Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 14-04-2023 Uruchomiony przez KONDKJE (18-04-2023 10:44:56) Uruchomiony z C:\Users\K\Documents Microsoft Windows 11 Home Wersja 22H2 22621.1555 (X64) (2023-03-27 15:28:01) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= (Załączenie wejścia w fixlist spowoduje jego usunięcie.) Administrator (S-1-5-21-2624396024-4218587744-521422349-500 - Administrator - Disabled) Gość (S-1-5-21-2624396024-4218587744-521422349-501 - Limited - Disabled) K (S-1-5-21-2624396024-4218587744-521422349-1005 - Limited - Enabled) => C:\Users\K KONDKJE (S-1-5-21-2624396024-4218587744-521422349-1001 - Administrator - Enabled) => C:\Users\KONDKJE Konto domyślne (S-1-5-21-2624396024-4218587744-521422349-503 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-2624396024-4218587744-521422349-504 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Malwarebytes (Enabled - Up to date) {0D452135-A081-B000-D6B6-132E52638543} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) 3uTools (HKLM-x32\...\3uTools) (Version: 2.52.008 - ShangHai ZhangZheng Network Technology Co., Ltd.) 7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov) Aid4Mail 5 (Remove only) (HKU\S-1-5-21-2624396024-4218587744-521422349-1005\...\Aid4Mail5_is1) (Version: 5.0.21 - Fookes Holding Ltd) Alcor Micro USB Card Reader Driver (HKLM-x32\...\InstallShield_{9D569A6E-C9DF-490E-93E0-7AFD28D1F9BB}) (Version: 20.23.401.14519 - Alcor Micro Corp.) Aplikacje Microsoft 365 dla przedsiębiorstw - pl-pl (HKLM\...\O365ProPlusRetail - pl-pl) (Version: 16.0.16227.20280 - Microsoft Corporation) Aryson OST to PST Converter 23.3 (HKLM\...\3960-5886-2720-0175) (Version: 23.3 - Aryson Technologies) ASUS Device Activation (HKLM-x32\...\{9C4B0706-9F9A-47BF-B417-0A111FC52B04}) (Version: 1.0.4.0 - ASUSTeK COMPUTER INC.) ASUS GiftBox Service (HKLM-x32\...\{4701E5AB-AF91-4D40-8F18-358CC80E4E5B}) (Version: 3.2.1.0 - ASUSTeK COMPUTER INC.) ASUS Hello (HKLM-x32\...\{D8CE1923-92A9-4036-817E-9E0D8AA2169B}) (Version: 1.1.0 - ASUSTeK COMPUTER INC.) ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.6.15 - ASUSTeK COMPUTER INC.) ASUS PTP Driver (HKLM-x32\...\{7618E419-9124-4E6C-9AF4-487A6DDEC1C5}) (Version: 11.0.18 - ASUS) Asystent instalacji systemu Windows 11 (HKLM-x32\...\{115DF11E-4B4C-4EA9-9A79-00DB0C7EF02D}) (Version: 1.4.19041.1703 - Microsoft Corporation) ATK Package (ASUS Keyboard Hotkeys) (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0061 - ASUSTeK COMPUTER INC.) AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.5.34 - ICEpower a/s) Bloody7 (HKLM-x32\...\Bloody3) (Version: 20.12.0006 - Bloody) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) Brave (HKLM-x32\...\BraveSoftware Brave-Browser) (Version: 112.1.50.119 - Autorzy Brave) Counter-Strike 1.6 v43 (HKU\S-1-5-21-2624396024-4218587744-521422349-1005\...\{1BD2212B-8287-4F33-A6DC-903D423AB814}_is1) (Version: v43 - CSSetti.pl) CPUID HWMonitor 1.44 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.44 - CPUID, Inc.) DataGrip 2020.3.2 (HKLM-x32\...\DataGrip 2020.3.2) (Version: 203.7148.68 - JetBrains s.r.o.) Discord (HKU\S-1-5-21-2624396024-4218587744-521422349-1005\...\Discord) (Version: 1.0.9008 - Discord Inc.) DRS OST to PST Converter 23.3 (HKLM\...\7458-5886-0813-1405) (Version: 23.3 - DataRecoverySollutions) ELAN FingerPrint (HKLM\...\ElanFP) (Version: 1.5.12.1101 - ELAN Microelectronic Corp.) FortiClient VPN (HKLM\...\{F1343266-CE79-4195-815C-9B59B7FD8056}) (Version: 7.0.0.0029 - Fortinet Technologies Inc) Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 10.1.3.37598 - Foxit Software Inc.) Git (HKLM\...\Git_is1) (Version: 2.39.1 - The Git Development Community) Git (HKU\S-1-5-21-2624396024-4218587744-521422349-1005\...\Git_is1) (Version: 2.39.1 - The Git Development Community) glogg (HKLM-x32\...\glogg) (Version: v1.1.4-x86_64 - ) GnuWin32: Wget-1.11.4-1 (HKLM-x32\...\Wget-1.11.4-1_is1) (Version: 1.11.4-1 - GnuWin32) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 112.0.5615.121 - Google LLC) GoTodo (HKU\S-1-5-21-2624396024-4218587744-521422349-1005\...\7becc6bba89048e49a776159a808d3fe) (Version: 1.0 - GoTodo) Honeycam (HKLM\...\Honeycam) (Version: 3.39 - Bandisoft.com) Ignissta OST Converter (HKLM\...\Ignissta OST Converter) (Version: 1.0.0.0 - Ignissta OST Converter) Intel(R) Chipset Device Software (HKLM\...\{94E05108-3E4E-4F2E-AC5F-33A1B22B779C}) (Version: 10.1.1.44 - Intel Corporation) Hidden Intel(R) Chipset Device Software (HKLM-x32\...\{17408817-d415-4768-a160-ae6d46d6bdb0}) (Version: 10.1.1.44 - Intel(R) Corporation) Hidden Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.3.10205.4743 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1043 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{871689FB-5226-4641-8ED2-6FDAA2DF65C1}) (Version: 1.0.0.0 - Intel Corporation) Hidden Intel(R) Management Engine Components (HKLM\...\{D9D63ED7-B857-450C-B46A-1371885084E5}) (Version: 1.0.0.0 - Intel Corporation) Hidden Intel(R) ME UninstallLegacy (HKLM\...\{E9B9A1A5-6398-4C99-8FDE-10794F6505C5}) (Version: 1.0.1.0 - Intel Corporation) Hidden Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.7.0.1014 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{ABDC630D-DC10-4991-9965-D683C8F4885D}) (Version: 15.7.0.1014 - Intel Corporation) Hidden Intel(R) Serial IO (HKLM\...\{0C21BBE5-F4B4-42E2-AE4B-BE210BB1B8AB}) (Version: 30.100.1725.1 - Intel Corporation) Hidden Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1725.1 - Intel Corporation) Intel(R) Trusted Connect Service Client x64 (HKLM\...\{C9552825-7BF2-4344-BA91-D3CD46F4C442}) (Version: 1.47.715.0 - Intel Corporation) Hidden Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.47.715.0 - Intel Corporation) Hidden Intel(R) Trusted Connect Services Client (HKLM-x32\...\{2b32b7d0-4f9f-47c8-adb7-807e6cb2fb75}) (Version: 1.47.715.0 - Intel Corporation) Hidden Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000030-0200-1033-84C8-B8D95FA3C8C3}) (Version: 20.30.0 - Intel Corporation) Intel® PROSet/Wireless WiFi Software (HKLM\...\{32A56A06-5D92-4CF3-A2AB-43F7A58A657E}) (Version: 20.60.0.1530 - Intel Corporation) Hidden IObit Malware Fighter 10 (HKLM-x32\...\IObit Malware Fighter_is1) (Version: 10.1.0.986 - IObit) IPVanish (HKLM-x32\...\{01C6B417-D325-4C43-9E41-69CD0EB09282}) (Version: 4.1.2.122 - Mudhook Marketing, Inc) Hidden IPVanish (HKLM-x32\...\{544693cb-548f-429c-89d3-9a3d21d4ebc1}) (Version: 4.1.2.122 - Mudhook Marketing, Inc) KdeTools OST to PST Converter - Demo Version 7.0 (HKLM-x32\...\{728303AC-0EC0-4201-A130-C3DCDDFFD48D}_is1) (Version: 7.0 - KdeTools Software) Kernel for OST to PST Evaluation ver 21.1 (HKLM-x32\...\Kernel for OST to PST - Evaluation Version_is1) (Version: - KernelApps Pvt. Ltd.) Kodi (HKU\S-1-5-21-2624396024-4218587744-521422349-1001\...\Kodi) (Version: 19.5.0.0 - XBMC Foundation) LinuxLive USB Creator (HKLM-x32\...\LinuxLive USB Creator) (Version: 2.9 - Thibaut Lauziere) Malwarebytes version 4.5.26.259 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.26.259 - Malwarebytes) McAfee LiveSafe (HKLM-x32\...\MSC) (Version: 16.0 R8 - McAfee, Inc.) Microsoft .NET Framework 4.8 SDK (HKLM-x32\...\{DA855582-B360-4532-B8C4-ECD1E5A7095B}) (Version: 4.8.04084 - Microsoft Corporation) Microsoft .NET Framework 4.8 Targeting Pack (HKLM-x32\...\{7D846F37-3C30-47C5-BCEA-2929EE09BE9A}) (Version: 4.8.04084 - Microsoft Corporation) Microsoft DirectX SDK (March 2009) (HKLM-x32\...\Microsoft DirectX SDK (March 2009)) (Version: 9.26.1590.0 - Microsoft Corporation) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 112.0.1722.48 - Microsoft Corporation) Microsoft GameInput (HKLM-x32\...\{1F2B6AF3-C260-8666-5950-E3FEDBC851D6}) (Version: 10.1.22621.3036 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2624396024-4218587744-521422349-1001\...\OneDriveSetup.exe) (Version: 23.061.0319.0003 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2624396024-4218587744-521422349-1005\...\OneDriveSetup.exe) (Version: 23.066.0326.0005 - Microsoft Corporation) Microsoft Teams (HKU\S-1-5-21-2624396024-4218587744-521422349-1001\...\Teams) (Version: 1.4.00.16575 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{EF9EBC42-6969-45CE-A8D2-B9249B00C838}) (Version: 5.69.0.0 - Microsoft Corporation) Microsoft VC++ redistributables repacked. (HKLM\...\{D736B443-AF61-4775-9488-DDF59F87BD1F}) (Version: 12.0.0.0 - Intel Corporation) Hidden Microsoft VC++ redistributables repacked. (HKLM-x32\...\{F102A269-3323-427C-914D-E5E71F61453D}) (Version: 12.0.0.0 - Intel Corporation) Hidden Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.29.30139 (HKLM-x32\...\{2c673fb6-3e65-4751-965d-33d30b68a8a6}) (Version: 14.29.30139.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.29.30139 (HKLM-x32\...\{8d5fdf81-7022-423f-bd8b-b513a1050ae1}) (Version: 14.29.30139.0 - Microsoft Corporation) Microsoft Visual C++ 2019 X64 Additional Runtime - 14.29.30139 (HKLM\...\{7F4A9F52-173F-4B0D-B1EA-269C32EDA827}) (Version: 14.29.30139 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.29.30139 (HKLM\...\{A6D3F752-BF11-4D7C-B19C-F6F96A35CF50}) (Version: 14.29.30139 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X86 Additional Runtime - 14.29.30139 (HKLM-x32\...\{1AEA8854-7597-4CD3-948F-8DE364D94E07}) (Version: 14.29.30139 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.29.30139 (HKLM-x32\...\{1679EF65-55F3-4248-B91E-6B3BE1A69CDF}) (Version: 14.29.30139 - Microsoft Corporation) Hidden Microsoft Visual Studio Code (User) (HKU\S-1-5-21-2624396024-4218587744-521422349-1005\...\{771FD6B0-FA20-440A-A002-3B3BAC16DC50}_is1) (Version: 1.77.1 - Microsoft Corporation) Microsoft Windows 10 SDK Installer (HKLM-x32\...\Microsoft Windows 10 SDK Installer) (Version: 21.0 - Embarcadero Technologies Inc.) MobaXterm (HKLM-x32\...\{A8A24A42-7E80-4EDF-A52C-2EB105AA6585}) (Version: 21.4.0.4786 - Mobatek) NapiProjekt (2.2.0.2399) (HKLM-x32\...\NapiProjekt_is1) (Version: - ) Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 8.4.8 - Notepad++ Team) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.16130.20218 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.16227.20204 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0415-1000-0000000FF1CE}) (Version: 16.0.16130.20218 - Microsoft Corporation) Hidden OpenOffice 4.1.13 (HKLM-x32\...\{355B1DE9-E68B-4B4E-825B-1A9EAC436E6F}) (Version: 4.113.9810 - Apache Software Foundation) Oprogramowanie Intel® PROSet/Wireless (HKLM-x32\...\{d5c53162-d8b4-4547-8a40-917a25c0172e}) (Version: 20.60.0 - Intel Corporation) Pakiet sterowników systemu Windows - Silicon Laboratories Inc. (silabser) Ports (01/08/2021 10.1.10.103) (HKLM\...\CD5610A5B20340323714AD1BA203E97E99E80C9A) (Version: 01/08/2021 10.1.10.103 - Silicon Laboratories Inc.) PDS OST Converter 22.08 (HKLM-x32\...\{162CC3A8-0206-4817-B426-80BF0A3BD7D9}_is1) (Version: 22.08 - Perfect Data Solutions) PostgreSQL 14 (HKLM\...\PostgreSQL 14) (Version: 14 - PostgreSQL Global Development Group) PuTTY release 0.74 (64-bit) (HKLM\...\{127B996B-5308-4012-865B-9446451EA326}) (Version: 0.74.0.0 - Simon Tatham) PyCharm Community Edition 2022.3.3 (HKLM-x32\...\PyCharm Community Edition 2022.3.3) (Version: 223.8836.43 - JetBrains s.r.o.) Python 3.9.13 (64-bit) (HKU\S-1-5-21-2624396024-4218587744-521422349-1001\...\{f599560c-4808-4daa-85d8-15f363099f67}) (Version: 3.9.13150.0 - Python Software Foundation) Python 3.9.13 (64-bit) (HKU\S-1-5-21-2624396024-4218587744-521422349-1005\...\{f599560c-4808-4daa-85d8-15f363099f67}) (Version: 3.9.13150.0 - Python Software Foundation) Python 3.9.13 Core Interpreter (64-bit) (HKLM\...\{D7536B55-7339-436F-A2B3-8B8C0240DF32}) (Version: 3.9.13150.0 - Python Software Foundation) Hidden Python 3.9.13 Development Libraries (64-bit) (HKLM\...\{A621340A-3F22-40D3-9CCD-50B048EBB48E}) (Version: 3.9.13150.0 - Python Software Foundation) Hidden Python 3.9.13 Documentation (64-bit) (HKLM\...\{1FB094A5-7604-4C0F-A1FB-EAB7ED730DE2}) (Version: 3.9.13150.0 - Python Software Foundation) Hidden Python 3.9.13 Executables (64-bit) (HKLM\...\{D497CDAE-43AC-4397-A1C6-B66A7A8F8010}) (Version: 3.9.13150.0 - Python Software Foundation) Hidden Python 3.9.13 pip Bootstrap (64-bit) (HKLM\...\{72964D30-1BFE-459F-B218-D267EBE0D5B2}) (Version: 3.9.13150.0 - Python Software Foundation) Hidden Python 3.9.13 Standard Library (64-bit) (HKLM\...\{90A30DAB-6FD8-4CF8-BB8B-C0DB21C69F20}) (Version: 3.9.13150.0 - Python Software Foundation) Hidden Python 3.9.13 Tcl/Tk Support (64-bit) (HKLM\...\{E7233E87-1712-40E0-8207-17C8D0157FCC}) (Version: 3.9.13150.0 - Python Software Foundation) Hidden Python 3.9.13 Test Suite (64-bit) (HKLM\...\{7491B488-F171-4A97-935A-9098E7CE2A26}) (Version: 3.9.13150.0 - Python Software Foundation) Hidden Python 3.9.13 Utility Scripts (64-bit) (HKLM\...\{618E9DD0-9212-486C-AB4A-023ACAB7CD36}) (Version: 3.9.13150.0 - Python Software Foundation) Hidden Python Launcher (HKLM-x32\...\{1A8286E4-2F70-4165-B2BF-CC6B49664005}) (Version: 3.9.7806.0 - Python Software Foundation) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8858.1 - Realtek Semiconductor Corp.) Realtek USB Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{04201224-2B34-4EE7-862B-B7BBF89DB3AB}) (Version: 10.10.713.2016 - Realtek) SharePoint Client Components (HKLM\...\{95150004-1163-0409-1000-0000000FF1CE}) (Version: 15.0.4711.1001 - Microsoft Corporation) Slack (HKU\S-1-5-21-2624396024-4218587744-521422349-1001\...\slack) (Version: 4.29.149 - Slack Technologies Inc.) SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - ) Sprawdzanie kondycji komputera z systemem Windows (HKLM\...\{497ED226-5E88-4EC5-9340-373B1C56906F}) (Version: 3.2.2110.14001 - Microsoft Corporation) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) SteelSeries GG 28.2.0 (HKLM\...\SteelSeries GG) (Version: 28.2.0 - SteelSeries ApS) Surfshark TAP Driver Windows (HKLM-x32\...\{1BE56F4D-46EC-4372-B4B2-A397E417102E}) (Version: 1.0.1 - Surfshark) Surfshark TUN Driver Windows (HKLM\...\{A7B3275A-3A1C-4916-8ACF-92DA1B1591DE}) (Version: 1.0 - Surfshark) Środowisko uruchomieniowe Microsoft Edge WebView2 (HKLM-x32\...\Microsoft EdgeWebView) (Version: 112.0.1722.48 - Microsoft Corporation) Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.3.0.13565 - Microsoft Corporation) Telegram Desktop (HKU\S-1-5-21-2624396024-4218587744-521422349-1005\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 4.7.1 - Telegram FZ-LLC) Telegram Desktop version 4.0.2 (HKU\S-1-5-21-2624396024-4218587744-521422349-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 4.0.2 - Telegram FZ-LLC) UCMcxRTK (HKLM-x32\...\{2441B0B9-F24A-4DD3-97FC-5AC3495162DD}) (Version: 10.0.15063.101 - Realtek Semiconductor Corp.) Uninstall Samsung Printer Software (HKLM-x32\...\TotalUninstaller) (Version: 4.0.0.93 - Samsung Electronics CO., LTD.) Vivaldi (HKU\S-1-5-21-2624396024-4218587744-521422349-1001\...\Vivaldi) (Version: 3.3.2022.47 - Vivaldi Technologies AS.) VLC media player (HKLM\...\VLC media player) (Version: 3.0.16 - VideoLAN) Vysor (HKU\S-1-5-21-2624396024-4218587744-521422349-1005\...\vysor) (Version: 4.1.77 - Vysor Inc.) WebAdvisor firmy McAfee (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.150 - McAfee, LLC) Windows Driver Package - ASUS (AsusPTPDrv) HIDClass (04/21/2017 11.0.0.16) (HKLM\...\7517F958DC823EE4C12050C16EFF05886960ABEF) (Version: 04/21/2017 11.0.0.16 - ASUS) Windows SDK AddOn (HKLM-x32\...\{E18618EC-D9DB-4BCE-B382-85ADA2CBB340}) (Version: 10.1.0.0 - Microsoft Corporation) WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.2.9.0 - ASUSTeK COMPUTER INC.) WinRAR 5.91 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH) WinSCP 5.17.7 (HKU\S-1-5-21-2624396024-4218587744-521422349-1001\...\winscp3_is1) (Version: 5.17.7 - Martin Prikryl) Zoom (HKU\S-1-5-21-2624396024-4218587744-521422349-1005\...\ZoomUMX) (Version: 5.13.11 (13434) - Zoom Video Communications, Inc.) Packages: ========= Anatomy 3D Atlas -> C:\Program Files\WindowsApps\CatfishAnimationStudio.Anatomy3DAtlas_3.1.30.0_x64__5w37ds3rm089g [2022-08-05] (Catfish Animation Studio S.r.l.) ASUS Battery Health Charging -> C:\Program Files\WindowsApps\b9eced6f.asusbatteryhealthcharging_1.0.7.0_x86__qmba6cd70vzyy [2022-04-03] (ASUSTeK COMPUTER INC.) [Startup Task] ASUS GIFTBOX -> C:\Program Files\WindowsApps\B9ECED6F.ASUSGIFTBOX_3.2.4.0_x64__qmba6cd70vzyy [2022-04-03] (ASUSTeK COMPUTER INC.) ASUS Product Registration Program -> C:\Program Files\WindowsApps\b9eced6f.asusproductregistrationprogram_3.0.3.0_x86__qmba6cd70vzyy [2022-04-03] (ASUSTeK COMPUTER INC.) [Startup Task] Complete Anatomy -> C:\Program Files\WindowsApps\3D4Medical.comLLC.CompleteAnatomy_9.2.1.0_x86__jp2a6tdsptebg [2023-04-08] (3D4Medical) eManual -> C:\Program Files\WindowsApps\b9eced6f.emanual_2.0.3.0_x86__qmba6cd70vzyy [2022-04-03] (ASUSTeK COMPUTER INC.) FilmForth -> C:\Program Files\WindowsApps\IOForth.FilmForth_2.3.15.0_x64__pxs7cjhtcq1xt [2022-12-03] (IOForth) iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12128.2.57059.0_x64__nzyj5cx40ttqa [2023-04-08] (Apple Inc.) [Startup Task] LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.1.7098.0_neutral__w1wdnht996qgy [2023-03-28] (LinkedIn) McAfee® Personal Security -> C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy [2023-03-28] (McAfee LLC.) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2022-04-05] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2022-04-05] (Microsoft Corporation) [MS Ad] Microsoft Family -> C:\Program Files\WindowsApps\MicrosoftCorporationII.MicrosoftFamily_0.2.39.0_x64__8wekyb3d8bbwe [2023-04-08] (Microsoft Corp.) MyASUS-Service Center -> C:\Program Files\WindowsApps\b9eced6f.myasus_3.3.11.0_x86__qmba6cd70vzyy [2022-04-03] (ASUSTeK COMPUTER INC.) [Startup Task] Pulpit zdalny Microsoft -> C:\Program Files\WindowsApps\Microsoft.RemoteDesktop_10.2.3000.0_x64__8wekyb3d8bbwe [2022-08-31] (Microsoft Corporation) Reddit -> C:\Program Files\WindowsApps\www.reddit.com-A180F948_1.0.0.1_neutral__4cmcp3m16r51a [2022-12-03] (www.reddit.com) Samsung Printer Experience -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCO.LTD.SamsungPrinterExperience_1.3.15.0_x64__3c1yjt4zspk6g [2022-12-15] (Samsung Electronics Co. Ltd.) Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.16.3140.0_x64__8wekyb3d8bbwe [2023-04-08] (Microsoft Studios) [MS Ad] Splendid -> C:\Program Files\WindowsApps\b9eced6f.splendid_1.0.15.0_x64__qmba6cd70vzyy [2022-04-03] (ASUSTeK COMPUTER INC.) [Startup Task] ==================== Niestandardowe rejestracje CLSID (filtrowane): ============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-2624396024-4218587744-521422349-1001_Classes\CLSID\{04271989-C4D2-6ECF-25CE-9182D764B1EA} -> [OneDrive - ASAPON] => C:\Users\KONDKJE\OneDrive - ASAPON [2019-10-17 00:03] CustomCLSID: HKU\S-1-5-21-2624396024-4218587744-521422349-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\KONDKJE\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.21063.3\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2624396024-4218587744-521422349-1001_Classes\CLSID\{BCA9D37C-CA60-4160-9115-97A00F24702D}\localserver32 -> C:\Users\KONDKJE\AppData\Local\Vivaldi\Application\3.3.2022.47\notification_helper.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS) CustomCLSID: HKU\S-1-5-21-2624396024-4218587744-521422349-1001_Classes\CLSID\{C5DC0A6A-55A6-DA07-3763-C0D9B53A9B94}\InprocServer32 -> C:\Program Files (x86)\Common Files\System\ole32.dll => Brak pliku CustomCLSID: HKU\S-1-5-21-2624396024-4218587744-521422349-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\KONDKJE\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll => Brak pliku CustomCLSID: HKU\S-1-5-21-2624396024-4218587744-521422349-1001_Classes\CLSID\{d1b22d3d-8585-53a6-acb3-0e803c7e8d2a}\localserver32 -> C:\Users\KONDKJE\AppData\Local\Microsoft\Teams\current\Teams.exe (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2624396024-4218587744-521422349-1001_Classes\CLSID\{E15E1D68-0D1C-49F7-BEB8-812B1E00FA60}\InprocServer32 -> C:\Users\KONDKJE\AppData\Local\Programs\WinSCP\DragExt64.dll (Martin Prikryl -> Martin Prikryl) CustomCLSID: HKU\S-1-5-21-2624396024-4218587744-521422349-1005_Classes\CLSID\{23B3E3D8-C162-4A8B-AB0C-0905DCB1DF19}\InprocServer32 -> C:\Users\K\AppData\Local\Packages\Microsoft.PowerAutomateDesktop_8wekyb3d8bbwe\TempState\RDP\DVCPlugin\x64\Microsoft.Flow.RPA.Desktop.UIAutomation.RDP.DVC.Plugin.dll => Brak pliku CustomCLSID: HKU\S-1-5-21-2624396024-4218587744-521422349-1005_Classes\CLSID\{C5DC0A6A-55A6-DA07-3763-C0D9B53A9B94}\InprocServer32 -> C:\Program Files (x86)\Common Files\System\ole32.dll => Brak pliku ShellIconOverlayIdentifiers: [ IMFSafeBox] -> {0BB81440-5F42-4480-A5F7-770A6F439FC8} => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFShellExt.dll [2022-10-24] (IObit Information Technology -> IObit) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Brak podpisu cyfrowego] ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files\Notepad++\NppShell_06.dll [2022-12-24] (Notepad++ -> ) ContextMenuHandlers1: [FineReader15ContextMenu] -> {53339754-4DD1-438B-8D24-0D0730F1A591} => C:\Program Files (x86)\ABBYY FineReader 15\x64\FRIntegration.dll [2021-11-24] (ABBYY Production LLC -> ABBYY Production LLC.) ContextMenuHandlers1: [IObit Malware Fighter] -> {0BB81440-5F42-4480-A5F7-770A6F439FC8} => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFShellExt.dll [2022-10-24] (IObit Information Technology -> IObit) ContextMenuHandlers1: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => c:\Program Files\mcafee\msc\McCtxMenuFrmWrk.dll [2018-01-25] (McAfee, Inc. -> McAfee, Inc.) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-08-25] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-08-25] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2023-04-14] (Malwarebytes Inc. -> Malwarebytes) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Brak podpisu cyfrowego] ContextMenuHandlers4: [Convert] -> {9f95ca1a-e80e-4c0f-acd1-4c9b7900b982} => C:\Program Files (x86)\Microsoft DirectX SDK (March 2009)\Utilities\bin\x64\TxView.dll [2009-03-16] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers4: [IObit Malware Fighter] -> {0BB81440-5F42-4480-A5F7-770A6F439FC8} => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFShellExt.dll [2022-10-24] (IObit Information Technology -> IObit) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Brak pliku ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_fb9939a7d714d646\igfxDTCM.dll [2020-09-15] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Brak podpisu cyfrowego] ContextMenuHandlers6: [FineReader15ContextMenu] -> {53339754-4DD1-438B-8D24-0D0730F1A591} => C:\Program Files (x86)\ABBYY FineReader 15\x64\FRIntegration.dll [2021-11-24] (ABBYY Production LLC -> ABBYY Production LLC.) ContextMenuHandlers6: [IObit Malware Fighter] -> {0BB81440-5F42-4480-A5F7-770A6F439FC8} => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFShellExt.dll [2022-10-24] (IObit Information Technology -> IObit) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2023-04-14] (Malwarebytes Inc. -> Malwarebytes) ContextMenuHandlers6: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => c:\Program Files\mcafee\msc\McCtxMenuFrmWrk.dll [2018-01-25] (McAfee, Inc. -> McAfee, Inc.) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-08-25] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-08-25] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (filtrowane) ==================== ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ShortcutWithArgument: C:\Users\KONDKJE\Desktop\TikTok.lnk -> C:\Users\KONDKJE\AppData\Local\Vivaldi\Application\vivaldi_proxy.exe (Vivaldi Technologies AS) -> --profile-directory=Default --app-id=nlalbmkafgmoifbeooblidblkmlhhpnc ==================== Załadowane moduły (filtrowane) ============= 2020-09-10 23:29 - 2020-09-10 23:29 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems64.dll] C:\Program Files\Microsoft Office\root\Office16\AppVIsvSubsystems64.dll 2020-09-10 23:29 - 2020-09-10 23:29 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R64.dll] C:\Program Files\Microsoft Office\root\Office16\c2r64.dll ==================== Alternate Data Streams (filtrowane) ======== (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\Users\K\Downloads\Vysor-win-4.1.77.exe:MBAM.Zone.Identifier [622] AlternateDataStreams: C:\Users\K\Documents\esetonlinescanner.exe:MBAM.Zone.Identifier [50] AlternateDataStreams: C:\Users\K\Documents\FRST64.exe:MBAM.Zone.Identifier [50] ==================== Tryb awaryjny (filtrowane) ================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Powiązania plików (filtrowane) ================= ==================== Internet Explorer (filtrowane) ========== HKU\S-1-5-21-2624396024-4218587744-521422349-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus17win10.msn.com/?pc=ASTE HKU\S-1-5-21-2624396024-4218587744-521422349-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus17win10.msn.com/?pc=ASTE SearchScopes: HKU\S-1-5-21-2624396024-4218587744-521422349-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-2624396024-4218587744-521422349-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2023-02-02] (Microsoft Corporation -> Microsoft Corporation) BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2020-09-10] (McAfee, LLC -> McAfee, LLC) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2023-03-03] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2020-09-10] (McAfee, LLC -> McAfee, LLC) BHO-x32: IObit Surfing Protection -> {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} -> C:\Program Files (x86)\IObit\IObit Malware Fighter\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll [2022-06-18] (IObit CO., LTD -> IObit) BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2023-04-15] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-04-15] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-04-15] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-04-15] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-04-15] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-04-15] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-04-15] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-04-15] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-04-15] (Microsoft Corporation -> Microsoft Corporation) Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll [2018-01-25] (McAfee, Inc. -> McAfee, Inc.) Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll [2018-01-25] (McAfee, Inc. -> McAfee, Inc.) (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) IE trusted site: HKU\S-1-5-21-2624396024-4218587744-521422349-1001\...\sharepoint.com -> hxxps://asapon-files.sharepoint.com IE trusted site: HKU\S-1-5-21-2624396024-4218587744-521422349-1005\...\sharepoint.com -> hxxps://usermx-files.sharepoint.com ==================== Hosts - zawartość: ========================= (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2018-04-12 01:38 - 2023-03-28 12:12 - 000017065 _____ C:\WINDOWS\system32\drivers\etc\hosts 5.187.49.189 pl-gdn.prod.surfshark.com #Temporary Surfshark mapping 5.187.49.149 pl-gdn.prod.surfshark.com #Temporary Surfshark mapping 178.255.45.189 pl-gdn.prod.surfshark.com #Temporary Surfshark mapping 5.187.49.189 pl-gdn.prod.surfshark.com #Temporary Surfshark mapping 5.187.49.187 pl-gdn.prod.surfshark.com #Temporary Surfshark mapping 5.187.49.189 pl-gdn.prod.surfshark.com #Temporary Surfshark mapping 178.255.44.68 pl-gdn.prod.surfshark.com #Temporary Surfshark mapping 5.187.49.149 pl-gdn.prod.surfshark.com #Temporary Surfshark mapping 5.187.49.149 pl-gdn.prod.surfshark.com #Temporary Surfshark mapping 5.187.49.189 pl-gdn.prod.surfshark.com #Temporary Surfshark mapping 5.133.14.198 pl-gdn.prod.surfshark.com #Temporary Surfshark mapping 5.133.8.115 pl-gdn.prod.surfshark.com #Temporary Surfshark mapping 5.133.14.196 pl-gdn.prod.surfshark.com #Temporary Surfshark mapping 5.187.49.147 pl-gdn.prod.surfshark.com #Temporary Surfshark mapping 5.133.14.196 pl-gdn.prod.surfshark.com #Temporary Surfshark mapping 37.28.156.115 pl-gdn.prod.surfshark.com #Temporary Surfshark mapping 178.255.44.68 pl-gdn.prod.surfshark.com #Temporary Surfshark mapping 37.28.156.115 pl-gdn.prod.surfshark.com #Temporary Surfshark mapping 178.255.45.187 pl-gdn.prod.surfshark.com #Temporary Surfshark mapping 178.255.45.187 pl-gdn.prod.surfshark.com #Temporary Surfshark mapping 5.133.14.196 pl-gdn.prod.surfshark.com #Temporary Surfshark mapping 5.133.14.198 pl-gdn.prod.surfshark.com #Temporary Surfshark mapping 178.255.44.69 pl-gdn.prod.surfshark.com #Temporary Surfshark mapping 37.28.156.117 pl-gdn.prod.surfshark.com #Temporary Surfshark mapping 5.133.14.196 pl-gdn.prod.surfshark.com #Temporary Surfshark mapping 5.133.8.115 pl-gdn.prod.surfshark.com #Temporary Surfshark mapping 5.133.8.115 pl-gdn.prod.surfshark.com #Temporary Surfshark mapping 37.28.156.117 pl-gdn.prod.surfshark.com #Temporary Surfshark mapping 5.187.49.149 pl-gdn.prod.surfshark.com #Temporary Surfshark mapping 5.187.53.51 pl-gdn.prod.surfshark.com #Temporary Surfshark mapping Wykryto więcej niż wyliczono: 204 linii. ==================== Inne obszary =========================== (Obecnie brak automatycznej naprawy dla tej sekcji.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Embarcadero\Studio\21.0\bin;C:\Users\Public\Documents\Embarcadero\Studio\21.0\Bpl;C:\Program Files (x86)\Embarcadero\Studio\21.0\bin64;C:\Users\Public\Documents\Embarcadero\Studio\21.0\Bpl\Win64;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files\PuTTY\;C:\Program Files\Git\cmd HKU\S-1-5-21-2624396024-4218587744-521422349-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\KONDKJE\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\wp3140849-zeno-sama-wallpapers (1).jpg HKU\S-1-5-21-2624396024-4218587744-521422349-1005\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\themea\img20.jpg DNS Servers: 8.8.8.8 - 8.8.4.4 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja włączona] Network Binding: ============= Ethernet 3: FortiClient NDIS 6.3 Packet Filter Driver -> ft_fortifilter (enabled) Ethernet 2: FortiClient NDIS 6.3 Packet Filter Driver -> ft_fortifilter (enabled) Wi-Fi: FortiClient NDIS 6.3 Packet Filter Driver -> ft_fortifilter (enabled) ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Załączenie wejścia w fixlist spowoduje jego usunięcie.) MSCONFIG\Services: Bonjour Service => 2 MSCONFIG\Services: brave => 2 MSCONFIG\Services: bravem => 3 MSCONFIG\Services: ClientAnalyticsService => 3 MSCONFIG\Services: cphs => 3 MSCONFIG\Services: cplspcon => 2 MSCONFIG\Services: DevActSvc => 3 MSCONFIG\Services: ELANFPService => 2 MSCONFIG\Services: esifsvc => 2 MSCONFIG\Services: FA_Scheduler => 2 MSCONFIG\Services: FoxitReaderUpdateService => 2 MSCONFIG\Services: GiftBox.Service => 2 MSCONFIG\Services: GoogleChromeElevationService => 3 MSCONFIG\Services: gupdate => 2 MSCONFIG\Services: gupdatem => 3 MSCONFIG\Services: ibtsiva => 2 MSCONFIG\Services: ICEsoundService => 2 MSCONFIG\Services: igfxCUIService2.0.0.0 => 2 MSCONFIG\Services: IMFservice => 2 MSCONFIG\Services: Intel(R) Capability Licensing Service TCP IP Interface => 3 MSCONFIG\Services: Intel(R) TPM Provisioning Service => 2 MSCONFIG\Services: jhi_service => 2 MSCONFIG\Services: LMS => 2 MSCONFIG\Services: McAfee WebAdvisor => 2 MSCONFIG\Services: McAWFwk => 3 MSCONFIG\Services: mccspsvc => 2 MSCONFIG\Services: PIEServiceNew => 3 MSCONFIG\Services: postgresql-x64-14 => 2 MSCONFIG\Services: Steam Client Service => 3 MSCONFIG\Services: SteelSeriesUpdateService => 3 HKU\S-1-5-21-2624396024-4218587744-521422349-1005\...\StartupApproved\Run: => "SteamServerBrowser" ==================== Reguły Zapory systemu Windows (filtrowane) ================ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{0B7CC867-ED7E-4599-9310-F2B2AF8865E1}] => (Allow) C:\Program Files\MiniTool ShadowMaker\AgentService.exe => Brak pliku FirewallRules: [{5464C0C9-9B11-4FED-98E2-F6AC4F62885C}] => (Allow) C:\Program Files\MiniTool ShadowMaker\AgentService.exe => Brak pliku FirewallRules: [{884FAEA8-CDF9-46B0-B6A5-DEB443752CE6}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23080.500.1954.4309_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> ) FirewallRules: [{488F9A21-9E2E-4F04-A8B9-5F4BE2FF1207}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23080.500.1954.4309_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> ) FirewallRules: [UDP Query User{522FFC91-31A0-4419-BBF0-4DF7164519F9}C:\program files\kodi\kodi.exe] => (Allow) C:\program files\kodi\kodi.exe (XBMC Foundation) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{3BDEC961-899A-4A45-989C-5011AE3B866C}C:\program files\kodi\kodi.exe] => (Allow) C:\program files\kodi\kodi.exe (XBMC Foundation) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{D30B7C74-C91A-49BC-AA51-F8679A9BE7E2}C:\users\k\appdata\local\discord\app-1.0.9008\discord.exe] => (Allow) C:\users\k\appdata\local\discord\app-1.0.9008\discord.exe => Brak pliku FirewallRules: [TCP Query User{1A80DF97-7063-4321-A41E-FEC41105E614}C:\users\k\appdata\local\discord\app-1.0.9008\discord.exe] => (Allow) C:\users\k\appdata\local\discord\app-1.0.9008\discord.exe => Brak pliku FirewallRules: [UDP Query User{8E8A6E09-F941-4C35-9CAC-657C791101E4}C:\gry\counter-strike 1.6 v43\hl.exe] => (Allow) C:\gry\counter-strike 1.6 v43\hl.exe (Valve) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{D43E2031-3E92-4E89-81C7-DD9C7DEB196B}C:\gry\counter-strike 1.6 v43\hl.exe] => (Allow) C:\gry\counter-strike 1.6 v43\hl.exe (Valve) [Brak podpisu cyfrowego] FirewallRules: [{AA617D77-24AF-4C91-BAE7-5550826A2F9E}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12126.1.57048.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe => Brak pliku FirewallRules: [{075D7FA2-A3F6-418A-B09D-36663BB613AC}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12126.1.57048.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe => Brak pliku FirewallRules: [{D5426C81-F9B6-404C-8ED8-B1C9C7B02C97}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12126.1.57048.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe => Brak pliku FirewallRules: [{051751BF-E22A-4103-A0FB-060130B59535}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12126.1.57048.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe => Brak pliku FirewallRules: [{F2D641BD-CC39-4CEC-A9B7-532F69E197EC}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12126.1.57048.0_x64__nzyj5cx40ttqa\iTunes.exe => Brak pliku FirewallRules: [{DA42C364-351F-4B34-A77A-A00C8F0DB195}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12126.1.57048.0_x64__nzyj5cx40ttqa\iTunes.exe => Brak pliku FirewallRules: [{6DD3A1C1-43A7-4293-8E32-46AB0D709C3D}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12126.1.57048.0_x64__nzyj5cx40ttqa\iTunes.exe => Brak pliku FirewallRules: [{417EB1B2-C34D-45C9-AC80-9D0354C3D360}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12126.1.57048.0_x64__nzyj5cx40ttqa\iTunes.exe => Brak pliku FirewallRules: [{E501B17C-82BC-4415-BA44-062E184E6DE3}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12124.1.57017.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe => Brak pliku FirewallRules: [{F4941733-F477-4ADF-9AE0-6D49CB9F7920}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12124.1.57017.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe => Brak pliku FirewallRules: [{EE3EE196-1A79-47D7-B8CC-BB8E34FE97A9}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12124.1.57017.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe => Brak pliku FirewallRules: [{8339D73F-47F3-4DEE-A4E8-EF04B06B78A7}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12124.1.57017.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe => Brak pliku FirewallRules: [{FF4B6447-8B8A-4AD0-8F24-6D3239326EB7}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12124.1.57017.0_x64__nzyj5cx40ttqa\iTunes.exe => Brak pliku FirewallRules: [{BA5EAC07-8C24-4E29-A54F-A8C7F4552F8E}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12124.1.57017.0_x64__nzyj5cx40ttqa\iTunes.exe => Brak pliku FirewallRules: [{764A6111-E62F-4B45-8559-424821939066}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12124.1.57017.0_x64__nzyj5cx40ttqa\iTunes.exe => Brak pliku FirewallRules: [{5C3F09DE-9312-489A-88EE-45A61C87214C}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12124.1.57017.0_x64__nzyj5cx40ttqa\iTunes.exe => Brak pliku FirewallRules: [UDP Query User{555E5060-AB18-41E7-8786-CC5462A36A8D}C:\users\kondkje\appdata\roaming\mobaxterm\slash\bin\xwin_mobax.exe] => (Allow) C:\users\kondkje\appdata\roaming\mobaxterm\slash\bin\xwin_mobax.exe => Brak pliku FirewallRules: [TCP Query User{B59195DA-248D-4D9F-9578-B718059AE1E4}C:\users\kondkje\appdata\roaming\mobaxterm\slash\bin\xwin_mobax.exe] => (Allow) C:\users\kondkje\appdata\roaming\mobaxterm\slash\bin\xwin_mobax.exe => Brak pliku FirewallRules: [{5B21EB2E-83A5-47FF-8130-0B335617A9DB}] => (Allow) C:\Program Files (x86)\Embarcadero\Studio\21.0\bin\bds.exe => Brak pliku FirewallRules: [{0ECEDE9D-BF1A-49B2-AAE0-0B3F8855BB05}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe (McAfee, Inc. -> McAfee, Inc.) FirewallRules: [{2ABDA958-04D2-419A-9F73-192FC567F23A}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe (McAfee, Inc. -> McAfee, Inc.) FirewallRules: [{BFD9F72C-62EE-4370-BDBA-6CEB8176F358}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe (McAfee, Inc. -> McAfee, Inc.) FirewallRules: [{C1AF3927-5E1A-4547-AE87-BD6D1C155863}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16010.9126.2116.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe => Brak pliku FirewallRules: [{855D5990-C955-416B-8079-5498F35A6133}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe => Brak pliku FirewallRules: [{0BE7AA27-0205-45B9-A41B-BFDBA8587786}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{F9367813-7C1C-4DA3-880C-943A4EA20C98}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [TCP Query User{9075E7F4-35C5-4639-88C6-7CBECA267BEC}C:\windows.old\users\kondkje\appdata\roaming\telegram desktop\telegram.exe] => (Allow) C:\windows.old\users\kondkje\appdata\roaming\telegram desktop\telegram.exe => Brak pliku FirewallRules: [UDP Query User{4A5ABA80-7FB4-4533-8A4F-1194B2A00818}C:\windows.old\users\kondkje\appdata\roaming\telegram desktop\telegram.exe] => (Allow) C:\windows.old\users\kondkje\appdata\roaming\telegram desktop\telegram.exe => Brak pliku FirewallRules: [{3FDF2824-E50F-4AA0-9C9D-97BC43A19248}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{EBF8ED93-C6C7-4213-A45A-7395709D7FF7}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [TCP Query User{2145AB7C-08C6-4C3E-8EED-74EF3D26A350}C:\users\kondkje\appdata\local\vivaldi\application\vivaldi.exe] => (Allow) C:\users\kondkje\appdata\local\vivaldi\application\vivaldi.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS) FirewallRules: [UDP Query User{BB148CAB-1319-495F-9AC8-BCFB85A392CD}C:\users\kondkje\appdata\local\vivaldi\application\vivaldi.exe] => (Allow) C:\users\kondkje\appdata\local\vivaldi\application\vivaldi.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS) FirewallRules: [{0D0F288D-43A2-423E-B90F-318FFAED694E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe => Brak pliku FirewallRules: [{FB6ED2AA-4401-4020-9A00-7441A969B2F3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe => Brak pliku FirewallRules: [TCP Query User{ECB07685-E23D-4E11-B514-4A9B9486A542}C:\users\kondkje\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\kondkje\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [UDP Query User{19621732-B930-4297-8FD5-DFDF54B29569}C:\users\kondkje\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\kondkje\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{5131D8D0-9581-422C-9E77-D1E8C9F29B00}] => (Allow) C:\Program Files (x86)\3uTools\libXunlei\Download\MiniThunderPlatform.exe (ShenZhen Thunder Networking Technologies Ltd. -> 深圳市迅雷网络技术有限公司) FirewallRules: [{964AB05B-F08B-42DF-9BA0-879C0546A70F}] => (Allow) C:\Program Files (x86)\3uTools\libXunlei\Download\MiniThunderPlatform.exe (ShenZhen Thunder Networking Technologies Ltd. -> 深圳市迅雷网络技术有限公司) FirewallRules: [{0839DE4E-DD75-48B4-BFB6-8D1B15E2595A}] => (Allow) LPort=80 FirewallRules: [{2E5C322E-E23E-4F6F-A3DE-770F1E5A2CA9}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{6545F082-FAB1-4907-9581-31989006959E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{32CC96E8-F899-4F59-92EF-F8C8A2DF4B8D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{D1CC234C-9419-40A1-93A6-212A2F387EDB}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{3761B597-4EA6-4A56-9C0E-40A1731293F3}] => (Allow) LPort=27015 FirewallRules: [{F95C050A-CD12-4395-9D77-8D27D9486957}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{380DFB62-42C1-425A-90EB-0DAE6FF384CC}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [TCP Query User{5FEFFD72-5D29-4386-8230-2DD38BB0AD56}C:\program files\jetbrains\datagrip 2020.3.2\bin\datagrip64.exe] => (Allow) C:\program files\jetbrains\datagrip 2020.3.2\bin\datagrip64.exe (JetBrains s.r.o. -> JetBrains s.r.o.) FirewallRules: [UDP Query User{4DC6DA52-AC0D-4F43-B1B0-4CA17109C175}C:\program files\jetbrains\datagrip 2020.3.2\bin\datagrip64.exe] => (Allow) C:\program files\jetbrains\datagrip 2020.3.2\bin\datagrip64.exe (JetBrains s.r.o. -> JetBrains s.r.o.) FirewallRules: [TCP Query User{FC7DC845-7A78-462C-A473-64F7B004A324}C:\users\kondkje\downloads\utorrentportable\app\utorrent\utorrent.exe] => (Allow) C:\users\kondkje\downloads\utorrentportable\app\utorrent\utorrent.exe => Brak pliku FirewallRules: [UDP Query User{C7A0E5B1-BF43-4761-9F2C-D0BB24F89B33}C:\users\kondkje\downloads\utorrentportable\app\utorrent\utorrent.exe] => (Allow) C:\users\kondkje\downloads\utorrentportable\app\utorrent\utorrent.exe => Brak pliku FirewallRules: [{73553932-CA75-4B2D-B2B6-5E2BA345E485}] => (Allow) C:\Program Files (x86)\NapiProjekt\napisy.exe () [Brak podpisu cyfrowego] FirewallRules: [{87EBC2FC-9371-461A-9891-7DF564C005D8}] => (Allow) C:\Program Files (x86)\NapiProjekt\napisy.exe () [Brak podpisu cyfrowego] FirewallRules: [{C0C8F507-8B7F-4374-AB29-DA4C2F92A280}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{70A6483F-FF55-4208-943D-D788CDA098E8}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{DED04415-522A-45AF-833B-A956FD829DD5}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{38C98047-BB8E-48FB-B818-138F5E4F1B27}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{23B9B462-7A78-4A40-9CB1-931BBFC0DA53}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{4B65D59D-47B0-4EF8-8AFF-90AEFE9E019B}C:\users\k\appdata\local\programs\microsoft vs code\code.exe] => (Allow) C:\users\k\appdata\local\programs\microsoft vs code\code.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [UDP Query User{EFEE54F3-0173-4C67-A675-7EC25D5C75E2}C:\users\k\appdata\local\programs\microsoft vs code\code.exe] => (Allow) C:\users\k\appdata\local\programs\microsoft vs code\code.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{B780BA85-89A1-4105-B45D-0740EBD7A9F4}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12128.2.57059.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> ) FirewallRules: [{D109F385-4BC8-4D05-BE1F-A462FEC708DF}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12128.2.57059.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> ) FirewallRules: [{90CF79EA-FAEF-4A2F-B892-05922E573360}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12128.2.57059.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> ) FirewallRules: [{44B45643-7BB1-4B5D-9008-17E706FD51A3}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12128.2.57059.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> ) FirewallRules: [{0392F85D-A007-44BF-A07D-637882BACB21}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12128.2.57059.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> ) FirewallRules: [{A7881F62-D282-4FE5-8371-020844112DE4}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12128.2.57059.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> ) FirewallRules: [{36EFD216-3091-42CB-89B5-0B47B8A51BD7}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12128.2.57059.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> ) FirewallRules: [{7FED1012-E724-453A-8203-7516D28795C3}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12128.2.57059.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> ) FirewallRules: [TCP Query User{8E2FDE18-2AEA-4175-BAD9-DFDF10B62559}C:\users\k\appdata\local\vysor\app-4.1.77\vysor.exe] => (Allow) C:\users\k\appdata\local\vysor\app-4.1.77\vysor.exe (Vysor, Inc -> Vysor Inc.) FirewallRules: [UDP Query User{3C57EA17-2033-44DC-98DC-F7EEB6D08278}C:\users\k\appdata\local\vysor\app-4.1.77\vysor.exe] => (Allow) C:\users\k\appdata\local\vysor\app-4.1.77\vysor.exe (Vysor, Inc -> Vysor Inc.) FirewallRules: [{8DA0D9FE-BA2D-4615-9087-0E2ABEDC4546}] => (Block) C:\users\k\appdata\local\vysor\app-4.1.77\vysor.exe (Vysor, Inc -> Vysor Inc.) FirewallRules: [{B8B7B49E-1F04-4732-BC67-0A62A5784B48}] => (Block) C:\users\k\appdata\local\vysor\app-4.1.77\vysor.exe (Vysor, Inc -> Vysor Inc.) FirewallRules: [{6AE3B58F-1A4F-45FE-8039-4964EFDA6D00}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{8CA5D459-6920-4BE4-AAF1-FC6C1A10689E}] => (Allow) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.) FirewallRules: [{15710A2A-C499-4672-AB54-753DB37391C3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> ) FirewallRules: [{CEDBA449-87FC-4EE3-9357-90675FD51BFB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> ) FirewallRules: [{2F74D1F0-9FE9-4070-8173-1C0E5D626725}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> ) FirewallRules: [{C4634AA0-9B7C-480A-A723-5F744A28A594}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.96.3408.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> ) FirewallRules: [TCP Query User{DDBD1E60-C78A-4338-8628-A4086C06BD3A}C:\program files\jetbrains\pycharm community edition 2022.3.3\bin\pycharm64.exe] => (Block) C:\program files\jetbrains\pycharm community edition 2022.3.3\bin\pycharm64.exe (JetBrains s.r.o. -> JetBrains s.r.o.) FirewallRules: [UDP Query User{D2963210-1A21-4ABC-B370-D146434A2C9F}C:\program files\jetbrains\pycharm community edition 2022.3.3\bin\pycharm64.exe] => (Block) C:\program files\jetbrains\pycharm community edition 2022.3.3\bin\pycharm64.exe (JetBrains s.r.o. -> JetBrains s.r.o.) FirewallRules: [{E8C98ADA-DB87-4EBF-9A4F-5EB4597007BF}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\112.0.1722.48\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) ==================== Punkty Przywracania systemu ========================= ==================== Wadliwe urządzenia w Menedżerze urządzeń ============ ==================== Błędy w Dzienniku zdarzeń: ======================== Dziennik Aplikacja: ================== Error: (04/18/2023 10:46:31 AM) (Source: AVLogEvent) (EventID: 5002) (User: ZARZĄDZANIE NT) Description: McShield failed to start. Error Code:a7f40220 Error: (04/18/2023 10:46:22 AM) (Source: AVLogEvent) (EventID: 5002) (User: ZARZĄDZANIE NT) Description: McShield failed to start. Error Code:a7f40220 Error: (04/18/2023 10:41:05 AM) (Source: Application Hang) (EventID: 1002) (User: ZARZĄDZANIE NT) Description: Program brave.exe w wersji 112.1.50.118 przestał korzystać z systemu Windows i został zamknięty. Aby sprawdzić, czy jest dostępnych więcej informacji o problemie, sprawdź historię problemów w panelu sterowania Zabezpieczenia i konserwacja. Error: (04/18/2023 10:40:21 AM) (Source: AVLogEvent) (EventID: 5002) (User: ZARZĄDZANIE NT) Description: McShield failed to start. Error Code:a7f40220 Error: (04/18/2023 09:37:00 AM) (Source: AVLogEvent) (EventID: 5002) (User: ZARZĄDZANIE NT) Description: McShield failed to start. Error Code:a7f40220 Error: (04/17/2023 11:20:04 PM) (Source: AVLogEvent) (EventID: 5002) (User: ZARZĄDZANIE NT) Description: McShield failed to start. Error Code:a7f40220 Error: (04/17/2023 10:52:58 PM) (Source: AVLogEvent) (EventID: 5002) (User: ZARZĄDZANIE NT) Description: McShield failed to start. Error Code:a7f40220 Error: (04/17/2023 10:40:49 PM) (Source: AVLogEvent) (EventID: 5002) (User: ZARZĄDZANIE NT) Description: McShield failed to start. Error Code:a7f40220 Dziennik System: ============= Error: (04/18/2023 09:39:16 AM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-300523QJ) Description: Serwer {8CFC164F-4BE5-4FDD-94E9-E2AF73ED4A19} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (04/18/2023 09:36:57 AM) (Source: EventLog) (EventID: 6008) (User: ) Description: Poprzednie zamknięcie systemu przy 23:06:45 na ‎17.‎04.‎2023 było nieoczekiwane. Error: (04/17/2023 10:12:00 PM) (Source: DCOM) (EventID: 10010) (User: ZARZĄDZANIE NT) Description: Serwer {338B40F9-9D68-4B53-A793-6B9AA0C5F63B} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (04/17/2023 06:59:25 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-300523QJ) Description: Serwer {8CFC164F-4BE5-4FDD-94E9-E2AF73ED4A19} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (04/17/2023 06:55:56 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-300523QJ) Description: Serwer {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (04/17/2023 06:55:55 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-300523QJ) Description: Serwer Microsoft.AAD.BrokerPlugin_1000.19580.1000.0_neutral_neutral_cw5n1h2txyewy!Windows.Security.Authentication.Web.Core.BackgroundGetTokenTask.ClassId.WebAccountProvider nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (04/17/2023 06:55:55 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-300523QJ) Description: Serwer {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (04/17/2023 06:55:55 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-300523QJ) Description: Serwer Microsoft.AAD.BrokerPlugin_1000.19580.1000.0_neutral_neutral_cw5n1h2txyewy!Windows.Security.Authentication.Web.Core.BackgroundGetTokenTask.ClassId.WebAccountProvider nie zarejestrował się w modelu DCOM w wymaganym czasie. Windows Defender: ================ Date: 2023-04-14 11:04:31 Description: Skanowanie produktu Program antywirusowy Microsoft Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania: {66FB4FCF-959A-43C2-A944-4D9B7293DB7D} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Szybkie skanowanie Użytkownik: ZARZĄDZANIE NT\SYSTEM Date: 2023-04-13 19:54:49 Description: Produkt Program antywirusowy Microsoft Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz: https://go.microsoft.com/fwlink/?linkid=37020&name=PUADlManager:Win32/Sepdot&threatid=312018&enterprise=0 Nazwa: PUADlManager:Win32/Sepdot Identyfikator: 312018 Ważność: Niski Kategoria: Potencjalnie niechciane oprogramowanie Ścieżka: file:_C:\Users\KONDKJE\Downloads\hwmonitor-6628685807028353-AsystentPobierania_v3.21.790.77.01.exe Pochodzenie wykrycia: Komputer lokalny Typ wykrycia: FastPath Źródło wykrycia: System Użytkownik: Nazwa procesu: C:\Windows\explorer.exe Wersja analizy zabezpieczeń: AV: 1.387.870.0, AS: 1.387.870.0, NIS: 1.387.870.0 Wersja aparatu: AM: 1.1.20200.4, NIS: 1.1.20200.4 Date: 2023-04-12 20:00:54 Description: Produkt Program antywirusowy Microsoft Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz: https://go.microsoft.com/fwlink/?linkid=37020&name=PUADlManager:Win32/Sepdot&threatid=312018&enterprise=0 Nazwa: PUADlManager:Win32/Sepdot Identyfikator: 312018 Ważność: Niski Kategoria: Potencjalnie niechciane oprogramowanie Ścieżka: file:_C:\Users\KONDKJE\Downloads\hwmonitor-6628685807028353-AsystentPobierania_v3.21.790.77.01.exe Pochodzenie wykrycia: Komputer lokalny Typ wykrycia: FastPath Źródło wykrycia: System Użytkownik: Nazwa procesu: C:\Windows\explorer.exe Wersja analizy zabezpieczeń: AV: 1.387.792.0, AS: 1.387.792.0, NIS: 1.387.792.0 Wersja aparatu: AM: 1.1.20200.4, NIS: 1.1.20200.4 Date: 2023-04-12 10:58:32 Description: Skanowanie produktu Program antywirusowy Microsoft Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania: {AB4C8E72-99EE-4A79-8816-2AE280C26801} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Szybkie skanowanie Użytkownik: ZARZĄDZANIE NT\SYSTEM Date: 2023-04-11 23:06:00 Description: Skanowanie produktu Program antywirusowy Microsoft Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania: {764DD775-804F-4A5F-B8BA-2C8DCCC9387B} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Szybkie skanowanie Użytkownik: ZARZĄDZANIE NT\SYSTEM  CodeIntegrity: =============== Date: 2023-04-18 10:38:08 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume3\Program Files\mcafee\mfeav\AMSIExt.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2023-04-18 10:10:19 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SecurityHealthService.exe) attempted to load \Device\HarddiskVolume3\Program Files\mcafee\mfeav\AMSIExt.dll that did not meet the Windows signing level requirements. Date: 2023-04-18 10:01:46 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\mcafee\mfeav\AMSIExt.dll that did not meet the Windows signing level requirements. ==================== Statystyki pamięci =========================== BIOS: American Megatrends Inc. UX430UAR.308 04/17/2019 Płyta główna: ASUSTeK COMPUTER INC. UX430UAR Procesor: Intel(R) Core(TM) i5-8250U CPU @ 1.60GHz Procent pamięci w użyciu: 79% Całkowita pamięć fizyczna: 8052.79 MB Dostępna pamięć fizyczna: 1669.77 MB Całkowita pamięć wirtualna: 15988.79 MB Dostępna pamięć wirtualna: 8820.5 MB ==================== Dyski ================================ Drive c: (OS) (Fixed) (Total:237.42 GB) (Free:52.84 GB) (Model: SanDisk SD9SN8W256G1002) (Protected) NTFS \\?\Volume{ffe00012-3865-4eb1-8a51-99140e00b6a8}\ () (Fixed) (Total:0 GB) (Free:0 GB) \\?\Volume{5c542d27-7c23-4e4d-b2b1-1323826a5412}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32 ==================== MBR & Tablica partycji ==================== ========================================================== Disk: 0 (Size: 238.5 GB) (Disk ID: A14DAB7A) Partition: GPT. ==================== Koniec Addition.txt =======================