Ponownie uruchomiłem FRSTa i przesyłam zmodyfikowane pliki.
Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 28-06-2020
Uruchomiony przez User (29-06-2020 03:42:12)
Uruchomiony z C:\Users\User\Downloads
Windows 10 Pro Wersja 1909 18363.900 (X64) (2020-02-07 00:22:14)
Tryb startu: Normal
==========================================================
==================== Konta użytkowników: =============================
Administrator (S-1-5-21-2362631602-3406235986-567690777-500 - Administrator - Disabled)
Gość (S-1-5-21-2362631602-3406235986-567690777-501 - Limited - Disabled)
john (S-1-5-21-2362631602-3406235986-567690777-1002 - Administrator - Enabled)
Konto domyślne (S-1-5-21-2362631602-3406235986-567690777-503 - Limited - Disabled)
User (S-1-5-21-2362631602-3406235986-567690777-1001 - Administrator - Enabled) = & gt; C:\Users\User
WDAGUtilityAccount (S-1-5-21-2362631602-3406235986-567690777-504 - Limited - Disabled)
==================== Centrum zabezpieczeń ========================
(Załączenie wejścia w fixlist spowoduje jego usunięcie.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Zainstalowane programy ======================
(W fixlist dozwolone tylko załączanie programów adware z flagą " Hidden " w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.)
µTorrent (HKU\S-1-5-21-2362631602-3406235986-567690777-1001\...\uTorrent) (Version: 3.5.5.45704 - BitTorrent Inc.)
Asystent aktualizacji do systemu Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22925 - Microsoft Corporation)
Avanquest update (HKLM-x32\...\{76E41F43-59D2-4F30-BA42-9A762EE1E8DE}) (Version: 1.34 - Avanquest Software)
Badanie mające na celu poprawę produktów HP ENVY 5000 series (HKLM\...\{FE34802F-90E1-4038-A838-A7A40FE0AC15}) (Version: 44.4.2678.1977 - HP Inc.)
Badanie mające na celu poprawę produktów HP Officejet Pro 8610 (HKLM\...\{E528E515-0515-4A08-8CC0-4A63E8D41CC7}) (Version: 32.3.198.49673 - Hewlett-Packard Co.)
BitTorrent (HKU\S-1-5-21-2362631602-3406235986-567690777-1001\...\BitTorrent) (Version: 7.10.5.45665 - BitTorrent Inc.)
Camtasia Studio 8 (HKLM-x32\...\{BFA04EE0-8240-4667-8D53-45496A901C33}) (Version: 8.1.2.1327 - TechSmith Corporation)
CardioExpert (HKLM-x32\...\{E17C4E04-13C0-400B-91FC-891A00A9BF58}) (Version: 2.20.34 - beurer)
Dream Game (HKLM-x32\...\Dream Game) (Version: - )
Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - )
Free Studio version 2013 (HKLM-x32\...\Free Studio_is1) (Version: 6.2.0.1029 - DVDVideoSoft Ltd.)
GanttProject (HKLM-x32\...\GanttProject) (Version: - )
GIMP 2.10.20 (HKLM\...\GIMP-2_is1) (Version: 2.10.20 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 83.0.4103.116 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Grammarly (HKU\S-1-5-21-2362631602-3406235986-567690777-1001\...\GrammarlyForWindows) (Version: 1.5.61 - Grammarly)
HP Dropbox Plugin (HKLM-x32\...\{8A92F0ED-5B2A-49A4-8D91-3C7436BA5998}) (Version: 36.0.102.68541 - HP)
HP EmailSMTP Plugin (HKLM-x32\...\{769FD3B5-22E4-458E-9EE8-84D131500526}) (Version: 43.0.0.0 - HP)
HP ENVY 5000 series — podstawowe oprogramowanie urządzenia (HKLM\...\{9F3C5824-BDBF-4E46-98FE-BB6999BC992F}) (Version: 44.4.2678.1977 - HP Inc.)
HP ENVY 5000 series Pomoc (HKLM-x32\...\{36B98B64-546F-4E08-A1D4-F888D186D08F}) (Version: 44.0.0 - HP)
HP FTP Plugin (HKLM-x32\...\{84DE24E4-9E84-4EEA-9943-0234F6792527}) (Version: 43.0.0.0 - HP)
HP Google Drive Plugin (HKLM-x32\...\{4B30A834-E2F8-4C3C-BEE1-7D9D2647D8F5}) (Version: 36.0.102.68541 - HP)
HP Officejet Pro 8610 — podstawowe oprogramowanie urządzenia (HKLM\...\{5C3CC5AA-F4F1-4EB3-8082-55463B0DD27F}) (Version: 32.3.198.49673 - Hewlett-Packard Co.)
HP Officejet Pro 8610 Pomoc (HKLM-x32\...\{4A912FFB-8389-48F6-B4A6-D51C383B7200}) (Version: 32.0.0 - Hewlett Packard)
HP OneDrive Plugin (HKLM-x32\...\{B02B7BBE-91AF-4063-86B7-66F1A04967AC}) (Version: 36.0.0.0 - HP)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.9572 - HP)
HP SharePoint Plugin (HKLM-x32\...\{6C46CDF1-AFBC-426C-8920-207BC1D64D8D}) (Version: 43.0.0.0 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
Jak rozpętałem II Wojnę Światową (HKLM-x32\...\{39FC3628-9A19-4F56-8CF6-992A6B66F84A}) (Version: - )
Java 8 Update 251 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180251F0}) (Version: 8.0.2510.8 - Oracle Corporation)
Kleopatra - królowa Nilu (HKLM-x32\...\Kleopatra) (Version: - )
Mafia II Definitive Edition (HKLM-x32\...\Mafia II Definitive Edition_is1) (Version: - )
Malwarebytes Anti-Malware wersja 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - )
Metal Gear Solid V (HKLM-x32\...\Metal Gear Solid V_is1) (Version: - )
Microsoft 365 dla przedsiębiorstw - pl-pl (HKLM\...\O365ProPlusRetail - pl-pl) (Version: 16.0.12827.20336 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 83.0.478.56 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.129.31 - )
Microsoft OneDrive (HKLM-x32\...\OneDriveSetup.exe) (Version: 20.084.0426.0007 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-2362631602-3406235986-567690777-1001\...\Teams) (Version: 1.3.00.13565 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.26.28720 (HKLM-x32\...\{7d607fb4-7e28-4c7a-a92f-3fcdaf555faf}) (Version: 14.26.28720.3 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
MPlayer for Windows (Full Package) (HKLM-x32\...\{DB9E4EAB-2717-499F-8D56-4CC8A644AB60}) (Version: - LoRd MuldeR)
NVIDIA Sterownik graficzny 432.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 432.00 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.12827.20160 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.12827.20336 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0415-1000-0000000FF1CE}) (Version: 16.0.12827.20160 - Microsoft Corporation) Hidden
Old Gods Rising (HKLM-x32\...\Old Gods Rising_is1) (Version: - )
Plarium Play (HKLM-x32\...\{186b8f7a-d886-40d0-af54-0a87967eb0cf}) (Version: 6.1.0 - Plarium)
Plarium Play (HKLM-x32\...\{4FD60DF5-8569-4D49-B396-135E44C0B716}) (Version: 6.1.0 - Plarium) Hidden
RarmaRadio 2.72.4 (HKLM-x32\...\RarmaRadio_is1) (Version: - RaimerSoft)
Sim AQUARIUM 2 (HKLM-x32\...\Sim AQUARIUM 2_is1) (Version: 2.3 - Digital Illusions Software)
Sonic 3D (HKLM-x32\...\Sonic 3D) (Version: - )
Star Wars: Battlefront 2 (HKLM-x32\...\Star Wars: Battlefront 2_is1) (Version: - )
Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.2.0.34161 - Microsoft Corporation)
The Rage (HKLM-x32\...\The Rage) (Version: - )
Usługa Xperia Companion (HKLM\...\{E41065E8-67E2-448F-940C-FF9D7C51E4E3}) (Version: 2.8.3.0 - Sony) Hidden
WhatsApp (HKU\S-1-5-21-2362631602-3406235986-567690777-1001\...\WhatsApp) (Version: 0.4.2088 - WhatsApp)
WinRAR 5.80 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.80.0 - win.rar GmbH)
Xperia Companion (HKLM-x32\...\{5b7c1b25-5fb6-442c-a1b5-cb8dfc2267bf}) (Version: 2.8.3.0 - Sony)
Xperia Companion (HKLM-x32\...\{66EABD35-6233-4926-9AB1-AB31CC6BC7D9}) (Version: 2.8.3.0 - Sony) Hidden
Zoom (HKU\S-1-5-21-2362631602-3406235986-567690777-1001\...\ZoomUMX) (Version: 5.0 - Zoom Video Communications, Inc.)
Packages:
=========
BreeZip - & gt; C:\Program Files\WindowsApps\3138AweZip.AweZip_1.3.15.0_x86__ffd303wmbhcjt [2020-06-24] (BreeZip) [MS Ad]
Cool File Viewer - & gt; C:\Program Files\WindowsApps\20815shootingapp.AirFileViewer_1.4.6.0_x86__xcg28tkrsnqww [2020-05-26] (Cool File Viewer)
Dodatek Aparat multimediów dla aplikacji Zdjęcia - & gt; C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-03-13] (Microsoft Corporation)
HP Smart - & gt; C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_115.1.152.0_x64__v10z8vjag6ke6 [2020-05-28] (HP Inc.)
Microsoft Advertising SDK for XAML - & gt; C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-02-21] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML - & gt; C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-02-21] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection - & gt; C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.5012.0_x64__8wekyb3d8bbwe [2020-05-03] (Microsoft Studios) [MS Ad]
MSN Pogoda - & gt; C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation) [MS Ad]
NVIDIA Control Panel - & gt; C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.958.0_x64__56jybvy8sckqj [2020-06-24] (NVIDIA Corp.)
PDF X - & gt; C:\Program Files\WindowsApps\6760NGPDFLab.PDFX_1.0.6.0_x64__sbe4t8mqwq93a [2020-06-18] (NG PDF Lab)
Ultra Blu-ray Player Supports DVD - & gt; C:\Program Files\WindowsApps\D5BE6627.UltraBlu-rayPlayerSupportsDVD_2.0.8.0_x86__9pm2v9747qaaa [2020-05-15] (CompuClever Systems Inc.)
Ultra PDF Viewer - & gt; C:\Program Files\WindowsApps\D5BE6627.UltraPDFViewer_4.0.30.0_x64__9pm2v9747qaaa [2020-05-28] (CompuClever Systems Inc.)
==================== Niestandardowe rejestracje CLSID (filtrowane): ==============
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
CustomCLSID: HKU\S-1-5-21-2362631602-3406235986-567690777-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 - & gt; C:\Users\User\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20091.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation - & gt; Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2362631602-3406235986-567690777-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 - & gt; C:\Users\User\AppData\Local\Microsoft\OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll = & gt; Brak pliku
CustomCLSID: HKU\S-1-5-21-2362631602-3406235986-567690777-1001_Classes\CLSID\{23aaa06e-abab-4e7e-a0ac-6982ed6a6041}\localserver32 - & gt; C:\Users\User\AppData\Local\GamerHash\GamerHashLauncher.exe = & gt; Brak pliku
CustomCLSID: HKU\S-1-5-21-2362631602-3406235986-567690777-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 - & gt; C:\Users\User\AppData\Local\Microsoft\OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll = & gt; Brak pliku
CustomCLSID: HKU\S-1-5-21-2362631602-3406235986-567690777-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 - & gt; C:\Users\User\AppData\Local\Microsoft\OneDrive\19.232.1124.0010\amd64\FileSyncShell64.dll = & gt; Brak pliku
CustomCLSID: HKU\S-1-5-21-2362631602-3406235986-567690777-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 - & gt; C:\Users\User\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20091.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation - & gt; Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive1] - & gt; {BBACC218-34EA-4666-9D7A-C78F2274A524} = & gt; C:\Program Files (x86)\Microsoft OneDrive\20.084.0426.0007\amd64\FileSyncShell64.dll [2020-06-18] (Microsoft Corporation - & gt; Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] - & gt; {5AB7172C-9C11-405C-8DD5-AF20F3606282} = & gt; C:\Program Files (x86)\Microsoft OneDrive\20.084.0426.0007\amd64\FileSyncShell64.dll [2020-06-18] (Microsoft Corporation - & gt; Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] - & gt; {A78ED123-AB77-406B-9962-2A5D9D2F7F30} = & gt; C:\Program Files (x86)\Microsoft OneDrive\20.084.0426.0007\amd64\FileSyncShell64.dll [2020-06-18] (Microsoft Corporation - & gt; Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] - & gt; {F241C880-6982-4CE5-8CF7-7085BA96DA5A} = & gt; C:\Program Files (x86)\Microsoft OneDrive\20.084.0426.0007\amd64\FileSyncShell64.dll [2020-06-18] (Microsoft Corporation - & gt; Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] - & gt; {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} = & gt; C:\Program Files (x86)\Microsoft OneDrive\20.084.0426.0007\amd64\FileSyncShell64.dll [2020-06-18] (Microsoft Corporation - & gt; Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] - & gt; {9AA2F32D-362A-42D9-9328-24A483E2CCC3} = & gt; C:\Program Files (x86)\Microsoft OneDrive\20.084.0426.0007\amd64\FileSyncShell64.dll [2020-06-18] (Microsoft Corporation - & gt; Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] - & gt; {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} = & gt; C:\Program Files (x86)\Microsoft OneDrive\20.084.0426.0007\amd64\FileSyncShell64.dll [2020-06-18] (Microsoft Corporation - & gt; Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] - & gt; {BBACC218-34EA-4666-9D7A-C78F2274A524} = & gt; C:\Program Files (x86)\Microsoft OneDrive\20.084.0426.0007\amd64\FileSyncShell64.dll [2020-06-18] (Microsoft Corporation - & gt; Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] - & gt; {5AB7172C-9C11-405C-8DD5-AF20F3606282} = & gt; C:\Program Files (x86)\Microsoft OneDrive\20.084.0426.0007\amd64\FileSyncShell64.dll [2020-06-18] (Microsoft Corporation - & gt; Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] - & gt; {A78ED123-AB77-406B-9962-2A5D9D2F7F30} = & gt; C:\Program Files (x86)\Microsoft OneDrive\20.084.0426.0007\amd64\FileSyncShell64.dll [2020-06-18] (Microsoft Corporation - & gt; Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] - & gt; {F241C880-6982-4CE5-8CF7-7085BA96DA5A} = & gt; C:\Program Files (x86)\Microsoft OneDrive\20.084.0426.0007\amd64\FileSyncShell64.dll [2020-06-18] (Microsoft Corporation - & gt; Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] - & gt; {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} = & gt; C:\Program Files (x86)\Microsoft OneDrive\20.084.0426.0007\amd64\FileSyncShell64.dll [2020-06-18] (Microsoft Corporation - & gt; Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] - & gt; {9AA2F32D-362A-42D9-9328-24A483E2CCC3} = & gt; C:\Program Files (x86)\Microsoft OneDrive\20.084.0426.0007\amd64\FileSyncShell64.dll [2020-06-18] (Microsoft Corporation - & gt; Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] - & gt; {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} = & gt; C:\Program Files (x86)\Microsoft OneDrive\20.084.0426.0007\amd64\FileSyncShell64.dll [2020-06-18] (Microsoft Corporation - & gt; Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] - & gt; {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} = & gt; C:\Program Files (x86)\Microsoft OneDrive\20.084.0426.0007\amd64\FileSyncShell64.dll [2020-06-18] (Microsoft Corporation - & gt; Microsoft Corporation)
ContextMenuHandlers1: [WinRAR] - & gt; {B41DB860-64E4-11D2-9906-E49FADC173CA} = & gt; C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH - & gt; Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] - & gt; {B41DB860-8EE4-11D2-9906-E49FADC173CA} = & gt; C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH - & gt; Alexander Roshal)
ContextMenuHandlers4: [ FileSyncEx] - & gt; {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} = & gt; C:\Program Files (x86)\Microsoft OneDrive\20.084.0426.0007\amd64\FileSyncShell64.dll [2020-06-18] (Microsoft Corporation - & gt; Microsoft Corporation)
ContextMenuHandlers5: [ FileSyncEx] - & gt; {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} = & gt; C:\Program Files (x86)\Microsoft OneDrive\20.084.0426.0007\amd64\FileSyncShell64.dll [2020-06-18] (Microsoft Corporation - & gt; Microsoft Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] - & gt; {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} = & gt; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_90685a092bcf58c7\nvshext.dll [2019-10-04] (NVIDIA Corporation - & gt; NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] - & gt; {B41DB860-64E4-11D2-9906-E49FADC173CA} = & gt; C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH - & gt; Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] - & gt; {B41DB860-8EE4-11D2-9906-E49FADC173CA} = & gt; C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH - & gt; Alexander Roshal)
==================== Codecs (filtrowane) ====================
(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)
HKLM\...\Drivers32: [VIDC.FPS1] = & gt; C:\WINDOWS\system32\frapsv64.dll [71680 2012-08-30] (Beepa P/L) [Brak podpisu cyfrowego] [Plik w użyciu]
HKLM\...\Drivers32: [VIDC.FPS1] = & gt; C:\Windows\SysWOW64\frapsvid.dll [65536 2012-08-30] (Beepa P/L) [Brak podpisu cyfrowego] [Plik w użyciu]
==================== Skróty & WMI ========================
(Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.)
ShortcutWithArgument: C:\Users\User\Desktop\Alibaba.com.lnk - & gt; C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) - & gt; --profile-directory=Default --app-id=ehmiijanckpamlbclbkmdlcbiidgnioi
ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikacje Chrome\Alibaba.com.lnk - & gt; C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) - & gt; --profile-directory=Default --app-id=ehmiijanckpamlbclbkmdlcbiidgnioi
==================== Załadowane moduły (filtrowane) =============
==================== Alternate Data Streams (filtrowane) ========
==================== Tryb awaryjny (filtrowane) ==================
==================== Powiązania plików (filtrowane) =================
==================== Internet Explorer - Witryny zaufane i z ograniczeniami ==========
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.)
IE trusted site: HKU\S-1-5-21-2362631602-3406235986-567690777-1001\...\sharepoint.com - & gt; hxxps://vizjapl-files.sharepoint.com
==================== Hosts - zawartość: =========================
(Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.)
2020-05-26 05:19 - 2020-06-27 05:37 - 000000027 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
==================== Inne obszary ===========================
(Obecnie brak automatycznej naprawy dla tej sekcji.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path - & gt; C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-2362631602-3406235986-567690777-1001\Control Panel\Desktop\\Wallpaper - & gt; c:\users\user\appdata\local\microsoft\windows\themes\tak\desktopbackground\screen-0.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System = & gt; (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer = & gt; (SmartScreenEnabled: Warn)
Zapora systemu Windows [funkcja włączona]
==================== MSCONFIG/TASK MANAGER - Wyłączone elementy ==
==================== Reguły Zapory systemu Windows (filtrowane) ================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
FirewallRules: [{1963F990-237C-4C7E-8898-195321DF7FCB}] = & gt; (Allow) C:\Program Files\HP\HP Officejet Pro 8610\bin\FaxApplications.exe (Hewlett Packard - & gt; Hewlett-Packard Development Company, LP)
FirewallRules: [{DA9BCDE7-E831-476C-AD31-2026D15892B0}] = & gt; (Allow) C:\Program Files\HP\HP Officejet Pro 8610\bin\DigitalWizards.exe (Hewlett Packard - & gt; Hewlett-Packard Development Company, LP)
FirewallRules: [{B7A47348-E8DA-4494-B704-5F23A441E99E}] = & gt; (Allow) C:\Program Files\HP\HP Officejet Pro 8610\bin\SendAFax.exe (Hewlett Packard - & gt; Hewlett-Packard Development Company, LP)
FirewallRules: [{EEAB069E-4AA6-4E85-89A9-BF92773F788C}] = & gt; (Allow) C:\Program Files\HP\HP Officejet Pro 8610\Bin\DeviceSetup.exe (Hewlett Packard - & gt; Hewlett-Packard Development Company, LP)
FirewallRules: [{E1188381-7608-4694-A8EF-CFD8D6AC86FC}] = & gt; (Allow) LPort=5357
FirewallRules: [{5FD8AF10-11E5-491B-81B8-5C8E42C58F09}] = & gt; (Allow) C:\Program Files\HP\HP Officejet Pro 8610\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard - & gt; Hewlett-Packard Development Company, LP)
FirewallRules: [{B5C3A1DC-B829-4F94-A35F-359FBE6FFE49}] = & gt; (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation - & gt; Microsoft Corporation)
FirewallRules: [{4D977BD3-7403-458A-A336-EA8895247B68}] = & gt; (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation - & gt; Microsoft Corporation)
FirewallRules: [{BA4FDD44-DBBE-4C27-AE0B-148846ACB20A}] = & gt; (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation - & gt; Microsoft Corporation)
FirewallRules: [{98DC0EFC-1004-45DB-9AAD-C32CB94A99AD}] = & gt; (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation - & gt; Microsoft Corporation)
FirewallRules: [{3DE8DBC1-D1A1-4362-AC90-C6CEFCE91A62}] = & gt; (Allow) C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc - & gt; BitTorrent Inc.)
FirewallRules: [{8BD994E5-E530-48F7-A753-B73A47D6B0D0}] = & gt; (Allow) C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc - & gt; BitTorrent Inc.)
FirewallRules: [TCP Query User{170E6E63-2F48-4D3C-92AB-E234E8E953AF}C:\users\user\appdata\local\microsoft\teams\current\teams.exe] = & gt; (Allow) C:\users\user\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation - & gt; Microsoft Corporation)
FirewallRules: [UDP Query User{0FB5BCD4-1404-4B31-AF3D-03402891D542}C:\users\user\appdata\local\microsoft\teams\current\teams.exe] = & gt; (Allow) C:\users\user\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation - & gt; Microsoft Corporation)
FirewallRules: [{AB741B7D-961F-44FC-A279-E98CB861DE9C}] = & gt; (Allow) C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanion.exe (Sony Mobile Communications AB - & gt; Sony)
FirewallRules: [{08568A40-E7B8-41C0-A638-EE9E64217D56}] = & gt; (Allow) C:\Users\User\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. - & gt; Zoom Video Communications, Inc.)
FirewallRules: [{C10E2314-CD3D-4A53-BD1D-EE4B864592A1}] = & gt; (Allow) C:\Users\User\AppData\Roaming\Zoom\bin\airhost.exe = & gt; Brak pliku
FirewallRules: [TCP Query User{CF6F0178-9D51-425C-820F-41BF5885A0BE}C:\sqlbase116\dbntsrv.exe] = & gt; (Allow) C:\sqlbase116\dbntsrv.exe (Gupta Technologies, LLC) [Brak podpisu cyfrowego] [Plik w użyciu]
FirewallRules: [UDP Query User{F80386AF-D837-4BB3-946D-416DCDB556AA}C:\sqlbase116\dbntsrv.exe] = & gt; (Allow) C:\sqlbase116\dbntsrv.exe (Gupta Technologies, LLC) [Brak podpisu cyfrowego] [Plik w użyciu]
FirewallRules: [TCP Query User{5F9B2A13-919B-4E04-960A-944106488175}C:\windows.old\users\user\appdata\roaming\bittorrent\bittorrent.exe] = & gt; (Allow) C:\windows.old\users\user\appdata\roaming\bittorrent\bittorrent.exe = & gt; Brak pliku
FirewallRules: [UDP Query User{CE7AC8E8-CBA3-4D16-B016-C3A885C130D1}C:\windows.old\users\user\appdata\roaming\bittorrent\bittorrent.exe] = & gt; (Allow) C:\windows.old\users\user\appdata\roaming\bittorrent\bittorrent.exe = & gt; Brak pliku
FirewallRules: [{1D8F284A-E492-458A-9C70-15A0C859E189}] = & gt; (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation - & gt; Microsoft Corporation)
FirewallRules: [{E30A53E8-218D-42CB-A32C-C5E70BA47231}] = & gt; (Allow) C:\Users\User\AppData\Roaming\BitTorrent\BitTorrent.exe (BitTorrent Inc - & gt; BitTorrent Inc.)
FirewallRules: [{92D6F6FC-0E49-4057-82C0-73663A2B65CB}] = & gt; (Allow) C:\Users\User\AppData\Roaming\BitTorrent\BitTorrent.exe (BitTorrent Inc - & gt; BitTorrent Inc.)
FirewallRules: [{32D96844-0C46-4505-92E3-24D2B3F0FE08}] = & gt; (Allow) C:\Users\User\AppData\Local\Temp\7zS51A0\HPDiagnosticCoreUI.exe = & gt; Brak pliku
FirewallRules: [{B51B0493-F336-4776-A688-08822001A585}] = & gt; (Allow) C:\Users\User\AppData\Local\Temp\7zS51A0\HPDiagnosticCoreUI.exe = & gt; Brak pliku
FirewallRules: [{D0CD89DB-1B4A-439F-8A03-5C75E52C9680}] = & gt; (Allow) C:\Users\User\AppData\Local\Temp\7zS5AFA\HPDiagnosticCoreUI.exe = & gt; Brak pliku
FirewallRules: [{31684C0D-977B-4223-8102-0A110997974F}] = & gt; (Allow) C:\Users\User\AppData\Local\Temp\7zS5AFA\HPDiagnosticCoreUI.exe = & gt; Brak pliku
FirewallRules: [TCP Query User{725B3869-B19C-4D35-9307-4E86ABBD2BD1}C:\users\user\appdata\local\temp\7zs7fd1\enterprisedu.exe] = & gt; (Allow) C:\users\user\appdata\local\temp\7zs7fd1\enterprisedu.exe = & gt; Brak pliku
FirewallRules: [UDP Query User{9B9975A8-B5E3-41FF-BC3E-A06FA9F97CC3}C:\users\user\appdata\local\temp\7zs7fd1\enterprisedu.exe] = & gt; (Allow) C:\users\user\appdata\local\temp\7zs7fd1\enterprisedu.exe = & gt; Brak pliku
FirewallRules: [{196634FE-7169-4907-9146-6B9C254C5D76}] = & gt; (Allow) C:\Program Files\HP\HP ENVY 5000 series\Bin\DeviceSetup.exe (HP Inc - & gt; HP Inc.)
FirewallRules: [{72D10589-D69A-45A6-8DDD-607BF908EBF5}] = & gt; (Allow) C:\Program Files\HP\HP ENVY 5000 series\Bin\HPNetworkCommunicatorCom.exe (HP Inc - & gt; HP Inc.)
FirewallRules: [{70B055D3-0F69-4C80-9355-9D1E57A200F0}] = & gt; (Allow) C:\Users\User\AppData\Local\Temp\7zS6827\HP.EasyStart.exe = & gt; Brak pliku
FirewallRules: [TCP Query User{6DA79524-6F25-4647-B0D0-8E71B740C115}C:\users\user\appdata\local\temp\7zs0eee\enterprisedu.exe] = & gt; (Allow) C:\users\user\appdata\local\temp\7zs0eee\enterprisedu.exe = & gt; Brak pliku
FirewallRules: [UDP Query User{5444EDB9-A706-4B6B-8095-CD9AF32C8675}C:\users\user\appdata\local\temp\7zs0eee\enterprisedu.exe] = & gt; (Allow) C:\users\user\appdata\local\temp\7zs0eee\enterprisedu.exe = & gt; Brak pliku
FirewallRules: [{F5011D13-C5D4-48B3-B915-E6EE8295259B}] = & gt; (Allow) C:\Users\User\AppData\Local\Temp\7zS6EA5\HPDiagnosticCoreUI.exe = & gt; Brak pliku
FirewallRules: [{AEC83BAF-7BF3-4ABB-846C-62F24BA3BBE2}] = & gt; (Allow) C:\Users\User\AppData\Local\Temp\7zS6EA5\HPDiagnosticCoreUI.exe = & gt; Brak pliku
FirewallRules: [{A3F7E717-F1C7-4C72-9751-FA850CB8B002}] = & gt; (Allow) C:\Users\User\AppData\Local\Temp\7zS70BD\HPDiagnosticCoreUI.exe = & gt; Brak pliku
FirewallRules: [{235A1D16-3437-418C-96A6-0A7A357D01F4}] = & gt; (Allow) C:\Users\User\AppData\Local\Temp\7zS70BD\HPDiagnosticCoreUI.exe = & gt; Brak pliku
FirewallRules: [TCP Query User{0742FC92-3678-4D25-A4D4-AE1B007C8AE3}F:\games\star wars - battlefront 2\starwarsbattlefrontii.exe] = & gt; (Allow) F:\games\star wars - battlefront 2\starwarsbattlefrontii.exe (Electronic Arts Inc.) [Brak podpisu cyfrowego] [Plik w użyciu]
FirewallRules: [UDP Query User{15A38CE0-4C17-4F7E-B8E0-0A7DA0CA9EB9}F:\games\star wars - battlefront 2\starwarsbattlefrontii.exe] = & gt; (Allow) F:\games\star wars - battlefront 2\starwarsbattlefrontii.exe (Electronic Arts Inc.) [Brak podpisu cyfrowego] [Plik w użyciu]
FirewallRules: [{DAD9152C-BBDF-4EA7-BACA-A5C3C552B131}] = & gt; (Allow) C:\Users\User\AppData\Local\Temp\7zS4423\HPDiagnosticCoreUI.exe = & gt; Brak pliku
FirewallRules: [{ADC73A85-40B7-424A-93CF-E6C5E9F65845}] = & gt; (Allow) C:\Users\User\AppData\Local\Temp\7zS4423\HPDiagnosticCoreUI.exe = & gt; Brak pliku
FirewallRules: [TCP Query User{180F1610-3771-42A9-B13D-B2AF549710A6}C:\users\user\appdata\local\plarium\plariumplay\standaloneapps\raid\216\raid.exe] = & gt; (Allow) C:\users\user\appdata\local\plarium\plariumplay\standaloneapps\raid\216\raid.exe (Plarium Global Ltd. - & gt; Plarium Global Ltd.)
FirewallRules: [UDP Query User{9DC97FA8-809C-4156-ACA8-59867F24655A}C:\users\user\appdata\local\plarium\plariumplay\standaloneapps\raid\216\raid.exe] = & gt; (Allow) C:\users\user\appdata\local\plarium\plariumplay\standaloneapps\raid\216\raid.exe (Plarium Global Ltd. - & gt; Plarium Global Ltd.)
FirewallRules: [TCP Query User{FF82A4C6-850D-4CC0-99D3-EEF55631BEBA}C:\users\user\appdata\local\microsoft\teams\current\teams.exe] = & gt; (Allow) C:\users\user\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation - & gt; Microsoft Corporation)
FirewallRules: [UDP Query User{03876DE2-BAE1-47D3-BB5C-C08307FECAE7}C:\users\user\appdata\local\microsoft\teams\current\teams.exe] = & gt; (Allow) C:\users\user\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation - & gt; Microsoft Corporation)
FirewallRules: [{0A20CC35-90E4-4D57-96AC-CD14712D8E76}] = & gt; (Allow) C:\Program Files\BitTube Browser\BitTubeBrowser.exe = & gt; Brak pliku
FirewallRules: [TCP Query User{B122C18E-F267-4220-857F-7C64EE4C227A}C:\users\user\appdata\local\gamerhash\miners\gminer_v2\miner.gh] = & gt; (Allow) C:\users\user\appdata\local\gamerhash\miners\gminer_v2\miner.gh = & gt; Brak pliku
FirewallRules: [UDP Query User{8D72DB28-8026-468C-B136-722F81D2100E}C:\users\user\appdata\local\gamerhash\miners\gminer_v2\miner.gh] = & gt; (Allow) C:\users\user\appdata\local\gamerhash\miners\gminer_v2\miner.gh = & gt; Brak pliku
FirewallRules: [{5F211BE4-7F0D-4EAA-A056-F7E96BA4C973}] = & gt; (Allow) C:\Users\User\AppData\Local\Temp\7zS0E64\HPDiagnosticCoreUI.exe = & gt; Brak pliku
FirewallRules: [{18456691-A07D-4A44-8C7D-01A880590C11}] = & gt; (Allow) C:\Users\User\AppData\Local\Temp\7zS0E64\HPDiagnosticCoreUI.exe = & gt; Brak pliku
FirewallRules: [{987175CF-E676-40F5-BF70-C96762ABC349}] = & gt; (Allow) C:\Users\User\AppData\Local\Temp\7zS3D4F\HPDiagnosticCoreUI.exe = & gt; Brak pliku
FirewallRules: [{6AA65BE5-FF3E-4515-988E-49FAB7B1CA60}] = & gt; (Allow) C:\Users\User\AppData\Local\Temp\7zS3D4F\HPDiagnosticCoreUI.exe = & gt; Brak pliku
FirewallRules: [{C5B27EAB-5A48-4D26-9311-5CDF42E202D1}] = & gt; (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC - & gt; Google LLC)
==================== Punkty Przywracania systemu =========================
25-06-2020 21:20:09 Removed Honeygain
==================== Wadliwe urządzenia w Menedżerze urządzeń ============
==================== Błędy w Dzienniku zdarzeń: ========================
Dziennik Aplikacja:
==================
Error: (06/29/2020 03:30:41 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (2324,R,98) TILEREPOSITORYS-1-5-18: Wystąpił błąd -1023 (0xfffffc01) podczas otwierania pliku dziennika C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (06/29/2020 03:19:47 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (7492,R,98) TILEREPOSITORYS-1-5-18: Wystąpił błąd -1023 (0xfffffc01) podczas otwierania pliku dziennika C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (06/29/2020 02:37:23 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (12120,R,98) TILEREPOSITORYS-1-5-18: Wystąpił błąd -1023 (0xfffffc01) podczas otwierania pliku dziennika C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (06/29/2020 02:31:20 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program FRST64 (1).exe w wersji 28.6.2020.0 przestał współpracować z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemów w oknie Zabezpieczenia i konserwacja w Panelu sterowania.
Identyfikator procesu: 3504
Godzina rozpoczęcia: 01d64dabd48be487
Godzina zakończenia: 4294967295
Ścieżka aplikacji: C:\Users\User\Downloads\FRST64 (1).exe
Identyfikator raportu: b0580ff6-98a7-4c19-95a3-3aba9d8b6cc5
Pełna nazwa pakietu powodującego błąd:
Identyfikator aplikacji powiązanej z pakietem powodującym błąd:
Typ zawieszenia: Top level window is idle
Error: (06/29/2020 02:30:40 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (10048,R,98) TILEREPOSITORYS-1-5-18: Wystąpił błąd -1023 (0xfffffc01) podczas otwierania pliku dziennika C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (06/29/2020 12:49:17 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (6568,R,98) TILEREPOSITORYS-1-5-18: Wystąpił błąd -1023 (0xfffffc01) podczas otwierania pliku dziennika C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (06/28/2020 11:51:34 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (6176,R,98) TILEREPOSITORYS-1-5-18: Wystąpił błąd -1023 (0xfffffc01) podczas otwierania pliku dziennika C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (06/28/2020 11:44:05 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Nie można wygenerować kontekstu aktywacji dla " C:\Users\User\AppData\Local\chromium\Application\chrome.exe " .
Nie można odnaleźć zestawu zależnego 63.0.3235.0,language= " & #x2a; " ,type= " win32 " ,version= " 63.0.3235.0 " .
Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę.
Dziennik System:
=============
Error: (06/28/2020 11:43:08 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-S4TKNTA)
Description: Serwer {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} nie zarejestrował się w modelu DCOM w wymaganym czasie.
Error: (06/28/2020 11:43:08 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-S4TKNTA)
Description: Serwer {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} nie zarejestrował się w modelu DCOM w wymaganym czasie.
Error: (06/28/2020 11:43:07 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-S4TKNTA)
Description: Serwer {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} nie zarejestrował się w modelu DCOM w wymaganym czasie.
Error: (06/28/2020 11:43:07 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-S4TKNTA)
Description: Serwer {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} nie zarejestrował się w modelu DCOM w wymaganym czasie.
Error: (06/28/2020 11:43:07 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-S4TKNTA)
Description: Serwer {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} nie zarejestrował się w modelu DCOM w wymaganym czasie.
Error: (06/28/2020 11:43:07 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-S4TKNTA)
Description: Serwer {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} nie zarejestrował się w modelu DCOM w wymaganym czasie.
Error: (06/28/2020 11:43:07 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-S4TKNTA)
Description: Serwer {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} nie zarejestrował się w modelu DCOM w wymaganym czasie.
Error: (06/28/2020 11:43:07 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-S4TKNTA)
Description: Serwer {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} nie zarejestrował się w modelu DCOM w wymaganym czasie.
Windows Defender:
===================================
Date: 2020-06-17 06:47:38.058
Description:
Produkt Program antywirusowy Windows Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie.
Aby uzyskać więcej informacji, zobacz:
https://go.microsoft.com/fwlink/?linkid=37020 & name=Program:Win32/Vigram.A & threatid=232718 & enterprise=0
Nazwa: Program:Win32/Vigram.A
Identyfikator: 232718
Ważność: Poważny
Kategoria: Potencjalnie niechciane oprogramowanie
Ścieżka: containerfile:_C:\Users\User\Downloads\nanominer-windows-1.9.5.zip; file:_C:\Users\User\Downloads\nanominer-windows-1.9.5.zip- & gt; nanominer-windows-1.9.5/nanominer.exe; webfile:_C:\Users\User\Downloads\nanominer-windows-1.9.5.zip|https://github-production-release-asset-2e65be.s3.amazonaws.com/162998433/29d8f200-a4de-11ea-9c6a-46b85bdaaa35?X-Amz-Algorithm=AWS4-HMAC-SHA256 & X-Amz-Credential=AKIAIWNJYAX4CSVEH53A4.18.2005.5F202006174.18.2005.5Fus-east-14.18.2005.5Fs34.18.2005.5Faws4_request & X-Amz-Date=20200617T044734Z & X-Amz-Expires=300 & X-Amz-Signature=3913ee096ce622bd64bc2ed7eaa2f67c4a984ee8031ced3e1bd169a075a8514a & X-Amz-SignedHeaders=host & actor_id=0 & repo_id=162998433 & response-content-disposition=attachment{064574D0-4EB2-4A18-93AA-A02FA8D655D0}BDESKTOP-S4TKNTA\Userfilename{064574D0-4EB2-4A18-93AA-A02FA8D655D0}Dnanominer-windows-1.9.5.zip & response-content-type=application4.18.2005.5Foctet-stream|pid:7764,ProcessStart:132368187471224509
Pochodzenie wykrycia: Internet
Typ wykrycia: FastPath
Źródło wykrycia: Pobrania i załączniki
Użytkownik: DESKTOP-S4TKNTA\User
Nazwa procesu: Unknown
Wersja analizy zabezpieczeń: AV: 1.317.1512.0, AS: 1.317.1512.0, NIS: 1.317.1512.0
Wersja aparatu: AM: 1.1.17100.2, NIS: 1.1.17100.2
==================== Statystyki pamięci ===========================
BIOS: American Megatrends Inc. 0605 05/09/2013
Płyta główna: ASUSTeK COMPUTER INC. P8H61-M LX2
Procesor: Intel(R) Core(TM) i7-3770 CPU @ 3.40GHz
Procent pamięci w użyciu: 75%
Całkowita pamięć fizyczna: 16366.28 MB
Dostępna pamięć fizyczna: 4073.09 MB
Całkowita pamięć wirtualna: 18798.28 MB
Dostępna pamięć wirtualna: 9483.91 MB
==================== Dyski ================================
Drive c: () (Fixed) (Total:222.51 GB) (Free:68.86 GB) NTFS
Drive f: (Nowy) (Fixed) (Total:465.76 GB) (Free:39.57 GB) NTFS
Drive h: (Nowy) (Fixed) (Total:465.76 GB) (Free:133.05 GB) NTFS
\\?\Volume{eb89e010-0000-0000-0000-100000000000}\ (Zastrzeżone przez system) (Fixed) (Total:0.54 GB) (Free:0.5 GB) NTFS
\\?\Volume{eb89e010-0000-0000-0000-30c337000000}\ () (Fixed) (Total:0.52 GB) (Free:0.08 GB) NTFS
==================== MBR & Tablica partycji ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: EB89E010)
Partition 1: (Active) - (Size=549 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=222.5 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=531 MB) - (Type=27)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 12832320)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)
==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 12832324)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)
==================== Koniec Addition.txt =======================