Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 18-01-2020 Uruchomiony przez olila (20-01-2020 16:16:43) Uruchomiony z F:\SystemSSD Windows 10 Pro Wersja 1903 18362.592 (X64) (2019-09-27 15:26:15) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-1291102305-879382610-2014784457-500 - Administrator - Disabled) defaultuser0 (S-1-5-21-1291102305-879382610-2014784457-1002 - Limited - Disabled) => C:\Users\defaultuser0.DESKTOP-3AM0UDA Gość (S-1-5-21-1291102305-879382610-2014784457-501 - Limited - Disabled) Konto domyślne (S-1-5-21-1291102305-879382610-2014784457-503 - Limited - Disabled) olila (S-1-5-21-1291102305-879382610-2014784457-1003 - Administrator - Enabled) => C:\Users\olila WDAGUtilityAccount (S-1-5-21-1291102305-879382610-2014784457-504 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKLM-x32\...\uTorrent) (Version: 2.2.1 - ) 3Dconnexion 3DxWare 10 (64-bit) (HKLM-x32\...\{BAFCA6AC-8B37-405B-B57E-C1D45DE70ACC}) (Version: 10.6.0 - 3Dconnexion) 3Dconnexion 3DxWinCore (HKLM\...\{CCE91B1C-9921-4170-A7E8-83E56F6765EC}) (Version: 17.6.0.16266 - 3Dconnexion) Hidden 3Dconnexion Add-In for Microsoft Office (HKLM\...\{683FCB0B-5C77-46F9-829C-3AD9335BACDD}) (Version: 1.0.1.0 - 3Dconnexion) Hidden 3Dconnexion Plug-In for Photoshop CS3 - CS6, CC and CC 2014 - 2019 (HKLM\...\{4244A365-6E14-4017-B8A0-237B18353C53}) (Version: 2.9.2 - 3Dconnexion) Hidden 64 Bit HP CIO Components Installer (HKLM\...\{13DA9C7C-EBFB-40D0-94A1-55B42883DF21}) (Version: 21.2.1 - HP Inc.) Hidden 7-Zip 19.02 alpha (x64) (HKLM\...\7-Zip) (Version: 19.02 alpha - Igor Pavlov) ACDSee (HKLM-x32\...\ACDSee) (Version: - ) Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.9.1.335 - Adobe Systems Incorporated) Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.142 - Adobe Systems Incorporated) Adobe Photoshop (HKLM\...\{9B08B2EC-C82E-4D24-A3E0-57646E2CE480}) (Version: 1.0.0000 - Adobe Systems Incorporated) Hidden Adobe Photoshop CC 2017 (HKLM-x32\...\PHSP_18_0_1) (Version: 18.0.1 - Adobe Systems Incorporated) Adobe Photoshop Lightroom 5.6 64-bit (HKLM\...\{D19E99C2-6D9D-4075-B446-B4387EAF70A5}) (Version: 5.6.0 - Adobe Systems Incorporated) Aktualizacje NVIDIA 38.0.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.4.0 - NVIDIA Corporation) Hidden ALLPlayer (wersja 8.0) (HKLM\...\{68972948-F221-4267-9EB6-2EB5D913C4CF}_is1) (Version: 8.0 - ALLPlayer Ltd.) AMCap (HKLM-x32\...\AMCap) (Version: 9.22 - Noël Danjou) AnyDesk (HKLM-x32\...\AnyDesk) (Version: ad 5.4.0 - philandro Software GmbH) Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) Assassin's Creed Origins (HKLM-x32\...\{DAC281DD-7006-49D4-905B-E8BDA474A230}_is1) (Version: - Ubisoft) Asystent aktualizacji do systemu Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22449 - Microsoft Corporation) Audacity 2.1.2 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.2 - Audacity Team) Bigasoft Audio Converter 5.1.3.6446 (HKLM-x32\...\{E6333CE4-9DC0-455C-9D43-E011CE33F550}_is1) (Version: - Bigasoft Corporation) ChargeMaster2 (HKLM-x32\...\{9F626FC2-3FDE-4947-BAA4-EC7FC3AFAEBB}) (Version: 2.0.4 - SkyRC) Chrome Remote Desktop Host (HKLM-x32\...\{EF08968E-F7E7-43EA-95B1-1E8ACC8CC459}) (Version: 80.0.3987.18 - Google Inc.) CPUID CPU-Z 1.86 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.86 - CPUID, Inc.) CrystalDiskInfo 7.6.1 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 7.6.1 - Crystal Dew World) CrystalDiskMark 6.0.2 (HKLM\...\CrystalDiskMark6_is1) (Version: 6.0.2 - Crystal Dew World) Dot4 (HKLM\...\{3EEDA265-C6F3-4EC1-A317-1C9315DEDDDE}) (Version: 1.0.0.0 - HP) DriveCrypt 5.1 (HKLM-x32\...\DriveCrypt5_is1) (Version: 5.1.0 - SecurStar) Far Cry 5 - Gold Edition (HKLM-x32\...\Far Cry 5 - Gold Edition_is1) (Version: - ) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 79.0.3945.117 - Google LLC) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.421 - Google LLC) Hidden Hard Disk Low Level Format Tool wersja 4.40 (HKLM-x32\...\Hard Disk Low Level Format Tool_is1) (Version: 4.40 - ) hppLaserJetService (HKLM-x32\...\{028BF8B5-9143-4A68-84F3-A1A6D2E17889}) (Version: 009.022.00816 - Hewlett-Packard) Hidden HPSmartDeviceAgentBase (HKLM-x32\...\{F7270182-8AD0-420F-92A3-52438ED810A9}) (Version: 1.1.0.0 - HP Inc) IrfanView 4.51 (64-bit) (HKLM\...\IrfanView64) (Version: 4.51 - Irfan Skiljan) Jagged Alliance Flashback (HKLM-x32\...\Jagged Alliance Flashback_is1) (Version: - Full Control) Kingdom Come Deliverance MULTi9 - ElAmigos wersja 1.5.0 (HKLM-x32\...\{CB1BD06D-ED6C-497F-B993-D2B8416388F2}_is1) (Version: 1.5.0 - Warhorse Studios) Kodi (HKU\S-1-5-21-1291102305-879382610-2014784457-1003\...\Kodi) (Version: - XBMC Foundation) Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x64) - 14.16.27012 (HKLM-x32\...\{427ada59-85e7-4bc8-b8d5-ebf59db60423}) (Version: 14.16.27012.6 - Microsoft Corporation) MiniTool Partition Wizard Free 11 (HKLM\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version: - MiniTool Software Limited) Mozilla Firefox 72.0.1 (x64 pl) (HKLM\...\Mozilla Firefox 72.0.1 (x64 pl)) (Version: 72.0.1 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 64.0.2 - Mozilla) Mozilla Thunderbird 68.3.1 (x86 pl) (HKLM-x32\...\Mozilla Thunderbird 68.3.1 (x86 pl)) (Version: 68.3.1 - Mozilla) MSI Afterburner 4.6.2 (HKLM-x32\...\Afterburner) (Version: 4.6.2 - MSI Co., LTD) Mutant Year Zero Road to Eden MULTi11 - ElAmigos wersja 18.12.2018 (HKLM-x32\...\{F9F7F7EB-D4D1-4245-ABD1-357F42E566AB}_is1) (Version: 18.12.2018 - Funcom) Napisy24 (HKLM-x32\...\{D1985DBC-F09E-4317-91B8-932AD0FD4A27}_is1) (Version: 1.9.3 - Napisy24.pl) Narzędzia sprawdzające pakietu Microsoft Office 2016 — polski (HKLM\...\{90160000-001F-0415-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden NirSoft BlueScreenView (HKLM-x32\...\NirSoft BlueScreenView) (Version: - ) NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden NVIDIA GeForce Experience 3.20.2.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.2.34 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.38.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.16 - NVIDIA Corporation) Obsługa programów Apple (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.) Orbitron - Satellite Tracking System (HKLM-x32\...\Orbitron_is1) (Version: 3.71 - Sebastian Stoff) Panel sterowania NVIDIA 431.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 431.86 - NVIDIA Corporation) Hidden PingPlotter 5 (HKLM-x32\...\{57DFD5DE-1DE4-4BF6-B89B-A9EB4AF90D0B}) (Version: 5.8.6.5607 - Pingman Tools, LLC) Hidden PingPlotter 5 (HKLM-x32\...\PingPlotter 5 5.8.6.5607) (Version: 5.8.6.5607 - Pingman Tools, LLC) PRO Speed Test 2.0.5.5 (HKLM-x32\...\{5a5d921c-2517-4007-9804-050d4cceb3f7}}_is1) (Version: - V-SPEED Sp. z o.o.) QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.) REALTEK DTV USB DEVICE (HKLM-x32\...\{DDBB7C89-1A09-441E-AA0F-6AA465755C17}) (Version: 1.00.0000 - Realtek) SDR-RADIO.com (V2) (HKLM-x32\...\SDR-RADIO.com (V2)) (Version: - ) TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.1.3937 - TeamViewer) The Evil Within (HKLM-x32\...\The Evil Within_is1) (Version: - ) Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.22 - Ghisler Software GmbH) Trinus Cardboard version 2.1.7 (HKLM-x32\...\{A66AD08F-FC5B-4583-9A7D-4636F5637B2C}_is1) (Version: 2.1.7 - Odd Sheep SL) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden UpdateAssistant (HKLM\...\{B0D957AA-9ADA-4396-9757-B7EF0FCA648C}) (Version: 1.17.0.0 - Microsoft Corporation) Hidden Vegas Pro 13.0 (64-bit) (HKLM\...\{D264BD11-6A9B-11E4-A4F7-F04DA23A5C58}) (Version: 13.0.428 - Sony) VMware Workstation (HKLM\...\{132E3257-14F1-411A-BC6C-0CA32D3A9BC6}) (Version: 12.0.0 - VMware, Inc.) WakeOnLAN version 2.12.2.0 (HKLM\...\{05DF342B-3E1A-4862-9E67-8E7E9839D3EC}_is1) (Version: 2.12.2.0 - Aquila Technology) Wargaming.net Game Center (HKU\S-1-5-21-1291102305-879382610-2014784457-1003\...\Wargaming.net Game Center) (Version: 19.8.0.7920 - Wargaming.net) Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - ) WinRAR 5.50 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH) World of Tanks EU (HKU\S-1-5-21-1291102305-879382610-2014784457-1003\...\WOT.EU.PRODUCTION) (Version: - Wargaming.net) WXtoImg (HKLM-x32\...\WXtoImg) (Version: - ) YTD Video Downloader 5.9.10 (HKLM-x32\...\{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}) (Version: 5.9.10 - GreenTree Applications SRL) <==== UWAGA Packages: ========= Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-07] (Autodesk Inc.) Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.1.3842.0_x64__rz1tebttyb220 [2019-12-19] (Dolby Laboratories) DTS Sound Unbound -> C:\Program Files\WindowsApps\DTSInc.DTSSoundUnbound_2019.1.27.0_x64__t5j2fzbtdg37r [2019-10-30] (DTS, Inc.) HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_105.1.623.0_x64__v10z8vjag6ke6 [2019-11-16] (HP Inc.) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-10] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-10] (Microsoft Corporation) [MS Ad] Microsoft News - Wiadomości -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.34.20074.0_x64__8wekyb3d8bbwe [2020-01-15] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.5.12061.0_x64__8wekyb3d8bbwe [2019-12-14] (Microsoft Studios) [MS Ad] MSN Pogoda -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.34.13393.0_x64__8wekyb3d8bbwe [2019-12-19] (Microsoft Corporation) [MS Ad] ==================== Niestandardowe rejestracje CLSID (filtrowane): ============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-1291102305-879382610-2014784457-1003_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\olila\AppData\Local\Microsoft\OneDrive\18.111.0603.0006\amd64\FileSyncShell64.dll => Brak pliku CustomCLSID: HKU\S-1-5-21-1291102305-879382610-2014784457-1003_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\olila\AppData\Local\Microsoft\OneDrive\18.111.0603.0006\amd64\FileSyncShell64.dll => Brak pliku CustomCLSID: HKU\S-1-5-21-1291102305-879382610-2014784457-1003_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\olila\AppData\Local\Microsoft\OneDrive\18.111.0603.0006\amd64\FileSyncShell64.dll => Brak pliku CustomCLSID: HKU\S-1-5-21-1291102305-879382610-2014784457-1003_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems Incorporated -> Adobe Systems) ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] (Adobe Systems Incorporated -> ) ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] (Adobe Systems Incorporated -> ) ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] (Adobe Systems Incorporated -> ) ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Brak pliku ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> Brak pliku ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> Brak pliku ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Brak pliku ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Brak pliku ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Brak pliku ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> Brak pliku ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Brak pliku ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Brak pliku ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> Brak pliku ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> Brak pliku ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Brak pliku ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Brak pliku ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Brak pliku ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> Brak pliku ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => d:\7-Zip\7-zip.dll [2019-09-05] (Igor Pavlov) [Brak podpisu cyfrowego] ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] (Adobe Systems Incorporated -> ) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-09-13] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-09-13] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2-x32: [VMDiskMenuHandler] -> {271DC252-6FE1-4D59-9053-E4CF50AB99DE} => F:\VMware\VMware Workstation\vmdkShellExt.dll [2015-08-14] (VMware, Inc. -> VMware, Inc.) ContextMenuHandlers2: [VMDiskMenuHandler64] -> {E4D28EDC-8C0B-43EE-9E7D-C8A8682334DC} => F:\VMware\VMware Workstation\x64\vmdkShellExt64.dll [2015-08-14] (VMware, Inc. -> VMware, Inc.) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => d:\7-Zip\7-zip.dll [2019-09-05] (Igor Pavlov) [Brak podpisu cyfrowego] ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-08-27] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => d:\7-Zip\7-zip.dll [2019-09-05] (Igor Pavlov) [Brak podpisu cyfrowego] ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] (Adobe Systems Incorporated -> ) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-09-13] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-09-13] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (filtrowane) ==================== ==================== Skróty & WMI ======================== ==================== Załadowane moduły (filtrowane) ============= 2019-10-26 12:04 - 2019-10-26 12:04 - 000232960 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\MSI Afterburner\RTCore.dll 2019-10-26 12:03 - 2019-10-26 12:03 - 000057344 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\MSI Afterburner\RTFC.dll 2019-10-26 12:04 - 2019-10-26 12:04 - 000650240 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\MSI Afterburner\RTHAL.dll 2019-10-26 12:03 - 2019-10-26 12:03 - 000074240 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\MSI Afterburner\RTMUI.dll 2019-10-26 12:03 - 2019-10-26 12:03 - 000369664 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\MSI Afterburner\RTUI.dll 2019-05-27 16:31 - 2019-05-27 16:31 - 000392704 _____ (3Dconnexion, Inc) [Brak podpisu cyfrowego] C:\Program Files\3Dconnexion\3DxWare\3DxWinCore64\en-US\3DxService.dll 2009-09-16 18:44 - 2009-09-16 18:44 - 000153088 _____ (Hewlett Packard) [Brak podpisu cyfrowego] C:\WINDOWS\System32\hptcpmib.dll 2009-09-16 18:45 - 2009-09-16 18:45 - 000331264 _____ (Hewlett Packard) [Brak podpisu cyfrowego] C:\WINDOWS\System32\HpTcpMon.dll 2009-09-16 11:44 - 2009-09-16 11:44 - 000132096 _____ (Hewlett Packard) [Brak podpisu cyfrowego] C:\WINDOWS\System32\hpzjrd01.dll 2019-03-10 08:47 - 2011-09-28 09:44 - 000467456 _____ (Hewlett-Packard Corporation) [Brak podpisu cyfrowego] C:\WINDOWS\system32\spool\PRTPROCS\x64\hpcpp117.DLL 2009-09-16 18:45 - 2009-09-16 18:45 - 000317440 _____ (Microsoft Corporation) [Brak podpisu cyfrowego] C:\WINDOWS\System32\HPTcpMUI.dll ==================== Alternate Data Streams (filtrowane) ======== (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\ProgramData\TEMP:14DA29E4 [121] ==================== Tryb awaryjny (filtrowane) ================== ==================== Powiązania plików (filtrowane) ================= ==================== Internet Explorer - Witryny zaufane i z ograniczeniami ========== ==================== Hosts - zawartość: ========================= (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2016-07-16 12:47 - 2016-07-16 12:45 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Inne obszary =========================== (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-1291102305-879382610-2014784457-1003\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\windows\img0.jpg DNS Servers: 62.179.1.60 - 62.179.1.61 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off) Zapora systemu Windows [funkcja włączona] Network Binding: ============= VMware Network Adapter VMnet8: VMware Bridge Protocol -> vmware_bridge (disabled) VMware Network Adapter VMnet1: VMware Bridge Protocol -> vmware_bridge (disabled) Ethernet 2: VMware Bridge Protocol -> vmware_bridge (enabled) ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Załączenie wejścia w fixlist spowoduje jego usunięcie.) HKLM\...\StartupApproved\StartupFolder: => "AnyDesk.lnk" HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0" HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud" HKLM\...\StartupApproved\Run32: => "vmware-tray.exe" HKLM\...\StartupApproved\Run32: => "IR_SERVER" HKLM\...\StartupApproved\Run32: => "APSDaemon" HKU\S-1-5-21-1291102305-879382610-2014784457-1003\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-1291102305-879382610-2014784457-1003\...\StartupApproved\Run: => "ALLUpdate" HKU\S-1-5-21-1291102305-879382610-2014784457-1003\...\StartupApproved\Run: => "Napisy24Update" HKU\S-1-5-21-1291102305-879382610-2014784457-1003\...\StartupApproved\Run: => "Napisy24.pl" HKU\S-1-5-21-1291102305-879382610-2014784457-1003\...\StartupApproved\Run: => "vidnotifier.exe" ==================== Reguły Zapory systemu Windows (filtrowane) ================ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{BEB68BA3-DBD0-4BCD-909B-08A73EBCAF95}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{28CBE6E5-D118-466A-9F36-B0ADC86A9CAD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{03F3C0B1-9633-449D-897F-97D194B2CAFD}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe (Apple Inc. -> Apple Inc.) FirewallRules: [UDP Query User{EB57251B-7E54-49D1-AA66-5A232E4DFD8B}D:\program files (x86)\trinus cardboard\tgserver.exe] => (Allow) D:\program files (x86)\trinus cardboard\tgserver.exe (Odd Sheep Sociedad Limitada -> Odd Sheep SL) FirewallRules: [TCP Query User{960B5B58-1F21-4FA8-A654-1689225F4BE1}D:\program files (x86)\trinus cardboard\tgserver.exe] => (Allow) D:\program files (x86)\trinus cardboard\tgserver.exe (Odd Sheep Sociedad Limitada -> Odd Sheep SL) FirewallRules: [{D603E5DF-0ECA-419E-8FB3-073CC8A5A07B}] => (Allow) F:\Temp\DriverPack-20190519100658\tools\aria2c.exe Brak pliku FirewallRules: [UDP Query User{1AE29899-39A5-4BBC-B1F6-8680F6F73DAE}D:\program files\aquila technology\wakeonlan\wakeonlan.exe] => (Allow) D:\program files\aquila technology\wakeonlan\wakeonlan.exe (Open Source Developer, Philip Sterling Tull -> Aquila Technology) FirewallRules: [TCP Query User{89B8567B-899C-4456-A77C-9FB949CE6A2B}D:\program files\aquila technology\wakeonlan\wakeonlan.exe] => (Allow) D:\program files\aquila technology\wakeonlan\wakeonlan.exe (Open Source Developer, Philip Sterling Tull -> Aquila Technology) FirewallRules: [{1503E03B-C8A4-406D-B72F-909FCF0C89D4}] => (Allow) C:\Program Files (x86)\HP\csiInstaller\8989F6D9-550C-4178-A8CB-75B82A06621F\Installer\hpbcsiInstaller.exe Brak pliku FirewallRules: [{5A03C0F2-97A6-487A-99EB-6CB37AE627D5}] => (Allow) C:\Program Files (x86)\HP\csiInstaller\8989F6D9-550C-4178-A8CB-75B82A06621F\Installer\hpbcsiInstaller.exe Brak pliku FirewallRules: [UDP Query User{6E6F8812-D224-4BD7-90E1-57E3AD91F7B7}F:\games\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) F:\games\kingdom come deliverance\bin\win64\kingdomcome.exe (Warhorse Studios sro) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{A699DA24-29D2-46C4-9A24-EB36A2C92F3C}F:\games\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) F:\games\kingdom come deliverance\bin\win64\kingdomcome.exe (Warhorse Studios sro) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{1E318584-6F4A-4EEA-A71F-585185D15B5D}I:\gry instalki\bat1\setup\bf1.exe] => (Allow) I:\gry instalki\bat1\setup\bf1.exe (EA Digital Illusions CE AB) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{B3A02A7B-9D89-4CD3-ACC9-D80B6866F93E}I:\gry instalki\bat1\setup\bf1.exe] => (Allow) I:\gry instalki\bat1\setup\bf1.exe (EA Digital Illusions CE AB) [Brak podpisu cyfrowego] FirewallRules: [{F904D51B-01EE-433A-B00D-3FE9FAC06B19}] => (Allow) F:\Torrent\uTorrent.exe (BitTorrent Inc -> BitTorrent, Inc.) FirewallRules: [{E1CCC48E-20C9-4C33-81CB-B993C9D23189}] => (Allow) F:\Torrent\uTorrent.exe (BitTorrent Inc -> BitTorrent, Inc.) FirewallRules: [{03D8BA57-2F5B-43CA-BA09-7176A68BB904}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{D4DA6846-692F-48A6-8113-6FCE32F71738}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{D4DFADA4-B963-458C-9F6F-FA9265675ACC}] => (Allow) C:\Users\olila\AppData\Local\BraveSoftware\Brave-Browser\Application\brave.exe Brak pliku FirewallRules: [UDP Query User{55D5784A-FEB3-424E-BEC9-78073A31D9A3}D:\program files (x86)\orbitron\orbitron.exe] => (Allow) D:\program files (x86)\orbitron\orbitron.exe (Sebastian Stoff) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{50E0E67C-3598-408C-877C-2B207C13C4C0}D:\program files (x86)\orbitron\orbitron.exe] => (Allow) D:\program files (x86)\orbitron\orbitron.exe (Sebastian Stoff) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{AA5B38AD-4F75-42BA-8303-831F655806FF}D:\program files\sdr-radio-pro.com\sdrconsole.exe] => (Allow) D:\program files\sdr-radio-pro.com\sdrconsole.exe (SDR-RADIO.com GmbH) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{877D5652-6DC6-4E53-BAC3-7741EDB86475}D:\program files\sdr-radio-pro.com\sdrconsole.exe] => (Allow) D:\program files\sdr-radio-pro.com\sdrconsole.exe (SDR-RADIO.com GmbH) [Brak podpisu cyfrowego] FirewallRules: [{F88F85B5-99B6-424B-BB4A-6B0E6D5956D6}] => (Allow) F:\VMware\VMware Workstation\vmware-hostd.exe (VMware, Inc. -> ) FirewallRules: [{4EDC0A03-5703-4767-8EDC-E7398B0B02D7}] => (Allow) F:\VMware\VMware Workstation\vmware-hostd.exe (VMware, Inc. -> ) FirewallRules: [{7A0C626C-6631-4C95-857A-B0BF65A605F2}] => (Allow) F:\VMware\VMware Workstation\vmware-authd.exe (VMware, Inc. -> VMware, Inc.) FirewallRules: [{380F5E60-5CFD-4580-BBDB-315253B87C1D}] => (Allow) F:\VMware\VMware Workstation\vmware-authd.exe (VMware, Inc. -> VMware, Inc.) FirewallRules: [UDP Query User{E00E2212-E54A-4FA0-892B-D5739A4BF61E}F:\gry\wot-zmodami\wotlauncher.exe] => (Allow) F:\gry\wot-zmodami\wotlauncher.exe Brak pliku FirewallRules: [TCP Query User{CA0FB717-4C55-4BC7-8B46-B75E587F7CD8}F:\gry\wot-zmodami\wotlauncher.exe] => (Allow) F:\gry\wot-zmodami\wotlauncher.exe Brak pliku FirewallRules: [UDP Query User{6DE3E0E5-186B-443D-AEFC-05ACB5FE5D02}C:\gry\gry\wotlauncher.exe] => (Allow) C:\gry\gry\wotlauncher.exe (Wargaming PCL -> Wargaming.net) FirewallRules: [TCP Query User{FE6C894B-F204-4AA8-9D06-FC4E8222EBA0}C:\gry\gry\wotlauncher.exe] => (Allow) C:\gry\gry\wotlauncher.exe (Wargaming PCL -> Wargaming.net) FirewallRules: [{1DC6592A-E031-4006-921F-8D296D6922C8}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer Germany GmbH) FirewallRules: [{6EFBF5A7-2EA8-4262-ABD5-B893FB7A363D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer Germany GmbH) FirewallRules: [{1ED3D3F3-FB33-4A0D-AF9B-42B3AE6C3134}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer Germany GmbH) FirewallRules: [{E52857D8-8ED8-4D83-A832-9387E7C6A462}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer Germany GmbH) FirewallRules: [{E17747C8-48BA-4DE3-8C6C-A9B0FC475E84}] => (Block) F:\games\grand theft auto v\gta5.exe (Rockstar Games) [Brak podpisu cyfrowego] FirewallRules: [{D4217E33-AC5C-4429-8A11-B3377D42A86C}] => (Block) F:\games\grand theft auto v\gta5.exe (Rockstar Games) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{1F752B38-DCC8-4790-9046-F30C992B61F4}F:\games\grand theft auto v\gta5.exe] => (Allow) F:\games\grand theft auto v\gta5.exe (Rockstar Games) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{02590B31-45A2-441C-9F86-3A3BFD88620B}F:\games\grand theft auto v\gta5.exe] => (Allow) F:\games\grand theft auto v\gta5.exe (Rockstar Games) [Brak podpisu cyfrowego] FirewallRules: [{0086F390-9107-4A8E-BDED-14069FF77074}] => (Allow) F:\Torrent\uTorrent.exe (BitTorrent Inc -> BitTorrent, Inc.) FirewallRules: [{287950D2-CCD4-4DE7-9268-4F0A1B524B83}] => (Allow) F:\Torrent\uTorrent.exe (BitTorrent Inc -> BitTorrent, Inc.) FirewallRules: [UDP Query User{A8E440E4-EB2D-43A2-BD8B-D534A79E03A6}C:\program files\microsoft office\office16\winword.exe] => (Allow) C:\program files\microsoft office\office16\winword.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{B65D8585-43AE-4AAD-A012-A51D761BCDA5}C:\program files\microsoft office\office16\winword.exe] => (Allow) C:\program files\microsoft office\office16\winword.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{DBE357DF-DDE1-4D36-A614-84C88743756B}] => (Allow) LPort=1688 FirewallRules: [UDP Query User{0C786567-4936-4F9D-8B96-DB66FABD5930}C:\windows\system32\mmc.exe] => (Block) C:\windows\system32\mmc.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [TCP Query User{CDEF694B-FBB4-418A-8862-7E228DDCB1E9}C:\windows\system32\mmc.exe] => (Block) C:\windows\system32\mmc.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [TCP Query User{F9EC5D34-E68A-465B-9227-41366799BAE8}C:\gry\gry\wotlauncher.exe] => (Allow) C:\gry\gry\wotlauncher.exe (Wargaming PCL -> Wargaming.net) FirewallRules: [UDP Query User{D02623EA-13EC-4320-9B19-6360E796D23E}C:\gry\gry\wotlauncher.exe] => (Allow) C:\gry\gry\wotlauncher.exe (Wargaming PCL -> Wargaming.net) FirewallRules: [TCP Query User{F6B595FA-7652-45A8-B3C0-B64FA8B59884}C:\gry\gry\worldoftanks.exe] => (Allow) C:\gry\gry\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net) FirewallRules: [UDP Query User{70804B10-F2F6-4D16-B69F-D354E80FBBCF}C:\gry\gry\worldoftanks.exe] => (Allow) C:\gry\gry\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net) FirewallRules: [{57779D6D-7BE0-4697-AA79-CFA00C0C4281}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{28474C8A-863A-4282-BA4B-953F709F515E}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{B9E2722C-3F3A-48DA-A011-DDB3BA3A181B}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{80691231-1538-4C25-9760-DD46C6D2F73C}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{4FFB4CE9-EC77-400C-BE09-6A055737BE3F}C:\gry\gry\win32\worldoftanks.exe] => (Allow) C:\gry\gry\win32\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net) FirewallRules: [UDP Query User{1FAF702C-5030-45FC-8726-219F823F6CAB}C:\gry\gry\win32\worldoftanks.exe] => (Allow) C:\gry\gry\win32\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net) FirewallRules: [{3316C271-AC96-4B21-B54E-E9939A27E163}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe Brak pliku FirewallRules: [{97011107-6C29-44FA-BEA3-8BE0A861863E}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe Brak pliku FirewallRules: [TCP Query User{219A176C-551F-4590-917C-EF75AA6152B6}C:\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net) FirewallRules: [UDP Query User{76F9A77D-913A-40DC-8853-F0A2797BD8C2}C:\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net) FirewallRules: [{E79EF0EB-D760-4D4F-AE30-CFFE4D678B8B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{49F49015-22A7-4373-8EA6-A672DF892D03}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{4003C826-ED66-4F88-9FEF-AA222F2F569B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{A365F0D8-2E73-4C2D-95CD-0C82AD9B3811}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{113794F2-90E4-47DF-B3A7-6D5EF3628FE3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer Germany GmbH) FirewallRules: [{2B95F3E7-CBFD-4AA2-BE53-666F9DF46A9D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer Germany GmbH) FirewallRules: [{5CDEA93A-7F2A-4058-BC39-06416D1CE348}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer Germany GmbH) FirewallRules: [{6F780E54-DEBA-416A-9A25-090FF57E7244}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer Germany GmbH) FirewallRules: [{0C75029D-AA58-4713-ADCE-7D975B31A418}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{D07838E5-8CF3-4322-8B94-39A442017340}] => (Allow) C:\Program Files (x86)\Google\Chrome Remote Desktop\80.0.3987.18\remoting_host.exe (Google LLC -> Google Inc.) FirewallRules: [{8BE93720-B1F6-4C9A-85FF-C43A3DA10B82}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> ) FirewallRules: [{B0C7B344-B220-4CD8-A939-1D3F3BC265AC}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> ) FirewallRules: [{EA10C8CE-9637-42F1-9841-01DE781C9150}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> ) FirewallRules: [{9628A2AB-F967-476F-AA0D-EC7480271CFB}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> ) FirewallRules: [{2EE4F820-F1DE-427C-B352-25CA2338839F}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> ) FirewallRules: [{E66B78F0-A8B9-466F-A23B-28E3A1EFF5A3}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> ) ==================== Punkty Przywracania systemu ========================= 29-12-2019 20:00:19 Zaplanowany punkt kontrolny 06-01-2020 08:56:05 Zaplanowany punkt kontrolny 13-01-2020 20:48:01 Installed Chrome Remote Desktop Host ==================== Wadliwe urządzenia w Menedżerze urządzeń ============ ==================== Błędy w Dzienniku zdarzeń: ======================== Dziennik Aplikacja: ================== Error: (01/20/2020 04:12:23 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (1432,R,98) TILEREPOSITORYS-1-5-18: Wystąpił błąd -1023 (0xfffffc01) podczas otwierania pliku dziennika C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (01/20/2020 03:45:10 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (3156,R,98) TILEREPOSITORYS-1-5-18: Wystąpił błąd -1023 (0xfffffc01) podczas otwierania pliku dziennika C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (01/20/2020 03:26:18 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (3048,R,98) TILEREPOSITORYS-1-5-18: Wystąpił błąd -1023 (0xfffffc01) podczas otwierania pliku dziennika C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (01/20/2020 03:16:18 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (14188,R,98) TILEREPOSITORYS-1-5-18: Wystąpił błąd -1023 (0xfffffc01) podczas otwierania pliku dziennika C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (01/20/2020 01:56:46 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (13804,R,98) TILEREPOSITORYS-1-5-18: Wystąpił błąd -1023 (0xfffffc01) podczas otwierania pliku dziennika C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (01/20/2020 01:47:54 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (3140,R,98) TILEREPOSITORYS-1-5-18: Wystąpił błąd -1023 (0xfffffc01) podczas otwierania pliku dziennika C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (01/20/2020 01:37:07 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Aktywacja licencji (slui.exe) nie powiodła się, kod błędu: hr=0xC004F074 Argumenty wiersza polecenia: RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable Error: (01/20/2020 01:36:57 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Aktywacja licencji (slui.exe) nie powiodła się, kod błędu: hr=0xC004F074 Argumenty wiersza polecenia: RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=1 Dziennik System: ============= Error: (01/20/2020 03:13:05 PM) (Source: cdrom) (EventID: 11) (User: ) Description: Sterownik wykrył błąd kontrolera na \Device\CdRom0. Error: (01/20/2020 01:36:34 PM) (Source: cdrom) (EventID: 11) (User: ) Description: Sterownik wykrył błąd kontrolera na \Device\CdRom0. Error: (01/20/2020 01:36:28 PM) (Source: cdrom) (EventID: 11) (User: ) Description: Sterownik wykrył błąd kontrolera na \Device\CdRom0. Error: (01/20/2020 01:36:24 PM) (Source: cdrom) (EventID: 11) (User: ) Description: Sterownik wykrył błąd kontrolera na \Device\CdRom0. Error: (01/20/2020 01:36:16 PM) (Source: cdrom) (EventID: 11) (User: ) Description: Sterownik wykrył błąd kontrolera na \Device\CdRom0. Error: (01/20/2020 01:36:14 PM) (Source: cdrom) (EventID: 11) (User: ) Description: Sterownik wykrył błąd kontrolera na \Device\CdRom0. Error: (01/19/2020 07:15:56 PM) (Source: cdrom) (EventID: 11) (User: ) Description: Sterownik wykrył błąd kontrolera na \Device\CdRom0. Error: (01/19/2020 07:13:05 PM) (Source: cdrom) (EventID: 11) (User: ) Description: Sterownik wykrył błąd kontrolera na \Device\CdRom0. Windows Defender: =================================== Date: 2020-01-16 21:31:43.163 Description: Skanowanie produktu Program antywirusowy Windows Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania: {6FAA60B9-D929-4AE2-B8DA-B15967233C03} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Szybkie skanowanie Użytkownik: ZARZĄDZANIE NT\SYSTEM Date: 2020-01-16 19:44:46.304 Description: Skanowanie produktu Program antywirusowy Windows Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania: {780D3A87-8985-41D5-8235-568BA40CF94B} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Szybkie skanowanie Użytkownik: ZARZĄDZANIE NT\SYSTEM Date: 2020-01-12 19:14:11.488 Description: Skanowanie produktu Program antywirusowy Windows Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania: {5FBB848E-DCA8-4B2A-B646-C23942DCFDDB} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Szybkie skanowanie Użytkownik: ZARZĄDZANIE NT\SYSTEM Date: 2020-01-11 17:48:05.119 Description: Skanowanie produktu Program antywirusowy Windows Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania: {D95A5C76-ADAC-4EED-AC3F-36188F01B143} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Szybkie skanowanie Użytkownik: ZARZĄDZANIE NT\SYSTEM Date: 2020-01-08 20:52:47.763 Description: Skanowanie produktu Program antywirusowy Windows Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania: {AF9E21A6-AE28-4084-95D9-789D5B3233D0} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Szybkie skanowanie Użytkownik: ZARZĄDZANIE NT\SYSTEM CodeIntegrity: =================================== Date: 2020-01-15 20:44:40.218 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume11\Program Files (x86)\PingPlotter 5\System.ValueTuple.dll that did not meet the Microsoft signing level requirements. Date: 2020-01-15 20:44:40.182 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume11\Program Files (x86)\PingPlotter 5\System.ValueTuple.dll that did not meet the Microsoft signing level requirements. Date: 2020-01-12 19:54:07.974 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll that did not meet the Microsoft signing level requirements. Date: 2020-01-12 19:54:07.971 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll that did not meet the Microsoft signing level requirements. Date: 2020-01-12 19:54:07.969 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll that did not meet the Microsoft signing level requirements. Date: 2020-01-01 17:44:48.149 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll that did not meet the Microsoft signing level requirements. Date: 2020-01-01 17:44:48.146 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll that did not meet the Microsoft signing level requirements. Date: 2020-01-01 17:44:48.144 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll that did not meet the Microsoft signing level requirements. ==================== Statystyki pamięci =========================== BIOS: American Megatrends Inc. 3602 11/01/2012 Płyta główna: ASUSTeK Computer INC. P8P67 Procesor: Intel(R) Core(TM) i5-2500K CPU @ 3.30GHz Procent pamięci w użyciu: 49% Całkowita pamięć fizyczna: 8159.13 MB Dostępna pamięć fizyczna: 4119.71 MB Całkowita pamięć wirtualna: 16351.13 MB Dostępna pamięć wirtualna: 10641.3 MB ==================== Dyski ================================ Drive c: (SSD) (Fixed) (Total:223.05 GB) (Free:123.69 GB) NTFS ==>[dysk z komponentami startowymi (pozyskano odczytując BCD)] Drive d: (DANE 500GB) (Fixed) (Total:465.76 GB) (Free:93.96 GB) NTFS ==>[system z komponentami startowymi (pozyskano odczytując dysk)] Drive f: (SYSTEM 1 TB) (Fixed) (Total:931.44 GB) (Free:238.24 GB) NTFS ==>[system z komponentami startowymi (pozyskano odczytując dysk)] Drive g: () (Fixed) (Total:29.82 GB) (Free:21.74 GB) NTFS Drive i: (DANE 2000 GB) (Fixed) (Total:971.99 GB) (Free:5.42 GB) NTFS \\?\Volume{46bdb81b-0000-0000-0000-100000000000}\ (Zastrzeżone przez system) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS \\?\Volume{2297bedc-0000-0000-0000-10c337000000}\ () (Fixed) (Total:0.52 GB) (Free:0.08 GB) NTFS \\?\Volume{46bdb81b-0000-0000-0000-500600000000}\ (Usunąć) (Fixed) (Total:1.47 GB) (Free:1.04 GB) NTFS ==================== MBR & Tablica partycji ==================== ========================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: FD7398CE) Partition 1: (Not Active) - (Size=465.8 GB) - (Type=74) ========================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 29.8 GB) (Disk ID: AFE6CC7E) Partition 1: (Not Active) - (Size=29.8 GB) - (Type=07 NTFS) ========================================================== Disk: 2 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: 2297BEDC) Partition 1: (Active) - (Size=223 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=533 MB) - (Type=27) ========================================================== Disk: 3 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 7FF91538) Partition 1: (Not Active) - (Size=71 MB) - (Type=DE) Partition 2: (Active) - (Size=931.4 GB) - (Type=07 NTFS) ========================================================== Disk: 4 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 46BDB81B) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=1.5 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=972 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=886.5 GB) - (Type=74) ========================================================== Disk: 5 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: E8FA7289) Partition 1: (Active) - (Size=465.8 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt =======================