C:\Users\danie\Desktop\facebook.lnk -> C:\Users\danie\AppData\Local\Programs\Opera\launcher.exe (Opera Software) -> www.facebook.com ShortcutWithArgument: C:\Users\danie\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d249d9ddd424b688\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default ==================== Załadowane moduły (filtrowane) ============= 2020-04-18 09:34 - 2020-04-18 09:34 - 000000000 ____L (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\AppVIsvSubsystems32.dll 2020-04-18 09:34 - 2020-04-18 09:34 - 000000000 ____L (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\c2r32.dll 2020-11-17 10:25 - 2016-12-29 13:29 - 000339072 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Brak podpisu cyfrowego] C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem\_nvstapisvr64.dll 2021-02-08 23:56 - 2020-05-30 15:04 - 001638912 _____ (Robert Simpson, et al.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Lenovo\VantageService\3.5.27.0\x64\SQLite.Interop.dll 2020-12-21 19:27 - 2020-05-30 14:58 - 001280000 _____ (Robert Simpson, et al.) [Brak podpisu cyfrowego] C:\ProgramData\Lenovo\iMController\Plugins\GenericMessagingPlugin\x86\x86\SQLite.Interop.dll 2020-06-22 00:40 - 2020-04-09 08:17 - 000944840 _____ (SQLite Development Team) [Brak podpisu cyfrowego] C:\ProgramData\Lenovo\iMController\Plugins\LenovoWiFiSecurityPlugin\x86\x86\e_sqlite3.dll ==================== Alternate Data Streams (filtrowane) ======== ==================== Tryb awaryjny (filtrowane) ================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Powiązania plików (filtrowane) ================= ==================== Internet Explorer (filtrowane) ========== BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-03-05] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2021-03-05] (Microsoft Corporation -> Microsoft Corporation) DPF: HKLM-x32 {F27237D7-93C8-44C2-AC6E-D6057B9A918F} hxxps://juniper.net/dana-cached/sc/JuniperSetupClient.cab Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-03-05] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-03-05] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-03-05] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-03-05] (Microsoft Corporation -> Microsoft Corporation) (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com Wykryto więcej niż wyliczono: 7940 witryn. IE restricted site: HKU\S-1-5-21-2794851035-1582714509-3820221992-1000\...\007guard.com -> install.007guard.com IE restricted site: HKU\S-1-5-21-2794851035-1582714509-3820221992-1000\...\008i.com -> 008i.com IE restricted site: HKU\S-1-5-21-2794851035-1582714509-3820221992-1000\...\008k.com -> www.008k.com IE restricted site: HKU\S-1-5-21-2794851035-1582714509-3820221992-1000\...\00hq.com -> www.00hq.com IE restricted site: HKU\S-1-5-21-2794851035-1582714509-3820221992-1000\...\010402.com -> 010402.com IE restricted site: HKU\S-1-5-21-2794851035-1582714509-3820221992-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com IE restricted site: HKU\S-1-5-21-2794851035-1582714509-3820221992-1000\...\0scan.com -> www.0scan.com IE restricted site: HKU\S-1-5-21-2794851035-1582714509-3820221992-1000\...\1-2005-search.com -> www.1-2005-search.com IE restricted site: HKU\S-1-5-21-2794851035-1582714509-3820221992-1000\...\1-domains-registrations.com -> www.1-domains-registrations.com IE restricted site: HKU\S-1-5-21-2794851035-1582714509-3820221992-1000\...\1000gratisproben.com -> www.1000gratisproben.com IE restricted site: HKU\S-1-5-21-2794851035-1582714509-3820221992-1000\...\1001namen.com -> www.1001namen.com IE restricted site: HKU\S-1-5-21-2794851035-1582714509-3820221992-1000\...\100888290cs.com -> mir.100888290cs.com IE restricted site: HKU\S-1-5-21-2794851035-1582714509-3820221992-1000\...\100sexlinks.com -> www.100sexlinks.com IE restricted site: HKU\S-1-5-21-2794851035-1582714509-3820221992-1000\...\10sek.com -> www.10sek.com IE restricted site: HKU\S-1-5-21-2794851035-1582714509-3820221992-1000\...\12-26.net -> user1.12-26.net IE restricted site: HKU\S-1-5-21-2794851035-1582714509-3820221992-1000\...\12-27.net -> user1.12-27.net IE restricted site: HKU\S-1-5-21-2794851035-1582714509-3820221992-1000\...\123fporn.info -> www.123fporn.info IE restricted site: HKU\S-1-5-21-2794851035-1582714509-3820221992-1000\...\123haustiereundmehr.com -> www.123haustiereundmehr.com IE restricted site: HKU\S-1-5-21-2794851035-1582714509-3820221992-1000\...\123moviedownload.com -> www.123moviedownload.com IE restricted site: HKU\S-1-5-21-2794851035-1582714509-3820221992-1000\...\123simsen.com -> www.123simsen.com Wykryto więcej niż wyliczono: 7942 witryn. IE restricted site: HKU\S-1-5-21-2794851035-1582714509-3820221992-1001\...\007guard.com -> install.007guard.com IE restricted site: HKU\S-1-5-21-2794851035-1582714509-3820221992-1001\...\008i.com -> 008i.com IE restricted site: HKU\S-1-5-21-2794851035-1582714509-3820221992-1001\...\008k.com -> www.008k.com IE restricted site: HKU\S-1-5-21-2794851035-1582714509-3820221992-1001\...\00hq.com -> www.00hq.com IE restricted site: HKU\S-1-5-21-2794851035-1582714509-3820221992-1001\...\010402.com -> 010402.com IE restricted site: HKU\S-1-5-21-2794851035-1582714509-3820221992-1001\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com IE restricted site: HKU\S-1-5-21-2794851035-1582714509-3820221992-1001\...\0scan.com -> www.0scan.com IE restricted site: HKU\S-1-5-21-2794851035-1582714509-3820221992-1001\...\1-2005-search.com -> www.1-2005-search.com IE restricted site: HKU\S-1-5-21-2794851035-1582714509-3820221992-1001\...\1-domains-registrations.com -> www.1-domains-registrations.com IE restricted site: HKU\S-1-5-21-2794851035-1582714509-3820221992-1001\...\1000gratisproben.com -> www.1000gratisproben.com IE restricted site: HKU\S-1-5-21-2794851035-1582714509-3820221992-1001\...\1001namen.com -> www.1001namen.com IE restricted site: HKU\S-1-5-21-2794851035-1582714509-3820221992-1001\...\100888290cs.com -> mir.100888290cs.com IE restricted site: HKU\S-1-5-21-2794851035-1582714509-3820221992-1001\...\100sexlinks.com -> www.100sexlinks.com IE restricted site: HKU\S-1-5-21-2794851035-1582714509-3820221992-1001\...\10sek.com -> www.10sek.com IE restricted site: HKU\S-1-5-21-2794851035-1582714509-3820221992-1001\...\12-26.net -> user1.12-26.net IE restricted site: HKU\S-1-5-21-2794851035-1582714509-3820221992-1001\...\12-27.net -> user1.12-27.net IE restricted site: HKU\S-1-5-21-2794851035-1582714509-3820221992-1001\...\123fporn.info -> www.123fporn.info IE restricted site: HKU\S-1-5-21-2794851035-1582714509-3820221992-1001\...\123haustiereundmehr.com -> www.123haustiereundmehr.com IE restricted site: HKU\S-1-5-21-2794851035-1582714509-3820221992-1001\...\123moviedownload.com -> www.123moviedownload.com IE restricted site: HKU\S-1-5-21-2794851035-1582714509-3820221992-1001\...\123simsen.com -> www.123simsen.com Wykryto więcej niż wyliczono: 7940 witryn. ==================== Hosts - zawartość: ========================= (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2016-07-16 12:47 - 2021-03-17 09:46 - 000000531 _____ C:\WINDOWS\system32\drivers\etc\hosts 127.0.0.1 localhost 0.0.0.0 analytics.ff.avast.com 0.0.0.0 analytics.ns1.ff.avast.com 0.0.0.0 v7event.stats.avcdn.net 0.0.0.0 v7.stats.avcdn.net 0.0.0.0 flow.lavasoft.com 0.0.0.0 telemetry.malwarebytes.com 0.0.0.0 ws.mcafee.com 0.0.0.0 analytics.ccs.mcafee.com 0.0.0.0 analyticsdcs.ccs.mcafee.com 0.0.0.0 carcharodon.trendmicro.com 2018-03-23 06:46 - 2018-12-04 21:37 - 000000447 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics ==================== Inne obszary =========================== (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-2794851035-1582714509-3820221992-1000\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg HKU\S-1-5-21-2794851035-1582714509-3820221992-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\danie\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\20190324_142624.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Załączenie wejścia w fixlist spowoduje jego usunięcie.) MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3 MSCONFIG\Services: BoxSyncUpdateService => 3 MSCONFIG\Services: gupdate => 2 MSCONFIG\Services: gupdatem => 3 MSCONFIG\Services: McAfee WebAdvisor => 2 MSCONFIG\Services: MyWiFiDHCPDNS => 3 MSCONFIG\Services: NvContainerLocalSystem => 2 MSCONFIG\Services: Rockstar Service => 3 HKLM\...\StartupApproved\Run: => "IAStorIcon" HKLM\...\StartupApproved\Run: => "BoxSync" HKU\S-1-5-21-2794851035-1582714509-3820221992-1001\...\StartupApproved\Run: => "ChomikBox" HKU\S-1-5-21-2794851035-1582714509-3820221992-1001\...\StartupApproved\Run: => "MySQL Notifier" HKU\S-1-5-21-2794851035-1582714509-3820221992-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning" ==================== Reguły Zapory systemu Windows (filtrowane) ================ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{BEABF79E-7091-4D62-9520-71AF6A254F49}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{4553E43E-4C04-42BE-A0EA-49CB7B92A1E0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{C03012EC-8367-4051-9DA0-CD349E16E24C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{FA6E496D-3D00-404D-B964-BE2FFD2630A7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{4096701E-5789-4F20-AA9C-58F6FAC0F5A0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{F55E6248-F5F6-47E3-8606-C42E5C557B8D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{D6E7C5CF-65F0-42E9-BBDE-EFC448192495}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{334D7FC7-CC56-40A1-B876-7CD894A96984}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{EC62BEBB-9555-4C17-940F-EAD9CB086DC9}] => (Allow) C:\Users\danie\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{7A4B0FCD-2093-47D4-9286-B76DFA61A27C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes 2\RelicCoH2.exe (Relic Entertainment, Inc -> Relic Entertainment Inc.) FirewallRules: [{67CF9ABB-98FF-440A-9536-CC785F59A8A3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes 2\RelicCoH2.exe (Relic Entertainment, Inc -> Relic Entertainment Inc.) FirewallRules: [{B300B485-3AC0-4344-B48D-6D650CAE118A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Steel Division 2\SteelDivision2.exe (Eugen Systems -> ) FirewallRules: [{41A8DDA7-FCCD-4E41-A0D9-DD1D0BF37205}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Steel Division 2\SteelDivision2.exe (Eugen Systems -> ) FirewallRules: [{DB83E4D7-9FAC-475D-9723-4F9C15549424}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Steel Division\SteelDivision.exe (Eugen Systems -> ) FirewallRules: [{1C456E75-2A09-4055-A984-E4BAD0E14EDF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Steel Division\SteelDivision.exe (Eugen Systems -> ) FirewallRules: [UDP Query User{B64AF233-76F6-4137-8400-65C9F28DE080}C:\users\danie\appdata\local\programs\python\python38\python.exe] => (Allow) C:\users\danie\appdata\local\programs\python\python38\python.exe (Python Software Foundation -> Python Software Foundation) FirewallRules: [TCP Query User{FA4BD0B6-D86F-40C0-A574-599B2F48FB6D}C:\users\danie\appdata\local\programs\python\python38\python.exe] => (Allow) C:\users\danie\appdata\local\programs\python\python38\python.exe (Python Software Foundation -> Python Software Foundation) FirewallRules: [UDP Query User{6FAC4C03-582D-47B5-AC7B-7C7B76F7DCEA}C:\program files (x86)\steam\steamapps\common\hearts of iron iv\hoi4.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\hearts of iron iv\hoi4.exe (Paradox Interactive AB (publ) -> Paradox Interactive) FirewallRules: [TCP Query User{FF6245B8-1BE9-46B3-96A8-732DBB70430D}C:\program files (x86)\steam\steamapps\common\hearts of iron iv\hoi4.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\hearts of iron iv\hoi4.exe (Paradox Interactive AB (publ) -> Paradox Interactive) FirewallRules: [{776B3865-6DA8-41FA-ACE1-28D2EDFF4CCF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hearts of Iron IV\dowser.exe (Paradox Interactive AB (publ) -> ) FirewallRules: [{7EBF144E-5CD5-4898-A572-481147B4A582}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hearts of Iron IV\dowser.exe (Paradox Interactive AB (publ) -> ) FirewallRules: [{4FC63672-39D9-420E-980E-5BA86815B2A8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Decisive Campaigns The Blitzkrieg from Warsaw to Paris\autorun.exe (Slitherine Ltd -> Slitherine Publishing Ltd.) FirewallRules: [{7B86192F-507E-40BB-8A39-43AED14A910F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Decisive Campaigns The Blitzkrieg from Warsaw to Paris\autorun.exe (Slitherine Ltd -> Slitherine Publishing Ltd.) FirewallRules: [UDP Query User{40B360BE-91DA-43C6-9958-A204FE8AAAA0}C:\program files (x86)\steam\steamapps\common\panzer corps 2\panzercorps2\binaries\win64\panzercorps2-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\panzer corps 2\panzercorps2\binaries\win64\panzercorps2-win64-shipping.exe (Slitherine Software UK Limited -> Epic Games, Inc.) FirewallRules: [TCP Query User{50D1E530-116F-4073-A769-119AC7272176}C:\program files (x86)\steam\steamapps\common\panzer corps 2\panzercorps2\binaries\win64\panzercorps2-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\panzer corps 2\panzercorps2\binaries\win64\panzercorps2-win64-shipping.exe (Slitherine Software UK Limited -> Epic Games, Inc.) FirewallRules: [{D4D997FC-F7ED-4288-BFDF-D5714D0A5038}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Panzer Corps 2\Launcher.exe (Slitherine Software UK Limited -> Slitherine Ltd.) FirewallRules: [{843BB71B-3AF7-45B2-A9E1-7B4CA15C11ED}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Panzer Corps 2\Launcher.exe (Slitherine Software UK Limited -> Slitherine Ltd.) FirewallRules: [UDP Query User{D351277B-E62D-458D-9F8B-4C93DA8FB4BC}C:\users\danie\downloads\bonzai 3d 2.5.0\bonzai_trial_dl_win\bonzai3d\bonzai3d application 2.5\bonzai3d.exe] => (Allow) C:\users\danie\downloads\bonzai 3d 2.5.0\bonzai_trial_dl_win\bonzai3d\bonzai3d application 2.5\bonzai3d.exe (AutoDesSys, Inc.) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{711734E7-3F79-492F-A219-BBB3F6776176}C:\users\danie\downloads\bonzai 3d 2.5.0\bonzai_trial_dl_win\bonzai3d\bonzai3d application 2.5\bonzai3d.exe] => (Allow) C:\users\danie\downloads\bonzai 3d 2.5.0\bonzai_trial_dl_win\bonzai3d\bonzai3d application 2.5\bonzai3d.exe (AutoDesSys, Inc.) [Brak podpisu cyfrowego] FirewallRules: [{113BBF70-0951-40AF-9CFD-8BBA72A4D8E6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unity of Command 2\uoc2.exe () [Brak podpisu cyfrowego] FirewallRules: [{E94FFC4D-6920-431F-B9F8-7D974D38BD01}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unity of Command 2\uoc2.exe () [Brak podpisu cyfrowego] FirewallRules: [{358FE02F-93EF-416D-A9CF-D3FD6A23CDCA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ancestors Legacy\Anc\Binaries\Win64\Anc-Win64-Shipping.exe (Epic Games, Inc.) [Brak podpisu cyfrowego] FirewallRules: [{43DCA7B6-9350-4C83-BC00-5C8A9593A65B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ancestors Legacy\Anc\Binaries\Win64\Anc-Win64-Shipping.exe (Epic Games, Inc.) [Brak podpisu cyfrowego] FirewallRules: [{4DF6B234-35EF-440F-B0BF-45415638658D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ancestors Legacy\Launcher\DCConfig.exe (Destructive Creations) [Brak podpisu cyfrowego] FirewallRules: [{DC3F6D4D-2C6F-4C5C-A392-46131A126684}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ancestors Legacy\Launcher\DCConfig.exe (Destructive Creations) [Brak podpisu cyfrowego] FirewallRules: [{879B389E-40D8-48C4-8D99-9BD106553E48}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Oriental Empires\Oriental Empires.exe () [Brak podpisu cyfrowego] FirewallRules: [{E01CC13B-CC77-41AE-BAAC-B38DB792A1B2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Oriental Empires\Oriental Empires.exe () [Brak podpisu cyfrowego] FirewallRules: [{213702FA-5C4E-445F-BD7F-EB1704926C9F}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD.exe (CyberLink Corp. -> CyberLink Corp.) FirewallRules: [{832EEB12-5BF8-4869-9749-08924C1A61EC}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVDMovie.exe (CyberLink Corp. -> CyberLink Corp.) FirewallRules: [{A9E95641-473F-4A84-8AD7-23E72C9CE2F6}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVD Cinema\PowerDVDCinema.exe (CyberLink Corp. -> CyberLink Corp.) FirewallRules: [{A41DF384-A13A-4488-8F34-1275579252D9}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation-Wireless Connectivity Solutions -> ) FirewallRules: [{F63CFC18-5454-4BF5-8B77-A8C3396BE4DB}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{3167FFCC-6E8D-47D7-8CCE-2D1367D59392}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{9E77BF70-24B2-4818-81AE-901576904E7B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{D69C5DDC-E0B9-4C14-A856-96CC16C8560A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{1A32E39C-3E1B-4460-9D49-58D1F6E27B57}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{9D2CDA29-B15F-4D23-BB2E-53F26F3F9E76}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{0511529B-D90C-469E-AD6D-B0A4C5CD0F1D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{5A57063E-8F30-4E48-9B9D-73D7190F54BA}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{6B7DC678-99B4-47C6-9E29-6C7CD9452D0B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\theHunterCotW\theHunterCotW_F.exe () [Brak podpisu cyfrowego] FirewallRules: [{EAF82689-6D01-4978-AB4A-5FCC22F0050C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\theHunterCotW\theHunterCotW_F.exe () [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{3A185F2D-D330-469E-81C4-585927597B19}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{464BCC26-087F-433F-9FFD-563AF925E748}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{2B5AA00B-CCE1-4069-9435-94E43182540C}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe (MariaDB Corporation Ab -> ) FirewallRules: [UDP Query User{CA5B075F-6099-46A9-B7B3-08DB776D2AED}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe (MariaDB Corporation Ab -> ) FirewallRules: [{52799A8D-C402-4D75-B1A7-D020EB42D659}] => (Allow) F:\Nowy folder\Ubisoft Game Launcher\games\Anno 1800\Bin\Win64\Anno1800.exe (Blue Byte GmbH -> Ubisoft) FirewallRules: [{B949DF46-E673-4207-B164-641F6100FB16}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{B8CCAF5B-0355-49F1-9BDD-39DC4EA6328F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{0124E950-CF97-43AE-91EB-F7CCF889C01F}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{ADD18345-965D-4714-AC3C-71F7BE1D1099}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{E8C65CC0-7598-4DDA-8DB2-A1AF73D6D170}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{77BF4DE2-DE2C-481C-A5EA-6B77F346EB46}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{48C7C6AD-2CEE-40B5-85DC-CFDC4A545F65}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{E028E40B-7983-4D91-A5D1-234DF5BEC1EA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [TCP Query User{5C10459E-76AD-4799-9DEA-5CF8BF448EC0}C:\xampp\filezillaftp\filezillaserver.exe] => (Allow) C:\xampp\filezillaftp\filezillaserver.exe (FileZilla Project) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{59904B09-07C9-470D-B7A8-5A8C22418DD0}C:\xampp\filezillaftp\filezillaserver.exe] => (Allow) C:\xampp\filezillaftp\filezillaserver.exe (FileZilla Project) [Brak podpisu cyfrowego] FirewallRules: [{8C17D8E3-1DC7-4AF8-B6FD-6DCE834F358F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.66.77.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{14C46ABE-B776-4AB5-AC02-19DB9DB3A303}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.66.77.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{A35F9902-44E0-42E2-B371-2DD7820786B5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.66.77.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{592A3362-3F16-4308-976C-6A3E426DB23A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.66.77.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [TCP Query User{D9BD2C97-5FCA-4247-A203-41D67D8D4513}F:\rockstar games\grand theft auto v\gta5.exe] => (Allow) F:\rockstar games\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [UDP Query User{C02DE8F6-5932-4145-BB38-3EE97DF84577}F:\rockstar games\grand theft auto v\gta5.exe] => (Allow) F:\rockstar games\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [{5ADB7639-5BD9-46D9-ABF5-F6DA3002F0F4}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{B5682D2B-B9DF-4A1D-891A-80C42196F7CA}] => (Allow) F:\EMPIRE OF SIN\steamapps\common\EmpireOfSin\ParadoxLauncher\dowser.exe (Paradox Interactive AB (publ) -> ) FirewallRules: [{1A8B6CF3-D67E-4FDE-A1D8-D897F5E785EF}] => (Allow) F:\EMPIRE OF SIN\steamapps\common\EmpireOfSin\ParadoxLauncher\dowser.exe (Paradox Interactive AB (publ) -> ) FirewallRules: [{CCDA802C-E79C-48A7-B793-3E0644D67411}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) ==================== Punkty Przywracania systemu ========================= ==================== Wadliwe urządzenia w Menedżerze urządzeń ============ ==================== Błędy w Dzienniku zdarzeń: ======================== Dziennik Aplikacja: ================== Error: (03/20/2021 03:25:13 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas wywoływania procedury QueryFullProcessImageNameW. hr = 0x80070006, Nieprawidłowe dojście. . Operacja: Wykonywanie operacji asynchronicznej Kontekst: Stan bieżący: DoSnapshotSet Error: (03/20/2021 03:21:08 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas wywoływania procedury QueryFullProcessImageNameW. hr = 0x80070006, Nieprawidłowe dojście. . Operacja: Wykonywanie operacji asynchronicznej Kontekst: Stan bieżący: DoSnapshotSet Error: (03/20/2021 01:42:33 PM) (Source: ESENT) (EventID: 455) (User: ) Description: taskhostw (1052,R,98) WebCacheLocal: Wystąpił błąd -1032 (0xfffffbf8) podczas otwierania pliku dziennika C:\Users\danie\AppData\Local\Microsoft\Windows\WebCache\V01.log. Error: (03/20/2021 01:42:33 PM) (Source: ESENT) (EventID: 490) (User: ) Description: taskhostw (1052,R,98) WebCacheLocal: Próba otwarcia pliku „C:\Users\danie\AppData\Local\Microsoft\Windows\WebCache\V01.log” w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 (0x00000020): „Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. ”. Operacja otwierania pliku zostanie zakończona z błędem -1032 (0xfffffbf8). Error: (03/20/2021 01:42:19 PM) (Source: ESENT) (EventID: 489) (User: ) Description: CCleaner64 (15644,G,0) Próba otwarcia pliku „C:\Users\danie\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat” w trybie tylko do odczytu zakończyła się niepomyślnie z błędem systemowym 32 (0x00000020): „Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. ”. Operacja otwierania pliku zostanie zakończona z błędem -1032 (0xfffffbf8). Error: (03/20/2021 08:06:06 AM) (Source: ESENT) (EventID: 455) (User: ) Description: DllHost (21492,R,98) WebCacheLocal: Wystąpił błąd -1032 (0xfffffbf8) podczas otwierania pliku dziennika C:\Users\danie\AppData\Local\Microsoft\Windows\WebCache\V01.log. Error: (03/20/2021 08:06:05 AM) (Source: ESENT) (EventID: 490) (User: ) Description: DllHost (21492,R,98) WebCacheLocal: Próba otwarcia pliku „C:\Users\danie\AppData\Local\Microsoft\Windows\WebCache\V01.log” w trybie odczytu lub zapisu zakończyła się niepomyślnie z błędem systemowym 32 (0x00000020): „Proces nie może uzyskać dostępu do pliku, ponieważ jest on używany przez inny proces. ”. Operacja otwierania pliku zostanie zakończona z błędem -1032 (0xfffffbf8). Error: (03/18/2021 08:48:18 PM) (Source: MSSQL$SQLEXPRESS) (EventID: 8317) (User: ) Description: Cannot query value 'First Counter' associated with registry key 'HKLM\SYSTEM\CurrentControlSet\Services\MSSQL$SQLEXPRESS\Performance'. SQL Server performance counters are disabled. Dziennik System: ============= Error: (03/19/2021 09:17:33 AM) (Source: Schannel) (EventID: 4103) (User: ZARZĄDZANIE NT) Description: Wystąpił błąd krytyczny podczas tworzenia poświadczeń TLS klient. Stan błędu wewnętrznego: 10013. Error: (03/18/2021 08:51:28 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi iocbios2 z powodu następującego błędu: System Windows nie może zweryfikować podpisu cyfrowego tego pliku. Ostatnia zmiana sprzętu lub oprogramowania mogła spowodować zainstalowanie pliku, który jest niepoprawnie podpisany lub uszkodzony. Możliwe także, że jest to złośliwe oprogramowanie pochodzące z nieznanego źródła. Error: (03/18/2021 08:50:34 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Serwer zależy od usługi Sterownik serwera SMB 2.xxx, której nie można uruchomić z powodu następującego błędu: Uruchomienie usługi zależności lub grupy nie powiodło się. Error: (03/18/2021 08:50:34 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Sterownik serwera SMB 2.xxx zależy od usługi srvnet, której nie można uruchomić z powodu następującego błędu: Po uruchomieniu usługa uległa zawieszeniu w stanie startowym. Error: (03/18/2021 08:49:13 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na odpowiedź transakcji z usługi ZeroConfigService. Error: (03/18/2021 08:48:45 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa RasMan zależy od usługi SstpSvc, której nie można uruchomić z powodu następującego błędu: Operacja ukończona pomyślnie. Error: (03/18/2021 08:48:39 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: ZARZĄDZANIE NT) Description: Uruchomienie modułu rozszerzalności sieci WLAN nie powiodło się. Ścieżka modułu: C:\WINDOWS\system32\IntelWifiIhv06.dll Kod błędu: 21 Error: (03/18/2021 08:47:36 PM) (Source: Application Popup) (EventID: 56) (User: ) Description: ACPI5 Windows Defender: ================ Date: 2021-03-17 01:13:05 Description: Skanowanie produktu Program antywirusowy Microsoft Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania: {7739A789-F8BF-4223-9611-34EAE6CC5F57} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Szybkie skanowanie Użytkownik: ZARZĄDZANIE NT\SYSTEM Date: 2021-03-16 10:20:30 Description: Skanowanie produktu Program antywirusowy Microsoft Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania: {1BAE3643-769B-4E6D-B510-4B5843F9318C} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Szybkie skanowanie Użytkownik: ZARZĄDZANIE NT\SYSTEM Date: 2021-03-16 10:08:33 Description: Skanowanie produktu Program antywirusowy Microsoft Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania: {DC1C71CB-F6AD-495A-838F-5FA3BFFD30B2} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Szybkie skanowanie Użytkownik: ZARZĄDZANIE NT\SYSTEM Date: 2021-03-15 22:33:26 Description: Skanowanie produktu Program antywirusowy Microsoft Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania: {D152EFB4-6663-4207-A1CF-7B3FE1623410} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Szybkie skanowanie Użytkownik: LAPTOP-H82QJBEG\danie Date: 2021-03-07 12:44:17 Description: Skanowanie produktu Program antywirusowy Microsoft Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania: {1A16C68F-BFBC-4C69-B700-BC3F5307C640} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Szybkie skanowanie Użytkownik: ZARZĄDZANIE NT\SYSTEM Date: 2021-02-24 20:52:12 Description: Produkt Program antywirusowy Microsoft Defender napotkał błąd podczas próby aktualizacji analizy zabezpieczeń. Nowa wersja analizy zabezpieczeń: Poprzednia wersja analizy zabezpieczeń: 1.331.1015.0 Źródło aktualizacji: Centrum firmy Microsoft ds. ochrony przed złośliwym oprogramowaniem Typ analizy zabezpieczeń: Oprogramowanie antywirusowe Typ aktualizacji: Pełne Użytkownik: ZARZĄDZANIE NT\USŁUGA SIECIOWA Bieżąca wersja aparatu: Poprzednia wersja aparatu: 1.1.17800.5 Kod błędu: 0x80070102 Opis błędu: Upłynął limit czasu operacji oczekiwania. Date: 2021-02-14 07:24:38 Description: Produkt Program antywirusowy Microsoft Defender napotkał błąd podczas próby aktualizacji analizy zabezpieczeń. Nowa wersja analizy zabezpieczeń: Poprzednia wersja analizy zabezpieczeń: 1.331.789.0 Źródło aktualizacji: Centrum firmy Microsoft ds. ochrony przed złośliwym oprogramowaniem Typ analizy zabezpieczeń: Oprogramowanie antywirusowe Typ aktualizacji: Pełne Użytkownik: ZARZĄDZANIE NT\USŁUGA SIECIOWA Bieżąca wersja aparatu: Poprzednia wersja aparatu: 1.1.17800.5 Kod błędu: 0x80070102 Opis błędu: Upłynął limit czasu operacji oczekiwania. Date: 2021-02-13 08:23:14 Description: Agent ochrony w czasie rzeczywistym produktu Program antywirusowy Microsoft Defender wykrył błąd i jego uruchomienie nie powiodło się. Funkcja: Przy dostępie Kod błędu: 0x80004005 Opis błędu: Nieokreślony błąd. Przyczyna: Sterownik filtru pominął skanowanie elementów i pracuje w trybie przekazywania. Może to być spowodowane niskim stanem zasobów. Date: 2021-02-13 08:16:57 Description: Agent ochrony w czasie rzeczywistym produktu Program antywirusowy Microsoft Defender wykrył błąd i jego uruchomienie nie powiodło się. Funkcja: Przy dostępie Kod błędu: 0x80004005 Opis błędu: Nieokreślony błąd. Przyczyna: Sterownik filtru pominął skanowanie elementów i pracuje w trybie przekazywania. Może to być spowodowane niskim stanem zasobów. Date: 2021-02-05 12:01:41 Description: Agent ochrony w czasie rzeczywistym produktu Program antywirusowy Microsoft Defender wykrył błąd i jego uruchomienie nie powiodło się. Funkcja: Przy dostępie Kod błędu: 0x80004005 Opis błędu: Nieokreślony błąd. Przyczyna: Sterownik filtru pominął skanowanie elementów i pracuje w trybie przekazywania. Może to być spowodowane niskim stanem zasobów. CodeIntegrity: =============== Date: 2021-03-18 20:51:28 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2021-03-17 09:38:23 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDLicense.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2021-03-15 22:18:14 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Avast Software\Avast\AvastSvc.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2021-03-15 22:16:01 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements. ==================== Statystyki pamięci =========================== BIOS: LENOVO CDCN53WW 09/19/2016 Płyta główna: LENOVO Allsparks 5A Procesor: Intel(R) Core(TM) i7-6700HQ CPU @ 2.60GHz Procent pamięci w użyciu: 79% Całkowita pamięć fizyczna: 8019.78 MB Dostępna pamięć fizyczna: 1659.23 MB Całkowita pamięć wirtualna: 15543.13 MB Dostępna pamięć wirtualna: 6993.75 MB ==================== Dyski ================================ Drive c: (Windows) (Fixed) (Total:594.41 GB) (Free:174.09 GB) NTFS Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:22.47 GB) NTFS Drive f: (Nowy) (Fixed) (Total:292.97 GB) (Free:150.84 GB) NTFS \\?\Volume{814d9f01-c06f-4b8c-995e-182ede51ae50}\ () (Fixed) (Total:0.98 GB) (Free:0.48 GB) NTFS \\?\Volume{a038af79-bc1d-45c6-a348-3dd4367754be}\ (LENOVO_PART) (Fixed) (Total:16.91 GB) (Free:4.31 GB) NTFS \\?\Volume{278226d6-b33f-48d6-a801-e2bcbdd333fb}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32 ==================== MBR & Tablica partycji ==================== ========================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: BBD4CEA8) Partition: GPT. ==================== Koniec Addition.txt =======================