Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 26-06-2021 Uruchomiony przez Dawid (28-06-2021 23:19:12) Uruchomiony z D:\Pobrane (opera) Windows 10 Home Wersja 2004 19041.1052 (X64) (2020-07-04 10:26:21) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-305120184-3458327402-757235110-500 - Administrator - Disabled) Dawid (S-1-5-21-305120184-3458327402-757235110-1001 - Administrator - Enabled) => C:\Users\Dawid defaultuser0 (S-1-5-21-305120184-3458327402-757235110-1000 - Limited - Disabled) Gość (S-1-5-21-305120184-3458327402-757235110-501 - Limited - Disabled) Konto domyślne (S-1-5-21-305120184-3458327402-757235110-503 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-305120184-3458327402-757235110-504 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 21.005.20048 - Adobe Systems Incorporated) Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.465 - Adobe) Apple Mobile Device Support (HKLM\...\{74CC99EB-7DC0-4CB0-847A-F8C2FE39690C}) (Version: 14.5.0.7 - Apple Inc.) Apple Software Update (HKLM-x32\...\{A3985C05-7386-411F-A4BF-32A73F37EB44}) (Version: 2.6.3.1 - Apple Inc.) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) Call of Duty Modern Warfare (HKLM-x32\...\Call of Duty Modern Warfare) (Version: - Blizzard Entertainment) CCleaner (HKLM\...\CCleaner) (Version: 5.82 - Piriform) CPUID HWMonitor 1.42 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.42 - CPUID, Inc.) Discord (HKU\S-1-5-21-305120184-3458327402-757235110-1001\...\Discord) (Version: 0.0.309 - Discord Inc.) ENE_AIC_Marvell_HAL (HKLM\...\{085E2365-0A70-4230-B664-02D5E4FE7E9C}) (Version: 1.0.7.0 - ENE TECHNOLOGY INC.) Hidden ENE_AIC_Marvell_HAL (HKLM-x32\...\{887e18fb-6bc3-4cd4-b34e-32d9ff71bbae}) (Version: 1.0.7.0 - ENE TECHNOLOGY INC.) Hidden ENE_DRAM_RGB_AIO (HKLM\...\{1745D314-9077-46C9-8562-1C62BAE189B7}) (Version: 1.0.0.10 - Ene Tech.) Hidden ENE_DRAM_RGB_AIO (HKLM-x32\...\{52d1d7de-19c3-4f83-97bb-f9435dc84c5b}) (Version: 1.0.0.10 - Ene Tech.) Hidden ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.0.6.0 - ENE TECHNOLOGY INC.) Hidden ENE_EHD_M2_HAL (HKLM-x32\...\{d8516682-de60-4332-ad6f-49373754b677}) (Version: 1.0.6.0 - ENE TECHNOLOGY INC.) Hidden ENE_EHD_SSS_HAL (HKLM\...\{CF703694-01C6-4062-B797-84DB215662BC}) (Version: 1.0.2.0 - ENE TECHNOLOGY INC.) Hidden ENE_EHD_SSS_HAL (HKLM-x32\...\{9eeadf99-713b-4ab5-9ccd-bf9c1c4d9daf}) (Version: 1.0.2.0 - ENE TECHNOLOGY INC.) Hidden Epic Games Launcher (HKLM-x32\...\{39D848C4-F441-470F-8FAB-51D60946D35B}) (Version: 1.1.267.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Epic Online Services (HKLM-x32\...\{0B736177-814A-4ADE-81D1-66A0FDD55BB4}) (Version: 1.1.11.0 - Epic Games, Inc.) FACEIT Anti-Cheat (HKLM\...\{1419E44C-0EF4-4822-9194-9F1A4D43973D}_is1) (Version: 2.0 - FACEIT LTD) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 91.0.4472.124 - Google LLC) iTunes (HKLM\...\{292831AD-A27B-44AA-B050-E3BED407A967}) (Version: 12.11.3.17 - Apple Inc.) Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Malwarebytes version 4.4.0.117 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.4.0.117 - Malwarebytes) Microsoft .NET Framework 4.7.2 SDK (HKLM-x32\...\{F42C96C1-746B-442A-B58C-9F0FD5F3AB8A}) (Version: 4.7.03081 - Microsoft Corporation) Microsoft .NET Framework 4.7.2 Targeting Pack (ENU) (HKLM-x32\...\{B517DBD3-B542-4FC8-9957-FFB2C3E65D1D}) (Version: 4.7.03062 - Microsoft Corporation) Microsoft .NET Framework 4.7.2 Targeting Pack (HKLM-x32\...\{1784A8CD-F7FE-47E2-A87D-1F31E7242D0D}) (Version: 4.7.03062 - Microsoft Corporation) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 91.0.864.59 - Microsoft Corporation) Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{E5A95BC5-81DF-4F0C-B910-B59DD012F037}) (Version: 2.81.0.0 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.27.29016 (HKLM-x32\...\{40d3fee2-b257-46c2-bdc0-cb1088d97327}) (Version: 14.27.29016.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821 (HKLM-x32\...\{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 - Microsoft Corporation) MSI Afterburner 4.6.4 Beta 3 (HKLM-x32\...\Afterburner) (Version: 4.6.4 Beta 3 - MSI Co., LTD) Narzędzia sprawdzające pakietu Microsoft Office 2016 — polski (HKLM\...\{90160000-001F-0415-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden NVIDIA FrameView SDK 1.1.4923.29781331 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29781331 - NVIDIA Corporation) NVIDIA GeForce Experience 3.22.0.32 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.22.0.32 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.38.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.60 - NVIDIA Corporation) NVIDIA Sterownik graficzny 466.77 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 466.77 - NVIDIA Corporation) Opera GX Stable 76.0.4017.208 (HKU\S-1-5-21-305120184-3458327402-757235110-1001\...\Opera GX 76.0.4017.208) (Version: 76.0.4017.208 - Opera Software) Oprogramowanie mikroukładu Intel® (HKLM-x32\...\{44ded3eb-1686-46a6-9770-fd79096c29f7}) (Version: 10.1.1.45 - Intel(R) Corporation) Hidden Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.38.1118.2019 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8858.1 - Realtek Semiconductor Corp.) RivaTuner Statistics Server 7.3.2 Beta 2 (HKLM-x32\...\RTSS) (Version: 7.3.2 Beta 2 - Unwinder) Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.12.172 - Rockstar Games) Spotify (HKU\S-1-5-21-305120184-3458327402-757235110-1001\...\Spotify) (Version: 1.1.46.916.g416cacf1 - Spotify AB) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.2.3 - TeamSpeak Systems GmbH) Update for Skype for Business 2016 (KB4461586) 64-Bit Edition (HKLM\...\{90160000-0011-0000-1000-0000000FF1CE}_Office16.PROPLUS_{D3BC3593-9260-47AD-9EC8-8DEB8668956D}) (Version: - Microsoft) Update for Skype for Business 2016 (KB4461586) 64-Bit Edition (HKLM\...\{90160000-00C1-0000-1000-0000000FF1CE}_Office16.PROPLUS_{D3BC3593-9260-47AD-9EC8-8DEB8668956D}) (Version: - Microsoft) Update for Skype for Business 2016 (KB4461586) 64-Bit Edition (HKLM\...\{90160000-012B-0415-1000-0000000FF1CE}_Office16.PROPLUS_{D3BC3593-9260-47AD-9EC8-8DEB8668956D}) (Version: - Microsoft) VIRO Plus (HKLM-x32\...\{9BBE5BFB-BC39-4813-91C6-5D71E627510D}) (Version: 1.1 - COOLING.PL Zdziech Spolka Jawna) VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.11 - VideoLAN) WinRAR 5.61 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.61.0 - win.rar GmbH) Packages: ========= Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-18] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-18] (Microsoft Corporation) [MS Ad] Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-08-29] (Netflix, Inc.) NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-05-28] (NVIDIA Corp.) Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.9.205.0_x64__dt26b99r8h8gj [2020-02-27] (Realtek Semiconductor Corp) ==================== Niestandardowe rejestracje CLSID (filtrowane): ============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Brak pliku ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> Brak pliku ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> Brak pliku ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Brak pliku ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Brak pliku ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Brak pliku ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> Brak pliku ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Brak pliku ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> Brak pliku ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> Brak pliku ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Brak pliku ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Brak pliku ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Brak pliku ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> Brak pliku ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-10-27] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-10-27] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-06-27] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_b2801df14ec7de03\nvshext.dll [2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-06-27] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-10-27] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-10-27] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Drivers32: [VIDC.RTV1] => C:\WINDOWS\system32\rtvcvfw64.dll [246272 2012-09-28] () [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.VP60] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com) HKLM\...\Drivers32: [vidc.VP61] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com) HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [Brak podpisu cyfrowego] ==================== Skróty & WMI ======================== ==================== Załadowane moduły (filtrowane) ============= 2021-04-05 00:10 - 2021-04-05 00:10 - 000232960 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\MSI Afterburner\RTCore.dll 2021-04-05 00:10 - 2021-04-05 00:10 - 000057344 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\MSI Afterburner\RTFC.dll 2021-04-06 16:05 - 2021-04-06 16:05 - 000668672 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\MSI Afterburner\RTHAL.dll 2021-04-05 00:10 - 2021-04-05 00:10 - 000074240 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\MSI Afterburner\RTMUI.dll 2021-04-05 00:10 - 2021-04-05 00:10 - 000371712 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\MSI Afterburner\RTUI.dll 2021-04-05 17:43 - 2021-04-05 17:43 - 000057344 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\RivaTuner Statistics Server\RTFC.dll 2021-04-05 17:43 - 2021-04-05 17:43 - 000074240 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\RivaTuner Statistics Server\RTMUI.dll 2021-04-05 17:43 - 2021-04-05 17:43 - 000368640 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\RivaTuner Statistics Server\RTUI.dll 2021-04-15 15:58 - 2020-05-13 06:12 - 000265216 ____N (C-MEDIA Electronics INC.) [Brak podpisu cyfrowego] C:\Program Files\SPC Gear Viro Plus USB\CPL\Driver\x64\vista\osConfLib.dll ==================== Alternate Data Streams (filtrowane) ======== (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\Users\Public\DRM:احتضان [48] AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [6952] ==================== Tryb awaryjny (filtrowane) ================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Powiązania plików (filtrowane) ================= ==================== Internet Explorer (filtrowane) ========== BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2018-12-22] (Microsoft Corporation -> Microsoft Corporation) BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2018-07-20] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2018-12-22] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2018-07-22] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2018-12-11] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2018-12-11] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2018-12-11] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2018-12-11] (Microsoft Corporation -> Microsoft Corporation) ==================== Hosts - zawartość: ========================= (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2018-09-15 09:31 - 2020-07-04 12:09 - 000000836 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Inne obszary =========================== (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-305120184-3458327402-757235110-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Dawid\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\wallhaven-dgvdm3_2560x1440.png DNS Servers: 192.168.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Załączenie wejścia w fixlist spowoduje jego usunięcie.) HKLM\...\StartupApproved\Run: => "Riot Vanguard" ==================== Reguły Zapory systemu Windows (filtrowane) ================ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{019A4B7E-4049-4845-BECB-8AA2116D8FC5}] => (Allow) D:\EPIC GAMES\GTAV\GTA5.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [{92917EEC-409A-470D-BC18-646D15DDAE6D}] => (Allow) D:\EPIC GAMES\GTAV\GTA5.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [UDP Query User{E55628DA-4C93-45FE-AAFC-13382DA53B6A}D:\vlc\vlc.exe] => (Block) D:\vlc\vlc.exe (VideoLAN -> VideoLAN) FirewallRules: [TCP Query User{08566CEE-F9C5-4A61-86E2-6FD46AC8A6F0}D:\vlc\vlc.exe] => (Block) D:\vlc\vlc.exe (VideoLAN -> VideoLAN) FirewallRules: [{327D416D-56EC-449A-81B6-5B7901F55FB4}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{ADDA2C45-D551-4613-9179-31E2BF773AFB}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [TCP Query User{1AF75BEB-EB01-46B2-945F-6433A2FA922D}C:\users\dawid\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\dawid\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [UDP Query User{150BB658-ED2E-42E4-81D0-C3F4395C2F06}C:\users\dawid\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\dawid\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{5F3D3420-CEC2-44E0-8EFA-A07D8631EC12}] => (Block) C:\users\dawid\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{E3CDAEF4-C8CF-4B1D-9D0C-872C945B0D96}] => (Block) C:\users\dawid\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{1B0926AB-1417-45F3-AD33-662FED02E761}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{6CE63858-7DC3-4EEA-998C-055E5F119A8A}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{E81F52AF-102F-4B68-94EC-2A22AFD9571C}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{C7032B29-A5FD-4856-91F2-14069FD86BA4}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{A46A8950-0EB8-4AD8-AF2C-D7761ACE6846}] => (Allow) C:\Program Files (x86)\Origin\Origin.exe => Brak pliku FirewallRules: [{8E88C102-379A-4EE1-9C6F-F572663AD17E}] => (Allow) C:\Program Files (x86)\Origin\Origin.exe => Brak pliku FirewallRules: [{13A767B9-E19B-403A-B244-C6F298DFE511}] => (Allow) C:\Program Files (x86)\Origin\Origin.exe => Brak pliku FirewallRules: [{942F3D0F-D700-4394-BCC0-065CC17CB730}] => (Allow) C:\Program Files (x86)\Origin\Origin.exe => Brak pliku FirewallRules: [{43AA6913-4857-486B-8F8D-9F1C83A2230A}] => (Allow) C:\Program Files (x86)\Origin\OriginWebHelperService.exe => Brak pliku FirewallRules: [{FE156D44-4A93-4157-83BB-A391DA0C8C6E}] => (Allow) C:\Program Files (x86)\Origin\OriginWebHelperService.exe => Brak pliku FirewallRules: [{A124688A-880F-42EC-BB95-2AC24E553055}] => (Allow) C:\Program Files (x86)\Origin\OriginWebHelperService.exe => Brak pliku FirewallRules: [{C46B392D-F5F9-4093-BDF7-37387C5EDC1A}] => (Allow) C:\Program Files (x86)\Origin\OriginWebHelperService.exe => Brak pliku FirewallRules: [{BBE4029C-9A02-495F-8473-96F9F56FAB3E}] => (Allow) C:\Program Files (x86)\Origin\OriginClientService.exe => Brak pliku FirewallRules: [{00667A09-A276-45FB-9381-ACA0FD313D84}] => (Allow) C:\Program Files (x86)\Origin\OriginClientService.exe => Brak pliku FirewallRules: [{99DD780C-15E0-45C2-BAB8-E75C7337EA63}] => (Allow) C:\Program Files (x86)\Origin\OriginClientService.exe => Brak pliku FirewallRules: [{AB37FE46-3DA3-4A52-9429-A4F13545CC28}] => (Allow) C:\Program Files (x86)\Origin\OriginClientService.exe => Brak pliku FirewallRules: [{D168B771-2712-4012-B471-8EBC41109339}] => (Allow) C:\Program Files (x86)\Origin\OriginCrashReporter.exe => Brak pliku FirewallRules: [{349A9FD4-A8D9-4688-8D2F-ED92A381A0EA}] => (Allow) C:\Program Files (x86)\Origin\OriginCrashReporter.exe => Brak pliku FirewallRules: [{71E9252D-5D34-49C9-ABD1-CCE705E02168}] => (Allow) C:\Program Files (x86)\Origin\OriginCrashReporter.exe => Brak pliku FirewallRules: [{C01A7186-1110-4EAB-A511-305376169EAA}] => (Allow) C:\Program Files (x86)\Origin\OriginCrashReporter.exe => Brak pliku FirewallRules: [{4083D607-B014-4A3F-8DC6-57FAF922A168}] => (Allow) C:\Program Files (x86)\Origin\OriginER.exe => Brak pliku FirewallRules: [{496584F1-0989-4FF1-8151-06BDD2B71A8F}] => (Allow) C:\Program Files (x86)\Origin\OriginER.exe => Brak pliku FirewallRules: [{74B91282-1FC9-4A6F-BB74-EC0F926CA024}] => (Allow) C:\Program Files (x86)\Origin\OriginER.exe => Brak pliku FirewallRules: [{B3BD6739-4406-449D-8441-FEF5273CB751}] => (Allow) C:\Program Files (x86)\Origin\OriginER.exe => Brak pliku FirewallRules: [{099ACFC7-5133-405D-A783-3AE14F0AB612}] => (Allow) C:\Program Files (x86)\Origin\OriginThinSetupInternal.exe => Brak pliku FirewallRules: [{C5A1F9B4-2730-4A45-A210-13DE03574523}] => (Allow) C:\Program Files (x86)\Origin\OriginThinSetupInternal.exe => Brak pliku FirewallRules: [{705749E9-3486-4CBC-A277-4E3E07331369}] => (Allow) C:\Program Files (x86)\Origin\OriginThinSetupInternal.exe => Brak pliku FirewallRules: [{6F4AB091-6D51-4184-8B99-920A7242BC3A}] => (Allow) C:\Program Files (x86)\Origin\OriginThinSetupInternal.exe => Brak pliku FirewallRules: [{96F742E7-832B-4112-B1C6-8B16E854C816}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{A88F4130-0EF4-4C67-B7DE-99043396368C}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{1B4E8C79-1598-470F-ADB9-9FFE14DE0064}] => (Allow) LPort=1433 FirewallRules: [{C54E9804-BBB0-4821-8E39-30ED6E712BCD}] => (Allow) C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe (EasyAntiCheat Oy -> Epic Games, Inc) FirewallRules: [{33A18A24-8D87-43E8-A995-F2EFB4284806}] => (Allow) C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe (EasyAntiCheat Oy -> Epic Games, Inc) FirewallRules: [{677B29AD-16A0-4D33-A907-5D70132FED96}] => (Allow) C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe (EasyAntiCheat Oy -> Epic Games, Inc) FirewallRules: [{A10ABDEF-6258-4E0C-97F8-CCC2733CE20D}] => (Allow) C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe (EasyAntiCheat Oy -> Epic Games, Inc) FirewallRules: [{317E155B-57C7-47E5-B92D-1B7055A80517}] => (Allow) C:\Users\Dawid\AppData\Local\Programs\Opera GX\launcher.exe (Opera Software AS -> Opera Software) FirewallRules: [{F730C2BE-DAF9-421E-88D8-D1FDD86CF94F}] => (Allow) C:\Users\Dawid\AppData\Local\Programs\Opera GX\launcher.exe (Opera Software AS -> Opera Software) FirewallRules: [{8C549C68-478C-4A0B-9885-9DA476631693}] => (Allow) C:\Users\Dawid\AppData\Local\Programs\Opera GX\launcher.exe (Opera Software AS -> Opera Software) FirewallRules: [{65ED5325-3893-4E32-9D34-2F37BDF69E82}] => (Allow) C:\Users\Dawid\AppData\Local\Programs\Opera GX\launcher.exe (Opera Software AS -> Opera Software) FirewallRules: [TCP Query User{548D610B-F563-47B1-A01C-A8339320F076}C:\users\dawid\appdata\local\tidal\app-2.23.0\tidal.exe] => (Allow) C:\users\dawid\appdata\local\tidal\app-2.23.0\tidal.exe => Brak pliku FirewallRules: [UDP Query User{AE74BB14-6E32-4944-9E95-07C3147BA2B8}C:\users\dawid\appdata\local\tidal\app-2.23.0\tidal.exe] => (Allow) C:\users\dawid\appdata\local\tidal\app-2.23.0\tidal.exe => Brak pliku FirewallRules: [{FFC9FCC6-C2FC-4F95-8CD6-7963B29B6309}] => (Allow) C:\Users\Dawid\AppData\Roaming\uTorrent\uTorrent.exe => Brak pliku FirewallRules: [{C5F7CE25-105D-4CD8-A55D-69478AA25333}] => (Allow) C:\Users\Dawid\AppData\Roaming\uTorrent\uTorrent.exe => Brak pliku FirewallRules: [TCP Query User{35CA5EF9-6907-45FD-B691-81BE0A01F173}D:\warzone\call of duty modern warfare\modernwarfare.exe] => (Allow) D:\warzone\call of duty modern warfare\modernwarfare.exe => Brak pliku FirewallRules: [UDP Query User{924D0220-826C-4CB8-9CC8-8A132185F4CA}D:\warzone\call of duty modern warfare\modernwarfare.exe] => (Allow) D:\warzone\call of duty modern warfare\modernwarfare.exe => Brak pliku FirewallRules: [{F5973A2C-D101-42FE-A46B-C8BC322595C9}] => (Allow) D:\giereczki\Red Dead Redemption 2\RDR2.exe (Rockstar Games) [Brak podpisu cyfrowego] FirewallRules: [{32505179-98D9-4039-8CE9-392684D720C3}] => (Allow) D:\giereczki\Red Dead Redemption 2\RDR2.exe (Rockstar Games) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{068F0A6C-1F09-42CC-9F21-BF680FB4D915}C:\program files (x86)\cyberpunk 2077\bin\x64\cyberpunk2077.exe] => (Allow) C:\program files (x86)\cyberpunk 2077\bin\x64\cyberpunk2077.exe => Brak pliku FirewallRules: [UDP Query User{F4919800-4696-47CA-AD8E-291AEA9835BB}C:\program files (x86)\cyberpunk 2077\bin\x64\cyberpunk2077.exe] => (Allow) C:\program files (x86)\cyberpunk 2077\bin\x64\cyberpunk2077.exe => Brak pliku FirewallRules: [{7CFF159D-E42C-4049-A05C-11CF35D77F93}] => (Allow) %SystemDrive%\Riot Games\VALORANT\live\VALORANT.exe => Brak pliku FirewallRules: [{2664FE3B-164C-4EC0-A8F9-0BDE8B007E7F}] => (Allow) %ProgramFiles%\Riot Vanguard\vgc.exe => Brak pliku FirewallRules: [{39368881-264D-4E62-93C4-1773B41C5850}] => (Allow) C:\Riot Games\Riot Client\RiotClientServices.exe (Riot Games, Inc. -> Riot Games, Inc.) FirewallRules: [{CC2B5B04-E018-4EFE-9BBB-412521AA7172}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> ) FirewallRules: [{CEB58BDB-C5F6-489E-9390-29CB29D0C7A6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> ) FirewallRules: [TCP Query User{B97E6E23-87C8-49A6-89A5-5E2D838F9FBD}C:\users\dawid\appdata\local\tidal\app-2.24.2\tidal.exe] => (Allow) C:\users\dawid\appdata\local\tidal\app-2.24.2\tidal.exe => Brak pliku FirewallRules: [UDP Query User{1192DDF0-60BD-4068-BA05-8F8026268451}C:\users\dawid\appdata\local\tidal\app-2.24.2\tidal.exe] => (Allow) C:\users\dawid\appdata\local\tidal\app-2.24.2\tidal.exe => Brak pliku FirewallRules: [{401E8464-1F52-440F-B6B5-5F5BC342BCFE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{58279D11-1F40-45C8-B50B-C77B4A2EE2A0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [TCP Query User{85CB61CD-5833-4E0E-BA93-456F1F723F0B}C:\users\dawid\appdata\local\tidal\app-2.25.0\tidal.exe] => (Allow) C:\users\dawid\appdata\local\tidal\app-2.25.0\tidal.exe => Brak pliku FirewallRules: [UDP Query User{B2156C07-951F-46E6-9677-836CCD90CF97}C:\users\dawid\appdata\local\tidal\app-2.25.0\tidal.exe] => (Allow) C:\users\dawid\appdata\local\tidal\app-2.25.0\tidal.exe => Brak pliku FirewallRules: [TCP Query User{B4DBF97D-E351-4777-B470-01AE1BDEE9BD}C:\program files (x86)\steam\steamapps\common\valheim dedicated server\valheim_server.exe] => (Block) C:\program files (x86)\steam\steamapps\common\valheim dedicated server\valheim_server.exe => Brak pliku FirewallRules: [UDP Query User{74DCBF59-C410-4B7D-972F-CE45C4D5EC7A}C:\program files (x86)\steam\steamapps\common\valheim dedicated server\valheim_server.exe] => (Block) C:\program files (x86)\steam\steamapps\common\valheim dedicated server\valheim_server.exe => Brak pliku FirewallRules: [TCP Query User{DC6B25DC-607D-4112-AB75-93A808DB7D90}C:\users\dawid\appdata\local\tidal\app-2.26.1\tidal.exe] => (Allow) C:\users\dawid\appdata\local\tidal\app-2.26.1\tidal.exe => Brak pliku FirewallRules: [UDP Query User{92662048-9C4B-436C-980C-C79EF2CE8284}C:\users\dawid\appdata\local\tidal\app-2.26.1\tidal.exe] => (Allow) C:\users\dawid\appdata\local\tidal\app-2.26.1\tidal.exe => Brak pliku FirewallRules: [TCP Query User{1DA45E4B-DA6F-4E37-BE98-CF8F674E27CB}C:\users\dawid\appdata\local\tidal\app-2.27.6\tidal.exe] => (Allow) C:\users\dawid\appdata\local\tidal\app-2.27.6\tidal.exe => Brak pliku FirewallRules: [UDP Query User{A29149AA-1126-41A8-BEB2-0A8E6441BC41}C:\users\dawid\appdata\local\tidal\app-2.27.6\tidal.exe] => (Allow) C:\users\dawid\appdata\local\tidal\app-2.27.6\tidal.exe => Brak pliku FirewallRules: [{F714EDB0-9D83-484B-9235-3C85D7D204C5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{BDC9A67F-75DE-44A6-B20E-1E040AD907CC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{304E0C06-53EC-4C98-A27A-EF3901CD29E0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{5A794203-4E1A-4A52-B1DE-E238D2B395E8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{81718E2F-47CA-411A-916B-7CD8372C5E27}] => (Allow) C:\Users\Dawid\AppData\Local\Enlisted\launcher.exe => Brak pliku FirewallRules: [{83EA1709-A5D1-4E7C-8855-439D004C955C}] => (Allow) C:\Users\Dawid\AppData\Local\Enlisted\launcher.exe => Brak pliku FirewallRules: [{D9406BFD-00B4-49C4-8719-49EBC0CD09C7}] => (Allow) C:\Users\Dawid\AppData\Local\Enlisted\bpreport.exe => Brak pliku FirewallRules: [{CF5569B4-F29B-4DD8-B0D8-1798B220CCA1}] => (Allow) C:\Users\Dawid\AppData\Local\Enlisted\bpreport.exe => Brak pliku FirewallRules: [{8006875A-C036-45F2-855C-540C3C2B9C90}] => (Allow) C:\Users\Dawid\AppData\Local\Enlisted\gaijin_downloader.exe => Brak pliku FirewallRules: [{BC464CEC-807E-4BA4-AE52-9B702149BA01}] => (Allow) C:\Users\Dawid\AppData\Local\Enlisted\gaijin_downloader.exe => Brak pliku FirewallRules: [TCP Query User{E32E3674-D4A8-4B09-9F89-0B98BCAE1175}C:\program files (x86)\warzone\call of duty modern warfare\modernwarfare.exe] => (Allow) C:\program files (x86)\warzone\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision) FirewallRules: [UDP Query User{A348F7D7-7DBA-4F63-928F-11EF1ECC3859}C:\program files (x86)\warzone\call of duty modern warfare\modernwarfare.exe] => (Allow) C:\program files (x86)\warzone\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision) FirewallRules: [{BF459F10-5820-49AA-BDB2-E9CF733D9168}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{8ADAA194-C4D7-4283-B752-C2CDDEE031AC}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{E6E68124-599E-47EF-9F07-12770F9A24BC}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{80BD3541-CBBA-420B-AF99-F81E981F60BF}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{7AD37EB8-6062-4C3D-8756-B10DD566CF95}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{0180D28C-4058-4D00-B146-3FD20F152C65}] => (Allow) C:\Users\Dawid\AppData\Local\Programs\Opera GX\75.0.3969.285\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [{21A8532A-54D7-44F8-A1BD-6A405D00CE9E}] => (Allow) C:\Users\Dawid\AppData\Local\Programs\Opera GX\76.0.4017.208\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [{7491E522-56B7-4557-AF8D-6A737185AF53}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) ==================== Punkty Przywracania systemu ========================= 18-06-2021 18:20:58 Zaplanowany punkt kontrolny 28-06-2021 16:17:23 Zaplanowany punkt kontrolny ==================== Wadliwe urządzenia w Menedżerze urządzeń ============ ==================== Błędy w Dzienniku zdarzeń: ======================== Dziennik Aplikacja: ================== Error: (06/28/2021 10:34:57 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: mbamtray.exe, wersja: 4.0.0.1023, sygnatura czasowa: 0x60be8592 Nazwa modułu powodującego błąd: Qt5Core.dll, wersja: 5.14.1.0, sygnatura czasowa: 0x603971ce Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x0000000000219dc5 Identyfikator procesu powodującego błąd: 0x2428 Godzina uruchomienia aplikacji powodującej błąd: 0x01d76c23c493607e Ścieżka aplikacji powodującej błąd: C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe Ścieżka modułu powodującego błąd: C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll Identyfikator raportu: 8f9dcd00-2c7f-405b-9abf-b6e305b53e41 Pełna nazwa pakietu powodującego błąd: Identyfikator aplikacji względem pakietu powodującego błąd: Error: (06/07/2021 07:03:05 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Aktywacja licencji (slui.exe) nie powiodła się, kod błędu: hr=0x8007007B Argumenty wiersza polecenia: RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=TimerEvent Error: (05/26/2021 11:06:38 PM) (Source: VSS) (EventID: 13) (User: ) Description: Informacje Usługi kopiowania woluminów w tle: nie można uruchomić serwera usługi COM z identyfikatorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} i nazwą CEventSystem. [0x8007045b, Trwa proces zamykania systemu. ] Error: (05/08/2021 05:22:18 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Aktywacja licencji (slui.exe) nie powiodła się, kod błędu: hr=0x8007007B Argumenty wiersza polecenia: RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=NetworkAvailable Error: (05/08/2021 05:22:13 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Aktywacja licencji (slui.exe) nie powiodła się, kod błędu: hr=0x8007007B Argumenty wiersza polecenia: RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=NetworkAvailable Error: (05/08/2021 03:22:17 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Aktywacja licencji (slui.exe) nie powiodła się, kod błędu: hr=0x8007007B Argumenty wiersza polecenia: RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=NetworkAvailable Error: (05/08/2021 03:22:12 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Aktywacja licencji (slui.exe) nie powiodła się, kod błędu: hr=0x8007007B Argumenty wiersza polecenia: RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=UserLogon;SessionId=1 Error: (05/07/2021 03:39:49 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Aktywacja licencji (slui.exe) nie powiodła się, kod błędu: hr=0x8007007B Argumenty wiersza polecenia: RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=UserLogon;SessionId=1 Dziennik System: ============= Error: (06/28/2021 10:45:15 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi eapihdrv z powodu następującego błędu: Nastąpiło zablokowanie ładowania sterownika Error: (06/28/2021 10:45:15 PM) (Source: Application Popup) (EventID: 1060) (User: ) Description: \??\C:\Users\Dawid\AppData\Local\Temp\ehdrv.sys Error: (06/28/2021 10:45:14 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi eapihdrv z powodu następującego błędu: Nastąpiło zablokowanie ładowania sterownika Error: (06/28/2021 10:45:14 PM) (Source: Application Popup) (EventID: 1060) (User: ) Description: \??\C:\Users\Dawid\AppData\Local\Temp\ehdrv.sys Error: (06/28/2021 10:45:14 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi eapihdrv z powodu następującego błędu: Nastąpiło zablokowanie ładowania sterownika Error: (06/28/2021 10:45:14 PM) (Source: Application Popup) (EventID: 1060) (User: ) Description: \??\C:\Users\Dawid\AppData\Local\Temp\ehdrv.sys Error: (06/28/2021 10:45:14 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi eapihdrv z powodu następującego błędu: Nastąpiło zablokowanie ładowania sterownika Error: (06/28/2021 10:45:14 PM) (Source: Application Popup) (EventID: 1060) (User: ) Description: \??\C:\Users\Dawid\AppData\Local\Temp\ehdrv.sys Windows Defender: ================ Date: 2021-06-12 15:00:39 Description: Skanowanie produktu Program antywirusowy Microsoft Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania: {1FF12E49-09E0-4C03-92E4-FA79EAD88B01} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Szybkie skanowanie Użytkownik: ZARZĄDZANIE NT\SYSTEM Date: 2021-06-03 17:13:29 Description: Skanowanie produktu Program antywirusowy Microsoft Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania: {70ACA385-F77D-4D0D-A196-0B544AE6505A} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Szybkie skanowanie Użytkownik: ZARZĄDZANIE NT\SYSTEM Date: 2021-05-24 17:59:01 Description: Skanowanie produktu Program antywirusowy Microsoft Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania: {588D148B-8C8B-4240-BB6C-43D43B204EB8} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Szybkie skanowanie Użytkownik: ZARZĄDZANIE NT\SYSTEM Date: 2021-06-04 10:03:30 Description: Produkt Program antywirusowy Microsoft Defender napotkał błąd podczas próby aktualizacji analizy zabezpieczeń. Nowa wersja analizy zabezpieczeń: 1.341.28.0 Poprzednia wersja analizy zabezpieczeń: 1.339.1972.0 Źródło aktualizacji: Użytkownik Typ analizy zabezpieczeń: Oprogramowanie antyszpiegowskie Typ aktualizacji: Różnica Użytkownik: ZARZĄDZANIE NT\SYSTEM Bieżąca wersja aparatu: 1.1.18200.4 Poprzednia wersja aparatu: 1.1.18100.6 Kod błędu: 0x80070666 Opis błędu: Inna wersja tego produktu jest już zainstalowana na tym komputerze. Nie można kontynuować instalowania tej wersji. Aby skonfigurować lub usunąć istniejącą wersję tego produktu, użyj aplikacji Dodaj/Usuń Programy z Panelu sterowania. Date: 2021-06-04 10:03:30 Description: Produkt Program antywirusowy Microsoft Defender napotkał błąd podczas próby aktualizacji analizy zabezpieczeń. Nowa wersja analizy zabezpieczeń: 1.341.28.0 Poprzednia wersja analizy zabezpieczeń: 1.339.1972.0 Źródło aktualizacji: Użytkownik Typ analizy zabezpieczeń: Oprogramowanie antywirusowe Typ aktualizacji: Różnica Użytkownik: ZARZĄDZANIE NT\SYSTEM Bieżąca wersja aparatu: 1.1.18200.4 Poprzednia wersja aparatu: 1.1.18100.6 Kod błędu: 0x80070666 Opis błędu: Inna wersja tego produktu jest już zainstalowana na tym komputerze. Nie można kontynuować instalowania tej wersji. Aby skonfigurować lub usunąć istniejącą wersję tego produktu, użyj aplikacji Dodaj/Usuń Programy z Panelu sterowania. Date: 2021-06-04 10:03:30 Description: Produkt Program antywirusowy Microsoft Defender napotkał błąd podczas próby aktualizacji aparatu. Nowa wersja aparatu: 1.1.18200.4 Poprzednia wersja aparatu: 1.1.18100.6 Użytkownik: ZARZĄDZANIE NT\SYSTEM Kod błędu: 0x80070666 Opis błędu: Inna wersja tego produktu jest już zainstalowana na tym komputerze. Nie można kontynuować instalowania tej wersji. Aby skonfigurować lub usunąć istniejącą wersję tego produktu, użyj aplikacji Dodaj/Usuń Programy z Panelu sterowania. CodeIntegrity: =============== Date: 2021-06-28 23:16:23 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Statystyki pamięci =========================== BIOS: American Megatrends Inc. M.A0 11/26/2020 Płyta główna: Micro-Star International Co., Ltd B450-A PRO MAX (MS-7B86) Procesor: AMD Ryzen 5 3600 6-Core Processor Procent pamięci w użyciu: 35% Całkowita pamięć fizyczna: 16309.72 MB Dostępna pamięć fizyczna: 10493.45 MB Całkowita pamięć wirtualna: 18741.72 MB Dostępna pamięć wirtualna: 9672.79 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:232.28 GB) (Free:47.84 GB) NTFS Drive d: () (Fixed) (Total:465.66 GB) (Free:229.22 GB) NTFS \\?\Volume{a3195173-a094-4317-91ba-77c707d6a375}\ (Odzyskiwanie) (Fixed) (Total:0.49 GB) (Free:0.06 GB) NTFS \\?\Volume{88ce532b-a22a-48cc-ae23-8355e26e4043}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Tablica partycji ==================== ========================================================== Disk: 0 (Protective MBR) (Size: 232.9 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 0C550C54) Partition 1: (Active) - (Size=465.7 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt =======================