Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 05-08-2020 Uruchomiony przez Bolec (05-08-2020 16:20:34) Uruchomiony z G:\Downloads Windows 10 Pro Wersja 1903 18362.657 (X64) (2019-08-12 16:55:27) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-226881973-3223514637-4079416843-500 - Administrator - Disabled) Bolec (S-1-5-21-226881973-3223514637-4079416843-1000 - Administrator - Enabled) => C:\Users\Bolec Gość (S-1-5-21-226881973-3223514637-4079416843-501 - Limited - Disabled) Konto domyślne (S-1-5-21-226881973-3223514637-4079416843-503 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-226881973-3223514637-4079416843-504 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) 64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden 7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov) A3Launcher version 0.1.6.4 (HKLM-x32\...\{1E29A86E-9AE2-4CD8-74C8-6B170ED3C4D2}_is1) (Version: 0.1.6.4 - Maca134) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 24.0.0.180 - Adobe Systems Incorporated) Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.403 - Adobe) Adobe Reader XI (11.0.23) - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AB0000000001}) (Version: 11.0.23 - Adobe Systems Incorporated) Aktualizacje NVIDIA 38.0.5.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.5.0 - NVIDIA Corporation) Hidden ArmA3Sync 1.6.92 (HKLM-x32\...\{F097E7D7-D093-4394-9EED-43AFCCD12B7A}_is1) (Version: 1.6.92 - The [S.o.E] team) Audacity 2.3.3 (HKLM-x32\...\Audacity_is1) (Version: 2.3.3 - Audacity Team) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts) Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.8.2.48475 - Electronic Arts) Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB) BufferChm (HKLM-x32\...\{FA0FF682-CC70-4C57-93CD-E276F3E7537E}) (Version: 140.0.298.000 - Hewlett-Packard) Hidden Call of Duty Modern Warfare (HKLM-x32\...\Call of Duty Modern Warfare) (Version: - Blizzard Entertainment) CCleaner (HKLM\...\CCleaner) (Version: 5.65 - Piriform) CL-Eye Driver (HKLM-x32\...\CL-Eye Driver) (Version: 5.3.0.0341 - Code Laboratories, Inc.) CodeMeter Runtime Kit v6.50c (HKLM\...\{4D867D01-82F9-4DC7-9DB2-CFBCD785D8F6}) (Version: 6.50.2640.503 - WIBU-SYSTEMS AG) CodeMeter Runtime Kit v6.81 (HKLM\...\{45C051B6-83E7-46CE-8321-B42DC68F2A97}) (Version: 6.81.3477.500 - WIBU-SYSTEMS AG) CodeMeter Runtime Kit v6.90b (HKLM\...\{1C3053CF-2636-4DE8-A1EB-CCFB3B73F68A}) (Version: 6.90.3700.502 - WIBU-SYSTEMS AG) Copy (HKLM-x32\...\{9BE466FF-70B7-4DA8-807C-DB4C3610FDAA}) (Version: 140.0.298.000 - Hewlett-Packard) Hidden CPUID CPU-Z 1.69.2 (HKLM\...\CPUID CPU-Z_is1) (Version: - ) <==== UWAGA DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.7.0.0333 - Disc Soft Ltd) DARK SOULS REMASTERED (HKLM-x32\...\DARK SOULS REMASTERED_is1) (Version: - ) DCS World (HKLM\...\DCS World_is1) (Version: 1.5 - Eagle Dynamics) DCS World 2 OpenAlpha (HKLM\...\DCS World 2 OpenAlpha_is1) (Version: 2.0 - Eagle Dynamics) Destinations (HKLM-x32\...\{BD7204BA-DD64-499E-9B55-6A282CDF4FA4}) (Version: 140.0.253.000 - Hewlett-Packard) Hidden Detektor Winampa (HKU\S-1-5-21-226881973-3223514637-4079416843-1000\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc) DeviceDiscovery (HKLM-x32\...\{1458BB78-1DC5-4BC0-B9A3-2B644F5A8105}) (Version: 140.0.298.000 - Hewlett-Packard) Hidden DirectOutput (HKLM\...\{8D4C79F6-4581-40FF-85DA-EB76C36A4CCE}) (Version: 8.0.134.0 - Logitech) Discord (HKU\S-1-5-21-226881973-3223514637-4079416843-1000\...\Discord) (Version: 0.0.306 - Discord Inc.) DJ_AIO_06_K209a-z_SW_Min (HKLM-x32\...\{16F96835-25C8-4C13-981D-55A966371619}) (Version: 140.0.851.000 - Hewlett-Packard) Hidden Document Express DjVu Plug-in (HKLM\...\{63D38589-F9D9-4851-A37F-E142A8D14A32}) (Version: 6.1.35472 - Cuminas Corporation) Driver Sweeper wersja 3.2.0 (HKLM-x32\...\{5A67D2EA-FB70-4033-A6F3-606AD85B2015}_is1) (Version: 3.2.0 - Phyxion.net) Enemy Engaged RAH66 Comanche Vs KA52 Hokum (HKLM-x32\...\{74E03281-FA64-11D3-B8D7-0080C8FCA09C}) (Version: - ) ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB) Flight Rudder Pedals (HKLM\...\{6D9386A8-0B74-4A22-83A9-D441217AC130}) (Version: 8.0.150.0 - Logitech) Free M4a to MP3 Converter X (HKLM-x32\...\Free M4a to MP3 Converter_is1) (Version: - ManiacTools.com) GG (HKU\S-1-5-21-226881973-3223514637-4079416843-1000\...\GG) (Version: 12 - GG Network S.A.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 84.0.4147.105 - Google LLC) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden GOTHIC2 - Noc Kruka - 'Pakiet systemowy' (HKLM-x32\...\GOTHIC2 - Noc Kruka - 'Pakiet systemowy') (Version: 1.7 - World of Gothic RU © 2017) GPBaseService2 (HKLM-x32\...\{BB3447F6-9553-4AA9-960E-0DB5310C5779}) (Version: 140.0.297.000 - Hewlett-Packard) Hidden HD Tune 2.55 (HKLM-x32\...\HD Tune_is1) (Version: - EFD Software) Hitman Blood Money (HKLM-x32\...\{A804B134-F03D-4EFD-9BC0-DCD257AA1B22}) (Version: 1.00.0000 - Eidos) HOTAS WARTHOG drivers (HKLM-x32\...\{C33F3C7C-F964-4919-97D3-0C4F2A538D87}) (Version: 1.TMHW.2018 - Thrustmaster) HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP) HP Deskjet Ink Advant K209a-z All-in-One Driver Software 14.0 Rel. 6 (HKLM\...\{1415243E-E8F2-4260-8779-5B136C06BF8F}) (Version: 14.0 - HP) HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP) HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) HPPhotoGadget (HKLM-x32\...\{CAE4213F-F797-439D-BD9E-79B71D115BE3}) (Version: 140.0.524.000 - Hewlett-Packard) Hidden HPProductAssistant (HKLM-x32\...\{150B6201-E9E6-4DFB-960E-CCBD53FBDDED}) (Version: 140.0.298.000 - Hewlett-Packard) Hidden HPSSupply (HKLM-x32\...\{AC35A885-0F8F-4857-B7DA-6E8DFB43E6B3}) (Version: 140.0.297.000 - Hewlett-Packard) Hidden HyperLobby client (HKLM-x32\...\{C8201385-5EBF-4684-9089-8958A547D081}) (Version: 4.3.5 - Jiri Fojtasek) IL-2 Sturmovik 1946 (HKLM-x32\...\{79438F1E-DEC3-443D-9DCD-FECE2D68C605}) (Version: 1.00.0000 - Ubisoft) Hidden IL-2 Sturmovik 1946 (HKLM-x32\...\InstallShield_{79438F1E-DEC3-443D-9DCD-FECE2D68C605}) (Version: 1.00.0000 - Ubisoft) Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.5.69 - Intel Corporation) Java 8 Update 241 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180241F0}) (Version: 8.0.2410.7 - Oracle Corporation) K209a-z (HKLM-x32\...\{3CBE5580-B65E-48B0-B296-C0CB3A841351}) (Version: 140.0.851.000 - Hewlett-Packard) Hidden MarketResearch (HKLM-x32\...\{D360FA88-17C8-4F14-B67F-13AAF9607B12}) (Version: 140.0.212.000 - Hewlett-Packard) Hidden Microsoft Chart Controls for Microsoft .NET Framework 3.5 (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.0.0 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-226881973-3223514637-4079416843-1000\...\OneDriveSetup.exe) (Version: 20.114.0607.0002 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.23.27820 (HKLM-x32\...\{852adda4-4c78-4a38-b583-c0b360a329d6}) (Version: 14.23.27820.0 - Microsoft Corporation) MISERY 2.2.1 + GUNSLINGER Mod (HKLM-x32\...\MISERY 2.2.1 + GUNSLINGER Mod_is1) (Version: 2 - SpAa-Team) Mozilla Firefox 72.0.2 (x64 pl) (HKLM\...\Mozilla Firefox 72.0.2 (x64 pl)) (Version: 72.0.2 - Mozilla) Mozilla Firefox 79.0 (x64 pl) (HKU\S-1-5-21-226881973-3223514637-4079416843-1000\...\Mozilla Firefox 79.0 (x64 pl)) (Version: 79.0 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 66.0.5 - Mozilla) Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.63.14 - Black Tree Gaming) NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden NVIDIA Oprogramowanie systemu PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.38.26 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.26 - NVIDIA Corporation) NVIDIA Sterownik graficzny 451.67 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 451.67 - NVIDIA Corporation) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) opentrack version opentrack-2.3.9 (HKLM-x32\...\{63F53541-A29E-4B53-825A-9B6F876A2BD6}_is1) (Version: opentrack-2.3.9 - opentrack) Oprogramowanie mikroukładu Intel® (HKLM-x32\...\{bb0592a7-5772-4736-9d55-2402740085db}) (Version: 10.1.1.38 - Intel(R) Corporation) Hidden Origin (HKLM-x32\...\Origin) (Version: 10.5.78.42537 - Electronic Arts, Inc.) PBO Manager v.1.4 beta (HKLM\...\{127B5371-1802-4EDD-A25A-A43BF761D383}) (Version: 1.4.0 - ) PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.) qBittorrent 4.2.5 (HKLM-x32\...\qBittorrent) (Version: 4.2.5 - The qBittorrent project) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8010 - Realtek Semiconductor Corp.) Resident Evil 2 (HKLM-x32\...\Resident Evil 2_is1) (Version: - ) S.T.A.L.K.E.R. Call of Pripyat (HKLM-x32\...\GOGPACKSTALKERCOP_is1) (Version: 2.0.0.12 - GOG.com) Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.7.23.0 - Samsung Electronics Co., Ltd.) Scan (HKLM-x32\...\{06A1D88C-E102-4527-AF70-29FFD7AF215A}) (Version: 140.0.253.000 - Hewlett-Packard) Hidden Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP) Skype (wersja 8.58) (HKLM-x32\...\Skype_is1) (Version: 8.58 - Skype Technologies S.A.) SolutionCenter (HKLM-x32\...\{BC5DD87B-0143-4D14-AAE6-97109614DC6B}) (Version: 140.0.299.000 - Hewlett-Packard) Hidden Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform) Status (HKLM-x32\...\{5B025634-7D5B-4B8D-BE2A-7943C1CF2D5D}) (Version: 140.0.342.000 - Hewlett-Packard) Hidden Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Steel Beasts Legacy Map Installer (wersja 1.0.0.0) (HKLM\...\{13D1F94F-03A1-4C8F-8CA2-D08476AA8497}}_is1) (Version: 1.0.0.0 - eSim Games, LLC) Steel Beasts Map Tools (wersja 19.0) (HKLM\...\{020FCC04-A592-4137-93B1-A29E70149EA4}_is1) (Version: 19.0 - eSim Games, LLC) Steel Beasts Maps (wersja 1.0) (HKLM\...\{5D2B1568-2C3D-4427-B034-0FB9C5B1179F}_is1) (Version: 1.0 - eSim Games, LLC) Steel Beasts Pro PE (wersja 4.161) (HKLM\...\SB Pro PE_is1) (Version: 4.161 - eSim Games, LLC) SystemProcess (HKU\S-1-5-21-226881973-3223514637-4079416843-1000\...\SystemProcess) (Version: 1.0.0.2 - SystemProcess) TeamSpeak 3 Client (HKU\S-1-5-21-226881973-3223514637-4079416843-1000\...\TeamSpeak 3 Client) (Version: 3.1.6 - TeamSpeak Systems GmbH) The Elder Scrolls V Skyrim - Legendary Edition (HKLM-x32\...\The Elder Scrolls V Skyrim - Legendary Edition_is1) (Version: - ) Thrustmaster TARGET (HKLM-x32\...\{8036A569-CA02-4D33-A7E9-E9BC8A482E91}) (Version: 3.0.16.615 - Thrustmaster) Toolbox (HKLM-x32\...\{292F0F52-B62D-4E71-921B-89A682402201}) (Version: 140.0.596.000 - Hewlett-Packard) Hidden TrayApp (HKLM-x32\...\{CD31E63D-47FD-491C-8117-CF201D0AFAB5}) (Version: 140.0.297.000 - Hewlett-Packard) Hidden Turok 2 Seeds of Evil Remastered (HKLM-x32\...\Turok 2 Seeds of Evil Remastered_is1) (Version: - ) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation) Usługa Xperia Companion (HKLM\...\{034C1685-55DC-4C0F-A802-970803148AE0}) (Version: 2.4.3.0 - Sony) Hidden VEGAS Pro 14.0 (64-bit) (HKLM\...\{4C79D80F-79F9-11E6-8402-BB95F5A309BD}) (Version: 14.0.161 - VEGAS) VoiceAttack (HKLM-x32\...\{75E13F4F-139E-4CCA-A5A5-7476E4C5484D}) (Version: 1.4 - VoiceAttack.com) VoiceAttack version 1.8.3 (HKLM-x32\...\{D6EDF6DB-029E-4A34-A3A0-D960CB0FCB2A}_is1) (Version: 1.8.3 - VoiceAttack.com) WebReg (HKLM-x32\...\{8EE94FD8-5F52-4463-A340-185D16328158}) (Version: 140.0.297.017 - Hewlett-Packard) Hidden Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc) WinRAR 5.50 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH) WinRAR 5.90 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.90.0 - win.rar GmbH) WS Launcher (HKLM-x32\...\{07641FAF-9E04-484B-A4B6-35D29ECC0045}) (Version: 37.0.5.4 - WS.ARMA.SU) Hidden WS Launcher (HKLM-x32\...\WS Launcher 37.0.5.4) (Version: 37.0.5.4 - WS.ARMA.SU) X52 Professional H.O.T.A.S. (HKLM\...\{33B85A73-6242-4CB7-B555-CE3D225FA75F}) (Version: 8.0.134.0 - Logitech) Xperia Companion (HKLM-x32\...\{C32507B2-D80A-45DD-8D31-31858292C91C}) (Version: 2.4.3.0 - Sony) Hidden Xperia Companion (HKLM-x32\...\{f7c475f1-4d2f-48c3-b5d1-6ffc35a6828a}) (Version: 2.4.3.0 - Sony) Packages: ========= HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_115.1.152.0_x64__v10z8vjag6ke6 [2020-05-29] (HP Inc.) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-04-19] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-04-19] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.7162.0_x64__8wekyb3d8bbwe [2020-07-22] (Microsoft Studios) [MS Ad] MSN Pogoda -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-04-19] (Microsoft Corporation) [MS Ad] NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.958.0_x64__56jybvy8sckqj [2020-06-23] (NVIDIA Corp.) Schowek -> C:\Program Files\WindowsApps\11361JustinChase.Clipboard_1.6.0.18_neutral__aahkhnxzpwnc4 [2020-04-19] (Justin Chase) ==================== Niestandardowe rejestracje CLSID (filtrowane): ============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Brak podpisu cyfrowego] ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => G:\Programy\DAEMON Tools Lite\DTShl64.dll [2017-12-15] (Disc Soft Ltd -> Disc Soft Ltd) ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => G:\Programy\DAEMON Tools Lite\DTShl64.dll [2017-12-15] (Disc Soft Ltd -> Disc Soft Ltd) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Brak podpisu cyfrowego] ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> Brak pliku ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Brak pliku ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_edab19158bdd0d0a\nvshext.dll [2020-07-07] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Brak podpisu cyfrowego] ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (filtrowane) ==================== ==================== Skróty & WMI ======================== ==================== Załadowane moduły (filtrowane) ============= 2020-08-05 16:05 - 2020-08-05 16:05 - 000018944 _____ () [Brak podpisu cyfrowego] C:\Users\Bolec\AppData\Local\Temp\WPLD249.tmp\ml_online.lng 2020-08-05 16:05 - 2020-08-05 16:05 - 000035328 _____ () [Brak podpisu cyfrowego] C:\Users\Bolec\AppData\Local\Temp\WPLD249.tmp\ombrowser.lng 2013-12-13 04:47 - 2013-12-13 04:47 - 000333824 _____ () [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\freeform\wacs\freetype\freetype.wac 2013-12-12 18:07 - 2013-12-12 18:07 - 000193024 _____ (Darren Owen aka DrO) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\gen_jumpex.dll 2013-12-10 00:46 - 2013-12-10 00:46 - 000010752 _____ (Darren Owen aka DrO) [Brak podpisu cyfrowego] G:\Programy\Winamp\System\UnicodeTaskbarFix.w5s 2018-07-17 15:05 - 2016-04-14 17:22 - 000036864 _____ (Guillemot Corporation) [Brak podpisu cyfrowego] C:\Program Files (x86)\Thrustmaster\TARGET\cint.dll 2018-07-17 15:05 - 2016-04-14 11:46 - 001036800 _____ (Guillemot Corporation) [Brak podpisu cyfrowego] C:\Program Files (x86)\Thrustmaster\TARGET\TmCommon.dll 2018-07-17 15:05 - 2016-10-31 10:15 - 000190464 _____ (Guillemot Corporation) [Brak podpisu cyfrowego] C:\Program Files (x86)\Thrustmaster\TARGET\TmHidControl.dll 2010-08-06 11:15 - 2010-08-06 11:15 - 000071680 _____ (Hewlett-Packard) [Brak podpisu cyfrowego] c:\windows\system32\hpzinw12.dll 2010-08-06 11:15 - 2010-08-06 11:15 - 000089600 _____ (Hewlett-Packard) [Brak podpisu cyfrowego] c:\windows\system32\hpzipm12.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000017920 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Components\ssdp.w6c 2013-12-13 04:47 - 2013-12-13 04:47 - 000621568 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\jnetlib.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000260096 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\libsndfile.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000086528 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\nde.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000418816 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\nsutil.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000029184 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\nxlite.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000051712 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\gen_crasher.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 001710080 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\gen_ff.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000031232 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\gen_hotkeys.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000330240 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\gen_ml.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000026624 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\gen_tray.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000070144 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\in_avi.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000086528 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\in_cdda.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000073216 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\in_dshow.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000049664 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\in_flac.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000044032 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\in_flv.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000008192 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\in_linein.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000112128 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\in_midi.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000041472 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\in_mkv.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000164864 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\in_mod.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000269824 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\in_mp3.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000054784 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\in_mp4.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000077824 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\in_nsv.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000024064 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\in_swf.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000247808 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\in_vorbis.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000024064 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\in_wave.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000313856 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\in_wm.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000028160 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\ml_autotag.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000031744 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\ml_bookmarks.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000226816 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\ml_devices.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000200192 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\ml_disc.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000057856 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\ml_downloads.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000061440 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\ml_history.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000053760 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\ml_impex.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000328704 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\ml_local.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000023040 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\ml_nowplaying.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000139776 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\ml_online.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000112128 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\ml_playlists.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000085504 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\ml_plg.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000287232 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\ml_pmp.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000038912 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\ml_rg.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000033792 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\ml_transcode.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000126976 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\ml_wire.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000024576 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\out_disk.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000053760 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\out_ds.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000019968 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\out_wave.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000058368 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\pmp_android.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000160768 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\pmp_ipod.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000020992 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\pmp_njb.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000113664 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\pmp_p4s.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000053248 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\pmp_usb.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000078336 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\Plugins\pmp_wifi.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000026112 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\System\albumart.w5s 2013-12-13 04:47 - 2013-12-13 04:47 - 000170496 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\System\auth.w5s 2013-12-13 04:47 - 2013-12-13 04:47 - 000018944 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\System\bmp.w5s 2013-12-13 04:47 - 2013-12-13 04:47 - 000034304 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\System\devices.w5s 2013-12-13 04:47 - 2013-12-13 04:47 - 000018432 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\System\dlmgr.w5s 2013-12-13 04:47 - 2013-12-13 04:47 - 000015360 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\System\filereader.w5s 2013-12-13 04:47 - 2013-12-13 04:47 - 000019968 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\System\gif.w5s 2013-12-13 04:47 - 2013-12-13 04:47 - 000017408 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\System\gracenote.w5s 2013-12-13 04:47 - 2013-12-13 04:47 - 000624640 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\System\jnetlib.w5s 2013-12-13 04:47 - 2013-12-13 04:47 - 000156672 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\System\jpeg.w5s 2013-12-13 04:47 - 2013-12-13 04:47 - 000309248 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\System\ombrowser.w5s 2013-12-13 04:47 - 2013-12-13 04:47 - 000088576 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\System\playlist.w5s 2013-12-13 04:47 - 2013-12-13 04:47 - 000086016 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\System\png.w5s 2013-12-13 04:47 - 2013-12-13 04:47 - 000014848 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\System\primo.w5s 2013-12-13 04:47 - 2013-12-13 04:47 - 000024064 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\System\tagz.w5s 2013-12-13 04:47 - 2013-12-13 04:47 - 000033792 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\System\timer.w5s 2013-12-13 04:47 - 2013-12-13 04:47 - 000046592 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\System\wasabi2.w5s 2013-12-13 04:47 - 2013-12-13 04:47 - 000089088 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\System\xml.w5s 2013-12-13 04:47 - 2013-12-13 04:47 - 000017408 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\System\xspf.w5s 2013-12-13 04:47 - 2013-12-13 04:47 - 000088576 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\tataki.dll 2013-12-13 04:47 - 2013-12-13 04:47 - 000044544 _____ (Nullsoft, Inc.) [Brak podpisu cyfrowego] G:\Programy\Winamp\zlib.dll 2020-04-05 00:23 - 2020-07-25 13:45 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Brak podpisu cyfrowego] G:\Gry\Origin\LIBEAY32.dll 2020-07-30 21:08 - 2020-07-25 13:45 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Brak podpisu cyfrowego] G:\Gry\Origin\ssleay32.dll 2019-12-13 19:16 - 2019-05-29 16:24 - 003438592 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Brak podpisu cyfrowego] G:\Gry\eSim Games\Steel Beasts Map Tools\Service\libcrypto-1_1-x64.dll 2019-12-13 19:16 - 2019-05-29 16:24 - 000681472 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Brak podpisu cyfrowego] G:\Gry\eSim Games\Steel Beasts Map Tools\Service\libssl-1_1-x64.dll 2020-07-30 21:08 - 2020-07-25 13:45 - 001611264 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] G:\Gry\Origin\platforms\qwindows.dll 2020-07-30 21:08 - 2020-07-25 13:45 - 005487104 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] G:\Gry\Origin\Qt5Core.dll 2020-07-30 21:08 - 2020-07-25 13:45 - 005841920 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] G:\Gry\Origin\Qt5Gui.dll 2020-07-30 21:08 - 2020-07-25 13:45 - 001179136 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] G:\Gry\Origin\Qt5Network.dll 2020-07-30 21:08 - 2020-07-25 13:45 - 000146432 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] G:\Gry\Origin\Qt5WebSockets.dll 2020-07-30 21:08 - 2020-07-25 13:45 - 005089792 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] G:\Gry\Origin\Qt5Widgets.dll 2020-07-30 21:08 - 2020-07-25 13:45 - 000184832 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] G:\Gry\Origin\Qt5Xml.dll ==================== Alternate Data Streams (filtrowane) ======== (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\Windows:CM_467966017b2708896d2ec2074b149b2f69bc04f9d690a9d7151934997b7c2c3f [74] AlternateDataStreams: C:\Windows:CM_e08bc79816be16ea05711ed994c91037ee62506984bf8b264f9dc5f27d7e1bd1 [74] ==================== Tryb awaryjny (filtrowane) ================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMInstallerService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMInstallerService => ""="Service" ==================== Powiązania plików (filtrowane) ================= ==================== Internet Explorer - Witryny zaufane i z ograniczeniami ========== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) IE trusted site: HKU\S-1-5-21-226881973-3223514637-4079416843-1000\...\localhost -> localhost IE trusted site: HKU\S-1-5-21-226881973-3223514637-4079416843-1000\...\webcompanion.com -> hxxp://webcompanion.com ==================== Hosts - zawartość: ========================= (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 04:34 - 2009-06-10 23:00 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Inne obszary =========================== (Obecnie brak automatycznej naprawy dla tej sekcji.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Cuminas\Document Express DjVu Plug-in\;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\ HKU\S-1-5-21-226881973-3223514637-4079416843-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Bolec\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\joe-gloria-kairo-kamov-ka50.jpg DNS Servers: 192.168.100.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Brak pliku) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Załączenie wejścia w fixlist spowoduje jego usunięcie.) HKLM\...\StartupApproved\StartupFolder: => "HP Digital Imaging Monitor.lnk" HKLM\...\StartupApproved\Run: => "SecurityHealth" HKLM\...\StartupApproved\Run: => "X52 Professional" HKLM\...\StartupApproved\Run32: => "HP Software Update" HKU\S-1-5-21-226881973-3223514637-4079416843-1000\...\StartupApproved\Run: => "Discord" HKU\S-1-5-21-226881973-3223514637-4079416843-1000\...\StartupApproved\Run: => "GG" HKU\S-1-5-21-226881973-3223514637-4079416843-1000\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-226881973-3223514637-4079416843-1000\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-226881973-3223514637-4079416843-1000\...\StartupApproved\Run: => "DAEMON Tools Lite Automount" HKU\S-1-5-21-226881973-3223514637-4079416843-1000\...\StartupApproved\Run: => "Gaijin.Net Agent" HKU\S-1-5-21-226881973-3223514637-4079416843-1000\...\StartupApproved\Run: => "CCleaner Smart Cleaning" HKU\S-1-5-21-226881973-3223514637-4079416843-1000\...\StartupApproved\Run: => "Skype for Desktop" HKU\S-1-5-21-226881973-3223514637-4079416843-1000\...\StartupApproved\Run: => "Gaijin.Net Updater" HKU\S-1-5-21-226881973-3223514637-4079416843-1000\...\StartupApproved\Run: => "XperiaCompanionAgent" ==================== Reguły Zapory systemu Windows (filtrowane) ================ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{A57FECA0-40FB-4651-8909-4A6DDB2DE838}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{77393C04-484A-481F-8827-5BEEF2854037}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{B213FDF5-0DCF-4DFB-BA48-0A35474EBA22}] => (Block) G:\gry\razorworks\cohokum\cohokum.exe () [Brak podpisu cyfrowego] FirewallRules: [{C99D9C66-8FBB-4B12-8387-EFF3C8F6C498}] => (Block) G:\gry\razorworks\cohokum\cohokum.exe () [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{F556468C-BD43-4B07-8F5C-90801559F8C5}G:\gry\razorworks\cohokum\cohokum.exe] => (Allow) G:\gry\razorworks\cohokum\cohokum.exe () [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{167B0BC8-7DCB-4341-A1D7-6D6E1B89CEC7}G:\gry\razorworks\cohokum\cohokum.exe] => (Allow) G:\gry\razorworks\cohokum\cohokum.exe () [Brak podpisu cyfrowego] FirewallRules: [{B6B2E69E-86E5-4301-A868-546744A7374D}] => (Allow) G:\Gry\Tacview\Tacview64.exe => Brak pliku FirewallRules: [{B8BEBC95-73FB-4201-80D4-B72322F0B13E}] => (Allow) G:\Gry\Tacview\Tacview64.exe => Brak pliku FirewallRules: [{7E6A8BA2-1DE0-4213-8FE2-8E2ACBF1E7E2}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe (Hewlett-Packard Company -> Hewlett-Packard) FirewallRules: [{89541DF4-DF64-41FA-BDE5-85DB3C6136F5}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe (Hewlett Packard -> Hewlett-Packard Co.) [Brak podpisu cyfrowego] FirewallRules: [{D05B8CBB-1633-4C87-809D-E7C842CEE203}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe (Hewlett Packard -> Hewlett-Packard Co.) [Brak podpisu cyfrowego] FirewallRules: [{8BE3D53A-F8C2-4F2A-902B-BB91A2FC983D}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe (Hewlett Packard -> Hewlett-Packard) FirewallRules: [{4A65A680-D60C-4D74-AC13-2D89AC89D6F9}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{9725EF99-16DC-4BB2-8725-CDA8F5FEBE71}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{2120D289-EC10-4BAB-A30B-E4D103BA18FB}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{D4FD35FF-9A12-469F-AA82-8D6AE51F7179}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{08EEFDF8-AB2A-4F68-B578-017ACAAFCCEB}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcopy2.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{CACC9CA3-651B-4F45-A243-5547FC92F4D0}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{9C4E4465-979C-4F5A-B0EC-3834589B0E6F}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{FEDE52AC-6CD1-42BD-9C2B-31AB105B1365}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{49746C37-A989-454B-BE50-031C5CB3E6DA}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{8560B294-764D-4D77-888F-44561D952901}] => (Allow) C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanion.exe (Sony Mobile Communications AB -> Sony) FirewallRules: [{9E2FFC6B-08F7-4D00-84D2-EB8A346F44E2}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{DA4F59AF-9640-4957-B550-E2273776C9EF}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{F7D1ACE7-44EE-425B-881C-1DF037BD9C6E}] => (Allow) G:\Programy\qBittorrent\qbittorrent.exe () [Brak podpisu cyfrowego] FirewallRules: [{DB9EBE1D-ACEA-4DBF-B42A-53F6E8972705}] => (Allow) G:\Programy\qBittorrent\qbittorrent.exe () [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{C011173D-9F8A-4428-9438-57B69596D248}G:\programy\dcs-simpleradio-standalone\dcs-simpleradio-standalone\sr-clientradio.exe] => (Allow) G:\programy\dcs-simpleradio-standalone\dcs-simpleradio-standalone\sr-clientradio.exe (Open Source Developer, Ciaran Fisher -> Ciribob - GitHub.com/Ciribob) FirewallRules: [TCP Query User{A6755861-9A66-4229-A17F-735EF05C30F1}G:\programy\dcs-simpleradio-standalone\dcs-simpleradio-standalone\sr-clientradio.exe] => (Allow) G:\programy\dcs-simpleradio-standalone\dcs-simpleradio-standalone\sr-clientradio.exe (Open Source Developer, Ciaran Fisher -> Ciribob - GitHub.com/Ciribob) FirewallRules: [{FEC361DD-D0CF-4518-BD43-895A0485750E}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd) FirewallRules: [{11C6042D-6387-4C5E-B90A-E31434A5CC88}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd) FirewallRules: [{6268E870-5F32-46CF-BBDA-649197566560}] => (Allow) G:\Gry\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{2C7F20B4-9BDA-4B77-96F3-ED3C7AF5F6D5}] => (Allow) G:\Gry\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [UDP Query User{ED4F18F9-8826-4E71-9849-C67556DF429A}G:\programy\dcs-simpleradio-standalone\dcs-simpleradio-standalone\sr-clientradio.exe] => (Allow) G:\programy\dcs-simpleradio-standalone\dcs-simpleradio-standalone\sr-clientradio.exe (Open Source Developer, Ciaran Fisher -> Ciribob - GitHub.com/Ciribob) FirewallRules: [TCP Query User{6B1E7094-8C5B-4807-BE69-0E26812760DA}G:\programy\dcs-simpleradio-standalone\dcs-simpleradio-standalone\sr-clientradio.exe] => (Allow) G:\programy\dcs-simpleradio-standalone\dcs-simpleradio-standalone\sr-clientradio.exe (Open Source Developer, Ciaran Fisher -> Ciribob - GitHub.com/Ciribob) FirewallRules: [{A3CC5CB0-0464-48F2-8084-270D4C7247CF}] => (Block) G:\gry\eagle dynamics\dcs world\bin\dcs_updater.exe (The Fighter Collection -> Eagle Dynamics) FirewallRules: [{A2BB028E-CC90-4F44-9336-6FEA26A653E6}] => (Block) G:\gry\eagle dynamics\dcs world\bin\dcs_updater.exe (The Fighter Collection -> Eagle Dynamics) FirewallRules: [UDP Query User{C9F9B06B-8F5C-4C90-BC1F-EFA600D38A00}G:\gry\eagle dynamics\dcs world\bin\dcs_updater.exe] => (Allow) G:\gry\eagle dynamics\dcs world\bin\dcs_updater.exe (The Fighter Collection -> Eagle Dynamics) FirewallRules: [TCP Query User{CD436AEC-B324-4ADE-99D2-2C20513983F6}G:\gry\eagle dynamics\dcs world\bin\dcs_updater.exe] => (Allow) G:\gry\eagle dynamics\dcs world\bin\dcs_updater.exe (The Fighter Collection -> Eagle Dynamics) FirewallRules: [{0CDBE28D-9FE6-4264-8D98-7B649790809C}] => (Block) G:\gry\steam\steamapps\common\arma 3\arma3_x64.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive) FirewallRules: [{1010B5A9-52F7-4A20-9134-A6438835EC5B}] => (Block) G:\gry\steam\steamapps\common\arma 3\arma3_x64.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive) FirewallRules: [UDP Query User{281685BE-8DED-4113-8C03-4D7BFD77B184}G:\gry\steam\steamapps\common\arma 3\arma3_x64.exe] => (Allow) G:\gry\steam\steamapps\common\arma 3\arma3_x64.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive) FirewallRules: [TCP Query User{939C0EBF-473B-4CB2-89B2-1B6373F021B7}G:\gry\steam\steamapps\common\arma 3\arma3_x64.exe] => (Allow) G:\gry\steam\steamapps\common\arma 3\arma3_x64.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive) FirewallRules: [{6F233DC7-3785-43B9-AF98-65BCFA02A3B8}] => (Allow) G:\Programy\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.) FirewallRules: [{AEB9545C-91DB-4EAB-BE27-92E303AF57E3}] => (Allow) G:\Programy\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.) FirewallRules: [{BBFB528D-A6A0-4340-A656-B3B4AAE5580D}] => (Allow) G:\Gry\Steam\steamapps\common\Arma 3\arma3launcher.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive) FirewallRules: [{816DE9AD-0E52-422F-BA72-D438A85B9538}] => (Allow) G:\Gry\Steam\steamapps\common\Arma 3\arma3launcher.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive) FirewallRules: [{DD81B658-776B-4328-B0BB-0C62BAF81F62}] => (Allow) G:\Gry\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{B6BA8A1E-EF12-4B61-8C54-D688230F8468}] => (Allow) G:\Gry\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [TCP Query User{EED9CCB7-E5F5-4E0D-BE54-D9B6E8EADC20}G:\gry\eagle dynamics\dcs world\bin\dcs.exe] => (Allow) G:\gry\eagle dynamics\dcs world\bin\dcs.exe (The Fighter Collection -> Eagle Dynamics) FirewallRules: [UDP Query User{4E095F06-1AA2-4015-8652-D066185E0302}G:\gry\eagle dynamics\dcs world\bin\dcs.exe] => (Allow) G:\gry\eagle dynamics\dcs world\bin\dcs.exe (The Fighter Collection -> Eagle Dynamics) FirewallRules: [{37A0C5D0-EF5D-41C4-82BE-B0DA754FE3E5}] => (Block) G:\gry\eagle dynamics\dcs world\bin\dcs.exe (The Fighter Collection -> Eagle Dynamics) FirewallRules: [{DE0E564B-CE45-4E2C-9F30-582A1B2B6327}] => (Block) G:\gry\eagle dynamics\dcs world\bin\dcs.exe (The Fighter Collection -> Eagle Dynamics) FirewallRules: [{4A51EF74-053F-4ECD-B434-910257EE974F}] => (Allow) G:\Programy\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (Disc Soft Ltd -> Disc Soft Ltd) FirewallRules: [TCP Query User{48B6FE35-0F60-49F8-BAC8-1E036EFB3AC8}G:\gry\eagle dynamics\dcs world 2 openalpha\bin\dcs_updater.exe] => (Allow) G:\gry\eagle dynamics\dcs world 2 openalpha\bin\dcs_updater.exe (The Fighter Collection -> Eagle Dynamics) FirewallRules: [UDP Query User{39E16979-B284-4FD3-B664-490A6746E081}G:\gry\eagle dynamics\dcs world 2 openalpha\bin\dcs_updater.exe] => (Allow) G:\gry\eagle dynamics\dcs world 2 openalpha\bin\dcs_updater.exe (The Fighter Collection -> Eagle Dynamics) FirewallRules: [{5026AE2F-FF83-4222-9A00-8BE4389B59CA}] => (Block) G:\gry\eagle dynamics\dcs world 2 openalpha\bin\dcs_updater.exe (The Fighter Collection -> Eagle Dynamics) FirewallRules: [{7B0DE147-5B2D-474D-8D42-FD181919987D}] => (Block) G:\gry\eagle dynamics\dcs world 2 openalpha\bin\dcs_updater.exe (The Fighter Collection -> Eagle Dynamics) FirewallRules: [TCP Query User{5E10DFCF-B8DA-4DF3-91B5-2349F68256E8}G:\gry\eagle dynamics\dcs world 2 openalpha\bin\dcs.exe] => (Allow) G:\gry\eagle dynamics\dcs world 2 openalpha\bin\dcs.exe (The Fighter Collection -> Eagle Dynamics) FirewallRules: [UDP Query User{8F04E7FC-CBAA-4B57-8FE1-C1535580E034}G:\gry\eagle dynamics\dcs world 2 openalpha\bin\dcs.exe] => (Allow) G:\gry\eagle dynamics\dcs world 2 openalpha\bin\dcs.exe (The Fighter Collection -> Eagle Dynamics) FirewallRules: [{9F9995DF-99DF-4A23-88F9-58CE49ABC773}] => (Block) G:\gry\eagle dynamics\dcs world 2 openalpha\bin\dcs.exe (The Fighter Collection -> Eagle Dynamics) FirewallRules: [{F416468A-DB55-4333-8023-5311C9E272CE}] => (Block) G:\gry\eagle dynamics\dcs world 2 openalpha\bin\dcs.exe (The Fighter Collection -> Eagle Dynamics) FirewallRules: [{FD91D7D1-D997-4930-915C-5F89CA4B9225}] => (Allow) G:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe (Electronic Arts -> EA Digital Illusions CE AB) FirewallRules: [{70921A18-281D-430F-B2E9-240CC115D8C8}] => (Allow) G:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe (Electronic Arts -> EA Digital Illusions CE AB) FirewallRules: [TCP Query User{94A4C6E1-DACD-410D-9FD1-454B8B4D1DEA}G:\programy\mozilla firefox\firefox.exe] => (Block) G:\programy\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [UDP Query User{20A631FE-9AF4-458C-87C7-C3A385BE53A2}G:\programy\mozilla firefox\firefox.exe] => (Block) G:\programy\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{C26A0F8F-9E75-4AB7-B2EE-AF2C10873380}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> ) FirewallRules: [{F061687C-40E4-4A6B-9B0F-BA5B2461C4D4}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> ) FirewallRules: [{E9EF9960-142F-41D9-AA4B-9A1DD65FEDE9}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> ) FirewallRules: [{9A5E4F97-1764-47F2-A094-21845FA23F91}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> ) FirewallRules: [{4284DA7F-C9D6-46CC-B947-24CA03B5E4DE}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB) FirewallRules: [{1504DAF3-B794-421B-B481-B582C7D64CAA}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB) FirewallRules: [{E7C83D1F-5287-4DED-9956-52E78BAFAF79}] => (Allow) G:\Program Files (x86)\Origin Games\Battlefield 4\BFLauncher.exe (Electronic Arts -> EA Digital Illusions CE AB) FirewallRules: [{76FE8B27-9B93-44B9-98E5-0202E988FAA0}] => (Allow) G:\Program Files (x86)\Origin Games\Battlefield 4\BFLauncher.exe (Electronic Arts -> EA Digital Illusions CE AB) FirewallRules: [{B94D8099-E0CC-4E91-A79C-12CCE2AA4D38}] => (Allow) G:\Program Files (x86)\Origin Games\Battlefield 4\BFLauncher_x86.exe (Electronic Arts -> EA Digital Illusions CE AB) FirewallRules: [{26CBCDF2-BCC5-4AFD-85E7-5A82AD04E615}] => (Allow) G:\Program Files (x86)\Origin Games\Battlefield 4\BFLauncher_x86.exe (Electronic Arts -> EA Digital Illusions CE AB) FirewallRules: [TCP Query User{E0EEBDC2-B087-4802-AB0E-A03669169378}G:\program files (x86)\origin games\battlefield 4\bf4.exe] => (Allow) G:\program files (x86)\origin games\battlefield 4\bf4.exe (Electronic Arts -> EA Digital Illusions CE AB) FirewallRules: [UDP Query User{6DC11ECE-E7CB-44D8-A9E7-D287685AEBB4}G:\program files (x86)\origin games\battlefield 4\bf4.exe] => (Allow) G:\program files (x86)\origin games\battlefield 4\bf4.exe (Electronic Arts -> EA Digital Illusions CE AB) FirewallRules: [{332A5CF0-1FA9-4915-A98E-F082DC7524A6}] => (Block) G:\program files (x86)\origin games\battlefield 4\bf4.exe (Electronic Arts -> EA Digital Illusions CE AB) FirewallRules: [{4E1A42B9-87E2-4037-8DC5-AD7FBDD54C16}] => (Block) G:\program files (x86)\origin games\battlefield 4\bf4.exe (Electronic Arts -> EA Digital Illusions CE AB) FirewallRules: [TCP Query User{BB96D698-4100-4816-AD7F-FEFC774F5C89}G:\program files (x86)\origin games\battlefield 4\bf4_x86.exe] => (Allow) G:\program files (x86)\origin games\battlefield 4\bf4_x86.exe (Electronic Arts -> EA Digital Illusions CE AB) FirewallRules: [UDP Query User{39BEE7E9-9147-4487-9A37-2A5B5DE1AEB6}G:\program files (x86)\origin games\battlefield 4\bf4_x86.exe] => (Allow) G:\program files (x86)\origin games\battlefield 4\bf4_x86.exe (Electronic Arts -> EA Digital Illusions CE AB) FirewallRules: [{4804C675-647F-44BC-B2A5-1E5F3783FB33}] => (Block) G:\program files (x86)\origin games\battlefield 4\bf4_x86.exe (Electronic Arts -> EA Digital Illusions CE AB) FirewallRules: [{C5EF93D2-3947-4BEF-86C3-8994885884DE}] => (Block) G:\program files (x86)\origin games\battlefield 4\bf4_x86.exe (Electronic Arts -> EA Digital Illusions CE AB) FirewallRules: [{B0B4FE60-7DD6-476D-98AB-6B23B326C7FA}] => (Allow) G:\Gry\Steam\steamapps\common\War Thunder\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment) FirewallRules: [{38ABE7F3-F3D9-4AC8-8F69-7AA2ABB2A652}] => (Allow) G:\Gry\Steam\steamapps\common\War Thunder\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment) FirewallRules: [TCP Query User{F0268477-5B5D-435A-9644-C623B77675AC}G:\gry\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) G:\gry\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment) FirewallRules: [UDP Query User{FC1CB7EF-D95A-4794-8B02-DE466C2B69AB}G:\gry\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) G:\gry\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment) FirewallRules: [{EA2D84DA-6A3B-4E88-AE0F-EC191AC07FD9}] => (Block) G:\gry\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment) FirewallRules: [{40CFBC4C-D12A-4270-847C-AA01B5C10E02}] => (Block) G:\gry\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment) FirewallRules: [{F6544AAA-9E4F-45F6-90AD-CDC3481754EE}] => (Allow) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) FirewallRules: [TCP Query User{DEAF37E2-7807-4C0E-A45D-2D6E24D4AB5E}G:\gry\esim games\sb pro pe\release\sbprope64cm.exe] => (Allow) G:\gry\esim games\sb pro pe\release\sbprope64cm.exe (eSim Games, LLC -> eSim Games) FirewallRules: [UDP Query User{F33BD5BE-CFFC-4382-A402-4F665847DC56}G:\gry\esim games\sb pro pe\release\sbprope64cm.exe] => (Allow) G:\gry\esim games\sb pro pe\release\sbprope64cm.exe (eSim Games, LLC -> eSim Games) FirewallRules: [TCP Query User{EC3677CE-54EC-42D7-A540-7B34375931AF}G:\gry\voiceattack\voiceattack.exe] => (Allow) G:\gry\voiceattack\voiceattack.exe (VoiceAttack.com -> VoiceAttack.com) FirewallRules: [UDP Query User{ACEE741A-9894-466F-9C0B-AFC5CE586D7B}G:\gry\voiceattack\voiceattack.exe] => (Allow) G:\gry\voiceattack\voiceattack.exe (VoiceAttack.com -> VoiceAttack.com) FirewallRules: [{4B921396-B371-45FF-B1B9-33DD28FC4769}] => (Block) G:\gry\voiceattack\voiceattack.exe (VoiceAttack.com -> VoiceAttack.com) FirewallRules: [{7F24AD6A-5011-4081-B5D0-B28BE1D7CDE5}] => (Block) G:\gry\voiceattack\voiceattack.exe (VoiceAttack.com -> VoiceAttack.com) FirewallRules: [TCP Query User{FD9C7747-F6D9-49E7-8388-BB92764158D0}G:\gry\call of duty modern warfare\modernwarfare.exe] => (Allow) G:\gry\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision) FirewallRules: [UDP Query User{B4727FBC-D7D2-428E-A71B-5DD20520DF6A}G:\gry\call of duty modern warfare\modernwarfare.exe] => (Allow) G:\gry\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision) FirewallRules: [{FCE2C895-650D-4A9E-A79A-9232D266135D}] => (Block) G:\gry\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision) FirewallRules: [{49DA9DA9-4562-4BD9-ABC5-FC8A33310FDD}] => (Block) G:\gry\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision) FirewallRules: [{4366E11B-D812-49BD-8382-1D1BAB7BD5B3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{868B1A59-7B7A-4078-99DE-563F5BD14EDC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{65B42589-B192-4C09-9353-FD72192387BB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{9A2ADD6A-69E6-4FAA-BA59-05A09342538D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{2C4F0691-2514-4118-A231-E540782687A0}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{A0AAC221-00BA-4B37-85EC-6A2F09857289}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{DEE843BF-A43F-4B63-B6CE-DB71DD09A9E2}] => (Allow) G:\Programy\qBittorrent\qbittorrent.exe () [Brak podpisu cyfrowego] FirewallRules: [{FDEE02D5-E30D-4F40-86DC-4BAEE9320A24}] => (Allow) G:\Programy\qBittorrent\qbittorrent.exe () [Brak podpisu cyfrowego] FirewallRules: [{B87A9A44-C582-4A2A-8A22-38474BB0FEC5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{0BDCFDEF-2F1A-41F7-8832-EB74085DA183}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{5CBD7F4C-EB1B-47B8-BD04-C69A50E060B0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{A75517F0-53ED-4B63-BBB4-00BEBDFBA1ED}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{5379A549-9DD8-4B75-87A4-452C5DC22564}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) DomainProfile\AuthorizedApplications: [C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe] => Enabled:CodeMeter Runtime Server StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe] => Enabled:CodeMeter Runtime Server ==================== Punkty Przywracania systemu ========================= 25-07-2020 13:52:30 Windows Update 28-07-2020 23:55:15 Windows Update 02-08-2020 17:22:36 Windows Update ==================== Wadliwe urządzenia w Menedżerze urządzeń ============ Name: Programmable Root Enumerator Description: Programming Support Class Guid: {678dcf40-e2e6-11d5-8cd5-e960089ea00a} Manufacturer: Mad Catz Service: SaiNtBus Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31) Resolution: Update the driver Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Błędy w Dzienniku zdarzeń: ======================== Dziennik Aplikacja: ================== Error: (08/05/2020 04:15:31 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (10860,R,98) TILEREPOSITORYS-1-5-18: Wystąpił błąd -1023 (0xfffffc01) podczas otwierania pliku dziennika C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (08/05/2020 04:06:44 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (9916,R,98) TILEREPOSITORYS-1-5-18: Wystąpił błąd -1023 (0xfffffc01) podczas otwierania pliku dziennika C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (08/05/2020 03:49:41 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (8360,R,98) TILEREPOSITORYS-1-5-18: Wystąpił błąd -1023 (0xfffffc01) podczas otwierania pliku dziennika C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (08/05/2020 03:32:47 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (1588,R,98) TILEREPOSITORYS-1-5-18: Wystąpił błąd -1023 (0xfffffc01) podczas otwierania pliku dziennika C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (08/05/2020 03:23:25 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (7296,R,98) TILEREPOSITORYS-1-5-18: Wystąpił błąd -1023 (0xfffffc01) podczas otwierania pliku dziennika C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (08/05/2020 03:08:33 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (1292,R,98) TILEREPOSITORYS-1-5-18: Wystąpił błąd -1023 (0xfffffc01) podczas otwierania pliku dziennika C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (08/05/2020 02:50:01 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (8640,R,98) TILEREPOSITORYS-1-5-18: Wystąpił błąd -1023 (0xfffffc01) podczas otwierania pliku dziennika C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (08/05/2020 02:44:00 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (2188,R,98) TILEREPOSITORYS-1-5-18: Wystąpił błąd -1023 (0xfffffc01) podczas otwierania pliku dziennika C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Dziennik System: ============= Error: (08/05/2020 03:24:24 PM) (Source: disk) (EventID: 7) (User: ) Description: W urządzeniu \Device\Harddisk1\DR1 wystąpił zły blok. Error: (08/05/2020 03:24:20 PM) (Source: disk) (EventID: 7) (User: ) Description: W urządzeniu \Device\Harddisk1\DR1 wystąpił zły blok. Error: (08/05/2020 03:24:14 PM) (Source: disk) (EventID: 7) (User: ) Description: W urządzeniu \Device\Harddisk1\DR1 wystąpił zły blok. Error: (08/05/2020 03:24:09 PM) (Source: disk) (EventID: 7) (User: ) Description: W urządzeniu \Device\Harddisk1\DR1 wystąpił zły blok. Error: (08/05/2020 03:24:03 PM) (Source: disk) (EventID: 7) (User: ) Description: W urządzeniu \Device\Harddisk1\DR1 wystąpił zły blok. Error: (08/05/2020 03:19:00 PM) (Source: disk) (EventID: 7) (User: ) Description: W urządzeniu \Device\Harddisk1\DR1 wystąpił zły blok. Error: (08/05/2020 03:18:56 PM) (Source: disk) (EventID: 7) (User: ) Description: W urządzeniu \Device\Harddisk1\DR1 wystąpił zły blok. Error: (08/05/2020 03:18:52 PM) (Source: disk) (EventID: 7) (User: ) Description: W urządzeniu \Device\Harddisk1\DR1 wystąpił zły blok. Windows Defender: =================================== Date: 2020-08-05 16:10:33.240 Description: Produkt Program antywirusowy Windows Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz: https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Wacatac.D1!ml&threatid=2147757780&enterprise=0 Nazwa: Trojan:Win32/Wacatac.D1!ml Identyfikator: 2147757780 Ważność: Poważny Kategoria: Koń trojański Ścieżka: file:_G:\Downloads\FRST.exe Pochodzenie wykrycia: Komputer lokalny Typ wykrycia: FastPath Źródło wykrycia: Ochrona w czasie rzeczywistym Użytkownik: Bolec-Komputer\Bolec Nazwa procesu: G:\Programy\Mozilla Firefox\firefox.exe Wersja analizy zabezpieczeń: AV: 1.321.673.0, AS: 1.321.673.0, NIS: 1.321.673.0 Wersja aparatu: AM: 1.1.17300.4, NIS: 1.1.17300.4 Date: 2020-08-05 16:09:25.991 Description: Produkt Program antywirusowy Windows Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz: https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Wacatac.D1!ml&threatid=2147757780&enterprise=0 Nazwa: Trojan:Win32/Wacatac.D1!ml Identyfikator: 2147757780 Ważność: Poważny Kategoria: Koń trojański Ścieżka: file:_G:\Downloads\FRST.exe Pochodzenie wykrycia: Komputer lokalny Typ wykrycia: FastPath Źródło wykrycia: Ochrona w czasie rzeczywistym Użytkownik: Bolec-Komputer\Bolec Nazwa procesu: G:\Programy\Mozilla Firefox\firefox.exe Wersja analizy zabezpieczeń: AV: 1.321.673.0, AS: 1.321.673.0, NIS: 1.321.673.0 Wersja aparatu: AM: 1.1.17300.4, NIS: 1.1.17300.4 Date: 2020-08-05 16:09:09.183 Description: Produkt Program antywirusowy Windows Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz: https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Wacatac.D1!ml&threatid=2147757780&enterprise=0 Nazwa: Trojan:Win32/Wacatac.D1!ml Identyfikator: 2147757780 Ważność: Poważny Kategoria: Koń trojański Ścieżka: file:_G:\Downloads\FRST.exe Pochodzenie wykrycia: Komputer lokalny Typ wykrycia: FastPath Źródło wykrycia: Ochrona w czasie rzeczywistym Użytkownik: Bolec-Komputer\Bolec Nazwa procesu: G:\Programy\Mozilla Firefox\firefox.exe Wersja analizy zabezpieczeń: AV: 1.321.673.0, AS: 1.321.673.0, NIS: 1.321.673.0 Wersja aparatu: AM: 1.1.17300.4, NIS: 1.1.17300.4 Date: 2020-08-03 16:52:12.144 Description: Skanowanie produktu Program antywirusowy Windows Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania: {D4CBC9AA-B220-422B-80D7-C87C309DED20} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Szybkie skanowanie Użytkownik: ZARZĄDZANIE NT\SYSTEM Date: 2020-07-29 12:36:50.727 Description: Skanowanie produktu Program antywirusowy Windows Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania: {438304DD-9D4F-4A37-94A8-0EEC49C737AB} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Szybkie skanowanie Użytkownik: ZARZĄDZANIE NT\SYSTEM Date: 2020-07-25 13:56:39.153 Description: Produkt Program antywirusowy Windows Defender napotkał błąd podczas próby aktualizacji analizy zabezpieczeń. Nowa wersja analizy zabezpieczeń: Poprzednia wersja analizy zabezpieczeń: 1.319.2237.0 Źródło aktualizacji: Serwer usługi Microsoft Update Typ analizy zabezpieczeń: Oprogramowanie antywirusowe Typ aktualizacji: Pełne Użytkownik: ZARZĄDZANIE NT\SYSTEM Bieżąca wersja aparatu: Poprzednia wersja aparatu: 1.1.17200.2 Kod błędu: 0x80240016 Opis błędu: Podczas sprawdzania aktualizacji wystąpił nieoczekiwany problem. Aby uzyskać informacje na temat instalowania aktualizacji i rozwiązywania problemów z nimi, zobacz Pomoc i obsługę techniczną. Date: 2020-07-22 19:08:48.541 Description: Produkt Program antywirusowy Windows Defender napotkał błąd podczas próby aktualizacji analizy zabezpieczeń. Nowa wersja analizy zabezpieczeń: Poprzednia wersja analizy zabezpieczeń: 1.319.1968.0 Źródło aktualizacji: Serwer usługi Microsoft Update Typ analizy zabezpieczeń: Oprogramowanie antywirusowe Typ aktualizacji: Pełne Użytkownik: ZARZĄDZANIE NT\SYSTEM Bieżąca wersja aparatu: Poprzednia wersja aparatu: 1.1.17200.2 Kod błędu: 0x80240016 Opis błędu: Podczas sprawdzania aktualizacji wystąpił nieoczekiwany problem. Aby uzyskać informacje na temat instalowania aktualizacji i rozwiązywania problemów z nimi, zobacz Pomoc i obsługę techniczną. Date: 2020-07-21 17:40:19.239 Description: Produkt Program antywirusowy Windows Defender napotkał błąd podczas próby aktualizacji analizy zabezpieczeń. Nowa wersja analizy zabezpieczeń: Poprzednia wersja analizy zabezpieczeń: 1.319.1902.0 Źródło aktualizacji: Serwer usługi Microsoft Update Typ analizy zabezpieczeń: Oprogramowanie antywirusowe Typ aktualizacji: Pełne Użytkownik: ZARZĄDZANIE NT\SYSTEM Bieżąca wersja aparatu: Poprzednia wersja aparatu: 1.1.17200.2 Kod błędu: 0x80240016 Opis błędu: Podczas sprawdzania aktualizacji wystąpił nieoczekiwany problem. Aby uzyskać informacje na temat instalowania aktualizacji i rozwiązywania problemów z nimi, zobacz Pomoc i obsługę techniczną. Date: 2020-07-19 12:48:13.713 Description: Produkt Program antywirusowy Windows Defender napotkał błąd podczas próby załadowania analizy zabezpieczeń i podejmie próbę powrotu do znanej dobrej wersji. %Analiza zabezpieczeń objęta próbą: Kopia zapasowa Kod błędu: 0x80070013 Opis błędu: Nośnik jest zabezpieczony przed zapisem. Wersja analizy zabezpieczeń: 1.319.1687.0;1.319.1687.0 Wersja aparatu: 1.1.17200.2 Date: 2020-07-19 12:48:07.779 Description: Produkt Program antywirusowy Windows Defender napotkał błąd podczas próby załadowania analizy zabezpieczeń i podejmie próbę powrotu do znanej dobrej wersji. %Analiza zabezpieczeń objęta próbą: Bieżące Kod błędu: 0x80004004 Opis błędu: Operacja przerwana. Wersja analizy zabezpieczeń: 1.319.1745.0;1.319.1745.0 Wersja aparatu: 1.1.17200.2 CodeIntegrity: =================================== Date: 2020-04-17 19:31:16.612 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system. Date: 2020-04-17 19:31:16.574 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system. Date: 2020-04-17 19:31:15.057 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system. Date: 2020-04-17 19:31:15.020 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system. Date: 2020-04-17 19:31:14.979 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\dsreg.dll because the set of per-page image hashes could not be found on the system. Date: 2020-04-17 19:31:14.939 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\dsreg.dll because the set of per-page image hashes could not be found on the system. Date: 2020-04-17 19:31:13.252 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system. Date: 2020-04-17 19:31:13.155 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system. ==================== Statystyki pamięci =========================== BIOS: American Megatrends Inc. V1.4 08/18/2013 Płyta główna: MSI Z87-G45 GAMING (MS-7821) Procesor: Intel(R) Core(TM) i7-4770K CPU @ 3.50GHz Procent pamięci w użyciu: 59% Całkowita pamięć fizyczna: 8135.99 MB Dostępna pamięć fizyczna: 3329.78 MB Całkowita pamięć wirtualna: 24519.99 MB Dostępna pamięć wirtualna: 18723.89 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:232.27 GB) (Free:117.74 GB) NTFS Drive d: (ESD-ISO) (CDROM) (Total:3.82 GB) (Free:0 GB) UDF Drive g: () (Fixed) (Total:931.51 GB) (Free:88.35 GB) NTFS \\?\Volume{d2f6b9c3-db79-11e7-bfcf-806e6f6e6963}\ (Zastrzeżone przez system) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS \\?\Volume{416d959b-0000-0000-0000-90173a000000}\ () (Fixed) (Total:0.51 GB) (Free:0.08 GB) NTFS ==================== MBR & Tablica partycji ==================== ========================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 7BD39516) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS) ========================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: 416D959B) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=232.3 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=527 MB) - (Type=27) ==================== Koniec Addition.txt =======================