Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 10-01-2022 01 Uruchomiony przez szymon (15-01-2022 12:59:26) Uruchomiony z D:\MODY ASSETO CORSA Microsoft Windows 10 Home Wersja 21H2 19044.1466 (X64) (2020-06-18 10:24:41) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= (Załączenie wejścia w fixlist spowoduje jego usunięcie.) Administrator (S-1-5-21-1801939095-826057253-3178289900-500 - Administrator - Disabled) ASPNET (S-1-5-21-1801939095-826057253-3178289900-1003 - Limited - Enabled) forza (S-1-5-21-1801939095-826057253-3178289900-1002 - Limited - Disabled) Gość (S-1-5-21-1801939095-826057253-3178289900-501 - Limited - Disabled) Konto domyślne (S-1-5-21-1801939095-826057253-3178289900-503 - Limited - Disabled) szymon (S-1-5-21-1801939095-826057253-3178289900-1001 - Administrator - Enabled) => C:\Users\szymo WDAGUtilityAccount (S-1-5-21-1801939095-826057253-3178289900-504 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) 4K Video Downloader (HKLM\...\{81E1EDDF-210B-4969-B96D-B14C6DBBA9C8}) (Version: 4.18.5.4570 - Open Media LLC) 7-Zip 21.07 (x64) (HKLM\...\7-Zip) (Version: 21.07 - Igor Pavlov) Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 5.6.0.788.2 - Adobe Inc.) Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version: - Adobe) Adobe Lightroom Classic (HKLM-x32\...\LTRM_11_0) (Version: 11.0 - Adobe Inc.) Adobe Media Encoder 2022 (HKLM-x32\...\AME_22_1_1) (Version: 22.1.1 - Adobe Inc.) Adobe Photoshop 2022 (HKLM-x32\...\PHSP_23_0) (Version: 23.0.0.36 - Adobe Inc.) Adobe Premiere Pro 2022 (HKLM-x32\...\PPRO_22_1_1) (Version: 22.1.1 - Adobe Inc.) Advanced SystemCare (HKLM-x32\...\Advanced SystemCare_is1) (Version: 15.1.0 - IObit) AIDA64 Extreme v6.32 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 6.32 - FinalWire Ltd.) ALLPlayer (wersja 8.9) (HKLM\...\{68972948-F221-4267-9EB6-2EB5D913C4CF}_is1) (Version: 8.9 - ALLPlayer Ltd.) Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB) BFME2 HD Edition by Revora version 1 (HKLM-x32\...\BFME2HDEDITIOM_is1) (Version: 1 - Revora) BFME2 Patch Switcher (HKLM-x32\...\BFME2 Patch Switcher) (Version: - BFME2 Patch Switcher) Bitwa o Śródziemie™ II (HKLM-x32\...\{2A9F95AB-65A3-432c-8631-B8BC5BF7477A}) (Version: - ) CCleaner (HKLM\...\CCleaner) (Version: 5.80 - Piriform) ChomikBox (HKLM-x32\...\{8E4185CC-4FF3-46B9-A4DB-5B850B71ABC4}) (Version: 2.0.8.2 - Chomikuj.pl) Chrome Remote Desktop Host (HKLM-x32\...\{B9B27527-C019-411B-9813-3FC8724C88DA}) (Version: 96.0.4664.39 - Google LLC) Colin McRae 2005 Polish language add-on (HKLM-x32\...\Colin McRae 2005 Polish language add-on) (Version: - ) Core Temp 1.17 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.17 - ALCPU) Corel VideoStudio Pro Title Pack (HKLM-x32\...\{1F57FEF3-3E49-4252-B977-B98D3A7C89D0}) (Version: 1.00.0000 - Corel Corporation) Hidden Corel VideoStudio Pro Title Pack (HKLM-x32\...\{2DD67752-A84F-493D-884B-A857CEE14A88}) (Version: 1.00.0000 - Corel Corporation) Hidden Corel VideoStudio Pro Title Pack (HKLM-x32\...\{34560654-E7ED-4D0C-B75B-C2DD243A3860}) (Version: 1.00.0000 - Corel Corporation) Hidden Corel VideoStudio Pro Title Pack (HKLM-x32\...\{466B8FC6-8D80-4DA1-BA2D-EC7094BD3C31}) (Version: 1.00.0000 - Corel Corporation) Hidden CORSAIR iCUE 4 Software (HKLM\...\{97E0262E-4B0A-4DD1-B432-8BE71A8BDC0A}) (Version: 4.18.209 - Corsair) CPUID CPU-Z 1.98 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.98 - CPUID, Inc.) CrystalDiskInfo 8.12.4 (HKLM\...\CrystalDiskInfo_is1) (Version: 8.12.4 - Crystal Dew World) Deluxe Ski Jump 4 (HKLM-x32\...\Deluxe Ski Jump 4_is1) (Version: 1.10.1 - Mediamond Tmi) Discord (HKU\S-1-5-21-1801939095-826057253-3178289900-1001\...\Discord) (Version: 1.0.9003 - Discord Inc.) Driver Booster 9 (HKLM-x32\...\Driver Booster_is1) (Version: 9.1.0 - IObit) ENE_DRAM_RGB_AIO (HKLM\...\{1745D314-9077-46C9-8562-1C62BAE189B7}) (Version: 1.0.2.33 - Ene Tech.) Hidden ENE_DRAM_RGB_AIO (HKLM-x32\...\{5d801c90-9d81-4c67-be5b-07e5855dc22e}) (Version: 1.0.2.33 - Ene Tech.) Hidden ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.0.8.13 - ENE TECHNOLOGY INC.) Hidden ENE_EHD_M2_HAL (HKLM-x32\...\{54d3d2b5-db16-446d-b6dd-f4964b166b3b}) (Version: 1.0.8.13 - ENE TECHNOLOGY INC.) Hidden ENE_MousePad_HAL (HKLM\...\{9E97178A-ADB8-4778-BE60-7E28E2A72721}) (Version: 1.0.2.0 - ENE TECHNOLOGY INC.) Hidden ENE_MousePad_HAL (HKLM-x32\...\{c2c794a4-7986-4c45-884d-d4ca43b88df9}) (Version: 1.0.2.0 - ENE TECHNOLOGY INC.) Hidden ENE_X-JMI_HAL (HKLM\...\{2B8E611F-0B51-4FAC-87BB-AF50D82E7DDA}) (Version: 1.0.5.1 - ENE Tech) Hidden ENE_X-JMI_HAL (HKLM-x32\...\{50ec3a07-291b-463e-be86-487eb8cbb71c}) (Version: 1.0.5.1 - ENE Tech) Hidden Epic Games Launcher (HKLM-x32\...\{505E1319-4ED9-4A08-BA60-688A040F72FB}) (Version: 1.2.17.0 - Epic Games, Inc.) Epic Online Services (HKLM-x32\...\{6D70A161-C29B-441B-9AA5-2ABBAB3B4B4D}) (Version: 1.1.1.0 - Epic Games, Inc.) ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB) FanaLEDs (HKLM-x32\...\FanaLEDs) (Version: 2.6g - Gerben bol & Dirk Teurlings) Farmerama (HKU\S-1-5-21-1801939095-826057253-3178289900-1001\...\Farmerama) (Version: 1.2.8 - Bigpoint GmbH) FiveM (HKU\S-1-5-21-1801939095-826057253-3178289900-1001\...\CitizenFX_FiveM) (Version: - Cfx.re) GameInput Redistributable (HKLM-x32\...\{93B91052-9882-92F9-45E4-2EA38BC07D9E}) (Version: 10.1.19041.3357 - Microsoft Corporation) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 97.0.4692.71 - Google LLC) Grand Theft Auto V (HKLM-x32\...\{5EFC6C07-6B87-43FC-9524-F9E967241741}) (Version: 1.0.2189.0 - Rockstar Games) HiSuite (HKLM-x32\...\Hi Suite) (Version: 11.0.0.590 - Huawei Technologies Co., Ltd.) Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 - Intel Corporation) IObit Malware Fighter 9 (HKLM-x32\...\IObit Malware Fighter_is1) (Version: 9.1.0.553 - IObit) IObit Software Updater (HKLM-x32\...\IObit Software Updater_is1) (Version: 4.3.0.208 - IObit) IObit Uninstaller 11 (HKLM-x32\...\IObitUninstall) (Version: 11.2.0.10 - IObit) iTop VPN (HKLM-x32\...\iTop VPN_is1) (Version: 3.1.0.2513 - iTop Inc.) Java 8 Update 301 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180301F0}) (Version: 8.0.3010.9 - Oracle Corporation) Java 8 Update 311 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180311F0}) (Version: 8.0.3110.11 - Oracle Corporation) Kinect for Windows Speech Recognition Language Pack (en-AU) (HKLM-x32\...\{48CEC0A3-AE10-4EE3-AC62-76D3D58792E5}) (Version: 11.0.7400.336 - Microsoft Corporation) Kinect for Windows Speech Recognition Language Pack (en-CA) (HKLM-x32\...\{9C5505DA-F9C1-46CB-9F8F-AC38F8EA518A}) (Version: 11.0.7400.336 - Microsoft Corporation) Kinect for Windows Speech Recognition Language Pack (en-GB) (HKLM-x32\...\{A0186231-0A8B-455A-8A25-B64AABCC11A6}) (Version: 11.0.7400.336 - Microsoft Corporation) Kinect for Windows Speech Recognition Language Pack (en-IE) (HKLM-x32\...\{998D5259-3BED-4710-98FF-D63387B5429E}) (Version: 11.0.7400.336 - Microsoft Corporation) Kinect for Windows Speech Recognition Language Pack (en-NZ) (HKLM-x32\...\{07FC9CAD-FCEC-4186-BB83-EF7CCC9372BA}) (Version: 11.0.7400.336 - Microsoft Corporation) Kinect for Windows Speech Recognition Language Pack (en-US) (HKLM-x32\...\{8AAA44BB-487E-4D01-AF76-484ACB90DBFE}) (Version: 11.0.7400.336 - Microsoft Corporation) Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2022.1.3492 - Logitech) Logitech Gaming Software 9.02 (HKLM\...\Logitech Gaming Software) (Version: 9.02.65 - Logitech Inc.) Malwarebytes version 4.5.0.152 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.0.152 - Malwarebytes) MediaInfo 21.03 (HKLM\...\MediaInfo) (Version: 21.03 - MediaArea.net) Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft) Microsoft Server Speech Platform Runtime (x64) (HKLM\...\{3B433087-E62E-4BF5-97F9-4AF6E1C2409C}) (Version: 11.0.7400.345 - Microsoft Corporation) Microsoft Server Speech Recognition Language - TELE (en-IN) (HKLM-x32\...\{3B06AC90-DE68-44A9-95EB-0A3C1AF1514F}) (Version: 11.0.7400.335 - Microsoft Corporation) Microsoft Server Speech Recognition Language - TELE (pl-PL) (HKLM-x32\...\{BEFB9378-5E88-4266-8EB1-C92869449885}) (Version: 11.0.7400.335 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{E876418F-BE59-4D8C-B9A5-74B056B676FA}) (Version: 2.93.0.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable - x64 8.0.61000 (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001 (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{a2199617-3609-410f-a8e8-e8806c73545b}) (Version: 11.0.61030.0 - Корпорация Майкрософт) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{49e969a1-2990-464d-92b5-25f6f34573c6}) (Version: 12.0.40664.0 - Корпорация Майкрософт) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{d2c8df0e-f15d-4426-9e51-f13f329f9cb4}) (Version: 12.0.40664.0 - Корпорация Майкрософт) Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.30.30704 (HKLM-x32\...\{57a73df6-4ba9-4c1d-bbbb-517289ff6c13}) (Version: 14.30.30704.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.30.30704 (HKLM-x32\...\{4d8dcf8c-a72a-43e1-9833-c12724db736e}) (Version: 14.30.30704.0 - Microsoft Corporation) Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation) MSI Afterburner 4.6.4 (HKLM-x32\...\Afterburner) (Version: 4.6.4 - MSI Co., LTD) MSI Command Center (HKLM-x32\...\{85A2564E-9ED9-448A-91E4-B9211EE58A08}_is1) (Version: 2.0.0.56 - MSI) MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation) Napisy24 (HKLM-x32\...\{D1985DBC-F09E-4317-91B8-932AD0FD4A27}_is1) (Version: 1.9.4 - Napisy24.pl) NDI 4 Runtime (HKLM\...\{71AFF296-ED43-4166-8301-4649285EE712}_is1) (Version: - NewTek, inc.) Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 8.2 - Notepad++ Team) NVIDIA FrameView SDK 1.2.4999.30397803 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.2.4999.30397803 - NVIDIA Corporation) NVIDIA GeForce Experience 3.24.0.126 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.24.0.126 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.39.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.39.1 - NVIDIA Corporation) NVIDIA Sterownik graficzny 511.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 511.23 - NVIDIA Corporation) OBS Studio (HKLM-x32\...\OBS Studio) (Version: 27.1.3 - OBS Project) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Origin (HKLM-x32\...\Origin) (Version: 10.5.108.49699 - Electronic Arts, Inc.) Paradox Launcher v2 (HKLM\...\{A92DB5D9-A24D-4678-9F91-B4FA6D895718}) (Version: 2.0.4.0 - Paradox Interactive) Pleasure Party (HKLM-x32\...\Pleasure Party_is1) (Version: - ) PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.) qBittorrent 4.3.9 (HKLM-x32\...\qBittorrent) (Version: 4.3.9 - The qBittorrent project) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8746.1 - Realtek Semiconductor Corp.) RivaTuner Statistics Server 7.3.3 (HKLM-x32\...\RTSS) (Version: 7.3.3 - Unwinder) Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.53.576 - Rockstar Games) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.9.3 - Rockstar Games) Sprawdzanie kondycji komputera z systemem Windows (HKLM\...\{645FE595-D9DD-4BD7-AB97-AFF65B8FBD62}) (Version: 3.1.2109.29003 - Microsoft Corporation) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) StreamElements SE.Live (HKLM-x32\...\StreamElements OBS.Live) (Version: 21.12.9.790 - StreamElements) Środowisko uruchomieniowe Microsoft Edge WebView2 (HKLM-x32\...\Microsoft EdgeWebView) (Version: 97.0.1072.55 - Microsoft Corporation) The Sims™ 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.80.69.1030 - Electronic Arts Inc.) Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 121.0.10451 - Ubisoft) UE4 Prerequisites (x64) (HKLM\...\{36EAD5CF-44EF-4FCF-8BE1-D96C4835D7A4}) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden UE4 Prerequisites (x64) (HKLM-x32\...\{2890ae6b-90e9-448d-b3e6-97e43c21e2fd}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden UXP WebView Support (HKLM-x32\...\UXPW_1_1_0) (Version: 1.1.0 - Adobe Inc.) VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.5.2.0 - Elaborate Bytes) Vs2013Msi (HKLM-x32\...\{4DAB1C0B-B3B8-4B99-BC26-597079BEED61}) (Version: 1.0.0 - Default Company Name) Vs2013Msix64 (HKLM\...\{C826C777-B268-4A69-A0A2-7A0B0B3219A7}) (Version: 1.0.0 - Default Company Name) WD_BLACK AN1500 (HKLM\...\{085E2365-0A70-4230-B664-02D5E4FE7E9C}) (Version: 1.0.12.0 - ENE TECHNOLOGY INC.) Hidden WD_BLACK AN1500 (HKLM-x32\...\{9c94735f-73fd-4b0f-9ddb-8be7b3cc4681}) (Version: 1.0.12.0 - ENE TECHNOLOGY INC.) Hidden WD_BLACK D50 (HKLM\...\{BDE43F26-5917-44F8-B86A-F1D9A6B80B32}) (Version: 1.0.9.0 - ENE TECHNOLOGY INC.) Hidden WD_BLACK D50 (HKLM-x32\...\{a1d1ba00-92b7-4a99-8ebd-65b25c0e9e44}) (Version: 1.0.9.0 - ENE TECHNOLOGY INC.) Hidden WhatsApp (HKU\S-1-5-21-1801939095-826057253-3178289900-1001\...\WhatsApp) (Version: 2.2147.16 - WhatsApp) WinRAR 6.02 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.02.0 - win.rar GmbH) Packages: ========= Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_2.0.1.8_x86__enpm4xejd91yc [2021-04-15] (Adobe Systems Incorporated) Beauty of China PREMIUM -> C:\Program Files\WindowsApps\Microsoft.BeautyofChinaPREMIUM_1.0.0.0_neutral__8wekyb3d8bbwe [2020-12-29] (Microsoft Corporation) DTS Sound Unbound -> C:\Program Files\WindowsApps\DTSInc.DTSSoundUnbound_2021.4.17.0_x64__t5j2fzbtdg37r [2022-01-09] (DTS, Inc.) Lively Wallpaper -> C:\Program Files\WindowsApps\12030rocksdanister.LivelyWallpaper_1.0.85.0_x86__97hta09mmv6hy [2022-01-09] (rocksdanister) [Startup Task] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-11-25] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-11-25] (Microsoft Corporation) [MS Ad] Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2021-10-24] (Netflix, Inc.) NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2022-01-15] (NVIDIA Corp.) Phototastic Collage -> C:\Program Files\WindowsApps\ThumbmunkeysLtd.PhototasticCollage_3.27.5.0_x64__nfy108tqq3p12 [2022-01-09] (Thumbmunkeys Ltd) Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.20.238.0_x64__dt26b99r8h8gj [2021-01-14] (Realtek Semiconductor Corp) Sloths PREMIUM -> C:\Program Files\WindowsApps\Microsoft.SlothsPREMIUM_1.0.0.0_neutral__8wekyb3d8bbwe [2020-12-29] (Microsoft Corporation) TranslucentTB -> C:\Program Files\WindowsApps\28017CharlesMilette.TranslucentTB_2021.5.0.0_x64__v826wp6bftszj [2021-10-09] (Charles Milette) [Startup Task] Treehouses PREMIUM -> C:\Program Files\WindowsApps\Microsoft.TreehousesPREMIUM_1.0.0.0_neutral__8wekyb3d8bbwe [2021-11-30] (Microsoft Corporation) ==================== Niestandardowe rejestracje CLSID (filtrowane): ============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-1801939095-826057253-3178289900-1001_Classes\CLSID\{2F81B25E-7507-4844-BFF2-77D2CC24CED4}\localserver32 -> C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc. -> Adobe Inc.) CustomCLSID: HKU\S-1-5-21-1801939095-826057253-3178289900-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems) ShellIconOverlayIdentifiers: [ IMFSafeBox] -> {0BB81440-5F42-4480-A5F7-770A6F439FC8} => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFShellExt.dll [2020-07-22] (IObit Information Technology -> IObit) ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-11-26] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-11-26] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-11-26] (Adobe Inc. -> ) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2021-12-26] (Igor Pavlov) [Brak podpisu cyfrowego] ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-11-26] (Adobe Inc. -> ) ContextMenuHandlers1: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2021-07-31] (IObit CO., LTD -> IObit) ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\PROGRAM FILES\NOTEPAD++\NppShell_06.dll [2021-12-31] (Notepad++ -> ) ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> Brak pliku ContextMenuHandlers1: [IObit Malware Fighter] -> {0BB81440-5F42-4480-A5F7-770A6F439FC8} => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFShellExt.dll [2020-07-22] (IObit Information Technology -> IObit) ContextMenuHandlers1: [IObitUninstaller] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2021-12-14] (IObit CO., LTD -> IObit) ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2021-12-14] (IObit CO., LTD -> IObit) ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Brak pliku ContextMenuHandlers1: [SmartGameBoosterMenu] -> {96C86AD1-055D-457D-9C00-0D4A91ECF1B4} => -> Brak pliku ContextMenuHandlers1: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\ElbyVCDShell.dll [2020-02-23] (Elaborate Bytes AG -> Elaborate Bytes AG) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2021-07-31] (IObit CO., LTD -> IObit) ContextMenuHandlers2: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\ElbyVCDShell.dll [2020-02-23] (Elaborate Bytes AG -> Elaborate Bytes AG) ContextMenuHandlers3: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2021-07-31] (IObit CO., LTD -> IObit) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-11-24] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2021-12-26] (Igor Pavlov) [Brak podpisu cyfrowego] ContextMenuHandlers4: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2021-07-31] (IObit CO., LTD -> IObit) ContextMenuHandlers4: [IObit Malware Fighter] -> {0BB81440-5F42-4480-A5F7-770A6F439FC8} => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFShellExt.dll [2020-07-22] (IObit Information Technology -> IObit) ContextMenuHandlers4: [IObitUninstaller] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2021-12-14] (IObit CO., LTD -> IObit) ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2021-12-14] (IObit CO., LTD -> IObit) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_de900db96e9c1480\nvshext.dll [2022-01-11] (Nvidia Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2021-12-26] (Igor Pavlov) [Brak podpisu cyfrowego] ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-11-26] (Adobe Inc. -> ) ContextMenuHandlers6: [IObit Malware Fighter] -> {0BB81440-5F42-4480-A5F7-770A6F439FC8} => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFShellExt.dll [2020-07-22] (IObit Information Technology -> IObit) ContextMenuHandlers6: [IObitUninstaller] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2021-12-14] (IObit CO., LTD -> IObit) ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2021-12-14] (IObit CO., LTD -> IObit) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-11-24] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [Brak podpisu cyfrowego] HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.VP60] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2022-01-11] (Electronic Arts -> On2.com) HKLM\...\Drivers32: [vidc.VP61] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2022-01-11] (Electronic Arts -> On2.com) ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ShortcutWithArgument: C:\Users\szymo\Desktop\Chrome Remote Desktop.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=efmjfjelnicpmdcmfikempdhlmainjcb ShortcutWithArgument: C:\Users\szymo\Desktop\szymon - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Default" ShortcutWithArgument: C:\Users\szymo\Desktop\YouTube.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=agimnkijcaahngcdmfeangaknmldooml ShortcutWithArgument: C:\Users\szymo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikacje Chrome\Chrome Remote Desktop.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=efmjfjelnicpmdcmfikempdhlmainjcb ShortcutWithArgument: C:\Users\szymo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikacje Chrome\YouTube (1).lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=agimnkijcaahngcdmfeangaknmldooml ShortcutWithArgument: C:\Users\szymo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikacje Chrome\YouTube.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=agimnkijcaahngcdmfeangaknmldooml ==================== Załadowane moduły (filtrowane) ============= 2022-01-12 17:43 - 2022-01-12 17:41 - 000635904 _____ () [Brak podpisu cyfrowego] \\?\C:\Program Files\LGHUB\resources\app.asar.unpacked\node_modules\keytar\build\Release\keytar.node 2021-12-03 14:36 - 2021-12-03 14:36 - 000232960 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\MSI Afterburner\RTCore.dll 2021-12-03 14:36 - 2021-12-03 14:36 - 000057344 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\MSI Afterburner\RTFC.dll 2021-12-03 14:36 - 2021-12-03 14:36 - 000668672 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\MSI Afterburner\RTHAL.dll 2021-12-03 14:36 - 2021-12-03 14:36 - 000074240 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\MSI Afterburner\RTMUI.dll 2021-12-03 14:36 - 2021-12-03 14:36 - 000371712 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\MSI Afterburner\RTUI.dll 2021-12-03 14:32 - 2021-12-03 14:32 - 000057344 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\RivaTuner Statistics Server\RTFC.dll 2021-12-03 14:32 - 2021-12-03 14:32 - 000074240 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\RivaTuner Statistics Server\RTMUI.dll 2021-12-03 14:32 - 2021-12-03 14:32 - 000368640 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\RivaTuner Statistics Server\RTUI.dll 2022-01-13 19:05 - 2022-01-13 19:04 - 005563392 _____ (ActVer©®™) [Brak podpisu cyfrowego] C:\Program Files (x86)\IObit\Driver Booster\9.1.0\version.dll 2021-11-03 21:24 - 2021-12-26 15:00 - 000093696 _____ (Igor Pavlov) [Brak podpisu cyfrowego] C:\Program Files\7-Zip\7-zip.dll ==================== Alternate Data Streams (filtrowane) ======== (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\WINDOWS\tracing:? [16] AlternateDataStreams: C:\Users\szymo:Heroes & Generals [38] AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT [40] AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT2 [840] ==================== Tryb awaryjny (filtrowane) ================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Powiązania plików (filtrowane) ================= ==================== Internet Explorer (filtrowane) ========== HKU\S-1-5-21-1801939095-826057253-3178289900-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.gazeta.pl/0,0.html?p=190 BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2020-01-31] (IObit Information Technology -> IObit) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\ssv.dll [2021-12-23] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\jp2ssv.dll [2021-12-23] (Oracle America, Inc. -> Oracle Corporation) (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) IE trusted site: HKU\S-1-5-21-1801939095-826057253-3178289900-1001\...\localhost -> localhost ==================== Hosts - zawartość: ========================= (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2019-03-19 05:49 - 2020-02-18 09:28 - 000001030 ____R C:\WINDOWS\system32\drivers\etc\hosts 127.0.0.1 auth.macphun.com 127.0.0.1 luminar3win.update.skylum.com 127.0.0.1 stats-api.skylum.com 127.0.0.1 geotargetly-1a441.appspot.com 127.0.0.1 fx.macphun.com 127.0.0.1 canonicalizer.ucsuri.tcs ==================== Inne obszary =========================== (Obecnie brak automatycznej naprawy dla tej sekcji.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> %INTEL_DEV_REDIST%redist\intel64\compiler;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files (x86)\QuickTime\QTSystem\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common HKU\S-1-5-21-1801939095-826057253-3178289900-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\szymo\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Załączenie wejścia w fixlist spowoduje jego usunięcie.) MSCONFIG\Services: diagsvc => 3 HKLM\...\StartupApproved\Run: => "SecurityHealth" HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKLM\...\StartupApproved\Run32: => "uTorrent" HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud" HKU\S-1-5-21-1801939095-826057253-3178289900-1001\...\StartupApproved\StartupFolder: => "Bypass.exe" HKU\S-1-5-21-1801939095-826057253-3178289900-1001\...\StartupApproved\StartupFolder: => "Microsoft Edge.exe" HKU\S-1-5-21-1801939095-826057253-3178289900-1001\...\StartupApproved\StartupFolder: => "Process.exe" HKU\S-1-5-21-1801939095-826057253-3178289900-1001\...\StartupApproved\Run: => "Advanced SystemCare" HKU\S-1-5-21-1801939095-826057253-3178289900-1001\...\StartupApproved\Run: => "Google Update" HKU\S-1-5-21-1801939095-826057253-3178289900-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-1801939095-826057253-3178289900-1001\...\StartupApproved\Run: => "uTorrent" HKU\S-1-5-21-1801939095-826057253-3178289900-1001\...\StartupApproved\Run: => "CCXProcess" HKU\S-1-5-21-1801939095-826057253-3178289900-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning" HKU\S-1-5-21-1801939095-826057253-3178289900-1001\...\StartupApproved\Run: => "Discord" HKU\S-1-5-21-1801939095-826057253-3178289900-1001\...\StartupApproved\Run: => "Advanced SystemCare Ultimate" HKU\S-1-5-21-1801939095-826057253-3178289900-1001\...\StartupApproved\Run: => "ChomikBox" HKU\S-1-5-21-1801939095-826057253-3178289900-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount" HKU\S-1-5-21-1801939095-826057253-3178289900-1001\...\StartupApproved\Run: => "Steam" ==================== Reguły Zapory systemu Windows (filtrowane) ================ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{8EE95BAA-FDAD-4F52-8666-C53C2D067EAC}] => (Allow) C:\Program Files (x86)\Steam\steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{A2089950-C590-4B86-8D09-BB9DE6B167B9}] => (Allow) C:\Program Files (x86)\Steam\steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{F1EE4FE9-F13F-46AA-B560-D0408DF9CD9A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{08B05C2E-589A-4DEC-9C68-B8AEB1475107}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{C2C9062C-1EF4-4753-9D32-53C83AD16D6C}] => (Allow) C:\Program Files (x86)\Canon\EOS Utility\EOSUPNPSV.exe => Brak pliku FirewallRules: [{9D484265-BE4C-408E-A69F-1F8C3144A88A}] => (Allow) C:\Program Files (x86)\Canon\EOS Utility\EOSUPNPSV.exe => Brak pliku FirewallRules: [{77954BBE-E968-41BB-B566-16802227C4EA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{4C5A4BB6-1C28-4972-A7CD-E98FF8174525}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{652F8332-7B3B-4C82-A477-4E9C7D43F1B7}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [Brak podpisu cyfrowego] FirewallRules: [{6BF94EED-27C0-40D2-B40E-7B3AFE948382}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [Brak podpisu cyfrowego] FirewallRules: [{E0652BE4-6923-45B6-A57A-B9B92371968C}] => (Allow) D:\SteamLibrary\steamapps\common\F1 2020\F1_2020_dx12.exe (Codemasters Software Company Limited) [Brak podpisu cyfrowego] FirewallRules: [{8A3FB5D3-92BD-4527-8285-8759C2569BD4}] => (Allow) D:\SteamLibrary\steamapps\common\F1 2020\F1_2020_dx12.exe (Codemasters Software Company Limited) [Brak podpisu cyfrowego] FirewallRules: [{E5214170-0EBB-46F4-A99D-DA253DA57CD9}] => (Allow) D:\SteamLibrary\steamapps\common\F1 2020\F1_2020.exe (Codemasters Software Company Limited) [Brak podpisu cyfrowego] FirewallRules: [{A3BD1D9B-B3AD-4F3D-9AD0-8B97BDF32F43}] => (Allow) D:\SteamLibrary\steamapps\common\F1 2020\F1_2020.exe (Codemasters Software Company Limited) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{8A177591-4A2F-45DE-A6D8-02B3C82B1B7B}D:\torrent\police.simulator.patrol.officers.early.access\police simulator patrol officers\boston\binaries\win64\boston-win64-shipping.exe] => (Allow) D:\torrent\police.simulator.patrol.officers.early.access\police simulator patrol officers\boston\binaries\win64\boston-win64-shipping.exe => Brak pliku FirewallRules: [UDP Query User{F63A32DB-9F30-4FC1-A85A-BA90CFC25B7B}D:\torrent\police.simulator.patrol.officers.early.access\police simulator patrol officers\boston\binaries\win64\boston-win64-shipping.exe] => (Allow) D:\torrent\police.simulator.patrol.officers.early.access\police simulator patrol officers\boston\binaries\win64\boston-win64-shipping.exe => Brak pliku FirewallRules: [TCP Query User{D0CA3E4F-EE80-41F1-A3FA-2FE507AABDB6}B:\games\police simulator patrol officers\boston\binaries\win64\boston-win64-shipping.exe] => (Allow) B:\games\police simulator patrol officers\boston\binaries\win64\boston-win64-shipping.exe => Brak pliku FirewallRules: [UDP Query User{154C778C-174C-44BE-A46D-CEA2AD4C3237}B:\games\police simulator patrol officers\boston\binaries\win64\boston-win64-shipping.exe] => (Allow) B:\games\police simulator patrol officers\boston\binaries\win64\boston-win64-shipping.exe => Brak pliku FirewallRules: [TCP Query User{0DE6B6F5-B846-46D6-92F1-86969F72A2F4}B:\steamlibrary\steamapps\common\fifa 21\fifa21.exe] => (Allow) B:\steamlibrary\steamapps\common\fifa 21\fifa21.exe => Brak pliku FirewallRules: [UDP Query User{47754C5B-D1AC-4C44-B658-E6AA6B497421}B:\steamlibrary\steamapps\common\fifa 21\fifa21.exe] => (Allow) B:\steamlibrary\steamapps\common\fifa 21\fifa21.exe => Brak pliku FirewallRules: [TCP Query User{AD949F75-9497-401B-BC16-65C74C6FA370}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.) FirewallRules: [UDP Query User{19E735BE-C2D3-4DCF-A4AB-07EE760A8802}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.) FirewallRules: [TCP Query User{5645CB49-A208-4C17-B2B0-C8523FFF75CA}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.) FirewallRules: [UDP Query User{810081C0-A173-4CF2-9553-9E8BCD7F26FC}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.) FirewallRules: [TCP Query User{5D84A0A9-DE98-4586-9C5B-925DCD3C3BC2}D:\steamlibrary\steamapps\common\fifa 22\fifa22_trial.exe] => (Allow) D:\steamlibrary\steamapps\common\fifa 22\fifa22_trial.exe => Brak pliku FirewallRules: [UDP Query User{54697CB3-8159-4414-B36E-4FB4AD1B8AC9}D:\steamlibrary\steamapps\common\fifa 22\fifa22_trial.exe] => (Allow) D:\steamlibrary\steamapps\common\fifa 22\fifa22_trial.exe => Brak pliku FirewallRules: [{62B0FE9F-8857-4D79-8A0F-A919155843B5}] => (Allow) C:\Program Files (x86)\Steam\steam -console -no-browser.exe (Valve -> Valve Corporation) FirewallRules: [{5A90C7AC-04E3-4992-B70E-7373FF4FC653}] => (Allow) C:\Program Files (x86)\Steam\steam -console -no-browser.exe (Valve -> Valve Corporation) FirewallRules: [{03F8ED59-7670-4DE0-94DB-3D89474855AA}] => (Allow) C:\Program Files (x86)\Google\Chrome Remote Desktop\96.0.4664.39\remoting_host.exe (Google LLC -> Google LLC) FirewallRules: [{137FD6EA-65F3-4605-B84D-2A742CD7E858}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [Brak podpisu cyfrowego] FirewallRules: [{19CD12E2-05C6-4782-8C9E-335AED05386F}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [Brak podpisu cyfrowego] FirewallRules: [{9047F9C5-6AD2-47F4-9BDC-44D4CB5B50BF}] => (Allow) D:\SteamLibrary\steamapps\common\assettocorsa\AssettoCorsa.exe (Kunos Simulazioni) [Brak podpisu cyfrowego] FirewallRules: [{FAB32C8F-B3A4-468A-8106-7259209DDB8B}] => (Allow) D:\SteamLibrary\steamapps\common\assettocorsa\AssettoCorsa.exe (Kunos Simulazioni) [Brak podpisu cyfrowego] FirewallRules: [{9D109988-52F3-4E75-9FB7-FB01F6E4A420}] => (Allow) D:\SteamLibrary\steamapps\common\Going Medieval\Going Medieval.exe () [Brak podpisu cyfrowego] FirewallRules: [{9CEAA3FD-571A-474D-9DAB-5FF70798E6CE}] => (Allow) D:\SteamLibrary\steamapps\common\Going Medieval\Going Medieval.exe () [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{F2490C98-786E-4624-A8DF-08E3C85FAD89}D:\steamlibrary\steamapps\common\assettocorsa\acs.exe] => (Allow) D:\steamlibrary\steamapps\common\assettocorsa\acs.exe () [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{DA7EA3B3-6CFD-41C1-893A-CCACAC952284}D:\steamlibrary\steamapps\common\assettocorsa\acs.exe] => (Allow) D:\steamlibrary\steamapps\common\assettocorsa\acs.exe () [Brak podpisu cyfrowego] FirewallRules: [{E5414A4E-C031-49A1-A211-A175552E5E79}] => (Allow) LPort=32682 FirewallRules: [{96878129-28D4-4871-A5E6-F90882E83870}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{2EC29318-2B37-45E3-A25B-C908A856AF0F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{0B3BEE9B-C2A0-44DB-9300-739981439D70}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{A45F98B0-AD07-4A80-B139-FAB99E8040E1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [TCP Query User{F87DAD17-88C7-4585-BED9-9EB383ED08B5}D:\torrent\car mechanic simulator 2021 v.1.0.17.hf2 (2021)\car mechanic simulator 2021\car mechanic simulator 2021.exe] => (Allow) D:\torrent\car mechanic simulator 2021 v.1.0.17.hf2 (2021)\car mechanic simulator 2021\car mechanic simulator 2021.exe => Brak pliku FirewallRules: [UDP Query User{B06253F4-2F99-4C59-88B2-AFA489526D92}D:\torrent\car mechanic simulator 2021 v.1.0.17.hf2 (2021)\car mechanic simulator 2021\car mechanic simulator 2021.exe] => (Allow) D:\torrent\car mechanic simulator 2021 v.1.0.17.hf2 (2021)\car mechanic simulator 2021\car mechanic simulator 2021.exe => Brak pliku FirewallRules: [{B5A4AFF3-7ABE-43F2-9BC3-0ADB324246CA}] => (Allow) B:\SteamLibrary\steamapps\common\DiRT Rally 2.0\dirtrally2.exe (Codemasters Software Company Limited) [Brak podpisu cyfrowego] FirewallRules: [{DBE2DA36-7BC2-457D-B34B-C2D552760D8C}] => (Allow) B:\SteamLibrary\steamapps\common\DiRT Rally 2.0\dirtrally2.exe (Codemasters Software Company Limited) [Brak podpisu cyfrowego] FirewallRules: [{A4FC4388-1722-4F7F-9AB9-1E58A5541796}] => (Allow) B:\SteamLibrary\steamapps\common\Martial Law\martial-law.exe (Godot Engine) [Brak podpisu cyfrowego] FirewallRules: [{D1697134-A670-4128-8188-3E9BEC5842C7}] => (Allow) B:\SteamLibrary\steamapps\common\Martial Law\martial-law.exe (Godot Engine) [Brak podpisu cyfrowego] FirewallRules: [{B80151EF-7BA7-4F56-A80B-2E22A938AFFE}] => (Allow) D:\Games\BOŚ\game.dat (*DEV!ANCE*) [Brak podpisu cyfrowego] FirewallRules: [{E5B1D7A0-B634-40D6-973F-36F2642F9F01}] => (Allow) D:\Games\BOŚ\game.dat (*DEV!ANCE*) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{14BC0768-FAED-4CB6-982D-5B39DDA974FB}C:\users\szymo\appdata\local\temp\1xq0mkkmtm0ytel1jnxj2x0arfp\dll-propagation.exe] => (Allow) C:\users\szymo\appdata\local\temp\1xq0mkkmtm0ytel1jnxj2x0arfp\dll-propagation.exe (Microsoft Corporation) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{5B6D1C68-0DCC-4BEF-97FF-2DF9190BA5EA}C:\users\szymo\appdata\local\temp\1xq0mkkmtm0ytel1jnxj2x0arfp\dll-propagation.exe] => (Allow) C:\users\szymo\appdata\local\temp\1xq0mkkmtm0ytel1jnxj2x0arfp\dll-propagation.exe (Microsoft Corporation) [Brak podpisu cyfrowego] FirewallRules: [{B1155959-E7A1-45F2-8F4A-23E2CB2D0E19}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\97.0.1072.55\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{933473E8-7F35-4085-B27F-9C8E630B0035}C:\program files\lghub\lghub_agent.exe] => (Block) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.) FirewallRules: [UDP Query User{42B345DD-8522-46A4-B502-E60D1CF31C52}C:\program files\lghub\lghub_agent.exe] => (Block) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.) FirewallRules: [TCP Query User{AF87617C-A165-45ED-873C-E98FB1B857F1}C:\users\szymo\appdata\local\temp\1xq0mkkmtm0ytel1jnxj2x0arfp\dll-propagation.exe] => (Block) C:\users\szymo\appdata\local\temp\1xq0mkkmtm0ytel1jnxj2x0arfp\dll-propagation.exe (Microsoft Corporation) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{029B9584-28DA-416F-84CE-AE5302398CD1}C:\users\szymo\appdata\local\temp\1xq0mkkmtm0ytel1jnxj2x0arfp\dll-propagation.exe] => (Block) C:\users\szymo\appdata\local\temp\1xq0mkkmtm0ytel1jnxj2x0arfp\dll-propagation.exe (Microsoft Corporation) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{CFDFB281-2E29-4941-AD77-BEFEC84620A0}B:\games\gtav\gta5.exe] => (Allow) B:\games\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [UDP Query User{CB7684BA-B244-4F09-8966-195A48CC4404}B:\games\gtav\gta5.exe] => (Allow) B:\games\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [TCP Query User{F4A9E94D-B4A0-4DE5-A7F2-96DCD81F9AC8}C:\users\szymo\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2372_gtaprocess.exe] => (Allow) C:\users\szymo\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2372_gtaprocess.exe => Brak pliku FirewallRules: [UDP Query User{CB1FC5EE-4290-4A35-9478-0D2C8A42D0CE}C:\users\szymo\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2372_gtaprocess.exe] => (Allow) C:\users\szymo\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2372_gtaprocess.exe => Brak pliku FirewallRules: [TCP Query User{B221A181-5FE1-4F81-9AE2-BF196FD83E0B}C:\users\szymo\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\szymo\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe => Brak pliku FirewallRules: [UDP Query User{FD463610-8794-42E1-939C-3482731E542D}C:\users\szymo\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\szymo\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe => Brak pliku FirewallRules: [{3B26E55C-C323-4F3B-8804-E055425B9C77}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> ) FirewallRules: [{9EEED038-2A61-4F70-8839-1C621F96173D}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> ) FirewallRules: [{09329BFF-18E3-4A86-B2C1-4DF6708F8FED}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> ) FirewallRules: [{C28C143C-6469-4A89-8025-9CD155FA6D2C}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> ) FirewallRules: [{581AB5C5-49C9-4035-B04B-BD71BF1D4728}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB) FirewallRules: [{FAA123A6-CD98-4EE3-B08C-2F42D261A8FC}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB) FirewallRules: [TCP Query User{BDE31922-4EC5-4BAA-8951-CA5EE0982D0C}B:\games\battlefield 4\bf4.exe] => (Allow) B:\games\battlefield 4\bf4.exe => Brak pliku FirewallRules: [UDP Query User{EDF35D73-DC93-4F00-B5B0-0F225F00244D}B:\games\battlefield 4\bf4.exe] => (Allow) B:\games\battlefield 4\bf4.exe => Brak pliku FirewallRules: [{C94A1147-8701-4DE1-B056-CD55AEDD15CF}] => (Allow) B:\Games\The Sims 4\Game\Bin_LE\TS4.exe => Brak pliku FirewallRules: [{4EF1CBAF-65B3-4369-A09A-27ACFFA455E8}] => (Allow) B:\Games\The Sims 4\Game\Bin_LE\TS4.exe => Brak pliku FirewallRules: [{4AB18552-0EDC-4CEE-9B49-1C8081916726}] => (Allow) B:\Games\The Sims 4\Game\Bin\TS4_x64.exe => Brak pliku FirewallRules: [{D22BF489-988B-42A1-BA52-B28675F1BC60}] => (Allow) B:\Games\The Sims 4\Game\Bin\TS4_x64.exe => Brak pliku FirewallRules: [TCP Query User{F2644468-86CC-447B-818F-0CDA71A96A6B}B:\steamlibrary\steamapps\common\star wars battlefront ii\starwarsbattlefrontii.exe] => (Allow) B:\steamlibrary\steamapps\common\star wars battlefront ii\starwarsbattlefrontii.exe (Electronic Arts Inc.) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{808A41E3-4F03-4123-AE84-1B1ACF29C8D0}B:\steamlibrary\steamapps\common\star wars battlefront ii\starwarsbattlefrontii.exe] => (Allow) B:\steamlibrary\steamapps\common\star wars battlefront ii\starwarsbattlefrontii.exe (Electronic Arts Inc.) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{07A46B8B-7396-4074-B3E8-8B324B563DB4}C:\users\szymo\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe] => (Allow) C:\users\szymo\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe => Brak pliku FirewallRules: [UDP Query User{57A6F515-61D3-42ED-B801-D9B7AA60BA66}C:\users\szymo\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe] => (Allow) C:\users\szymo\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe => Brak pliku FirewallRules: [TCP Query User{05243A53-F005-465C-BDCE-BEF8582330AE}C:\users\szymo\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2545_gtaprocess.exe] => (Allow) C:\users\szymo\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2545_gtaprocess.exe => Brak pliku FirewallRules: [UDP Query User{6AD1FC46-5F59-44FC-890D-5B6E2441E22A}C:\users\szymo\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2545_gtaprocess.exe] => (Allow) C:\users\szymo\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2545_gtaprocess.exe => Brak pliku FirewallRules: [TCP Query User{9B08EC93-7AFC-48F3-BE11-35C531B79233}C:\users\szymo\appdata\roaming\.dllbackups\data\modules\dll-host\downloads\phoenix-gpu\phoenixminer.exe] => (Block) C:\users\szymo\appdata\roaming\.dllbackups\data\modules\dll-host\downloads\phoenix-gpu\phoenixminer.exe () [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{3ECBB1CF-A95F-4CE0-B4A2-2DCEBD66D91E}C:\users\szymo\appdata\roaming\.dllbackups\data\modules\dll-host\downloads\phoenix-gpu\phoenixminer.exe] => (Block) C:\users\szymo\appdata\roaming\.dllbackups\data\modules\dll-host\downloads\phoenix-gpu\phoenixminer.exe () [Brak podpisu cyfrowego] FirewallRules: [{99C3935E-6075-44B0-B49C-83459DABD8C2}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [TCP Query User{AAB9C413-E01A-4AB6-9A44-1EE5FD4EA54F}D:\steamlibrary\steamapps\common\assettocorsa\acs.exe] => (Allow) D:\steamlibrary\steamapps\common\assettocorsa\acs.exe () [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{A193211D-1077-4FAF-880C-3BD0DDBB97D4}D:\steamlibrary\steamapps\common\assettocorsa\acs.exe] => (Allow) D:\steamlibrary\steamapps\common\assettocorsa\acs.exe () [Brak podpisu cyfrowego] FirewallRules: [{90CFBA81-EE6A-4615-AA17-F220E80202F8}] => (Allow) B:\SteamLibrary\steamapps\common\Animal Shelter Prologue\launcher\PWLauncherBootstrapper.exe () [Brak podpisu cyfrowego] FirewallRules: [{7AD700F3-F8AA-490F-8F00-A37392314AB3}] => (Allow) B:\SteamLibrary\steamapps\common\Animal Shelter Prologue\launcher\PWLauncherBootstrapper.exe () [Brak podpisu cyfrowego] ==================== Punkty Przywracania systemu ========================= 13-01-2022 19:06:15 Driver Booster : Microsoft Visual C++ 2015-2022 Redistributable (x64) ==================== Wadliwe urządzenia w Menedżerze urządzeń ============ ==================== Błędy w Dzienniku zdarzeń: ======================== Dziennik Aplikacja: ================== Error: (01/13/2022 03:37:03 PM) (Source: SecurityCenter) (EventID: 17) (User: ) Description: Centrum zabezpieczeń nie może zweryfikować obiektu wywołującego z powodu błędu %1. Error: (01/13/2022 10:58:36 AM) (Source: MsiInstaller) (EventID: 10005) (User: DESKTOP-TRHAA0E) Description: Produkt: Easy fix 51044 - Ta łatwa poprawka jest nieodpowiednia do tego systemu operacyjnego lub wersji aplikacji. Error: (01/12/2022 05:41:41 PM) (Source: ESENT) (EventID: 455) (User: ) Description: taskhostw (7160,R,98) WebCacheLocal: Wystąpił błąd -1811 (0xfffff8ed) podczas otwierania pliku dziennika C:\Users\szymo\AppData\Local\Microsoft\Windows\WebCache\V010000A.log. Error: (01/12/2022 01:41:37 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas wywoływania procedury QueryFullProcessImageNameW. hr = 0x80070006, Nieprawidłowe dojście. . Operacja: Wykonywanie operacji asynchronicznej Kontekst: Stan bieżący: DoSnapshotSet Error: (01/12/2022 11:11:40 AM) (Source: VSS) (EventID: 8193) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas wywoływania procedury QueryFullProcessImageNameW. hr = 0x80070006, Nieprawidłowe dojście. . Operacja: Wykonywanie operacji asynchronicznej Kontekst: Stan bieżący: DoSnapshotSet Error: (01/12/2022 10:31:53 AM) (Source: VSS) (EventID: 8193) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas wywoływania procedury QueryFullProcessImageNameW. hr = 0x80070006, Nieprawidłowe dojście. . Operacja: Wykonywanie operacji asynchronicznej Kontekst: Stan bieżący: DoSnapshotSet Error: (01/12/2022 10:31:13 AM) (Source: VSS) (EventID: 8193) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas wywoływania procedury QueryFullProcessImageNameW. hr = 0x80070006, Nieprawidłowe dojście. . Operacja: Wykonywanie operacji asynchronicznej Kontekst: Stan bieżący: DoSnapshotSet Error: (01/11/2022 11:15:29 AM) (Source: VSS) (EventID: 8193) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas wywoływania procedury CoCreateInstance. hr = 0x8007045b, Trwa proces zamykania systemu. . Dziennik System: ============= Error: (01/15/2022 12:51:34 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa jhi_service zależy od usługi iphlpsvc, której nie można uruchomić z powodu następującego błędu: Uruchomienie usługi zależności lub grupy nie powiodło się. Error: (01/15/2022 12:51:34 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa iphlpsvc zależy od usługi WinHttpAutoProxySvc, której nie można uruchomić z powodu następującego błędu: Nie można uruchomić określonej usługi, ponieważ jest ona wyłączona lub ponieważ nie są włączone skojarzone z nią urządzenia. Error: (01/15/2022 12:51:21 PM) (Source: sfdrv01) (EventID: 12) (User: ) Description: Event-ID 12 Error: (01/15/2022 12:29:55 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa NVIDIA LocalSystem Container niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 6000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (01/15/2022 12:29:55 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa NVIDIA LocalSystem Container zakończyła działanie; wystąpił następujący błąd: Plik wykonywalny polecenia rodzajowego zwrócił wynik wskazujący błąd. Error: (01/15/2022 10:19:36 AM) (Source: Schannel) (EventID: 4103) (User: ZARZĄDZANIE NT) Description: Wystąpił błąd krytyczny podczas tworzenia poświadczeń TLS klient. Stan błędu wewnętrznego: 10013. Error: (01/15/2022 07:13:15 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa jhi_service zależy od usługi iphlpsvc, której nie można uruchomić z powodu następującego błędu: Uruchomienie usługi zależności lub grupy nie powiodło się. Error: (01/15/2022 07:13:15 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa iphlpsvc zależy od usługi WinHttpAutoProxySvc, której nie można uruchomić z powodu następującego błędu: Nie można uruchomić określonej usługi, ponieważ jest ona wyłączona lub ponieważ nie są włączone skojarzone z nią urządzenia. Windows Defender: ================ Date: 2021-02-12 12:18:52 Description: Produkt Program antywirusowy Microsoft Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz: https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/DefenderControl&threatid=2147746246&enterprise=0 Nazwa: HackTool:Win32/DefenderControl Identyfikator: 2147746246 Ważność: Wysoki Kategoria: Narzędzie Ścieżka: file:_C:\Users\szymo\AppData\Local\Temp\727.tmp\Bypass.exe Pochodzenie wykrycia: Komputer lokalny Typ wykrycia: Konkretne Źródło wykrycia: Ochrona w czasie rzeczywistym Użytkownik: DESKTOP-TRHAA0E\szymon Nazwa procesu: C:\Users\szymo\Downloads\PACZKA MINECRAFT WURST\Fabric-installer-0.6.1.51.exe Wersja analizy zabezpieczeń: AV: 1.331.789.0, AS: 1.331.789.0, NIS: 1.331.789.0 Wersja aparatu: AM: 1.1.17800.5, NIS: 1.1.17800.5 Date: 2021-02-12 12:18:51 Description: Produkt Program antywirusowy Microsoft Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz: https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Tiggre!rfn&threatid=2147723625&enterprise=0 Nazwa: Trojan:Win32/Tiggre!rfn Identyfikator: 2147723625 Ważność: Poważny Kategoria: Koń trojański Ścieżka: file:_C:\Users\szymo\AppData\Local\Temp\727.tmp\Process.exe Pochodzenie wykrycia: Komputer lokalny Typ wykrycia: Konkretne Źródło wykrycia: Ochrona w czasie rzeczywistym Użytkownik: DESKTOP-TRHAA0E\szymon Nazwa procesu: C:\Users\szymo\Downloads\PACZKA MINECRAFT WURST\Fabric-installer-0.6.1.51.exe Wersja analizy zabezpieczeń: AV: 1.331.789.0, AS: 1.331.789.0, NIS: 1.331.789.0 Wersja aparatu: AM: 1.1.17800.5, NIS: 1.1.17800.5 Date: 2021-02-12 12:16:44 Description: Produkt Program antywirusowy Microsoft Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz: https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/DefenderControl&threatid=2147746246&enterprise=0 Nazwa: HackTool:Win32/DefenderControl Identyfikator: 2147746246 Ważność: Wysoki Kategoria: Narzędzie Ścieżka: file:_C:\Users\szymo\AppData\Local\Temp\F6E.tmp\Bypass.exe Pochodzenie wykrycia: Komputer lokalny Typ wykrycia: Konkretne Źródło wykrycia: Ochrona w czasie rzeczywistym Użytkownik: DESKTOP-TRHAA0E\szymon Nazwa procesu: C:\Windows\System32\cmd.exe Wersja analizy zabezpieczeń: AV: 1.331.789.0, AS: 1.331.789.0, NIS: 1.331.789.0 Wersja aparatu: AM: 1.1.17800.5, NIS: 1.1.17800.5 Date: 2021-02-12 12:16:43 Description: Produkt Program antywirusowy Microsoft Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz: https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/DefenderControl&threatid=2147746246&enterprise=0 Nazwa: HackTool:Win32/DefenderControl Identyfikator: 2147746246 Ważność: Wysoki Kategoria: Narzędzie Ścieżka: file:_C:\Users\szymo\AppData\Local\Temp\F6E.tmp\Bypass.exe Pochodzenie wykrycia: Komputer lokalny Typ wykrycia: Konkretne Źródło wykrycia: Ochrona w czasie rzeczywistym Użytkownik: DESKTOP-TRHAA0E\szymon Nazwa procesu: C:\Users\szymo\Downloads\PACZKA MINECRAFT WURST\Fabric-installer-0.6.1.51.exe Wersja analizy zabezpieczeń: AV: 1.331.789.0, AS: 1.331.789.0, NIS: 1.331.789.0 Wersja aparatu: AM: 1.1.17800.5, NIS: 1.1.17800.5 Date: 2021-02-12 12:16:42 Description: Produkt Program antywirusowy Microsoft Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz: https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Tiggre!rfn&threatid=2147723625&enterprise=0 Nazwa: Trojan:Win32/Tiggre!rfn Identyfikator: 2147723625 Ważność: Poważny Kategoria: Koń trojański Ścieżka: file:_C:\Users\szymo\AppData\Local\Temp\F6E.tmp\Process.exe Pochodzenie wykrycia: Komputer lokalny Typ wykrycia: Konkretne Źródło wykrycia: Ochrona w czasie rzeczywistym Użytkownik: DESKTOP-TRHAA0E\szymon Nazwa procesu: C:\Users\szymo\Downloads\PACZKA MINECRAFT WURST\Fabric-installer-0.6.1.51.exe Wersja analizy zabezpieczeń: AV: 1.331.789.0, AS: 1.331.789.0, NIS: 1.331.789.0 Wersja aparatu: AM: 1.1.17800.5, NIS: 1.1.17800.5  CodeIntegrity: =============== Date: 2022-01-12 00:47:28 Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume6\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Statystyki pamięci =========================== BIOS: American Megatrends Inc. 2.H0 06/16/2018 Płyta główna: MSI H110M PRO-VD (MS-7996) Procesor: Intel(R) Core(TM) i5-7400 CPU @ 3.00GHz Procent pamięci w użyciu: 24% Całkowita pamięć fizyczna: 16348.21 MB Dostępna pamięć fizyczna: 12409.56 MB Całkowita pamięć wirtualna: 17372.21 MB Dostępna pamięć wirtualna: 10545.71 MB ==================== Dyski ================================ Drive b: (Gry i programy) (Fixed) (Total:465.75 GB) (Free:103.04 GB) NTFS Drive c: () (Fixed) (Total:111.16 GB) (Free:24.13 GB) NTFS Drive d: () (Fixed) (Total:930.93 GB) (Free:452.27 GB) NTFS \\?\Volume{54e69b8f-6d40-477b-b269-3db74a39b8eb}\ (Odzyskiwanie) (Fixed) (Total:0.52 GB) (Free:0.09 GB) NTFS \\?\Volume{decb9055-087a-47a5-9ba5-1809e7795032}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Tablica partycji ==================== ========================================================== Disk: 0 (Size: 111.8 GB) (Disk ID: 5DCD6C45) Partition: GPT. ========================================================== Disk: 1 (Size: 931.5 GB) (Disk ID: 6B958CC2) Partition: GPT. ========================================================== Disk: 2 (Protective MBR) (Size: 465.8 GB) (Disk ID: 00000000) Partition: GPT. ==================== Koniec Addition.txt =======================