Facebook

skan2 safest cryptocurrency exchange

From PLMaliPL, 3 Years ago, written in Plain Text.
URL https://pastebin.pl/view/7e3bc648
Embed
Download Paste or View Raw
Hits: 76
  1. Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 14-02-2021
  2. Uruchomiony przez RAFONIX (15-02-2021 22:31:54)
  3. Uruchomiony z C:\Users\RAFONIX\Desktop\scan
  4. Windows 7 Professional Service Pack 1 (X64) (2020-10-27 11:20:34)
  5. Tryb startu: Normal
  6. ==========================================================
  7.  
  8.  
  9. ==================== Konta użytkowników: =============================
  10.  
  11. Administrator (S-1-5-21-2684602908-2750127974-2092376734-500 - Administrator - Disabled)
  12. Ania (S-1-5-21-2684602908-2750127974-2092376734-1000 - Administrator - Enabled) => C:\Users\Ania
  13. Gość (S-1-5-21-2684602908-2750127974-2092376734-501 - Limited - Disabled)
  14. HomeGroupUser$ (S-1-5-21-2684602908-2750127974-2092376734-1004 - Limited - Enabled)
  15. RAFONIX (S-1-5-21-2684602908-2750127974-2092376734-1006 - Administrator - Enabled) => C:\Users\RAFONIX
  16. wiktor (S-1-5-21-2684602908-2750127974-2092376734-1002 - Administrator - Enabled) => C:\Users\wiktor
  17.  
  18. ==================== Centrum zabezpieczeń ========================
  19.  
  20. (Załączenie wejścia w fixlist spowoduje jego usunięcie.)
  21.  
  22. AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
  23. AS: Malwarebytes (Disabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
  24. AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
  25.  
  26. ==================== Zainstalowane programy ======================
  27.  
  28. (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.)
  29.  
  30. @BIOS B15.0630.1 (HKLM-x32\...\{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 3.00.0000 - GIGABYTE) Hidden
  31. @BIOS B15.0630.1 (HKLM-x32\...\InstallShield_{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 3.00.0000 - GIGABYTE)
  32. 7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
  33. ActivePresenter (HKLM\...\{A2A40277-D807-4754-95A3-2F294C2C51D3}_is1) (Version: 8.3.0 - Atomi Systems, Inc.)
  34. Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 21.001.20135 - Adobe Systems Incorporated)
  35. Adobe Photoshop 2020 (HKLM-x32\...\PHSP_21_1) (Version: 21.1.0 - Adobe Systems Incorporated)
  36. APP Center (HKLM-x32\...\{F3D47276-0E35-42CF-A677-B45118470E21}) (Version: 1.15.0916 - Gigabyte) Hidden
  37. APP Center (HKLM-x32\...\InstallShield_{F3D47276-0E35-42CF-A677-B45118470E21}) (Version: 1.15.0916 - Gigabyte)
  38. Apple Application Support (32-bit) (HKLM-x32\...\{D4B07658-F443-4445-A261-E643996E139D}) (Version: 4.3.2 - Apple Inc.)
  39. Apple Mobile Device Support (HKLM\...\{F9CEF01A-3907-4614-824F-CF5D3E4675EF}) (Version: 14.1.0.35 - Apple Inc.)
  40. Apple Software Update (HKLM-x32\...\{A3985C05-7386-411F-A4BF-32A73F37EB44}) (Version: 2.6.3.1 - Apple Inc.)
  41. Blackmagic RAW Common Components (HKLM\...\{60461BA6-AFA0-4D54-AFE1-54EC717AA7D9}) (Version: 1.8.2 - Blackmagic Design)
  42. Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
  43. CPUID CPU-Z 1.95 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.95 - CPUID, Inc.)
  44. CPUID HWMonitor 1.43 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.43 - CPUID, Inc.)
  45. DaVinci Resolve (HKLM\...\{0C4A0EF3-6FE2-4F0D-AFAD-D3EA0297BDBE}) (Version: 16.2.8005 - Blackmagic Design)
  46. DaVinci Resolve Keyboards (HKLM\...\{04F776FB-37A2-4116-84F2-6CF3D731999D}) (Version: 1.0.0.0 - Blackmagic Design)
  47. DaVinci Resolve Panels (HKLM\...\{567706B7-1501-43BC-81AB-C7E306B40C73}) (Version: 1.3.2.0 - Blackmagic Design)
  48. Discord (HKU\S-1-5-21-2684602908-2750127974-2092376734-1002\...\Discord) (Version: 0.0.308 - Discord Inc.)
  49. Discord (HKU\S-1-5-21-2684602908-2750127974-2092376734-1006\...\Discord) (Version: 0.0.308 - Discord Inc.)
  50. Epic Games Launcher (HKLM-x32\...\{BE411926-37D4-45D5-9ED5-4132BEB8E9C5}) (Version: 1.1.298.0 - Epic Games, Inc.)
  51. Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
  52. EpocCam drivers 3.0.0 (HKLM-x32\...\EpocCam drivers) (Version: 3.0.0 - Elgato)
  53. Ezvid (HKLM-x32\...\{F96D619D-99D6-4C9C-A393-0CD22DE1CA66}_is1) (Version: 1.004 - Ezvid, inc.)
  54. FileZilla Client 3.51.0 (HKU\S-1-5-21-2684602908-2750127974-2092376734-1006\...\FileZilla Client) (Version: 3.51.0 - Tim Kosse)
  55. FileZilla Server (HKLM-x32\...\FileZilla Server) (Version: beta 0.9.60 - FileZilla Project)
  56. FiveM (HKU\S-1-5-21-2684602908-2750127974-2092376734-1006\...\CitizenFX_FiveM) (Version:  - Cfx.re)
  57. Google Chrome (HKLM-x32\...\Google Chrome) (Version: 88.0.4324.150 - Google LLC)
  58. Grand Theft Auto V (HKLM-x32\...\{BEEFBEEF-6B87-43FC-9524-F9E967241741}) (Version: 1.0.1604.1 - Rockstar Games)
  59. Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.14.5067 - Intel Corporation)
  60. iTunes (HKLM\...\{A3BDA32E-9A0C-45E9-9B3D-26276414A755}) (Version: 12.10.10.2 - Apple Inc.)
  61. iVCam 6.1 (HKLM\...\iVCam_is1) (Version: 6.1.7 - e2eSoft)
  62. Java 8 Update 271 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180271F0}) (Version: 8.0.2710.9 - Oracle Corporation)
  63. KMSpico (HKLM\...\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1) (Version:  - )
  64. Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
  65. League of Legends (HKU\S-1-5-21-2684602908-2750127974-2092376734-1006\...\Riot Game league_of_legends.live) (Version:  - Riot Games, Inc)
  66. LibreOffice 7.0.0.3 (HKLM\...\{7C7F19DA-6107-4284-9263-EC5C4792C8C7}) (Version: 7.0.0.3 - The Document Foundation)
  67. Lightworks (HKLM-x32\...\{E94DD4E4-7746-472c-AA7B-1242FED0CFC8}) (Version: 14.6.0.1 - EditShare)
  68. LogMeIn Hamachi (HKLM-x32\...\{ECC0FA07-863E-44BC-8B1D-DA22F96E5FB7}) (Version: 2.2.0.633 - LogMeIn, Inc.) Hidden
  69. LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.633 - LogMeIn, Inc.)
  70. Malwarebytes version 4.3.0.98 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.3.0.98 - Malwarebytes)
  71. Medal (HKU\S-1-5-21-2684602908-2750127974-2092376734-1006\...\Medal) (Version: 4.625.0 - Medal B.V.)
  72. Microsoft .NET Framework 4.5.2 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.5.51209 - Microsoft Corporation)
  73. Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
  74. Microsoft Teams (HKU\S-1-5-21-2684602908-2750127974-2092376734-1000\...\Teams) (Version: 1.3.00.26064 - Microsoft Corporation)
  75. Microsoft Teams (HKU\S-1-5-21-2684602908-2750127974-2092376734-1002\...\Teams) (Version: 1.3.00.28779 - Microsoft Corporation)
  76. Microsoft Teams (HKU\S-1-5-21-2684602908-2750127974-2092376734-1006\...\Teams) (Version: 1.3.00.34662 - Microsoft Corporation)
  77. Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
  78. Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
  79. Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
  80. Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
  81. Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
  82. Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
  83. Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
  84. Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
  85. Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
  86. Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.25.28508 (HKLM-x32\...\{6913e92a-b64e-41c9-a5e6-cef39207fe89}) (Version: 14.25.28508.3 - Microsoft Corporation)
  87. Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29325 (HKLM-x32\...\{d7a6435f-ac9a-4af6-8fdc-ca130d13fac9}) (Version: 14.28.29325.2 - Microsoft Corporation)
  88. Minecraft Launcher (HKLM-x32\...\{27B34E47-68AE-4802-822A-9F0C187AF84A}) (Version: 1.0.0.0 - Mojang)
  89. Minecraft Pingwin Pack 4 - Ultimate wersja 4.1 Ultimate (HKLM-x32\...\{BE6516A2-1364-4769-B038-72FDC159C94A}_is1) (Version: 4.1 Ultimate - AvenisHD)
  90. Mine-imator 1.2.7 (HKLM-x32\...\{EF61A1AA-5F85-4E94-ACC6-D5650A312AE6}}_is1) (Version: 1.2.7 - David Norgren)
  91. Mozilla Firefox 84.0.1 (x64 pl) (HKLM\...\Mozilla Firefox 84.0.1 (x64 pl)) (Version: 84.0.1 - Mozilla)
  92. Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 84.0.1 - Mozilla)
  93. MTA:SA v1.5.8 (HKLM-x32\...\MTA:SA 1.5) (Version: v1.5.8 - Multi Theft Auto)
  94. NoxPlayer (HKLM-x32\...\Nox) (Version: 6.6.1.3 - Duodian Technology Co. Ltd.)
  95. NVIDIA GeForce NOW 2.0.26.116 (HKU\S-1-5-21-2684602908-2750127974-2092376734-1006\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GeforceNOW) (Version: 2.0.26.116 - NVIDIA Corporation)
  96. NVIDIA Install Application (HKU\S-1-5-21-2684602908-2750127974-2092376734-1006\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer) (Version: 2.1002.344.0 - NVIDIA Corporation) Hidden
  97. NVIDIA Oprogramowanie systemu PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
  98. NVIDIA Sterownik graficzny 430.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 430.86 - NVIDIA Corporation)
  99. OBS Studio (HKLM-x32\...\OBS Studio) (Version: 23.0.1 - OBS Project)
  100. Opera GX Stable 71.0.3770.310 (HKU\S-1-5-21-2684602908-2750127974-2092376734-1000\...\Opera GX 71.0.3770.310) (Version: 71.0.3770.310 - Opera Software)
  101. Opera GX Stable 71.0.3770.310 (HKU\S-1-5-21-2684602908-2750127974-2092376734-1002\...\Opera GX 71.0.3770.310) (Version: 71.0.3770.310 - Opera Software)
  102. Oprogramowanie mikroukładu Intel® (HKLM-x32\...\{c6cff78a-cccb-49d5-be68-ae0ec5f0d48a}) (Version: 10.1.1.8 - Intel(R) Corporation) Hidden
  103. Panel sterowania NVIDIA 430.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 430.86 - NVIDIA Corporation) Hidden
  104. PLAY INTERNET (HKLM-x32\...\PLAY INTERNET) (Version: 23.015.11.00.264 - Huawei Technologies Co.,Ltd)
  105. RAGE Multiplayer (HKLM-x32\...\RAGE Multiplayer) (Version: 0.0.1.1 - )
  106. Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8720.1 - Realtek Semiconductor Corp.)
  107. ReaPlugs/x64 (HKLM\...\ReaPlugs) (Version:  - )
  108. Revo Uninstaller 2.2.2 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.2.2 - VS Revo Group, Ltd.)
  109. Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.33.319 - Rockstar Games)
  110. Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.7.5 - Rockstar Games)
  111. SHINOBI (HKLM-x32\...\{890CE702-97DD-4E48-BA65-863CC872CE4A}_is1) (Version: 1.0.4 - MODECOM Polska SP z o.o.)
  112. Shotcut (HKLM\...\Shotcut) (Version: 20.11.28 - Meltytech, LLC)
  113. Special Uninstaller version 3.8 (HKLM-x32\...\{46744C87-EE41-4BA3-A444-C2DECC145FC0}_is1) (Version: 3.8 - hxxp://www.specialuninstaller.com/)
  114. Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
  115. TeamSpeak 3 Client (HKU\S-1-5-21-2684602908-2750127974-2092376734-1006\...\TeamSpeak 3 Client) (Version: 3.5.3 - TeamSpeak Systems GmbH)
  116. Vidiot (HKLM-x32\...\Vidiot) (Version: 0.3.32 - Eric Raijmakers)
  117. Voicemod (HKLM\...\{8435A407-F778-4647-9CDB-46E5EC50BAD0}_is1) (Version: 2.6.0.7 - Voicemod S.L.)
  118. WinDirStat 1.1.2 (HKU\S-1-5-21-2684602908-2750127974-2092376734-1006\...\WinDirStat) (Version:  - )
  119. WinRAR 5.91 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH)
  120. WO Mic Client (HKLM-x32\...\WOMic) (Version:  - )
  121. XSplit Broadcaster (HKLM-x32\...\{27934DDC-05BC-4836-894A-AB948F3082E5}) (Version: 4.0.2007.2911 - SplitmediaLabs)
  122.  
  123. ==================== Niestandardowe rejestracje CLSID (filtrowane): ==============
  124.  
  125. (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
  126.  
  127. CustomCLSID: HKU\S-1-5-21-2684602908-2750127974-2092376734-1006_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
  128. CustomCLSID: HKU\S-1-5-21-2684602908-2750127974-2092376734-1006_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
  129. CustomCLSID: HKU\S-1-5-21-2684602908-2750127974-2092376734-1006_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
  130. CustomCLSID: HKU\S-1-5-21-2684602908-2750127974-2092376734-1006_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
  131. CustomCLSID: HKU\S-1-5-21-2684602908-2750127974-2092376734-1006_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
  132. CustomCLSID: HKU\S-1-5-21-2684602908-2750127974-2092376734-1006_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
  133. CustomCLSID: HKU\S-1-5-21-2684602908-2750127974-2092376734-1006_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\RAFONIX\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20289.5\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
  134. ShellIconOverlayIdentifiers: [   AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
  135. ShellIconOverlayIdentifiers: [   AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
  136. ShellIconOverlayIdentifiers: [   AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
  137. ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Brak podpisu cyfrowego]
  138. ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
  139. ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-08-25] (win.rar GmbH -> Alexander Roshal)
  140. ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-08-25] (win.rar GmbH -> Alexander Roshal)
  141. ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-02-15] (Malwarebytes Corporation -> Malwarebytes)
  142. ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Brak podpisu cyfrowego]
  143. ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2019-02-07] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
  144. ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2019-05-22] (NVIDIA Corporation -> NVIDIA Corporation)
  145. ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Brak podpisu cyfrowego]
  146. ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
  147. ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-02-15] (Malwarebytes Corporation -> Malwarebytes)
  148. ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-08-25] (win.rar GmbH -> Alexander Roshal)
  149. ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-08-25] (win.rar GmbH -> Alexander Roshal)
  150.  
  151. ==================== Codecs (filtrowane) ====================
  152.  
  153. (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)
  154.  
  155. HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\system32\lagarith.dll [148992 2013-04-07] () [Brak podpisu cyfrowego]
  156. HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\SysWOW64\lagarith.dll [216064 2013-04-07] () [Brak podpisu cyfrowego]
  157.  
  158. ==================== Skróty & WMI ========================
  159.  
  160. (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.)
  161.  
  162. WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
  163. WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
  164. WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
  165. ShortcutWithArgument: C:\Users\RAFONIX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikacje Chrome\TikTok.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=ahoadnkmomodgfkfokbclmabbfdaejpe
  166.  
  167. ==================== Załadowane moduły (filtrowane) =============
  168.  
  169. 2018-08-16 13:54 - 2018-08-16 13:54 - 001484800 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\Elgato\EpocCam\avcodec-58.dll
  170. 2018-08-16 13:52 - 2018-08-16 13:52 - 000556544 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\Elgato\EpocCam\avutil-56.dll
  171. 2018-08-16 13:54 - 2018-08-16 13:54 - 000190464 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\Elgato\EpocCam\swresample-3.dll
  172. 2018-08-16 13:55 - 2018-08-16 13:55 - 000514048 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\Elgato\EpocCam\swscale-5.dll
  173. 2020-11-16 20:39 - 2009-06-23 03:42 - 000043008 _____ () [Brak podpisu cyfrowego] C:\ProgramData\PLAY INTERNET\OnlineUpdate\libgcc_s_dw2-1.dll
  174. 2020-11-16 20:39 - 2009-01-10 19:32 - 000011362 _____ () [Brak podpisu cyfrowego] C:\ProgramData\PLAY INTERNET\OnlineUpdate\mingwm10.dll
  175. 2020-11-16 20:39 - 2013-08-31 06:44 - 002417152 _____ () [Brak podpisu cyfrowego] C:\ProgramData\PLAY INTERNET\OnlineUpdate\QtCore4.dll
  176. 2020-11-16 20:39 - 2013-08-31 06:46 - 001148416 _____ () [Brak podpisu cyfrowego] C:\ProgramData\PLAY INTERNET\OnlineUpdate\QtNetwork4.dll
  177. 2020-11-16 11:14 - 2019-02-21 17:00 - 000078336 _____ (Igor Pavlov) [Brak podpisu cyfrowego] C:\Program Files\7-Zip\7-zip.dll
  178. 2020-07-30 15:25 - 2020-02-16 21:37 - 000007168 _____ (IMI Kurwica) [Brak podpisu cyfrowego] C:\Windows\system32\sle.dll
  179. 2020-10-27 12:15 - 2021-02-15 20:21 - 002651136 _____ (Microsoft Corporation) [Brak podpisu cyfrowego] c:\windows\system32\wuaueng3.dll
  180. 2017-02-06 14:25 - 2017-02-06 14:25 - 001412608 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Brak podpisu cyfrowego] C:\Program Files (x86)\FileZilla Server\libeay32.dll
  181. 2017-02-06 14:25 - 2017-02-06 14:25 - 000365056 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Brak podpisu cyfrowego] C:\Program Files (x86)\FileZilla Server\ssleay32.dll
  182.  
  183. ==================== Alternate Data Streams (filtrowane) ========
  184.  
  185. ==================== Tryb awaryjny (filtrowane) ==================
  186.  
  187. (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.)
  188.  
  189. HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
  190. HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
  191. HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
  192.  
  193. ==================== Powiązania plików (filtrowane) =================
  194.  
  195. ==================== Internet Explorer (Wersja 11) (filtrowane) ==========
  196.  
  197. BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_271\bin\ssv.dll [2020-11-04] (Oracle America, Inc. -> Oracle Corporation)
  198. BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_271\bin\jp2ssv.dll [2020-11-04] (Oracle America, Inc. -> Oracle Corporation)
  199.  
  200. ==================== Hosts - zawartość: =========================
  201.  
  202. (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.)
  203.  
  204. 2009-07-14 03:34 - 2009-06-10 22:00 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
  205.  
  206. 2020-11-16 20:44 - 2021-02-15 19:14 - 000000435 _____ C:\Windows\system32\drivers\etc\hosts.ics
  207. 192.168.137.1 pcdomAnia.mshome.net # 2026 2 0 1 22 51 34 80
  208.  
  209. ==================== Inne obszary ===========================
  210.  
  211. (Obecnie brak automatycznej naprawy dla tej sekcji.)
  212.  
  213. HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common
  214. HKU\S-1-5-21-2684602908-2750127974-2092376734-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Ania\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
  215. HKU\S-1-5-21-2684602908-2750127974-2092376734-1002\Control Panel\Desktop\\Wallpaper ->
  216. HKU\S-1-5-21-2684602908-2750127974-2092376734-1006\Control Panel\Desktop\\Wallpaper -> C:\Users\RAFONIX\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
  217. DNS Servers: 172.20.10.1
  218. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
  219. Zapora systemu Windows [funkcja włączona]
  220.  
  221. ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy ==
  222.  
  223. (Załączenie wejścia w fixlist spowoduje jego usunięcie.)
  224.  
  225. MSCONFIG\Services: opiekun => 2
  226. MSCONFIG\startupreg: com.squirrel.Teams.Teams => C:\Users\Ania\AppData\Local\Microsoft\Teams\Update.exe --processStart "Teams.exe" --process-start-args "--system-initiated"
  227.  
  228. ==================== Reguły Zapory systemu Windows (filtrowane) ================
  229.  
  230. (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
  231.  
  232. FirewallRules: [{C53F09A8-EC02-44E8-82AF-1B7A76860ABA}] => (Allow) C:\Program Files (x86)\OpiekunWEB5\Agent\vnc\winvnc.exe => Brak pliku
  233. FirewallRules: [{8C237F2F-1284-4542-A8A5-C5FD9095EEC5}] => (Allow) C:\Program Files (x86)\OpiekunWEB5\Agent\vnc\winvnc.exe => Brak pliku
  234. FirewallRules: [{B8483AC3-EFB3-460F-AF0E-1DF1C31E3E48}] => (Allow) C:\Program Files (x86)\OpiekunWEB5\Agent\owagent.exe => Brak pliku
  235. FirewallRules: [{567F92DD-E67E-4DC2-9E8C-0024F5FBB59A}] => (Allow) C:\Program Files (x86)\OpiekunWEB5\Agent\owagent.exe => Brak pliku
  236. FirewallRules: [{BC4035FA-58A5-40BE-A48F-B39503BB0373}] => (Allow) C:\Users\Ania\AppData\Local\Programs\Opera GX\71.0.3770.310\opera.exe (Opera Software AS -> Opera Software)
  237. FirewallRules: [{C3BDC590-ECEF-467E-B189-EA9F54A7DFAA}] => (Allow) C:\Users\wiktor\AppData\Local\Programs\Opera GX\71.0.3770.310\opera.exe (Opera Software AS -> Opera Software)
  238. FirewallRules: [{5CEBA695-4D50-43EE-BF77-2BBAF3FAB0A9}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
  239. FirewallRules: [{C1F5C7FD-A9F4-4752-B894-C9A1BA966D1F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
  240. FirewallRules: [TCP Query User{909D60C4-49CB-48AE-8253-7120C25E8A0B}C:\users\wiktor\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\wiktor\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
  241. FirewallRules: [UDP Query User{0B21A822-F153-4DDD-9506-5DBCA515829D}C:\users\wiktor\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\wiktor\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
  242. FirewallRules: [{21ECDD4A-831A-4A45-BEB5-C577B583D2E8}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
  243. FirewallRules: [{D0E134FF-822A-473A-9FDE-47719A9C966A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
  244. FirewallRules: [{65317CEB-1442-4FF9-A032-D26E556DECE2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
  245. FirewallRules: [{ADAFDFB3-03E7-4D18-A53C-149F2CC2848B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
  246. FirewallRules: [TCP Query User{C35CD07C-15EF-44EA-9F9B-69777DCA435D}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe
  247. FirewallRules: [UDP Query User{810CD5E5-0E90-4297-8EC9-537AEE6D03DB}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe
  248. FirewallRules: [TCP Query User{2406F47D-D308-4C3E-A52A-FC2F32F80FC4}C:\program files\java\jre1.8.0_271\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_271\bin\javaw.exe
  249. FirewallRules: [UDP Query User{FFA21CA9-C0EE-4271-823C-F1B7384CB01B}C:\program files\java\jre1.8.0_271\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_271\bin\javaw.exe
  250. FirewallRules: [{C7A05E81-8526-4A6B-BEAE-8336F531B6F1}] => (Allow) C:\Program Files (x86)\WOMic\womicclient.exe () [Brak podpisu cyfrowego]
  251. FirewallRules: [TCP Query User{5CD6AB08-9C7B-4A8C-B81E-2883B47217FE}C:\users\wiktor\desktop\among us 9.9s\among us.exe] => (Allow) C:\users\wiktor\desktop\among us 9.9s\among us.exe () [Brak podpisu cyfrowego]
  252. FirewallRules: [UDP Query User{14B19EE7-B82D-476E-A5E5-1E399D973799}C:\users\wiktor\desktop\among us 9.9s\among us.exe] => (Allow) C:\users\wiktor\desktop\among us 9.9s\among us.exe () [Brak podpisu cyfrowego]
  253. FirewallRules: [TCP Query User{C1D14594-614B-46CB-B58F-730E2009031E}C:\users\rafonix\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\rafonix\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
  254. FirewallRules: [UDP Query User{957EAEC7-5C9F-4CFC-842D-77AEDEE7492D}C:\users\rafonix\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\rafonix\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
  255. FirewallRules: [{8C5E81EB-A0C0-4D3D-87F6-7C54C8A6E8E1}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
  256. FirewallRules: [{D4FAEE1F-6959-4339-B137-D251D4EADC4A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
  257. FirewallRules: [TCP Query User{8CF41D38-29F1-46F9-BA1C-635081308A77}C:\users\rafonix\appdata\local\nvidia corporation\geforcenow\cef\geforcenow.exe] => (Allow) C:\users\rafonix\appdata\local\nvidia corporation\geforcenow\cef\geforcenow.exe (NVIDIA Corporation -> NVIDIA Corporation)
  258. FirewallRules: [UDP Query User{3FDBFCAB-7EC0-4E5A-BE5F-FCF71EED098D}C:\users\rafonix\appdata\local\nvidia corporation\geforcenow\cef\geforcenow.exe] => (Allow) C:\users\rafonix\appdata\local\nvidia corporation\geforcenow\cef\geforcenow.exe (NVIDIA Corporation -> NVIDIA Corporation)
  259. FirewallRules: [TCP Query User{DCC81A35-009B-4F42-ACD2-62C385E76AFD}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
  260. FirewallRules: [UDP Query User{E2CD3CC2-E1F4-4F24-997F-74CD1C114C8F}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
  261. FirewallRules: [TCP Query User{B60841A7-3CB8-4C41-B633-2B4315B1F054}C:\users\rafonix\appdata\roaming\crystal-launcher\runtime\64\jre1.8.0_271\bin\javaw.exe] => (Allow) C:\users\rafonix\appdata\roaming\crystal-launcher\runtime\64\jre1.8.0_271\bin\javaw.exe
  262. FirewallRules: [UDP Query User{55F0D149-5A00-49FE-8C32-EE53C03A604A}C:\users\rafonix\appdata\roaming\crystal-launcher\runtime\64\jre1.8.0_271\bin\javaw.exe] => (Allow) C:\users\rafonix\appdata\roaming\crystal-launcher\runtime\64\jre1.8.0_271\bin\javaw.exe
  263. FirewallRules: [{B6FF6300-D9B1-4C14-A766-CF2B2BC5BAC3}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
  264. FirewallRules: [{786124D4-50C9-4843-8067-EEBB7539A4EF}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
  265. FirewallRules: [{121736CF-E380-41FD-A2B3-D03EC40601A1}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
  266. FirewallRules: [{98ABCE03-6D2A-40A5-A9FF-2AEE2C084593}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
  267. FirewallRules: [{616A3872-FC25-4C1B-9FC8-3A7A12748372}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
  268. FirewallRules: [TCP Query User{72F3D150-820C-408D-B3F3-A78705213058}C:\program files\filezilla ftp client\filezilla.exe] => (Allow) C:\program files\filezilla ftp client\filezilla.exe (Tim Kosse -> FileZilla Project)
  269. FirewallRules: [UDP Query User{A6F1DD11-9328-4B59-A26F-2D3277A6669A}C:\program files\filezilla ftp client\filezilla.exe] => (Allow) C:\program files\filezilla ftp client\filezilla.exe (Tim Kosse -> FileZilla Project)
  270. FirewallRules: [TCP Query User{7D57F84A-C027-416C-B8ED-FEF05A6C869A}C:\program files\e2esoft\ivcam\ivcam.exe] => (Allow) C:\program files\e2esoft\ivcam\ivcam.exe (Shanghai Yitu Information Technology Co., Ltd. -> )
  271. FirewallRules: [UDP Query User{5E5F7D23-9D0C-4177-A66D-2343832E547F}C:\program files\e2esoft\ivcam\ivcam.exe] => (Allow) C:\program files\e2esoft\ivcam\ivcam.exe (Shanghai Yitu Information Technology Co., Ltd. -> )
  272. FirewallRules: [{6927D853-C562-4E4D-AFD7-1E3E4593AE90}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
  273. FirewallRules: [{61A88533-6E31-4315-AD2A-66F77C11E6A8}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
  274. FirewallRules: [{C4D4F60E-E679-4B12-ABA0-00D340E87CD5}] => (Allow) C:\Program Files\Lightworks\lightworks.exe (EditShare EMEA (X-Edit Limited) -> )
  275. FirewallRules: [{5B871EAF-1724-4686-9CDD-C262E42D76AF}] => (Allow) C:\Program Files\Lightworks\lightworks.exe (EditShare EMEA (X-Edit Limited) -> )
  276. FirewallRules: [{02BBD0EE-7B7D-4DA3-A504-6D737081ECF2}] => (Allow) C:\Program Files\Lightworks\ntcardvt.exe (EditShare EMEA (X-Edit Limited) -> LWKS Software Ltd)
  277. FirewallRules: [{E392D0D5-6822-4622-BA08-968240EDFA51}] => (Allow) C:\Program Files\Lightworks\ntcardvt.exe (EditShare EMEA (X-Edit Limited) -> LWKS Software Ltd)
  278. FirewallRules: [TCP Query User{A8231244-4FB7-4978-B21F-E534D76B65F5}C:\users\rafonix\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\rafonix\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe (Intricus Software Limited -> Cfx.re) [Brak podpisu cyfrowego]
  279. FirewallRules: [UDP Query User{54A80F77-C07D-46F7-B024-B5C0EDDB3484}C:\users\rafonix\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\rafonix\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe (Intricus Software Limited -> Cfx.re) [Brak podpisu cyfrowego]
  280. FirewallRules: [{2E3018E3-B442-4BEA-ADB4-026FDCE71E56}] => (Allow) E:\Epic Games\GTAV\GTA5.exe (Rockstar Games, Inc. -> Rockstar Games)
  281. FirewallRules: [{DCE11995-EA14-41E1-A3BA-B3AB21D0FE11}] => (Allow) E:\Epic Games\GTAV\GTA5.exe (Rockstar Games, Inc. -> Rockstar Games)
  282. FirewallRules: [{8C2920C9-DBC9-4B02-B569-62DC874DEF15}] => (Allow) E:\Epic Games\GTAV\GTA5.exe (Rockstar Games, Inc. -> Rockstar Games)
  283. FirewallRules: [{75109D5E-1944-49BF-9632-164F3C5E77B2}] => (Allow) E:\Epic Games\GTAV\GTA5.exe (Rockstar Games, Inc. -> Rockstar Games)
  284. FirewallRules: [TCP Query User{677B3FEF-25DF-4EC7-ACEF-0BDB1A8F3A54}C:\users\rafonix\appdata\local\fivem\fivem.app\cache\subprocess\fivem_b2189_gtaprocess.exe] => (Allow) C:\users\rafonix\appdata\local\fivem\fivem.app\cache\subprocess\fivem_b2189_gtaprocess.exe (Intricus Software Limited -> Cfx.re) [Brak podpisu cyfrowego]
  285. FirewallRules: [UDP Query User{081DFE79-7517-4974-AA63-4FBAC9A27C18}C:\users\rafonix\appdata\local\fivem\fivem.app\cache\subprocess\fivem_b2189_gtaprocess.exe] => (Allow) C:\users\rafonix\appdata\local\fivem\fivem.app\cache\subprocess\fivem_b2189_gtaprocess.exe (Intricus Software Limited -> Cfx.re) [Brak podpisu cyfrowego]
  286. FirewallRules: [{34F44FB0-13BB-40F6-A05F-A097A4967D70}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
  287.  
  288. ==================== Punkty Przywracania systemu =========================
  289.  
  290. 13-02-2021 21:20:02 Windows Update
  291. 14-02-2021 20:21:36 Kopia zapasowa systemu Windows
  292. 15-02-2021 19:28:35 Revo Uninstaller's restore point - OpiekunWEB (wersja 5.0.0.293)
  293. 15-02-2021 20:38:45 Restore Point Created by FRST
  294.  
  295. ==================== Wadliwe urządzenia w Menedżerze urządzeń ============
  296.  
  297. Name: Realtek PCIe GbE Family Controller
  298. Description: Realtek PCIe GbE Family Controller
  299. Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
  300. Manufacturer: Realtek
  301. Service: RTL8167
  302. Problem: : This device is disabled. (Code 22)
  303. Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
  304.  
  305. Name: Hamachi Network Interface
  306. Description: Hamachi Network Interface
  307. Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
  308. Manufacturer: LogMeIn, Inc.
  309. Service: hamachi
  310. Problem: : This device is disabled. (Code 22)
  311. Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
  312.  
  313.  
  314. ==================== Błędy w Dzienniku zdarzeń: ========================
  315.  
  316. Dziennik Aplikacja:
  317. ==================
  318. Error: (02/15/2021 10:30:46 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: ZARZĄDZANIE NT)
  319. Description: Nie można usunąć z pamięci ciągów licznika wydajności dla usługi WmiApRpl (WmiApRpl). Pierwszy wpis DWORD w sekcji danych (Data) zawiera kod błędu.
  320.  
  321. Error: (02/15/2021 10:30:46 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT)
  322. Description: Ciągi wydajności w wartości rejestru wydajności są uszkodzone, kiedy proces wykonuje następującą operację na dostawcy licznika rozszerzeń: Performance. Wartość BaseIndex z rejestru wydajności to pierwszy wpis DWORD w sekcji danych Data, wartość LastCounter to drugi wpis DWORD, a wartość LastHelp to trzeci wpis DWORD w sekcji Data.
  323.  
  324. Error: (02/15/2021 10:30:46 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT)
  325. Description: Ciągi wydajności w wartości rejestru wydajności są uszkodzone, kiedy proces wykonuje następującą operację na dostawcy licznika rozszerzeń: Performance. Wartość BaseIndex z rejestru wydajności to pierwszy wpis DWORD w sekcji danych Data, wartość LastCounter to drugi wpis DWORD, a wartość LastHelp to trzeci wpis DWORD w sekcji Data.
  326.  
  327. Error: (02/15/2021 10:27:06 PM) (Source: Bonjour Service) (EventID: 100) (User: )
  328. Description: Client application bug: DNSServiceResolve(mobile._epoccam._tcp.local.) active for over two minutes. This places considerable burden on the network.
  329.  
  330. Error: (02/15/2021 10:24:54 PM) (Source: WinMgmt) (EventID: 10) (User: )
  331. Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
  332.  
  333. Error: (02/15/2021 10:00:37 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: ZARZĄDZANIE NT)
  334. Description: Nie można usunąć z pamięci ciągów licznika wydajności dla usługi WmiApRpl (WmiApRpl). Pierwszy wpis DWORD w sekcji danych (Data) zawiera kod błędu.
  335.  
  336. Error: (02/15/2021 10:00:37 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT)
  337. Description: Ciągi wydajności w wartości rejestru wydajności są uszkodzone, kiedy proces wykonuje następującą operację na dostawcy licznika rozszerzeń: Performance. Wartość BaseIndex z rejestru wydajności to pierwszy wpis DWORD w sekcji danych Data, wartość LastCounter to drugi wpis DWORD, a wartość LastHelp to trzeci wpis DWORD w sekcji Data.
  338.  
  339. Error: (02/15/2021 10:00:37 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT)
  340. Description: Ciągi wydajności w wartości rejestru wydajności są uszkodzone, kiedy proces wykonuje następującą operację na dostawcy licznika rozszerzeń: Performance. Wartość BaseIndex z rejestru wydajności to pierwszy wpis DWORD w sekcji danych Data, wartość LastCounter to drugi wpis DWORD, a wartość LastHelp to trzeci wpis DWORD w sekcji Data.
  341.  
  342.  
  343. Dziennik System:
  344. =============
  345. Error: (02/15/2021 10:24:59 PM) (Source: Schannel) (EventID: 4119) (User: ZARZĄDZANIE NT)
  346. Description: Odebrano następujący alert krytyczny: 70.
  347.  
  348. Error: (02/15/2021 10:24:59 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
  349. Description: Usługa HWDeviceService64.exe niespodziewanie zakończyła pracę. Wystąpiło to razy: 1.
  350.  
  351. Error: (02/15/2021 10:24:53 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
  352. Description: Nie można uruchomić usługi PLAY INTERNET. OUC z powodu następującego błędu:
  353. Usługa nie odpowiada na sygnał uruchomienia lub sygnał sterujący w oczekiwanym czasie.
  354.  
  355. Error: (02/15/2021 10:24:53 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
  356. Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą PLAY INTERNET. OUC.
  357.  
  358. Error: (02/15/2021 10:24:51 PM) (Source: EventLog) (EventID: 6008) (User: )
  359. Description: Poprzednie zamknięcie systemu przy 22:23:36 na ‎2021-‎02-‎15 było nieoczekiwane.
  360.  
  361. Error: (02/15/2021 09:54:50 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
  362. Description: Usługa HWDeviceService64.exe niespodziewanie zakończyła pracę. Wystąpiło to razy: 1.
  363.  
  364. Error: (02/15/2021 09:54:49 PM) (Source: Schannel) (EventID: 4119) (User: ZARZĄDZANIE NT)
  365. Description: Odebrano następujący alert krytyczny: 70.
  366.  
  367. Error: (02/15/2021 09:54:44 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
  368. Description: Nie można uruchomić usługi PLAY INTERNET. OUC z powodu następującego błędu:
  369. Usługa nie odpowiada na sygnał uruchomienia lub sygnał sterujący w oczekiwanym czasie.
  370.  
  371. Windows Defender:
  372. ================
  373. Date: 2021-02-13 21:17:45.174
  374. Description:
  375. Produkt Windows Defender napotka� b��d podczas pr�by za�adowania podpis�w i podejmie pr�b� powrotu do znanego zestawu dobrych podpis�w.
  376. Podpisy obj�te pr�b�:Bie��ce
  377. Kod b��du:0x80070003
  378. Opis b��du:System nie mo�e odnale�� okre�lonej �cie�ki.
  379. Wersja podpisu:0.0.0.0
  380. Wersja aparatu:0.0.0.0
  381.  
  382. ==================== Statystyki pamięci ===========================
  383.  
  384. BIOS: American Megatrends Inc. F15 08/20/2015
  385. Płyta główna: Gigabyte Technology Co., Ltd. B85M-D3H
  386. Procesor: Intel(R) Core(TM) i5-4570 CPU @ 3.20GHz
  387. Procent pamięci w użyciu: 54%
  388. Całkowita pamięć fizyczna: 8173.73 MB
  389. Dostępna pamięć fizyczna: 3718.22 MB
  390. Całkowita pamięć wirtualna: 16345.61 MB
  391. Dostępna pamięć wirtualna: 11020.32 MB
  392.  
  393. ==================== Dyski ================================
  394.  
  395. Drive c: (Win7x64) (Fixed) (Total:223.47 GB) (Free:20.24 GB) NTFS
  396. Drive e: (Backup) (Fixed) (Total:465.76 GB) (Free:326.47 GB) NTFS
  397.  
  398. \\?\Volume{a3367fc3-1845-11eb-bed1-806e6f6e6963}\ (Zastrzeżone przez system) (Fixed) (Total:0.1 GB) (Free:0.04 GB) NTFS
  399.  
  400. ==================== MBR & Tablica partycji ====================
  401.  
  402. ==========================================================
  403. Disk: 0 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: C0B232A0)
  404. Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
  405. Partition 2: (Not Active) - (Size=223.5 GB) - (Type=07 NTFS)
  406.  
  407. ==========================================================
  408. Disk: 1 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 040ECBF5)
  409. Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)
  410.  
  411. ==================== Koniec  Addition.txt =======================

Reply to "skan2"