Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 09-06-2021 Uruchomiony przez Q (12-06-2021 01:13:09) Uruchomiony z I:\ Windows 7 Professional Service Pack 1 (X64) (2019-01-15 19:20:30) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-2494838212-729635822-1952555144-500 - Administrator - Disabled) Gość (S-1-5-21-2494838212-729635822-1952555144-501 - Limited - Disabled) Q (S-1-5-21-2494838212-729635822-1952555144-1000 - Administrator - Enabled) => C:\Users\Q ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AS: Malwarebytes (Disabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) 1C\Space Rangers 2 (HKLM-x32\...\Space Rangers 2) (Version: - ) ACP Application (HKLM\...\{09475CBD-2C5F-4259-9ACA-B1078713DA5D}) (Version: 1.2.3.5 - Advanced Micro Devices, Inc.) Hidden Act of War - Złota Edycja (HKLM-x32\...\{BD2DD2FD-4F09-453E-8402-1D319BC30B68}) (Version: 1.0 - Atari) Age of Empires III - Complete Collection wersja 1.03 (HKLM-x32\...\Age of Empires III - Complete Collection_is1) (Version: 1.03 - Microsoft Studios) AIDA64 Extreme v6.25 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 6.25 - FinalWire Ltd.) AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 21.5.2 - Advanced Micro Devices, Inc.) AOC G-Menu (HKLM\...\{177B7213-4D12-49AD-9746-C532580D6D52}) (Version: 1.0.068 - Portrait Displays, Inc.) Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.5.7 - Electronic Arts, Inc.) ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.14 - Michael Tippach) Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.47.2 - Asmedia Technology) Audacity 2.3.3 (HKLM-x32\...\Audacity_is1) (Version: 2.3.3 - Audacity Team) balenaEtcher 1.5.120 (HKU\S-1-5-21-2494838212-729635822-1952555144-1000\...\d2f3b6c7-6f49-59e2-b8a5-f72e33900c2b) (Version: 1.5.120 - Balena Inc.) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Brygada E5 (HKLM-x32\...\BrygadaE5_is1) (Version: - Cenega Poland Sp. z o.o.) CCleaner (HKLM\...\CCleaner) (Version: 5.81 - Piriform) cFosSpeed v10.27 (HKLM\...\cFosSpeed) (Version: 10.27 - cFos Software GmbH, Bonn) Counter-Strike 1.6 v43 (HKU\S-1-5-21-2494838212-729635822-1952555144-1000\...\{1BD2212B-8287-4F33-A6DC-903D423AB814}_is1) (Version: v43 - CSSetti.pl) CPUID CPU-Z MSI 1.92 (HKLM\...\CPUID CPU-Z MSI_is1) (Version: 1.92 - CPUID, Inc.) CPUID HWMonitor 1.43 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.43 - CPUID, Inc.) CrystalDiskInfo 8.8.8 (HKLM\...\CrystalDiskInfo_is1) (Version: 8.8.8 - Crystal Dew World) Dawn of War - Soulstorm (HKLM-x32\...\{20533183-D42D-4261-A125-956736FBEA8C}) (Version: 1.00.0000 - THQ) Diablo II + Diablo II - Lord of Destruction PL 1.12a (HKLM-x32\...\Diablo II + Diablo II - Lord of Destruction PL 1.12a) (Version: - ) DTSStudioSoundGuiPluginInstaller (HKLM-x32\...\{DE339FBB-2FEB-4470-B289-34214FDA0C9F}) (Version: 1.00.1700 - DTS, Inc.) Dungeon Siege Legends of Aranna (HKLM-x32\...\Dungeon Siege Legends of Aranna 1.0) (Version: - Microsoft) ENE RGB HAL (HKLM\...\{87316426-A33E-41E9-942B-968E928A9A47}) (Version: 1.00.10 - Ene Tech.) Hidden ENE RGB HAL (HKLM-x32\...\{9f93601b-15ea-4e69-8d7c-dfa0f29ae04e}) (Version: 1.00.10 - Ene Tech.) Hidden ENE_DRAM_RGB_AURA42 (HKLM\...\{BC5E0A82-C638-44CB-8129-20C8ED70DE7A}) (Version: 1.00.02 - Ene Tech.) Hidden ENE_DRAM_RGB_AURA42 (HKLM-x32\...\{f3d7fb09-b93f-4c01-a765-0b0adc5bc746}) (Version: 1.00.02 - Ene Tech.) Hidden Epic Games Launcher (HKLM-x32\...\{0B51E0DE-75C4-4C28-ABAB-AEBA1151708D}) (Version: 1.1.257.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden f.lux (HKU\S-1-5-21-2494838212-729635822-1952555144-1000\...\Flux) (Version: - f.lux Software LLC) Fallout New Vegas Ultimate Edition (HKLM-x32\...\Fallout New Vegas Ultimate Edition_is1) (Version: - ) FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version: - Image-Line) GameRanger (HKU\S-1-5-21-2494838212-729635822-1952555144-1000\...\GameRanger) (Version: - GameRanger Technologies) Geeks3D FurMark 1.25.0.0 (HKLM-x32\...\{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1) (Version: 1.25.0.0 - Geeks3D) Gothic II - Noc Kruka (HKLM-x32\...\{6FB6D550-DDC4-4996-9CDF-91C34F0A4C4A}) (Version: 2.60.000 - ) Heaven Benchmark version 4.0 (HKLM-x32\...\Unigine Heaven Benchmark (Basic Edition)_is1) (Version: 4.0 - Unigine Corp.) Heroes of Might and Magic III (HKLM-x32\...\{8B743AA0-53B2-11D2-808A-00600895FB43}) (Version: 1.0 - ) Hotline Miami (HKLM-x32\...\GOGPACKHOTLINEMIAMI_is1) (Version: 2.0.0.4 - GOG.com) Intel Extreme Tuning Utility (HKLM-x32\...\{7afa48c7-9901-40fa-8f9b-f0707e2bc5b6}) (Version: 6.2.0.24 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1068 - Intel Corporation) Intel(R) Network Connections 22.9.6.0 (HKLM\...\PROSetDX) (Version: 22.9.6.0 - Intel) Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.49.166.0 - Intel Corporation) Hidden Intel(R) Trusted Connect Services Client (HKLM-x32\...\{df682aff-4294-4ad1-aaa7-276931d5781f}) (Version: 1.49.166.0 - Intel Corporation) Hidden Intel(R) USB 3.0\3.1 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 5.0.3.42 - Intel Corporation) Intel® USB 3.1 Device Driver (HKLM\...\{7DFE2F7E-3154-45D6-A468-4725DE033AC8}) (Version: 15.2.30.250 - Intel Corporation) Java 8 Update 291 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180291F0}) (Version: 8.0.2910.10 - Oracle Corporation) Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Little Fighter (HKLM-x32\...\Little Fighter) (Version: - ) Malwarebytes (wersja 3.8.3.2965) (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.8.3.2965 - Malwarebytes) Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation) Microsoft .NET Framework 4.8 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.8.03761 - Microsoft Corporation) Microsoft Games for Windows - LIVE (HKLM-x32\...\{B45FABE7-D101-4D99-A671-E16DA40AF7F0}) (Version: 3.0.86.0 - Microsoft Corporation) Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{B578C85A-A84C-4230-A177-C5B2AF565B8C}) (Version: 3.0.17.0 - Microsoft Corporation) Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft Power Query dla programu Excel (x64) (HKLM\...\{8A36DAA4-EDA2-480D-8BC3-36434358392B}) (Version: 2.59.5135.201 - Microsoft Corporation) Microsoft Teams (HKU\S-1-5-21-2494838212-729635822-1952555144-1000\...\Teams) (Version: 1.4.00.11161 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{f45b48a7-f616-4211-b927-17cab6a96613}) (Version: 8.0.58298 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation) Microsoft Visual J# 2.0 Redistributable Package (HKLM-x32\...\Microsoft Visual J# 2.0 Redistributable Package) (Version: - Microsoft Corporation) Microsoft Xbox One Controller for Windows (HKLM\...\{DC2CB48C-FD96-48EB-A36A-7D995BB587EB}) (Version: 1.0.2 - Microsoft Corporation) Might & Magic Heroes 5.5 (HKU\S-1-5-21-2494838212-729635822-1952555144-1000\...\Might & Magic Heroes 5.5) (Version: - ) MMH55 Manual version 2.0 (HKU\S-1-5-21-2494838212-729635822-1952555144-1000\...\{98C771FF-8FCB-4B66-AE2D-44E76C3E97E6}_is1) (Version: 2.0 - MMH55 dev team) Mozilla Firefox 89.0 (x64 pl) (HKLM\...\Mozilla Firefox 89.0 (x64 pl)) (Version: 89.0 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 66.0.2 - Mozilla) MSI Afterburner 4.6.3 (HKLM-x32\...\Afterburner) (Version: 4.6.3 - MSI Co., LTD) MSI Command Center (HKLM-x32\...\{85A2564E-9ED9-448A-91E4-B9211EE58A08}_is1) (Version: 3.0.1.02 - MSI) MSI DPC Latency Tuner (HKLM-x32\...\{1AAC56F3-3F60-47DB-BE6B-088F36ADFDC5}_is1) (Version: 1.0.0.38 - MSI) MSI Gaming APP (HKLM-x32\...\{E0229316-E73B-484B-B9E0-45098AB38D8C}}_is1) (Version: 6.2.0.98 - MSI) MSI Gaming Lan Manager (HKLM-x32\...\{3318282C-D4D6-4B29-BBD5-95FC34B54FF0}_is1) (Version: 1.0.0.69 - MSI) MSI Smart Tool (HKLM-x32\...\{DDCCA038-DAB1-4D09-B85C-848020AA75D6}}_is1) (Version: 1.0.0.45 - MSI) MSI Super Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.3.0.29 - MSI) MSI X Boost (HKLM-x32\...\{515143BB-7A11-4D85-B941-D520AAAA099C}_is1) (Version: 1.0.0.46 - MSI) MSIRegister (HKLM-x32\...\{80B995A4-3A86-4690-98A6-563F1A788835}_is1) (Version: 2.0.0.19 - MSI) MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation) NMM (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.80.4 - DuskDweller) Opera Stable 76.0.4017.177 (HKU\S-1-5-21-2494838212-729635822-1952555144-1000\...\Opera 76.0.4017.177) (Version: 76.0.4017.177 - Opera Software) Oprogramowanie mikroukładu Intel® (HKLM-x32\...\{44ded3eb-1686-46a6-9770-fd79096c29f7}) (Version: 10.1.1.45 - Intel(R) Corporation) Hidden Origin (HKLM-x32\...\Origin) (Version: 10.5.99.47918 - Electronic Arts, Inc.) Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Paradox Launcher v2 (HKLM\...\{66DA3501-823A-4F07-A20D-C64495A59DC8}) (Version: 2.1.0 - Paradox Interactive) PDF-XChange Editor (HKLM\...\{372FA909-C6F2-454E-9654-523FF2345B13}) (Version: 8.0.339.0 - Tracker Software Products (Canada) Ltd.) PUBG LITE (HKLM-x32\...\PUBG LITE_is1) (Version: 1.0.1.0 - ) R for Windows 4.0.3 (HKLM\...\R for Windows 4.0.3_is1) (Version: 4.0.3 - R Core Team) Rapoo Audio 7.1 (HKLM-x32\...\SSS16xxAudioExt) (Version: 3.40.2019.717 - Rapoo) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8746.1 - Realtek Semiconductor Corp.) Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.) Rise of the White Wolf (HKLM-x32\...\{3B638883-5687-4B69-BF24-1D87613F61DA}) (Version: 2.0 - CD Projekt RED) Hidden Rise of the White Wolf (HKLM-x32\...\Rise of the White Wolf 2.0) (Version: 2.0 - CD Projekt RED) RivaTuner Statistics Server 7.3.0 (HKLM-x32\...\RTSS) (Version: 7.3.0 - Unwinder) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.8.1 - Rockstar Games) RStudio (HKLM-x32\...\RStudio) (Version: 1.4.1103 - RStudio) Sapphire TRIXX 8.0.0 (HKLM-x32\...\{49272457-BEDE-4A3A-808F-7BBD4840E85B}_is1) (Version: 8.0.0 - Sapphire) STAR WARS™ Battlefront™ II (HKLM-x32\...\{8a882ce0-0c0b-4eb2-850c-28ebadab4f50}) (Version: 1.1.8.16162 - Electronic Arts) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TeamSpeak 3 Client (HKU\S-1-5-21-2494838212-729635822-1952555144-1000\...\TeamSpeak 3 Client) (Version: 3.5.3 - TeamSpeak Systems GmbH) UltraISO Premium V9.71 (HKLM-x32\...\UltraISO_is1) (Version: - ) Unlocker (HKLM-x32\...\{5577A25D-E4FE-4BFB-A660-E0D766BC4EDD}) (Version: 1.9.2 - ajua Custom Installers) Update for Skype for Business 2015 (KB4475564) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{CD0EE05F-11E6-46FA-BB7B-D2A28C47A4F3}) (Version: - Microsoft) Update for Skype for Business 2015 (KB4475564) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{CD0EE05F-11E6-46FA-BB7B-D2A28C47A4F3}) (Version: - Microsoft) Update for Skype for Business 2015 (KB4475564) 64-Bit Edition (HKLM\...\{90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUS_{CD0EE05F-11E6-46FA-BB7B-D2A28C47A4F3}) (Version: - Microsoft) VALORANT (HKU\S-1-5-21-2494838212-729635822-1952555144-1000\...\Riot Game valorant.live) (Version: - Riot Games, Inc) VeraCrypt (HKLM-x32\...\VeraCrypt) (Version: 1.24-Update6 - IDRIX) Wargaming.net Game Center (HKU\S-1-5-21-2494838212-729635822-1952555144-1000\...\Wargaming.net Game Center) (Version: 21.3.0.5224 - Wargaming.net) Wiedźmin Edycja Rozszerzona (HKLM-x32\...\{F138762F-5A1F-4CF0-A5E1-1588EF6088A4}) (Version: 1.4.5.1280 - CD Projekt Red) WinRAR 5.01 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH) World of Tanks EU (HKU\S-1-5-21-2494838212-729635822-1952555144-1000\...\WOT.EU.PRODUCTION) (Version: - Wargaming.net) wufuc (HKLM\...\{F7E7320E-9EBF-44C5-97E7-E8FEB7A47613}) (Version: 1.0.1.201 - zeffy) ZuoYa Gaming Mouse (HKLM-x32\...\{7242E639-CF96-4883-8A59-512BD9FB939A}) (Version: 1.00.0000 - ZuoYa Gaming Mouse) 英斯特A724E游戏鼠标 (HKLM-x32\...\{048CFA2A-E3A8-4D88-B06E-2EAA95D16B94}) (Version: 1.00.0000 - 英斯特) ==================== Niestandardowe rejestracje CLSID (filtrowane): ============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-2494838212-729635822-1952555144-1000_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Q\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.21063.3\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers1: [PDFXChange Editor Context menu] -> {2ACD35AB-F74A-4C20-AA9B-2DE80081626D} => C:\Program Files\Tracker Software\Shell Extensions\XCShellMenu.x64.dll [2020-05-07] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2013-12-03] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2013-12-03] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2015-10-08] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers4: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2015-10-08] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.) ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Windows\System32\atiacm64.dll [2021-05-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers6: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2015-10-08] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2013-12-03] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2013-12-03] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [Brak podpisu cyfrowego] HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [Brak podpisu cyfrowego] ==================== Skróty & WMI ======================== ==================== Załadowane moduły (filtrowane) ============= 2020-12-19 02:48 - 2017-08-02 15:48 - 000237568 _____ () [Brak podpisu cyfrowego] C:\MSI\Gaming APP\LEDControl.dll 2020-12-19 02:48 - 2015-06-23 17:41 - 000082432 _____ (Fintek) [Brak podpisu cyfrowego] C:\MSI\Gaming APP\Lib\FintekUSBDll.dll 2021-01-14 18:13 - 2021-01-14 18:13 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Brak podpisu cyfrowego] D:\Origin\LIBEAY32.dll 2021-01-14 18:13 - 2021-01-14 18:13 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Brak podpisu cyfrowego] D:\Origin\ssleay32.dll 2021-01-14 18:13 - 2021-01-14 18:13 - 001611264 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] D:\Origin\platforms\qwindows.dll 2021-01-14 18:13 - 2021-01-14 18:13 - 005487104 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] D:\Origin\Qt5Core.dll 2021-01-14 18:13 - 2021-01-14 18:13 - 005841920 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] D:\Origin\Qt5Gui.dll 2021-01-14 18:13 - 2021-01-14 18:13 - 001179136 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] D:\Origin\Qt5Network.dll 2021-01-14 18:13 - 2021-01-14 18:13 - 000146432 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] D:\Origin\Qt5WebSockets.dll 2021-01-14 18:13 - 2021-01-14 18:13 - 005089792 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] D:\Origin\Qt5Widgets.dll 2021-01-14 18:13 - 2021-01-14 18:13 - 000184832 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] D:\Origin\Qt5Xml.dll 2020-12-19 02:48 - 2016-10-03 14:43 - 000399872 _____ (TODO: <公司名稱>) [Brak podpisu cyfrowego] C:\MSI\Gaming APP\Lib\SDKDLL.dll ==================== Alternate Data Streams (filtrowane) ======== ==================== Tryb awaryjny (filtrowane) ================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Powiązania plików (filtrowane) ================= ==================== Internet Explorer (Wersja 11) (filtrowane) ========== BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_291\bin\ssv.dll [2021-04-24] (Oracle America, Inc. -> Oracle Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_291\bin\jp2ssv.dll [2021-04-24] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2014-01-21] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2018-07-18] (Microsoft Corporation -> Microsoft Corporation) Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2019-08-19] (Microsoft Corporation -> Microsoft Corporation) ==================== Hosts - zawartość: ========================= (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 04:34 - 2021-06-11 21:09 - 000000035 _____ C:\Windows\system32\drivers\etc\hosts ==================== Inne obszary =========================== (Obecnie brak automatycznej naprawy dla tej sekcji.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\UCRT\;C:\Program Files\Intel\UCRT\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT HKU\S-1-5-21-2494838212-729635822-1952555144-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Q\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja wyłączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Załączenie wejścia w fixlist spowoduje jego usunięcie.) MSCONFIG\startupreg: CCleaner Smart Cleaning => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR MSCONFIG\startupreg: MSIRegister => "C:\MSI\MSIRegister\MSIRegister.exe" MSCONFIG\startupreg: Super Charger => C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe ==================== Reguły Zapory systemu Windows (filtrowane) ================ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [SPPSVC-In-TCP] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [{D4BA3B2C-C538-4553-92B0-A5FAF8F02B53}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{9A127B56-E0B0-4EC7-B394-90CB7D1DA2A1}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [TCP Query User{AF95A1F0-B7F8-497C-BEB8-78EA36D40B77}G:\league of legends\game\league of legends.exe] => (Allow) G:\league of legends\game\league of legends.exe (Riot Games, Inc. -> Riot Games, Inc.) FirewallRules: [UDP Query User{54465C32-6CFB-481F-B822-49971FA5B98B}G:\league of legends\game\league of legends.exe] => (Allow) G:\league of legends\game\league of legends.exe (Riot Games, Inc. -> Riot Games, Inc.) FirewallRules: [TCP Query User{727424B5-8471-40F7-91D0-4F8B103521A1}C:\users\q\appdata\roaming\gameranger\gameranger\gameranger.exe] => (Allow) C:\users\q\appdata\roaming\gameranger\gameranger\gameranger.exe (GameRanger Technologies -> GameRanger Pty Ltd) FirewallRules: [UDP Query User{D18ED553-9FDC-4185-A5F3-FFF4798D6A71}C:\users\q\appdata\roaming\gameranger\gameranger\gameranger.exe] => (Allow) C:\users\q\appdata\roaming\gameranger\gameranger\gameranger.exe (GameRanger Technologies -> GameRanger Pty Ltd) FirewallRules: [TCP Query User{E1E2E53C-86FD-4E95-8A53-8ECE781CF67D}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [UDP Query User{2E183089-379A-48C7-A33F-589D2BD21D3F}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{F54ADD55-A30D-48D4-9C03-E1DBAD454599}] => (Allow) C:\Users\Q\AppData\Roaming\uTorrent\uTorrent.exe => Brak pliku FirewallRules: [{CDD21B1C-7DDD-4D38-96CC-B3EDA6F8E4EE}] => (Allow) C:\Users\Q\AppData\Roaming\uTorrent\uTorrent.exe => Brak pliku FirewallRules: [TCP Query User{EC8C9216-51FA-4676-90FA-14D2DA528701}G:\epic games\hob\hob.exe] => (Allow) G:\epic games\hob\hob.exe (Runic Games, Inc.) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{657008AC-FDEC-491B-A73D-E6E2844098E4}G:\epic games\hob\hob.exe] => (Allow) G:\epic games\hob\hob.exe (Runic Games, Inc.) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{5BBBF2AD-13A8-4372-AE46-153B55486D26}G:\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe] => (Allow) G:\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe (PUBG CORPORATION -> PUBG Works) FirewallRules: [UDP Query User{5C4F347E-7A04-44FA-BD9E-49B18A49A23C}G:\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe] => (Allow) G:\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe (PUBG CORPORATION -> PUBG Works) FirewallRules: [TCP Query User{88EB0D87-AAC1-4FC7-9E95-54B3BE882B0F}D:\borderlands2\binaries\win32\borderlands2.exe] => (Allow) D:\borderlands2\binaries\win32\borderlands2.exe (Take-Two Interactive Software, Inc. -> Take-Two Interactive Software, Inc.) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{00192F13-AFAC-4561-A51E-D5D806483EF9}D:\borderlands2\binaries\win32\borderlands2.exe] => (Allow) D:\borderlands2\binaries\win32\borderlands2.exe (Take-Two Interactive Software, Inc. -> Take-Two Interactive Software, Inc.) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{E15A349C-58B9-4D37-B0DF-D4176CDCD420}D:\totalwarsagatroy\troy.exe] => (Allow) D:\totalwarsagatroy\troy.exe (The Creative Assembly Limited -> The Creative Assembly Ltd) FirewallRules: [UDP Query User{F6D3DC25-9F44-4C42-90AC-8BCF0E4E31D8}D:\totalwarsagatroy\troy.exe] => (Allow) D:\totalwarsagatroy\troy.exe (The Creative Assembly Limited -> The Creative Assembly Ltd) FirewallRules: [TCP Query User{9FEABE61-FC04-48BF-B060-0D2FE7B44EF9}D:\rs2v\binaries\win64\risingstorm2.exe] => (Allow) D:\rs2v\binaries\win64\risingstorm2.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) FirewallRules: [UDP Query User{07E3018B-17FC-4485-8B3B-4512CE560138}D:\rs2v\binaries\win64\risingstorm2.exe] => (Allow) D:\rs2v\binaries\win64\risingstorm2.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) FirewallRules: [TCP Query User{F1FD8D2C-983A-46BD-B9CF-5AB3D76D2046}D:\total war warhammer ii - the warden & the paunch\warhammer2.exe] => (Block) D:\total war warhammer ii - the warden & the paunch\warhammer2.exe (The Creative Assembly Limited -> The Creative Assembly Ltd) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{AA414170-9D5A-4682-B480-3D3DDD61BD26}D:\total war warhammer ii - the warden & the paunch\warhammer2.exe] => (Block) D:\total war warhammer ii - the warden & the paunch\warhammer2.exe (The Creative Assembly Limited -> The Creative Assembly Ltd) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{9F66F961-4591-4D75-806A-42C24C859F4E}C:\users\q\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\q\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [UDP Query User{A0B498AC-430E-4B7C-A709-EED68C2D7073}C:\users\q\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\q\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{47394719-E1A1-4D4E-8107-6DA991C7C1E2}D:\subnautica\subnautica.exe] => (Block) D:\subnautica\subnautica.exe () [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{647734AC-2210-412A-94BD-B939B855F5C4}D:\subnautica\subnautica.exe] => (Block) D:\subnautica\subnautica.exe () [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{88CFEE1D-DC89-45BF-B21D-B835EBD8B8C9}D:\thelongdark\tld.exe] => (Allow) D:\thelongdark\tld.exe () [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{AE31937F-E3D4-4D5E-84A4-33623EB11052}D:\thelongdark\tld.exe] => (Allow) D:\thelongdark\tld.exe () [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{561A3227-F1A9-435F-A0F3-776916741C59}D:\gtav\gta5.exe] => (Allow) D:\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [UDP Query User{89135CFA-8077-4CA2-A79B-CFAF0FA5DE6D}D:\gtav\gta5.exe] => (Allow) D:\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [TCP Query User{5AE531AE-7472-45C5-AB8D-765FC43225E4}D:\rs2v\binaries\win64\vngame.exe] => (Allow) D:\rs2v\binaries\win64\vngame.exe () [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{6B967B22-FB78-48FF-BDE9-00F1EBCEED9A}D:\rs2v\binaries\win64\vngame.exe] => (Allow) D:\rs2v\binaries\win64\vngame.exe () [Brak podpisu cyfrowego] FirewallRules: [{42D1D7A6-6CFD-4AEA-84CA-E0FD187C238C}] => (Allow) D:\SW Battlefront 2\STAR WARS Battlefront II\starwarsbattlefrontii_trial.exe (Electronic Arts, Inc. -> Electronic Arts Inc.) FirewallRules: [{6DAD65C0-E1A5-4E51-AB5E-65C88EF1B705}] => (Allow) D:\SW Battlefront 2\STAR WARS Battlefront II\starwarsbattlefrontii_trial.exe (Electronic Arts, Inc. -> Electronic Arts Inc.) FirewallRules: [{F13516EF-6FB3-4222-A33C-4BB5DE2881AC}] => (Allow) D:\SW Battlefront 2\STAR WARS Battlefront II\starwarsbattlefrontii.exe (Electronic Arts, Inc. -> Electronic Arts Inc.) FirewallRules: [{E4A7C235-CE06-4A44-977E-2B3A3F0F8488}] => (Allow) D:\SW Battlefront 2\STAR WARS Battlefront II\starwarsbattlefrontii.exe (Electronic Arts, Inc. -> Electronic Arts Inc.) FirewallRules: [TCP Query User{D4EF17F4-8C5D-4A74-AFF7-60290DE5C327}F:\r\rstudio\bin\rsession.exe] => (Block) F:\r\rstudio\bin\rsession.exe (RStudio, PBC) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{D99BBFCE-4021-4B6D-8B0E-28D97EA643BC}F:\r\rstudio\bin\rsession.exe] => (Block) F:\r\rstudio\bin\rsession.exe (RStudio, PBC) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{76A48A72-A988-4CF2-8D33-AE0D5500572A}D:\alienisolation\ai.exe] => (Allow) D:\alienisolation\ai.exe () [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{E157A2F1-BFBA-42B8-B5EC-3EE3FF3D57DF}D:\alienisolation\ai.exe] => (Allow) D:\alienisolation\ai.exe () [Brak podpisu cyfrowego] FirewallRules: [{2B63A7FB-82CA-4D42-BE71-9B135C196DD2}] => (Allow) D:\Apex\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) FirewallRules: [{53FC0F1D-DA84-458A-8E78-6B8F80D9FBCB}] => (Allow) D:\Apex\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) FirewallRules: [TCP Query User{5ED6B494-7BA5-4D50-A429-D7551644382B}G:\dawn of war - soulstorm\soulstorm.exe] => (Allow) G:\dawn of war - soulstorm\soulstorm.exe (THQ Canada Inc.) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{238B78D0-AD1F-4B1B-ACB4-46AFD4360F4F}G:\dawn of war - soulstorm\soulstorm.exe] => (Allow) G:\dawn of war - soulstorm\soulstorm.exe (THQ Canada Inc.) [Brak podpisu cyfrowego] FirewallRules: [{C10BFDCC-381B-4D15-8F28-80FBBECD21D0}] => (Allow) G:\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{0DE57D47-4037-474B-8392-FC7B16D27B45}] => (Allow) G:\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{BA3A55AB-8B0E-4CF4-A13C-F0227540515B}] => (Allow) G:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{571D2B98-2689-4754-B7F5-6C4138229DFF}] => (Allow) G:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{921AA63F-F5C9-4C58-AF0C-AED63A39C44F}] => (Allow) G:\Steam\steamapps\common\Team Fortress 2\hl2.exe (Valve -> ) FirewallRules: [{FAB8253F-C5A5-4E13-9B36-7845DC5B5FF4}] => (Allow) G:\Steam\steamapps\common\Team Fortress 2\hl2.exe (Valve -> ) FirewallRules: [TCP Query User{F3A3A7F8-D5B9-4996-A8BA-83838BEAA75F}G:\counter-strike 1.6 v43\hl.exe] => (Allow) G:\counter-strike 1.6 v43\hl.exe (Valve) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{61A35C6C-9CEC-471C-B0FC-B51C7B514180}G:\counter-strike 1.6 v43\hl.exe] => (Allow) G:\counter-strike 1.6 v43\hl.exe (Valve) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{4A0AF7A9-6132-4028-894F-12B10347DE90}D:\kingdomcomedeliverance\bin\win64mastermasterepicpgo\kingdomcome.exe] => (Allow) D:\kingdomcomedeliverance\bin\win64mastermasterepicpgo\kingdomcome.exe (Warhorse Studios sro) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{3913D1F2-7EB3-476B-9BC7-C238C8FD462F}D:\kingdomcomedeliverance\bin\win64mastermasterepicpgo\kingdomcome.exe] => (Allow) D:\kingdomcomedeliverance\bin\win64mastermasterepicpgo\kingdomcome.exe (Warhorse Studios sro) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{D4BC0E70-75A3-44BE-A5D9-413192E41736}G:\darkestdungeon\_windowsnosteam\darkest.exe] => (Allow) G:\darkestdungeon\_windowsnosteam\darkest.exe () [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{9ACD1E8E-B6A0-4FB4-8058-4F2567FA73AC}G:\darkestdungeon\_windowsnosteam\darkest.exe] => (Allow) G:\darkestdungeon\_windowsnosteam\darkest.exe () [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{93236D52-242E-45AD-AA93-5A51355D5244}G:\shadowrunhongkong\srhk.exe] => (Allow) G:\shadowrunhongkong\srhk.exe () [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{6AFBF51F-EAEC-4F75-BB69-E9CDFA0E8E91}G:\shadowrunhongkong\srhk.exe] => (Allow) G:\shadowrunhongkong\srhk.exe () [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{BA20E6AE-AB15-47EC-9E35-93BF53C81A29}G:\shadowrunreturns\shadowrun.exe] => (Allow) G:\shadowrunreturns\shadowrun.exe () [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{87282A81-CC85-48D9-A495-90D686C5C9D7}G:\shadowrunreturns\shadowrun.exe] => (Allow) G:\shadowrunreturns\shadowrun.exe () [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{1BD141EF-5667-4B2C-81D3-0AA0C761FF35}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Block) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net) FirewallRules: [UDP Query User{4ABBAECF-484B-46D0-A2C1-E0EDE06A3161}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Block) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net) FirewallRules: [TCP Query User{37661CBF-08EC-445B-B086-83584DEC77DE}G:\barony\barony.exe] => (Allow) G:\barony\barony.exe (Turning Wheel LLC) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{81729283-AA45-4EFA-98EC-EA2414530278}G:\barony\barony.exe] => (Allow) G:\barony\barony.exe (Turning Wheel LLC) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{FCF27DD4-147A-4725-9638-4FD2E1CA3FE2}H:\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) H:\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net) FirewallRules: [UDP Query User{CAFB98D0-2370-4C60-AF20-3A1A590EA572}H:\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) H:\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net) FirewallRules: [{0962F09A-3262-453B-A332-34233C6CB591}] => (Allow) D:\Steam\steamapps\common\Company of Heroes 2\RelicCoH2.exe (Relic Entertainment, Inc -> Relic Entertainment Inc.) FirewallRules: [{51EF4F56-1DCC-4966-8439-35EAAB4A1E11}] => (Allow) D:\Steam\steamapps\common\Company of Heroes 2\RelicCoH2.exe (Relic Entertainment, Inc -> Relic Entertainment Inc.) FirewallRules: [{5988F5CE-8F6E-4B09-987B-CA4DAAEB79FC}] => (Allow) D:\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe () [Brak podpisu cyfrowego] FirewallRules: [{2B8FA544-2CF3-44F9-A617-75364465E574}] => (Allow) D:\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe () [Brak podpisu cyfrowego] FirewallRules: [{1286570D-C249-455C-805D-D69D43230A2D}] => (Allow) LPort=26789 ==================== Punkty Przywracania systemu ========================= 11-06-2021 21:09:48 Restore Point Created by FRST 12-06-2021 01:10:10 Radeon Installer ==================== Wadliwe urządzenia w Menedżerze urządzeń ============ ==================== Błędy w Dzienniku zdarzeń: ======================== Dziennik Aplikacja: ================== Error: (06/11/2021 09:09:50 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (06/11/2021 09:09:47 PM) (Source: VSS) (EventID: 8194) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas badania interfejsu IVssWriterCallback. hr = 0x80070005, Odmowa dostępu. . To jest często spowodowane przez niepoprawne ustawienia zabezpieczeń w procesie zapisującym lub żądającym. Operacja: Zbieranie danych modułu zapisującego Kontekst: Identyfikator klasy modułu zapisującego: {e8132975-6f93-4464-a53e-1050253ae220} Nazwa modułu zapisującego: System Writer Identyfikator wystąpienia modułu zapisującego: {f2c98251-c3c8-4892-bed7-c8844b0a617f} Error: (06/11/2021 09:02:39 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Error: (06/11/2021 08:53:58 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (06/10/2021 11:38:46 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: mbamtray.exe, wersja: 4.0.0.1006, sygnatura czasowa: 0x60a6743c Nazwa modułu powodującego błąd: Qt5Core.dll, wersja: 5.14.1.0, sygnatura czasowa: 0x603971ce Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x0000000000219dc5 Identyfikator procesu powodującego błąd: 0x1fe4 Godzina uruchomienia aplikacji powodującej błąd: 0x01d75e40f9143d15 Ścieżka aplikacji powodującej błąd: H:\Malwarebytes\Anti-Malware\mbamtray.exe Ścieżka modułu powodującego błąd: H:\Malwarebytes\Anti-Malware\Qt5Core.dll Identyfikator raportu: 3bb80d45-ca34-11eb-b91f-4ccc6ad81be2 Error: (06/10/2021 11:37:49 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (06/10/2021 11:34:09 PM) (Source: Windows Search Service) (EventID: 7010) (User: ) Description: Nie można zainicjować indeksu. Szczegóły: Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801) Error: (06/10/2021 11:34:09 PM) (Source: Windows Search Service) (EventID: 3058) (User: ) Description: Nie można zainicjować aplikacji. Kontekst: aplikacja Windows Szczegóły: Wykaz indeksów zawartości jest uszkodzony. (HRESULT : 0xc0041801) (0xc0041801) Dziennik System: ============= Error: (06/12/2021 01:10:51 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi ACP User Service z powodu następującego błędu: Nie można odnaleźć określonego pliku. Error: (06/11/2021 11:27:51 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi eapihdrv z powodu następującego błędu: Nastąpiło zablokowanie ładowania sterownika Error: (06/11/2021 11:27:51 PM) (Source: Application Popup) (EventID: 1060) (User: ) Description: Ładowanie sterownika \??\C:\Users\Q\AppData\Local\Temp\ehdrv.sys zostało zablokowane z powodu niezgodności z tym systemem. Skontaktuj się z dostawcą oprogramowania w celu uzyskania zgodnej wersji sterownika. Error: (06/11/2021 11:27:50 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi eapihdrv z powodu następującego błędu: Nastąpiło zablokowanie ładowania sterownika Error: (06/11/2021 11:27:50 PM) (Source: Application Popup) (EventID: 1060) (User: ) Description: Ładowanie sterownika \??\C:\Users\Q\AppData\Local\Temp\ehdrv.sys zostało zablokowane z powodu niezgodności z tym systemem. Skontaktuj się z dostawcą oprogramowania w celu uzyskania zgodnej wersji sterownika. Error: (06/11/2021 11:27:50 PM) (Source: Application Popup) (EventID: 1060) (User: ) Description: Ładowanie sterownika \??\C:\Users\Q\AppData\Local\Temp\ehdrv.sys zostało zablokowane z powodu niezgodności z tym systemem. Skontaktuj się z dostawcą oprogramowania w celu uzyskania zgodnej wersji sterownika. Error: (06/11/2021 11:27:50 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi eapihdrv z powodu następującego błędu: Nastąpiło zablokowanie ładowania sterownika Error: (06/11/2021 11:27:50 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi eapihdrv z powodu następującego błędu: Nastąpiło zablokowanie ładowania sterownika Windows Defender: ================ Date: 2021-04-11 10:02:54.569 Description: Produkt Windows Defender napotkał błąd podczas próby aktualizacji aparatu. Nowa wersja aparatu:1.1.18000.5 Poprzednia wersja aparatu:1.1.17700.4 Źródło aktualizacji:Użytkownik Użytkownik:ZARZĄDZANIE NT\SYSTEM Kod błędu:0x8050800c Opis błędu:Wystąpił nieoczekiwany problem. Zainstaluj dostępne aktualizacje, a następnie spróbuj ponownie uruchomić program. Aby uzyskać informacje na temat instalowania aktualizacji, zobacz Pomoc i obsługę techniczną. Date: 2021-04-11 09:55:51.749 Description: Produkt Windows Defender napotkał błąd podczas próby aktualizacji aparatu. Nowa wersja aparatu:1.1.18000.5 Poprzednia wersja aparatu:1.1.17700.4 Źródło aktualizacji:Użytkownik Użytkownik:ZARZĄDZANIE NT\SYSTEM Kod błędu:0x8050800c Opis błędu:Wystąpił nieoczekiwany problem. Zainstaluj dostępne aktualizacje, a następnie spróbuj ponownie uruchomić program. Aby uzyskać informacje na temat instalowania aktualizacji, zobacz Pomoc i obsługę techniczną. Date: 2021-04-11 09:53:31.353 Description: Produkt Windows Defender napotkał błąd podczas próby aktualizacji aparatu. Nowa wersja aparatu:1.1.18000.5 Poprzednia wersja aparatu:1.1.17700.4 Źródło aktualizacji:Użytkownik Użytkownik:ZARZĄDZANIE NT\SYSTEM Kod błędu:0x8050800c Opis błędu:Wystąpił nieoczekiwany problem. Zainstaluj dostępne aktualizacje, a następnie spróbuj ponownie uruchomić program. Aby uzyskać informacje na temat instalowania aktualizacji, zobacz Pomoc i obsługę techniczną. Date: 2021-04-11 09:52:11.357 Description: Produkt Windows Defender napotkał błąd podczas próby aktualizacji aparatu. Nowa wersja aparatu:1.1.18000.5 Poprzednia wersja aparatu:1.1.17700.4 Źródło aktualizacji:Użytkownik Użytkownik:ZARZĄDZANIE NT\SYSTEM Kod błędu:0x8050800c Opis błędu:Wystąpił nieoczekiwany problem. Zainstaluj dostępne aktualizacje, a następnie spróbuj ponownie uruchomić program. Aby uzyskać informacje na temat instalowania aktualizacji, zobacz Pomoc i obsługę techniczną. Date: 2021-01-24 22:55:13.416 Description: Produkt Windows Defender napotkał błąd podczas próby aktualizacji aparatu. Nowa wersja aparatu:1.1.17700.4 Poprzednia wersja aparatu:1.1.6402.0 Źródło aktualizacji:Użytkownik Użytkownik:ZARZĄDZANIE NT\SYSTEM Kod błędu:0x8050800c Opis błędu:Wystąpił nieoczekiwany problem. Zainstaluj dostępne aktualizacje, a następnie spróbuj ponownie uruchomić program. Aby uzyskać informacje na temat instalowania aktualizacji, zobacz Pomoc i obsługę techniczną. ==================== Statystyki pamięci =========================== BIOS: American Megatrends Inc. 2.70 06/30/2018 Płyta główna: MSI Z270 GAMING PRO (MS-7A59) Procesor: Intel(R) Core(TM) i5-7600K CPU @ 3.80GHz Procent pamięci w użyciu: 33% Całkowita pamięć fizyczna: 16343.15 MB Dostępna pamięć fizyczna: 10858.57 MB Całkowita pamięć wirtualna: 32684.45 MB Dostępna pamięć wirtualna: 26815.53 MB ==================== Dyski ================================ Drive c: (SSD SanDisc) (Fixed) (Total:119.14 GB) (Free:29.87 GB) NTFS Drive d: (Viper) (Fixed) (Total:953.86 GB) (Free:104.02 GB) NTFS Drive e: () (Fixed) (Total:84.91 GB) (Free:1.96 GB) NTFS ==>[system z komponentami startowymi (pozyskano odczytując dysk)] Drive f: () (Fixed) (Total:19.62 GB) (Free:4.14 GB) NTFS Drive g: () (Fixed) (Total:361.23 GB) (Free:144.23 GB) NTFS Drive h: () (Fixed) (Total:119.24 GB) (Free:65.81 GB) NTFS Drive i: (XD) (Removable) (Total:0.24 GB) (Free:0.07 GB) FAT Drive k: () (Removable) (Total:0 GB) (Free:0 GB) FAT \\?\Volume{454bd8c3-18fa-11e9-8ade-806e6f6e6963}\ (Zastrzeżone przez system) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==================== MBR & Tablica partycji ==================== ========================================================== Disk: 0 (Size: 953.9 GB) (Disk ID: 10B6043D) Partition 1: (Not Active) - (Size=953.9 GB) - (Type=07 NTFS) ========================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 119.2 GB) (Disk ID: D1EF2848) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=119.1 GB) - (Type=07 NTFS) ========================================================== Disk: 2 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: D9D9D9D9) Partition 1: (Active) - (Size=84.9 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=380.9 GB) - (Type=0F Extended) ========================================================== Disk: 3 (Protective MBR) (Size: 119.2 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 4 (Protective MBR) (Size: 1.9 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 5 (Size: 14.5 GB) (Disk ID: 4AC008A6) Partition 1: (Active) - (Size=805 MB) - (Type=00) Partition 2: (Not Active) - (Size=4 MB) - (Type=EF) ==================== Koniec Addition.txt =======================