Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 02-03-2023 Uruchomiony przez Tomas (02-03-2023 18:15:10) Uruchomiony z C:\Users\Tomas\Downloads\FRST-OlderVersion Microsoft Windows 11 Pro Wersja 21H2 22000.1574 (X64) (2022-06-22 11:51:44) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= (Załączenie wejścia w fixlist spowoduje jego usunięcie.) Administrator (S-1-5-21-290103846-3883716069-1865341971-500 - Administrator - Disabled) Gość (S-1-5-21-290103846-3883716069-1865341971-501 - Limited - Disabled) Konto domyślne (S-1-5-21-290103846-3883716069-1865341971-503 - Limited - Disabled) Tomas (S-1-5-21-290103846-3883716069-1865341971-1001 - Administrator - Enabled) => C:\Users\Tomas WDAGUtilityAccount (S-1-5-21-290103846-3883716069-1865341971-504 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Malwarebytes (Enabled - Up to date) {0D452135-A081-B000-D6B6-132E52638543} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) @BIOS (HKLM-x32\...\{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 4.22.0510.1 - GIGABYTE) Hidden @BIOS (HKLM-x32\...\InstallShield_{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 4.22.0510.1 - GIGABYTE) AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 23.2.2 - Advanced Micro Devices, Inc.) Aplikacje Microsoft 365 dla przedsiębiorstw - pl-pl (HKLM\...\O365ProPlusRetail - pl-pl) (Version: 16.0.16026.20200 - Microsoft Corporation) APP Center (HKLM-x32\...\{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 3.22.0510.1 - Gigabyte) Hidden APP Center (HKLM-x32\...\InstallShield_{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 3.22.0510.1 - Gigabyte) Asystent instalacji systemu Windows 11 (HKLM-x32\...\{115DF11E-4B4C-4EA9-9A79-00DB0C7EF02D}) (Version: 1.4.19041.1703 - Microsoft Corporation) AutoHotkey 1.1.34.04 (HKLM\...\AutoHotkey) (Version: 1.1.34.04 - Lexikos) Bandicam (HKLM-x32\...\Bandicam) (Version: 6.0.6.2034 - Bandicam.com) Bandicam MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandicam.com) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Blitz (HKU\S-1-5-21-290103846-3883716069-1865341971-1001\...\153f8ce0-b97a-575b-ba12-4ff8b1481894) (Version: 2.0.92 - Blitz, Inc.) Branding64 (HKLM\...\{0DB6E0DC-607A-42C1-A3CE-7567A9F85AF4}) (Version: 1.00.0008 - Advanced Micro Devices, Inc.) Hidden Call of Duty Modern Warfare (HKLM-x32\...\Call of Duty Modern Warfare) (Version: - Blizzard Entertainment) Discord (HKU\S-1-5-21-290103846-3883716069-1865341971-1001\...\Discord) (Version: 1.0.9005 - Discord Inc.) Dynamic Application Loader Host Interface Service (HKLM\...\{439E5170-CFC8-4944-8119-746ECF219399}) (Version: 1.0.0.0 - Intel Corporation) Hidden EasyTuneEngineService (HKLM-x32\...\{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.22.0504 - GIGABYTE) Hidden EasyTuneEngineService (HKLM-x32\...\InstallShield_{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.22.0504 - GIGABYTE) ENE_AIC_Marvell_HAL (HKLM\...\{085E2365-0A70-4230-B664-02D5E4FE7E9C}) (Version: 1.0.7.0 - ENE TECHNOLOGY INC.) Hidden ENE_AIC_Marvell_HAL (HKLM-x32\...\{887e18fb-6bc3-4cd4-b34e-32d9ff71bbae}) (Version: 1.0.7.0 - ENE TECHNOLOGY INC.) Hidden ENE_DRAM_RGB_AIO (HKLM\...\{1745D314-9077-46C9-8562-1C62BAE189B7}) (Version: 1.0.3.44 - Ene Tech.) Hidden ENE_DRAM_RGB_AIO (HKLM-x32\...\{deca4146-7b38-4743-854b-105eddb7331b}) (Version: 1.0.3.44 - Ene Tech.) Hidden ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.0.9.13 - ENE TECHNOLOGY INC.) Hidden ENE_EHD_M2_HAL (HKLM-x32\...\{e82fcc79-4f73-46e7-859e-08fd9586ed61}) (Version: 1.0.9.13 - ENE TECHNOLOGY INC.) Hidden ENE_MousePad_HAL (HKLM\...\{9E97178A-ADB8-4778-BE60-7E28E2A72721}) (Version: 1.0.1.8 - ENE TECHNOLOGY INC.) Hidden ENE_MousePad_HAL (HKLM-x32\...\{bf256b46-8ff7-48be-ab7f-5661e9a0651f}) (Version: 1.0.1.8 - ENE TECHNOLOGY INC.) Hidden ENE_X_AIC_HAL (HKLM\...\{CF703694-01C6-4062-B797-84DB215662BC}) (Version: 1.0.4.0 - ENE TECHNOLOGY INC.) Hidden ENE_X_AIC_HAL (HKLM-x32\...\{ec10ac91-2e61-460a-b493-33f794a07682}) (Version: 1.0.4.0 - ENE TECHNOLOGY INC.) Hidden ENE_X-JMI_HAL (HKLM\...\{2B8E611F-0B51-4FAC-87BB-AF50D82E7DDA}) (Version: 1.0.8.0 - ENE Tech) Hidden ENE_X-JMI_HAL (HKLM-x32\...\{7eeee667-b295-4acd-9a4e-1160421db765}) (Version: 1.0.8.0 - ENE Tech) Hidden Epic Games Launcher (HKLM-x32\...\{2903C323-896A-4129-A163-27DAC73A32B9}) (Version: 1.3.23.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Epic Online Services (HKLM-x32\...\{758842D2-1538-4008-A8E3-66F65A061C52}) (Version: 2.0.33.0 - Epic Games, Inc.) FACEIT (HKU\S-1-5-21-290103846-3883716069-1865341971-1001\...\FACEIT) (Version: 1.31.10 - FACEIT Ltd.) FACEIT Anti-Cheat (HKLM\...\{1419E44C-0EF4-4822-9194-9F1A4D43973D}_is1) (Version: 2.1 - FACEIT LTD) FastBoot (HKLM-x32\...\{FA8FB4F2-F524-48E1-A06C-45602FBF26CD}) (Version: 1.21.1214 - GIGABYTE) Hidden FastBoot (HKLM-x32\...\InstallShield_{FA8FB4F2-F524-48E1-A06C-45602FBF26CD}) (Version: 1.21.1214 - GIGABYTE) FiveM (HKU\S-1-5-21-290103846-3883716069-1865341971-1001\...\CitizenFX_FiveM) (Version: - Cfx.re) GameRanger (HKU\S-1-5-21-290103846-3883716069-1865341971-1001\...\GameRanger) (Version: - GameRanger Technologies) GlobalProtect (HKLM\...\{851C22F2-3941-47C4-B2CC-CB4C0766EB18}) (Version: 5.2.12 - Palo Alto Networks) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 110.0.5481.178 - Google LLC) HL-1110 series (HKLM-x32\...\{4F2442B7-A89E-42A4-8F0E-6937499855CA}) (Version: 1.0.1.0 - Brother Industries, Ltd.) HWiNFO64 Version 7.26 (HKLM\...\HWiNFO64_is1) (Version: 7.26 - Martin Malik - REALiX) Intel(R) Chipset Device Software (HKLM\...\{C6A1126A-6ED6-4231-BA48-4DA77986FA1C}) (Version: 10.1.18950.8298 - Intel Corporation) Hidden Intel(R) Chipset Device Software (HKLM-x32\...\{db747e10-c752-4e5a-b099-922800123b36}) (Version: 10.1.18950.8298 - Intel(R) Corporation) Intel(R) HID Event Filter (HKLM-x32\...\3FB06EEC-013D-4366-9918-71B97DFB84EB) (Version: 2.2.1.386 - Intel Corporation) Intel(R) LMS (HKLM\...\{DFFC9992-3A41-4155-A834-9831C6E58D98}) (Version: 1.0.0.0 - Intel Corporation) Hidden Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2130.16.0.2387 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{FA6E1882-F6C1-47E1-A6CB-FC1F5460E311}) (Version: 1.0.0.0 - Intel Corporation) Hidden Intel(R) Management Engine Driver (HKLM\...\{38F0D70E-8F07-4BF9-A5E0-6946C3D614D8}) (Version: 1.0.0.0 - Intel Corporation) Hidden Intel(R) Serial IO (HKLM\...\{8EC4CB19-850D-4BD4-B914-F63DF7DAD67D}) (Version: 30.100.2131.26 - Intel Corporation) Hidden Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.2131.26 - Intel Corporation) Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden League of Legends (HKU\S-1-5-21-290103846-3883716069-1865341971-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc) Majestic Launcher 2.1.11 (HKU\S-1-5-21-290103846-3883716069-1865341971-1001\...\30cbf145-5beb-5fca-b9ac-f3018051a1e2) (Version: 2.1.11 - Majestic RP) Malwarebytes version 4.5.23.241 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.23.241 - Malwarebytes) Medal (HKU\S-1-5-21-290103846-3883716069-1865341971-1001\...\Medal) (Version: 4.1936.0 - Medal B.V.) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 110.0.1587.57 - Microsoft Corporation) Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 23.007.0109.0004 - Microsoft Corporation) Microsoft Teams (HKU\S-1-5-21-290103846-3883716069-1865341971-1001\...\Teams) (Version: 1.6.00.1381 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{843E8BAC-637E-4354-94D7-73D910E2168F}) (Version: 4.71.0.0 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.31.31103 (HKLM-x32\...\{2aaf1df0-eb13-4099-9992-962bb4e596d1}) (Version: 14.31.31103.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.31.31103 (HKLM-x32\...\{41d7b770-418a-43b7-95a5-f925fff05789}) (Version: 14.31.31103.0 - Microsoft Corporation) Microsoft Visual C++ 2022 X64 Additional Runtime - 14.31.31103 (HKLM\...\{A977984B-9244-49E3-BD24-43F0A8009667}) (Version: 14.31.31103 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.31.31103 (HKLM\...\{A181A302-3F6D-4BAD-97A8-A426A6499D78}) (Version: 14.31.31103 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X86 Additional Runtime - 14.31.31103 (HKLM-x32\...\{5720EC03-F26F-40B7-980C-50B5D420B5DE}) (Version: 14.31.31103 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.31.31103 (HKLM-x32\...\{799E3FFF-705C-461F-B400-6DE27398B3E5}) (Version: 14.31.31103 - Microsoft Corporation) Hidden MSI Afterburner 4.6.4 (HKLM-x32\...\Afterburner) (Version: 4.6.4 - MSI Co., LTD) OBS Studio (HKLM-x32\...\OBS Studio) (Version: 29.0.2 - OBS Project) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.15726.20202 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.16026.20200 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0415-1000-0000000FF1CE}) (Version: 16.0.15726.20202 - Microsoft Corporation) Hidden Patriot Viper M2 SSD RGB (HKLM\...\{8B4C0A3D-C135-4E1F-98D8-3926494B4D61}) (Version: 1.1.0.1 - Patriot Memory) Hidden Patriot Viper M2 SSD RGB (HKLM-x32\...\{07236f40-ec25-4646-8cb6-b6aaf1597324}) (Version: 1.1.0.1 - Patriot Memory) Hidden PokerStars.net (HKLM-x32\...\PokerStars.net) (Version: - PokerStars.net) RadeonPro 1.0 (Build 1.1.1.0) (HKLM-x32\...\RadeonPro_is1) (Version: - ) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 11.7.0318.2022 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9205.1 - Realtek Semiconductor Corp.) RGB Fusion (HKLM-x32\...\{FFA8F1FA-3C2C-4A94-AC0B-0DF47272C25F}) (Version: 3.22.0525.1 - Gigabyte) RivaTuner Statistics Server 7.3.3 (HKLM-x32\...\RTSS) (Version: 7.3.3 - Unwinder) Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.70.1389 - Rockstar Games) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.1.6.7 - Rockstar Games) SIV (HKLM-x32\...\{AAA057C3-10DC-4EB9-A3D6-8208C1BB7411}) (Version: 1.22.0309 - GIGABYTE) Hidden SIV (HKLM-x32\...\InstallShield_{AAA057C3-10DC-4EB9-A3D6-8208C1BB7411}) (Version: 1.22.0309 - GIGABYTE) Sprawdzanie kondycji komputera z systemem Windows (HKLM\...\{41E85393-7ED3-4C54-AC25-51F8CDF39CDF}) (Version: 3.6.2204.08001 - Microsoft Corporation) Sprawdzanie kondycji komputera z systemem Windows (HKLM\...\{82AAB16D-A8C4-4E74-A575-70145EAEDB1D}) (Version: 3.7.2204.15001 - Microsoft Corporation) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) SteelSeries GG 33.0.0 (HKLM\...\SteelSeries GG) (Version: 33.0.0 - SteelSeries ApS) Środowisko uruchomieniowe Microsoft Edge WebView2 (HKLM-x32\...\Microsoft EdgeWebView) (Version: 110.0.1587.57 - Microsoft Corporation) Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.5.0.8070 - Microsoft Corporation) Telegram Desktop (HKU\S-1-5-21-290103846-3883716069-1865341971-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 4.3.1 - Telegram FZ-LLC) WarCraft III wersja 1.26a (HKLM-x32\...\WarCraft III_is1) (Version: 1.26a - Blizzard Entertainment) WD P40 Game Drive (HKLM\...\{EE55DBAE-ECDD-4ADD-AAB5-23DE848B0996}) (Version: 1.0.2.18 - Western Digital Corporation) Hidden WD P40 Game Drive (HKLM-x32\...\{72b1a866-fc31-4381-bff3-fa6cd8823777}) (Version: 1.0.2.18 - Western Digital Corporation) Hidden WinRAR 6.11 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 6.11.0 - win.rar GmbH) X-Mouse Button Control 2.19.2 (HKLM-x32\...\X-Mouse Button Control) (Version: 2.19.2 - Highresolution Enterprises) Packages: ========= AMD Radeon Software -> C:\Program Files\AMD\CNext\CNext [2023-03-02] (0) AV1 Video Extension -> C:\Program Files\WindowsApps\Microsoft.AV1VideoExtension_1.1.52851.0_x64__8wekyb3d8bbwe [2023-01-22] (Microsoft Corporation) Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.15.12020.0_x64__8wekyb3d8bbwe [2022-12-09] (Microsoft Studios) [MS Ad] WindowsAppRuntime.1.2 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.2_2000.777.2143.0_x64__8wekyb3d8bbwe [2023-02-23] (Microsoft Corporation) WindowsAppRuntime.1.2 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.2_2000.777.2143.0_x86__8wekyb3d8bbwe [2023-02-23] (Microsoft Corporation) WinRAR -> C:\Program Files\WinRAR [2022-06-23] (0) ==================== Niestandardowe rejestracje CLSID (filtrowane): ============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-290103846-3883716069-1865341971-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Tomas\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.22349.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-290103846-3883716069-1865341971-1001_Classes\CLSID\{D3E34B21-9D75-101A-8C3D-00AA001A1652}\localserver32 -> C:\Program Files\WindowsApps\Microsoft.Paint_11.2301.22.0_x64__8wekyb3d8bbwe\PaintApp\mspaint.exe () [Brak podpisu cyfrowego] ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.007.0109.0004\FileSyncShell64.dll [2023-02-01] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.007.0109.0004\FileSyncShell64.dll [2023-02-01] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.007.0109.0004\FileSyncShell64.dll [2023-02-01] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.007.0109.0004\FileSyncShell64.dll [2023-02-01] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.007.0109.0004\FileSyncShell64.dll [2023-02-01] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.007.0109.0004\FileSyncShell64.dll [2023-02-01] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.007.0109.0004\FileSyncShell64.dll [2023-02-01] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.007.0109.0004\FileSyncShell64.dll [2023-02-01] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.007.0109.0004\FileSyncShell64.dll [2023-02-01] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.007.0109.0004\FileSyncShell64.dll [2023-02-01] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.007.0109.0004\FileSyncShell64.dll [2023-02-01] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.007.0109.0004\FileSyncShell64.dll [2023-02-01] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.007.0109.0004\FileSyncShell64.dll [2023-02-01] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.007.0109.0004\FileSyncShell64.dll [2023-02-01] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.007.0109.0004\FileSyncShell64.dll [2023-02-01] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2023-03-02] (Malwarebytes Inc. -> Malwarebytes) ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.007.0109.0004\FileSyncShell64.dll [2023-02-01] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.007.0109.0004\FileSyncShell64.dll [2023-02-01] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2023-03-02] (Malwarebytes Inc. -> Malwarebytes) ==================== Codecs (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Drivers32: [VIDC.RTV1] => C:\WINDOWS\system32\rtvcvfw64.dll [246272 2012-09-28] () [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.mjpg] => C:\WINDOWS\system32\bdmjpeg64.dll [75248 2017-01-26] (Bandicam Company -> ) HKLM\...\Drivers32: [vidc.mpeg] => C:\WINDOWS\system32\bdmpegv64.dll [75272 2017-01-26] (Bandicam Company -> ) HKLM\...\Drivers32: [msacm.bdmpeg] => C:\WINDOWS\system32\bdmpega64.acm [75784 2017-01-26] (Bandicam Company -> ) HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.mjpg] => C:\Windows\SysWOW64\bdmjpeg.dll [71152 2017-01-26] (Bandicam Company -> ) HKLM\...\Drivers32: [vidc.mpeg] => C:\Windows\SysWOW64\bdmpegv.dll [71176 2017-01-26] (Bandicam Company -> ) HKLM\...\Drivers32: [msacm.bdmpeg] => C:\Windows\SysWOW64\bdmpega.acm [71176 2017-01-26] (Bandicam Company -> ) ==================== Skróty & WMI ======================== ==================== Załadowane moduły (filtrowane) ============= 2023-02-04 17:19 - 2023-02-01 19:33 - 000628224 _____ () [Brak podpisu cyfrowego] \\?\C:\Users\Tomas\AppData\Local\MajesticLauncherEU\resources\app.asar.unpacked\node_modules\registry-js\build\Release\registry.node 2022-07-12 20:03 - 2009-02-27 15:38 - 000139264 ____R () [Brak podpisu cyfrowego] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll 2021-12-03 14:36 - 2021-12-03 14:36 - 000232960 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\MSI Afterburner\RTCore.dll 2021-12-03 14:36 - 2021-12-03 14:36 - 000057344 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\MSI Afterburner\RTFC.dll 2021-12-03 14:36 - 2021-12-03 14:36 - 000668672 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\MSI Afterburner\RTHAL.dll 2021-12-03 14:36 - 2021-12-03 14:36 - 000074240 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\MSI Afterburner\RTMUI.dll 2021-12-03 14:36 - 2021-12-03 14:36 - 000371712 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\MSI Afterburner\RTUI.dll 2022-06-22 12:23 - 2022-11-07 11:17 - 000387072 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libegl.dll 2022-06-22 12:23 - 2022-11-07 11:17 - 008052736 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libglesv2.dll 2023-02-04 17:19 - 2023-02-01 19:33 - 002767872 _____ () [Brak podpisu cyfrowego] C:\Users\Tomas\AppData\Local\MajesticLauncherEU\ffmpeg.dll 2023-02-04 17:19 - 2023-02-01 19:33 - 000484352 _____ () [Brak podpisu cyfrowego] C:\Users\Tomas\AppData\Local\MajesticLauncherEU\libegl.dll 2023-02-04 17:19 - 2023-02-01 19:33 - 007535104 _____ () [Brak podpisu cyfrowego] C:\Users\Tomas\AppData\Local\MajesticLauncherEU\libglesv2.dll 2023-02-04 17:19 - 2023-02-01 19:33 - 005133824 _____ () [Brak podpisu cyfrowego] C:\Users\Tomas\AppData\Local\MajesticLauncherEU\vk_swiftshader.dll 2022-07-12 20:03 - 2008-08-18 17:27 - 000122880 ____N (Brother Industries, Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Browny02\brlmw03a.dll 2022-07-12 20:03 - 2012-07-13 12:09 - 000385024 ____N (Brother Industries, Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Browny02\BrMonitor.dll 2022-07-12 20:03 - 2011-02-28 10:32 - 000208896 ____N (Brother Industries, Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Browny02\Brother\BrFirmUpdateCheck.dll 2022-07-12 20:03 - 2012-08-30 14:30 - 002040832 ____N (Brother Industries, Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Browny02\Brother\BrStMonWRes.dll 2021-11-05 16:07 - 2021-11-05 16:07 - 000236544 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\yccV3.dll 2022-08-17 23:06 - 2022-08-17 23:06 - 002146304 _____ (Holtek Semiconductor Inc.) [Brak podpisu cyfrowego] C:\Program Files\SteelSeries\GG\apps\engine\HIDDLL.dll 2022-08-17 23:06 - 2022-08-17 23:06 - 002284032 _____ (Holtek) [Brak podpisu cyfrowego] C:\Program Files\SteelSeries\GG\apps\engine\ISPDLL.dll 2023-03-02 17:12 - 2013-11-04 17:25 - 000034432 _____ (JOHN MAUTARI -> Mr. John aka japamd) [Brak podpisu cyfrowego] [Plik w użyciu] C:\Program Files (x86)\RadeonPro\RPSupport.dll 2022-05-23 17:35 - 2022-05-23 17:35 - 002151424 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Brak podpisu cyfrowego] C:\Program Files\Palo Alto Networks\GlobalProtect\LIBEAY32.dll 2022-05-23 17:35 - 2022-05-23 17:35 - 000428544 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Brak podpisu cyfrowego] C:\Program Files\Palo Alto Networks\GlobalProtect\SSLEAY32.dll 2021-06-22 14:45 - 2021-06-22 14:45 - 009127424 _____ (TODO: ) [Brak podpisu cyfrowego] C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GbtNvGpuLib.dll ==================== Alternate Data Streams (filtrowane) ======== (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\ProgramData:err [1100] AlternateDataStreams: C:\Users\All Users:err [1100] AlternateDataStreams: C:\ProgramData\Dane aplikacji:err [1100] AlternateDataStreams: C:\ProgramData\sldh.dat:136096DD5B [3434] AlternateDataStreams: C:\ProgramData\sldh.dat:A18AAFCFAA [3434] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini:B1DA6C571C [3434] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini:41964AA945 [3434] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk:F20EF51E1F [3434] AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [4056] AlternateDataStreams: C:\Users\Public\Documents\sldh.dat:440BDC81C7 [3434] AlternateDataStreams: C:\Users\Tomas\Dane aplikacji:00e481b5e22dbe1f649fcddd505d3eb7 [394] AlternateDataStreams: C:\Users\Tomas\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394] ==================== Tryb awaryjny (filtrowane) ================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Powiązania plików (filtrowane) ================= ==================== Internet Explorer (filtrowane) ========== BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2023-02-03] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2022-12-12] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-02-03] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-02-03] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-02-03] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-02-03] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-02-03] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-02-03] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-02-03] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-02-03] (Microsoft Corporation -> Microsoft Corporation) (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) IE trusted site: HKU\S-1-5-21-290103846-3883716069-1865341971-1001\...\sharepoint.com -> hxxps://m365ht-files.sharepoint.com ==================== Hosts - zawartość: ========================= (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2019-12-07 10:14 - 2019-12-07 10:12 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Inne obszary =========================== (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-290103846-3883716069-1865341971-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Tomas\Desktop\bocian.jpg DNS Servers: 192.168.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Załączenie wejścia w fixlist spowoduje jego usunięcie.) HKLM\...\StartupApproved\Run: => "GlobalProtect" HKLM\...\StartupApproved\Run: => "XMouseButtonControl" HKLM\...\StartupApproved\Run32: => "TeamsMachineInstaller" HKU\S-1-5-21-290103846-3883716069-1865341971-1001\...\StartupApproved\StartupFolder: => "GameRanger.lnk" HKU\S-1-5-21-290103846-3883716069-1865341971-1001\...\StartupApproved\Run: => "EpicGamesLauncher" HKU\S-1-5-21-290103846-3883716069-1865341971-1001\...\StartupApproved\Run: => "com.blitz.app" HKU\S-1-5-21-290103846-3883716069-1865341971-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_5C0488033502362AC4283C7AB99D5FE1" HKU\S-1-5-21-290103846-3883716069-1865341971-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams" HKU\S-1-5-21-290103846-3883716069-1865341971-1001\...\StartupApproved\Run: => "Medal" ==================== Reguły Zapory systemu Windows (filtrowane) ================ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{36A60F21-8AD3-43A9-82FA-D0B3192A8485}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{DC186811-D245-43FE-9CBB-9C051F97E29F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{FC556101-50E9-4926-B091-0F66CF8F2D9C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{54DA6CFB-72E1-4B91-A8E6-95AC42EAC767}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{B9996A59-F888-4039-B228-9596CAF30C32}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{B2192030-EAFF-45A2-88E8-921BE2C8AB6D}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{F96DB089-61F4-4F85-9257-8C30457DFFE2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> ) FirewallRules: [{F53EA7E8-5E74-46EF-96A5-D05A94CD5DEB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> ) FirewallRules: [{CC0DEF34-6D8B-4BAD-9E22-99AB8167B6B1}] => (Allow) C:\asmdata\Servers\Server1\ShooterGame\Binaries\Win64\ShooterGameServer.exe => Brak pliku FirewallRules: [{806765D2-5A89-48FB-A1EA-8E599FFE9F32}] => (Allow) C:\asmdata\Servers\Server1\ShooterGame\Binaries\Win64\ShooterGameServer.exe => Brak pliku FirewallRules: [TCP Query User{F7302090-3C29-4916-93E5-6C2C7619F1D3}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.) FirewallRules: [UDP Query User{80568DE6-1E4B-484C-BAC8-930636EF47C3}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.) FirewallRules: [TCP Query User{556F4ED7-38EA-407D-AAB0-D5092E25BF50}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Block) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => Brak pliku FirewallRules: [UDP Query User{738B53AC-8FDC-41F8-9A4F-E2928094BAB3}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Block) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => Brak pliku FirewallRules: [TCP Query User{941F691C-1AF8-4DB1-936C-8A5CC89B9191}C:\users\tomas\appdata\local\faceit\app-1.31.7\faceit.exe] => (Allow) C:\users\tomas\appdata\local\faceit\app-1.31.7\faceit.exe => Brak pliku FirewallRules: [UDP Query User{A141FFF9-1641-4647-AD9E-91ADEA4E41D4}C:\users\tomas\appdata\local\faceit\app-1.31.7\faceit.exe] => (Allow) C:\users\tomas\appdata\local\faceit\app-1.31.7\faceit.exe => Brak pliku FirewallRules: [{5FF6A38E-4ED8-4609-B583-C3F5A96D7FA5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Black Squad\binaries\win64\BlackSquadGame.exe => Brak pliku FirewallRules: [{E3AC4652-7184-48B1-B7F8-045A31FDE092}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Black Squad\binaries\win64\BlackSquadGame.exe => Brak pliku FirewallRules: [TCP Query User{57B0BB73-DD59-49E9-80F2-C784D8440229}C:\program files (x86)\call of duty modern warfare\modernwarfare.exe] => (Allow) C:\program files (x86)\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision) FirewallRules: [UDP Query User{534988A9-7259-4B23-AF05-DA9AE49030E6}C:\program files (x86)\call of duty modern warfare\modernwarfare.exe] => (Allow) C:\program files (x86)\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision) FirewallRules: [{48032F5F-83D4-44A0-B700-6708FE54A48F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Cycle\Prospect\Binaries\Win64\Prospect-Win64-Shipping.exe => Brak pliku FirewallRules: [{7DE4AA94-A9B4-441A-A820-F79F6FC3FB4D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Cycle\Prospect\Binaries\Win64\Prospect-Win64-Shipping.exe => Brak pliku FirewallRules: [{745679A8-4179-4EBE-BA76-C97CFA305D40}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Cycle\Prospect\Binaries\Win64\Prospect-Win64-Shipping.exe => Brak pliku FirewallRules: [{3A1E2DB4-7B54-426C-84AD-24B1758AA707}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Cycle\Prospect\Binaries\Win64\Prospect-Win64-Shipping.exe => Brak pliku FirewallRules: [TCP Query User{CEB40E47-B35F-4CC4-8EDD-D6565E2B949E}C:\users\tomas\appdata\roaming\gameranger\gameranger\gameranger.exe] => (Allow) C:\users\tomas\appdata\roaming\gameranger\gameranger\gameranger.exe (GameRanger Technologies -> GameRanger Pty Ltd) FirewallRules: [UDP Query User{0977EA2F-F679-4C13-B54A-5ED5BA8021E2}C:\users\tomas\appdata\roaming\gameranger\gameranger\gameranger.exe] => (Allow) C:\users\tomas\appdata\roaming\gameranger\gameranger\gameranger.exe (GameRanger Technologies -> GameRanger Pty Ltd) FirewallRules: [TCP Query User{C56AFA46-8460-4B2E-8F46-64F4FAEE860F}C:\program files (x86)\warcraft iii\war3.exe] => (Allow) C:\program files (x86)\warcraft iii\war3.exe (Blizzard Entertainment) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{744074E0-3BC4-49D9-93AD-8D834697555A}C:\program files (x86)\warcraft iii\war3.exe] => (Allow) C:\program files (x86)\warcraft iii\war3.exe (Blizzard Entertainment) [Brak podpisu cyfrowego] FirewallRules: [{1446D0D7-1A76-4E80-93A7-096FF090F52B}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{BB00D36E-DAEB-4390-A909-F9EC1893CE05}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{B2602187-E0D5-4A7B-949F-0812C64EE991}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{484868DC-181D-4B67-B589-FFC2E2164D81}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{3BDB4008-372D-462C-85A7-C71251769D9D}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{82A290C6-E391-4E5C-8CEC-BD4242AF0616}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Driver Booster for Steam\DriverBooster.exe (IObit CO., LTD -> IObit) FirewallRules: [{B4B13AEF-EEBC-4E1C-AA78-D0D486C158B0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Driver Booster for Steam\DriverBooster.exe (IObit CO., LTD -> IObit) FirewallRules: [TCP Query User{E286E582-A28B-49D5-B8E5-D02CC1F14EA9}C:\users\tomas\appdata\local\programs\blitz\blitz.exe] => (Allow) C:\users\tomas\appdata\local\programs\blitz\blitz.exe (Swift Media Entertainment, Inc. -> Blitz, Inc.) FirewallRules: [UDP Query User{A9342857-9E6E-4701-B351-CAA03991109D}C:\users\tomas\appdata\local\programs\blitz\blitz.exe] => (Allow) C:\users\tomas\appdata\local\programs\blitz\blitz.exe (Swift Media Entertainment, Inc. -> Blitz, Inc.) FirewallRules: [TCP Query User{36F83D1F-128D-4B58-81D7-5C9A903A4C3F}C:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) C:\program files\rockstar games\grand theft auto v\gta5.exe => Brak pliku FirewallRules: [UDP Query User{8EDB1AB4-74C9-4DC5-9320-99A6687BC9FE}C:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) C:\program files\rockstar games\grand theft auto v\gta5.exe => Brak pliku FirewallRules: [TCP Query User{BDDCAF8D-F907-454A-88E1-690CFFA9935A}C:\users\tomas\appdata\local\discord\app-1.0.9010\discord.exe] => (Allow) C:\users\tomas\appdata\local\discord\app-1.0.9010\discord.exe => Brak pliku FirewallRules: [UDP Query User{449B9981-798C-4123-A279-64BC7789CDC4}C:\users\tomas\appdata\local\discord\app-1.0.9010\discord.exe] => (Allow) C:\users\tomas\appdata\local\discord\app-1.0.9010\discord.exe => Brak pliku FirewallRules: [{30F7152A-C0B1-4592-BE50-2627802CB33F}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23002.403.1788.1930_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{F491376A-1080-4063-9607-0739E424C6C5}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23002.403.1788.1930_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{BE8E8D31-B0C8-4EFC-9330-7643352FC14E}] => (Allow) C:\MAJESTIC_RAGEMP\ragemp_v.exe (RAGE Multiplayer Developers) [Brak podpisu cyfrowego] FirewallRules: [{0E962370-495F-44A1-9AC6-991D41F60585}] => (Allow) C:\MAJESTIC_RAGEMP\ragemp_v.exe (RAGE Multiplayer Developers) [Brak podpisu cyfrowego] FirewallRules: [{E347E195-C564-4A30-A892-3E3D6E91470A}] => (Allow) C:\MAJESTIC_RAGEMP\GTA5.exe (RAGE Multiplayer Developers) [Brak podpisu cyfrowego] FirewallRules: [{9B65287E-A88D-4C67-A68E-3B3AFF99A11D}] => (Allow) C:\MAJESTIC_RAGEMP\GTA5.exe (RAGE Multiplayer Developers) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{C2FE9473-4546-4239-B833-B816095F3CBC}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [UDP Query User{638D5E08-C26D-4239-8B08-02809EBE506A}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [{E30A96CB-E65E-448B-B90F-670C43242AEA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [{D3B7AD3A-7754-4E27-8DA7-8B8D82B0BB3D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [TCP Query User{63EE16D2-3928-45FF-A9E2-D5165496E897}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [UDP Query User{073A52EE-B5E3-42DE-828B-01C0F5C9CA00}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [TCP Query User{1B38D530-46E7-441B-B895-C6BD0D184984}C:\users\tomas\appdata\local\medal\app-4.1936.0\medal.exe] => (Block) C:\users\tomas\appdata\local\medal\app-4.1936.0\medal.exe (Ferox Games B.V. -> Medal B.V.) FirewallRules: [UDP Query User{D39D394D-335E-4FE3-8C8B-009202F3F002}C:\users\tomas\appdata\local\medal\app-4.1936.0\medal.exe] => (Block) C:\users\tomas\appdata\local\medal\app-4.1936.0\medal.exe (Ferox Games B.V. -> Medal B.V.) FirewallRules: [{D22DF215-94CF-4449-9F22-ABF17575C7DC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.94.3422.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{58AD3CB4-AAC6-4EE4-A618-75DBAC8C9A12}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.94.3422.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{6DF9C665-8AE7-49CE-9B33-A4D67F7F7BF9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.94.3422.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{8680808D-FC3E-4DA6-88F4-4814410B27C7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.94.3422.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{0AEFC7E3-C6AB-470E-8101-D740223E6643}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\110.0.1587.57\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{CB0F0F8A-CFC0-4AEE-AF04-0C733F813086}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) ==================== Punkty Przywracania systemu ========================= 24-02-2023 01:25:18 Radeon Installer ==================== Wadliwe urządzenia w Menedżerze urządzeń ============ Name: PANGP Virtual Ethernet Adapter Description: PANGP Virtual Ethernet Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: PaloAltoNetworks Service: PanGpd Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Błędy w Dzienniku zdarzeń: ======================== Dziennik Aplikacja: ================== Error: (03/02/2023 04:30:44 PM) (Source: VSS) (EventID: 13) (User: ) Description: Informacje Usługi kopiowania woluminów w tle: nie można uruchomić serwera usługi COM z identyfikatorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} i nazwą CEventSystem. [0x8007045b, Trwa proces zamykania systemu. ] Error: (02/27/2023 10:37:52 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas wywoływania procedury CoCreateInstance. hr = 0x8007045b, Trwa proces zamykania systemu. . Error: (02/27/2023 10:37:52 PM) (Source: VSS) (EventID: 13) (User: ) Description: Informacje Usługi kopiowania woluminów w tle: nie można uruchomić serwera usługi COM z identyfikatorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} i nazwą CEventSystem. [0x8007045b, Trwa proces zamykania systemu. ] Error: (02/27/2023 10:37:52 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas wywoływania procedury CoCreateInstance. hr = 0x8007045b, Trwa proces zamykania systemu. . Error: (02/27/2023 10:37:52 PM) (Source: VSS) (EventID: 13) (User: ) Description: Informacje Usługi kopiowania woluminów w tle: nie można uruchomić serwera usługi COM z identyfikatorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} i nazwą CEventSystem. [0x8007045b, Trwa proces zamykania systemu. ] Error: (02/24/2023 10:48:29 AM) (Source: VSS) (EventID: 13) (User: ) Description: Informacje Usługi kopiowania woluminów w tle: nie można uruchomić serwera usługi COM z identyfikatorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} i nazwą CEventSystem. [0x8007045b, Trwa proces zamykania systemu. ] Error: (02/24/2023 01:29:44 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Program RadeonSoftware.exe w wersji 10.1.2.1963 przestał współpracować z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemów w oknie Zabezpieczenia i konserwacja w Panelu sterowania. Identyfikator procesu: 44c8 Godzina rozpoczęcia: 01d947e6d8bacdb6 Godzina zakończenia: 4294967295 Ścieżka aplikacji: C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe Identyfikator raportu: d047e516-a00f-45ad-94a4-d43ef3ad6ffe Pełna nazwa pakietu powodującego błąd: AdvancedMicroDevicesInc-RSXCM_22.10.0.0_x64__fhmx3h6dzfmvj Identyfikator aplikacji powiązanej z pakietem powodującym błąd: AMDRadeonSoftwareDesktop Typ zawieszenia: Quiesce Error: (02/24/2023 01:26:42 AM) (Source: VSS) (EventID: 8193) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas wywoływania procedury CoCreateInstance. hr = 0x8007045b, Trwa proces zamykania systemu. . Dziennik System: ============= Error: (03/02/2023 05:27:14 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-4MIGUQ8) Description: Serwer {8CFC164F-4BE5-4FDD-94E9-E2AF73ED4A19} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (03/02/2023 05:25:38 PM) (Source: NetBT) (EventID: 4311) (User: ) Description: Zainicjowanie nie powiodło się, ponieważ nie można utworzyć urządzenia sterownika. Użyj ciągu 025041000001 do identyfikacji interfejsu, którego zainicjowanie nie powiodło się. Reprezentuje on adres MAC błędnego interfejsu lub identyfikator GUID, jeśli interfejs NetBT nie może mapować identyfikatora GUID na adres MAC. Jeśli zarówno adres MAC, jak i identyfikator GUID są niedostępne, ciąg reprezentuje nazwę urządzenia klastra. Error: (03/02/2023 05:25:38 PM) (Source: NetBT) (EventID: 4311) (User: ) Description: Zainicjowanie nie powiodło się, ponieważ nie można utworzyć urządzenia sterownika. Użyj ciągu 025041000001 do identyfikacji interfejsu, którego zainicjowanie nie powiodło się. Reprezentuje on adres MAC błędnego interfejsu lub identyfikator GUID, jeśli interfejs NetBT nie może mapować identyfikatora GUID na adres MAC. Jeśli zarówno adres MAC, jak i identyfikator GUID są niedostępne, ciąg reprezentuje nazwę urządzenia klastra. Error: (03/02/2023 05:25:26 PM) (Source: Application Popup) (EventID: 56) (User: ) Description: ACPI2 Error: (03/02/2023 05:04:46 PM) (Source: NetBT) (EventID: 4311) (User: ) Description: Zainicjowanie nie powiodło się, ponieważ nie można utworzyć urządzenia sterownika. Użyj ciągu 025041000001 do identyfikacji interfejsu, którego zainicjowanie nie powiodło się. Reprezentuje on adres MAC błędnego interfejsu lub identyfikator GUID, jeśli interfejs NetBT nie może mapować identyfikatora GUID na adres MAC. Jeśli zarówno adres MAC, jak i identyfikator GUID są niedostępne, ciąg reprezentuje nazwę urządzenia klastra. Error: (03/02/2023 05:04:46 PM) (Source: NetBT) (EventID: 4311) (User: ) Description: Zainicjowanie nie powiodło się, ponieważ nie można utworzyć urządzenia sterownika. Użyj ciągu 025041000001 do identyfikacji interfejsu, którego zainicjowanie nie powiodło się. Reprezentuje on adres MAC błędnego interfejsu lub identyfikator GUID, jeśli interfejs NetBT nie może mapować identyfikatora GUID na adres MAC. Jeśli zarówno adres MAC, jak i identyfikator GUID są niedostępne, ciąg reprezentuje nazwę urządzenia klastra. Error: (03/02/2023 05:04:34 PM) (Source: Application Popup) (EventID: 56) (User: ) Description: ACPI2 Error: (03/02/2023 04:45:13 PM) (Source: NetBT) (EventID: 4311) (User: ) Description: Zainicjowanie nie powiodło się, ponieważ nie można utworzyć urządzenia sterownika. Użyj ciągu 025041000001 do identyfikacji interfejsu, którego zainicjowanie nie powiodło się. Reprezentuje on adres MAC błędnego interfejsu lub identyfikator GUID, jeśli interfejs NetBT nie może mapować identyfikatora GUID na adres MAC. Jeśli zarówno adres MAC, jak i identyfikator GUID są niedostępne, ciąg reprezentuje nazwę urządzenia klastra. Windows Defender: ================ Date: 2023-02-09 22:06:58 Description: Skanowanie produktu Program antywirusowy Microsoft Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania: {8F23F3FC-4873-4B9D-B2C7-EEE65316D45D} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Szybkie skanowanie Użytkownik: ZARZĄDZANIE NT\SYSTEM Date: 2023-02-05 00:03:27 Description: Funkcja Kontrolowany dostęp do folderu zablokowała aplikacji C:\Program Files\Rockstar Games\Social Club\SocialClubHelper.exe możliwość zmodyfikowania folderu %userprofile%\Documents\Rockstar Games\Social Club\Launcher\Renderer\. Godzina wykrycia: 2023-02-04T23:03:27.676Z Użytkownik: DESKTOP-4MIGUQ8\Tomas Ścieżka: %userprofile%\Documents\Rockstar Games\Social Club\Launcher\Renderer\ Nazwa procesu: C:\Program Files\Rockstar Games\Social Club\SocialClubHelper.exe Wersja analizy zabezpieczeń: 1.381.3126.0 Wersja aparatu: 1.1.19900.2 Wersja produktu: 4.18.2211.5 Date: 2023-02-05 00:03:17 Description: Funkcja Kontrolowany dostęp do folderu zablokowała aplikacji C:\Program Files\Rockstar Games\Launcher\Launcher.exe możliwość zmodyfikowania folderu %userprofile%\Documents\Rockstar Games\Launcher\. Godzina wykrycia: 2023-02-04T23:03:17.962Z Użytkownik: DESKTOP-4MIGUQ8\Tomas Ścieżka: %userprofile%\Documents\Rockstar Games\Launcher\ Nazwa procesu: C:\Program Files\Rockstar Games\Launcher\Launcher.exe Wersja analizy zabezpieczeń: 1.381.3126.0 Wersja aparatu: 1.1.19900.2 Wersja produktu: 4.18.2211.5 Date: 2023-02-05 00:03:17 Description: Funkcja Kontrolowany dostęp do folderu zablokowała aplikacji C:\Users\Tomas\AppData\Local\MajesticLauncherEU\Majestic Launcher.exe możliwość zmodyfikowania folderu %userprofile%\Documents\Rockstar Games\GTA V\. Godzina wykrycia: 2023-02-04T23:03:17.962Z Użytkownik: DESKTOP-4MIGUQ8\Tomas Ścieżka: %userprofile%\Documents\Rockstar Games\GTA V\ Nazwa procesu: C:\Users\Tomas\AppData\Local\MajesticLauncherEU\Majestic Launcher.exe Wersja analizy zabezpieczeń: 1.381.3126.0 Wersja aparatu: 1.1.19900.2 Wersja produktu: 4.18.2211.5 Date: 2023-02-05 00:01:39 Description: Funkcja Kontrolowany dostęp do folderu zablokowała aplikacji C:\Program Files\Rockstar Games\Social Club\SocialClubHelper.exe możliwość zmodyfikowania folderu %userprofile%\Documents\Rockstar Games\Social Club\Launcher\Renderer\Visited Links. Godzina wykrycia: 2023-02-04T23:01:39.023Z Użytkownik: DESKTOP-4MIGUQ8\Tomas Ścieżka: %userprofile%\Documents\Rockstar Games\Social Club\Launcher\Renderer\Visited Links Nazwa procesu: C:\Program Files\Rockstar Games\Social Club\SocialClubHelper.exe Wersja analizy zabezpieczeń: 1.381.3126.0 Wersja aparatu: 1.1.19900.2 Wersja produktu: 4.18.2211.5 Event[0] Date: 2023-03-02 16:41:03 Description: Agent ochrony w czasie rzeczywistym produktu Program antywirusowy Microsoft Defender wykrył błąd i jego uruchomienie nie powiodło się. Funkcja: Przy dostępie Kod błędu: 0x8007043c Opis błędu: Tej usługi nie można uruchomić w trybie awaryjnym Przyczyna: Analiza zabezpieczeń dla oprogramowania chroniącego przed złośliwym kodem przestała działać z nieznanej przyczyny. W niektórych przypadkach problem można rozwiązać, uruchamiając ponownie usługę. Date: 2023-03-02 16:38:47 Description: Agent ochrony w czasie rzeczywistym produktu Program antywirusowy Microsoft Defender wykrył błąd i jego uruchomienie nie powiodło się. Funkcja: Przy dostępie Kod błędu: 0x8007043c Opis błędu: Tej usługi nie można uruchomić w trybie awaryjnym Przyczyna: Analiza zabezpieczeń dla oprogramowania chroniącego przed złośliwym kodem przestała działać z nieznanej przyczyny. W niektórych przypadkach problem można rozwiązać, uruchamiając ponownie usługę. CodeIntegrity: =============== Date: 2023-03-02 18:13:14 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements. ==================== Statystyki pamięci =========================== BIOS: American Megatrends International, LLC. F5 01/17/2022 Płyta główna: Gigabyte Technology Co., Ltd. B660M DS3H DDR4 Procesor: 12th Gen Intel(R) Core(TM) i3-12100F Procent pamięci w użyciu: 46% Całkowita pamięć fizyczna: 16225.89 MB Dostępna pamięć fizyczna: 8643.97 MB Całkowita pamięć wirtualna: 32609.89 MB Dostępna pamięć wirtualna: 20704.02 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:465 GB) (Free:59.73 GB) (Model: WD Blue SN570 500GB) NTFS Drive d: (ADATA SD600Q) (Fixed) (Total:223.55 GB) (Free:196.9 GB) (Model: ADATA SD600Q SCSI Disk Device) NTFS \\?\Volume{487cbb4d-d77a-4a9d-b28a-12d639481baa}\ () (Fixed) (Total:0.65 GB) (Free:0.08 GB) NTFS \\?\Volume{d8cced7a-1945-4927-bb38-87296e40d4ad}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Tablica partycji ==================== ========================================================== Disk: 0 (Protective MBR) (Size: 465.8 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 1 (Size: 223.6 GB) (Disk ID: 6B061772) Partition: GPT. ==================== Koniec Addition.txt =======================