Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 26-08-2020 Uruchomiony przez Loki (29-08-2020 11:42:24) Uruchomiony z C:\Users\Loki\Desktop Windows 10 Home Wersja 2004 19041.450 (X64) (2020-06-28 09:35:15) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-1762239026-1302113268-534695254-500 - Administrator - Disabled) Gość (S-1-5-21-1762239026-1302113268-534695254-501 - Limited - Disabled) Konto domyślne (S-1-5-21-1762239026-1302113268-534695254-503 - Limited - Disabled) Loki (S-1-5-21-1762239026-1302113268-534695254-1001 - Administrator - Enabled) => C:\Users\Loki WDAGUtilityAccount (S-1-5-21-1762239026-1302113268-534695254-504 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: AVG Antivirus (Enabled - Up to date) {4FC75CA5-1654-5411-7CFB-1893D506BCF4} AV: AVG Antivirus (Enabled - Up to date) {18A975F9-A60C-37D8-E30B-4BEF31AD3411} AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402} FW: AVG Antivirus (Enabled) {2092F4DC-EC63-3680-C854-E2DACF7E736A} FW: AVG Antivirus (Enabled) {77FCDD80-5C3B-5549-57A4-B1A62BD5FB8F} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) 7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov) Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 20.012.20043 - Adobe Systems Incorporated) Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.387 - Adobe) Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.387 - Adobe) Adobe Shockwave Player 12.3 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.3.5.205 - Adobe, Inc.) Aktualizacje NVIDIA 38.0.5.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.5.0 - NVIDIA Corporation) Hidden Apple Application Support (HKLM-x32\...\{EB879750-CCBD-4013-BFD5-0294D4DA5BD0}) (Version: 2.1.7 - Apple Inc.) Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.) AVG Internet Security (HKLM-x32\...\AVG Antivirus) (Version: 20.6.3135 - AVG Technologies) AVG Secure VPN (HKLM\...\{078F51FA-D92F-419A-9E69-08BC59265F7E}_is1) (Version: 1.10.765 - AVG) Avidemux VC++ 64bits (HKU\S-1-5-21-1762239026-1302113268-534695254-1001\...\{ef529c1d-3f3e-443a-aa1f-1ae16bf28f37}) (Version: 2.7.5 - Mean) Battery Calibration (HKLM-x32\...\{634AC01E-49DB-4AD2-B87C-90D4DCC6AFA1}) (Version: 1.0.1807.0401 - Micro-Star International Co., Ltd.) Hidden Battery Calibration (HKLM-x32\...\InstallShield_{634AC01E-49DB-4AD2-B87C-90D4DCC6AFA1}) (Version: 1.0.1807.0401 - Micro-Star International Co., Ltd.) BlueStacks App Player (HKLM\...\BlueStacks) (Version: 4.215.0.1019 - BlueStack Systems, Inc.) ClipGrab 3.8.13 (HKLM-x32\...\{8A1033B0-EF33-4FB5-97A1-C47A7DCDD7E6}_is1) (Version: - The ClipGrab Project) ClipGrab version 3.8.9 (HKLM-x32\...\{73924FFF-7A47-424D-BA45-659BB5CC194A}_is1) (Version: 3.8.9 - The ClipGrab Project) Coowon (HKU\S-1-5-21-1762239026-1302113268-534695254-1001\...\Coowon) (Version: 1.6.8.0 - Coowon) Discord (HKU\S-1-5-21-1762239026-1302113268-534695254-1001\...\Discord) (Version: 0.0.307 - Discord Inc.) Documentation Manager (HKLM\...\{59C2C057-0051-48B0-8570-75E21B5BBAE1}) (Version: 21.90.3.2 - Intel Corporation) Hidden Dragon Center (HKLM-x32\...\{C65B26BC-5A6F-4135-9678-55A877655471}) (Version: 1.2.1804.1201 - Micro-Star International Co., Ltd.) Hidden Dragon Center (HKLM-x32\...\InstallShield_{C65B26BC-5A6F-4135-9678-55A877655471}) (Version: 1.2.1804.1201 - Micro-Star International Co., Ltd.) Europa Universalis 2 (HKLM-x32\...\{929C29A0-E9C3-11D5-BA55-00C0CA129740}) (Version: 1.00.000 - ) GameRanger (HKU\S-1-5-21-1762239026-1302113268-534695254-1001\...\GameRanger) (Version: - GameRanger Technologies) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 84.0.4147.135 - Google LLC) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden Help Desk (HKLM-x32\...\{7E8181AF-9679-49B3-B133-C265709B6927}) (Version: 1.0.1802.0501 - Micro-Star International Co., Ltd.) Hidden Help Desk (HKLM-x32\...\InstallShield_{7E8181AF-9679-49B3-B133-C265709B6927}) (Version: 1.0.1802.0501 - Micro-Star International Co., Ltd.) ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!) Intel Driver && Support Assistant (HKLM-x32\...\{4752D5B7-5943-4607-97E3-683A534A7660}) (Version: 20.8.30.6 - Intel) Hidden Intel(R) Computing Improvement Program (HKLM\...\{D98C2DF9-C731-4322-A5F0-D897300216EE}) (Version: 2.4.05718 - Intel Corporation) Intel(R) Graphics Driver Software (HKLM-x32\...\{124d91b2-2d97-4cc4-9ee7-2d2182a0884a}) (Version: 3.11.1.0 - Intel) Hidden Intel(R) Graphics Driver Software (HKLM-x32\...\{42330d2b-4c80-4966-bbc6-42fabcb76d04}) (Version: 3.11.1.0 - Intel) Hidden Intel(R) Graphics Driver Software (HKLM-x32\...\{ab620838-f172-44a7-88ea-614e2c134043}) (Version: 3.11.1.0 - Intel) Hidden Intel(R) Graphics Driver Software (HKLM-x32\...\{ccb72772-9926-4b3e-9fff-7ab001bffac6}) (Version: 3.11.1.0 - Intel) Hidden Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1054 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 16.8.3.1003 - Intel Corporation) Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.47.866.0 - Intel Corporation) Hidden Intel(R) Trusted Connect Services Client (HKLM-x32\...\{246c6cc0-9810-4728-9a29-28474de2eec5}) (Version: 1.47.866.0 - Intel Corporation) Hidden Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000110-0210-1045-84C8-B8D95FA3C8C3}) (Version: 21.110.0.3 - Intel Corporation) Intel® Driver & Support Assistant (HKLM-x32\...\{011c7b89-9b3e-4b2a-8cbc-633ef3c1e10c}) (Version: 20.8.30.6 - Intel) Intel® Software Installer (HKLM-x32\...\{4ac3b686-ca29-4a13-a973-06a4d4dd09e6}) (Version: 21.90.3.2 - Intel Corporation) Hidden LibreOffice 6.2.4.2 (HKLM\...\{B8FF8670-C6F4-4868-9DB2-C23324C0E575}) (Version: 6.2.4.2 - The Document Foundation) Luxor 2 HD Ver 1.0.0 (HKLM-x32\...\Luxor 2 HD Ver 1.0.0) (Version: Ver 1.0.0 - JA Technologies) Malwarebytes version 4.2.0.82 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.2.0.82 - Malwarebytes) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 84.0.522.63 - Microsoft Corporation) Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.135.29 - ) Microsoft Office XP Professional (HKLM-x32\...\{90110415-6000-11D3-8CFE-0050048383C9}) (Version: 10.0.2627.14 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1762239026-1302113268-534695254-1001\...\OneDriveSetup.exe) (Version: 20.134.0705.0008 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.26.28720 (HKLM-x32\...\{7d607fb4-7e28-4c7a-a92f-3fcdaf555faf}) (Version: 14.26.28720.3 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821 (HKLM-x32\...\{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Might & Magic Heroes Online - Standalone Client (HKU\S-1-5-21-1762239026-1302113268-534695254-1001\...\Might & Magic Heroes Online) (Version: - ) Mozilla Firefox 80.0 (x64 pl) (HKLM\...\Mozilla Firefox 80.0 (x64 pl)) (Version: 80.0 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 70.0.1 - Mozilla) MSI Remind Manager Service (HKLM-x32\...\{3E23F267-3E35-40F9-B6BF-BC034D214717}) (Version: 1.0.1707.1901 - Micro-Star International Co., Ltd.) Hidden MSI Remind Manager Service (HKLM-x32\...\InstallShield_{3E23F267-3E35-40F9-B6BF-BC034D214717}) (Version: 1.0.1707.1901 - Micro-Star International Co., Ltd.) NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.27 - NVIDIA Corporation) Hidden NVIDIA GeForce Experience 3.20.4.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.4.14 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation) NVIDIA Sterownik graficzny 452.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 452.06 - NVIDIA Corporation) NvModuleTracker (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvModuleTracker.Driver) (Version: 6.14.24033.38719 - NVIDIA Corporation) Hidden OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Opera GX Stable 68.0.3618.206 (HKU\S-1-5-21-1762239026-1302113268-534695254-1001\...\Opera GX 68.0.3618.206) (Version: 68.0.3618.206 - Opera Software) Oprogramowanie Intel® PROSet/Wireless (HKLM-x32\...\{03929cf1-3ae4-4765-b8b3-32b8e2e26a8d}) (Version: 19.60.0 - Intel Corporation) Oprogramowanie mikroukładu Intel® (HKLM-x32\...\{17408817-d415-4768-a160-ae6d46d6bdb0}) (Version: 10.1.1.44 - Intel(R) Corporation) Hidden Original War (HKLM-x32\...\Original War) (Version: - ) Paradox Launcher v2 (HKLM\...\{F0072197-FCF6-41BF-9D38-832B145922DC}) (Version: 2.0.0.0 - Paradox Interactive) Podatnik.info PIT pro 2019 wersja 2.6.7.0 (HKLM-x32\...\{B239B43B-3E99-40B0-80BF-1B1BCA868D4E}_is1) (Version: 2.6.7.0 - Podatnik S.A.) Polski pakiet językowy dla narzędzi Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PLK) (Version: 10.0.50903 - Microsoft Corporation) QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.15063.31236 - Realtek Semiconductor Corp.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8199 - Realtek Semiconductor Corp.) SCM (HKLM\...\{1CC45AFD-DFFF-4165-86B4-FA112B167509}) (Version: 13.018.06221 - Application) Settlers III - Złota Edycja (HKLM-x32\...\{AB2C9753-33AD-4F09-AA16-27C7F39BAF1F}) (Version: 1.60 - ) Settlers IV - Złota Edycja (HKLM-x32\...\{A2422674-F3A7-46F2-8966-EC6B1FBD6EB3}) (Version: 1.0 - ) Sizing Options (HKLM-x32\...\{DFAB6DE8-E45F-4D5D-95C0-E54C58993F9F}) (Version: 3.0.1607.2201 - Application) Hidden Sizing Options (HKLM-x32\...\InstallShield_{DFAB6DE8-E45F-4D5D-95C0-E54C58993F9F}) (Version: 3.0.1607.2201 - Application) SSDFresh 2019 (HKLM-x32\...\{71149886-0AA3-4F31-81F9-CC90EA0D55EF}_is1) (Version: 8.1 - Abelssoft) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) SteelSeries Engine 3.17.9 (HKLM\...\SteelSeries Engine 3) (Version: 3.17.9 - SteelSeries ApS) swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden The Sims Pełna kolekcja (HKLM-x32\...\{F2527115-B8BF-4FDB-B5DA-5AADFB7C13E1}) (Version: - ) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{3BAE4496-6F6C-4330-A8AA-B93D3D346FA5}) (Version: 2.53.0.0 - Microsoft Corporation) Uplay (HKLM-x32\...\Uplay) (Version: 29.0 - Ubisoft) Uplink (HKLM-x32\...\{3546E51D-9682-41E3-B7E8-8E01727F8936}) (Version: 1.00.0000 - Techland) USB Network Joystick (HKLM-x32\...\{2A558A06-A44E-400D-95AD-D9FAA89AFD36}) (Version: V3.70a - ) VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN) Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1) (Version: 1.0.54.1 - Intel Corporation Inc.) Wargaming.net Game Center (HKU\S-1-5-21-1762239026-1302113268-534695254-1001\...\Wargaming.net Game Center) (Version: 20.3.2.794 - Wargaming.net) WinCDEmu (HKLM-x32\...\WinCDEmu) (Version: 4.1 - Sysprogs) WinRAR 5.90 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.90.0 - win.rar GmbH) Wise Registry Cleaner 10.2.1 (HKLM-x32\...\Wise Registry Cleaner_is1) (Version: 10.2.1 - WiseCleaner.com, Inc.) World of Tanks EU (HKU\S-1-5-21-1762239026-1302113268-534695254-1001\...\WOT.EU.PRODUCTION) (Version: - Wargaming.net) World_of_Warplanes (HKU\S-1-5-21-1762239026-1302113268-534695254-1001\...\WOWP.WW.PRODUCTION) (Version: - Wargaming.net) World_of_Warships_EU (HKU\S-1-5-21-1762239026-1302113268-534695254-1001\...\WOWS.EU.PRODUCTION) (Version: - Wargaming.net) Zuma Deluxe RA (HKLM-x32\...\Zuma Deluxe RA) (Version: - ) Packages: ========= Centrum sterowania grafiką Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.2765.0_x64__8j3eq9eme6ctt [2020-08-26] (INTEL CORP) [Startup Task] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-11-08] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-11-08] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.8101.0_x64__8wekyb3d8bbwe [2020-08-19] (Microsoft Studios) [MS Ad] MSN Pogoda -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation) [MS Ad] NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.958.0_x64__56jybvy8sckqj [2020-06-25] (NVIDIA Corp.) Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.140.508.0_x86__zpdnekdrzrea0 [2020-08-22] (Spotify AB) [Startup Task] SynMsiDApp -> C:\Program Files\WindowsApps\SynapticsIncorporated.SynMsiDApp_19005.31005.0.0_x64__807d65c4rvak2 [2019-11-09] (Synaptics Incorporated) ==================== Niestandardowe rejestracje CLSID (filtrowane): ============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-1762239026-1302113268-534695254-1001_Classes\CLSID\{233525e0-5434-46ef-b464-fd7e45e2e145}\localserver32 -> C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe (IDSA Production signing key -> Intel) ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Loki\AppData\Local\MEGAsync\ShellExtX32.dll -> Brak pliku ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Loki\AppData\Local\MEGAsync\ShellExtX32.dll -> Brak pliku ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Loki\AppData\Local\MEGAsync\ShellExtX32.dll -> Brak pliku ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Brak pliku ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Brak pliku ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Brak podpisu cyfrowego] ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2020-07-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) ContextMenuHandlers1: [WinCDEmu] -> {D0E37FD2-F675-426F-B09A-2CF37BA46FD5} => C:\Program Files (x86)\WinCDEmu\x64\WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU) [Brak podpisu cyfrowego] ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-30] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-30] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2-x32: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Loki\AppData\Local\MEGAsync\ShellExtX32.dll -> Brak pliku ContextMenuHandlers2: [WinCDEmu] -> {A9901FCD-B4DF-43A1-BD5D-6C9F88679497} => C:\Program Files (x86)\WinCDEmu\x64\WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU) [Brak podpisu cyfrowego] ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Brak pliku ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => D:\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers3-x32: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Loki\AppData\Local\MEGAsync\ShellExtX32.dll -> Brak pliku ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Brak podpisu cyfrowego] ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvmii.inf_amd64_44053d7dadab442d\nvshext.dll [2020-08-14] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Brak podpisu cyfrowego] ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2020-07-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => D:\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers6: [WinCDEmu] -> {A9901FCD-B4DF-43A1-BD5D-6C9F88679497} => C:\Program Files (x86)\WinCDEmu\x64\WinCDEmuContextMenu.dll [2015-09-28] (Sysprogs OU) [Brak podpisu cyfrowego] ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-30] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-30] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Drivers32: [VIDC.MPG4] => C:\Windows\SysWOW64\mpg4c32.dll [427520 2000-06-02] (Microsoft Corporation) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [VIDC.MP42] => C:\Windows\SysWOW64\mpg4c32.dll [427520 2000-06-02] (Microsoft Corporation) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [msacm.msaudio1] => C:\Windows\SysWOW64\msaud32.acm [305152 2000-06-02] (Microsoft Corporation) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [msacm.sl_anet] => C:\Windows\SysWOW64\sl_anet.acm [102400 2000-06-02] (Sipro Lab Telecom Inc.) [Brak podpisu cyfrowego] ==================== Skróty & WMI ======================== ==================== Załadowane moduły (filtrowane) ============= 2020-08-26 20:36 - 2020-08-26 20:36 - 040592896 _____ (Intel) [Brak podpisu cyfrowego] C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.2765.0_x64__8j3eq9eme6ctt\IGCC.dll 2020-03-10 10:31 - 2020-03-10 10:31 - 001918464 _____ (SQLite Development Team) [Brak podpisu cyfrowego] C:\Program Files\Intel\SUR\QUEENCREEK\x64\sqlite3.dll 2017-02-12 02:28 - 2015-09-28 20:08 - 000255488 _____ (Sysprogs OU) [Brak podpisu cyfrowego] C:\Program Files (x86)\WinCDEmu\x64\WinCDEmuContextMenu.dll ==================== Alternate Data Streams (filtrowane) ======== ==================== Tryb awaryjny (filtrowane) ================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Powiązania plików (filtrowane) ================= ==================== Internet Explorer - Witryny zaufane i z ograniczeniami ========== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) IE trusted site: HKU\S-1-5-21-1762239026-1302113268-534695254-1001\...\localhost -> localhost ==================== Hosts - zawartość: ========================= (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2019-11-08 20:52 - 2020-03-27 19:27 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Inne obszary =========================== (Obecnie brak automatycznej naprawy dla tej sekcji.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\WINDOWS\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\QuickTime\QTSystem\ HKU\S-1-5-21-1762239026-1302113268-534695254-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Loki\AppData\Roaming\Mozilla\Firefox\Tapeta pulpitu.bmp DNS Servers: 194.168.4.100 - 194.168.8.100 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Załączenie wejścia w fixlist spowoduje jego usunięcie.) HKLM\...\StartupApproved\StartupFolder: => "Microsoft Office.lnk" HKLM\...\StartupApproved\Run32: => "WidgetPodatnikInfo" HKLM\...\StartupApproved\Run32: => "QuickTime Task" HKU\S-1-5-21-1762239026-1302113268-534695254-1001\...\StartupApproved\StartupFolder: => "GameRanger.lnk" HKU\S-1-5-21-1762239026-1302113268-534695254-1001\...\StartupApproved\Run: => "Wargaming.net Game Center" HKU\S-1-5-21-1762239026-1302113268-534695254-1001\...\StartupApproved\Run: => "Discord" HKU\S-1-5-21-1762239026-1302113268-534695254-1001\...\StartupApproved\Run: => "OneDrive" ==================== Reguły Zapory systemu Windows (filtrowane) ================ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{2284CE5D-40EA-4E70-B5C9-8D03B75E2F33}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{A2D123D8-70A7-488E-B817-A163AC544302}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{838450FF-9121-4BEF-AED1-178B63373610}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> ) FirewallRules: [{75769CE7-ECF3-4EC8-AFCD-60A5D91C1045}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> ) FirewallRules: [{2C722C37-EF65-4CAE-81A4-D1BB5A0177BA}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> ) FirewallRules: [{9A3AEC79-6A3C-4B24-98B3-13117A95A719}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> ) FirewallRules: [{C73BA9E9-F72E-4DAB-B786-B6C774ECB5BC}] => (Allow) D:\Steam\steamapps\common\Might & Magic Heroes Online\nw.exe () [Brak podpisu cyfrowego] FirewallRules: [{BF5630C1-40EA-498F-BEEF-F24637E180C8}] => (Allow) D:\Steam\steamapps\common\Might & Magic Heroes Online\nw.exe () [Brak podpisu cyfrowego] FirewallRules: [{154533B7-1288-4248-AC6C-CF1E29F159F6}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{A5F8E40E-4F96-411A-AC69-558B24EC37CD}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{CBBA6B48-0592-4C83-BA81-42814F53176C}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{FDC0553B-C3E7-40D6-93F2-986D88DE12CB}] => (Allow) C:\ProgramData\Wargaming.net\GameCenter\wgc.exe (Wargaming.net Limited -> Wargaming.net) FirewallRules: [{6AB53FFE-10AD-4EE5-BA15-14D61E95524F}] => (Allow) D:\Steam\steamapps\common\Heroes of Might & Magic III - HD Edition\HOMM3Launcher.exe () [Brak podpisu cyfrowego] FirewallRules: [{32006BC9-6453-47EC-B01E-453C55087BC3}] => (Allow) D:\Steam\steamapps\common\Heroes of Might & Magic III - HD Edition\HOMM3Launcher.exe () [Brak podpisu cyfrowego] FirewallRules: [{E236F31F-BB80-4F68-8B6C-9FBE5C1795DA}] => (Allow) D:\Steam\steamapps\common\Might & Magic Heroes VII\Binaries\Win64\MMH7Editor-Win64-Shipping.exe (Limbic Entertainment GmbH -> Ubisoft, Inc.) FirewallRules: [{363A1246-A66B-4DBF-B64B-CBCA75C01ECB}] => (Allow) D:\Steam\steamapps\common\Might & Magic Heroes VII\Binaries\Win64\MMH7Editor-Win64-Shipping.exe (Limbic Entertainment GmbH -> Ubisoft, Inc.) FirewallRules: [{B288C896-E116-4F40-BB3E-58C07C66100D}] => (Allow) D:\Steam\steamapps\common\Might & Magic Heroes VII\Binaries\Win64\MMH7Game-Win64-Shipping.exe (Limbic Entertainment GmbH -> Ubisoft, Inc.) FirewallRules: [{D453945F-BD55-479B-9EE8-F28692E7E952}] => (Allow) D:\Steam\steamapps\common\Might & Magic Heroes VII\Binaries\Win64\MMH7Game-Win64-Shipping.exe (Limbic Entertainment GmbH -> Ubisoft, Inc.) FirewallRules: [{E9ED51D3-4C11-4DE0-81BD-7529F6462E16}] => (Allow) D:\Steam\steamapps\common\Might and Magic Heroes VI\Might & Magic Heroes VI.exe (Virtuos China Ltd. -> Virtuos) [Brak podpisu cyfrowego] FirewallRules: [{97831F56-4293-4B06-8D28-3BB89C67DB89}] => (Allow) D:\Steam\steamapps\common\Might and Magic Heroes VI\Might & Magic Heroes VI.exe (Virtuos China Ltd. -> Virtuos) [Brak podpisu cyfrowego] FirewallRules: [{3F635F8D-D923-452A-9C30-2CF6A9C53880}] => (Allow) D:\Steam\steamapps\common\Stronghold Crusader 2\bin\win32_release\Crusader2.exe () [Brak podpisu cyfrowego] FirewallRules: [{5409D4F0-1906-4EAD-9C03-59ED5E23FC9C}] => (Allow) D:\Steam\steamapps\common\Stronghold Crusader 2\bin\win32_release\Crusader2.exe () [Brak podpisu cyfrowego] FirewallRules: [{0EA0FCC7-20BF-4DB9-9A41-784C4C9D7532}] => (Allow) D:\Steam\steamapps\common\Stronghold Crusader Extreme\Stronghold_Crusader_Extreme.exe () [Brak podpisu cyfrowego] FirewallRules: [{03341613-3FF9-4C42-AD26-F7D6A9C073F4}] => (Allow) D:\Steam\steamapps\common\Stronghold Crusader Extreme\Stronghold_Crusader_Extreme.exe () [Brak podpisu cyfrowego] FirewallRules: [{A94E752E-09A6-4973-80A0-8EEEF60ED157}] => (Allow) D:\Steam\steamapps\common\Stronghold Crusader Extreme\Stronghold Crusader.exe () [Brak podpisu cyfrowego] FirewallRules: [{911B1634-66D1-457C-94A4-AF7BB582D276}] => (Allow) D:\Steam\steamapps\common\Stronghold Crusader Extreme\Stronghold Crusader.exe () [Brak podpisu cyfrowego] FirewallRules: [{59BA6B0F-7D1C-4661-8536-AB7F0220E878}] => (Allow) D:\Steam\steamapps\common\Stronghold\Stronghold.exe () [Brak podpisu cyfrowego] FirewallRules: [{16942B9C-8711-4A1B-B1C2-74FCD631E681}] => (Allow) D:\Steam\steamapps\common\Stronghold\Stronghold.exe () [Brak podpisu cyfrowego] FirewallRules: [{E6CB7BE8-E79F-4126-AF5C-D1F3ACAE8C17}] => (Allow) D:\Steam\steamapps\common\Stronghold Kingdoms\StrongholdKingdoms.exe (Firefly Studios -> Firefly Studios) FirewallRules: [{F609AF58-E0DC-4946-8253-F064E08985EA}] => (Allow) D:\Steam\steamapps\common\Stronghold Kingdoms\StrongholdKingdoms.exe (Firefly Studios -> Firefly Studios) FirewallRules: [{35C7BD2A-668D-4026-915C-239D44938695}] => (Allow) D:\Steam\steamapps\common\Hearts of Iron IV\dowser.exe (Paradox Interactive AB (publ) -> ) FirewallRules: [{93C27455-D9F5-44DD-A866-A19987DCC4F6}] => (Allow) D:\Steam\steamapps\common\Hearts of Iron IV\dowser.exe (Paradox Interactive AB (publ) -> ) FirewallRules: [{4908EDBA-9E89-4EE7-88D2-0C4B2F7E4345}] => (Allow) D:\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{0AF77B6D-7EFC-4AC3-ADC6-90C13623E9DD}] => (Allow) D:\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{C7D5F8A0-4E6B-43A6-AFA1-1EFAD938B853}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation-Wireless Connectivity Solutions -> ) FirewallRules: [{BFABFA9C-0CA4-4096-ACE6-701BF41237CE}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{07DD18E2-78C2-43D7-BD05-14F7BC86AEFC}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [TCP Query User{183FF3E4-8316-416C-AA5C-BDB3F4294112}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [UDP Query User{8F29C788-1BA1-4EA2-98B8-B416724E1A0F}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{ACFA2044-6C6C-4A94-9D20-01868A834D7C}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe => Brak pliku FirewallRules: [{065656F7-4FCC-40A7-839A-63D12C66D2EE}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe => Brak pliku FirewallRules: [{31A377E4-7C8D-4DFE-90AB-F081A46D803E}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe (BlueStack Systems, Inc. -> BlueStack Systems, Inc.) FirewallRules: [{4427CAEF-4C8F-4D35-AA87-1154A0AD8038}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{4166BFE4-ABD6-49E8-84E1-5A862EC16D3C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{65531D01-BDD1-447E-82DF-E50905C6484A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{E47A2CDA-96D7-4A6C-AAF0-31163408655F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{1704C12A-321E-43DA-9A73-304D09B1879A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{DC35A6A4-9D72-478A-AB2F-081B82544641}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{26020191-3D49-42C4-98A0-82D389F2004C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{584CC87B-C36B-4DB9-876B-7D7278E75924}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{7A326FC4-6368-4F99-BA76-2D814EE8BD1D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{585C7E7C-323D-489C-AE05-C76A876D526F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.140.508.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{E827EB0E-B19C-496E-A0E7-2F0EF2691107}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.140.508.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{A8AE7F3D-F335-497D-839A-6E3C6BEEC27C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.140.508.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{CCE32779-6139-4ECA-A260-53480B526CCE}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.140.508.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{DAB71DBB-D158-4BD4-AADA-57C745660C9A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.140.508.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{C833ED4D-435B-4FD3-98F4-57B931C521FC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.140.508.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{1864B19A-1A57-4A37-BA1D-672B5149DC54}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.140.508.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{76BFBDDC-615A-462B-B648-8AC7BC14BDFD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.140.508.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) ==================== Punkty Przywracania systemu ========================= UWAGA: Przywracanie systemu jest wyłączone (Total:116.42 GB) (Free:49.3 GB) (42%) ==================== Wadliwe urządzenia w Menedżerze urządzeń ============ Name: AVG TAP Adapter v3 Description: AVG TAP Adapter v3 Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: TAP-Windows Provider V9 Service: avgTap Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Błędy w Dzienniku zdarzeń: ======================== Dziennik Aplikacja: ================== Error: (08/29/2020 11:20:28 AM) (Source: SecurityCenter) (EventID: 18) (User: ) Description: Usługa Centrum zabezpieczeń Windows nie mogła załadować wystąpień programu FirewallProduct z magazynu danych. Error: (08/29/2020 11:04:39 AM) (Source: SecurityCenter) (EventID: 18) (User: ) Description: Usługa Centrum zabezpieczeń Windows nie mogła załadować wystąpień programu FirewallProduct z magazynu danych. Error: (08/29/2020 10:23:55 AM) (Source: SecurityCenter) (EventID: 18) (User: ) Description: Usługa Centrum zabezpieczeń Windows nie mogła załadować wystąpień programu FirewallProduct z magazynu danych. Error: (08/29/2020 10:14:06 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: MBAMService.exe, wersja: 3.2.0.912, sygnatura czasowa: 0x5f334ad4 Nazwa modułu powodującego błąd: ntdll.dll, wersja: 10.0.19041.423, sygnatura czasowa: 0x06701e03 Kod wyjątku: 0xc00000fd Przesunięcie błędu: 0x0000000000017721 Identyfikator procesu powodującego błąd: 0x1aa4 Godzina uruchomienia aplikacji powodującej błąd: 0x01d67dd8a1f7599a Ścieżka aplikacji powodującej błąd: D:\Malwarebytes\Anti-Malware\MBAMService.exe Ścieżka modułu powodującego błąd: C:\WINDOWS\SYSTEM32\ntdll.dll Identyfikator raportu: d771d8f6-6d32-4c7e-b103-42cb1f818a3f Pełna nazwa pakietu powodującego błąd: Identyfikator aplikacji względem pakietu powodującego błąd: Error: (08/29/2020 09:47:07 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: MBAMService.exe, wersja: 3.2.0.912, sygnatura czasowa: 0x5f334ad4 Nazwa modułu powodującego błąd: ntdll.dll, wersja: 10.0.19041.423, sygnatura czasowa: 0x06701e03 Kod wyjątku: 0xc00000fd Przesunięcie błędu: 0x0000000000017866 Identyfikator procesu powodującego błąd: 0x1b98 Godzina uruchomienia aplikacji powodującej błąd: 0x01d67dd8961da40b Ścieżka aplikacji powodującej błąd: D:\Malwarebytes\Anti-Malware\MBAMService.exe Ścieżka modułu powodującego błąd: C:\WINDOWS\SYSTEM32\ntdll.dll Identyfikator raportu: 9e99d110-4c6d-4acf-9201-3d4267a3e0aa Pełna nazwa pakietu powodującego błąd: Identyfikator aplikacji względem pakietu powodującego błąd: Error: (08/29/2020 09:46:48 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: MBAMService.exe, wersja: 3.2.0.912, sygnatura czasowa: 0x5f334ad4 Nazwa modułu powodującego błąd: MwacLib.dll, wersja: 1.0.0.102, sygnatura czasowa: 0x5f21b4aa Kod wyjątku: 0xc00000fd Przesunięcie błędu: 0x000000000000a662 Identyfikator procesu powodującego błąd: 0x28a8 Godzina uruchomienia aplikacji powodującej błąd: 0x01d67dd6ccbf9761 Ścieżka aplikacji powodującej błąd: D:\Malwarebytes\Anti-Malware\MBAMService.exe Ścieżka modułu powodującego błąd: D:\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll Identyfikator raportu: 2c9d4a6a-7566-4176-8983-9e2b09bbe1bf Pełna nazwa pakietu powodującego błąd: Identyfikator aplikacji względem pakietu powodującego błąd: Error: (08/29/2020 09:34:01 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: MBAMService.exe, wersja: 3.2.0.912, sygnatura czasowa: 0x5f334ad4 Nazwa modułu powodującego błąd: ntdll.dll, wersja: 10.0.19041.423, sygnatura czasowa: 0x06701e03 Kod wyjątku: 0xc00000fd Przesunięcie błędu: 0x0000000000017866 Identyfikator procesu powodującego błąd: 0xe28 Godzina uruchomienia aplikacji powodującej błąd: 0x01d67dd5fd75544b Ścieżka aplikacji powodującej błąd: D:\Malwarebytes\Anti-Malware\MBAMService.exe Ścieżka modułu powodującego błąd: C:\WINDOWS\SYSTEM32\ntdll.dll Identyfikator raportu: 02c4585a-bffd-4e13-a5c8-8158a258c9ab Pełna nazwa pakietu powodującego błąd: Identyfikator aplikacji względem pakietu powodującego błąd: Error: (08/29/2020 09:28:13 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: MBAMService.exe, wersja: 3.2.0.912, sygnatura czasowa: 0x5f334ad4 Nazwa modułu powodującego błąd: ntdll.dll, wersja: 10.0.19041.423, sygnatura czasowa: 0x06701e03 Kod wyjątku: 0xc00000fd Przesunięcie błędu: 0x0000000000017866 Identyfikator procesu powodującego błąd: 0x3198 Godzina uruchomienia aplikacji powodującej błąd: 0x01d67dd4b57929f6 Ścieżka aplikacji powodującej błąd: D:\Malwarebytes\Anti-Malware\MBAMService.exe Ścieżka modułu powodującego błąd: C:\WINDOWS\SYSTEM32\ntdll.dll Identyfikator raportu: 17e651d2-5768-49d7-9183-f0645f1a2fee Pełna nazwa pakietu powodującego błąd: Identyfikator aplikacji względem pakietu powodującego błąd: Dziennik System: ============= Error: (08/29/2020 11:25:20 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-DOHBFV4) Description: Serwer {9AA46009-3CE0-458A-A354-715610A075E6} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (08/29/2020 11:25:20 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-DOHBFV4) Description: Serwer {9AA46009-3CE0-458A-A354-715610A075E6} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (08/29/2020 11:21:34 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą Intel(R) SUR QC Software Asset Manager. Error: (08/29/2020 11:20:34 AM) (Source: BugCheck) (EventID: 1001) (User: ) Description: Nastąpił ponowny rozruch komputera po operacji wykrywania błędów. Wyniki tej operacji były następujące: 0x0000001e (0xffffffffc0000005, 0xfffff806732a6c8a, 0xffffed8cd8ddf7f8, 0xffff8580b99e7920). Zrzut zapisano w: C:\WINDOWS\MEMORY.DMP. Identyfikator raportu: 706cd78c-a05f-4d6b-b7b1-00d95f876d96. Error: (08/29/2020 11:20:15 AM) (Source: EventLog) (EventID: 6008) (User: ) Description: Poprzednie zamknięcie systemu przy 11:18:34 na ‎29.‎08.‎2020 było nieoczekiwane. Error: (08/29/2020 11:05:39 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą Intel(R) SUR QC Software Asset Manager. Error: (08/29/2020 11:04:47 AM) (Source: BugCheck) (EventID: 1001) (User: ) Description: Nastąpił ponowny rozruch komputera po operacji wykrywania błędów. Wyniki tej operacji były następujące: 0x0000003b (0x00000000c0000005, 0xfffff80722123645, 0xffffc580d4899920, 0x0000000000000000). Zrzut zapisano w: C:\WINDOWS\MEMORY.DMP. Identyfikator raportu: cd9bbcf1-3c8c-4996-b1ec-a0192249a72f. Error: (08/29/2020 11:04:27 AM) (Source: EventLog) (EventID: 6008) (User: ) Description: Poprzednie zamknięcie systemu przy 11:03:42 na ‎29.‎08.‎2020 było nieoczekiwane. CodeIntegrity: =================================== Date: 2020-08-29 11:22:42.5820000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements. Date: 2020-08-29 11:22:42.5650000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements. Date: 2020-08-29 11:22:42.5380000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements. Date: 2020-08-29 11:21:30.3150000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Microsoft signing level requirements. Date: 2020-08-29 11:21:30.2980000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Microsoft signing level requirements. Date: 2020-08-29 11:21:30.2780000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Microsoft signing level requirements. Date: 2020-08-29 11:21:30.2600000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Microsoft signing level requirements. Date: 2020-08-29 11:21:30.2430000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Microsoft signing level requirements. ==================== Statystyki pamięci =========================== BIOS: American Megatrends Inc. E1799IMS.324 03/23/2018 Płyta główna: Micro-Star International Co., Ltd. MS-1799 Procesor: Intel(R) Core(TM) i5-7300HQ CPU @ 2.50GHz Procent pamięci w użyciu: 65% Całkowita pamięć fizyczna: 8108.41 MB Dostępna pamięć fizyczna: 2832.65 MB Całkowita pamięć wirtualna: 12460.41 MB Dostępna pamięć wirtualna: 5366.67 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:116.42 GB) (Free:49.3 GB) NTFS Drive d: (Programy) (Fixed) (Total:367.81 GB) (Free:124.02 GB) NTFS Drive e: (Lokalny) (Fixed) (Total:120.47 GB) (Free:10.11 GB) NTFS Drive f: (Kopie) (Fixed) (Total:244.14 GB) (Free:32.4 GB) NTFS Drive g: (Drobiazgi) (Fixed) (Total:97.66 GB) (Free:28.32 GB) NTFS Drive h: () (Fixed) (Total:85.12 GB) (Free:28.36 GB) NTFS \\?\Volume{7e7df2c2-e3b6-4405-a53b-a6e3b1220647}\ () (Fixed) (Total:0.55 GB) (Free:0.07 GB) NTFS \\?\Volume{6aa383b4-f8c7-4c5a-bbd4-eb16c03208ef}\ () (Fixed) (Total:0.8 GB) (Free:0.35 GB) NTFS \\?\Volume{743795a8-510f-4fd9-acfa-342d63f15430}\ () (Fixed) (Total:0.53 GB) (Free:0.09 GB) NTFS \\?\Volume{74acfbed-cc08-4ba3-9de3-3bf0268838b2}\ (WinRE tools) (Fixed) (Total:0.51 GB) (Free:0.19 GB) NTFS \\?\Volume{de25018e-9fae-48a6-9813-a1ec47547179}\ (BIOS_RVY) (Fixed) (Total:16.32 GB) (Free:0.66 GB) NTFS \\?\Volume{68579e72-7688-4adc-af1e-4ad69ce91850}\ (SYSTEM) (Fixed) (Total:0.29 GB) (Free:0.24 GB) FAT32 ==================== MBR & Tablica partycji ==================== ========================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 119.2 GB) (Disk ID: 5CE0DCE8) Partition: GPT. ========================================================== Disk: 1 (Size: 931.5 GB) (Disk ID: 836C6C4D) Partition: GPT. ==================== Koniec Addition.txt =======================