Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 06-06-2020 Uruchomiony przez VoTiX (19-06-2020 10:19:54) Uruchomiony z C:\Users\VoTiX\Downloads Windows 7 Home Premium Service Pack 1 (X64) (2017-01-08 21:19:48) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-3081180577-703244051-3826712266-500 - Administrator - Disabled) Gość (S-1-5-21-3081180577-703244051-3826712266-501 - Limited - Enabled) => C:\Users\Gość.VoTiX-Komputer HomeGroupUser$ (S-1-5-21-3081180577-703244051-3826712266-1002 - Limited - Enabled) Sandra (S-1-5-21-3081180577-703244051-3826712266-1005 - Limited - Enabled) => C:\Users\Sandra VoTiX (S-1-5-21-3081180577-703244051-3826712266-1000 - Administrator - Enabled) => C:\Users\VoTiX ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Total AV (Disabled - Out of date) {EC0E86E4-D0D8-0527-A560-47C79B8BB967} AS: Total AV (Disabled - Out of date) {576F6700-F6E2-0AA9-9FD0-7CB5E00CF3DA} AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKU\S-1-5-21-3081180577-703244051-3826712266-1000\...\uTorrent) (Version: 3.5.5.45672 - BitTorrent Inc.) 2007 Microsoft Office Suite Service Pack 1 (SP1) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{BEE75E01-DD3F-4D5F-B96C-609E6538D419}) (Version: - Microsoft) 2007 Microsoft Office Suite Service Pack 1 (SP1) (HKLM-x32\...\{90120000-0015-0415-0000-0000000FF1CE}_PROPLUS_{72776234-19F1-4688-9312-85FAF07143F4}) (Version: - Microsoft) Hidden 2007 Microsoft Office Suite Service Pack 1 (SP1) (HKLM-x32\...\{90120000-0016-0415-0000-0000000FF1CE}_PROPLUS_{72776234-19F1-4688-9312-85FAF07143F4}) (Version: - Microsoft) Hidden 2007 Microsoft Office Suite Service Pack 1 (SP1) (HKLM-x32\...\{90120000-0018-0415-0000-0000000FF1CE}_PROPLUS_{72776234-19F1-4688-9312-85FAF07143F4}) (Version: - Microsoft) Hidden 2007 Microsoft Office Suite Service Pack 1 (SP1) (HKLM-x32\...\{90120000-0019-0415-0000-0000000FF1CE}_PROPLUS_{72776234-19F1-4688-9312-85FAF07143F4}) (Version: - Microsoft) Hidden 2007 Microsoft Office Suite Service Pack 1 (SP1) (HKLM-x32\...\{90120000-001A-0415-0000-0000000FF1CE}_PROPLUS_{72776234-19F1-4688-9312-85FAF07143F4}) (Version: - Microsoft) Hidden 2007 Microsoft Office Suite Service Pack 1 (SP1) (HKLM-x32\...\{90120000-001B-0415-0000-0000000FF1CE}_PROPLUS_{72776234-19F1-4688-9312-85FAF07143F4}) (Version: - Microsoft) Hidden 2007 Microsoft Office Suite Service Pack 1 (SP1) (HKLM-x32\...\{90120000-001F-0407-0000-0000000FF1CE}_PROPLUS_{2AB528A5-BB1B-4EBE-8E51-AD0C4CD33CA9}) (Version: - Microsoft) Hidden 2007 Microsoft Office Suite Service Pack 1 (SP1) (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}_PROPLUS_{3EC77D26-799B-4CD8-914F-C1565E796173}) (Version: - Microsoft) Hidden 2007 Microsoft Office Suite Service Pack 1 (SP1) (HKLM-x32\...\{90120000-001F-0415-0000-0000000FF1CE}_PROPLUS_{2D1F88C2-ADAE-47C4-8648-6EA8F7E6EB2D}) (Version: - Microsoft) Hidden 2007 Microsoft Office Suite Service Pack 1 (SP1) (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_PROPLUS_{00C5525B-3CB3-467D-8100-2E6FB306CD86}) (Version: - Microsoft) Hidden 2007 Microsoft Office Suite Service Pack 1 (SP1) (HKLM-x32\...\{90120000-002A-0415-1000-0000000FF1CE}_PROPLUS_{94A4609B-0414-4427-81F3-0FD282A2D0D3}) (Version: - Microsoft) Hidden 2007 Microsoft Office Suite Service Pack 1 (SP1) (HKLM-x32\...\{90120000-0044-0415-0000-0000000FF1CE}_PROPLUS_{72776234-19F1-4688-9312-85FAF07143F4}) (Version: - Microsoft) Hidden 2007 Microsoft Office Suite Service Pack 1 (SP1) (HKLM-x32\...\{90120000-006E-0415-0000-0000000FF1CE}_PROPLUS_{94A4609B-0414-4427-81F3-0FD282A2D0D3}) (Version: - Microsoft) Hidden 4K Video Downloader 4.1 (HKLM-x32\...\4K Video Downloader_is1) (Version: 4.1.2.2075 - Open Media LLC) Adobe Flash Player 27 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 27.0.0.159 - Adobe Systems Incorporated) Advertising Center (HKLM-x32\...\{b2ec4a38-b545-4a00-8214-13fe0e915e6d}) (Version: 0.0.0.1 - Nero AG) Hidden ALLPlayer Pilot (HKLM-x32\...\{146BDBDD-ACD9-4B04-A286-C27471841E8E}_is1) (Version: 1.4 - ALLPlayer Group, Ltd.) ALLPlayer V7.X (HKLM-x32\...\ALLPlayer_is1) (Version: - ALLPlayer Group, Ltd.) AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 18.5.1 - Advanced Micro Devices, Inc.) Apple Application Support (32-bit) (HKLM-x32\...\{D4C80B0C-CF67-43A7-90C3-466853543B54}) (Version: 6.3 - Apple Inc.) Apple Application Support (64-bit) (HKLM\...\{B2A2E8AF-BC48-4191-B2C4-3846A19835CA}) (Version: 6.3 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{AA7D90D2-2387-4FA5-A3AF-96811BE49BFD}) (Version: 11.0.5.14 - Apple Inc.) Apple Software Update (HKLM-x32\...\{19589375-5C58-4AFA-842F-8B34744CCEAD}) (Version: 2.5.0.1 - Apple Inc.) Assassin's Creed Origins (HKLM-x32\...\{DAC281DD-7006-49D4-905B-E8BDA474A230}_is1) (Version: - Ubisoft) Battlefield 1 (HKLM-x32\...\Battlefield 1_R.G. Mechanics_is1) (Version: - R.G. Mechanics, markfiter) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) Call of Duty Modern Warfare 2 Campaign Remastered v. 1.1.1.1279145 (HKLM-x32\...\Call of Duty Modern Warfare 2 Campaign Remastered_is1) (Version: - ) CCleaner (HKLM\...\CCleaner) (Version: 5.46 - Piriform) Cheat Engine 6.5.1 (HKLM-x32\...\Cheat Engine 6.5.1_is1) (Version: - Cheat Engine) Cheat Engine 7.0 (HKLM\...\Cheat Engine 7.0_is1) (Version: - Cheat Engine) CPUID CPU-Z 1.79 (HKLM\...\CPUID CPU-Z_is1) (Version: - ) <==== UWAGA DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.9.0.0650 - Disc Soft Ltd) DFX (HKLM-x32\...\DFX) (Version: 12.013.0.0 - Power Technology) dr.fone (Version 9.6.0) (HKLM-x32\...\{E8F86DA8-B8E4-42C7-AFD4-EBB692AC43FD}_is1) (Version: 9.6.0.21 - Wondershare Technology Co.,Ltd.) Driver Cleaner 3 (HKLM-x32\...\Driver Cleaner) (Version: 3.3 - Ruud Ketelaars) DVD Shrink 3.2 (HKLM-x32\...\DVD Shrink_is1) (Version: - ) DVD Slim Free 2.8.0.2 (HKLM-x32\...\DVD Slim Free_is1) (Version: 2.8.0.2 - Marcello Pietrelli & Gianni Baini) FIFA 19 (HKLM-x32\...\{3391E07D-8484-4124-817E-FCBDA859FD62}) (Version: 1.0.58.64628 - Electronic Arts) Flvto Youtube Downloader (HKLM-x32\...\Flvto Youtube Downloader) (Version: 1.2.1 - Hotger) Free DVD Video Converter (HKLM-x32\...\Free DVD Video Converter_is1) (Version: 2.0.65.823 - Digital Wave Ltd) Free YouTube To MP3 Converter (HKLM-x32\...\Free YouTube To MP3 Converter_is1) (Version: 4.1.66.1226 - Digital Wave Ltd) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden HiSuite (HKLM-x32\...\Hi Suite) (Version: 8.0.1.303 - ) Installer (HKLM\...\{E9675998-9B12-4560-8E98-A6CCCDE0BE18}) (Version: 1.0.0 - Default Company Name) iTunes (HKLM\...\{F2A8CEEC-9DE9-4F4A-AC06-CE2A2FC629EC}) (Version: 12.7.3.46 - Apple Inc.) Kingdom Come Deliverance (HKLM-x32\...\Kingdom Come Deliverance_is1) (Version: - ) Mafia 3 (HKLM-x32\...\Mafia 3_is1) (Version: - ) Mafia II Definitive Edition (HKLM-x32\...\Mafia II Definitive Edition_is1) (Version: - ) Max Payne 3 v.1.0.0.196 (HKLM-x32\...\Max Payne 3_is1) (Version: - ) MediaHuman YouTube to MP3 Converter 3.9.8.21 (HKLM-x32\...\MediaHuman YouTube to MP3 Converter_is1) (Version: 3.9.8.21 - MediaHuman) Microsoft .NET Framework 4.6.2 (HKLM\...\{63DF5C4B-E3BF-3346-A033-C57B22F44C9E}) (Version: 4.6.01590 - Microsoft Corporation) Microsoft .NET Framework 4.6.2 (PLK) (HKLM\...\{0B3D240E-C151-31E7-8E2E-9626B3FCBB0C}) (Version: 4.6.01590 - Microsoft Corporation) Microsoft Office Professional Plus 2007 (HKLM-x32\...\PROPLUS) (Version: 12.0.6215.1000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.26.28720 (HKLM-x32\...\{7d607fb4-7e28-4c7a-a92f-3fcdaf555faf}) (Version: 14.26.28720.3 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.26.28720 (HKLM-x32\...\{86380aef-fd23-4fc3-8723-a98ccad8f2c6}) (Version: 14.26.28720.3 - Microsoft Corporation) Mozilla Firefox 77.0.1 (x64 pl) (HKLM\...\Mozilla Firefox 77.0.1 (x64 pl)) (Version: 77.0.1 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 75.0 - Mozilla) MSI Afterburner 4.5.0 (HKLM-x32\...\Afterburner) (Version: 4.5.0 - MSI Co., LTD) Napisy24 (HKLM-x32\...\{D1985DBC-F09E-4317-91B8-932AD0FD4A27}_is1) (Version: 1.9 - Napisy24.pl) NBA 2K19 (HKLM-x32\...\NBA 2K19_is1) (Version: - ) NBA 2K20 version final (HKLM-x32\...\NBA 2K20_is1) (Version: final - The) Nero 9 Essentials (HKLM-x32\...\{bb277d53-7797-4a65-812f-3346df4b18f7}) (Version: - Nero AG) Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.259 - Google, Inc.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.85.423.2014 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8934.1 - Realtek Semiconductor Corp.) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.2.0 - Rockstar Games) ScreenShot (HKLM-x32\...\ScreenShot) (Version: 2.0.4 - Filseclab Corporation) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version: - TechPowerUp) The Sims 3 Complete Collection version 1.67.2 (HKLM-x32\...\The Sims 3 Complete Collection_is1) (Version: 1.67.2 - Mr DJ) The Witcher 3 - Wild Hunt (HKLM-x32\...\1495134320_is1) (Version: 2.0.0.51 - GOG.com) TotalAV 5.5.83 (HKLM-x32\...\TotalAV) (Version: 5.5.83 - TotalAV) TP-LINK Wireless Client Utility (HKLM-x32\...\{5EF44D3A-E86E-434C-8418-71E277C565DF}) (Version: 2.0 - TP-LINK) Uplay (HKLM-x32\...\Uplay) (Version: 104.1 - Ubisoft) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN) VSDC Free Video Editor version 6.3.1.939 (HKLM\...\VSDC Free Video Editor_is1) (Version: 6.3.1.939 - Flash-Integro LLC) Vulkan Run Time Libraries 1.0.37.0 (HKLM\...\VulkanRT1.0.37.0) (Version: 1.0.37.0 - LunarG, Inc.) Vulkan Run Time Libraries 1.0.39.1 (HKLM\...\VulkanRT1.0.39.1) (Version: 1.0.39.1 - LunarG, Inc.) Vulkan Run Time Libraries 1.1.70.0 (HKLM\...\VulkanRT1.1.70.0) (Version: 1.1.70.0 - LunarG, Inc.) Hidden Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc) WinDirStat 1.1.2 (HKU\S-1-5-21-3081180577-703244051-3826712266-1000\...\WinDirStat) (Version: - ) Windows Driver Package - Microsoft (xusb21) XnaComposite (08/13/2009 2.1.0.1349) (HKLM\...\0AEBEF6F936CFE16E003F7E141631FAB754D9816) (Version: 08/13/2009 2.1.0.1349 - Microsoft) Windows Movie Maker (HKLM\...\Windows Movie Maker) (Version: 6.0.6002.18005 - Microsoft Corporation) WinRAR 5.31 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH) World of Tanks (HKU\S-1-5-21-3081180577-703244051-3826712266-1000\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version: - Wargaming.net) YAC(Yet Another Cleaner!) (HKLM-x32\...\iSafe) (Version: - ELEX DO BRASIL PARTICIPAÇÕES LTDA) <==== UWAGA YouTube By Click (HKLM-x32\...\{B0620F5C-A01C-4879-AA79-9E37C9F86A4E}) (Version: 2.2.80 - ByClick) Hidden YouTube By Click (HKLM-x32\...\YouTube By Click 2.2.80) (Version: 2.2.80 - ByClick) YTD Video Downloader 5.7.1 (HKLM-x32\...\{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}) (Version: 5.7.1 - GreenTree Applications SRL) <==== UWAGA ==================== Niestandardowe rejestracje CLSID (filtrowane): ============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Brak pliku ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Brak pliku ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-08] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-02-08] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-10-19] (AVB Disc Soft, SIA -> Disc Soft Ltd) ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Brak pliku ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-10-19] (AVB Disc Soft, SIA -> Disc Soft Ltd) ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2018-05-16] (Advanced Micro Devices, Inc.) [Brak podpisu cyfrowego] ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Brak pliku ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-08] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-02-08] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Drivers32: [VIDC.FICV] => C:\Windows\system32\ficvdec_x64.dll [652288 2013-05-28] () [Brak podpisu cyfrowego] HKLM\...\Drivers32: [msacm.voxacm160] => C:\Windows\system32\vct3216.acm [82944 2003-05-21] (Voxware, Inc.) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [msacm.scg726] => C:\Windows\system32\scg726.acm [13239 2000-03-14] (SHARP Corporation) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [msacm.alf2cd] => C:\Windows\system32\alf2cd.acm [38912 2003-05-21] (NCT Company) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\system32\AC3ACM.acm [81920 2004-02-04] (fccHandler) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [msacm.lame] => C:\Windows\system32\lame.ax [245760 2005-08-01] () [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.dvsd] => C:\Windows\system32\mcdvd_32.dll [261632 2003-05-21] (MainConcept) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.mpg4] => C:\Windows\system32\mpg4c32.dll [413760 2002-08-20] (Microsoft Corporation) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.mp42] => C:\Windows\system32\mpg4c32.dll [413760 2002-08-20] (Microsoft Corporation) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.mp43] => C:\Windows\system32\mpg4c32.dll [413760 2002-08-20] (Microsoft Corporation) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.xvid] => C:\Windows\system32\xvidvfw.dll [139264 2004-07-03] () [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.DIVX] => C:\Windows\system32\DivX.dll [638976 2003-05-22] (DivXNetworks, Inc.) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.VP60] => C:\Windows\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.VP61] => C:\Windows\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.VP62] => C:\Windows\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.LAGS] => C:\Windows\system32\lagarith.dll [216064 2011-12-07] () [Brak podpisu cyfrowego] HKLM\...\Drivers32: [VIDC.FICV] => C:\Windows\SysWOW64\ficvdec_x86.dll [641024 2013-05-28] () [Brak podpisu cyfrowego] ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\":: WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99] WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate] ==================== Załadowane moduły (filtrowane) ============= 2017-03-08 19:15 - 2017-03-08 19:15 - 000225280 _____ ( (Microsoft Corporation) [Brak podpisu cyfrowego]) [Plik w użyciu ] C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll 2018-04-24 22:12 - 2018-04-24 22:12 - 000015360 _____ () [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\libEGL.DLL 2018-04-24 22:12 - 2018-04-24 22:12 - 002519040 _____ () [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll 2003-03-18 23:23 - 2003-03-18 23:23 - 000024576 _____ (Microsoft Corporation) [Brak podpisu cyfrowego] C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\1045\mdmui.dll 2006-10-26 13:44 - 2006-10-26 13:44 - 000123904 _____ (Microsoft Corporation) [Brak podpisu cyfrowego] C:\Program Files (x86)\Common Files\Microsoft Shared\VS7Debug\csm.dll 2006-10-26 13:45 - 2006-10-26 13:45 - 000247296 _____ (Microsoft Corporation) [Brak podpisu cyfrowego] C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\msdbg2.dll 2017-01-09 04:44 - 2016-11-10 18:32 - 001008640 _____ (Microsoft Corporation) [Brak podpisu cyfrowego] C:\Windows\system32\USER32.dll 2017-02-06 01:04 - 2017-02-06 01:04 - 000833024 _____ (Microsoft Corporation) [Brak podpisu cyfrowego] C:\Windows\syswow64\USER32.dll 2020-03-04 13:05 - 2019-10-15 18:51 - 002648576 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Brak podpisu cyfrowego] C:\Program Files (x86)\TotalAV\libcrypto-1_1.dll 2020-03-04 13:05 - 2019-10-15 18:51 - 000640512 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Brak podpisu cyfrowego] C:\Program Files (x86)\TotalAV\libssl-1_1.dll 2018-04-24 22:12 - 2018-04-24 22:12 - 000032256 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\imageformats\qgif.dll 2018-04-24 22:12 - 2018-04-24 22:12 - 000039936 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\imageformats\qicns.dll 2018-04-24 22:12 - 2018-04-24 22:12 - 000034304 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\imageformats\qico.dll 2018-04-24 22:12 - 2018-04-24 22:12 - 000237056 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\imageformats\qjpeg.dll 2018-04-24 22:12 - 2018-04-24 22:12 - 000025600 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\imageformats\qsvg.dll 2018-04-24 22:12 - 2018-04-24 22:12 - 000025600 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\imageformats\qtga.dll 2018-04-24 22:12 - 2018-04-24 22:12 - 000024064 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\imageformats\qwbmp.dll 2018-04-24 22:12 - 2018-04-24 22:12 - 000481792 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\imageformats\qwebp.dll 2018-04-24 22:12 - 2018-04-24 22:12 - 001336320 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\platforms\qwindows.dll 2018-05-16 14:48 - 2018-05-16 14:48 - 005766144 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll 2018-04-24 22:12 - 2018-04-24 22:12 - 006045184 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll 2018-04-24 22:12 - 2018-04-24 22:12 - 000964096 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll 2018-04-24 22:12 - 2018-04-24 22:12 - 000279552 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll 2018-04-24 22:12 - 2018-04-24 22:12 - 003233792 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll 2018-04-24 22:12 - 2018-04-24 22:12 - 003406848 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll 2018-04-24 22:12 - 2018-04-24 22:12 - 000328704 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll 2018-04-24 22:12 - 2018-04-24 22:12 - 000109568 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll 2018-04-24 22:12 - 2018-04-24 22:12 - 000325632 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll 2018-04-24 22:12 - 2018-04-24 22:12 - 069968896 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll 2018-04-24 22:12 - 2018-04-24 22:12 - 005523456 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll 2018-04-24 22:12 - 2018-04-24 22:12 - 000282624 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll 2018-04-24 22:12 - 2018-04-24 22:12 - 000194560 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll 2018-04-24 22:12 - 2018-04-24 22:12 - 003281408 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll 2018-04-24 22:12 - 2018-04-24 22:12 - 000049152 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll 2018-04-24 22:12 - 2018-04-24 22:12 - 000018432 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll 2018-04-24 22:12 - 2018-04-24 22:12 - 000018432 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll 2018-04-24 22:12 - 2018-04-24 22:12 - 000311296 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll 2018-04-24 22:12 - 2018-04-24 22:12 - 000089600 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll 2018-04-24 22:12 - 2018-04-24 22:12 - 000018432 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll ==================== Alternate Data Streams (filtrowane) ======== ==================== Tryb awaryjny (filtrowane) ================== ==================== Powiązania plików (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) HKU\S-1-5-21-3081180577-703244051-3826712266-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.reg\UserChoice => Applications\notepad.exe ==================== Internet Explorer - Witryny zaufane i z ograniczeniami ========== ==================== Hosts - zawartość: ========================= (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2017-02-06 01:03 - 2017-02-06 01:04 - 000000923 ____R C:\Windows\system32\drivers\etc\hosts 127.0.0.1 genuine.microsoft.com 127.0.0.1 mpa.one.microsoft.com 127.0.0.1 sls.microsoft.com ==================== Inne obszary =========================== (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-3081180577-703244051-3826712266-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\VoTiX\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 8.8.8.8 - 8.8.4.4 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Załączenie wejścia w fixlist spowoduje jego usunięcie.) MSCONFIG\startupfolder: C:^Users^VoTiX^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^PO647-CCXTX-TZTOG-OTKOR-ETRFH.html => C:\Windows\pss\PO647-CCXTX-TZTOG-OTKOR-ETRFH.html.Startup MSCONFIG\startupreg: CCleaner Smart Cleaning => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR MSCONFIG\startupreg: DFX => C:\Program Files (x86)\DFX\DFX.exe -startup MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe" MSCONFIG\startupreg: VoTiX => cmd.exe /c start www.dinoraptzor.org ==================== Reguły Zapory systemu Windows (filtrowane) ================ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{FC2C31DF-D993-42DF-9473-7F6E532F068C}] => (Allow) C:\Users\VoTiX\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{C4DEB24A-A166-4DBE-9B4B-4548C4239ADD}] => (Allow) C:\Users\VoTiX\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{80F755A6-B3C2-4490-8FA7-40506B6129A1}] => (Allow) C:\Users\VoTiX\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{3E90F6FB-99D8-461C-9361-9CB4112C3D77}] => (Allow) C:\Users\VoTiX\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{464DA1B3-1C98-42EF-B6E6-20FB585F5A1D}] => (Allow) C:\Users\VoTiX\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{44732ABF-DBF0-438A-83EE-E35A5DE6C97F}] => (Allow) C:\Users\VoTiX\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{08BD85D0-8A2D-4778-A795-32BD30D31B42}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.) FirewallRules: [{B0D51183-A7EF-484B-B615-CA484FBFEC60}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.) FirewallRules: [{3ADB2043-6CD4-473C-BF98-977E18B7C799}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{D83B6EC7-0452-416D-A66D-91AB3C0A5A64}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{F6525AF4-E4B2-4D55-840A-31D3495B3D69}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{0A00F1B9-B590-4D10-B803-7EC04F7A2833}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [TCP Query User{3587ED2C-1E5F-4BE8-BD00-41D4373A9139}F:\grand theft auto v\gta5.exe] => (Allow) F:\grand theft auto v\gta5.exe => Brak pliku FirewallRules: [UDP Query User{337A4ACF-B860-4345-9002-63A92B8725D3}F:\grand theft auto v\gta5.exe] => (Allow) F:\grand theft auto v\gta5.exe => Brak pliku FirewallRules: [TCP Query User{063D2DC7-34BB-4842-ABD4-0F6A7DE8DE98}C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe] => (Block) C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe (ALLPlayer Group -> ALLPlayer Group Ltd.) FirewallRules: [UDP Query User{20E41F1E-616B-4B77-947A-C185C51E0DC0}C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe] => (Block) C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe (ALLPlayer Group -> ALLPlayer Group Ltd.) FirewallRules: [TCP Query User{78E2DC67-CA09-471A-B6E2-24330AA4C311}J:\games\battlefield 1\bf1.exe] => (Allow) J:\games\battlefield 1\bf1.exe => Brak pliku FirewallRules: [UDP Query User{4E25BF41-C7F3-4697-8A2B-17E77E0DA32F}J:\games\battlefield 1\bf1.exe] => (Allow) J:\games\battlefield 1\bf1.exe => Brak pliku FirewallRules: [TCP Query User{A34AA736-2FBB-4A02-8CCA-F73CC3792155}C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe] => (Block) C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe (ALLPlayer Group -> ALLPlayer Group Ltd.) FirewallRules: [UDP Query User{6D9DCBAD-968C-45A2-B7F2-5D814E33FD2D}C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe] => (Block) C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe (ALLPlayer Group -> ALLPlayer Group Ltd.) FirewallRules: [TCP Query User{C0273D71-93E2-4321-99DE-B04C86AD424A}C:\users\votix\appdata\roaming\acestream\engine\ace_engine.exe] => (Block) C:\users\votix\appdata\roaming\acestream\engine\ace_engine.exe => Brak pliku FirewallRules: [UDP Query User{24322282-B043-4D32-B4D2-433798C60C0B}C:\users\votix\appdata\roaming\acestream\engine\ace_engine.exe] => (Block) C:\users\votix\appdata\roaming\acestream\engine\ace_engine.exe => Brak pliku FirewallRules: [{CDCB28A1-A740-456E-9FC5-7892BBBDA7CD}] => (Allow) C:\Program Files (x86)\Everness\Application\chrome.exe => Brak pliku FirewallRules: [{2E0CAEB2-B0D6-4AA7-8632-8094023E51CA}] => (Allow) C:\Program Files (x86)\Firefox\bin\FirefoxUpdate.exe => Brak pliku FirewallRules: [{BBF8382F-3DE7-4B69-BBED-C29059A34B47}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe => Brak pliku FirewallRules: [TCP Query User{4702AA8F-491F-422C-9B81-58F31BCDEB64}J:\fifa 17\fifa17.exe] => (Block) J:\fifa 17\fifa17.exe => Brak pliku FirewallRules: [UDP Query User{3F28FFDA-0503-49B8-9D11-A562AB1AEDB2}J:\fifa 17\fifa17.exe] => (Block) J:\fifa 17\fifa17.exe => Brak pliku FirewallRules: [TCP Query User{83CD724F-4F78-4F0C-A608-0CB1EC7EEE8F}J:\nba 2k17 gold edition\nba2k17.exe] => (Block) J:\nba 2k17 gold edition\nba2k17.exe => Brak pliku FirewallRules: [UDP Query User{8F780E5F-FAA5-44F5-AFB8-6FBD760E6BF0}J:\nba 2k17 gold edition\nba2k17.exe] => (Block) J:\nba 2k17 gold edition\nba2k17.exe => Brak pliku FirewallRules: [{D053083B-F5AA-4733-A19D-376C832E5F0C}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{2E37B2E5-A547-4B40-945B-48EF3E47B356}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.) FirewallRules: [TCP Query User{A4E041D4-53D5-4287-8F3D-36186DC89BE3}J:\far cry primal pl\bin\fcprimal.exe] => (Block) J:\far cry primal pl\bin\fcprimal.exe => Brak pliku FirewallRules: [UDP Query User{2836B351-8394-48A3-A51F-05B8242DF155}J:\far cry primal pl\bin\fcprimal.exe] => (Block) J:\far cry primal pl\bin\fcprimal.exe => Brak pliku FirewallRules: [TCP Query User{E55CCF5E-BCBA-44A0-B53F-A8FFB1376169}F:\fifa 18 pl\fifa 18\fifa18.exe] => (Block) F:\fifa 18 pl\fifa 18\fifa18.exe => Brak pliku FirewallRules: [UDP Query User{8804A1A3-801A-42DC-8EAA-A0D7CCC18F93}F:\fifa 18 pl\fifa 18\fifa18.exe] => (Block) F:\fifa 18 pl\fifa 18\fifa18.exe => Brak pliku FirewallRules: [TCP Query User{22EF8D21-D20C-4287-8935-2DC7356A9E8D}F:\pobrane\fifa 18 pl\fifa 18\fifa18.exe] => (Block) F:\pobrane\fifa 18 pl\fifa 18\fifa18.exe => Brak pliku FirewallRules: [UDP Query User{890DB84B-12F7-4110-A72B-111E18A0DAEB}F:\pobrane\fifa 18 pl\fifa 18\fifa18.exe] => (Block) F:\pobrane\fifa 18 pl\fifa 18\fifa18.exe => Brak pliku FirewallRules: [TCP Query User{F1DB5D7C-5EAE-48D5-BDE5-04503C453998}F:\total war rome ii emperor edition\rome2.exe] => (Block) F:\total war rome ii emperor edition\rome2.exe => Brak pliku FirewallRules: [UDP Query User{FB57A3E6-49D1-4A3C-B629-2F1544FCF063}F:\total war rome ii emperor edition\rome2.exe] => (Block) F:\total war rome ii emperor edition\rome2.exe => Brak pliku FirewallRules: [{7A5EF336-20D5-4C6A-A5CD-9029487D197F}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd) FirewallRules: [{3A40DE55-CD26-4FD5-822D-E53061FBCF25}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd) FirewallRules: [{C1CEC2E2-1362-4FAB-8C9B-A9E97E998404}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) FirewallRules: [TCP Query User{97EC975A-1119-42BE-BC8B-9AE261C1542D}E:\stronghold crusader 2 - the jackal and the khan\bin\win32_galaxy_release\crusader2.exe] => (Allow) E:\stronghold crusader 2 - the jackal and the khan\bin\win32_galaxy_release\crusader2.exe => Brak pliku FirewallRules: [UDP Query User{9A2E9958-6E0A-4504-BD1D-A92236BC0332}E:\stronghold crusader 2 - the jackal and the khan\bin\win32_galaxy_release\crusader2.exe] => (Allow) E:\stronghold crusader 2 - the jackal and the khan\bin\win32_galaxy_release\crusader2.exe => Brak pliku FirewallRules: [TCP Query User{08003E3F-957D-49DD-A824-B54C74DA8C37}J:\counter-strike global offensive\bin\tools\steamcmd.exe] => (Allow) J:\counter-strike global offensive\bin\tools\steamcmd.exe => Brak pliku FirewallRules: [UDP Query User{A5E5E01A-3B6E-4D01-B8FF-64182B376600}J:\counter-strike global offensive\bin\tools\steamcmd.exe] => (Allow) J:\counter-strike global offensive\bin\tools\steamcmd.exe => Brak pliku FirewallRules: [{2DE55024-F195-450C-A916-23E2E62DED87}] => (Allow) F:\FIFA19\FIFASetup\fifaconfig.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{938B759D-D876-4463-A524-9324A2447203}] => (Allow) F:\FIFA19\FIFASetup\fifaconfig.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [TCP Query User{2270ADB6-CC51-43B0-B4C5-B71175C45855}F:\fifa19\fifa19.exe] => (Block) F:\fifa19\fifa19.exe (Electronic Arts) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{331B44BC-072E-4DDC-B81F-26BDB0F2353A}F:\fifa19\fifa19.exe] => (Block) F:\fifa19\fifa19.exe (Electronic Arts) [Brak podpisu cyfrowego] FirewallRules: [{414CAE6C-09C0-4F5A-A8FE-A209A5CF2E55}] => (Allow) C:\Program Files\FlashIntegro\VideoEditor\VideoEditor.exe (Vector Ltd. -> Flash-Integro LLC) FirewallRules: [{20A316B3-43BF-4BAA-932A-8E9849190E69}] => (Allow) C:\Program Files\FlashIntegro\VideoEditor\VideoEditor.exe (Vector Ltd. -> Flash-Integro LLC) FirewallRules: [{26352A22-F730-438A-AEB2-CC7DFD023A95}] => (Allow) C:\Program Files\FlashIntegro\VideoEditor\Activation.exe (Vector Ltd. -> Flash-Integro LLC) FirewallRules: [{BA2B9050-5F85-4D73-9AE8-EBC831A71D9F}] => (Allow) C:\Program Files\FlashIntegro\VideoEditor\Activation.exe (Vector Ltd. -> Flash-Integro LLC) FirewallRules: [{D733F02A-0297-41C5-B19D-B7D452CB6858}] => (Allow) C:\Program Files\FlashIntegro\VideoEditor\Updater.exe (Vector Ltd. -> Flash-Integro LLC) FirewallRules: [{D8E5166C-64A2-4AB0-834E-4F8F0CDF9B1C}] => (Allow) C:\Program Files\FlashIntegro\VideoEditor\Updater.exe (Vector Ltd. -> Flash-Integro LLC) FirewallRules: [{50033586-3D22-4E30-89CD-E53593305E22}] => (Allow) J:\steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{94A7F042-D752-43D7-A24D-1AF407F6EBC9}] => (Allow) J:\steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{1EF516BC-9F86-4441-A51D-1C93AFACFA84}] => (Allow) J:\steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{91511A83-55F3-4034-955D-807A67723E40}] => (Allow) J:\steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{2541206B-292A-4741-A304-1BD8A43A4BA9}] => (Allow) C:\Windows\system32\winrmsrv.exe => Brak pliku FirewallRules: [{A3D98CB9-009A-4BD5-94F4-BFD91E5F2EC7}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{937E8CB7-B704-44E2-8001-C25FBC60CE35}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [TCP Query User{9AFE4E61-891D-4639-B1D9-AD5683A5C8AD}F:\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Block) F:\kingdom come deliverance\bin\win64\kingdomcome.exe (Warhorse Studios sro) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{131C1ADC-174F-48C8-8410-EA66B2AD9361}F:\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Block) F:\kingdom come deliverance\bin\win64\kingdomcome.exe (Warhorse Studios sro) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{342649A3-83CA-44DA-BD60-41C00DC90709}F:\games\call of duty modern warfare 2 campaign remastered\mw2cr.exe] => (Block) F:\games\call of duty modern warfare 2 campaign remastered\mw2cr.exe (Activision Publishing Inc -> Activision) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{4D58761E-A63F-4E2E-B95E-21FC60DE54B8}F:\games\call of duty modern warfare 2 campaign remastered\mw2cr.exe] => (Block) F:\games\call of duty modern warfare 2 campaign remastered\mw2cr.exe (Activision Publishing Inc -> Activision) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{AAE3CED9-DD3B-4591-AB7C-6A4F74A91E1F}E:\games\max payne 3\maxpayne3.exe] => (Block) E:\games\max payne 3\maxpayne3.exe (Rockstar Games) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{4258A8DF-9FC9-4AD1-B7D5-01B98C1853DD}E:\games\max payne 3\maxpayne3.exe] => (Block) E:\games\max payne 3\maxpayne3.exe (Rockstar Games) [Brak podpisu cyfrowego] ==================== Punkty Przywracania systemu ========================= 15-06-2020 15:53:24 Zaplanowany punkt kontrolny ==================== Wadliwe urządzenia w Menedżerze urządzeń ============ Name: Teredo Tunneling Pseudo-Interface Description: Karta tunelowania Teredo firmy Microsoft Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: YAC NDIS Driver Description: YAC NDIS Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: iSafeNetFilter Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Błędy w Dzienniku zdarzeń: ======================== Dziennik Aplikacja: ================== Error: (06/19/2020 10:06:03 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (06/19/2020 09:48:18 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (06/17/2020 01:59:23 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (06/17/2020 01:54:01 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (06/15/2020 03:53:24 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas wywoływania procedury ConvertStringSidToSid(S-1-5-21-3081180577-703244051-3826712266-500.bak). hr = 0x80070539, Struktura identyfikatora zabezpieczenia jest nieprawidłowa. . Operacja: Zdarzenie OnIdentify Zbieranie danych modułu zapisującego Kontekst: Kontekst wykonywania: Shadow Copy Optimization Writer Identyfikator klasy modułu zapisującego: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f} Nazwa modułu zapisującego: Shadow Copy Optimization Writer Identyfikator wystąpienia modułu zapisującego: {02f5146f-445a-485d-981f-a2b8a1c2eeb3} Error: (06/15/2020 03:00:38 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (06/12/2020 09:09:28 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (06/11/2020 08:26:30 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Dziennik System: ============= Error: (06/19/2020 10:08:03 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Usługa Google Update (gupdate) z powodu następującego błędu: Nie można odnaleźć określonego pliku. Error: (06/19/2020 10:08:03 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Update Service(FirefoxU) z powodu następującego błędu: Nie można odnaleźć określonego pliku. Error: (06/19/2020 10:06:03 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: iSafeNetFilter Error: (06/19/2020 10:06:03 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: ZARZĄDZANIE NT) Description: Wystąpił błąd podczas próby odczytu lokalnego pliku hosts. Error: (06/19/2020 10:05:54 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: ZARZĄDZANIE NT) Description: Wystąpił błąd podczas próby odczytu lokalnego pliku hosts. Error: (06/19/2020 10:05:52 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Avast Antivirus z powodu następującego błędu: Nie można odnaleźć określonego pliku. Error: (06/19/2020 10:05:06 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: ZARZĄDZANIE NT) Description: Wystąpił błąd podczas próby odczytu lokalnego pliku hosts. Error: (06/19/2020 10:05:02 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: ZARZĄDZANIE NT) Description: Wystąpił błąd podczas próby odczytu lokalnego pliku hosts. CodeIntegrity: =================================== Date: 2020-06-19 10:18:46.593 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2020-06-19 10:05:52.784 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2020-06-19 09:48:08.065 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2020-06-17 13:59:11.722 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2020-06-17 13:52:51.862 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2020-06-15 15:00:27.174 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2020-06-12 09:08:35.252 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2020-06-11 08:25:08.625 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. ==================== Statystyki pamięci =========================== BIOS: American Megatrends Inc. 0501 04/08/2013 Płyta główna: ASUSTeK COMPUTER INC. H87-PRO Procesor: Intel(R) Core(TM) i5-4670 CPU @ 3.40GHz Procent pamięci w użyciu: 31% Całkowita pamięć fizyczna: 16325.92 MB Dostępna pamięć fizyczna: 11210.55 MB Całkowita pamięć wirtualna: 32650.03 MB Dostępna pamięć wirtualna: 25494.2 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:118.8 GB) (Free:15.44 GB) NTFS ==>[dysk z komponentami startowymi (pozyskano odczytując BCD)] Drive d: (Zastrzeżone przez system) (Fixed) (Total:0.1 GB) (Free:0.08 GB) NTFS Drive e: (DOWNLOADS) (Fixed) (Total:146.39 GB) (Free:55.87 GB) NTFS Drive f: () (Fixed) (Total:382.81 GB) (Free:12.3 GB) NTFS Drive i: (Zastrzeżone przez system) (Fixed) (Total:0.1 GB) (Free:0.03 GB) NTFS ==>[system z komponentami startowymi (pozyskano odczytując dysk)] Drive j: () (Fixed) (Total:465.66 GB) (Free:25.05 GB) NTFS \\?\Volume{a0e67bcd-d5e7-11e6-af33-806e6f6e6963}\ () (Fixed) (Total:0.44 GB) (Free:0.11 GB) NTFS ==================== MBR & Tablica partycji ==================== ========================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 152F22F7) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=146.4 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=382.8 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=402.2 GB) - (Type=07 NTFS) ========================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 119.2 GB) (Disk ID: F9898901) Partition 1: (Active) - (Size=118.8 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=450 MB) - (Type=27) ========================================================== Disk: 2 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: D6340333) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt =======================