Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 23-05-2021 Uruchomiony przez keramti (23-05-2021 20:52:23) Uruchomiony z C:\Users\keramti\Downloads Windows 10 Pro Wersja 20H2 19042.985 (X64) (2020-07-18 17:02:37) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= adamt (S-1-5-21-3675876383-3003633198-259424462-1016 - Administrator - Enabled) => C:\Users\adamt Administrator (S-1-5-21-3675876383-3003633198-259424462-500 - Administrator - Disabled) Gość (S-1-5-21-3675876383-3003633198-259424462-501 - Limited - Disabled) keramti (S-1-5-21-3675876383-3003633198-259424462-1000 - Administrator - Enabled) => C:\Users\keramti Konto domyślne (S-1-5-21-3675876383-3003633198-259424462-503 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-3675876383-3003633198-259424462-504 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version: - Adobe) Adobe Premiere Pro 2020 (HKLM-x32\...\PPRO_14_3_1) (Version: 14.3.1 - Adobe Inc.) Advanced BAT to EXE Converter v4.23 (HKLM-x32\...\Advanced BAT to EXE Converter v4.23) (Version: - ) Aktualizacja produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0415-0000-0000000FF1CE}_HOMESTUDENTR_{04E205D6-88B1-4652-B162-42DF2C3B1228}) (Version: - Microsoft) Aktualizacja produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0415-0000-0000000FF1CE}_HOMESTUDENTR_{442ECBCF-94A7-48CC-8CD9-D31FFFD5FA86}) (Version: - Microsoft) Aktualizacja produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0415-0000-0000000FF1CE}_HOMESTUDENTR_{128A36ED-21BE-4547-9FFE-5B85AEC735DD}) (Version: - Microsoft) AMD Settings (HKLM\...\WUCCCApp) (Version: 2019.0816.1152.21357 - Advanced Micro Devices, Inc.) Application Verifier x64 External Package (HKLM\...\{B27BC1FC-8474-9E32-73C2-6F7CD58AD1E3}) (Version: 10.1.17763.132 - Microsoft) Hidden Audacity 2.4.2 (HKLM-x32\...\Audacity_is1) (Version: 2.4.2 - Audacity Team) BlueStacks App Player (HKLM\...\BlueStacks) (Version: 4.280.0.1022 - BlueStack Systems, Inc.) BrLauncher (HKLM-x32\...\{42D26B47-887C-45FC-BCAE-0BE485C5C0BB}) (Version: 2.0.11.0 - Brother Industries Ltd.) Hidden BrLogRx (HKLM-x32\...\{190861E7-09C5-42D8-BB4B-0AFB234BCFC1}) (Version: 1.0.3.1 - Brother Industries Ltd.) Hidden Brother iPrint&Scan (HKLM-x32\...\{0F3243B3-FEA6-44DA-A6A6-4CA42F6A20DF}) (Version: 6.1.3.4 - Brother Industries, Ltd.) Hidden Brother iPrint&Scan (HKLM-x32\...\{f3688e1e-b3e5-403f-9750-b51816920212}) (Version: 6.1.3.4 - Brother Industries, Ltd.) Brother Printer Driver (HKLM-x32\...\{06BCEEF5-5FFD-482B-98C6-6DA2F34A023D}) (Version: 1.3.0.0 - Brother Industries Ltd.) Hidden Brother Scanner Driver (HKLM-x32\...\{11936670-B976-4471-AF27-E0DAABEF7F20}) (Version: 1.0.14.1 - Brother Industries Ltd.) Hidden BrSupportTools (HKLM-x32\...\{32F47565-84B1-42CC-B09A-4CDDD9A32F94}) (Version: 1.0.20.0 - Brother Industries Ltd.) Hidden CCEnhancer (wersja 4.5.4) (HKLM-x32\...\{D621766C-B5EC-42BD-9E10-774C02C17B44}_is1) (Version: 4.5.4 - SingularLabs) CCleaner (HKLM\...\CCleaner) (Version: 5.79 - Piriform) ClickOnce Bootstrapper Package for Microsoft .NET Framework (HKLM-x32\...\{0243F145-076D-423A-8F77-218DC8840261}) (Version: 4.8.04119 - Microsoft Corporation) Hidden ControlCenter4 (HKLM-x32\...\{CAFE5834-5440-41B8-8C56-4DD946A1A5E1}) (Version: 4.6.21.1 - Brother Industries, Ltd.) Hidden ControlCenter4 CSDK (HKLM-x32\...\{FD8A9511-BFC9-43B5-BB75-9CEC0EA03CF0}) (Version: 4.6.1.1 - Brother Industries, Ltd.) Hidden DeviceDetect (HKLM-x32\...\{97BCFAD0-8BC5-480B-ADA2-F54809F48267}) (Version: 1.4.1.0 - Brother Industries Ltd.) Hidden DiagnosticsHub_CollectionService (HKLM\...\{1F3C3AAC-9F7A-47DA-A082-0ACE770041BE}) (Version: 16.1.28901 - Microsoft Corporation) Hidden Discord (HKU\S-1-5-21-3675876383-3003633198-259424462-1016\...\Discord) (Version: 1.0.9001 - Discord Inc.) DisplayFusion 9.7.1 (HKLM-x32\...\B076073A-5527-4f4f-B46B-B10692277DA2_is1) (Version: 9.7.1.0 - Binary Fortress Software) Entity Framework 6.2.0 Tools for Visual Studio 2019 (HKLM-x32\...\{7C2070BF-8E07-4B5F-A182-FADB0B95AB39}) (Version: 6.2.0.0 - Microsoft Corporation) Hidden Entity Framework 6.2.0 Tools for Visual Studio 2019 (HKLM-x32\...\{F878746A-C5F7-420A-A672-4DFEF74ADC3A}) (Version: 6.2.0.0 - Microsoft Corporation) Hidden Epic Games Launcher (HKLM-x32\...\{39D848C4-F441-470F-8FAB-51D60946D35B}) (Version: 1.1.267.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Excel XP / 2003 - praktyczny kurs obsługi (część 3) (HKLM-x32\...\Excel XP / 2003 - praktyczny kurs obsługi (część 3)) (Version: - ) FIFA 12 (HKLM-x32\...\{EA8ADAA9-6671-4839-A51E-0C6792B78F3E}) (Version: 1.6.0.0 - Electronic Arts) FiveM (HKU\S-1-5-21-3675876383-3003633198-259424462-1016\...\CitizenFX_FiveM) (Version: - The CitizenFX Collective) FL Studio 20 (HKLM-x32\...\FL Studio 20) (Version: - Image-Line) FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version: - Image-Line) gdiview (HKLM-x32\...\{9A2A452C-3057-4F5E-8C7F-41B0D566B831}) (Version: 1.0.0 - gdiview) GENESIS HX66 Headset Driver (HKLM-x32\...\{71B53BA8-4BE3-49AF-BC3E-07F392006300}) (Version: 1.00.0019 - ) Glary Utilities 5.143 (HKLM-x32\...\Glary Utilities 5) (Version: 5.143.0.169 - Glarysoft Ltd) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 90.0.4430.212 - Google LLC) HiSuite (HKLM-x32\...\Hi Suite) (Version: 11.0.0.500 - Huawei Technologies Co., Ltd.) HowToGuide (HKLM-x32\...\{36580EEB-4EDF-4880-BBD4-097E2C645ECD}) (Version: 1.0.1.0 - Brother Industries Ltd.) Hidden HttpToUsbBridge (HKLM-x32\...\{7BC71E16-6656-4F86-A274-4DF34437975E}) (Version: 1.2.25.1 - Brother Industries Ltd.) icecap_collection_neutral (HKLM-x32\...\{CCAFAE33-E5CD-4828-962D-B2C08326EC67}) (Version: 16.9.31004 - Microsoft Corporation) Hidden icecap_collection_x64 (HKLM\...\{D74AF03C-D072-4551-9D8E-4312E22685FB}) (Version: 16.9.31004 - Microsoft Corporation) Hidden icecap_collectionresources (HKLM-x32\...\{2E9CD364-C12D-47E8-9F45-E991562F1A33}) (Version: 16.9.31004 - Microsoft Corporation) Hidden icecap_collectionresourcesx64 (HKLM-x32\...\{CBE82127-E88A-4D84-93D8-9408DE8FB088}) (Version: 16.9.31004 - Microsoft Corporation) Hidden Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.5166 - Intel Corporation) IntelliTraceProfilerProxy (HKLM-x32\...\{7D94CF67-6666-4111-B027-D7AB7F189F70}) (Version: 15.0.18198.01 - Microsoft Corporation) Hidden IrfanView 4.57 (64-bit) (HKLM\...\IrfanView64) (Version: 4.57 - Irfan Skiljan) Java 8 Update 221 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180221F0}) (Version: 8.0.2210.11 - Oracle Corporation) Kits Configuration Installer (HKLM-x32\...\{29B915AE-013F-151F-3E61-67F7363C3A09}) (Version: 10.1.17763.132 - Microsoft) Hidden LogMeIn Hamachi (HKLM-x32\...\{ECC0FA07-863E-44BC-8B1D-DA22F96E5FB7}) (Version: 2.2.0.633 - LogMeIn, Inc.) Hidden LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.633 - LogMeIn, Inc.) Malwarebytes version 4.3.0.98 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.3.0.98 - Malwarebytes) MEmu (HKLM-x32\...\MEmu) (Version: 7.5.0.0 - Microvirt Software Technology Co. Ltd.) Messenger 91.5.119 (HKU\S-1-5-21-3675876383-3003633198-259424462-1016\...\c1b3adcf-2068-5e8d-b25d-30ce588e3a4c) (Version: 91.5.119 - Facebook, Inc.) Microsoft .NET Core SDK 2.1.524 (x64) (HKLM-x32\...\{45aba991-b332-4fb1-9776-c4d48cf50863}) (Version: 2.1.524 - Microsoft Corporation) Microsoft .NET Core SDK 3.1.400 (x64) from Visual Studio (HKLM\...\{806F49DE-10F6-481E-AEA4-444BCDE7BDCB}) (Version: 3.1.400.015221 - Microsoft Corporation) Microsoft .NET Core SDK 3.1.409 (x64) (HKLM-x32\...\{e487f0be-193d-42c1-87e0-ce0e5444bf60}) (Version: 3.1.409.15716 - Microsoft Corporation) Microsoft .NET SDK 5.0.200 (x64) from Visual Studio (HKLM\...\{62151543-546D-4234-8871-B70DBFF50C24}) (Version: 5.2.21.12102 - Microsoft Corporation) Microsoft .NET SDK 5.0.203 (x64) (HKLM-x32\...\{fb708b29-011a-49f6-8cdd-6b673f1b5501}) (Version: 5.2.321.22315 - Microsoft Corporation) Microsoft ASP.NET Core 3.1.15 - Shared Framework (HKLM-x32\...\{b5bd888a-223c-4b9f-8e84-704031e7867a}) (Version: 3.1.15.21215 - Microsoft Corporation) Microsoft ASP.NET Core 5.0.6 - Shared Framework (HKLM-x32\...\{da615c5a-0511-4b92-bd91-2aac628cacf4}) (Version: 5.0.6.21223 - Microsoft Corporation) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 90.0.818.66 - Microsoft Corporation) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-3675876383-3003633198-259424462-1000\...\OneDriveSetup.exe) (Version: 21.073.0411.0002 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-3675876383-3003633198-259424462-1016\...\OneDriveSetup.exe) (Version: 20.169.0823.0008 - Microsoft Corporation) Microsoft SQL Server 2016 LocalDB (HKLM\...\{9097BF1A-13A0-4A4A-A1F8-473E2A669863}) (Version: 13.1.4001.0 - Microsoft Corporation) Microsoft System CLR Types for SQL Server 2019 CTP2.2 (HKLM\...\{8D7CE3B0-5379-46FE-9F4B-A65D9F4CC1F1}) (Version: 15.0.1200.24 - Microsoft Corporation) Microsoft System CLR Types for SQL Server 2019 CTP2.2 (HKLM-x32\...\{725CC962-98BD-42C7-87D8-51C680FB1779}) (Version: 15.0.1200.24 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{A0E1B43D-5F4A-46AF-9925-ABA3423325DC}) (Version: 2.77.0.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29910 (HKLM-x32\...\{c65252bf-6d9a-40b9-baf9-27e4e23dfa2f}) (Version: 14.28.29910.0 - Microsoft Corporation) Microsoft Visual Studio Code (User) (HKU\S-1-5-21-3675876383-3003633198-259424462-1016\...\{771FD6B0-FA20-440A-A002-3B3BAC16DC50}_is1) (Version: 1.54.3 - Microsoft Corporation) Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 2.9.3349.28498 - Microsoft Corporation) Microsoft Windows Desktop Runtime - 3.1.15 (x86) (HKLM-x32\...\{5b74ef14-0a19-462a-ae43-21634505732e}) (Version: 3.1.15.30014 - Microsoft Corporation) Microsoft Windows Desktop Runtime - 5.0.6 (x86) (HKLM-x32\...\{d440464d-ca96-4244-9a1f-bd000233dd2c}) (Version: 5.0.6.30021 - Microsoft Corporation) Minecraft Launcher (HKLM-x32\...\{E15F69FA-660D-45CC-B28F-6CBC4CAD2091}) (Version: 1.0.0.0 - Mojang) MioMore Desktop 7.50 (HKLM-x32\...\{A2804FE8-4101-48a0-AE1A-575B99014BF4}-Mio-7.50) (Version: 7.50.0112.135 - Mio Technology) Mozilla Firefox 88.0.1 (x64 pl) (HKLM\...\Mozilla Firefox 88.0.1 (x64 pl)) (Version: 88.0.1 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 79.0 - Mozilla) MSI Development Tools (HKLM-x32\...\{6C961B30-A670-8A05-3BFE-3947E84DD4E4}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden MTA:SA v1.5.8 (HKLM-x32\...\MTA:SA 1.5) (Version: v1.5.8 - Multi Theft Auto) Multimedialny Kurs Microsoft Excel 2003 (HKLM-x32\...\Multimedialny Kurs Microsoft Excel 2003_is1) (Version: - PLAY) Mumble 1.3.0 (HKLM-x32\...\{68AEE5E9-5626-465F-B1E2-5BB2A0C6FCE6}) (Version: 1.3.0 - The Mumble Developers) NetworkRepairTool (HKLM-x32\...\{86E68F57-FAFE-4052-BDD4-3B90C38236AE}) (Version: 1.2.16.0 - Brother Industries, Ltd.) Hidden Node.js (HKLM\...\{FD733BF7-404D-41A6-9F7D-29CF251AE8CF}) (Version: 15.12.0 - Node.js Foundation) Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.8.5 - Notepad++ Team) NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation) OBS Studio (HKLM-x32\...\OBS Studio) (Version: 26.1.1 - OBS Project) OBS-VirtualCam version 2.0.4 (HKLM-x32\...\{7B7182E6-D22D-4E5A-BCA2-EC985A4BD588}_is1) (Version: 2.0.4 - OBS) Opera GX Stable 71.0.3770.138 (HKU\S-1-5-21-3675876383-3003633198-259424462-1016\...\Opera GX 71.0.3770.138) (Version: 71.0.3770.138 - Opera Software) Opera GX Stable 71.0.3770.323 (HKU\S-1-5-21-3675876383-3003633198-259424462-1016\...\Opera GX 71.0.3770.323) (Version: 71.0.3770.323 - Opera Software) Opera GX Stable 73.0.3856.396 (HKU\S-1-5-21-3675876383-3003633198-259424462-1016\...\Opera GX 73.0.3856.396) (Version: 73.0.3856.396 - Opera Software) Opera GX Stable 75.0.3969.267 (HKU\S-1-5-21-3675876383-3003633198-259424462-1016\...\Opera GX 75.0.3969.267) (Version: 75.0.3969.267 - Opera Software) Oracle VM VirtualBox 6.1.18 (HKLM\...\{A8F42E56-8D1F-4080-BD79-8375D3AD18BE}) (Version: 6.1.18 - Oracle Corporation) Origin (HKLM-x32\...\Origin) (Version: 10.5.99.47918 - Electronic Arts, Inc.) paint.net (HKLM\...\{15BCA3AB-444B-4AC5-A04F-F2AD0F7AD3EC}) (Version: 4.2.10 - dotPDN LLC) Pakiet zbiorczy funkcji IntelliSense platformy Microsoft .NET Framework Cumulative Intellisense Pack dla programu Visual Studio (Polski) (HKLM-x32\...\{F34A8DC0-722A-4400-A6FF-B44437D89D0F}) (Version: 4.8.03761 - Microsoft Corporation) Hidden PIPE (wersja 1.07.04) (HKLM-x32\...\{315B6BBC-6D2F-4A07-A15C-A9F8EFB8A453}_is1) (Version: 1.07.04 - Mash Games) PremiumSoft Navicat 15.0 for MySQL (HKLM\...\PremiumSoft Navicat 15 for MySQL_is1) (Version: 15.0.25 - PremiumSoft CyberTech Ltd.) PS Remote Play (HKLM-x32\...\{E536EB8F-03EF-4EBA-B3FF-C5A544604841}) (Version: 4.0.0.09240 - Nazwa firmy) Python 2.7.14 (HKLM-x32\...\{0398A685-FD8D-46B3-9816-C47319B0CF5E}) (Version: 2.7.14150 - Python Software Foundation) Python 3.8.5 (64-bit) (HKU\S-1-5-21-3675876383-3003633198-259424462-1016\...\{de694e50-e0d0-48a5-9a7a-56fd037154e2}) (Version: 3.8.5150.0 - Python Software Foundation) Python 3.8.5 Add to Path (64-bit) (HKLM\...\{7CAC0CB2-09C3-49D5-88E2-1EC174FFABE3}) (Version: 3.8.5150.0 - Python Software Foundation) Hidden Python 3.8.5 Core Interpreter (64-bit) (HKLM\...\{CD482F6D-9FC2-4042-B380-9FB198102148}) (Version: 3.8.5150.0 - Python Software Foundation) Hidden Python 3.8.5 Development Libraries (64-bit) (HKLM\...\{FA7816C5-12FB-4278-9437-E99AA9639E59}) (Version: 3.8.5150.0 - Python Software Foundation) Hidden Python 3.8.5 Documentation (64-bit) (HKLM\...\{7211CFF5-CFE7-4B7C-A699-DB0E65DAF4BC}) (Version: 3.8.5150.0 - Python Software Foundation) Hidden Python 3.8.5 Executables (64-bit) (HKLM\...\{216A8530-DA4B-42FE-BDD4-DCDC1298FB6C}) (Version: 3.8.5150.0 - Python Software Foundation) Hidden Python 3.8.5 pip Bootstrap (64-bit) (HKLM\...\{AA5051A9-8135-494F-AE0D-AE9A503B2C72}) (Version: 3.8.5150.0 - Python Software Foundation) Hidden Python 3.8.5 Standard Library (64-bit) (HKLM\...\{A3E57B8B-8336-4C64-83B7-5C6EC8E25254}) (Version: 3.8.5150.0 - Python Software Foundation) Hidden Python 3.8.5 Tcl/Tk Support (64-bit) (HKLM\...\{B0F29718-AB7A-40AF-8DF9-4E6129FFBCD4}) (Version: 3.8.5150.0 - Python Software Foundation) Hidden Python 3.8.5 Test Suite (64-bit) (HKLM\...\{6FF3D3E8-6953-4723-B5E1-3A19416F6350}) (Version: 3.8.5150.0 - Python Software Foundation) Hidden Python 3.8.5 Utility Scripts (64-bit) (HKLM\...\{C28BE172-9103-463D-9793-264434DBDC27}) (Version: 3.8.5150.0 - Python Software Foundation) Hidden Python Launcher (HKLM-x32\...\{CEEAEA02-2472-4BF6-8994-52D6783F5575}) (Version: 3.8.7140.0 - Python Software Foundation) REDRAGON GRIFFIN (HKLM-x32\...\{2642BE0D-19E8-49F7-ADCE-5CFE550F8AA2}}_is1) (Version: - ) Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.5.6 - Rockstar Games) ScannerUtilityInstaller (HKLM-x32\...\{5B645FE2-19E9-4B15-B5B2-3D8766F6FA27}) (Version: 1.0.0.0 - Brother) Hidden SDK ARM Additions (HKLM-x32\...\{0B5D6FB7-05A5-271B-5B99-82384219A471}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden SDK ARM Redistributables (HKLM-x32\...\{4A5F6E94-7967-A333-8231-CA9AF35E03BD}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden SIMDashboardServer (HKLM-x32\...\{35886E30-A599-44CA-BC94-23A953944B25}) (Version: 3.4.3.0 - stryder-it) SoftwareUpdateNotification (HKLM-x32\...\{C2430580-570A-48D4-BF61-FA55E35BD052}) (Version: 1.0.8.0 - Brother Insutries Ltd.) Hidden SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - ) Spotify (HKU\S-1-5-21-3675876383-3003633198-259424462-1016\...\Spotify) (Version: 1.1.48.625.g1c87c7f7 - Spotify AB) StatusMonitor (HKLM-x32\...\{624AB804-EE0E-4AD5-AB8F-15BB29C54065}) (Version: 1.22.8.0 - Brother Insutries Ltd.) Hidden Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Sublime Text 3 (HKLM\...\Sublime Text 3_is1) (Version: - Sublime HQ Pty Ltd) TeamSpeak 3 Client (HKU\S-1-5-21-3675876383-3003633198-259424462-1016\...\TeamSpeak 3 Client) (Version: 3.5.3 - TeamSpeak Systems GmbH) TypeScript SDK (HKLM-x32\...\{54BBE05F-F2AC-4403-AA5D-786BEAA645D5}) (Version: 4.1.4.0 - Microsoft Corporation) Hidden Uninstall MioMoreDesktop2 (HKLM\...\5236dd9f-6761-5dde-848b-43005cb55ef7) (Version: 1.3.0 - MiTAC) Unity (HKLM-x32\...\Unity) (Version: 2018.1.1f1 - Unity Technologies ApS) Universal CRT Extension SDK (HKLM-x32\...\{7D225043-6CC5-7B56-11DD-AFF90E4C1C0C}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Universal CRT Headers Libraries and Sources (HKLM-x32\...\{CB19DBA2-C210-5646-9522-695A1317CD34}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Universal CRT Redistributable (HKLM-x32\...\{0460C87B-7F4C-3170-FAC9-B7A6AE5CE4E9}) (Version: 10.0.26624 - Microsoft Corporation) Hidden Universal CRT Redistributable (HKLM-x32\...\{5F577A45-3C65-352B-061D-D6A57F05402C}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Universal CRT Tools x64 (HKLM\...\{3B588BBE-EB02-D1B2-5CD5-7DB85AD8A3E7}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Universal CRT Tools x86 (HKLM-x32\...\{D2DC1EDF-EE04-9B5F-BDD7-06645D859EC3}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Universal General MIDI DLS Extension SDK (HKLM-x32\...\{CE83D0BD-418A-F3D1-D6CE-687E96D1EBD0}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation) Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) UsbRepairTool (HKLM-x32\...\{F8762A81-32B5-4144-9F3C-9274F515A651}) (Version: 1.4.0.0 - Brother Industries, Ltd.) Hidden VALORANT (HKU\S-1-5-21-3675876383-3003633198-259424462-1016\...\Riot Game valorant.live) (Version: - Riot Games, Inc) vcpp_crt.redist.clickonce (HKLM-x32\...\{811AC095-D30A-4810-921E-2443F99CA6F5}) (Version: 14.28.29910 - Microsoft Corporation) Hidden vcpp_crt.redist.clickonce (HKLM-x32\...\{A9D732F4-1857-439C-9D4F-C70E9BFBC57D}) (Version: 14.27.29016 - Microsoft Corporation) Hidden vcpp_crt.redist.clickonce (HKLM-x32\...\{ABEBFE6E-0C94-4F89-AAEA-9027D1082522}) (Version: 14.16.27033 - Microsoft Corporation) Hidden vcpp_crt.redist.clickonce (HKLM-x32\...\{BAE893F1-0456-4E84-9F40-25634CD11A18}) (Version: 14.26.28808 - Microsoft Corporation) Hidden VideoPad Video Editor (HKLM\...\VideoPad) (Version: 10.12 - NCH Software) Visual Studio Community 2019 (HKLM-x32\...\c406bdc4) (Version: 16.9.31025.194 - Microsoft Corporation) VS Immersive Activate Helper (HKLM-x32\...\{A71406B5-E487-4B01-8E59-D466841350F5}) (Version: 16.0.102.0 - Microsoft Corporation) Hidden VS JIT Debugger (HKLM\...\{C7E8A4F2-EF09-42A8-B892-69D5ED99D965}) (Version: 16.0.102.0 - Microsoft Corporation) Hidden VS Script Debugging Common (HKLM\...\{A4272808-82F5-410F-A5F9-1BF6F63F6B9A}) (Version: 16.0.102.0 - Microsoft Corporation) Hidden vs_BlendMsi (HKLM-x32\...\{B5E3A3E1-1529-4D5A-9E95-34971FA07825}) (Version: 16.0.28329 - Microsoft Corporation) Hidden vs_clickoncebootstrappermsi (HKLM-x32\...\{FB93144C-7671-4DA4-883B-B1D15F00176A}) (Version: 16.9.31004 - Microsoft Corporation) Hidden vs_clickoncebootstrappermsires (HKLM-x32\...\{271F1F42-B547-4498-825F-590DBB1774F7}) (Version: 16.0.28329 - Microsoft Corporation) Hidden vs_clickoncesigntoolmsi (HKLM-x32\...\{30D97A69-3C0F-4552-9A72-60E591B210C7}) (Version: 16.0.28329 - Microsoft Corporation) Hidden vs_communitymsi (HKLM-x32\...\{03119992-794E-4BD1-8811-050DD87BC41C}) (Version: 16.9.31004 - Microsoft Corporation) Hidden vs_communitymsires (HKLM-x32\...\{AA37F279-6627-445D-B17D-E8BB9F268D50}) (Version: 16.0.28329 - Microsoft Corporation) Hidden vs_devenvmsi (HKLM-x32\...\{AD0C92A4-1514-4BC1-A723-A272A8343924}) (Version: 16.0.28329 - Microsoft Corporation) Hidden vs_filehandler_amd64 (HKLM-x32\...\{6E29FB21-642A-4E68-BD8B-745E679EB9F5}) (Version: 16.9.31004 - Microsoft Corporation) Hidden vs_filehandler_x86 (HKLM-x32\...\{D12A3F67-709D-477A-B5D3-D820E4C745E3}) (Version: 16.9.31004 - Microsoft Corporation) Hidden vs_FileTracker_Singleton (HKLM-x32\...\{B64FFE5E-EDCF-49DE-B528-C5AA0D0C313B}) (Version: 16.9.31004 - Microsoft Corporation) Hidden vs_minshellinteropmsi (HKLM-x32\...\{27B16914-BC5D-4018-8074-071262A27F6D}) (Version: 16.2.28917 - Microsoft Corporation) Hidden vs_minshellmsi (HKLM-x32\...\{621CB344-D1D9-4F17-A5B5-36BBBC4F6FFA}) (Version: 16.9.31025 - Microsoft Corporation) Hidden vs_minshellmsires (HKLM-x32\...\{19ECCCB7-5AE8-4054-B9EE-2EB3A8E4DA65}) (Version: 16.9.31004 - Microsoft Corporation) Hidden vs_SQLClickOnceBootstrappermsi (HKLM-x32\...\{90BDEEC4-B67A-4ED4-A59C-E5616D5D5CA9}) (Version: 16.9.31004 - Microsoft Corporation) Hidden vs_tipsmsi (HKLM-x32\...\{E208E682-50EE-4F2F-9860-C91B906B8A03}) (Version: 16.0.28329 - Microsoft Corporation) Hidden vs_vswebprotocolselectormsi (HKLM-x32\...\{6C9A7596-C8E7-44B0-B5C1-15D5CB97499A}) (Version: 16.9.31004 - Microsoft Corporation) Hidden vs_vswebprotocolselectormsires (HKLM-x32\...\{4377FC8F-D998-4CCA-9990-308954A33B5D}) (Version: 16.9.31004 - Microsoft Corporation) Hidden Wargaming.net Game Center (HKU\S-1-5-21-3675876383-3003633198-259424462-1000\...\Wargaming.net Game Center) (Version: 21.2.2.4998 - Wargaming.net) Wargaming.net Game Center (HKU\S-1-5-21-3675876383-3003633198-259424462-1016\...\Wargaming.net Game Center) (Version: 20.7.2.2851 - Wargaming.net) WinAppDeploy (HKLM-x32\...\{716AE8F2-1BE3-7657-DF6B-F23DEEC75AF9}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden Windows SDK AddOn (HKLM-x32\...\{1E76DFA7-96F3-4281-8E41-8A226C3E42EE}) (Version: 10.1.0.0 - Microsoft Corporation) WinRAR 5.61 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.61.0 - win.rar GmbH) WinRT Intellisense Desktop - en-us (HKLM-x32\...\{00B12DF9-5428-9406-DE2C-8E8A1A062B05}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden WinRT Intellisense Desktop - Other Languages (HKLM-x32\...\{E82A4A6C-C21C-35FE-B805-3E44318F6D63}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden WinRT Intellisense IoT - en-us (HKLM-x32\...\{7E898893-9C42-A572-7F57-FDE55CE812F7}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden WinRT Intellisense IoT - Other Languages (HKLM-x32\...\{E8B1CB29-5C24-D882-3CEF-F8A7263BC63D}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden WinRT Intellisense Mobile - en-us (HKLM-x32\...\{F6F11150-93DE-0507-FCA0-F746E0207017}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden WinRT Intellisense PPI - en-us (HKLM-x32\...\{8329C3A0-8582-D1C2-67FF-800654BFDF45}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden WinRT Intellisense PPI - Other Languages (HKLM-x32\...\{771C9DEF-7C0B-85DA-6426-7A20F06BEC94}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden WinRT Intellisense UAP - en-us (HKLM-x32\...\{B047C746-63E8-41C7-A5C0-7ABD390CF3E6}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden WinRT Intellisense UAP - Other Languages (HKLM-x32\...\{0063AF94-397B-9C64-1C71-D404B27C5D96}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden WinSCP 5.17.10 (HKLM-x32\...\winscp3_is1) (Version: 5.17.10 - Martin Prikryl) World of Tanks EU (HKU\S-1-5-21-3675876383-3003633198-259424462-1016\...\WOT.EU.PRODUCTION) (Version: - Wargaming.net) World_of_Warships (HKU\S-1-5-21-3675876383-3003633198-259424462-1000\...\WOWS.WW.PRODUCTION) (Version: - Wargaming.net) World_of_Warships_EU (HKU\S-1-5-21-3675876383-3003633198-259424462-1000\...\WOWS.EU.PRODUCTION) (Version: - Wargaming.net) YouTube By Click (HKLM-x32\...\{45471644-4897-4EFE-B8C3-3F62079E8C93}) (Version: 2.2.142 - ByClick) Hidden YouTube By Click (HKLM-x32\...\YouTube By Click 2.2.142) (Version: 2.2.142 - ByClick) Packages: ========= Dodatek Aparat multimediów dla aplikacji Zdjęcia -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-09-12] (Microsoft Corporation) Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.8.401.0_x64__rz1tebttyb220 [2021-05-10] (Dolby Laboratories) Fitbit Coach -> C:\Program Files\WindowsApps\Fitbit.FitbitCoach_4.4.133.0_x64__6mqt6hf9g46tw [2018-12-26] (Fitbit) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-21] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-21] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.5170.0_x64__8wekyb3d8bbwe [2021-05-23] (Microsoft Studios) [MS Ad] Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2021-03-11] (Netflix, Inc.) Phototastic Collage -> C:\Program Files\WindowsApps\ThumbmunkeysLtd.PhototasticCollage_3.27.1.0_x64__nfy108tqq3p12 [2021-04-16] (Thumbmunkeys Ltd) ==================== Niestandardowe rejestracje CLSID (filtrowane): ============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-3675876383-3003633198-259424462-1016_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-3BFD9476EE32} -> [Creative Cloud Files] => C:\Users\adamt\Creative Cloud Files [2020-11-13 12:06] CustomCLSID: HKU\S-1-5-21-3675876383-3003633198-259424462-1016_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\adamt\AppData\Local\Microsoft\OneDrive\20.169.0823.0008\amd64\FileSyncShell64.dll => Brak pliku CustomCLSID: HKU\S-1-5-21-3675876383-3003633198-259424462-1016_Classes\CLSID\{4410DC33-BC7C-496B-AA84-4AEA3EEE75F7}\InprocServer32 -> C:\Users\adamt\AppData\Local\Microsoft\OneDrive\20.169.0823.0008\amd64\FileCoAuthLib64.dll => Brak pliku CustomCLSID: HKU\S-1-5-21-3675876383-3003633198-259424462-1016_Classes\CLSID\{47E6DCAF-41F8-441C-BD0E-A50D5FE6C4D1}\localserver32 -> C:\Users\adamt\AppData\Local\Microsoft\OneDrive\20.169.0823.0008\MicrosoftListSync.exe => Brak pliku CustomCLSID: HKU\S-1-5-21-3675876383-3003633198-259424462-1016_Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}\InprocServer32 -> C:\Users\adamt\AppData\Local\Microsoft\OneDrive\20.169.0823.0008\amd64\FileSyncShell64.dll => Brak pliku CustomCLSID: HKU\S-1-5-21-3675876383-3003633198-259424462-1016_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\adamt\AppData\Local\Microsoft\OneDrive\20.169.0823.0008\amd64\FileSyncShell64.dll => Brak pliku CustomCLSID: HKU\S-1-5-21-3675876383-3003633198-259424462-1016_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\adamt\AppData\Local\Microsoft\OneDrive\20.169.0823.0008\amd64\FileSyncShell64.dll => Brak pliku CustomCLSID: HKU\S-1-5-21-3675876383-3003633198-259424462-1016_Classes\CLSID\{917E8742-AA3B-7318-FA12-10485FB322A2}\localserver32 -> C:\Users\adamt\AppData\Local\Microsoft\OneDrive\20.169.0823.0008\MicrosoftListSync.exe => Brak pliku CustomCLSID: HKU\S-1-5-21-3675876383-3003633198-259424462-1016_Classes\CLSID\{9AA2F32D-362A-42D9-9328-24A483E2CCC3}\InprocServer32 -> C:\Users\adamt\AppData\Local\Microsoft\OneDrive\20.169.0823.0008\amd64\FileSyncShell64.dll => Brak pliku CustomCLSID: HKU\S-1-5-21-3675876383-3003633198-259424462-1016_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\adamt\AppData\Local\Microsoft\OneDrive\20.169.0823.0008\amd64\FileSyncShell64.dll => Brak pliku CustomCLSID: HKU\S-1-5-21-3675876383-3003633198-259424462-1016_Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}\InprocServer32 -> C:\Users\adamt\AppData\Local\Microsoft\OneDrive\20.169.0823.0008\amd64\FileSyncShell64.dll => Brak pliku CustomCLSID: HKU\S-1-5-21-3675876383-3003633198-259424462-1016_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\adamt\AppData\Local\Microsoft\OneDrive\20.169.0823.0008\amd64\FileSyncShell64.dll => Brak pliku CustomCLSID: HKU\S-1-5-21-3675876383-3003633198-259424462-1016_Classes\CLSID\{C5FF006E-2AE9-408C-B85B-2DFDD5449D9C}\InprocServer32 -> C:\Users\adamt\AppData\Local\Microsoft\OneDrive\20.169.0823.0008\amd64\FileSyncShell64.dll => Brak pliku CustomCLSID: HKU\S-1-5-21-3675876383-3003633198-259424462-1016_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\adamt\AppData\Local\Microsoft\OneDrive\20.169.0823.0008\amd64\FileSyncShell64.dll => Brak pliku CustomCLSID: HKU\S-1-5-21-3675876383-3003633198-259424462-1016_Classes\CLSID\{D45F043D-F17F-4e8a-8435-70971D9FA46D}\InprocServer32 -> I:\Blender\BlendThumb.dll => Brak pliku CustomCLSID: HKU\S-1-5-21-3675876383-3003633198-259424462-1016_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll => Brak pliku CustomCLSID: HKU\S-1-5-21-3675876383-3003633198-259424462-1016_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\adamt\AppData\Local\Microsoft\OneDrive\20.169.0823.0008\amd64\FileSyncShell64.dll => Brak pliku ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-11-13] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-11-13] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-11-13] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Brak pliku ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> Brak pliku ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-11-13] (Adobe Inc. -> ) ContextMenuHandlers1: [SmartGameBoosterMenu] -> {96C86AD1-055D-457D-9C00-0D4A91ECF1B4} => -> Brak pliku ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => D:\Malware\mbshlext.dll [2020-04-25] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers3: [SmartGameBoosterMenu] -> {96C86AD1-055D-457D-9C00-0D4A91ECF1B4} => -> Brak pliku ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> Brak pliku ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> Brak pliku ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\WINDOWS\System32\atiacm64.dll [2021-01-05] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Brak pliku ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2020-12-14] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => D:\Malware\mbshlext.dll [2020-04-25] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers6: [SmartGameBoosterMenu] -> {96C86AD1-055D-457D-9C00-0D4A91ECF1B4} => -> Brak pliku ==================== Codecs (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Drivers32: [msacm.voxacm160] => C:\WINDOWS\system32\vct3216.acm [82944 2003-05-21] (Voxware, Inc.) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [msacm.scg726] => C:\WINDOWS\system32\scg726.acm [13239 2000-03-14] (SHARP Corporation) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [msacm.alf2cd] => C:\WINDOWS\system32\alf2cd.acm [38912 2003-05-21] (NCT Company) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [msacm.ac3acm] => C:\WINDOWS\system32\AC3ACM.acm [81920 2004-02-04] (fccHandler) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [msacm.lame] => C:\WINDOWS\system32\lame.ax [245760 2005-08-01] () [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.dvsd] => C:\WINDOWS\system32\mcdvd_32.dll [261632 2003-05-21] (MainConcept) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.mpg4] => C:\WINDOWS\system32\mpg4c32.dll [413760 2002-08-20] (Microsoft Corporation) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.mp42] => C:\WINDOWS\system32\mpg4c32.dll [413760 2002-08-20] (Microsoft Corporation) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.mp43] => C:\WINDOWS\system32\mpg4c32.dll [413760 2002-08-20] (Microsoft Corporation) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.xvid] => C:\WINDOWS\system32\xvidvfw.dll [139264 2004-07-03] () [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.DIVX] => C:\WINDOWS\system32\DivX.dll [638976 2003-05-22] (DivXNetworks, Inc.) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.VP60] => C:\WINDOWS\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.VP61] => C:\WINDOWS\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.VP62] => C:\WINDOWS\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.LAGS] => C:\WINDOWS\system32\lagarith.dll [216064 2011-12-07] () [Brak podpisu cyfrowego] HKLM\...\Drivers32: [msacm.voxacm160] => C:\Windows\SysWOW64\vct3216.acm [82944 2003-05-21] (Voxware, Inc.) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [msacm.scg726] => C:\Windows\SysWOW64\scg726.acm [13239 2000-03-14] (SHARP Corporation) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [msacm.alf2cd] => C:\Windows\SysWOW64\alf2cd.acm [38912 2003-05-21] (NCT Company) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\SysWOW64\AC3ACM.acm [81920 2004-02-04] (fccHandler) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [msacm.lame] => C:\Windows\SysWOW64\lame.ax [245760 2005-08-01] () [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.dvsd] => C:\Windows\SysWOW64\mcdvd_32.dll [261632 2003-05-21] (MainConcept) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.mpg4] => C:\Windows\SysWOW64\mpg4c32.dll [413760 2002-08-19] (Microsoft Corporation) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.mp42] => C:\Windows\SysWOW64\mpg4c32.dll [413760 2002-08-19] (Microsoft Corporation) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.mp43] => C:\Windows\SysWOW64\mpg4c32.dll [413760 2002-08-19] (Microsoft Corporation) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.xvid] => C:\Windows\SysWOW64\xvidvfw.dll [139264 2004-07-03] () [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.DIVX] => C:\Windows\SysWOW64\DivX.dll [638976 2003-05-22] (DivXNetworks, Inc.) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.VP60] => C:\Windows\SysWOW64\vp6vfw.dll [438272 2004-12-10] (On2.com) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.VP61] => C:\Windows\SysWOW64\vp6vfw.dll [438272 2004-12-10] (On2.com) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.VP62] => C:\Windows\SysWOW64\vp6vfw.dll [438272 2004-12-10] (On2.com) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.LAGS] => C:\Windows\SysWOW64\lagarith.dll [216064 2011-12-07] () [Brak podpisu cyfrowego] ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ShortcutWithArgument: C:\Users\keramti\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d249d9ddd424b688\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default ==================== Załadowane moduły (filtrowane) ============= ==================== Alternate Data Streams (filtrowane) ======== (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT [40] AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT2 [1006] AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [480] ==================== Tryb awaryjny (filtrowane) ================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Powiązania plików (filtrowane) ================= ==================== Internet Explorer (filtrowane) ========== HKU\S-1-5-21-3675876383-3003633198-259424462-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE01&ocid=UE01DHP HKU\S-1-5-21-3675876383-3003633198-259424462-1016\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://securesearch.org/homepage?hp=2&pId=BT171101&iDate=2020-07-30 07:56:37&bName= BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\ssv.dll [2019-08-13] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\jp2ssv.dll [2019-08-13] (Oracle America, Inc. -> Oracle Corporation) (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) IE trusted site: HKU\.DEFAULT\...\localhost -> localhost IE trusted site: HKU\S-1-5-21-3675876383-3003633198-259424462-1000\...\localhost -> localhost IE trusted site: HKU\S-1-5-21-3675876383-3003633198-259424462-1016\...\localhost -> localhost ==================== Hosts - zawartość: ========================= (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2018-09-15 09:31 - 2019-09-09 21:31 - 000000824 ____C C:\WINDOWS\system32\drivers\etc\hosts ==================== Inne obszary =========================== (Obecnie brak automatycznej naprawy dla tej sekcji.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\ProgramData\chocolatey\bin;C:\Program Files\dotnet\;C:\Program Files\Microsoft SQL Server\130\Tools\Binn\;C:\Program Files (x86)\dotnet\ HKU\S-1-5-21-3675876383-3003633198-259424462-1000\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img13.jpg HKU\S-1-5-21-3675876383-3003633198-259424462-1016\Control Panel\Desktop\\Wallpaper -> C:\Users\adamt\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper DNS Servers: 89.228.4.126 - 31.11.173.2 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 0) (EnableLUA: 0) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn) Zapora systemu Windows [funkcja włączona] Network Binding: ============= Ethernet: VMware Bridge Protocol -> vmware_bridge (enabled) Ethernet: MemuHyperv NDIS6 Bridged Networking Driver -> maiwei_MEmuNetLwf (enabled) Ethernet: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled) Hamachi: VMware Bridge Protocol -> vmware_bridge (disabled) Hamachi: MemuHyperv NDIS6 Bridged Networking Driver -> maiwei_MEmuNetLwf (enabled) Hamachi: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled) VirtualBox Host-Only Network: VMware Bridge Protocol -> vmware_bridge (enabled) VirtualBox Host-Only Network: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled) VirtualBox Host-Only Network: MemuHyperv NDIS6 Bridged Networking Driver -> maiwei_MEmuNetLwf (enabled) ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Załączenie wejścia w fixlist spowoduje jego usunięcie.) HKLM\...\StartupApproved\Run: => "SecurityHealth" HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKLM\...\StartupApproved\Run32: => "ControlCenter4" HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud" HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui" HKU\S-1-5-21-3675876383-3003633198-259424462-1000\...\StartupApproved\Run: => "World of Warships" HKU\S-1-5-21-3675876383-3003633198-259424462-1000\...\StartupApproved\Run: => "Gaijin.Net Updater" HKU\S-1-5-21-3675876383-3003633198-259424462-1000\...\StartupApproved\Run: => "Wargaming.net Game Center" HKU\S-1-5-21-3675876383-3003633198-259424462-1016\...\StartupApproved\StartupFolder: => "DS4Windows.lnk" HKU\S-1-5-21-3675876383-3003633198-259424462-1016\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-3675876383-3003633198-259424462-1016\...\StartupApproved\Run: => "EpicGamesLauncher" HKU\S-1-5-21-3675876383-3003633198-259424462-1016\...\StartupApproved\Run: => "Discord" HKU\S-1-5-21-3675876383-3003633198-259424462-1016\...\StartupApproved\Run: => "Spotify" HKU\S-1-5-21-3675876383-3003633198-259424462-1016\...\StartupApproved\Run: => "Wargaming.net Game Center" HKU\S-1-5-21-3675876383-3003633198-259424462-1016\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-3675876383-3003633198-259424462-1016\...\StartupApproved\Run: => "SteamServerBrowser" HKU\S-1-5-21-3675876383-3003633198-259424462-1016\...\StartupApproved\Run: => "SIMDashboardServer" ==================== Reguły Zapory systemu Windows (filtrowane) ================ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [UDP Query User{4EE61299-DA17-45A0-8693-7843D11BB1C4}P:\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) P:\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe => Brak pliku FirewallRules: [TCP Query User{C4E763EC-42FB-4169-9BC0-8D390ACCD9FB}P:\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) P:\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe => Brak pliku FirewallRules: [UDP Query User{7094E5A2-B82A-4762-A1A5-111E144D7540}P:\fivem\fivem.exe] => (Allow) P:\fivem\fivem.exe => Brak pliku FirewallRules: [TCP Query User{C39DCC31-11BB-4DDF-8797-8660C949D1A7}P:\fivem\fivem.exe] => (Allow) P:\fivem\fivem.exe => Brak pliku FirewallRules: [UDP Query User{EB90F540-6527-46B5-9B75-B7F9A7BAF564}E:\word od warsh\wowslauncher.exe] => (Allow) E:\word od warsh\wowslauncher.exe (Wargaming PCL -> Wargaming.net) FirewallRules: [TCP Query User{703BF96F-C4FA-4436-8F78-3F44D73E3D57}E:\word od warsh\wowslauncher.exe] => (Allow) E:\word od warsh\wowslauncher.exe (Wargaming PCL -> Wargaming.net) FirewallRules: [UDP Query User{C9573699-CACB-4E6F-B74C-DFB82AF55AD0}C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe FirewallRules: [TCP Query User{F37F453C-0E23-4DDC-8019-7DC5D8CEC983}C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe FirewallRules: [{6D4739A0-AA64-4467-BB1B-CA8E2DF6D9C4}] => (Allow) F:\FIFA 2012\FIFA 12\FIFA 12\Game\fifa.exe (Electronic Arts -> Electronic Arts) FirewallRules: [{18F9DC5D-D462-4406-B900-00528A70986A}] => (Allow) F:\FIFA 2012\FIFA 12\FIFA 12\Game\fifa.exe (Electronic Arts -> Electronic Arts) FirewallRules: [TCP Query User{3B61858E-05DE-40C7-807F-B1EDFDB2E936}F:\warthunder\launcher.exe] => (Allow) F:\warthunder\launcher.exe (Gaijin Network LTD -> Gaijin) FirewallRules: [UDP Query User{B8067C9A-1579-49A1-AB03-0A7B76A2E57E}F:\warthunder\launcher.exe] => (Allow) F:\warthunder\launcher.exe (Gaijin Network LTD -> Gaijin) FirewallRules: [TCP Query User{984DF612-C294-4AF9-91B7-CCA14DE8087E}F:\warthunder\win64\aces.exe] => (Allow) F:\warthunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment) FirewallRules: [UDP Query User{10461999-324B-4D25-9185-081D7EEC44A4}F:\warthunder\win64\aces.exe] => (Allow) F:\warthunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment) FirewallRules: [{8068DDEC-CFD4-4343-A95F-5B8065D4806A}] => (Allow) D:\OFFICE 2007\Office12\ONENOTE.EXE (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{C3CB655E-F3A1-4145-8539-F8F2EAE10D05}] => (Allow) D:\OFFICE 2007\Office12\ONENOTE.EXE (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{149CA857-CAAD-4829-8FC9-05CF263FA88B}D:\reaper\reamote.exe] => (Block) D:\reaper\reamote.exe () [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{E1DB2EA0-1076-4FAC-8EBF-86E1A1806D5C}D:\reaper\reamote.exe] => (Block) D:\reaper\reamote.exe () [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{382F61EF-BBBC-4A84-858B-5390CCC3A82B}F:\gta\gta san andreas\gta_sa.exe] => (Allow) F:\gta\gta san andreas\gta_sa.exe () [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{F66B602A-AAA3-47F2-9BB7-138095F2BC91}F:\gta\gta san andreas\gta_sa.exe] => (Allow) F:\gta\gta san andreas\gta_sa.exe () [Brak podpisu cyfrowego] FirewallRules: [{D97759C1-7CC7-4D09-80C6-10C5CF41B55C}] => (Allow) D:\CClaner\CCUpdate.exe (Piriform Software Ltd -> Piriform) FirewallRules: [{8850BE5F-14BE-4CD6-862B-C90439454AB3}] => (Allow) D:\CClaner\CCUpdate.exe (Piriform Software Ltd -> Piriform) FirewallRules: [TCP Query User{AC96C327-33D0-418F-96B6-06CFF43C52FB}F:\gta\gta san andreas\gta_sa.exe] => (Allow) F:\gta\gta san andreas\gta_sa.exe () [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{737B7A5D-0CC4-4FEC-87A2-3E700E3910E0}F:\gta\gta san andreas\gta_sa.exe] => (Allow) F:\gta\gta san andreas\gta_sa.exe () [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{6752A998-740B-4A1B-AB1E-A63FF39E6C09}F:\warthunder\launcher.exe] => (Block) F:\warthunder\launcher.exe (Gaijin Network LTD -> Gaijin) FirewallRules: [UDP Query User{D33BA456-0364-40E4-A01F-9D116D59E34D}F:\warthunder\launcher.exe] => (Block) F:\warthunder\launcher.exe (Gaijin Network LTD -> Gaijin) FirewallRules: [TCP Query User{0B20C943-E5B4-42EA-9A86-3DA834E78652}F:\warthunder\win64\aces.exe] => (Allow) F:\warthunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment) FirewallRules: [UDP Query User{3D9CCBE5-F46F-40CD-8F6D-C70F16D04B51}F:\warthunder\win64\aces.exe] => (Allow) F:\warthunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment) FirewallRules: [TCP Query User{E44B51BA-E179-48C2-A54C-613E9109DF37}P:\majkraft\runtime\64\jre1.8.0_51\bin\javaw.exe] => (Allow) P:\majkraft\runtime\64\jre1.8.0_51\bin\javaw.exe => Brak pliku FirewallRules: [UDP Query User{565421C3-8809-4AED-BDB1-17A33FF6B91A}P:\majkraft\runtime\64\jre1.8.0_51\bin\javaw.exe] => (Allow) P:\majkraft\runtime\64\jre1.8.0_51\bin\javaw.exe => Brak pliku FirewallRules: [{11E50766-DC34-4EDB-A8B5-631C5F7857DB}] => (Allow) D:\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{BFB35913-80A8-40B6-9E6A-0BEC19E068EC}] => (Allow) D:\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{76DCCA60-D375-40A9-98DF-B99DCF73A8FD}] => (Allow) F:\stem\steam.exe (Valve -> Valve Corporation) FirewallRules: [{2FC65373-D873-4ACF-B86B-6C37E848F445}] => (Allow) F:\stem\steam.exe (Valve -> Valve Corporation) FirewallRules: [{8B242C46-CD55-46A9-B67A-038606B6ABB0}] => (Allow) F:\stem\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{670F3438-AAEE-4FD5-A530-E1B64AA6F1D5}] => (Allow) F:\stem\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{57806651-E137-4636-B3A5-3F12E5332085}] => (Allow) F:\stem\SteamApps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> ) FirewallRules: [{CFD91FCA-EC66-4F95-AA6D-4ECF1FB0C025}] => (Allow) F:\stem\SteamApps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> ) FirewallRules: [{A3BE6707-2166-4B56-9286-8ECB6942C7F2}] => (Allow) E:\Word od Warsh\Wargaming.net\GameCenter\wgc.exe (Wargaming.net Limited -> Wargaming.net) FirewallRules: [{4D198472-5637-4E1C-8F23-A82C5174FA10}] => (Allow) F:\stem\SteamApps\common\Enemy Front\Bin32\EnemyFront.exe (CI Games S.A.) [Brak podpisu cyfrowego] FirewallRules: [{45DE0F76-737E-4CD4-9AE7-3F975F43A2B0}] => (Allow) F:\stem\SteamApps\common\Enemy Front\Bin32\EnemyFront.exe (CI Games S.A.) [Brak podpisu cyfrowego] FirewallRules: [{42B58061-33A4-400F-9F9E-DCA2DC0EDA1E}] => (Allow) F:\stem\SteamApps\common\Enemy Front\Bin32\DedicatedServer.exe (CI Games S.A.) [Brak podpisu cyfrowego] FirewallRules: [{62D009E3-3DD3-4FCE-A1FC-C7C56632C40D}] => (Allow) F:\stem\SteamApps\common\Enemy Front\Bin32\DedicatedServer.exe (CI Games S.A.) [Brak podpisu cyfrowego] FirewallRules: [{A24D9C82-876E-40A3-8085-04172DF3831B}] => (Allow) F:\stem\SteamApps\common\Assetto Corsa Editor\ksEditor.exe (Microsoft) [Brak podpisu cyfrowego] FirewallRules: [{99562763-F974-433E-85AF-ED118375A39B}] => (Allow) F:\stem\SteamApps\common\Assetto Corsa Editor\ksEditor.exe (Microsoft) [Brak podpisu cyfrowego] FirewallRules: [{20ADC028-7BF2-474D-BDAB-F36F03451AAB}] => (Allow) F:\stem\SteamApps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software) FirewallRules: [{6CD3D87C-6D18-4620-BD95-4DCB3F7B9D57}] => (Allow) F:\stem\SteamApps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software) FirewallRules: [{730374BD-7EF0-46B7-A367-285C2E008939}] => (Allow) F:\stem\SteamApps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software) FirewallRules: [{475C4EE2-BFFA-4308-A7A7-5355BBC3DA54}] => (Allow) F:\stem\SteamApps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software) FirewallRules: [{E7B1CEC5-69D7-4440-959A-35A9730ACC5F}] => (Allow) H:\PIPEBMX\Editor\Unity.exe => Brak pliku FirewallRules: [{0482E066-C8F2-42A1-AE6D-3441D1AE66C7}] => (Block) H:\PIPEBMX\Editor\Unity.exe => Brak pliku FirewallRules: [{33E85EB1-AA8A-4633-AF9B-E88884D89B90}] => (Allow) LPort=54950 FirewallRules: [{AA557597-302A-479D-9E2C-F3B087EEE491}] => (Allow) LPort=54955 FirewallRules: [{10FC3279-D826-440E-A268-CA88F94CBA3F}] => (Allow) F:\stem\SteamApps\common\assettocorsa\AssettoCorsa.exe (Kunos Simulazioni) [Brak podpisu cyfrowego] FirewallRules: [{AE06B662-4702-4460-A779-0E5BDBC420D2}] => (Allow) F:\stem\SteamApps\common\assettocorsa\AssettoCorsa.exe (Kunos Simulazioni) [Brak podpisu cyfrowego] FirewallRules: [{7006E48E-FEDF-4B22-8F8A-3B3DC5C2A47A}] => (Allow) F:\stem\SteamApps\common\Sniper Ghost Warrior 3\win_x64\SGW3.exe (CI Games S.A.) [Brak podpisu cyfrowego] FirewallRules: [{9A0B7868-4425-4C96-98B9-A037697BAA2C}] => (Allow) F:\stem\SteamApps\common\Sniper Ghost Warrior 3\win_x64\SGW3.exe (CI Games S.A.) [Brak podpisu cyfrowego] FirewallRules: [{90B48281-41A2-4111-A526-25770FF6C059}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe (BlueStack Systems, Inc. -> BlueStack Systems, Inc.) FirewallRules: [{9F73B382-8705-421D-A0AF-0A59D4E7F030}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{B3391C01-9213-4D5C-B6FA-88EF785CF33F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{BAD81E1B-1BCD-4502-A53B-8A2A52331264}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{8ED2D5FB-0BDE-4C11-8036-268B68DF9227}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{165A0A90-D1ED-4663-B346-CB6368790F33}] => (Allow) I:\OperaGX\75.0.3969.259\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [{BB7E13EC-B68F-4FE7-9E64-65C8549F7BBD}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{8767456D-00E9-4B25-8B18-777DA5AA5FD4}] => (Allow) I:\OperaGX\75.0.3969.267\opera.exe (Opera Software AS -> Opera Software) ==================== Punkty Przywracania systemu ========================= ==================== Wadliwe urządzenia w Menedżerze urządzeń ============ Name: VirtualBox Host-Only Ethernet Adapter Description: VirtualBox Host-Only Ethernet Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Oracle Corporation Service: VBoxNetAdp Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: Kontroler zgodny ze standardem High Definition Audio Description: Kontroler zgodny ze standardem High Definition Audio Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: HDAudBus Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. Name: Intel(R) HD Graphics 4600 Description: Intel(R) HD Graphics 4600 Class Guid: {4d36e968-e325-11ce-bfc1-08002be10318} Manufacturer: Intel Corporation Service: igfx Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Błędy w Dzienniku zdarzeń: ======================== Dziennik Aplikacja: ================== Dziennik System: ============= Error: (05/23/2021 04:58:49 PM) (Source: DCOM) (EventID: 10000) (User: KERAMTI73) Description: Nie można uruchomić serwera DCOM: {0358B920-0AC7-461F-98F4-58E32CD89148}. Błąd: 2147942767 Błąd wystąpił podczas uruchamiania polecenia: C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683} Error: (05/23/2021 04:33:28 PM) (Source: VBoxNetLwf) (EventID: 12) (User: ) Description: Sterownik wykrył błąd wewnętrzny sterownika na \Device\VBoxNetLwf. Error: (05/23/2021 04:33:26 PM) (Source: VBoxNetLwf) (EventID: 12) (User: ) Description: Sterownik wykrył błąd wewnętrzny sterownika na \Device\VBoxNetLwf. Error: (05/23/2021 02:53:15 PM) (Source: DCOM) (EventID: 10010) (User: keramti73) Description: Serwer {9BA05972-F6A8-11CF-A442-00A0C90A8F39} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (05/23/2021 02:53:15 PM) (Source: DCOM) (EventID: 10010) (User: keramti73) Description: Serwer {9BA05972-F6A8-11CF-A442-00A0C90A8F39} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (05/23/2021 01:58:57 PM) (Source: VBoxNetLwf) (EventID: 12) (User: ) Description: Sterownik wykrył błąd wewnętrzny sterownika na \Device\VBoxNetLwf. Error: (05/23/2021 01:58:55 PM) (Source: VBoxNetLwf) (EventID: 12) (User: ) Description: Sterownik wykrył błąd wewnętrzny sterownika na \Device\VBoxNetLwf. Error: (05/23/2021 09:58:05 AM) (Source: VBoxNetLwf) (EventID: 12) (User: ) Description: Sterownik wykrył błąd wewnętrzny sterownika na \Device\VBoxNetLwf. Windows Defender: ================ Date: 2020-07-26 15:34:38 Description: Produkt Program antywirusowy Microsoft Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz: https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/CryptInject&threatid=2147725859&enterprise=0 Nazwa: Trojan:Win32/CryptInject Identyfikator: 2147725859 Ważność: Poważny Kategoria: Koń trojański Ścieżka: containerfile:_C:\Users\adamt\Downloads\Extreme Injector v3.7.3_cshacked.pl.zip; file:_C:\Users\adamt\Downloads\Extreme Injector v3.7.3_cshacked.pl.zip->Extreme Injector v3.exe; webfile:_C:\Users\adamt\Downloads\Extreme Injector v3.7.3_cshacked.pl.zip|https://www.cshacked.pl/applications/core/interface/file/attachment.php?id=25598|pid:2160,ProcessStart:132402440443119088 Pochodzenie wykrycia: Internet Typ wykrycia: Konkretne Źródło wykrycia: Pobrania i załączniki Użytkownik: keramti73\adamt Nazwa procesu: Unknown Wersja analizy zabezpieczeń: AV: 1.319.2317.0, AS: 1.319.2317.0, NIS: 1.319.2317.0 Wersja aparatu: AM: 1.1.17200.2, NIS: 1.1.17200.2 Date: 2020-07-26 15:34:29 Description: Produkt Program antywirusowy Microsoft Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz: https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/CryptInject&threatid=2147725859&enterprise=0 Nazwa: Trojan:Win32/CryptInject Identyfikator: 2147725859 Ważność: Poważny Kategoria: Koń trojański Ścieżka: containerfile:_C:\Users\adamt\Downloads\Extreme Injector v3.7.3_cshacked.pl.zip; file:_C:\Users\adamt\Downloads\Extreme Injector v3.7.3_cshacked.pl.zip->Extreme Injector v3.exe; webfile:_C:\Users\adamt\Downloads\Extreme Injector v3.7.3_cshacked.pl.zip|https://www.cshacked.pl/applications/core/interface/file/attachment.php?id=25598|pid:2160,ProcessStart:132402440443119088 Pochodzenie wykrycia: Internet Typ wykrycia: Konkretne Źródło wykrycia: Pobrania i załączniki Użytkownik: keramti73\adamt Nazwa procesu: Unknown Wersja analizy zabezpieczeń: AV: 1.319.2317.0, AS: 1.319.2317.0, NIS: 1.319.2317.0 Wersja aparatu: AM: 1.1.17200.2, NIS: 1.1.17200.2 Date: 2020-07-22 14:37:13 Description: Produkt Program antywirusowy Microsoft Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz: https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Esulat.A!rfn&threatid=2147745898&enterprise=0 Nazwa: Trojan:Win32/Esulat.A!rfn Identyfikator: 2147745898 Ważność: Poważny Kategoria: Koń trojański Ścieżka: file:_I:\DIRT4\DiRT 4\steam_api64.dll Pochodzenie wykrycia: Komputer lokalny Typ wykrycia: Konkretne Źródło wykrycia: Ochrona w czasie rzeczywistym Użytkownik: keramti73\adamt Nazwa procesu: I:\DIRT4\DiRT 4 PC game ^^nosTEAM^^RO\DiRT4_nosTEAM.exe Wersja analizy zabezpieczeń: AV: 1.319.2024.0, AS: 1.319.2024.0, NIS: 1.319.2024.0 Wersja aparatu: AM: 1.1.17200.2, NIS: 1.1.17200.2  CodeIntegrity: =============== Date: 2021-05-23 20:50:27 Description: Code Integrity determined that a process (\Device\HarddiskVolume7\Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\PrxerNsp.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Statystyki pamięci =========================== BIOS: American Megatrends Inc. F1 09/24/2013 Płyta główna: Gigabyte Technology Co., Ltd. Z87-DS3H Procesor: Intel(R) Core(TM) i5-4440 CPU @ 3.10GHz Procent pamięci w użyciu: 66% Całkowita pamięć fizyczna: 8072.29 MB Dostępna pamięć fizyczna: 2668.37 MB Całkowita pamięć wirtualna: 16264.29 MB Dostępna pamięć wirtualna: 8177.33 MB ==================== Dyski ================================ Drive c: (System WIN 10) (Fixed) (Total:54.96 GB) (Free:7.54 GB) NTFS Drive d: (PROGRAMY) (Fixed) (Total:100 GB) (Free:28.82 GB) NTFS Drive e: () (Fixed) (Total:300 GB) (Free:101.5 GB) NTFS Drive f: (GRY) (Fixed) (Total:300 GB) (Free:49.86 GB) NTFS Drive g: (MP3 I ZDJĘCIA) (Fixed) (Total:231.51 GB) (Free:108.68 GB) NTFS Drive i: (Adam) (Fixed) (Total:99.54 GB) (Free:21.82 GB) NTFS Drive j: (Marek) (Fixed) (Total:133.25 GB) (Free:55.39 GB) NTFS \\?\Volume{c60cdb46-afde-11e5-bb23-806e6f6e6963}\ () (Fixed) (Total:0.1 GB) (Free:0.03 GB) NTFS \\?\Volume{aa52c422-0000-0000-0000-f0c30d000000}\ () (Fixed) (Total:0.84 GB) (Free:0.41 GB) NTFS ==================== MBR & Tablica partycji ==================== ========================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 55.9 GB) (Disk ID: AA52C422) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=55 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=857 MB) - (Type=27) ========================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 9048626C) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=42) ========================================================== Disk: 2 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: 3CDB3CDA) Partition 1: (Not Active) - (Size=99.5 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=133.3 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt =======================