Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 20-01-2023 Uruchomiony przez Krzysiek (21-01-2023 20:36:13) Uruchomiony z C:\Drivers Microsoft Windows 10 Pro Wersja 22H2 19045.2486 (X64) (2020-09-30 20:06:32) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= (Załączenie wejścia w fixlist spowoduje jego usunięcie.) Administrator (S-1-5-21-1073480031-1809063097-3931629501-500 - Administrator - Disabled) as (S-1-5-21-1073480031-1809063097-3931629501-1004 - Limited - Enabled) => C:\Users\as Gość (S-1-5-21-1073480031-1809063097-3931629501-501 - Limited - Disabled) Konto domyślne (S-1-5-21-1073480031-1809063097-3931629501-503 - Limited - Disabled) Krzysiek (S-1-5-21-1073480031-1809063097-3931629501-1001 - Administrator - Enabled) => C:\Users\Krzysiek skaner (S-1-5-21-1073480031-1809063097-3931629501-1007 - Limited - Enabled) => C:\Users\skaner WDAGUtilityAccount (S-1-5-21-1073480031-1809063097-3931629501-504 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Malwarebytes (Enabled - Up to date) {0D452135-A081-B000-D6B6-132E52638543} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: AVG Antivirus (Enabled - Up to date) {A3C8941D-8036-3856-D9BB-709D4A2A7EAC} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKLM-x32\...\uTorrent) (Version: 2.2.1 - ) 4K Video Downloader 4.10 (HKLM\...\{A730612F-DC69-4EEC-AB92-0366346D9CCD}) (Version: 4.10.1.3240 - Open Media LLC) 64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden Adobe Acrobat DC (64-bit) (HKLM\...\{AC76BA86-1045-1033-7760-BC15014EA700}) (Version: 22.001.20117 - Adobe) Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601032}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden AI Suite 3 (HKLM-x32\...\{CD36E28B-6023-469A-91E7-049A2874EC13}) (Version: 3.01.06 - ASUSTeK Computer Inc.) AIDA64 Extreme v6.70 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 6.70 - FinalWire Ltd.) AnyDesk (HKLM-x32\...\AnyDesk) (Version: ad 7.0.14 - philandro Software GmbH) AoA Audio Extractor (HKLM-x32\...\{D1725D54-279A-40C5-A70D-23C1785DB920}_is1) (Version: - AoAMedia.com) AVG Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.4.155.333 - AVG Technologies) Hidden Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) calibre (HKLM-x32\...\{FD6B4DA3-5E7B-499E-841D-B797BED0CC47}) (Version: 3.48.0 - Kovid Goyal) CCleaner (HKLM\...\CCleaner) (Version: 6.07 - Piriform) Cooler Master Portal Settings software (HKLM-x32\...\{1A3E3EA7-5A7C-4292-8A13-B0DE1BF49E13}_COOLER_MASTER_PORTAL) (Version: 1.00 - Cooler Master) Core Temp 1.16 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.16 - ALCPU) CPUID HWMonitor 1.41 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.41 - CPUID, Inc.) CPUID ROG CPU-Z 1.99 (HKLM\...\CPUID ROG CPU-Z_is1) (Version: 1.99 - CPUID, Inc.) CrystalDiskInfo 8.1.0 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 8.1.0 - Crystal Dew World) CrystalDiskMark 8.0.4 (HKLM\...\CrystalDiskMark8_is1) (Version: 8.0.4 - Crystal Dew World) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.8.0.0410 - Disc Soft Ltd) Diablo II (HKLM-x32\...\Diablo II) (Version: 0.0.0.0 - Blizzard Entertainment) Diablo II Resurrected (HKLM-x32\...\Diablo II Resurrected) (Version: - Blizzard Entertainment) Diablo Immortal (HKLM-x32\...\Diablo Immortal) (Version: - Blizzard Entertainment) Discord (HKU\S-1-5-21-1073480031-1809063097-3931629501-1001\...\Discord) (Version: 0.0.309 - Discord Inc.) DisplayFusion 9.9 (HKLM-x32\...\B076073A-5527-4f4f-B46B-B10692277DA2_is1) (Version: 9.9.0.0 - Binary Fortress Software) Duet Display (HKLM\...\{A64C3529-79F2-4B83-B057-0942882D1508}) (Version: 2.1.9.0 - Kairos) Hidden Duet Display (HKLM\...\Duet Display 2.1.9.0) (Version: 2.1.9.0 - Kairos) ENE RGB HAL (HKLM\...\{87316426-A33E-41E9-942B-968E928A9A47}) (Version: 1.00.10 - Ene Tech.) Hidden ENE RGB HAL (HKLM-x32\...\{9f93601b-15ea-4e69-8d7c-dfa0f29ae04e}) (Version: 1.00.10 - Ene Tech.) Hidden Epic Games Launcher (HKLM-x32\...\{3EEDB75F-1C43-469D-BE21-36A99C047EEA}) (Version: 1.1.151.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden FPS Monitor (HKLM-x32\...\FPS Monitor_is1) (Version: 1 - ) GeeGeeClient (HKLM-x32\...\{4098FA2E-B92A-491F-A3FE-08D0B4F48358}) (Version: 1.1.20.0 - WonderPeople) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 109.0.5414.75 - Google LLC) Hero Editor V1.04 (HKLM-x32\...\ST6UNST #1) (Version: - ) HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP) Intel(R) Chipset Device Software (HKLM\...\{81520FC5-3518-40E9-9803-70CE8A801D07}) (Version: 10.1.1.38 - Intel Corporation) Hidden Intel(R) Serial IO (HKLM\...\{8EC4CB19-850D-4BD4-B914-F63DF7DAD67D}) (Version: 30.100.2131.26 - Intel Corporation) Hidden Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.2131.26 - Intel Corporation) JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH) KMPlayer (HKLM-x32\...\The KMPlayer) (Version: 4.2.2.62 - PandoraTV) Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Lightshot-5.4.0.35 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.4.0.35 - Skillbrains) Malwarebytes version 4.5.20.230 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.20.230 - Malwarebytes) Microsoft Access MUI (Polish) 2013 (HKLM-x32\...\{90150000-0015-0415-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Microsoft DCF MUI (Polish) 2013 (HKLM-x32\...\{90150000-0090-0415-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 109.0.1518.61 - Microsoft Corporation) Microsoft Excel MUI (Polish) 2013 (HKLM-x32\...\{90150000-0016-0415-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Microsoft GameInput (HKLM-x32\...\{6BBE9278-659F-FA16-E4B8-C2D60DE0DCC7}) (Version: 10.1.22621.1863 - Microsoft Corporation) Microsoft Groove MUI (Polish) 2013 (HKLM-x32\...\{90150000-00BA-0415-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Microsoft InfoPath MUI (Polish) 2013 (HKLM-x32\...\{90150000-0044-0415-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Microsoft Lync MUI (Polish) 2013 (HKLM-x32\...\{90150000-012B-0415-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Microsoft Office 64-bit Components 2013 (HKLM\...\{90150000-002A-0000-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Microsoft Office Korrekturhilfen 2013 - Deutsch (HKLM-x32\...\{90150000-001F-0407-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Microsoft Office OSM MUI (Polish) 2013 (HKLM-x32\...\{90150000-00E1-0415-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Microsoft Office OSM UX MUI (Polish) 2013 (HKLM-x32\...\{90150000-00E2-0415-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Microsoft Office Professional Plus 2013 (HKLM-x32\...\{90150000-0011-0000-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Microsoft Office Professional Plus 2013 (HKLM-x32\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft Office Proofing (Polish) 2013 (HKLM-x32\...\{90150000-002C-0415-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Microsoft Office Proofing Tools 2013 - English (HKLM-x32\...\{90150000-001F-0409-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Microsoft Office Shared 64-bit MUI (Polish) 2013 (HKLM\...\{90150000-002A-0415-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Microsoft Office Shared MUI (Polish) 2013 (HKLM-x32\...\{90150000-006E-0415-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Microsoft OneNote MUI (Polish) 2013 (HKLM-x32\...\{90150000-00A1-0415-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Microsoft Outlook MUI (Polish) 2013 (HKLM-x32\...\{90150000-001A-0415-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Microsoft PowerPoint MUI (Polish) 2013 (HKLM-x32\...\{90150000-0018-0415-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Microsoft Publisher MUI (Polish) 2013 (HKLM-x32\...\{90150000-0019-0415-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Microsoft Update Health Tools (HKLM\...\{80F1AF52-7AC0-42A3-9AF0-689BFB271D1D}) (Version: 3.68.0.0 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.29.30133 (HKLM-x32\...\{295d1583-fdb9-414b-a4c8-da539362a26b}) (Version: 14.29.30133.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.29.30133 (HKLM-x32\...\{38b2c744-ad08-4d5b-91a2-3fb6f739ff3e}) (Version: 14.29.30133.0 - Microsoft Corporation) Microsoft Visual C++ 2019 X64 Additional Runtime - 14.29.30133 (HKLM\...\{E699E009-1C3C-4E50-9B57-2B39F0954C7F}) (Version: 14.29.30133 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.29.30133 (HKLM\...\{6CD9E9ED-906D-4196-8DC3-F987D2F6615F}) (Version: 14.29.30133 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X86 Additional Runtime - 14.29.30133 (HKLM-x32\...\{42667D2E-B054-46C1-9D46-2EE1332C14C1}) (Version: 14.29.30133 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.29.30133 (HKLM-x32\...\{EC9807DE-B577-47B1-A024-0251805ACF24}) (Version: 14.29.30133 - Microsoft Corporation) Hidden Microsoft Word MUI (Polish) 2013 (HKLM-x32\...\{90150000-001B-0415-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation) MK750 Settings software (HKLM-x32\...\{1A3E3EA7-5A7C-4292-8A13-B0DE1BF49E13}_MK750) (Version: 2.26 - Cooler Master) Mouse Server (wersja 1.7.7.5) (HKLM-x32\...\{7AFAA880-BB05-4E38-9279-C53EECE1B7BE}_is1) (Version: 1.7.7.5 - Necta Inc.) Mozilla Firefox (x64 pl) (HKLM\...\Mozilla Firefox 95.0.2 (x64 pl)) (Version: 95.0.2 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 77.0 - Mozilla) MSI Gaming APP (HKLM-x32\...\{E0229316-E73B-484B-B9E0-45098AB38D8C}}_is1) (Version: 6.2.0.97 - MSI) Narzędzia sprawdzające pakietu Microsoft Office 2013 — polski (HKLM-x32\...\{90150000-001F-0415-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Nero 7 Lite 7.7.5.1 (HKLM-x32\...\Nero7Lite_is1) (Version: 7.7.5.1 - Updatepack.nl) NetSpeedMonitor 2.5.4.0 x64 (HKLM\...\{88F41EE2-949B-4B52-933D-C7F8F67BC1D2}) (Version: 2.5.4.0 - Florian Gilles) NirSoft Volumouse (HKLM-x32\...\Volumouse) (Version: - ) Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.6.4 - Notepad++ Team) NTLite v1.7.5.6842 (HKLM\...\NTLite_is1) (Version: 1.7.5.6842 - Nlitesoft) NVIDIA FrameView SDK 1.2.7521.31103277 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.2.7521.31103277 - NVIDIA Corporation) NVIDIA GeForce Experience 3.25.1.27 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.25.1.27 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation) NVIDIA Sterownik graficzny 516.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 516.94 - NVIDIA Corporation) Odinstaluj drukarkę EPSON XP-342 343 345 Series (HKLM\...\EPSON XP-342 343 345 Series) (Version: - Seiko Epson Corporation) Opera Stable 94.0.4606.65 (HKLM-x32\...\Opera 94.0.4606.65) (Version: 94.0.4606.65 - Opera Software) Oprogramowanie mikroukładu Intel® (HKLM-x32\...\{bb0592a7-5772-4736-9d55-2402740085db}) (Version: 10.1.1.38 - Intel(R) Corporation) Hidden Origin (HKLM-x32\...\Origin) (Version: 10.5.38.25027 - Electronic Arts, Inc.) Project Diablo 2 (HKLM-x32\...\{822B3055-5F16-4934-A1FC-378AB0181A66}_is1) (Version: 1.0 - projectdiablo2.com) Project Diablo 2 (HKLM-x32\...\{B04DD352-A039-45EC-B2F2-4C778BAF717D}) (Version: 1.0.0.1 - ProjectD2) Razer Synapse (HKLM-x32\...\Razer Synapse) (Version: 3.8.0116.010612 - Razer Inc.) Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9126.1 - Realtek Semiconductor Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.50.511.2021 - Realtek) ROG Live Service (HKLM-x32\...\{2D87BFB6-C184-4A59-9BBE-3E20CE797631}) (Version: 1.3.10.0 - ASUSTek COMPUTER INC.) Sandboxie 5.55.8 (64-bit) (HKLM\...\Sandboxie) (Version: 5.55.8 - sandboxie-plus.com) Skype (wersja 8.29) (HKLM-x32\...\Skype_is1) (Version: 8.29 - Skype Technologies S.A.) Sprawdzanie kondycji komputera z systemem Windows (HKLM\...\{41E85393-7ED3-4C54-AC25-51F8CDF39CDF}) (Version: 3.6.2204.08001 - Microsoft Corporation) SRWare Iron (64-Bit) (wersja 91.0.4650.0) (HKLM\...\{BA85A29D-B48E-4826-BAEE-817024E52E29}_is1) (Version: 91.0.4650.0 - SRWare) SSDlife Pro (HKLM-x32\...\{6F104B6D-535A-4D27-9A11-8525368AEB1F}) (Version: 2.5.82 - BinarySense Inc.) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) SteelSeries GG 20.1.0 (HKLM\...\SteelSeries GG) (Version: 20.1.0 - SteelSeries ApS) Stickies 9.0e (HKLM-x32\...\ZhornStickies) (Version: - Zhorn Software) Surfshark (HKLM-x32\...\{A6CFB329-00F1-465E-9931-F709430F280B}) (Version: 4.6.2999 - Surfshark) Hidden Surfshark (HKLM-x32\...\Surfshark 4.6.2999) (Version: 4.6.2999 - Surfshark) Surfshark TAP Driver Windows (HKLM-x32\...\{364DA2C2-3C50-468A-A1BD-93E5B8502B40}) (Version: 1.0.1 - Surfshark) Surfshark TAP Driver Windows (HKLM-x32\...\{3E0F2149-F7FA-4299-A940-5EB798F74D47}) (Version: 1.0.1 - Surfshark) Surfshark TAP Driver Windows (HKLM-x32\...\{51F73AB8-1008-4637-B82A-4DAC08F96D2F}) (Version: 1.0.1 - Surfshark) Surfshark TAP Driver Windows (HKLM-x32\...\{56142B6D-2B61-4BDC-A607-B06CB18FE179}) (Version: 1.0.1 - Surfshark) Surfshark TAP Driver Windows (HKLM-x32\...\{D416A6E6-F990-42CF-A790-8F9179762F34}) (Version: 1.0.1 - Surfshark) Surfshark TAP Driver Windows (HKLM-x32\...\{DE4A71A9-7A76-4479-A811-4AE8BF911C77}) (Version: 1.0.1 - Surfshark) Syncios Mobile Manager 7.0.6 (HKLM-x32\...\Syncios Mobile Manager) (Version: 7.0.6 - Syncios) Syncios Toolkit 1.1.0 (HKLM-x32\...\Syncios Toolkit) (Version: 1.1.0 - Syncios) Środowisko uruchomieniowe Microsoft Edge WebView2 (HKLM-x32\...\Microsoft EdgeWebView) (Version: 109.0.1518.52 - Microsoft Corporation) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.1.8 - TeamSpeak Systems GmbH) Telegram Desktop version 2.7.4 (HKU\S-1-5-21-1073480031-1809063097-3931629501-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 2.7.4 - Telegram FZ-LLC) Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.52a - Ghisler Software GmbH) Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 70.0 - Ubisoft) Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{C22F49B1-0F67-47DC-A490-E8B4B6558EA9}) (Version: 8.91.0.0 - Microsoft Corporation) VLC media player (HKLM\...\VLC media player) (Version: 3.0.4 - VideoLAN) Vortex (HKLM\...\57979c68-f490-55b8-8fed-8b017a5af2fe) (Version: 1.1.5 - Black Tree Gaming Ltd.) Wargaming.net Game Center (HKU\S-1-5-21-1073480031-1809063097-3931629501-1001\...\Wargaming.net Game Center) (Version: 19.1.1.4166 - Wargaming.net) WinRAR 5.60 beta 3 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.60.3 - win.rar GmbH) Packages: ========= AirServer Windows 10 Desktop Edition -> C:\Program Files\WindowsApps\F3F176BD.AirServer_2021.2.23.2_x64__p8qzvses5c8me [2022-01-04] (App Dynamic ehf.) [Startup Task] Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-05] (Autodesk Inc.) Dodatek Aparat multimediów dla aplikacji Zdjęcia -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-05-15] (Microsoft Corporation) Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.16.244.0_x64__rz1tebttyb220 [2022-12-13] (Dolby Laboratories) Glassbrick - Screen Magnifier -> C:\Program Files\WindowsApps\29612Glassbrick.Glassbrick_1.2.0.0_x86__nxnvgjw15z968 [2022-09-12] (Glassbrick) HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_142.1.133.0_x64__v10z8vjag6ke6 [2023-01-20] (HP Inc.) iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12127.1.57051.0_x64__nzyj5cx40ttqa [2022-12-17] (Apple Inc.) [Startup Task] Kodi -> C:\Program Files\WindowsApps\XBMCFoundation.Kodi_20.0.500.0_x64__4n2hpmxwrvr6p [2023-01-19] (XBMC Foundation) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad] MyTwitch -> C:\Program Files\WindowsApps\8325AngryCat.Twitch8_2017.526.0.0_neutral__25808jjevv374 [2020-12-31] (AngryCat) Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.98.1805.0_x64__mcm4njqhnhss8 [2022-02-15] (Netflix, Inc.) NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.963.0_x64__56jybvy8sckqj [2022-10-16] (NVIDIA Corp.) PDF Conversion Tool -> C:\Program Files\WindowsApps\Roxy.PDFConversionTool_1.1.28.0_x64__ewf963ntvtz24 [2022-10-20] (Roxy) Polsat Go -> C:\Program Files\WindowsApps\Redefine.ipla_3.6.34.0_x64__wezn46m95z9ge [2022-11-29] (Cyfrowy Polsat S.A.) Quarrel -> C:\Program Files\WindowsApps\38062AvishaiDernis.DiscordUWP_20.7.5.0_x64__q72k3wbnqqnj6 [2021-02-26] (Adam Dernis) [MS Ad] Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.25.245.0_x64__dt26b99r8h8gj [2022-02-03] (Realtek Semiconductor Corp) TIDAL -> C:\Program Files\WindowsApps\WiMPMusic.27241E05630EA_2.33.2.0_x86__kn85bz84x7te4 [2022-09-13] (TIDAL Music AS) UWP Magnifying Glass -> C:\Program Files\WindowsApps\622PKar.UWPMagnifyingGlass_3.1.1.0_x86__pm8terbg0v8ky [2022-09-12] (PKar) WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2301.4.0_x64__cv1g1gvanyjgm [2023-01-21] (WhatsApp Inc.) [Startup Task] Yeelight UWP -> C:\Program Files\WindowsApps\25196SacredFeniX.YeelightUWP_0.1.16.0_x64__1srwtjq0qq7br [2019-07-30] (SacredFeniX) ΧΡΟΝΟΣ -> C:\Program Files\WindowsApps\37148AndreasBackes.589213265DB8D_10.1.35.0_x64__a8fad4s4zkwqm [2023-01-10] (Andreas Backes) ==================== Niestandardowe rejestracje CLSID (filtrowane): ============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2019-01-27] (Notepad++ -> ) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-04-29] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-04-29] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-04-03] (AVB Disc Soft, SIA -> Disc Soft Ltd) ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-04-03] (AVB Disc Soft, SIA -> Disc Soft Ltd) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2023-01-21] (Malwarebytes Inc. -> Malwarebytes) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_ee20464bb4ac57f4\nvshext.dll [2022-08-23] (Nvidia Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2023-01-21] (Malwarebytes Inc. -> Malwarebytes) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-04-29] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-04-29] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Drivers32: [VIDC.FICV] => C:\Windows\system32\ficvdec_x64.dll [652288 2019-04-23] () [Brak podpisu cyfrowego] HKLM\...\Drivers32-x32: [vidc.XVID] => xvidvfw.dll HKLM\...\Drivers32-x32: [VIDC.VP80] => vp8vfw.dll HKLM\...\Drivers32: [VIDC.FICV] => C:\Windows\SysWOW64\ficvdec_x86.dll [641024 2019-04-23] () [Brak podpisu cyfrowego] ==================== Skróty & WMI ======================== ==================== Załadowane moduły (filtrowane) ============= 2022-10-24 06:03 - 2022-08-09 04:52 - 001427968 _____ () [Brak podpisu cyfrowego] [Plik w użyciu] C:\Program Files (x86)\Razer\Razer Services\Razer Central\CefSharp.Core.Runtime.dll 2022-11-12 19:25 - 2022-11-07 11:17 - 000387072 _____ () [Brak podpisu cyfrowego] C:\___Gry\Steam\bin\cef\cef.win7x64\libegl.dll 2022-11-12 19:25 - 2022-11-07 11:17 - 008052736 _____ () [Brak podpisu cyfrowego] C:\___Gry\Steam\bin\cef\cef.win7x64\libglesv2.dll 2022-02-05 14:53 - 2021-09-06 13:01 - 000147456 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\AI Suite III\AssistFunc.dll 2022-02-05 14:53 - 2021-09-06 13:01 - 000369152 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4cTDPAction.dll 2022-02-05 14:53 - 2021-09-06 13:01 - 000886784 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4DIGIPowerControlAction.dll 2022-02-05 14:53 - 2021-09-06 13:01 - 000997888 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4EpuAction.dll 2022-02-05 14:53 - 2021-09-06 13:01 - 000990720 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4FanAction.dll 2022-02-05 14:53 - 2021-09-06 13:01 - 000954880 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4TurboVEVOAction.dll 2022-02-05 14:53 - 2021-09-06 13:01 - 001667584 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\EPU.dll 2022-02-05 14:53 - 2021-09-06 13:01 - 001065472 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\FanInfofromProtocol.dll 2020-05-13 18:49 - 2017-08-02 13:48 - 000237568 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\MSI\Gaming APP\LEDControl.dll 2022-12-14 15:47 - 2022-12-14 15:47 - 000264192 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\Surfshark\Resources\x64\Surfshark.Firewall.dll 2021-10-27 13:41 - 2021-10-27 13:41 - 001601536 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\Surfshark\runtimes\win-x64\native\e_sqlite3.dll 2022-02-05 14:53 - 2021-09-06 13:01 - 000108544 _____ (ASUS) [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\AI Suite III\AsAcpi.dll 2022-02-05 14:53 - 2021-09-06 13:01 - 000676864 _____ (ASUSTeK Computer Inc.) [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\AI Suite III\asacpiEx.dll 2022-02-05 14:53 - 2021-09-06 13:01 - 000221184 _____ (ASUSTeK Computer Inc.) [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\AI Suite III\AsMultiLang.dll 2022-02-05 14:53 - 2021-09-06 13:01 - 000221184 _____ (ASUSTeK Computer Inc.) [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\AsMultiLang.dll 2020-05-13 18:49 - 2015-06-23 15:41 - 000082432 _____ (Fintek) [Brak podpisu cyfrowego] C:\Program Files (x86)\MSI\Gaming APP\Lib\FintekUSBDll.dll 2019-05-05 13:12 - 2019-02-09 12:14 - 001548288 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Brak podpisu cyfrowego] C:\Program Files (x86)\Origin\LIBEAY32.dll 2019-05-05 13:12 - 2019-02-09 12:14 - 000395776 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Brak podpisu cyfrowego] C:\Program Files (x86)\Origin\ssleay32.dll 2019-05-05 13:12 - 2019-02-09 12:14 - 001611264 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files (x86)\Origin\platforms\qwindows.dll 2019-05-05 13:12 - 2019-02-09 12:14 - 005487104 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files (x86)\Origin\Qt5Core.dll 2019-05-05 13:12 - 2019-02-09 12:14 - 005841920 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files (x86)\Origin\Qt5Gui.dll 2019-05-05 13:12 - 2019-02-09 12:14 - 001177600 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files (x86)\Origin\Qt5Network.dll 2019-05-05 13:12 - 2019-02-09 12:14 - 005089792 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files (x86)\Origin\Qt5Widgets.dll 2019-05-05 13:12 - 2019-02-09 12:14 - 000184832 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files (x86)\Origin\Qt5Xml.dll 2022-02-05 14:53 - 2021-09-06 13:01 - 000078336 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\imageformats\qgifd.dll 2022-02-05 14:53 - 2021-09-06 13:01 - 000102400 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\imageformats\qicnsd.dll 2022-02-05 14:53 - 2021-09-06 13:01 - 000079360 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\imageformats\qicod.dll 2022-02-05 14:53 - 2021-09-06 13:01 - 000668160 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\imageformats\qjpegd.dll 2022-02-05 14:53 - 2021-09-06 13:01 - 000062976 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\imageformats\qsvgd.dll 2022-02-05 14:53 - 2021-09-06 13:01 - 000062464 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\imageformats\qtgad.dll 2022-02-05 14:53 - 2021-09-06 13:01 - 000656384 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\imageformats\qtiffd.dll 2022-02-05 14:53 - 2021-09-06 13:01 - 000060416 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\imageformats\qwbmpd.dll 2022-02-05 14:53 - 2021-09-06 13:01 - 000936448 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\imageformats\qwebpd.dll 2022-02-05 14:53 - 2021-09-06 13:01 - 003425792 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\platforms\qwindowsd.dll 2022-02-05 14:53 - 2021-09-06 13:01 - 011002368 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\Qt5Cored.dll 2022-02-05 14:53 - 2021-09-06 13:01 - 011547648 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\Qt5Guid.dll 2022-02-05 14:53 - 2021-09-06 13:01 - 000568832 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\Qt5Svgd.dll 2022-02-05 14:53 - 2021-09-06 13:01 - 009100288 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\Qt5Widgetsd.dll 2022-02-05 14:53 - 2021-09-06 13:01 - 000312832 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\Qt5Xmld.dll 2022-02-05 14:53 - 2021-09-06 13:01 - 000304128 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\styles\qwindowsvistastyled.dll 2020-05-13 18:49 - 2016-10-03 12:43 - 000399872 _____ (TODO: <公司名稱>) [Brak podpisu cyfrowego] C:\Program Files (x86)\MSI\Gaming APP\Lib\SDKDLL.dll ==================== Alternate Data Streams (filtrowane) ======== ==================== Tryb awaryjny (filtrowane) ================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Powiązania plików (filtrowane) ================= ==================== Internet Explorer (filtrowane) ========== BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2014-01-21] (Microsoft Corporation -> Microsoft Corporation) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2014-01-21] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2014-01-23] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation) ==================== Hosts - zawartość: ========================= (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2023-01-21 20:07 - 2023-01-21 20:07 - 000000027 _____ C:\WINDOWS\system32\drivers\etc\hosts 127.0.0.1 localhost 2022-10-16 21:22 - 2022-11-10 16:27 - 000000536 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics 172.20.48.1 DESKTOP-H0GJEB4.mshome.net # 2027 11 2 9 15 27 8 620 0 0 23 20 36 44 293 172.20.48.1 DESKTOP-H0GJEB4.mshome.net # 2027 10 4 21 17 9 57 249 ==================== Inne obszary =========================== (Obecnie brak automatycznej naprawy dla tej sekcji.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Razer Chroma SDK\bin;C:\Program Files\Razer Chroma SDK\bin;C:\Program Files (x86)\Razer\ChromaBroadcast\bin;C:\Program Files\Razer\ChromaBroadcast\bin;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\dotnet\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files (x86)\Calibre2\;C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\WindowsApps; HKU\S-1-5-21-1073480031-1809063097-3931629501-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Krzysiek\AppData\Local\DisplayFusion\Wallpaper_2.png HKU\S-1-5-21-1073480031-1809063097-3931629501-1004\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg HKU\S-1-5-21-1073480031-1809063097-3931629501-1007\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg DNS Servers: 62.233.233.233 - 87.204.204.204 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Załączenie wejścia w fixlist spowoduje jego usunięcie.) MSCONFIG\Services: AdobeARMservice => 2 HKLM\...\StartupApproved\Run: => "SteelSeriesGG" HKLM\...\StartupApproved\Run32: => "Opera Browser Assistant" HKLM\...\StartupApproved\Run32: => "HomeFtpServer" HKLM\...\StartupApproved\Run32: => "Live Update" HKLM\...\StartupApproved\Run32: => "MSIRegister" HKLM\...\StartupApproved\Run32: => "Super Charger" HKLM\...\StartupApproved\Run32: => "SecurityHealth" HKLM\...\StartupApproved\Run32: => "Genshin Impact_Launcher" HKLM\...\StartupApproved\Run32: => "Print Manager" HKLM\...\StartupApproved\Run32: => "Duet Display" HKU\S-1-5-21-1073480031-1809063097-3931629501-1001\...\StartupApproved\StartupFolder: => "Stickies.lnk" HKU\S-1-5-21-1073480031-1809063097-3931629501-1001\...\StartupApproved\Run: => "1790C135DB94A4E33659B8F03826488F9C6DF01B._service_run" HKU\S-1-5-21-1073480031-1809063097-3931629501-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount" HKU\S-1-5-21-1073480031-1809063097-3931629501-1001\...\StartupApproved\Run: => "EpicGamesLauncher" HKU\S-1-5-21-1073480031-1809063097-3931629501-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-1073480031-1809063097-3931629501-1001\...\StartupApproved\Run: => "SandboxieControl" HKU\S-1-5-21-1073480031-1809063097-3931629501-1001\...\StartupApproved\Run: => "Discord" HKU\S-1-5-21-1073480031-1809063097-3931629501-1001\...\StartupApproved\Run: => "Skype for Desktop" HKU\S-1-5-21-1073480031-1809063097-3931629501-1001\...\StartupApproved\Run: => "MouseServer" HKU\S-1-5-21-1073480031-1809063097-3931629501-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning" HKU\S-1-5-21-1073480031-1809063097-3931629501-1001\...\StartupApproved\Run: => "Wargaming.net Game Center" HKU\S-1-5-21-1073480031-1809063097-3931629501-1001\...\StartupApproved\Run: => "Application Restart #3" HKU\S-1-5-21-1073480031-1809063097-3931629501-1001\...\StartupApproved\Run: => "Application Restart #5" ==================== Reguły Zapory systemu Windows (filtrowane) ================ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [UDP Query User{E3D17181-08AF-4F14-B3AC-1A705D37C104}D:\___anime\anydesk (1).exe] => (Allow) D:\___anime\anydesk (1).exe (philandro Software GmbH -> philandro Software GmbH) FirewallRules: [TCP Query User{7F1C8278-E5DA-489E-9278-8EE07CDFCCB3}D:\___anime\anydesk (1).exe] => (Allow) D:\___anime\anydesk (1).exe (philandro Software GmbH -> philandro Software GmbH) FirewallRules: [{3D42DC2B-0D5D-456D-9EC2-D63852371834}] => (Allow) D:\___Anime\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH) FirewallRules: [{A852DF8B-F784-436F-93D6-14D78366C7BF}] => (Allow) D:\___Anime\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH) FirewallRules: [{0C63F322-6177-47BC-9E24-DAA06A607425}] => (Allow) D:\___Anime\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH) FirewallRules: [{9E8705B4-4985-4F5C-8F14-F779FB681048}] => (Allow) D:\___Anime\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH) FirewallRules: [{96207615-D9CC-496F-B4AC-75D28D0EEB89}] => (Allow) C:\ProgramData\Wargaming.net\GameCenter\wgc.exe (Wargaming.net Limited -> Wargaming.net) FirewallRules: [{E36D513C-7B6E-48D8-9DB3-24DCF190537C}] => (Allow) C:\ProgramData\Wargaming.net\GameCenter\wgc.exe (Wargaming.net Limited -> Wargaming.net) FirewallRules: [{D42C2B6A-B1B9-49B9-ACEC-BF2E711A2514}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcopy2.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{634D8ACC-132F-4F8B-8C35-086EACA88A5D}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{4C93351E-846A-4280-A8A3-34C67245636D}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [UDP Query User{C63C7542-67A5-4D2D-94A4-03B3D99F007B}C:\program files (x86)\mouse server\mouseserver.exe] => (Allow) C:\program files (x86)\mouse server\mouseserver.exe (wifimouse.necta.us) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{677B0FA7-FBD4-4EB0-B3B4-ABE7062AC1FC}C:\program files (x86)\mouse server\mouseserver.exe] => (Allow) C:\program files (x86)\mouse server\mouseserver.exe (wifimouse.necta.us) [Brak podpisu cyfrowego] FirewallRules: [{3C0920AB-6D6C-424A-8484-7D33BC88D253}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform) FirewallRules: [{8713861E-7C59-4C48-8B14-EEB5901A9056}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform) FirewallRules: [{04A2006A-160D-47A9-9E5F-7FA3B671D8EB}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{4D2ADA0F-96EA-4B21-B1B6-4D9F4BDC21A6}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{498F5A45-36F0-46E0-9E7D-D112FF7BA80B}] => (Allow) C:\___Gry\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{CCFC8875-3561-43E8-A09B-1CBF592CD430}] => (Allow) C:\___Gry\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [UDP Query User{7A86F75C-E5DD-49F8-9976-F40C9211CE2B}C:\program files (x86)\mouse server\mouseserver.exe] => (Allow) C:\program files (x86)\mouse server\mouseserver.exe (wifimouse.necta.us) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{91E69341-ECBC-4ADA-8896-353242F9F775}C:\program files (x86)\mouse server\mouseserver.exe] => (Allow) C:\program files (x86)\mouse server\mouseserver.exe (wifimouse.necta.us) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{BF5B3B61-098C-4A95-8BBB-DF27AACA7BDD}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN) FirewallRules: [TCP Query User{506C7DE5-2238-44F8-8DFE-5A62A8A0540B}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN) FirewallRules: [{4625369A-A30D-4DE9-B3A4-5893FAA5E098}] => (Allow) C:\___Gry\Steam\steamapps\common\The Badass Hero\FuryUnleashed.exe () [Brak podpisu cyfrowego] FirewallRules: [{D4153D92-395E-43F5-83E4-B29102DF78EC}] => (Allow) C:\___Gry\Steam\steamapps\common\The Badass Hero\FuryUnleashed.exe () [Brak podpisu cyfrowego] FirewallRules: [{525766DB-D970-46A5-BF1E-F868D632A54F}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{A43504B8-04E4-40D7-B885-67F3E9287D3E}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{F0A15A62-7AF3-4208-BF4B-4A919F1F4306}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{C59A166E-12EE-4845-B07E-AA025065EF2F}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{5EA5698C-628A-4189-9DE1-76521E0089C8}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{3A7BB4F4-B1DD-4480-B585-E732FD885564}] => (Allow) C:\___Gry\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{09E8B9C4-3482-42E0-BD60-E501BA979899}] => (Allow) C:\___Gry\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [UDP Query User{BC2E2A40-3C4F-4C97-8E6A-2717E9B9B367}C:\program files\totalcmd\totalcmd64.exe] => (Allow) C:\program files\totalcmd\totalcmd64.exe (Ghisler Software GmbH -> Ghisler Software GmbH) FirewallRules: [TCP Query User{29D64135-7A8F-423C-8E90-2C30B03F560A}C:\program files\totalcmd\totalcmd64.exe] => (Allow) C:\program files\totalcmd\totalcmd64.exe (Ghisler Software GmbH -> Ghisler Software GmbH) FirewallRules: [{29EA094C-20AE-4735-922F-33B1D925E7C2}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) FirewallRules: [UDP Query User{F0470D19-DC1E-4835-AE20-48FDDE4228B4}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [TCP Query User{E5F99AAC-1459-4A66-A03C-8A0F6F4A5846}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [UDP Query User{FDDA3F65-1B4C-4C82-9D06-ECDFE7AF5069}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [TCP Query User{153EF4B7-7231-427B-BE01-085322D80C84}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [TCP Query User{1AC1855C-1592-4605-AB48-579460754ABE}C:\program files (x86)\utorrent\utorrent.exe] => (Allow) C:\program files (x86)\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent, Inc.) FirewallRules: [UDP Query User{7689C760-B97E-417A-9983-71B4F9126089}C:\program files (x86)\utorrent\utorrent.exe] => (Allow) C:\program files (x86)\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent, Inc.) FirewallRules: [{CEB34121-DD49-409F-B29D-B70642DBD2AA}] => (Allow) C:\___Gry\Steam\steamapps\common\The Binding of Isaac Rebirth\isaac-ng.exe () [Brak podpisu cyfrowego] FirewallRules: [{1EA02A34-D1B0-49F8-99FD-2EA1E128B74B}] => (Allow) C:\___Gry\Steam\steamapps\common\The Binding of Isaac Rebirth\isaac-ng.exe () [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{F1F7AF7A-003D-461D-A068-D31FB41ABA26}C:\users\krzysiek\desktop\faktury gaz\dofinansowanie\downloader_diablo2_lord_of_destruction_engb.exe] => (Allow) C:\users\krzysiek\desktop\faktury gaz\dofinansowanie\downloader_diablo2_lord_of_destruction_engb.exe (Blizzard Entertainment) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{862AC621-B487-4326-B6DA-D3CFE445DE9A}C:\users\krzysiek\desktop\faktury gaz\dofinansowanie\downloader_diablo2_lord_of_destruction_engb.exe] => (Allow) C:\users\krzysiek\desktop\faktury gaz\dofinansowanie\downloader_diablo2_lord_of_destruction_engb.exe (Blizzard Entertainment) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{84C5E335-9D59-4AED-9AA4-73F5BE4A1803}C:\users\krzysiek\desktop\faktury gaz\dofinansowanie\downloader_diablo2_enus.exe] => (Allow) C:\users\krzysiek\desktop\faktury gaz\dofinansowanie\downloader_diablo2_enus.exe (Blizzard Entertainment) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{ABDEB4EE-3691-4BA8-B99A-D495E5B4441B}C:\users\krzysiek\desktop\faktury gaz\dofinansowanie\downloader_diablo2_enus.exe] => (Allow) C:\users\krzysiek\desktop\faktury gaz\dofinansowanie\downloader_diablo2_enus.exe (Blizzard Entertainment) [Brak podpisu cyfrowego] FirewallRules: [{15462429-550E-42A6-842C-29FEF4DD31BB}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{91354FA3-82D6-472E-87BE-948C4CCE84CC}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{4D94158E-E151-418A-BA80-C0069AF42552}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{EC8E3CE9-0068-4535-A47A-7EA39E227009}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{26BCD5C5-D7FE-4411-8E74-7F6053AA26C3}] => (Allow) C:\___Gry\Steam\steamapps\common\Stoneshard\StoneShard.exe () [Brak podpisu cyfrowego] FirewallRules: [{7A77E156-13A4-4C2C-A1E0-1CEFBBE26AEB}] => (Allow) C:\___Gry\Steam\steamapps\common\Stoneshard\StoneShard.exe () [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{2114E82C-77F9-4CFD-A25A-A30C5810098A}C:\program files\srware iron\chrome.exe] => (Allow) C:\program files\srware iron\chrome.exe (Stefan Ries -> ) FirewallRules: [UDP Query User{E972EE40-0D2D-4550-84A6-A15869E193F7}C:\program files\srware iron\chrome.exe] => (Allow) C:\program files\srware iron\chrome.exe (Stefan Ries -> ) FirewallRules: [{7463FE42-51B2-4BBB-9622-5A43F882872F}] => (Allow) D:\___GRY___\steamapps\common\grid 2\grid2.exe (Valve Corp. -> Codemasters Software Company Limited) [Brak podpisu cyfrowego] FirewallRules: [{22B37058-A994-494A-88C4-D97514882496}] => (Allow) D:\___GRY___\steamapps\common\grid 2\grid2.exe (Valve Corp. -> Codemasters Software Company Limited) [Brak podpisu cyfrowego] FirewallRules: [{8D7E21C1-C0C9-4B77-A438-EFC18BE2C958}] => (Allow) D:\___GRY___\steamapps\common\ShellShock Live\ShellShockLive.exe () [Brak podpisu cyfrowego] FirewallRules: [{03B5F351-78D4-4583-8BC7-50A473EB6BF3}] => (Allow) D:\___GRY___\steamapps\common\ShellShock Live\ShellShockLive.exe () [Brak podpisu cyfrowego] FirewallRules: [{717ED354-743F-4249-94FF-5524FCEF1397}] => (Allow) D:\___GRY___\steamapps\common\Spiral Knights\java_vm\bin\javaw.exe FirewallRules: [{D7C8C940-6BAE-46D9-A24E-4AC8DFFDFF74}] => (Allow) D:\___GRY___\steamapps\common\Spiral Knights\java_vm\bin\javaw.exe FirewallRules: [{49186595-727F-45E8-BC87-DBAD74EB2AE5}] => (Allow) C:\___Gry\AssassinsCreedOdyssey\ACOdyssey_plus.exe (UBISOFT ENTERTAINMENT INC. -> ) FirewallRules: [{63F46978-578F-45C3-B4BA-058C1A80FC0B}] => (Allow) C:\___Gry\AssassinsCreedOdyssey\ACOdyssey_plus.exe (UBISOFT ENTERTAINMENT INC. -> ) FirewallRules: [TCP Query User{27159800-3FFD-4613-B9FC-6F03590CE3F0}C:\program files\genshin impact\genshin impact game\genshinimpact.exe] => (Allow) C:\program files\genshin impact\genshin impact game\genshinimpact.exe (miHoYo Co.,Ltd. -> ) FirewallRules: [UDP Query User{9288E115-09EF-4870-96A2-6DCE1CB9F9C7}C:\program files\genshin impact\genshin impact game\genshinimpact.exe] => (Allow) C:\program files\genshin impact\genshin impact game\genshinimpact.exe (miHoYo Co.,Ltd. -> ) FirewallRules: [TCP Query User{CE837BF0-24E6-4B87-93BC-456EC6A9A00C}C:\program files\opera\opera.exe] => (Allow) C:\program files\opera\opera.exe (Opera Norway AS -> Opera Software) FirewallRules: [UDP Query User{58A90884-4032-40A4-A4E7-40AD05C32EA0}C:\program files\opera\opera.exe] => (Allow) C:\program files\opera\opera.exe (Opera Norway AS -> Opera Software) FirewallRules: [{6CAD7362-B806-48EC-BE8F-18A064074040}] => (Allow) C:\Program Files\Kairos\Duet Display\duet.exe (Duet, Inc. -> Duet, Inc.) FirewallRules: [{A4A398A9-7AD4-40D9-B846-8D9AF8583A40}] => (Allow) C:\Program Files\Kairos\Duet Display\duet.exe (Duet, Inc. -> Duet, Inc.) FirewallRules: [{21AFF227-2CDF-4D4C-A5EE-343ABB21120D}] => (Allow) C:\Program Files\Kairos\Duet Display\duet.exe (Duet, Inc. -> Duet, Inc.) FirewallRules: [{55CDA250-D4B8-442F-BE1C-B43BD280107B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{9D6B4618-B816-40BC-8284-479360F7D981}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{E41168BF-553B-45CB-AFDF-899EFAD173F2}] => (Allow) C:\Program Files (x86)\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) FirewallRules: [{79E842C1-FEEA-4747-8060-5C7FCB7C264A}] => (Allow) C:\Program Files (x86)\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) FirewallRules: [{75008766-FE63-484C-A9B6-E7DB4C9EF806}] => (Allow) LPort=26789 FirewallRules: [{A0A804B1-1AD2-485C-92B9-5DAEA29058B1}] => (Allow) D:\___GRY___\steamapps\common\Dying Light\DyingLightGame.exe (Techland S.A. -> Techland) FirewallRules: [{18AB0F8C-B23F-4D74-9CB1-081507D59CE4}] => (Allow) D:\___GRY___\steamapps\common\Dying Light\DyingLightGame.exe (Techland S.A. -> Techland) FirewallRules: [{F0B2F98A-C06F-448B-B997-73C753F6F533}] => (Allow) D:\___GRY___\steamapps\common\Grim Dawn\Grim Dawn.exe (Crate Entertainment, LLC) [Brak podpisu cyfrowego] FirewallRules: [{6B9C8737-D263-42BE-8940-A370984E3454}] => (Allow) D:\___GRY___\steamapps\common\Grim Dawn\Grim Dawn.exe (Crate Entertainment, LLC) [Brak podpisu cyfrowego] FirewallRules: [{B04437C5-E997-4D98-9F95-537BF652389B}] => (Allow) C:\___Gry\Steam\steamapps\common\WormsXHD\Launcher.exe (Team17 Software Ltd) [Brak podpisu cyfrowego] FirewallRules: [{5E35E0DF-CA9A-4D4B-A8F9-78038E97BB7C}] => (Allow) C:\___Gry\Steam\steamapps\common\WormsXHD\Launcher.exe (Team17 Software Ltd) [Brak podpisu cyfrowego] FirewallRules: [{0687BCDC-3E99-4686-9F62-815D00F56E07}] => (Allow) C:\___Gry\Steam\steamapps\common\WormsRevolution\WormsRevolution.exe () [Brak podpisu cyfrowego] FirewallRules: [{6B3461F2-CE39-4C73-B707-59A50CEC3F9D}] => (Allow) C:\___Gry\Steam\steamapps\common\WormsRevolution\WormsRevolution.exe () [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{61E8C5CF-EE0C-47FD-B3B4-720A3A0D3F9E}C:\program files\opera\opera.exe] => (Allow) C:\program files\opera\opera.exe (Opera Norway AS -> Opera Software) FirewallRules: [UDP Query User{34F87E18-8FA0-4A6E-9A3D-3715B2E53EAF}C:\program files\opera\opera.exe] => (Allow) C:\program files\opera\opera.exe (Opera Norway AS -> Opera Software) FirewallRules: [{0426DDE1-424B-4CA5-8C86-3BB6DCC01BD8}] => (Allow) D:\___GRY___\steamapps\common\Grim Dawn\x64\Grim Dawn.exe (Crate Entertainment, LLC) [Brak podpisu cyfrowego] FirewallRules: [{97AA5037-6047-498E-ACB8-894C03E3B664}] => (Allow) D:\___GRY___\steamapps\common\Grim Dawn\x64\Grim Dawn.exe (Crate Entertainment, LLC) [Brak podpisu cyfrowego] FirewallRules: [{041340AF-FAD1-4ED3-8919-9CD663ABC84F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{280AABC6-D6A7-4297-9DFF-E68CFC3FCF28}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{B52924C9-B21E-4AFA-9BF0-AC24C7D57AF1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{0D95BB96-27AF-4FB1-B48B-8F29A61E7BAF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [TCP Query User{7AFBF8C5-54FD-4791-BAB5-C335573BBBA5}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [UDP Query User{02A7815F-16E0-4A45-A323-D975B522584F}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [{0F763DA2-6CDA-4F0A-834D-58AD1F8E656A}] => (Allow) C:\Program Files (x86)\Syncios\Syncios Mobile Manager\Syncios Mobile Manager.exe (Anvsoft Inc. -> Syncios) FirewallRules: [{437E9305-3D2B-4AD1-97AD-7EA3BBF12168}] => (Allow) D:\___GRY___\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe (Techland S.A. -> Techland) FirewallRules: [{DE7FA469-35A6-4101-8855-35D06A8D4BF5}] => (Allow) D:\___GRY___\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe (Techland S.A. -> Techland) FirewallRules: [{CF6FBA9F-D959-48FB-9C27-99A5B99F6280}] => (Allow) C:\___Gry\Steam\steamapps\common\Soulstone Survivors\Soulstone Survivors.exe () [Brak podpisu cyfrowego] FirewallRules: [{FD318C2B-E9A9-4ECC-88B2-CFEB4892E6BF}] => (Allow) C:\___Gry\Steam\steamapps\common\Soulstone Survivors\Soulstone Survivors.exe () [Brak podpisu cyfrowego] FirewallRules: [{97627BD9-2A74-4683-B644-F362BFD12195}] => (Allow) D:\___GRY___\steamapps\common\Grim Dawn\x64\Grim Dawn.exe (Crate Entertainment, LLC) [Brak podpisu cyfrowego] FirewallRules: [{5246105F-A260-447B-8876-43485964F181}] => (Allow) D:\___GRY___\steamapps\common\Grim Dawn\x64\Grim Dawn.exe (Crate Entertainment, LLC) [Brak podpisu cyfrowego] FirewallRules: [{5ED47F38-9524-4B67-8A6E-79AB9959F417}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12127.1.57051.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{98B0B576-B160-4AAB-A02C-9924132410D1}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12127.1.57051.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{F58BFF38-AFA4-4CE2-A379-45BB61837782}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12127.1.57051.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{3A36DCE4-14AA-4135-9EF5-26C7B8A7FBB6}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12127.1.57051.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{9BE831F5-9A05-4C09-BA9B-99864E5F6EB7}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12127.1.57051.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{258010F7-6E9F-4DF4-9833-918A23423D0F}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12127.1.57051.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{2688B0CD-6EF5-4C10-90B3-0D5F67542FB6}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12127.1.57051.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{5A0A2972-1949-4A0D-8CC2-4847C5C6E4AA}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12127.1.57051.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{045A1D0F-AB46-48B1-9D89-CAFDB44506AA}] => (Allow) C:\Program Files\Opera\94.0.4606.38\opera.exe (Opera Norway AS -> Opera Software) FirewallRules: [{26BF8CF2-4E53-492D-9449-643F8538CA4F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.92.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{2137C379-4D4E-484D-8A29-C00750A43E24}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.92.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{C90542A4-3776-4735-8736-4EB60DF4EB0C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.92.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{9F4788C0-9EC3-4EBD-943B-D6492C643D0B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.92.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{62DF6336-1DD4-4A4D-A94A-0B4F49E86FD6}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\109.0.1518.52\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{505A365C-50D9-4E07-BA86-E20BE29CD05D}] => (Allow) C:\Program Files\Opera\94.0.4606.65\opera.exe (Opera Norway AS -> Opera Software) FirewallRules: [{CC9799DC-9D67-4F3D-A04F-7B04F0B9D58A}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{B3636B37-EBD7-4FCE-A78A-C3843E488830}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH) FirewallRules: [{E539F423-9A76-4054-9988-9160D08C30A3}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH) FirewallRules: [{8D0AC666-476A-425D-B26C-B43183CFAFE3}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH) FirewallRules: [{C147A796-7CD8-4F92-A595-7FF7DF05F937}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH) FirewallRules: [{CEB8B69F-D1BE-4A73-A5E3-147FD0114F09}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH) FirewallRules: [{EC140204-1BDC-43D1-8CD0-0F873079B6B3}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH) ==================== Punkty Przywracania systemu ========================= 07-01-2023 12:08:54 Zaplanowany punkt kontrolny 11-01-2023 18:31:07 Instalator modułów systemu Windows 14-01-2023 09:31:02 Installed Surfshark 20-01-2023 21:16:02 Operacja przywracania ==================== Wadliwe urządzenia w Menedżerze urządzeń ============ Name: Kontroler magistrali zarządzania systemem Description: Kontroler magistrali zarządzania systemem Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Microsoft Device Association Root Enumerator Description: Ogólne urządzenie programowe Class Guid: {62f9c741-b25a-46ce-b54c-9bccce08b6f2} Manufacturer: Microsoft Service: Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: Kontroler RAID Description: Kontroler RAID Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Urządzenie PCI Description: Urządzenie PCI Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Błędy w Dzienniku zdarzeń: ======================== Dziennik Aplikacja: ================== Error: (01/21/2023 08:31:36 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Aktywacja licencji (slui.exe) nie powiodła się, kod błędu: hr=0xC004F074 Argumenty wiersza polecenia: RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable Error: (01/21/2023 08:31:23 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Aktywacja licencji (slui.exe) nie powiodła się, kod błędu: hr=0xC004F074 Argumenty wiersza polecenia: RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=2 Error: (01/21/2023 08:31:11 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Aktywacja licencji (slui.exe) nie powiodła się, kod błędu: hr=0xC004F074 Argumenty wiersza polecenia: RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable Error: (01/21/2023 08:30:59 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Aktywacja licencji (slui.exe) nie powiodła się, kod błędu: hr=0xC004F074 Argumenty wiersza polecenia: RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable Error: (01/21/2023 08:30:42 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Aktywacja licencji (slui.exe) nie powiodła się, kod błędu: hr=0x80004005 Argumenty wiersza polecenia: RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=1 Error: (01/21/2023 08:10:00 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Aktywacja licencji (slui.exe) nie powiodła się, kod błędu: hr=0xC004F074 Argumenty wiersza polecenia: RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable Error: (01/21/2023 08:09:47 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Aktywacja licencji (slui.exe) nie powiodła się, kod błędu: hr=0xC004F074 Argumenty wiersza polecenia: RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable Error: (01/21/2023 08:09:35 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Aktywacja licencji (slui.exe) nie powiodła się, kod błędu: hr=0xC004F074 Argumenty wiersza polecenia: RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=1 Dziennik System: ============= Error: (01/21/2023 08:30:48 PM) (Source: HTTP) (EventID: 15005) (User: ) Description: Nie można powiązać z leżącą niżej warstwą transportową dla [::]:2869. Na liście IP tylko-do-nasłuchu mogą znajdować się odwołania do interfejsu, który nie istnieje na tym komputerze. Numer błędu znajduje się w polu danych. Error: (01/21/2023 08:30:48 PM) (Source: HTTP) (EventID: 15005) (User: ) Description: Nie można powiązać z leżącą niżej warstwą transportową dla [::]:2869. Na liście IP tylko-do-nasłuchu mogą znajdować się odwołania do interfejsu, który nie istnieje na tym komputerze. Numer błędu znajduje się w polu danych. Error: (01/21/2023 08:28:52 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (45000 ms) podczas oczekiwania na połączenie się z usługą Intel(R) TPM Provisioning Service. Error: (01/21/2023 08:08:54 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (45000 ms) podczas oczekiwania na połączenie się z usługą Intel(R) TPM Provisioning Service. Error: (01/21/2023 08:07:48 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa Gaming Services niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (01/21/2023 08:07:48 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa Disc Soft Lite Bus Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (01/21/2023 08:07:48 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa DisplayFusionService niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (01/21/2023 08:07:48 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa Usługa obliczeniowa hosta funkcji Hyper-V niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Windows Defender: ================ Date: 2023-01-20 17:25:40 Description: Skanowanie produktu Program antywirusowy Microsoft Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania: {FC5F8B70-22A5-47B3-AF07-7270B3DC988E} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Szybkie skanowanie Użytkownik: ZARZĄDZANIE NT\SYSTEM Date: 2023-01-19 18:19:00 Description: Skanowanie produktu Program antywirusowy Microsoft Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania: {ED633D26-DBDC-4E32-A113-F499975A4697} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Szybkie skanowanie Użytkownik: ZARZĄDZANIE NT\SYSTEM Date: 2023-01-18 19:03:33 Description: Skanowanie produktu Program antywirusowy Microsoft Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania: {0FB7435A-10D2-4645-A9A1-7C1DF0C338B1} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Szybkie skanowanie Użytkownik: ZARZĄDZANIE NT\SYSTEM Date: 2023-01-17 19:57:18 Description: Skanowanie produktu Program antywirusowy Microsoft Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania: {EF5AAEBA-2327-4DB7-A900-61386D30F609} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Szybkie skanowanie Użytkownik: ZARZĄDZANIE NT\SYSTEM Date: 2023-01-16 17:13:58 Description: Skanowanie produktu Program antywirusowy Microsoft Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania: {353BA973-1DB7-43CD-ADAE-78E4F36ABAED} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Szybkie skanowanie Użytkownik: ZARZĄDZANIE NT\SYSTEM  CodeIntegrity: =============== Date: 2023-01-21 20:33:52 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements. ==================== Statystyki pamięci =========================== BIOS: American Megatrends Inc. 0418 10/13/2021 Płyta główna: ASUSTeK COMPUTER INC. PRIME B660-PLUS D4 Procesor: 12th Gen Intel(R) Core(TM) i5-12600KF Procent pamięci w użyciu: 47% Całkowita pamięć fizyczna: 16197.43 MB Dostępna pamięć fizyczna: 8446.04 MB Całkowita pamięć wirtualna: 19525.43 MB Dostępna pamięć wirtualna: 8711.04 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:446.05 GB) (Free:126.08 GB) (Model: GOODRAM) NTFS Drive d: (DANE) (Fixed) (Total:931.51 GB) (Free:115.75 GB) (Model: ST1000DM003-1SB102) NTFS \\?\Volume{909a067b-e90c-4c5d-960f-3afd8dbd2fee}\ (Odzyskiwanie) (Fixed) (Total:0.49 GB) (Free:0.12 GB) NTFS \\?\Volume{060cc79c-ec1b-47dc-95ef-f2ff733e7cfc}\ () (Fixed) (Total:0.48 GB) (Free:0.04 GB) NTFS \\?\Volume{629458e4-0000-0000-0000-010000000000}\ (PortableBaseLayer) (Fixed) (Total:8 GB) (Free:7.49 GB) NTFS \\?\Volume{43316a88-81b6-4682-bd04-94e8dc13bc50}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Tablica partycji ==================== ========================================================== Disk: 0 (Protective MBR) (Size: 447.1 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 81FF874F) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS) ========================================================== Disk: 2 (MBR Code: Windows 7/8/10) (Size: 8 GB) (Disk ID: 629458E4) Partition 1: (Not Active) - (Size=8 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt =======================