Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 09-01-2023 Uruchomiony przez Ahmed (10-01-2023 16:06:16) Uruchomiony z C:\Users\Ahmed\Downloads Microsoft Windows 10 Home Wersja 2004 19041.572 (X64) (2020-09-01 17:17:30) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= (Załączenie wejścia w fixlist spowoduje jego usunięcie.) Administrator (S-1-5-21-1306247612-828193906-1523655640-500 - Administrator - Disabled) Ahmed (S-1-5-21-1306247612-828193906-1523655640-1001 - Administrator - Enabled) => C:\Users\Ahmed E9AB515C792F49DF8152 (S-1-5-21-1306247612-828193906-1523655640-1007 - Limited - Enabled) FF74FE0EDC214C418922 (S-1-5-21-1306247612-828193906-1523655640-1008 - Limited - Enabled) Gość (S-1-5-21-1306247612-828193906-1523655640-501 - Limited - Disabled) Konto domyślne (S-1-5-21-1306247612-828193906-1523655640-503 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-1306247612-828193906-1523655640-504 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF} FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKU\S-1-5-21-1306247612-828193906-1523655640-1001\...\uTorrent) (Version: 3.5.5.46348 - BitTorrent Inc.) AIR Xpand!2 (HKLM\...\{69A89482-FEC4-4E34-97F9-46BB287D0953}) (Version: 18.10.0.1448 - AIR Music Technology) Any Video Converter 7.1.0 (HKLM-x32\...\Any Video Converter) (Version: 7.1.0 - Anvsoft) Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) Audacity 2.4.2 (HKLM-x32\...\Audacity_is1) (Version: 2.4.2 - Audacity Team) Avast Premium Security (HKLM\...\Avast Antivirus) (Version: 22.12.6044 - Avast Software) Avid Cloud Client Services (HKLM\...\{66E7D4F4-F044-428D-A734-59138A626A52}) (Version: 2.4.0.15 - Avid Technology, Inc.) Avid Effects (HKLM\...\{19DE6A9D-DAF1-4CCD-8641-98AF7F7A3DC2}) (Version: 20.9.0.119 - Avid Technology, Inc.) Avid Link (HKLM\...\{852D24C6-60A0-4822-B05D-A005A6CD2F87}) (Version: 20.6.0.1410 - Avid Technology, Inc.) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.8.2.48475 - Electronic Arts) Battlefield™ V (HKLM-x32\...\{e26b382f-e945-4f70-9318-121b683f1d61}) (Version: 1.0.64.43202 - Electronic Arts) Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB) Blackmagic RAW Common Components (HKLM\...\{FC105F36-D90B-4135-B954-F50CDCFACA3D}) (Version: 2.1 - Blackmagic Design) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) Counter-Strike 1.6 v43 (HKU\S-1-5-21-1306247612-828193906-1523655640-1001\...\{1BD2212B-8287-4F33-A6DC-903D423AB814}_is1) (Version: v43 - CSSetti.pl) DaVinci Resolve (HKLM\...\{4AED2B1B-1919-4F62-B497-D0A0BE5B9C98}) (Version: 17.1.10009 - Blackmagic Design) DaVinci Resolve Control Panels (HKLM\...\{6CA5153C-F6DB-4495-AC9A-380DEAF9E3D5}) (Version: 1.5.2.0 - Blackmagic Design) Discord (HKU\S-1-5-21-1306247612-828193906-1523655640-1001\...\Discord) (Version: 1.0.9004 - Discord Inc.) ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB) Fairlight Audio Accelerator Utility (HKLM\...\FairlightAudioAccelerator_is1) (Version: 1.0.13 - Blackmagic Design) FFmpeg (Windows) for Audacity wersja 2.2.2 (HKLM-x32\...\{9C7E31E3-017F-434C-AC40-24431A354A1E}_is1) (Version: 2.2.2 - ) Focusrite Control 3.6.0.1822 (HKLM\...\Focusrite Control_is1) (Version: 3.6.0.1822 - Focusrite Audio Engineering Ltd.) Focusrite Thunderbolt 4.25.0.335 (HKLM\...\Focusrite Thunderbolt_is1) (Version: 4.25.0.335 - Focusrite Audio Engineering Ltd.) Focusrite Usb 4.65.5.658 (HKLM\...\Focusrite Usb_is1) (Version: 4.65.5.658 - Focusrite Audio Engineering, Ltd.) Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - ) Glary Utilities PRO 5.176 (HKLM-x32\...\Glary Utilities 5) (Version: 5.176.0.204 - Glarysoft Ltd) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 108.0.5359.125 - Google LLC) Gothic (HKLM-x32\...\{758A4269-70E5-4B11-B419-F692882408A9}) (Version: 1.08 - Piranha Bytes) Gothic II Złota Edycja (HKLM-x32\...\{6FB6D550-DDC4-4996-9CDF-91C34F0A4C4A}) (Version: 2.6 - JoWood) Gothic III (HKLM-x32\...\{02B244A2-7F6A-42E8-A36F-8C385D7A1625}) (Version: 1.00.0000 - JoWooD Productions Software AG) GOTHIC1 - Wersja klasyczna - 'Pakiet systemowy' (HKLM-x32\...\GOTHIC1 - Wersja klasyczna - 'Pakiet systemowy') (Version: 1.8 - World of Gothic RU © 2019) GOTHIC2 - Noc Kruka - 'Pakiet systemowy' (HKLM-x32\...\GOTHIC2 - Noc Kruka - 'Pakiet systemowy') (Version: 1.8 - World of Gothic RU © 2019) Java 8 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418051F0}) (Version: 8.0.510 - Oracle Corporation) League of Legends (HKU\S-1-5-21-1306247612-828193906-1523655640-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc) LogMeIn Hamachi (HKLM-x32\...\{ECC0FA07-863E-44BC-8B1D-DA22F96E5FB7}) (Version: 2.2.0.633 - LogMeIn, Inc.) Hidden LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.633 - LogMeIn, Inc.) Malwarebytes version 4.4.11.149 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.4.11.149 - Malwarebytes) MaskVPN (HKLM-x32\...\{4A4ACF2E-4A98-4D18-80E3-5A5E5706F81E}_is1) (Version: 1.1.0.31 - Global Media (Thailand) Co., Ltd) MeldaProduction Audio Plugins 16 (HKLM\...\MeldaProduction Audio Plugins 16) (Version: 16_03 - MeldaProduction) Microsoft 365 - pl-pl (HKLM\...\O365HomePremRetail - pl-pl) (Version: 16.0.15831.20208 - Microsoft Corporation) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 108.0.1462.76 - Microsoft Corporation) Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 22.238.1114.0002 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation) Microsoft Teams (HKU\S-1-5-21-1306247612-828193906-1523655640-1001\...\Teams) (Version: 1.5.00.28567 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.31.31103 (HKLM-x32\...\{2aaf1df0-eb13-4099-9992-962bb4e596d1}) (Version: 14.31.31103.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.31.31103 (HKLM-x32\...\{41d7b770-418a-43b7-95a5-f925fff05789}) (Version: 14.31.31103.0 - Microsoft Corporation) Microsoft Visual C++ 2022 X64 Additional Runtime - 14.31.31103 (HKLM\...\{A977984B-9244-49E3-BD24-43F0A8009667}) (Version: 14.31.31103 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.31.31103 (HKLM\...\{A181A302-3F6D-4BAD-97A8-A426A6499D78}) (Version: 14.31.31103 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X86 Additional Runtime - 14.31.31103 (HKLM-x32\...\{5720EC03-F26F-40B7-980C-50B5D420B5DE}) (Version: 14.31.31103 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.31.31103 (HKLM-x32\...\{799E3FFF-705C-461F-B400-6DE27398B3E5}) (Version: 14.31.31103 - Microsoft Corporation) Hidden Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation) NVIDIA FrameView SDK 1.2.7521.31103277 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.2.7521.31103277 - NVIDIA Corporation) NVIDIA GeForce Experience 3.25.1.27 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.25.1.27 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.39.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.39.14 - NVIDIA Corporation) NVIDIA Sterownik graficzny 516.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 516.94 - NVIDIA Corporation) Obsługa programów Apple (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.15726.20202 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.15831.20184 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0415-1000-0000000FF1CE}) (Version: 16.0.15726.20202 - Microsoft Corporation) Hidden OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Origin (HKLM-x32\...\Origin) (Version: 10.5.116.52126 - Electronic Arts, Inc.) Outlook (HKU\S-1-5-21-1306247612-828193906-1523655640-1001\...\6b0f23e57a39ebfbf2814acb1a24293d) (Version: 1.0 - Outlook) PACE License Support Win64 (HKLM\...\{CDDC4CA3-FBF0-46c3-8EB1-B001EA7FDA55}) (Version: 5.2.1.3096 - PACE Anti-Piracy, Inc.) Hidden PowerPoint (HKU\S-1-5-21-1306247612-828193906-1523655640-1001\...\319814cb56b667dff88f54e08be8f51f) (Version: 1.0 - PowerPoint) PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.) QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9205.1 - Realtek Semiconductor Corp.) Revo Uninstaller 2.3.5 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.3.5 - VS Revo Group, Ltd.) Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform) Sprawdzanie kondycji komputera z systemem Windows (HKLM\...\{497ED226-5E88-4EC5-9340-373B1C56906F}) (Version: 3.2.2110.14001 - Microsoft Corporation) Środowisko uruchomieniowe Microsoft Edge WebView2 (HKLM-x32\...\Microsoft EdgeWebView) (Version: 108.0.1462.76 - Microsoft Corporation) The Forest, âĺđńč˙ 1.0 (HKLM-x32\...\The Forest_is1) (Version: 1.0 - Other s) Uninstall Samsung Printer Software (HKLM-x32\...\TotalUninstaller) (Version: 4.0.0.93 - Samsung Electronics CO., LTD.) WinRAR 6.02 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.02.0 - win.rar GmbH) Word (HKU\S-1-5-21-1306247612-828193906-1523655640-1001\...\1b837d0bf93d01407352736c91b7bf50) (Version: 1.0 - Word) Zoom (HKU\S-1-5-21-1306247612-828193906-1523655640-1001\...\ZoomUMX) (Version: 5.4.7 (59784.1220) - Zoom Video Communications, Inc.) Packages: ========= Dodatek Aparat multimediów dla aplikacji Zdjęcia -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-07-30] (Microsoft Corporation) Dodatek Zdjęcia -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-08-09] (Microsoft Corporation) Excel -> C:\Program Files\WindowsApps\excel.office.com-4362FB92_1.0.0.0_neutral__2vp2pd36ganw2 [2022-09-12] (excel.office.com) HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_138.2.414.0_x64__v10z8vjag6ke6 [2022-10-05] (HP Inc.) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-10-26] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-10-26] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.8101.0_x64__8wekyb3d8bbwe [2020-08-19] (Microsoft Studios) [MS Ad] NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.962.0_x64__56jybvy8sckqj [2022-01-17] (NVIDIA Corp.) ==================== Niestandardowe rejestracje CLSID (filtrowane): ============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-1306247612-828193906-1523655640-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Ahmed\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.22272.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\22.238.1114.0002\FileSyncShell64.dll [2022-12-14] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\22.238.1114.0002\FileSyncShell64.dll [2022-12-14] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\22.238.1114.0002\FileSyncShell64.dll [2022-12-14] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\22.238.1114.0002\FileSyncShell64.dll [2022-12-14] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\22.238.1114.0002\FileSyncShell64.dll [2022-12-14] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\22.238.1114.0002\FileSyncShell64.dll [2022-12-14] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\22.238.1114.0002\FileSyncShell64.dll [2022-12-14] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-01-10] (Avast Software s.r.o. -> AVAST Software) ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\22.238.1114.0002\FileSyncShell64.dll [2022-12-14] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\22.238.1114.0002\FileSyncShell64.dll [2022-12-14] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\22.238.1114.0002\FileSyncShell64.dll [2022-12-14] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\22.238.1114.0002\FileSyncShell64.dll [2022-12-14] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\22.238.1114.0002\FileSyncShell64.dll [2022-12-14] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\22.238.1114.0002\FileSyncShell64.dll [2022-12-14] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\22.238.1114.0002\FileSyncShell64.dll [2022-12-14] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-01-10] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.238.1114.0002\FileSyncShell64.dll [2022-12-14] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-01-10] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => D:\Glary Utilities 5\x64\ContextHandler.dll [2021-04-27] (Glarysoft LTD -> Glarysoft Ltd) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => D:\Glary Utilities 5\x64\ContextHandler.dll [2021-04-27] (Glarysoft LTD -> Glarysoft Ltd) ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-01-10] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => D:\Malwarebytes\Anti-Malware\mbshlext.dll [2021-11-22] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.238.1114.0002\FileSyncShell64.dll [2022-12-14] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.238.1114.0002\FileSyncShell64.dll [2022-12-14] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_47917a79b8c7fd22\nvshext.dll [2022-07-28] (Nvidia Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-01-10] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => D:\Glary Utilities 5\x64\ContextHandler.dll [2021-04-27] (Glarysoft LTD -> Glarysoft Ltd) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => D:\Malwarebytes\Anti-Malware\mbshlext.dll [2021-11-22] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Drivers32: [VIDC.FPS1] => C:\WINDOWS\system32\frapsv64.dll [71680 2012-08-30] (Beepa P/L) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [65536 2012-08-30] (Beepa P/L) [Brak podpisu cyfrowego] ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) Shortcut: C:\Users\Ahmed\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\K2T\WTW\Forum.lnk -> hxxp://forum.k2t.eu Shortcut: C:\Users\Ahmed\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\K2T\WTW\Zgłoś błąd.lnk -> hxxp://bugtraq.k2t.eu Shortcut: C:\Users\Ahmed\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\K2T\WTW\Zgłoś propozycję.lnk -> hxxp://bugtraq.k2t.eu ShortcutWithArgument: C:\Users\Ahmed\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outlook.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=bjhmmnoficofgoiacjaajpkfndojknpb --app-url=hxxps://outlook.com/ ShortcutWithArgument: C:\Users\Ahmed\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=opfacbhaojodjaojgocnibmklknchehf --app-url=hxxps://powerpoint.office.com/ ShortcutWithArgument: C:\Users\Ahmed\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Word.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=hikhggiobiflkdfdgdajcfklmcibbopi --app-url=hxxps://word.office.com/ ==================== Załadowane moduły (filtrowane) ============= 2020-06-22 14:22 - 2020-06-22 14:22 - 000017408 _____ () [Brak podpisu cyfrowego] C:\Program Files\Avid\Avid Link\FTF_JNI.dll 2016-11-10 13:34 - 2016-11-10 13:34 - 008419840 _____ () [Brak podpisu cyfrowego] c:\program files\avid\avid link\jre\bin\server\jvm.dll 2018-10-10 21:46 - 2018-10-10 21:46 - 000014848 _____ () [Brak podpisu cyfrowego] C:\Program Files\Avid\Avid Link\libEGL.DLL 2018-10-10 21:46 - 2018-10-10 21:46 - 002521600 _____ () [Brak podpisu cyfrowego] C:\Program Files\Avid\Avid Link\libGLESv2.dll 2017-11-09 16:30 - 2017-11-09 16:30 - 004942848 _____ () [Brak podpisu cyfrowego] C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\AssetDeliveryCog.acf 2017-11-09 16:27 - 2017-11-09 16:27 - 002111488 _____ () [Brak podpisu cyfrowego] C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\AssetDeliveryInterfaceCog.acf 2017-11-09 16:21 - 2017-11-09 16:21 - 004502528 _____ () [Brak podpisu cyfrowego] C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\AvidAssetCog.acf 2017-11-09 16:23 - 2017-11-09 16:23 - 002041856 _____ () [Brak podpisu cyfrowego] C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\AvidAssetInterfaceCog.acf 2017-11-09 16:28 - 2017-11-09 16:28 - 002012160 _____ () [Brak podpisu cyfrowego] C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\CompressionCog.acf 2017-11-09 16:27 - 2017-11-09 16:27 - 001701376 _____ () [Brak podpisu cyfrowego] C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\FileMgrCog.acf 2017-11-09 16:19 - 2017-11-09 16:19 - 004383744 _____ () [Brak podpisu cyfrowego] C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\NetworkInterfaceCog.acf 2017-11-09 16:24 - 2017-11-09 16:24 - 002758144 _____ () [Brak podpisu cyfrowego] C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\ProjectSyncCog.acf 2017-11-09 16:25 - 2017-11-09 16:25 - 002073088 _____ () [Brak podpisu cyfrowego] C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\ProjectSyncInterfaceCog.acf 2017-04-03 22:16 - 2017-04-03 22:16 - 000098304 _____ () [Brak podpisu cyfrowego] C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\PXF\PXFPlugin.acf 2017-11-09 16:22 - 2017-11-09 16:22 - 001780224 _____ () [Brak podpisu cyfrowego] C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\TransportCog.acf 2017-04-03 22:13 - 2017-04-03 22:13 - 000099840 _____ (Avid Technology, Inc.) [Brak podpisu cyfrowego] C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\PXF\ACFString.avx 2016-11-10 13:34 - 2016-11-10 13:34 - 000153088 _____ (N/A) [Brak podpisu cyfrowego] c:\program files\avid\avid link\jre\bin\java.dll 2016-11-10 13:34 - 2016-11-10 13:34 - 000030720 _____ (N/A) [Brak podpisu cyfrowego] C:\Program Files\Avid\Avid Link\jre\bin\management.dll 2016-11-10 13:34 - 2016-11-10 13:34 - 000088576 _____ (N/A) [Brak podpisu cyfrowego] C:\Program Files\Avid\Avid Link\jre\bin\net.dll 2016-11-10 13:34 - 2016-11-10 13:34 - 000054272 _____ (N/A) [Brak podpisu cyfrowego] C:\Program Files\Avid\Avid Link\jre\bin\nio.dll 2016-11-10 13:34 - 2016-11-10 13:34 - 000128512 _____ (N/A) [Brak podpisu cyfrowego] C:\Program Files\Avid\Avid Link\jre\bin\sunec.dll 2016-11-10 13:34 - 2016-11-10 13:34 - 000043008 _____ (N/A) [Brak podpisu cyfrowego] c:\program files\avid\avid link\jre\bin\verify.dll 2016-11-10 13:34 - 2016-11-10 13:34 - 000071168 _____ (N/A) [Brak podpisu cyfrowego] c:\program files\avid\avid link\jre\bin\zip.dll 2020-06-22 14:22 - 2020-06-22 14:22 - 001809920 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Brak podpisu cyfrowego] C:\Program Files\Avid\Avid Link\LIBEAY32.dll 2020-06-22 14:22 - 2020-06-22 14:22 - 000349696 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Brak podpisu cyfrowego] C:\Program Files\Avid\Avid Link\ssleay32.dll 2020-02-18 15:51 - 2020-03-16 14:05 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Brak podpisu cyfrowego] D:\Program Files\Origin\LIBEAY32.dll 2020-02-18 15:51 - 2020-03-16 14:06 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Brak podpisu cyfrowego] D:\Program Files\Origin\ssleay32.dll 2020-02-18 15:51 - 2020-02-18 15:51 - 001611264 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] D:\Program Files\Origin\platforms\qwindows.dll 2022-11-14 21:51 - 2020-02-18 15:51 - 005487104 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] D:\Program Files\Origin\Qt5Core.dll 2022-11-14 21:51 - 2020-02-18 15:51 - 005841920 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] D:\Program Files\Origin\Qt5Gui.dll 2022-11-14 21:51 - 2020-02-18 15:51 - 001179136 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] D:\Program Files\Origin\Qt5Network.dll 2022-11-14 21:51 - 2020-02-18 15:51 - 000146432 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] D:\Program Files\Origin\Qt5WebSockets.dll 2022-11-14 21:51 - 2020-02-18 15:51 - 005089792 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] D:\Program Files\Origin\Qt5Widgets.dll 2022-11-14 21:51 - 2020-02-18 15:51 - 000184832 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] D:\Program Files\Origin\Qt5Xml.dll 2018-10-10 21:50 - 2018-10-10 21:50 - 000047104 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Avid\Avid Link\bearer\qgenericbearer.dll 2018-10-10 21:50 - 2018-10-10 21:50 - 000031744 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Avid\Avid Link\imageformats\qgif.dll 2018-10-10 21:50 - 2018-10-10 21:50 - 000041472 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Avid\Avid Link\imageformats\qicns.dll 2018-10-10 21:49 - 2018-10-10 21:49 - 000032768 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Avid\Avid Link\imageformats\qico.dll 2018-10-10 21:50 - 2018-10-10 21:50 - 000278016 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Avid\Avid Link\imageformats\qjpeg.dll 2018-10-10 21:51 - 2018-10-10 21:51 - 000025088 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Avid\Avid Link\imageformats\qsvg.dll 2018-10-10 21:50 - 2018-10-10 21:50 - 000025088 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Avid\Avid Link\imageformats\qtga.dll 2018-10-10 21:50 - 2018-10-10 21:50 - 000371712 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Avid\Avid Link\imageformats\qtiff.dll 2018-10-10 21:50 - 2018-10-10 21:50 - 000023552 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Avid\Avid Link\imageformats\qwbmp.dll 2018-10-10 21:51 - 2018-10-10 21:51 - 000505856 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Avid\Avid Link\imageformats\qwebp.dll 2020-06-22 14:30 - 2020-06-22 14:30 - 001337856 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Avid\Avid Link\platforms\qwindows.dll 2020-06-22 14:32 - 2020-06-22 14:32 - 005652992 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Avid\Avid Link\Qt5Core.dll 2020-06-22 14:30 - 2020-06-22 14:30 - 006032384 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Avid\Avid Link\Qt5Gui.dll 2020-06-22 14:30 - 2020-06-22 14:30 - 001225728 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Avid\Avid Link\Qt5Network.dll 2018-10-10 22:03 - 2018-10-10 22:03 - 000286720 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Avid\Avid Link\Qt5Positioning.dll 2018-10-10 21:49 - 2018-10-10 21:49 - 000319488 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Avid\Avid Link\Qt5PrintSupport.dll 2018-10-10 21:53 - 2018-10-10 21:53 - 003432960 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Avid\Avid Link\Qt5Qml.dll 2018-10-10 21:54 - 2018-10-10 21:54 - 003465728 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Avid\Avid Link\Qt5Quick.dll 2018-10-10 21:54 - 2018-10-10 21:54 - 000072192 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Avid\Avid Link\Qt5QuickWidgets.dll 2020-06-22 14:30 - 2020-06-22 14:30 - 000329728 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Avid\Avid Link\Qt5Svg.dll 2018-10-10 22:00 - 2018-10-10 22:00 - 000111616 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Avid\Avid Link\Qt5WebChannel.dll 2018-10-10 23:47 - 2018-10-10 23:47 - 000352256 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Avid\Avid Link\Qt5WebEngine.dll 2018-10-10 23:43 - 2018-10-10 23:43 - 074279424 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Avid\Avid Link\Qt5WebEngineCore.dll 2018-10-10 23:47 - 2018-10-10 23:47 - 000226304 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Avid\Avid Link\Qt5WebEngineWidgets.dll 2020-06-22 14:30 - 2020-06-22 14:30 - 000148992 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Avid\Avid Link\Qt5WebSockets.dll 2020-06-22 14:30 - 2020-06-22 14:30 - 005564928 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Avid\Avid Link\Qt5Widgets.dll 2020-06-22 14:30 - 2020-06-22 14:30 - 000193024 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Avid\Avid Link\Qt5Xml.dll ==================== Alternate Data Streams (filtrowane) ======== ==================== Tryb awaryjny (filtrowane) ================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Powiązania plików (filtrowane) ================= ==================== Internet Explorer (filtrowane) ========== BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_51\bin\ssv.dll [2022-10-13] (Oracle America, Inc. -> Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_51\bin\jp2ssv.dll [2022-10-13] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2022-11-01] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-12-10] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-12-10] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-12-10] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-12-10] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-12-10] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-12-10] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-12-10] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-12-10] (Microsoft Corporation -> Microsoft Corporation) ==================== Hosts - zawartość: ========================= (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2019-03-19 05:49 - 2019-03-19 05:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Inne obszary =========================== (Obecnie brak automatycznej naprawy dla tej sekcji.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;D:\Program Files (x86)\QuickTime\QTSystem\ HKU\S-1-5-21-1306247612-828193906-1523655640-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Ahmed\AppData\Local\Microsoft\Windows\Themes\Kosmos (2)\DesktopBackground\moment-in-space-cvi-1920x1080.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Załączenie wejścia w fixlist spowoduje jego usunięcie.) HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui" HKU\S-1-5-21-1306247612-828193906-1523655640-1001\...\StartupApproved\StartupFolder: => "Rizone Memory Booster.lnk" HKU\S-1-5-21-1306247612-828193906-1523655640-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-1306247612-828193906-1523655640-1001\...\StartupApproved\Run: => "GUDelayStartup" ==================== Reguły Zapory systemu Windows (filtrowane) ================ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{52EC11AE-D891-46B0-AA14-8D4E556F728F}] => (Allow) D:\Program Files\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> ) FirewallRules: [{84A35A76-DC9D-42F9-B854-1F6FC485175B}] => (Allow) D:\Program Files\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> ) FirewallRules: [{25984BCB-1C08-49DF-893F-EDCC18FD337D}] => (Allow) D:\Program Files\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{83C2D2FF-3155-47E5-BE88-B55B22ADE058}] => (Allow) D:\Program Files\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{81A0EEB3-5080-46AE-9924-1B2FB7C9839D}] => (Allow) D:\Program Files\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{F93DB620-9089-4280-8D72-04C3720ED30F}] => (Allow) D:\Program Files\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [UDP Query User{ED180723-C58C-4996-820B-C07E57580540}D:\program files\steam\steam.exe] => (Allow) D:\program files\steam\steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [TCP Query User{4F73A412-C409-480E-BBBD-C60F5FD990EE}D:\program files\steam\steam.exe] => (Allow) D:\program files\steam\steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{15B434EF-09DF-4AA1-A6C7-BF74202F4E03}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{3DB176F2-356C-4B39-B03D-D4FBEA81C733}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{68AA1428-BDB0-409F-9AE7-EF5F87F7B15A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{1C6FFDB0-7A70-4B42-A842-5DD5DC9C91CD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{2E35F114-1D96-4387-96D4-EF6A91F99A5F}] => (Allow) C:\Users\Ahmed\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{9332F792-2DCC-4EB8-8EE0-BAA2B90E968F}] => (Allow) C:\Users\Ahmed\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{11CFF7FA-FE35-42C1-ABBB-C7B823AF7DB0}] => (Allow) C:\Users\Ahmed\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{7062407B-927B-4865-9BDC-3DE4FC088B60}] => (Allow) C:\Users\Ahmed\AppData\Roaming\Zoom\bin\airhost.exe => Brak pliku FirewallRules: [{26491890-3548-4872-A1ED-B802EB5BDCB4}] => (Allow) C:\Users\Ahmed\AppData\Roaming\Zoom\bin\airhost.exe => Brak pliku FirewallRules: [{6602915B-8DDD-434D-9BDF-64B373A0C219}] => (Allow) C:\Program Files (x86)\MaskVPN\mask_svc.exe (Global Media (Thailand) Co., Ltd -> Global Media (Thailand) Co., Ltd) FirewallRules: [{C37A0600-9C1F-4680-AEDC-75E09D7B81C6}] => (Allow) C:\Program Files (x86)\MaskVPN\MaskVPN.exe (Global Media (Thailand) Co., Ltd -> Global Media (Thailand) Co., Ltd) FirewallRules: [{A77CA0A3-F8E1-4A48-B7BE-DD2735D3F0B8}] => (Allow) C:\Program Files (x86)\MaskVPN\MaskVPNUpdate.exe (Global Media (Thailand) Co., Ltd -> Global Media (Thailand) Co., Ltd) FirewallRules: [{D2F5D093-592F-4059-BDB3-70ABB8517E72}] => (Allow) C:\Program Files (x86)\MaskVPN\tunnle.exe (Global Media (Thailand) Co., Ltd -> Global Media (Thailand) Co., Ltd) FirewallRules: [{E3287441-D2DC-47DF-8DD8-B8D81B86320A}] => (Allow) D:\Program Files\Focusrite\Focusrite Control\Server\ControlServer.exe (Focusrite Audio Engineering Ltd.) [Brak podpisu cyfrowego] FirewallRules: [{AF55EF95-53BD-4E3A-8C3F-D47C5914C0BB}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{BED43558-23C0-4DD0-808B-47D38D107484}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{0824420B-C6B6-4C08-ACCC-9345F9ED6710}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{7E54585C-DC0E-4EB5-9906-4D2F53FBA07B}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{5D0F6DCE-A85D-40FE-A362-E3AAF58D2FE1}] => (Allow) C:\Program Files\Avid\Cloud Client Services\Hub.exe (Avid Technology, Inc. -> Avid Technology, Inc.) FirewallRules: [{A8E3D8E4-775A-4463-B19E-6792560569D3}] => (Allow) C:\Program Files\Avid\Cloud Client Services\TransportClient.exe (Avid Technology, Inc. -> Avid Technology, Inc.) FirewallRules: [{8482DD87-6E71-47D7-B1C3-5562AFFE39FD}] => (Allow) C:\Program Files\Avid\Avid Link\jre\bin\java.exe FirewallRules: [{A177A5C6-E568-4DD7-918F-55E7CD52CB09}] => (Allow) C:\Program Files\Avid\Avid Link\Avid Link.exe (Avid Technology, Inc. -> Avid Technology, Inc.) FirewallRules: [{67073663-D4C8-4931-A027-70B859FBE04B}] => (Allow) C:\Program Files\Avid\Avid Link\AvidAppManHelper.exe (Avid Technology, Inc. -> Avid Technology, Inc.) FirewallRules: [{CDE222B6-5820-4690-BFEC-A482F2C63350}] => (Allow) C:\Program Files\Avid\Pro Tools FirstProToolsFirst.exe => Brak pliku FirewallRules: [TCP Query User{3547AB55-2596-464A-87BA-2936C14020E4}C:\program files\avid\pro tools first\protoolsfirst.exe] => (Allow) C:\program files\avid\pro tools first\protoolsfirst.exe (Avid Technology, Inc. -> Avid Technology, Inc.) FirewallRules: [UDP Query User{7BB9CFF5-F4F9-4402-BBA1-407674F7BD0F}C:\program files\avid\pro tools first\protoolsfirst.exe] => (Allow) C:\program files\avid\pro tools first\protoolsfirst.exe (Avid Technology, Inc. -> Avid Technology, Inc.) FirewallRules: [TCP Query User{47089593-064B-4AFD-988E-66FAC2341A99}D:\program files\blackmagic design\davinci resolve\dpdecoder.exe] => (Allow) D:\program files\blackmagic design\davinci resolve\dpdecoder.exe (Blackmagic Design Pty Ltd -> ) FirewallRules: [UDP Query User{4D7E9126-57C8-4B65-894F-AA73EDBD422D}D:\program files\blackmagic design\davinci resolve\dpdecoder.exe] => (Allow) D:\program files\blackmagic design\davinci resolve\dpdecoder.exe (Blackmagic Design Pty Ltd -> ) FirewallRules: [TCP Query User{EF275793-0ED3-49BB-8875-DB1C53C36EAA}D:\program files\blackmagic design\davinci resolve\resolve.exe] => (Allow) D:\program files\blackmagic design\davinci resolve\resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.) FirewallRules: [UDP Query User{70E3AC6F-C6BB-4122-BFB6-B09835CEF16F}D:\program files\blackmagic design\davinci resolve\resolve.exe] => (Allow) D:\program files\blackmagic design\davinci resolve\resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.) FirewallRules: [TCP Query User{F18A98B3-BADB-44BA-9C48-001850551E78}D:\program files\blackmagic design\davinci resolve\fuscript.exe] => (Allow) D:\program files\blackmagic design\davinci resolve\fuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.) FirewallRules: [UDP Query User{5845B317-C769-4794-AF3B-27D0556B57B0}D:\program files\blackmagic design\davinci resolve\fuscript.exe] => (Allow) D:\program files\blackmagic design\davinci resolve\fuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.) FirewallRules: [{9BF60B6D-F2F4-473B-BAA3-315C51DC46C6}] => (Allow) D:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.) FirewallRules: [{2623E4B4-C495-4CC1-81CC-6F8F5BC3BFED}] => (Allow) D:\Program Files\Blackmagic Design\DaVinci Resolve\bmdpaneld.exe (Blackmagic Design Pty Ltd -> ) FirewallRules: [{ED4F28EC-C5C0-416B-82D9-189F7A24C2DB}] => (Allow) D:\Program Files\Blackmagic Design\DaVinci Resolve\DaVinciPanelDaemon.exe (Blackmagic Design Pty Ltd -> ) FirewallRules: [{D33B2C95-301E-4D4C-9C09-DC05150201B7}] => (Allow) D:\Program Files\Blackmagic Design\DaVinci Resolve\JLCooperPanelDaemon.exe (Blackmagic Design Pty Ltd -> ) FirewallRules: [{F0D802B2-3E6D-4E85-95F5-60D9326E33F6}] => (Allow) D:\Program Files\Blackmagic Design\DaVinci Resolve\EuphonixPanelDaemon.exe (Blackmagic Design Pty Ltd -> ) FirewallRules: [{08978E4F-E76B-4591-840E-B49E92291E26}] => (Allow) D:\Program Files\Blackmagic Design\DaVinci Resolve\TangentPanelDaemon.exe (Blackmagic Design Pty Ltd -> ) FirewallRules: [{A3E9DA27-8FEB-4827-92C6-8E79CA11D308}] => (Allow) D:\Program Files\Blackmagic Design\DaVinci Resolve\ElementsPanelDaemon.exe => Brak pliku FirewallRules: [{2A8C863B-2D45-41D5-B4B3-706847AC0B8B}] => (Allow) D:\Program Files\Blackmagic Design\DaVinci Resolve\fuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.) FirewallRules: [{A77156D5-1560-45A4-A4BA-11FAD3659411}] => (Allow) D:\Program Files\Blackmagic Design\DaVinci Resolve\DPDecoder.exe (Blackmagic Design Pty Ltd -> ) FirewallRules: [TCP Query User{BED10F7F-4B1D-44E3-8C70-1DEBF97DC5BA}D:\program files\the forest\theforest.exe] => (Allow) D:\program files\the forest\theforest.exe () [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{D19A88FF-262B-4172-8A1E-489FC9A250EA}D:\program files\the forest\theforest.exe] => (Allow) D:\program files\the forest\theforest.exe () [Brak podpisu cyfrowego] FirewallRules: [{FE4476E5-8551-49B3-BD8C-0459F8FDD9AD}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> ) FirewallRules: [{CA5C8F8F-7478-4381-A568-298AA0944EE6}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> ) FirewallRules: [{C8B4DE4A-FB26-43C7-9AB3-B49DE07209F3}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> ) FirewallRules: [{93C0404B-92CF-4732-B582-D2EDCA2B2DEE}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> ) FirewallRules: [{B78DB4AA-B796-4472-821F-737F83F95598}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB) FirewallRules: [{1F54E8C5-8A68-4AE3-A611-86B8FC399A30}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB) FirewallRules: [{A1EFD79A-458E-4BF7-820D-033865B1933B}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 4\BFLauncher.exe (Electronic Arts -> EA Digital Illusions CE AB) FirewallRules: [{93540234-148E-433D-BE51-55477943E64D}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 4\BFLauncher.exe (Electronic Arts -> EA Digital Illusions CE AB) FirewallRules: [{1114F7FA-B981-497E-B48E-F91F10B73309}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 4\BFLauncher_x86.exe (Electronic Arts -> EA Digital Illusions CE AB) FirewallRules: [{6F93D1DF-3EEE-46F7-9A35-680271504C59}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 4\BFLauncher_x86.exe (Electronic Arts -> EA Digital Illusions CE AB) FirewallRules: [TCP Query User{1D26A653-C1B3-4044-A4B3-9FE26E94BF0B}C:\program files\avid\pro tools first\protoolsfirst.exe] => (Allow) C:\program files\avid\pro tools first\protoolsfirst.exe (Avid Technology, Inc. -> Avid Technology, Inc.) FirewallRules: [UDP Query User{E14BAFCD-1B6A-4EC4-B698-4FFE9FB60652}C:\program files\avid\pro tools first\protoolsfirst.exe] => (Allow) C:\program files\avid\pro tools first\protoolsfirst.exe (Avid Technology, Inc. -> Avid Technology, Inc.) FirewallRules: [TCP Query User{5997F3D8-35EB-4B9F-9D82-CDB482D1BC3B}C:\program files\java\jre1.8.0_301\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_301\bin\javaw.exe => Brak pliku FirewallRules: [UDP Query User{5ACF29EA-B38B-48C9-BABC-26CE39193AB8}C:\program files\java\jre1.8.0_301\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_301\bin\javaw.exe => Brak pliku FirewallRules: [TCP Query User{D30CD7B0-63A5-4D55-9BE5-81E4D4228A83}D:\lolkurwa\riot games\riot client\riotclientservices.exe] => (Allow) D:\lolkurwa\riot games\riot client\riotclientservices.exe => Brak pliku FirewallRules: [UDP Query User{67D04031-A968-43E6-BB10-92CD1B2F96E3}D:\lolkurwa\riot games\riot client\riotclientservices.exe] => (Allow) D:\lolkurwa\riot games\riot client\riotclientservices.exe => Brak pliku FirewallRules: [{0323FCA2-932B-4AB1-BD1D-534AF4811D8F}] => (Allow) D:\Program Files\Steam\steamapps\common\FarathanDemo\windows_content\Farathan_new_Demo.exe => Brak pliku FirewallRules: [{58CE4E73-BEAA-4996-9BB2-B2191E53B07A}] => (Allow) D:\Program Files\Steam\steamapps\common\FarathanDemo\windows_content\Farathan_new_Demo.exe => Brak pliku FirewallRules: [{533CA214-5BF7-447B-A437-F6B5BBF0653F}] => (Allow) C:\WINDOWS\SysWOW64\CompatTelRunner.exe => Brak pliku FirewallRules: [{E8E916A7-791A-4414-A32C-DA6E892450CE}] => (Allow) C:\WINDOWS\SysWOW64\CompatTelRunner.exe => Brak pliku FirewallRules: [{BE9F06A3-4743-4BD0-85B0-C75608F84CFA}] => (Allow) C:\WINDOWS\SysWOW64\CompatTelRunner.exe => Brak pliku FirewallRules: [{ABEEE5A0-B823-473A-9329-38C4140D3116}] => (Allow) C:\WINDOWS\SysWOW64\CompatTelRunner.exe => Brak pliku FirewallRules: [{B3EC1EA2-622B-4875-B2C9-7B5C8189EE3D}] => (Allow) C:\WINDOWS\SysWOW64\CompatTelRunner.exe => Brak pliku FirewallRules: [{00B2CBF8-8AB8-462A-BCC9-83A4F82C5243}] => (Allow) C:\WINDOWS\SysWOW64\CompatTelRunner.exe => Brak pliku FirewallRules: [{3F321733-91A2-429D-ADE9-A53589253485}] => (Allow) C:\WINDOWS\SysWOW64\CompatTelRunner.exe => Brak pliku FirewallRules: [{171B0907-FCD5-44A4-936D-A69F06F3B55E}] => (Allow) C:\WINDOWS\SysWOW64\CompatTelRunner.exe => Brak pliku FirewallRules: [TCP Query User{21F1F4AB-D010-46B1-B1B5-DB9D97EF3228}D:\program files (x86)\jowood\gothic2zlotaedycja\_work\tools\zspy\zspy.exe] => (Allow) D:\program files (x86)\jowood\gothic2zlotaedycja\_work\tools\zspy\zspy.exe () [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{D557D032-125B-40A0-9F12-27A163C89E80}D:\program files (x86)\jowood\gothic2zlotaedycja\_work\tools\zspy\zspy.exe] => (Allow) D:\program files (x86)\jowood\gothic2zlotaedycja\_work\tools\zspy\zspy.exe () [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{CB62405D-D96A-495F-9663-A404291E5736}D:\counter-strike 1.6 v43\hl.exe] => (Allow) D:\counter-strike 1.6 v43\hl.exe (Valve) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{F597D39F-EFED-4FFB-B750-14709E26D924}D:\counter-strike 1.6 v43\hl.exe] => (Allow) D:\counter-strike 1.6 v43\hl.exe (Valve) [Brak podpisu cyfrowego] FirewallRules: [{B39A66D8-97EB-4012-B392-503F0133BF6D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{A33189CE-CDD2-4738-98B7-5D5A21B0B918}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{3E1723BE-D736-4C1E-8B26-B823B10558B9}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Printer Center\SamsungPrinterCenter.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) FirewallRules: [{533094DE-909B-4124-B333-25A5051FA071}] => (Allow) D:\Program Files\Steam\steamapps\common\Unreal Gold\System\Unreal.exe () [Brak podpisu cyfrowego] FirewallRules: [{D2003C30-CBF7-479F-B7C9-C98F2B842830}] => (Allow) D:\Program Files\Steam\steamapps\common\Unreal Gold\System\Unreal.exe () [Brak podpisu cyfrowego] FirewallRules: [{AE730255-D23C-4924-B48C-3264FFD64D26}] => (Allow) C:\Program Files\Avid\Pro Tools\AvidVideoEngine.exe => Brak pliku FirewallRules: [{9234129F-9CCA-4295-BF66-94B9F4520173}] => (Allow) C:\Program Files\Avid\Pro Tools\ProTools.exe (Avid Technology, Inc.) [Brak podpisu cyfrowego] FirewallRules: [{D6A06B73-EEE2-4690-8269-477C1CF04B04}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{139F8ED4-0980-4EFC-B47F-08748AB16776}] => (Allow) D:\Program Files\Steam\steamapps\common\Rust\Rust.exe (Facepunch Studios Ltd -> Epic Games, Inc) FirewallRules: [{5E4C32A9-EEEB-4C76-93D5-8B7753139B52}] => (Allow) D:\Program Files\Steam\steamapps\common\Rust\Rust.exe (Facepunch Studios Ltd -> Epic Games, Inc) FirewallRules: [TCP Query User{3E0E13BC-BAE5-49A2-8B8A-C8692C2E96A8}C:\users\ahmed\appdata\local\discord\app-1.0.9004\discord.exe] => (Allow) C:\users\ahmed\appdata\local\discord\app-1.0.9004\discord.exe => Brak pliku FirewallRules: [UDP Query User{1275F8DF-1523-4722-B437-B7D2640E4948}C:\users\ahmed\appdata\local\discord\app-1.0.9004\discord.exe] => (Allow) C:\users\ahmed\appdata\local\discord\app-1.0.9004\discord.exe => Brak pliku FirewallRules: [{924960E2-08C1-4911-8B00-7B527BC39466}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{747EE828-40E4-4EFB-9110-0FE7025D8953}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{C31E5143-CA43-4E99-AD6A-59EB3A4FDA65}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{F0D51F4C-628F-4676-907D-156B062064BF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{2B5796F2-014C-44CF-B66A-A87DF819D674}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield V\bfvTrial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB) FirewallRules: [{88F52746-5E6A-43EE-A08E-BD589FF01EEF}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield V\bfvTrial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB) FirewallRules: [{320DB439-35B2-41BB-8053-4F461357F68F}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield V\bfv.exe (EA Digital Illusions CE AB) [Brak podpisu cyfrowego] FirewallRules: [{31B49520-4915-48E3-8698-8538E4787306}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield V\bfv.exe (EA Digital Illusions CE AB) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{33FCF9CB-84EF-45D7-ACEA-433D69EC39A8}C:\users\ahmed\appdata\local\discord\app-1.0.9005\discord.exe] => (Allow) C:\users\ahmed\appdata\local\discord\app-1.0.9005\discord.exe => Brak pliku FirewallRules: [UDP Query User{4D174E46-00A5-4382-847E-CD79509D2A84}C:\users\ahmed\appdata\local\discord\app-1.0.9005\discord.exe] => (Allow) C:\users\ahmed\appdata\local\discord\app-1.0.9005\discord.exe => Brak pliku FirewallRules: [TCP Query User{C7A97E10-C214-4F46-9429-65AE07EDEC6F}D:\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe] => (Allow) D:\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe (Respawn Entertainment) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{FA7FDCB1-14F0-4EA9-AD26-EB191BB637AE}D:\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe] => (Allow) D:\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe (Respawn Entertainment) [Brak podpisu cyfrowego] FirewallRules: [{265487FE-34D9-4086-8646-0027C4ED616D}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{5D8731EE-CE9C-4735-A51D-8041AE09870E}C:\users\ahmed\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\users\ahmed\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe FirewallRules: [UDP Query User{42614B9B-F899-4DB8-B740-AF2AEE3B8EEC}C:\users\ahmed\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\users\ahmed\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe FirewallRules: [TCP Query User{A2534273-E304-43B8-B7D4-8046A21A83FF}C:\users\ahmed\appdata\roaming\.minecraft\runtime\jre-legacy\windows\jre-legacy\bin\javaw.exe] => (Allow) C:\users\ahmed\appdata\roaming\.minecraft\runtime\jre-legacy\windows\jre-legacy\bin\javaw.exe FirewallRules: [UDP Query User{900808E9-FF4F-4DAD-8E0C-DB697E453C8A}C:\users\ahmed\appdata\roaming\.minecraft\runtime\jre-legacy\windows\jre-legacy\bin\javaw.exe] => (Allow) C:\users\ahmed\appdata\roaming\.minecraft\runtime\jre-legacy\windows\jre-legacy\bin\javaw.exe FirewallRules: [{0139C9C1-6E58-4E7E-8EDD-97C941530801}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{7C858CFC-37D5-43C6-8C61-AC329E24551D}] => (Allow) D:\Program Files\Steam\steamapps\common\Call of Duty HQ\cod.exe (Activision Publishing Inc -> Activision) FirewallRules: [{856523EE-D450-4F65-B13D-BF80A8EAEB23}] => (Allow) D:\Program Files\Steam\steamapps\common\Call of Duty HQ\cod.exe (Activision Publishing Inc -> Activision) FirewallRules: [{C39EBDA6-2335-40C1-90CC-0335B269035B}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\108.0.1462.76\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{02D57C93-D900-4973-B88A-A55AF8A4AD8F}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{905CF840-E951-4DAC-ABB8-091148D7F622}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) ==================== Punkty Przywracania systemu ========================= Sprawdź usługę "VSS" ==================== Wadliwe urządzenia w Menedżerze urządzeń ============ Name: Standardowa klawiatura PS/2 Description: Standardowa klawiatura PS/2 Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318} Manufacturer: (Klawiatury standardowe) Service: i8042prt Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Mysz Microsoft PS/2 Description: Mysz Microsoft PS/2 Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: i8042prt Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. ==================== Błędy w Dzienniku zdarzeń: ======================== Dziennik Aplikacja: ================== Error: (01/10/2023 04:12:15 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas wywoływania procedury CoCreateInstance. hr = 0x80040154, Klasa niezarejestrowana. . Operacja: Zainicjuj w celu wykonania kopii zapasowej Error: (01/10/2023 04:12:15 PM) (Source: VSS) (EventID: 22) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: Krytyczny składnik wymagany przez Usługę kopiowania woluminów w tle nie jest zarejestrowany. Mogło to nastąpić, jeżeli podczas instalacji systemu Windows lub dostawcy kopii w tle wystąpił błąd. Funkcja CoCreateInstance wykonywana na klasie z identyfikatorem CLSID {f5078f32-c551-11d3-89b9-0000f81fe221} i nazwą MSXML30 zwróciła błąd [0x80040154, Klasa niezarejestrowana. ]. Operacja: Zainicjuj w celu wykonania kopii zapasowej Error: (01/10/2023 03:46:08 PM) (Source: ESENT) (EventID: 474) (User: ) Description: svchost (3636,D,27) SRUJet: Weryfikacja odczytu strony bazy danych z pliku „C:\WINDOWS\system32\SRU\SRUDB.dat” na pozycji względnej 16322560 (0x0000000000f91000) (strona bazy danych: 3984 (0xF90)) dla 4096 (0x00001000) bajtów nie powiodła się z powodu niezgodności sumy kontrolnej strony. Zapisana suma kontrolna miała wartość [77a477a4da80cbef], podczas gdy wyliczona suma kontrolna była równa [21575ea83a4819fa]. Operacja odczytu zostanie zakończona z błędem -1018 (0xfffffc06). Jeśli ten stan będzie się utrzymywał, przywróć bazę danych z wcześniejszej kopii zapasowej. Ten problem jest prawdopodobnie spowodowany wadliwym sprzętem. Skontaktuj się z dostawcą sprzętu, aby uzyskać dalszą pomoc w diagnozowaniu problemu. Error: (01/10/2023 03:46:06 PM) (Source: ESENT) (EventID: 474) (User: ) Description: svchost (3636,D,27) SRUJet: Weryfikacja odczytu strony bazy danych z pliku „C:\WINDOWS\system32\SRU\SRUDB.dat” na pozycji względnej 16322560 (0x0000000000f91000) (strona bazy danych: 3984 (0xF90)) dla 4096 (0x00001000) bajtów nie powiodła się z powodu niezgodności sumy kontrolnej strony. Zapisana suma kontrolna miała wartość [77a477a4da80cbef], podczas gdy wyliczona suma kontrolna była równa [21575ea83a4819fa]. Operacja odczytu zostanie zakończona z błędem -1018 (0xfffffc06). Jeśli ten stan będzie się utrzymywał, przywróć bazę danych z wcześniejszej kopii zapasowej. Ten problem jest prawdopodobnie spowodowany wadliwym sprzętem. Skontaktuj się z dostawcą sprzętu, aby uzyskać dalszą pomoc w diagnozowaniu problemu. Error: (01/10/2023 03:46:06 PM) (Source: ESENT) (EventID: 476) (User: ) Description: svchost (3636,D,23) SRUJet: Weryfikacja odczytu strony bazy danych z pliku „C:\WINDOWS\system32\SRU\SRUDB.dat” na pozycji względnej 23207936 (0x0000000001622000) (strona bazy danych: 5665 (0x1621)) dla 4096 (0x00001000) bajtów nie powiodła się z powodu braku danych strony. Operacja odczytu zostanie zakończona z błędem -1019 (0xfffffc05). Jeśli ten stan będzie się utrzymywał, przywróć bazę danych z wcześniejszej kopii zapasowej. Ten problem jest prawdopodobnie spowodowany wadliwym sprzętem. Skontaktuj się z dostawcą sprzętu, aby uzyskać dalszą pomoc w diagnozowaniu problemu. Error: (01/10/2023 03:46:02 PM) (Source: ESENT) (EventID: 474) (User: ) Description: svchost (3636,D,27) SRUJet: Weryfikacja odczytu strony bazy danych z pliku „C:\WINDOWS\system32\SRU\SRUDB.dat” na pozycji względnej 16322560 (0x0000000000f91000) (strona bazy danych: 3984 (0xF90)) dla 4096 (0x00001000) bajtów nie powiodła się z powodu niezgodności sumy kontrolnej strony. Zapisana suma kontrolna miała wartość [77a477a4da80cbef], podczas gdy wyliczona suma kontrolna była równa [21575ea83a4819fa]. Operacja odczytu zostanie zakończona z błędem -1018 (0xfffffc06). Jeśli ten stan będzie się utrzymywał, przywróć bazę danych z wcześniejszej kopii zapasowej. Ten problem jest prawdopodobnie spowodowany wadliwym sprzętem. Skontaktuj się z dostawcą sprzętu, aby uzyskać dalszą pomoc w diagnozowaniu problemu. Error: (01/10/2023 02:45:45 PM) (Source: ESENT) (EventID: 474) (User: ) Description: svchost (3636,D,27) SRUJet: Weryfikacja odczytu strony bazy danych z pliku „C:\WINDOWS\system32\SRU\SRUDB.dat” na pozycji względnej 16322560 (0x0000000000f91000) (strona bazy danych: 3984 (0xF90)) dla 4096 (0x00001000) bajtów nie powiodła się z powodu niezgodności sumy kontrolnej strony. Zapisana suma kontrolna miała wartość [77a477a4da80cbef], podczas gdy wyliczona suma kontrolna była równa [21575ea83a4819fa]. Operacja odczytu zostanie zakończona z błędem -1018 (0xfffffc06). Jeśli ten stan będzie się utrzymywał, przywróć bazę danych z wcześniejszej kopii zapasowej. Ten problem jest prawdopodobnie spowodowany wadliwym sprzętem. Skontaktuj się z dostawcą sprzętu, aby uzyskać dalszą pomoc w diagnozowaniu problemu. Error: (01/10/2023 02:45:45 PM) (Source: ESENT) (EventID: 476) (User: ) Description: svchost (3636,D,23) SRUJet: Weryfikacja odczytu strony bazy danych z pliku „C:\WINDOWS\system32\SRU\SRUDB.dat” na pozycji względnej 23207936 (0x0000000001622000) (strona bazy danych: 5665 (0x1621)) dla 4096 (0x00001000) bajtów nie powiodła się z powodu braku danych strony. Operacja odczytu zostanie zakończona z błędem -1019 (0xfffffc05). Jeśli ten stan będzie się utrzymywał, przywróć bazę danych z wcześniejszej kopii zapasowej. Ten problem jest prawdopodobnie spowodowany wadliwym sprzętem. Skontaktuj się z dostawcą sprzętu, aby uzyskać dalszą pomoc w diagnozowaniu problemu. Dziennik System: ============= Error: (01/07/2023 05:18:40 PM) (Source: DCOM) (EventID: 10010) (User: AHMED) Description: Serwer {A5C79653-FC73-46EE-AD3E-B64C01268DAA} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (01/07/2023 05:18:08 PM) (Source: DCOM) (EventID: 10010) (User: AHMED) Description: Serwer {A5C79653-FC73-46EE-AD3E-B64C01268DAA} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (01/06/2023 05:20:40 PM) (Source: DCOM) (EventID: 10010) (User: AHMED) Description: Serwer Microsoft.Windows.Photos_2020.20070.10002.0_x64__8wekyb3d8bbwe!App.AppXy9rh3t8m2jfpvhhxp6y2ksgeq77vymbq.mca nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (01/02/2023 09:25:20 AM) (Source: DCOM) (EventID: 10010) (User: ZARZĄDZANIE NT) Description: Serwer {752073A1-23F2-4396-85F0-8FDB879ED0ED} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (01/02/2023 09:23:20 AM) (Source: DCOM) (EventID: 10010) (User: ZARZĄDZANIE NT) Description: Serwer {752073A1-23F2-4396-85F0-8FDB879ED0ED} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (01/02/2023 09:21:19 AM) (Source: DCOM) (EventID: 10010) (User: ZARZĄDZANIE NT) Description: Serwer {752073A1-23F2-4396-85F0-8FDB879ED0ED} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (01/02/2023 09:19:19 AM) (Source: DCOM) (EventID: 10010) (User: ZARZĄDZANIE NT) Description: Serwer {752073A1-23F2-4396-85F0-8FDB879ED0ED} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (12/30/2022 05:42:11 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Usługa platformy podłączonych urządzeń niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 3000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Windows Defender: ================ Date: 2023-01-10 14:58:46 Description: Skanowanie produktu Program antywirusowy Microsoft Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania: {9B6552EE-9035-4FD5-B623-D73BD9895D1B} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Pełne skanowanie Użytkownik: AHMED\Ahmed Date: 2023-01-09 20:34:31 Description: Skanowanie produktu Program antywirusowy Microsoft Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania: {43A98D76-9EEF-4105-A1AD-BB41C8ADD8B6} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Szybkie skanowanie Użytkownik: ZARZĄDZANIE NT\SYSTEM Date: 2023-01-08 21:43:49 Description: Skanowanie produktu Program antywirusowy Microsoft Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania: {A81DA197-65E3-4904-B29B-C1927445BCBD} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Szybkie skanowanie Użytkownik: AHMED\Ahmed Date: 2023-01-08 21:43:34 Description: Produkt Program antywirusowy Microsoft Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz: https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Script/Wacatac.H!ml&threatid=2147814524&enterprise=0 Nazwa: Trojan:Script/Wacatac.H!ml Identyfikator: 2147814524 Ważność: Poważny Kategoria: Koń trojański Ścieżka: file:_C:\ProgramData\41214249516791098668.exe Pochodzenie wykrycia: Komputer lokalny Typ wykrycia: FastPath Źródło wykrycia: Ochrona w czasie rzeczywistym Użytkownik: AHMED\Ahmed Nazwa procesu: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe Wersja analizy zabezpieczeń: AV: 1.381.1923.0, AS: 1.381.1923.0, NIS: 1.381.1923.0 Wersja aparatu: AM: 1.1.19900.2, NIS: 1.1.19900.2 Date: 2023-01-08 21:43:33 Description: Produkt Program antywirusowy Microsoft Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz: https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Wacatac.H!ml&threatid=2147814523&enterprise=0 Nazwa: Trojan:Win32/Wacatac.H!ml Identyfikator: 2147814523 Ważność: Poważny Kategoria: Koń trojański Ścieżka: file:_C:\ProgramData\80038082488527864678.exe; file:_C:\Users\Ahmed\AppData\Local\Microsoft\Windows\INetCache\IE\FLTWJYSS\635965506[1].exe Pochodzenie wykrycia: Komputer lokalny Typ wykrycia: FastPath Źródło wykrycia: Ochrona w czasie rzeczywistym Użytkownik: AHMED\Ahmed Nazwa procesu: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe Wersja analizy zabezpieczeń: AV: 1.381.1923.0, AS: 1.381.1923.0, NIS: 1.381.1923.0 Wersja aparatu: AM: 1.1.19900.2, NIS: 1.1.19900.2  CodeIntegrity: =============== Date: 2023-01-10 16:07:36 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Avast Software\Avast\AvastSvc.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Statystyki pamięci =========================== BIOS: American Megatrends Inc. C.70 05/23/2016 Płyta główna: MSI B150 PC MATE (MS-7971) Procesor: Intel(R) Core(TM) i5-6600 CPU @ 3.30GHz Procent pamięci w użyciu: 46% Całkowita pamięć fizyczna: 16347.08 MB Dostępna pamięć fizyczna: 8733.23 MB Całkowita pamięć wirtualna: 18779.08 MB Dostępna pamięć wirtualna: 10064.3 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:99.57 GB) (Free:23.5 GB) (Model: SAMSUNG HD103SJ) NTFS Drive d: () (Fixed) (Total:831.4 GB) (Free:353.39 GB) (Model: SAMSUNG HD103SJ) NTFS \\?\Volume{d8c67ead-9618-11e5-824e-806e6f6e6963}\ (Zastrzeżone przez system) (Fixed) (Total:0.1 GB) (Free:0.03 GB) NTFS \\?\Volume{d8c67eaf-9618-11e5-824e-806e6f6e6963}\ () (Fixed) (Total:0.44 GB) (Free:0.13 GB) NTFS ==================== MBR & Tablica partycji ==================== ========================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 3A8C197D) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=99.6 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=450 MB) - (Type=27) Partition 4: (Not Active) - (Size=831.4 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt =======================