Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 22-04-2022
- Uruchomiony przez Lantash (04-05-2022 19:38:56)
- Uruchomiony z C:\Users\Lantash\Desktop\UTILS
- Microsoft Windows 10 Pro Wersja 21H2 19044.1645 (X64) (2022-04-30 19:27:20)
- Tryb startu: Normal
- ==========================================================
- ==================== Konta użytkowników: =============================
- (Załączenie wejścia w fixlist spowoduje jego usunięcie.)
- Administrator (S-1-5-21-3606707319-850606819-2725234006-500 - Administrator - Disabled)
- Gość (S-1-5-21-3606707319-850606819-2725234006-501 - Limited - Disabled)
- Konto domyślne (S-1-5-21-3606707319-850606819-2725234006-503 - Limited - Disabled)
- Lantash (S-1-5-21-3606707319-850606819-2725234006-1001 - Administrator - Enabled) => C:\Users\Lantash
- WDAGUtilityAccount (S-1-5-21-3606707319-850606819-2725234006-504 - Limited - Disabled)
- ==================== Centrum zabezpieczeń ========================
- (Załączenie wejścia w fixlist spowoduje jego usunięcie.)
- AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
- AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
- ==================== Zainstalowane programy ======================
- (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.)
- AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 21.5.2 - Advanced Micro Devices, Inc.)
- Branding64 (HKLM\...\{C871FC62-0186-40ED-BAEA-7C65BE367755}) (Version: 1.00.0006 - Advanced Micro Devices, Inc.) Hidden
- Brave (HKLM-x32\...\BraveSoftware Brave-Browser) (Version: 101.1.38.111 - Autorzy Brave)
- KeyDominator2 (HKLM-x32\...\BloodyKeyboard) (Version: 21.01.0002 - Bloody)
- Malwarebytes version 4.5.8.191 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.8.191 - Malwarebytes)
- Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 101.0.1210.32 - Microsoft Corporation)
- Microsoft Office Professional Plus 2019 - pl-pl (HKLM\...\ProPlus2019Retail - pl-pl) (Version: 16.0.14026.20302 - Microsoft Corporation)
- Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 22.077.0410.0007 - Microsoft Corporation)
- Microsoft Update Health Tools (HKLM\...\{7B1FCD52-8F6B-4F12-A143-361EA39F5E7C}) (Version: 3.67.0.0 - Microsoft Corporation)
- Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
- Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
- Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
- Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
- Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
- Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
- Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
- Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
- Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.27.29016 (HKLM-x32\...\{40d3fee2-b257-46c2-bdc0-cb1088d97327}) (Version: 14.27.29016.0 - Microsoft Corporation)
- Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.27.29016 (HKLM-x32\...\{1aaa01ad-3069-4288-9c6f-37a140a8f6c7}) (Version: 14.27.29016.0 - Microsoft Corporation)
- Mozilla Firefox (x64 pl) (HKLM\...\Mozilla Firefox 99.0.1 (x64 pl)) (Version: 99.0.1 - Mozilla)
- Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 99.0.1 - Mozilla)
- MPC-HC 1.9.18 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.9.18 - MPC-HC Team)
- MSI Afterburner 4.6.4 (HKLM-x32\...\Afterburner) (Version: 4.6.4 - MSI Co., LTD)
- MultiPack Visual C++ Installer V2.7 (HKLM-x32\...\{93E81C5A-55A6-4686-AA8E-532F506EA91A}_is1) (Version: 2.7 - BobSpwg)
- Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.14026.20302 - Microsoft Corporation) Hidden
- Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.14026.20302 - Microsoft Corporation) Hidden
- Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.14026.20302 - Microsoft Corporation) Hidden
- Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0415-0000-0000000FF1CE}) (Version: 16.0.14026.20302 - Microsoft Corporation) Hidden
- Pakiet sterowników systemu Windows - Broadcom Corporation (bcbtums) Bluetooth (07/14/2015 12.0.1.658) (HKLM\...\BABE4E18F2E0DA329C1139E5584082BBE6F64E5F) (Version: 07/14/2015 12.0.1.658 - Broadcom Corporation)
- Planet Nomads (HKLM-x32\...\1403945378_is1) (Version: 1.0.7.2 - GOG.com)
- RESEARCH and DESTROY (HKLM-x32\...\RESEARCH and DESTROY_is1) (Version: - )
- Revo Uninstaller Pro 4.4.5 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 4.4.5 - VS Revo Group, Ltd.)
- Sprawdzanie kondycji komputera z systemem Windows (HKLM\...\{41E85393-7ED3-4C54-AC25-51F8CDF39CDF}) (Version: 3.6.2204.08001 - Microsoft Corporation)
- WinRAR 6.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.00.0 - win.rar GmbH)
- Packages:
- =========
- Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.12.3171.0_x64__8wekyb3d8bbwe [2022-05-04] (Microsoft Studios) [MS Ad]
- Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.184.716.0_x86__zpdnekdrzrea0 [2022-04-30] (Spotify AB) [Startup Task]
- ==================== Niestandardowe rejestracje CLSID (filtrowane): ==============
- (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
- CustomCLSID: HKU\S-1-5-21-3606707319-850606819-2725234006-1001_Classes\CLSID\{04271989-C4D2-8209-6546-5F54EFE4EB78} -> [OneDrive] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
- ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\22.077.0410.0007\FileSyncShell64.dll [2022-05-02] (Microsoft Corporation -> Microsoft Corporation)
- ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\22.077.0410.0007\FileSyncShell64.dll [2022-05-02] (Microsoft Corporation -> Microsoft Corporation)
- ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\22.077.0410.0007\FileSyncShell64.dll [2022-05-02] (Microsoft Corporation -> Microsoft Corporation)
- ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\22.077.0410.0007\FileSyncShell64.dll [2022-05-02] (Microsoft Corporation -> Microsoft Corporation)
- ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\22.077.0410.0007\FileSyncShell64.dll [2022-05-02] (Microsoft Corporation -> Microsoft Corporation)
- ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\22.077.0410.0007\FileSyncShell64.dll [2022-05-02] (Microsoft Corporation -> Microsoft Corporation)
- ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\22.077.0410.0007\FileSyncShell64.dll [2022-05-02] (Microsoft Corporation -> Microsoft Corporation)
- ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\22.077.0410.0007\FileSyncShell64.dll [2022-05-02] (Microsoft Corporation -> Microsoft Corporation)
- ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\22.077.0410.0007\FileSyncShell64.dll [2022-05-02] (Microsoft Corporation -> Microsoft Corporation)
- ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\22.077.0410.0007\FileSyncShell64.dll [2022-05-02] (Microsoft Corporation -> Microsoft Corporation)
- ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\22.077.0410.0007\FileSyncShell64.dll [2022-05-02] (Microsoft Corporation -> Microsoft Corporation)
- ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\22.077.0410.0007\FileSyncShell64.dll [2022-05-02] (Microsoft Corporation -> Microsoft Corporation)
- ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\22.077.0410.0007\FileSyncShell64.dll [2022-05-02] (Microsoft Corporation -> Microsoft Corporation)
- ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\22.077.0410.0007\FileSyncShell64.dll [2022-05-02] (Microsoft Corporation -> Microsoft Corporation)
- ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.077.0410.0007\FileSyncShell64.dll [2022-05-02] (Microsoft Corporation -> Microsoft Corporation)
- ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
- ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
- ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-04-30] (Malwarebytes Corporation -> Malwarebytes)
- ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.077.0410.0007\FileSyncShell64.dll [2022-05-02] (Microsoft Corporation -> Microsoft Corporation)
- ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.077.0410.0007\FileSyncShell64.dll [2022-05-02] (Microsoft Corporation -> Microsoft Corporation)
- ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Windows\System32\atiacm64.dll [2021-06-17] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
- ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-04-30] (Malwarebytes Corporation -> Malwarebytes)
- ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2020-09-28] (VS Revo Group Ltd. -> VS Revo Group)
- ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
- ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
- ==================== Codecs (filtrowane) ====================
- ==================== Skróty & WMI ========================
- ==================== Załadowane moduły (filtrowane) =============
- 2022-04-30 21:41 - 2014-01-10 11:48 - 004260352 ____N () [Brak podpisu cyfrowego] C:\Program Files (x86)\KeyDominator2\KeyDominator2\Data\Keyboard\Forms\Internet_Advertisement\Internet_Advertisement_DLL.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 000017920 _____ () [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\libEGL.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 003567616 _____ () [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 000057856 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\plugins\audio\qtaudio_windows.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 000031744 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qgif.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 000039424 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qicns.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 000031744 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qico.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 000414720 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qjpeg.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 000025088 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qsvg.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 000024576 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qtga.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 000023552 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwbmp.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 000532992 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwebp.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 001441792 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\plugins\platforms\qwindows.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 001189888 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\plugins\sqldrivers\qsqlite.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 000134656 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\plugins\styles\qwindowsvistastyle.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 006184448 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 006867456 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 000735232 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5Multimedia.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 000120832 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5MultimediaQuick.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 001104896 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 000325120 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 003668480 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 000517120 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5QmlModels.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 000051712 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5QmlWorkerScript.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 004228608 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 000171008 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5QuickControls2.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 001085440 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5QuickTemplates2.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 000480256 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5RemoteObjects.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 000205824 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5Sql.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 000329728 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 000127488 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 000390656 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 095598080 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 005587968 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 000462848 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 000188928 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 002878464 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 000055808 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 000059392 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 000262144 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\QtMultimedia\declarative_multimedia.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 000017920 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\QtQml\qmlplugin.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 000017920 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 000284160 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls.2\qtquickcontrols2plugin.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 000333824 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 000136704 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 000090112 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 000313856 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\QtQuick\Templates.2\qtquicktemplates2plugin.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 000017920 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
- 2021-03-09 19:48 - 2021-03-09 19:48 - 000091648 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\QtWebEngine\qtwebengineplugin.dll
- ==================== Alternate Data Streams (filtrowane) ========
- ==================== Tryb awaryjny (filtrowane) ==================
- (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.)
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
- HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
- ==================== Powiązania plików (filtrowane) =================
- ==================== Internet Explorer (filtrowane) ==========
- BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2022-04-30] (Microsoft Corporation -> Microsoft Corporation)
- BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2022-04-30] (Microsoft Corporation -> Microsoft Corporation)
- Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-04-30] (Microsoft Corporation -> Microsoft Corporation)
- Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-04-30] (Microsoft Corporation -> Microsoft Corporation)
- Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-04-30] (Microsoft Corporation -> Microsoft Corporation)
- Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-04-30] (Microsoft Corporation -> Microsoft Corporation)
- ==================== Hosts - zawartość: =========================
- (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.)
- 2019-12-07 11:14 - 2019-12-07 11:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
- ==================== Inne obszary ===========================
- (Obecnie brak automatycznej naprawy dla tej sekcji.)
- HKU\S-1-5-21-3606707319-850606819-2725234006-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Lantash\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\peakpx.jpg
- DNS Servers: 192.168.1.1
- HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
- HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
- Zapora systemu Windows [funkcja włączona]
- ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy ==
- ==================== Reguły Zapory systemu Windows (filtrowane) ================
- (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
- FirewallRules: [{95392B9C-247A-4377-B508-9B0DC87BE3A7}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
- FirewallRules: [{C04D725F-87F5-43B8-9EBE-134DB764610A}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
- FirewallRules: [{6A6608B8-A88A-4889-94D9-72EEFB4584D2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.184.716.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
- FirewallRules: [{42C7FE8C-9E6C-4972-84DB-B5347E9F6494}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.184.716.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
- FirewallRules: [{2CC3D430-A3AA-4FB1-B481-7DC08542056B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.184.716.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
- FirewallRules: [{3CDF1714-1950-4925-A1A9-F5D71087D249}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.184.716.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
- FirewallRules: [{F857DCA2-A8BB-41EE-A4CF-4A27365F4229}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.184.716.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
- FirewallRules: [{D37054CF-A4E0-4D7C-8593-7446664436F4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.184.716.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
- FirewallRules: [{5B8F81BD-5735-45A2-960A-BFF711018C81}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.184.716.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
- FirewallRules: [{44F3F0D4-E535-4187-9AD1-C2F06A3FE60D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.184.716.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
- FirewallRules: [{6FB9DD71-91AC-4CEF-ACEA-9472B6D93C07}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
- FirewallRules: [{36F92C21-332E-489E-9C13-9801459D8AE8}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
- FirewallRules: [{1EB026D1-95A4-49EF-A24A-7424C02D6FBD}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
- FirewallRules: [{CFD0215E-AE5C-4A77-94E1-7263FF1C8F81}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
- FirewallRules: [{B6964CD2-F00D-4DBE-B80E-320DCC6D7113}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
- FirewallRules: [{7337302F-EF9A-4964-AC07-4B634C5CB114}] => (Allow) C:\Windows\KMS-R@1n.exe => Brak pliku
- FirewallRules: [{8783DC4C-4511-4DD6-9F11-FF54176027D2}] => (Allow) C:\Windows\KMS-R@1n.exe => Brak pliku
- FirewallRules: [{9B2714A3-6D9A-46C8-ADC1-84EDBBFCA776}] => (Allow) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)
- FirewallRules: [{FE7232D3-9D1D-4DFD-AF1A-B84119D599D3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.83.408.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
- FirewallRules: [{88673D36-75E3-496C-8036-1608D42311F6}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.83.408.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
- FirewallRules: [{24CCBF71-ABCE-4B61-B275-4637B1A8C875}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.83.408.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
- FirewallRules: [{75F1A020-0394-4816-87AB-21818BD83E4A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.83.408.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
- ==================== Punkty Przywracania systemu =========================
- UWAGA: Przywracanie systemu jest wyłączone (Total:222.98 GB) (Free:181.53 GB) (81%)
- ==================== Wadliwe urządzenia w Menedżerze urządzeń ============
- Name: Kontroler PCI gromadzenia danych i przetwarzania sygnałów
- Description: Kontroler PCI gromadzenia danych i przetwarzania sygnałów
- Class Guid:
- Manufacturer:
- Service:
- Problem: : The drivers for this device are not installed. (Code 28)
- Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
- Name: Kontroler pamięci PCI
- Description: Kontroler pamięci PCI
- Class Guid:
- Manufacturer:
- Service:
- Problem: : The drivers for this device are not installed. (Code 28)
- Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
- Name: Kontroler magistrali zarządzania systemem
- Description: Kontroler magistrali zarządzania systemem
- Class Guid:
- Manufacturer:
- Service:
- Problem: : The drivers for this device are not installed. (Code 28)
- Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
- ==================== Błędy w Dzienniku zdarzeń: ========================
- Dziennik Aplikacja:
- ==================
- Error: (04/30/2022 11:23:35 PM) (Source: Windows Search Service) (EventID: 3007) (User: )
- Description: Nie można zainicjować monitorowania wydajności dla obiektu programu zbierającego, ponieważ liczniki nie są załadowane lub nie można otworzyć obiektu pamięci współużytkowanej. Wpływa to tylko na dostępność liczników monitora wydajności. Uruchom ponownie komputer.
- Kontekst: aplikacja , wykaz SystemIndex
- Error: (04/30/2022 11:23:13 PM) (Source: SideBySide) (EventID: 35) (User: )
- Description: Nie można wygenerować kontekstu aktywacji dla "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Błąd w pliku manifestu lub w pliku zasad "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" w wierszu 1.
- Tożsamość składnika znaleziona w manifeście nie odpowiada tożsamości składnika żądanego.
- Odwołanie to UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
- Definicja to UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
- Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę.
- Error: (04/30/2022 09:29:19 PM) (Source: SecurityCenter) (EventID: 16) (User: )
- Description: Błąd podczas aktualizowania stanu Windows Defender na wartość SECURITY_PRODUCT_STATE_ON.
- Error: (04/30/2022 09:27:13 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: )
- Description: Zainicjowanie bazy danych wykazu przez Usługi kryptograficzne nie powiodło się. Błąd ESENT: -1409.
- Dziennik System:
- =============
- Error: (05/04/2022 04:34:39 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-A503KPR)
- Description: Serwer {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} nie zarejestrował się w modelu DCOM w wymaganym czasie.
- Error: (05/04/2022 04:34:39 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-A503KPR)
- Description: Serwer {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} nie zarejestrował się w modelu DCOM w wymaganym czasie.
- Error: (05/04/2022 04:34:39 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-A503KPR)
- Description: Serwer {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} nie zarejestrował się w modelu DCOM w wymaganym czasie.
- Error: (05/03/2022 07:46:53 PM) (Source: EventLog) (EventID: 6008) (User: )
- Description: Poprzednie zamknięcie systemu przy 14:59:19 na 03.05.2022 było nieoczekiwane.
- Error: (05/01/2022 05:59:10 PM) (Source: EventLog) (EventID: 6008) (User: )
- Description: Poprzednie zamknięcie systemu przy 16:25:47 na 01.05.2022 było nieoczekiwane.
- Error: (04/30/2022 09:29:16 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
- Description: Usługa Rozszerzenia i powiadomienia drukarek jest oznaczona jako usługa interakcyjna. System jest jednak skonfigurowany tak, aby nie zezwalać na usługi interakcyjne, dlatego ta usługa może nie działać właściwie.
- Error: (04/30/2022 09:26:44 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
- Description: Usługa Broker połączeń sieciowych zakończyła działanie; wystąpił następujący błąd:
- Urządzenie dołączone do komputera nie działa.
- Error: (04/30/2022 09:26:44 PM) (Source: DCOM) (EventID: 10010) (User: ZARZĄDZANIE NT)
- Description: Serwer {A47979D2-C419-11D9-A5B4-001185AD2B89} nie zarejestrował się w modelu DCOM w wymaganym czasie.
- Windows Defender:
- ================
- Date: 2022-05-02 10:47:08
- Description:
- Skanowanie produktu Program antywirusowy Microsoft Defender zostało zatrzymane przed ukończeniem.
- Identyfikator skanowania: {23924918-E34C-4D9A-84DC-C16B4A4A9E34}
- Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem
- Parametry skanowania: Szybkie skanowanie
- Użytkownik: ZARZĄDZANIE NT\SYSTEM
- Date: 2022-04-30 21:34:30
- Description:
- Produkt Program antywirusowy Microsoft Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie.
- Aby uzyskać więcej informacji, zobacz:
- https://go.microsoft.com/fwlink/?linkid=37020&name=VirTool:Win32/DefenderTamperingRestore&threatid=2147741622&enterprise=0
- Nazwa: VirTool:Win32/DefenderTamperingRestore
- Identyfikator: 2147741622
- Ważność: Poważny
- Kategoria: Narzędzie
- Ścieżka: regkeyvalue:_hklm\software\microsoft\windows defender\real-time protection\\DisableIOAVProtection
- Pochodzenie wykrycia: Nieznane
- Typ wykrycia: Konkretne
- Źródło wykrycia: System
- Użytkownik: ZARZĄDZANIE NT\SYSTEM
- Nazwa procesu: Unknown
- Wersja analizy zabezpieczeń: AV: 1.303.25.0, AS: 1.303.25.0, NIS: 0.0.0.0
- Wersja aparatu: AM: 1.1.16400.2, NIS: 0.0.0.0
-
- CodeIntegrity:
- ===============
- Date: 2022-04-30 23:41:10
- Description:
- Windows blocked file \Device\HarddiskVolume8\Windows\System32\scrobj.dll which has been disallowed for protected processes.
- ==================== Statystyki pamięci ===========================
- BIOS: American Megatrends Inc. P7.10 07/18/2017
- Płyta główna: ASRock H110M-DVS R3.0
- Procesor: Intel(R) Pentium(R) CPU G4600 @ 3.60GHz
- Procent pamięci w użyciu: 39%
- Całkowita pamięć fizyczna: 16339.38 MB
- Dostępna pamięć fizyczna: 9941.6 MB
- Całkowita pamięć wirtualna: 19283.38 MB
- Dostępna pamięć wirtualna: 11567.95 MB
- ==================== Dyski ================================
- Drive c: (Win10) (Fixed) (Total:222.98 GB) (Free:181.53 GB) NTFS
- Drive d: (Nowy) (Fixed) (Total:976.56 GB) (Free:938.92 GB) NTFS
- Drive e: (Nowy) (Fixed) (Total:232.87 GB) (Free:198.38 GB) NTFS
- Drive h: (Nowy) (Fixed) (Total:488.28 GB) (Free:486.53 GB) NTFS
- Drive i: (Nowy) (Fixed) (Total:398.17 GB) (Free:21.5 GB) NTFS
- Drive k: (Nowy) (Fixed) (Total:111.29 GB) (Free:11.47 GB) NTFS
- \\?\Volume{fa7fe1c7-d35b-4601-be81-3b1ac8c12374}\ () (Fixed) (Total:0.48 GB) (Free:0.08 GB) NTFS
- \\?\Volume{7df85ac8-0000-0000-0000-a0d21b000000}\ () (Fixed) (Total:0.5 GB) (Free:0.08 GB) NTFS
- \\?\Volume{96bbdf48-16f1-4e8f-944c-ab5a1c375464}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
- ==================== MBR & Tablica partycji ====================
- ==========================================================
- Disk: 0 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: BA7F6609)
- Partition 1: (Not Active) - (Size=976.6 GB) - (Type=07 NTFS)
- Partition 2: (Not Active) - (Size=488.3 GB) - (Type=07 NTFS)
- Partition 3: (Not Active) - (Size=398.2 GB) - (Type=07 NTFS)
- ==========================================================
- Disk: 1 (Protective MBR) (Size: 232.9 GB) (Disk ID: 00000000)
- Partition: GPT.
- ==========================================================
- Disk: 2 (Size: 223.6 GB) (Disk ID: 261EBB64)
- Partition: GPT.
- ==========================================================
- Disk: 3 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: 7DF85AC8)
- Partition 1: (Not Active) - (Size=111.3 GB) - (Type=07 NTFS)
- Partition 2: (Not Active) - (Size=509 MB) - (Type=27)
- ==================== Koniec Addition.txt =======================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement