Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 26-05.2019 Uruchomiony przez decz (26-05-2019 13:52:53) Uruchomiony z C:\Users\zende\Downloads Windows 10 Pro (X64) (2018-06-08 04:49:31) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-2259425977-1803134885-2901167585-500 - Administrator - Disabled) decz (S-1-5-21-2259425977-1803134885-2901167585-1001 - Administrator - Enabled) => C:\Users\zende Gość (S-1-5-21-2259425977-1803134885-2901167585-501 - Limited - Disabled) Konto domyślne (S-1-5-21-2259425977-1803134885-2901167585-503 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-2259425977-1803134885-2901167585-504 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKU\S-1-5-21-2259425977-1803134885-2901167585-1001\...\uTorrent) (Version: 3.5.5.45231 - BitTorrent Inc.) Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.192 - Adobe) Adobe Shockwave Player 12.3 (HKLM-x32\...\{3BD13111-2F32-4AB7-B9BB-16E07C9AA894}) (Version: 12.3.4.204 - Adobe Systems, Inc) Aktualizacje NVIDIA 36.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 36.0.0.0 - NVIDIA Corporation) Hidden Allgemeine Runtime Files (x86) (HKLM\...\{1F6D1DB5-82B5-41A4-85A2-0A382C142A35}_is1) (Version: 1.0.5.1 - Sereby Corporation) Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.0.8 - Electronic Arts, Inc.) ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.14 - Michael Tippach) Assassins Creed Odyssey version final (HKLM-x32\...\Assassins Creed Odyssey_is1) (Version: final - The) Assassin's Creed Unity (HKLM-x32\...\Uplay Install 720) (Version: - Ubisoft) Asystent aktualizacji do systemu Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22589 - Microsoft Corporation) Atom (HKU\S-1-5-21-2259425977-1803134885-2901167585-1001\...\atom) (Version: 1.36.0 - GitHub Inc.) AutoHotkey 1.1.30.01 (HKLM\...\AutoHotkey) (Version: 1.1.30.01 - Lexikos) Auto-Tune-8.1-vst3 (HKLM-x32\...\{417267F2-7228-4F20-B14B-0C3DC8A29E14}_is1) (Version: - Phúc Thái) Cheat Engine 6.8.1 (HKLM-x32\...\Cheat Engine 6.8.1_is1) (Version: - Cheat Engine) Cheat Engine 6.8.3 (HKLM-x32\...\Cheat Engine 6.8.3_is1) (Version: - Cheat Engine) Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.) Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.) Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.) CLEO 4.3 (HKLM-x32\...\{A8F37EB0-C741-41D7-8CAB-5B40ECEEF094}_is1) (Version: 4.3 - Seemann, Deji, Alien) Clickteam Fusion 2.5 Free Edition (HKLM-x32\...\Clickteam Fusion 2.5 Free Edition) (Version: - Clickteam) Clickteam Fusion 2.5 v2.30.02 / RePack by KamiaN~ & Dem@nXP (HKLM-x32\...\Clickteam Fusion 2.5_is1) (Version: - ) Clownfish Voice Changer (HKLM\...\ClownfishVoiceChanger) (Version: - ) CS GO Skin Changer (HKU\S-1-5-21-2259425977-1803134885-2901167585-1001\...\6fc47ca111ee6e34) (Version: 1.0.0.34 - CS GO Skin Changer) Discord (HKU\S-1-5-21-2259425977-1803134885-2901167585-1001\...\Discord) (Version: 0.0.305 - Discord Inc.) Dishonored Death of the Outsider (HKLM-x32\...\Dishonored Death of the Outsider_is1) (Version: - ) DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 425.31 - NVIDIA Corporation) Hidden Dropbox (HKLM-x32\...\Dropbox) (Version: 73.4.118 - Dropbox, Inc.) Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.189.1 - Dropbox, Inc.) Hidden Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden FACEIT (HKU\S-1-5-21-2259425977-1803134885-2901167585-1001\...\FACEITApp) (Version: 1.20.0 - FACEIT Ltd.) FACEIT AC version 1.0 (HKLM\...\{1419E44C-0EF4-4822-9194-9F1A4D43973D}_is1) (Version: 1.0 - FACEIT LTD) FiveM (HKU\S-1-5-21-2259425977-1803134885-2901167585-1001\...\CitizenFX_FiveM) (Version: - The CitizenFX Collective) FL Studio 20 (HKLM-x32\...\FL Studio 20) (Version: - Image-Line) FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version: - Image-Line) Fraps (HKLM-x32\...\Fraps) (Version: - ) Game Summary (HKU\S-1-5-21-2259425977-1803134885-2901167585-1001\...\Overwolf_nafihghfcpikebhfhdhljejkcifgbdahdhngepfb) (Version: 124.0.14 - Overwolf app) GIMP 2.10.6 (HKLM\...\GIMP-2_is1) (Version: 2.10.6 - The GIMP Team) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 74.0.3729.169 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.123 - Google Inc.) Hidden Grand Theft Auto V (HKLM-x32\...\{5EFC6C07-6B87-43FC-9524-F9E967241741}) (Version: "1.0.0.10" - Rockstar Games) Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.0.0.11" - Rockstar Games) HeidiSQL 10.1.0.5464 (HKLM\...\HeidiSQL_is1) (Version: 10.1 - Ansgar Becker) Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios) House Flipper (HKLM-x32\...\House Flipper_is1) (Version: - ) IL Download Manager (HKLM-x32\...\IL Download Manager) (Version: - Image-Line) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4835 - Intel Corporation) Interlok driver setup x64 (HKLM\...\{25613C10-27D2-410B-942B-D922D5C3A7BE}) (Version: 5.8.13 - PACE Anti-Piracy) iZotope Nectar 2 Production Suite (HKLM-x32\...\iZotope Nectar 2 Production Suite_is1) (Version: 2.04 - iZotope, Inc.) Java 8 Update 171 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180171F0}) (Version: 8.0.1710.11 - Oracle Corporation) Java 8 Update 171 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180171F0}) (Version: 8.0.1710.11 - Oracle Corporation) Java 8 Update 192 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180192F0}) (Version: 8.0.1920.12 - Oracle Corporation) Java 8 Update 192 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180192F0}) (Version: 8.0.1920.12 - Oracle Corporation) Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden LEGO DC Super Villains (HKLM-x32\...\LEGO DC Super Villains_is1) (Version: - ) LEGO Marvel Super Heroes (HKLM-x32\...\LEGO Marvel Super Heroes_R.G. Mechanics_is1) (Version: - R.G. Mechanics, markfiter) LEGO® Indiana Jones™ 2: The Adventure Continues (HKLM-x32\...\1432943043_is1) (Version: 1.0 - GOG.com) LSPD First Response (HKLM-x32\...\LSPD First Response) (Version: 0.4.1 - G17 Media) McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.0.36 - McAfee, Inc.) Metin2 (HKLM-x32\...\Metin2_PL_is1) (Version: - Gameforge 4D GmbH) Microsoft OneDrive (HKU\S-1-5-21-2259425977-1803134885-2901167585-1001\...\OneDriveSetup.exe) (Version: 19.070.0410.0005 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61186 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{CA8A885F-E95B-3FC6-BB91-F4D9377C7686}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{4ffaf7b8-a84a-4813-840c-8b1f1343ae54}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{dd1e9bde-2ad6-4e92-8c07-7d4723eab8b8}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x64) - 14.16.27012 (HKLM-x32\...\{427ada59-85e7-4bc8-b8d5-ebf59db60423}) (Version: 14.16.27012.6 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x86) - 14.16.27012 (HKLM-x32\...\{67f67547-9693-4937-aa13-56e296bd40f6}) (Version: 14.16.27012.6 - Microsoft Corporation) Microsoft Visual J# 2.0 Redistributable Package - SE (x64) (HKLM\...\Microsoft Visual J# 2.0 Redistributable Package - SE (x64)) (Version: - Microsoft Corporation) Microsoft Visual Studio Code (User) (HKU\S-1-5-21-2259425977-1803134885-2901167585-1001\...\{771FD6B0-FA20-440A-A002-3B3BAC16DC50}_is1) (Version: 1.34.0 - Microsoft Corporation) Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 1.18.1089.1204 - Microsoft Corporation) Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.5.6 - Notepad++ Team) Nox APP Player (HKLM-x32\...\Nox) (Version: 6.2.2.0 - Duodian Technology Co. Ltd.) NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.15 - NVIDIA Corporation) Hidden NVIDIA GeForce Experience 3.18.0.102 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.18.0.102 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.38.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.16 - NVIDIA Corporation) NVIDIA Sterownik graficzny 430.39 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 430.39 - NVIDIA Corporation) OBS Studio (HKLM-x32\...\OBS Studio) (Version: 21.1.2 - OBS Project) Online Application (HKLM-x32\...\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}) (Version: 2.7.0 - Microleaves) Hidden <==== UWAGA OpenIV (HKU\S-1-5-21-2259425977-1803134885-2901167585-1001\...\OpenIV) (Version: 3.1.1032 - .black/OpenIV Team) OpenOffice 4.1.5 (HKLM-x32\...\{7076105B-6FE8-464A-AC28-FFBB2686B68F}) (Version: 4.15.9789 - Apache Software Foundation) Opera Stable 60.0.3255.95 (HKLM-x32\...\Opera 60.0.3255.95) (Version: 60.0.3255.95 - Opera Software) Origin (HKLM-x32\...\Origin) (Version: 10.5.38.25027 - Electronic Arts, Inc.) Overwolf (HKLM-x32\...\Overwolf) (Version: 0.126.0.11 - Overwolf Ltd.) Panel sterowania NVIDIA 430.39 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 430.39 - NVIDIA Corporation) Hidden Plays (HKU\S-1-5-21-2259425977-1803134885-2901167585-1001\...\Plays) (Version: 2.0.7 - Plays.tv, Inc) PowerISO (HKLM-x32\...\PowerISO) (Version: 7.2 - Power Software Ltd) ProxyGate version 3.0.0.1180 (HKLM-x32\...\{1EC095EE-8CA3-43D6-B9F5-0C55B82ED3D7}}_is1) (Version: 3.0.0.1180 - Gold Click Ltd) <==== UWAGA PuTTY release 0.70 (64-bit) (HKLM\...\{45B3032F-22CC-40CD-9E97-4DA7095FA5A2}) (Version: 0.70.0.0 - Simon Tatham) RAGE Multiplayer (HKLM-x32\...\{6FE30B47-2577-43AD-9095-1861CA25889C}) (Version: 1.0.0.0 - Adam) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8544 - Realtek Semiconductor Corp.) REALTEK Wireless LAN Driver and Utility (HKLM-x32\...\{9C049509-055C-4CFF-A116-1D12312225EB}) (Version: 1.00.0253 - ) REAPER (x64) (HKLM\...\REAPER) (Version: - ) Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.4.1 - Rockstar Games) Saints Row IV (HKLM-x32\...\U2FpbnRzUm93SVY=_is1) (Version: 1 - ) Shotcut (HKLM-x32\...\Shotcut) (Version: 18.08.14 - ) Spotify (HKU\S-1-5-21-2259425977-1803134885-2901167585-1001\...\Spotify) (Version: 1.1.0.237.g378f6f25 - Spotify AB) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Steam Customizer (HKU\S-1-5-21-2259425977-1803134885-2901167585-1001\...\Steam Customizer) (Version: 1.00.00.00 - Blumont) SteelSeries Engine 3.13.10 (HKLM\...\SteelSeries Engine 3) (Version: 3.13.10 - SteelSeries ApS) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.1.10 - TeamSpeak Systems GmbH) TeamSpeak Overlay (HKU\S-1-5-21-2259425977-1803134885-2901167585-1001\...\Overwolf_jnabojaampcpfclojlbildognlnebnhfhibiielh) (Version: 1.0.0.2 - Overwolf app) Tencent Gaming Buddy (HKLM-x32\...\MobileGamePC) (Version: 1.0.0.1 - Tencent Technology Company) The Forest (HKLM-x32\...\The Forest_is1) (Version: - ) The Witcher 3 - Wild Hunt (HKLM-x32\...\1495134320_is1) (Version: 2.0.0.51 - GOG.com) This Is the Police 2 (HKLM-x32\...\This Is the Police 2_is1) (Version: - ) Tom Clancy's Rainbow Six Siege (HKLM-x32\...\Uplay Install 635) (Version: - Ubisoft Montreal) Tom Clancy's Rainbow Six Siege TS (HKLM-x32\...\Uplay Install 4865) (Version: - Ubisoft Montreal) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{C3ACFCEA-240F-4DCC-A0C3-DD55FEE6C3C2}) (Version: 2.58.0.0 - Microsoft Corporation) USB Vibration Joystick (HKLM-x32\...\{4999B2F1-3E74-409A-B8B5-E94448AA9EA6}) (Version: 2007.08.17 - ) VEGAS Pro 14.0 (64-bit) (HKLM\...\{4C79D80F-79F9-11E6-8402-BB95F5A309BD}) (Version: 14.0.161 - VEGAS) Visual Studio Professional 2017 (HKLM-x32\...\5d41d52d) (Version: 15.9.28307.280 - Microsoft Corporation) Voicemod (HKLM\...\{8435A407-F778-4647-9CDB-46E5EC50BAD0}_is1) (Version: 1.2.5.3 - Voicemod S.L.) vs_communitymsi (HKLM-x32\...\{71797C29-380A-492C-B35A-F5E4A7B57BDC}) (Version: 15.9.28307 - Microsoft Corporation) Hidden vs_communitymsires (HKLM-x32\...\{CEF65212-694E-4F0B-ADB5-17CE0C2AE213}) (Version: 15.0.26621 - Microsoft Corporation) Hidden vs_devenvmsi (HKLM-x32\...\{BFFA2FFB-1095-4ADD-A352-368806D2412B}) (Version: 15.0.26621 - Microsoft Corporation) Hidden vs_filehandler_amd64 (HKLM-x32\...\{A254DA0E-26A1-43C3-95BE-7A24D5599473}) (Version: 15.9.28302 - Microsoft Corporation) Hidden vs_filehandler_x86 (HKLM-x32\...\{1F42A73E-CF26-4D67-BA79-752CA56B639F}) (Version: 15.9.28302 - Microsoft Corporation) Hidden vs_FileTracker_Singleton (HKLM-x32\...\{A41E138F-5A3F-443C-B72D-957AB994FB5A}) (Version: 15.9.28128 - Microsoft Corporation) Hidden vs_minshellinteropmsi (HKLM-x32\...\{3A78DA3D-C8D4-429D-B536-6E59A0088451}) (Version: 15.8.27825 - Microsoft Corporation) Hidden vs_minshellmsi (HKLM-x32\...\{68B8AD33-CE97-4C3D-9583-669C39D21BA5}) (Version: 15.9.28302 - Microsoft Corporation) Hidden vs_minshellmsires (HKLM-x32\...\{871BE104-8114-4C84-9809-D3F2DAB18E06}) (Version: 15.0.26621 - Microsoft Corporation) Hidden vs_professionalmsi (HKLM-x32\...\{C135A30B-7258-4E11-8660-87C5642A4AAE}) (Version: 15.0.26621 - Microsoft Corporation) Hidden Warface My.Com (HKU\S-1-5-21-2259425977-1803134885-2901167585-1001\...\Warface My.Com) (Version: 1.83 - My.com B.V.) WinRAR 5.50 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH) WinSCP 5.15 (HKLM-x32\...\winscp3_is1) (Version: 5.15 - Martin Prikryl) WinX YouTube Downloader (HKLM-x32\...\WinX YouTube Downloader) (Version: 5.0 - Digiarty, Inc.) Packages: ========= Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.0.0.0_x64__tf1gferkr813w [2019-05-06] (Autodesk Inc.) Disney Magic Kingdoms -> C:\Program Files\WindowsApps\A278AB0D.DisneyMagicKingdoms_4.0.0.7_x86__h6adky7gbf63m [2019-05-22] (Gameloft.) Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_2.4.520.0_x64__rz1tebttyb220 [2019-03-11] (Dolby Laboratories) Legimi - ebooki bez limitów -> C:\Program Files\WindowsApps\Legimi.Legimi_1.3.3.142_x64__wy5y1rr1vjp8c [2019-05-12] (Legimi) March of Empires: War of Lords -> C:\Program Files\WindowsApps\A278AB0D.MarchofEmpires_4.0.1.1_x86__h6adky7gbf63m [2019-05-16] (Gameloft.) Rozszerzenie wideo MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.12831.0_x64__8wekyb3d8bbwe [2018-10-13] (Microsoft Corporation) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-2259425977-1803134885-2901167585-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2259425977-1803134885-2901167585-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2259425977-1803134885-2901167585-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2259425977-1803134885-2901167585-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2259425977-1803134885-2901167585-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2259425977-1803134885-2901167585-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2259425977-1803134885-2901167585-1001_Classes\CLSID\{087B3AE3-E237-4467-B8DB-5A38AB959AC9}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation) [Brak podpisu cyfrowego] CustomCLSID: HKU\S-1-5-21-2259425977-1803134885-2901167585-1001_Classes\CLSID\{3B092F0C-7696-40E3-A80F-68D74DA84210}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation) [Brak podpisu cyfrowego] CustomCLSID: HKU\S-1-5-21-2259425977-1803134885-2901167585-1001_Classes\CLSID\{63542C48-9552-494A-84F7-73AA6A7C99C1}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation) [Brak podpisu cyfrowego] CustomCLSID: HKU\S-1-5-21-2259425977-1803134885-2901167585-1001_Classes\CLSID\{7BC0E710-5703-45BE-A29D-5D46D8B39262}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\ooofilt_x64.dll (Apache Software Foundation) [Brak podpisu cyfrowego] CustomCLSID: HKU\S-1-5-21-2259425977-1803134885-2901167585-1001_Classes\CLSID\{AE424E85-F6DF-4910-A6A9-438797986431}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\propertyhdl_x64.dll (Apache Software Foundation) [Brak podpisu cyfrowego] CustomCLSID: HKU\S-1-5-21-2259425977-1803134885-2901167585-1001_Classes\CLSID\{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation) [Brak podpisu cyfrowego] CustomCLSID: HKU\S-1-5-21-2259425977-1803134885-2901167585-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\zende\Dropbox [2018-11-24 23:40] ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Brak pliku ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2018-03-19] (Notepad++ -> ) ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2018-06-17] (Power Software Limited -> Power Software Ltd) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-09-13] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-09-13] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2018-06-17] (Power Software Limited -> Power Software Ltd) ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd) ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2017-10-20] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2018-06-17] (Power Software Limited -> Power Software Ltd) ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-09-13] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-09-13] (win.rar GmbH -> Alexander Roshal) ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ==================== Załadowane moduły (filtrowane) ============== 2018-11-06 16:15 - 2012-08-08 22:56 - 000863232 _____ ( Realtek Semiconductor Corp.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\P2PLib.dll 2019-04-12 21:00 - 2019-03-05 19:15 - 000015360 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\Origin\libEGL.DLL 2019-04-12 21:00 - 2019-03-05 19:15 - 003090944 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\Origin\libGLESv2.dll 2018-11-06 16:15 - 2013-02-27 18:17 - 000221184 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\EnumDevLib.dll 2018-07-12 20:14 - 2018-06-11 14:57 - 000009728 _____ (Hi-Rez Studios) [Brak podpisu cyfrowego] C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe 2018-11-06 16:15 - 2012-02-14 20:37 - 000594432 _____ (Realtek Semiconductor Corp. ) [Brak podpisu cyfrowego] C:\WINDOWS\system32\Rtlihvs.dll 2018-11-06 16:15 - 2014-10-07 18:59 - 000552960 _____ (Realtek Semiconductor Corp.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RtlLib.dll 2018-11-06 16:15 - 2014-12-11 17:47 - 002015232 _____ (Realtek Semiconductor Corp.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RtWLan.exe 2018-11-06 16:15 - 2012-09-13 10:25 - 000200704 _____ (Realtek) [Brak podpisu cyfrowego] C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\IpLib.dll 2018-11-06 16:15 - 2012-05-07 15:23 - 000040960 _____ (Realtek) [Brak podpisu cyfrowego] C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RtlICS.dll 2018-11-06 16:15 - 2014-10-06 18:18 - 000274432 _____ (Realtek) [Brak podpisu cyfrowego] C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RtlIhvOid.dll 2018-11-06 16:15 - 2012-06-22 17:01 - 000044544 _____ (Realtek) [Brak podpisu cyfrowego] C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RtlQRCode.dll 2018-10-08 08:32 - 2019-02-28 22:33 - 286470656 _____ (SoundMixer) [Brak podpisu cyfrowego] C:\Users\zende\AppData\Roaming\Microsoft\SoundMixer\SoundMixer.exe 2019-04-12 21:00 - 2019-03-05 19:15 - 001548288 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Brak podpisu cyfrowego] C:\Program Files (x86)\Origin\LIBEAY32.dll 2019-04-12 21:00 - 2019-03-05 19:15 - 000395776 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Brak podpisu cyfrowego] C:\Program Files (x86)\Origin\ssleay32.dll 2018-11-06 16:15 - 2009-07-23 18:32 - 001122304 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Brak podpisu cyfrowego] C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\LIBEAY32.dll 2019-04-12 21:00 - 2019-03-05 19:15 - 001611264 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files (x86)\Origin\platforms\qwindows.dll 2019-04-12 21:00 - 2019-03-05 19:15 - 005487104 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files (x86)\Origin\Qt5Core.dll 2019-04-12 21:00 - 2019-03-05 19:15 - 005841920 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files (x86)\Origin\Qt5Gui.dll 2019-04-12 21:00 - 2019-03-05 19:15 - 001177600 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files (x86)\Origin\Qt5Network.dll 2019-04-12 21:00 - 2019-03-05 19:15 - 000207360 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files (x86)\Origin\Qt5Positioning.dll 2019-04-12 21:00 - 2019-03-05 19:15 - 000310272 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files (x86)\Origin\Qt5PrintSupport.dll 2019-04-12 21:00 - 2019-03-05 19:15 - 003515904 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files (x86)\Origin\Qt5Qml.dll 2019-04-12 21:00 - 2019-03-05 19:15 - 003390976 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files (x86)\Origin\Qt5Quick.dll 2019-04-12 21:00 - 2019-03-05 19:15 - 000068096 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files (x86)\Origin\Qt5QuickWidgets.dll 2019-04-12 21:00 - 2019-03-05 19:15 - 000116224 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files (x86)\Origin\Qt5WebChannel.dll 2019-04-12 21:00 - 2019-03-05 19:15 - 054063616 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files (x86)\Origin\Qt5WebEngineCore.dll 2019-04-12 21:00 - 2019-03-05 19:15 - 000211456 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files (x86)\Origin\Qt5WebEngineWidgets.dll 2019-04-12 21:00 - 2019-03-05 19:15 - 000146432 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files (x86)\Origin\Qt5WebSockets.dll 2019-04-12 21:00 - 2019-03-05 19:15 - 005089792 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files (x86)\Origin\Qt5Widgets.dll 2019-04-12 21:00 - 2019-03-05 19:15 - 000184832 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files (x86)\Origin\Qt5Xml.dll 2018-08-21 11:15 - 2018-01-27 00:30 - 000380416 _____ (Windows Operations GmbH & Co. KG) [Brak podpisu cyfrowego] C:\Users\zende\AppData\Local\DirectX\DirectX11.exe ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\Users\zende\AppData\Local\0og82iISqrr:STyRnSiw2ADUY1Ru6bzas [2574] AlternateDataStreams: C:\Users\zende\AppData\Local\Temporary Internet Files:rUGYEutZNQOBfZD9xoGfT [2510] ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2018-04-12 01:38 - 2019-05-26 13:25 - 000000027 _____ C:\WINDOWS\system32\drivers\etc\hosts 127.0.0.1 localhost ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;H:\Kubusia rzeczy\WAŻNE W CHUJ\Putty\ HKU\S-1-5-21-2259425977-1803134885-2901167585-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\zende\Desktop\thumb-1920-913910.png DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == Załączenie wejścia w fixlist spowoduje jego usunięcie. HKLM\...\StartupApproved\StartupFolder: => "SteelSeries Engine 3.lnk" HKLM\...\StartupApproved\Run: => "SecurityHealth" HKLM\...\StartupApproved\Run: => "AVGUI.exe" HKLM\...\StartupApproved\Run: => "PWRISOVM.EXE" HKLM\...\StartupApproved\Run32: => "Discord" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKLM\...\StartupApproved\Run32: => "PWRISOVM.EXE" HKLM\...\StartupApproved\Run32: => "Dropbox" HKLM\...\StartupApproved\Run32: => "SecurityHealth" HKU\S-1-5-21-2259425977-1803134885-2901167585-1001\...\StartupApproved\Run: => "uTorrent" HKU\S-1-5-21-2259425977-1803134885-2901167585-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-2259425977-1803134885-2901167585-1001\...\StartupApproved\Run: => "EpicGamesLauncher" HKU\S-1-5-21-2259425977-1803134885-2901167585-1001\...\StartupApproved\Run: => "WarThunderLauncher" HKU\S-1-5-21-2259425977-1803134885-2901167585-1001\...\StartupApproved\Run: => "EADM" HKU\S-1-5-21-2259425977-1803134885-2901167585-1001\...\StartupApproved\Run: => "ProductAuthenticationService" HKU\S-1-5-21-2259425977-1803134885-2901167585-1001\...\StartupApproved\Run: => "Spotify" HKU\S-1-5-21-2259425977-1803134885-2901167585-1001\...\StartupApproved\Run: => "FACEIT" HKU\S-1-5-21-2259425977-1803134885-2901167585-1001\...\StartupApproved\Run: => "Plays" HKU\S-1-5-21-2259425977-1803134885-2901167585-1001\...\StartupApproved\Run: => "Ubisoft Game Launcher" HKU\S-1-5-21-2259425977-1803134885-2901167585-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning" HKU\S-1-5-21-2259425977-1803134885-2901167585-1001\...\StartupApproved\Run: => "Overwolf" HKU\S-1-5-21-2259425977-1803134885-2901167585-1001\...\StartupApproved\Run: => "Voicemod" ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [TCP Query User{552735CE-DC7C-4C29-9655-942681F614AA}C:\users\zende\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\zende\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [UDP Query User{36FC0630-D4D9-4D9B-B397-23A4D75ABF3C}C:\users\zende\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\zende\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{3CF65675-8F8C-429C-BE65-2265EE911085}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{78A8C9AB-EAF4-4BC1-BE50-F65CCC2F1962}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{AB964691-582C-449A-9CAD-F267C54C08C1}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{ABC01FA6-B353-4B2E-AAE4-29CDC6AB6278}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [TCP Query User{00B238AD-D1BB-49FB-9C85-C6D73E72DA5B}C:\users\zende\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\zende\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe (cfx-collective) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{87CF8B3B-C49F-477D-8FA1-CB1E3531FA81}C:\users\zende\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\zende\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe (cfx-collective) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{DFFB1840-5F3D-403C-BF98-F69BF770E9E7}C:\users\zende\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\zende\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [UDP Query User{A87D8B9D-AAB1-4475-8598-D187D05486EF}C:\users\zende\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\zende\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [TCP Query User{290399E2-40AB-458A-BD26-F7819089386C}H:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) H:\program files (x86)\origin games\apex\r5apex.exe (Electronic Arts, Inc. -> Respawn Entertainment) FirewallRules: [UDP Query User{27782728-A9B3-4E1A-8F65-BF9F04A1CF3B}H:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) H:\program files (x86)\origin games\apex\r5apex.exe (Electronic Arts, Inc. -> Respawn Entertainment) FirewallRules: [{0C434D5B-EAF6-462A-A5B5-80F3EB9FE37D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{683C16A8-C2FC-473E-8432-9D47A3A7839C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [TCP Query User{47CD6C44-3027-43C6-9695-72AD720C1AD7}H:\kubusia rzeczy\aplikacje\clickteam fusion developer\mmf2u.exe] => (Allow) H:\kubusia rzeczy\aplikacje\clickteam fusion developer\mmf2u.exe () [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{8C20CCA5-9EC3-47D4-9D8E-F2D800786C16}H:\kubusia rzeczy\aplikacje\clickteam fusion developer\mmf2u.exe] => (Allow) H:\kubusia rzeczy\aplikacje\clickteam fusion developer\mmf2u.exe () [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{E7379660-FB84-4984-AF4F-E335893D6B3E}C:\users\zende\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\zende\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [UDP Query User{73CF28D7-9EDA-4FC1-B805-C25435B0E60A}C:\users\zende\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\zende\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [TCP Query User{E86E3E3D-9DB0-4AA4-BE62-A984A57A42B7}H:\kubusia rzeczy\gry\grandtheftautov\gta5.exe] => (Allow) H:\kubusia rzeczy\gry\grandtheftautov\gta5.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [UDP Query User{5DB80446-CA15-4591-8B9D-214385B76503}H:\kubusia rzeczy\gry\grandtheftautov\gta5.exe] => (Allow) H:\kubusia rzeczy\gry\grandtheftautov\gta5.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [{2607AD6C-9F2F-4AD7-A18C-5CE6E5951CB0}] => (Allow) H:\Kubusia rzeczy\gry\SteamLibrary\steamapps\common\Dead by Daylight\DeadByDaylight.exe Brak pliku FirewallRules: [{59841F36-1CF2-4003-A42D-7D97C6AD965E}] => (Allow) H:\Kubusia rzeczy\gry\SteamLibrary\steamapps\common\Dead by Daylight\DeadByDaylight.exe Brak pliku FirewallRules: [{4059FC1E-DD57-4B38-86FB-35EB353B517E}] => (Allow) H:\Kubusia rzeczy\gry\SteamLibrary\steamapps\common\Sniper Elite 4\Launcher\SniperElite4.exe () [Brak podpisu cyfrowego] FirewallRules: [{741E8D7C-7CB3-41CC-BDC0-139357C0616D}] => (Allow) H:\Kubusia rzeczy\gry\SteamLibrary\steamapps\common\Sniper Elite 4\Launcher\SniperElite4.exe () [Brak podpisu cyfrowego] FirewallRules: [{274C3A6B-74DD-4C5F-96E9-99278D970B92}] => (Allow) H:\Kubusia rzeczy\gry\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> ) FirewallRules: [{0F7DCBF8-6BE2-489D-8DA8-F6A19AD138C6}] => (Allow) H:\Kubusia rzeczy\gry\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> ) FirewallRules: [{19F853B3-A26C-4637-ADF0-EF6048FA2C46}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{B9E3B44C-6BCC-4C92-B94C-BA7C249598F1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{68333353-EEA5-4B7C-A437-449BC89473FE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{04A774AD-CBC8-4D69-AAFB-FB341B0B2792}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{95C3C9DD-A2E6-4162-A974-CF8F6832CB20}] => (Allow) H:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) FirewallRules: [{3DE3A6EB-94DE-43F7-8304-C056042566C3}] => (Allow) H:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) FirewallRules: [{9740855E-E5D1-49CC-ADCB-0FFFD6ADE6CF}] => (Allow) H:\Kubusia rzeczy\gry\Rainbow Six Siege\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations) FirewallRules: [{467D9C1A-C34F-4CE9-AE5C-112C318AD565}] => (Allow) H:\Kubusia rzeczy\gry\Rainbow Six Siege\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations) FirewallRules: [{F24A4451-AD5E-48E5-8CD6-F2C310B0A5B7}] => (Allow) H:\Kubusia rzeczy\gry\Rainbow Six Siege\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft) FirewallRules: [{C79D7861-C426-421E-AE30-165DEE603BC4}] => (Allow) H:\Kubusia rzeczy\gry\Rainbow Six Siege\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft) FirewallRules: [{20009451-6000-402A-9B91-16636B26B61A}] => (Allow) C:\Users\zende\AppData\Local\DirectX\DirectX11.exe (Windows Operations GmbH & Co. KG) [Brak podpisu cyfrowego] FirewallRules: [{8948339D-3F6C-4602-AC0C-D4A3C3DD80FB}] => (Allow) C:\Users\zende\AppData\Local\DirectX\DirectX11.exe (Windows Operations GmbH & Co. KG) [Brak podpisu cyfrowego] FirewallRules: [{66EC8AAB-86A9-4236-B247-4ABB2B19055B}] => (Allow) C:\Program Files\Opera\60.0.3255.84\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [{7B57C33E-CD13-45F1-A96C-3D72252E2FC0}] => (Allow) H:\Kubusia rzeczy\gry\SteamLibrary\steamapps\common\GarrysMod\hl2.exe () [Brak podpisu cyfrowego] FirewallRules: [{CE70969D-693F-4305-9CC2-4B5D1610317D}] => (Allow) H:\Kubusia rzeczy\gry\SteamLibrary\steamapps\common\GarrysMod\hl2.exe () [Brak podpisu cyfrowego] FirewallRules: [{751EB3E2-04E3-4D8D-A5E6-71687BEA1351}] => (Allow) H:\Kubusia rzeczy\gry\SteamLibrary\steamapps\common\Portal 2\portal2.exe () [Brak podpisu cyfrowego] FirewallRules: [{48E1C959-9E1D-491D-AF5E-17A2A939239F}] => (Allow) H:\Kubusia rzeczy\gry\SteamLibrary\steamapps\common\Portal 2\portal2.exe () [Brak podpisu cyfrowego] FirewallRules: [{58E7B6BE-72B0-4400-8327-0500B1B2A2A1}] => (Allow) C:\Program Files\Opera\60.0.3255.95\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [{86EEC62D-E586-48E9-A043-401FFE75394A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) FirewallRules: [{D49F953F-97A3-4A6D-BFBD-BB104F122F2C}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.) FirewallRules: [{A95292C7-F21E-4913-B20B-F31BB3D82B8B}] => (Allow) C:\Users\zende\AppData\Local\DirectX\DirectX11.exe (Windows Operations GmbH & Co. KG) [Brak podpisu cyfrowego] FirewallRules: [{21D45BF2-B89E-4CE4-AD49-52F59BB07233}] => (Allow) C:\Users\zende\AppData\Local\DirectX\DirectX11.exe (Windows Operations GmbH & Co. KG) [Brak podpisu cyfrowego] ==================== Punkty Przywracania systemu ========================= ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (05/26/2019 01:44:14 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-804UPLC) Description: httphttp-2147467263 Error: (05/26/2019 01:32:28 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-804UPLC) Description: httphttp-2147467263 Dziennik System: ============= Error: (05/26/2019 01:33:41 PM) (Source: DCOM) (EventID: 10016) (User: ZARZĄDZANIE NT) Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Uruchom do aplikacji serwera COM z identyfikatorem klasy CLSID Windows.SecurityCenter.WscDataProtection i identyfikatorem aplikacji APPID Niedostępny użytkownikowi ZARZĄDZANIE NT\SYSTEM o identyfikatorze zabezpieczeń SID (S-1-5-18) z adresu LocalHost (użycie LRPC) działającemu w kontenerze aplikacji o identyfikatorze SID Niedostępny (Niedostępny). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. Error: (05/26/2019 01:33:33 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-804UPLC) Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Aktywacja do aplikacji serwera COM z identyfikatorem klasy CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} i identyfikatorem aplikacji APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} użytkownikowi DESKTOP-804UPLC\decz o identyfikatorze zabezpieczeń SID (S-1-5-21-2259425977-1803134885-2901167585-1001) z adresu LocalHost (użycie LRPC) działającemu w kontenerze aplikacji o identyfikatorze SID Niedostępny (Niedostępny). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. Error: (05/26/2019 01:32:09 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-804UPLC) Description: Zgodnie z ustawieniami uprawnienia właściwe dla aplikacji nie jest udzielane uprawnienie Lokalny Aktywacja do aplikacji serwera COM z identyfikatorem klasy CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} i identyfikatorem aplikacji APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} użytkownikowi DESKTOP-804UPLC\decz o identyfikatorze zabezpieczeń SID (S-1-5-21-2259425977-1803134885-2901167585-1001) z adresu LocalHost (użycie LRPC) działającemu w kontenerze aplikacji o identyfikatorze SID Niedostępny (Niedostępny). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe. Error: (05/26/2019 01:30:38 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa Realtek DHCP Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (05/26/2019 01:30:18 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi QMEmulatorService z powodu następującego błędu: Nie można odnaleźć określonego pliku. Error: (05/26/2019 01:29:16 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: ZARZĄDZANIE NT) Description: Nastąpiło nieoczekiwane zatrzymanie modułu rozszerzalności sieci WLAN. Ścieżka modułu: C:\WINDOWS\system32\Rtlihvs.dll Error: (05/26/2019 01:29:16 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: ZARZĄDZANIE NT) Description: Nastąpiło nieoczekiwane zatrzymanie modułu rozszerzalności sieci WLAN. Ścieżka modułu: C:\WINDOWS\system32\Rtlihvs.dll Error: (05/26/2019 01:29:13 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: ZARZĄDZANIE NT) Description: Nastąpiło nieoczekiwane zatrzymanie modułu rozszerzalności sieci WLAN. Ścieżka modułu: C:\WINDOWS\system32\Rtlihvs.dll ==================== Statystyki pamięci =========================== BIOS: American Megatrends Inc. P2.00 06/11/2018 Motherboard: ASRock B85M DASH/OL R2.0 Procesor: Intel(R) Core(TM) i5-4460 CPU @ 3.20GHz Procent pamięci w użyciu: 52% Całkowita pamięć fizyczna: 8129.51 MB Dostępna pamięć fizyczna: 3832.05 MB Całkowita pamięć wirtualna: 19905.51 MB Dostępna pamięć wirtualna: 14056.05 MB ==================== Dyski ================================ Drive c: (OS) (Fixed) (Total:249.64 GB) (Free:96.07 GB) NTFS ==>[system z komponentami startowymi (pozyskano odczytując dysk)] Drive d: (Zastrzeżone przez system) (Fixed) (Total:0.1 GB) (Free:0.08 GB) NTFS Drive e: (DYSK_STARY) (Fixed) (Total:465.66 GB) (Free:413.38 GB) NTFS Drive f: (WNP-UA300P-01) (CDROM) (Total:0.11 GB) (Free:0 GB) UDF Drive g: () (Fixed) (Total:0.46 GB) (Free:0.08 GB) NTFS Drive h: (DANE) (Fixed) (Total:681.41 GB) (Free:127.71 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 0009B00A) Partition 1: (Active) - (Size=249.6 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=467 MB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=681.4 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 66289D0F) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt ============================