Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 05-02-2022 Uruchomiony przez Mariusz (09-02-2022 12:49:23) Uruchomiony z C:\Users\Mariusz\AppData\Local\Temp\scoped_dir23520_1977696229 Microsoft Windows 10 Pro Wersja 21H2 19044.1466 (X64) (2021-08-03 18:20:38) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= (Załączenie wejścia w fixlist spowoduje jego usunięcie.) Administrator (S-1-5-21-3610575030-2036697386-529325907-500 - Administrator - Disabled) Gość (S-1-5-21-3610575030-2036697386-529325907-501 - Limited - Disabled) Konto domyślne (S-1-5-21-3610575030-2036697386-529325907-503 - Limited - Disabled) Mariusz (S-1-5-21-3610575030-2036697386-529325907-1001 - Administrator - Enabled) => C:\Users\Mariusz WDAGUtilityAccount (S-1-5-21-3610575030-2036697386-529325907-504 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) 7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov) Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 21.011.20039 - Adobe Systems Incorporated) Adobe Lightroom Classic (HKLM-x32\...\LTRM_9_0) (Version: 9.0 - Adobe Systems Incorporated) AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 2.15.07.2229 - Advanced Micro Devices, Inc.) AMD Ryzen Master (HKLM\...\AMD Ryzen Master) (Version: 2.8.0.1937 - Advanced Micro Devices, Inc.) AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 20.50.26 - Advanced Micro Devices, Inc.) AMD_Chipset_Drivers (HKLM-x32\...\{c370a4bd-5e86-489d-b1a5-54ceee532d20}) (Version: 2.15.07.2229 - Advanced Micro Devices, Inc.) Hidden AOMEI Partition Assistant Standard Edition 8.6 (HKLM-x32\...\{02F850ED-FD0E-4ED1-BE0B-54981f5BD3D4}_is1) (Version: - AOMEI Technology Co., Ltd.) Application Verifier x64 External Package (HKLM\...\{8A4CD158-E6B3-6D91-D7DE-10098BC980E2}) (Version: 10.1.19041.685 - Microsoft) Hidden Audacity 3.0.2 (HKLM-x32\...\Audacity_is1) (Version: 3.0.2 - Audacity Team) CLion 2021.2 (HKLM-x32\...\CLion 2021.2) (Version: 212.4746.93 - JetBrains s.r.o.) CLion 2021.2.3 (HKLM-x32\...\CLion 2021.2.3) (Version: 212.5457.51 - JetBrains s.r.o.) CPUID CPU-Z MSI 1.96 (HKLM\...\CPUID CPU-Z MSI_is1) (Version: 1.96 - CPUID, Inc.) Cyberpunk 2077 (HKLM-x32\...\1423049311_is1) (Version: 1.3 - GOG.com) DataSpell 2021.3.1 (HKLM-x32\...\DataSpell 2021.3.1) (Version: 213.6461.76 - JetBrains s.r.o.) DiagnosticsHub_CollectionService (HKLM\...\{1F3C3AAC-9F7A-47DA-A082-0ACE770041BE}) (Version: 16.1.28901 - Microsoft Corporation) Hidden Discord (HKU\S-1-5-21-3610575030-2036697386-529325907-1001\...\Discord) (Version: 1.0.9003 - Discord Inc.) Epic Games Launcher (HKLM-x32\...\{505E1319-4ED9-4A08-BA60-688A040F72FB}) (Version: 1.2.17.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Epic Online Services (HKLM-x32\...\{0B736177-814A-4ADE-81D1-66A0FDD55BB4}) (Version: 1.1.11.0 - Epic Games, Inc.) FFmpeg (Windows) for Audacity wersja 2.2.2 (HKLM-x32\...\{9C7E31E3-017F-434C-AC40-24431A354A1E}_is1) (Version: 2.2.2 - ) GIMP 2.10.28 (HKU\S-1-5-21-3610575030-2036697386-529325907-1001\...\GIMP-2_is1) (Version: 2.10.28 - The GIMP Team) Git (HKLM\...\Git_is1) (Version: 2.33.0.2 - The Git Development Community) GOG GALAXY (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com) HP Deskjet 1510 series — podstawowe oprogramowanie urządzenia (HKLM\...\{021AA127-6B6D-46EF-9697-5089FA686FB6}) (Version: 32.2.188.47710 - Hewlett-Packard Co.) icecap_collection_neutral (HKLM-x32\...\{38424975-F5F7-4D65-9C6A-26B128F68EDA}) (Version: 17.0.31808 - Microsoft Corporation) Hidden icecap_collection_x64 (HKLM\...\{72EC729A-49E8-4CCD-9637-6E19D7AB2992}) (Version: 17.0.31808 - Microsoft Corporation) Hidden icecap_collectionresources (HKLM-x32\...\{D2481EB7-8905-4181-8270-FCECC90AFF1E}) (Version: 17.0.31808 - Microsoft Corporation) Hidden icecap_collectionresourcesx64 (HKLM-x32\...\{8AC15E28-E5C4-4E49-9C2C-FED9A69F9721}) (Version: 17.0.31808 - Microsoft Corporation) Hidden IntelliJ IDEA 2021.2.3 (HKLM-x32\...\IntelliJ IDEA 2021.2.3) (Version: 212.5457.46 - JetBrains s.r.o.) IrfanView 4.58 (64-bit) (HKLM\...\IrfanView64) (Version: 4.58 - Irfan Skiljan) Java 8 Update 301 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180301F0}) (Version: 8.0.3010.9 - Oracle Corporation) Java(TM) SE Development Kit 17 (64-bit) (HKLM\...\{7111A3FA-CDA7-58DA-874C-94AAB58DCF67}) (Version: 17.0.0.0 - Oracle Corporation) Java(TM) SE Development Kit 17.0.1 (64-bit) (HKLM\...\{7ECAAC8F-FBBE-5265-BBF4-0AC48139FB26}) (Version: 17.0.1.0 - Oracle Corporation) JDownloader 2 (HKLM-x32\...\jdownloader2) (Version: 2.0 - AppWork GmbH) JetBrains ETW Service (HKLM-x32\...\{8F18C700-7E28-4931-B799-03A26F0A13D0}) (Version: 212.16.26.0 - JetBrains s.r.o) Hidden JetBrains Rider 2021.2.2 (HKLM-x32\...\JetBrains Rider 2021.2.2) (Version: 212.5284.64 - JetBrains s.r.o.) Joplin 2.4.9 (HKLM\...\499c114e-8890-5040-9c02-24abe7d3ebe9) (Version: 2.4.9 - Laurent Cozic) Julia 1.6.3 (HKU\S-1-5-21-3610575030-2036697386-529325907-1001\...\Julia-1.6.3_is1) (Version: 1.6.3 - Julia Language) Kits Configuration Installer (HKLM-x32\...\{E75A9998-E979-760B-6AEB-49763F279EDD}) (Version: 10.1.19041.685 - Microsoft) Hidden Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Lightshot-5.5.0.7 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.5.0.7 - Skillbrains) LTspice XVII (HKLM\...\LTspice XVII) (Version: - Linear Technology Corporation) Malwarebytes version 4.5.0.152 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.0.152 - Malwarebytes) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 98.0.1108.43 - Microsoft Corporation) Microsoft Office Professional Plus 2019 - pl-pl (HKLM\...\ProPlus2019Retail - pl-pl) (Version: 16.0.14827.20158 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-3610575030-2036697386-529325907-1001\...\OneDriveSetup.exe) (Version: 22.002.0103.0004 - Microsoft Corporation) Microsoft System CLR Types for SQL Server 2019 (HKLM\...\{5BC7E9EB-13E8-45DB-8A60-F2481FEB4595}) (Version: 15.0.2000.5 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{E876418F-BE59-4D8C-B9A5-74B056B676FA}) (Version: 2.93.0.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.30.30704 (HKLM-x32\...\{57a73df6-4ba9-4c1d-bbbb-517289ff6c13}) (Version: 14.30.30704.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.30.30704 (HKLM-x32\...\{4d8dcf8c-a72a-43e1-9833-c12724db736e}) (Version: 14.30.30704.0 - Microsoft Corporation) Microsoft Visual Studio Code (User) (HKU\S-1-5-21-3610575030-2036697386-529325907-1001\...\{771FD6B0-FA20-440A-A002-3B3BAC16DC50}_is1) (Version: 1.64.0 - Microsoft Corporation) Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 3.0.4492.23473 - Microsoft Corporation) MSI Afterburner 4.6.4 Beta 3 (HKLM-x32\...\Afterburner) (Version: 4.6.4 Beta 3 - MSI Co., LTD) MSI Development Tools (HKLM-x32\...\{7AAC93B0-F3D7-6B24-6B37-9E74980C1C81}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden Need for Speed™ Most Wanted (HKLM-x32\...\{FB0127F3-985B-44CE-AE29-378CAF60B361}) (Version: 1.5.0.0 - Electronic Arts) NVIDIA GeForce NOW 2.0.33.123 (HKU\S-1-5-21-3610575030-2036697386-529325907-1001\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GeforceNOW) (Version: 2.0.33.123 - NVIDIA Corporation) NVIDIA NVIDIA RTX Voice Driver 1.0.0.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_RTXVoice.Driver) (Version: 1.0.0.2 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation) NVIDIA RTX Voice Application (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_RTXVoice) (Version: 0.5.12.6 - NVIDIA Corporation) NVIDIA Sterownik graficzny 471.68 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 471.68 - NVIDIA Corporation) Obsidian (HKU\S-1-5-21-3610575030-2036697386-529325907-1001\...\bd400747-f0c1-5638-a859-982036102edf) (Version: 0.12.19 - Obsidian) Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.14827.20088 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.14827.20088 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.14827.20158 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0415-0000-0000000FF1CE}) (Version: 16.0.14827.20088 - Microsoft Corporation) Hidden OnScreen Control (HKLM-x32\...\{E5C1B339-0E4E-49A5-859E-5E1DE1938706}) (Version: 6.88 - LG Electronics Inc) Opera Neon (HKU\S-1-5-21-3610575030-2036697386-529325907-1001\...\Opera Neon) (Version: 1.0.2531.0 - Opera Software AS) Opera Stable 83.0.4254.27 (HKLM-x32\...\Opera 83.0.4254.27) (Version: 83.0.4254.27 - Opera Software) Oracle VM VirtualBox 6.1.26 (HKLM\...\{71822DCA-AF02-40D5-9BB8-2C1F75356115}) (Version: 6.1.26 - Oracle Corporation) Origin (HKLM-x32\...\Origin) (Version: 10.5.102.48654 - Electronic Arts, Inc.) paint.net (HKLM\...\{1A59F8A6-6AB4-4522-9340-F420B9155A31}) (Version: 4.2.16 - dotPDN LLC) Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 2.0.1.0 - Advanced Micro Devices, Inc.) Hidden Python 3.10.1 (64-bit) (HKU\S-1-5-21-3610575030-2036697386-529325907-1001\...\{af822d5e-759c-4e77-9696-3cc835cd54a9}) (Version: 3.10.1150.0 - Python Software Foundation) Python 3.10.1 Add to Path (64-bit) (HKLM\...\{5233B9AE-1FFC-4484-BA8C-C80D3723063A}) (Version: 3.10.1150.0 - Python Software Foundation) Hidden Python 3.10.1 Core Interpreter (64-bit) (HKLM\...\{862831D8-A2FD-4ED5-B9B9-C8C3ECA1CAE8}) (Version: 3.10.1150.0 - Python Software Foundation) Hidden Python 3.10.1 Development Libraries (64-bit) (HKLM\...\{A17FBEFC-ABDD-4E5E-AAA5-CC503ACF648F}) (Version: 3.10.1150.0 - Python Software Foundation) Hidden Python 3.10.1 Documentation (64-bit) (HKLM\...\{DD75DEC5-89C0-4E54-88A2-83DCCA026F3A}) (Version: 3.10.1150.0 - Python Software Foundation) Hidden Python 3.10.1 Executables (64-bit) (HKLM\...\{4F07CBC9-1051-41FC-978D-EECA76E4D547}) (Version: 3.10.1150.0 - Python Software Foundation) Hidden Python 3.10.1 pip Bootstrap (64-bit) (HKLM\...\{167746E3-B9B3-4964-803A-F893F1FC56C9}) (Version: 3.10.1150.0 - Python Software Foundation) Hidden Python 3.10.1 Standard Library (64-bit) (HKLM\...\{98A2C72D-7929-414D-995B-4E47D8307C93}) (Version: 3.10.1150.0 - Python Software Foundation) Hidden Python 3.10.1 Tcl/Tk Support (64-bit) (HKLM\...\{5A807757-F64E-46D3-ABD1-B4907BB75B72}) (Version: 3.10.1150.0 - Python Software Foundation) Hidden Python 3.10.1 Test Suite (64-bit) (HKLM\...\{0393EBB7-8F16-42DC-9B63-F1552F481B92}) (Version: 3.10.1150.0 - Python Software Foundation) Hidden Python 3.10.1 Utility Scripts (64-bit) (HKLM\...\{FD9B0798-B88D-4148-9159-6206EACD7C47}) (Version: 3.10.1150.0 - Python Software Foundation) Hidden Python 3.9.7 (64-bit) (HKU\S-1-5-21-3610575030-2036697386-529325907-1001\...\{0f0bf1a5-3ec1-459b-ab7c-916db941f50d}) (Version: 3.9.7150.0 - Python Software Foundation) Python 3.9.7 Add to Path (64-bit) (HKLM\...\{832BFE8B-69A2-4E1D-8998-DFB9CBA4B4D3}) (Version: 3.9.7150.0 - Python Software Foundation) Hidden Python 3.9.7 Core Interpreter (64-bit) (HKLM\...\{88D4EF59-607D-43AD-B7C7-F5A753740FD1}) (Version: 3.9.7150.0 - Python Software Foundation) Hidden Python 3.9.7 Development Libraries (64-bit) (HKLM\...\{97496FC6-5044-4A2A-BACD-40A44F38D483}) (Version: 3.9.7150.0 - Python Software Foundation) Hidden Python 3.9.7 Documentation (64-bit) (HKLM\...\{AA408E09-EBB3-470F-8D63-5AA0C46C2DA2}) (Version: 3.9.7150.0 - Python Software Foundation) Hidden Python 3.9.7 Executables (64-bit) (HKLM\...\{870EC220-FEAE-481D-8B29-B4B0DF5402FA}) (Version: 3.9.7150.0 - Python Software Foundation) Hidden Python 3.9.7 pip Bootstrap (64-bit) (HKLM\...\{F1280AA2-AAC3-41AB-9616-CCF00814E626}) (Version: 3.9.7150.0 - Python Software Foundation) Hidden Python 3.9.7 Standard Library (64-bit) (HKLM\...\{05903EEF-72A2-4C1A-AD35-41AD6C7094A8}) (Version: 3.9.7150.0 - Python Software Foundation) Hidden Python 3.9.7 Tcl/Tk Support (64-bit) (HKLM\...\{6E8EAD3C-6F0C-494C-9C12-E10C5B5EE7EA}) (Version: 3.9.7150.0 - Python Software Foundation) Hidden Python 3.9.7 Test Suite (64-bit) (HKLM\...\{67D79D6E-8497-4EE6-850B-834D3A27553F}) (Version: 3.9.7150.0 - Python Software Foundation) Hidden Python 3.9.7 Utility Scripts (64-bit) (HKLM\...\{4110826A-903C-410C-9785-7848A51B9CC9}) (Version: 3.9.7150.0 - Python Software Foundation) Hidden Python Launcher (HKLM-x32\...\{7DE12550-BE09-44DD-BDB4-0EC26BA89DAF}) (Version: 3.10.7644.0 - Python Software Foundation) qBittorrent 4.3.8 (HKLM-x32\...\qBittorrent) (Version: 4.3.8 - The qBittorrent project) Quartus II Web Edition (Free) 13.0.1.232 (HKLM-x32\...\Quartus II Web Edition (Free) 13.0.1.232) (Version: 13.0sp1 - Altera Corporation) Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9202.1 - Realtek Semiconductor Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.46.1231.2020 - Realtek) RivaTuner Statistics Server 7.3.2 Beta 2 (HKLM-x32\...\RTSS) (Version: 7.3.2 Beta 2 - Unwinder) SDK ARM Additions (HKLM-x32\...\{FCF9D89E-6F79-64FB-B08D-B0E69FF54DEE}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden SDK ARM Redistributables (HKLM-x32\...\{72DB07D6-E166-5A3F-B6E6-4664383781B8}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden Signal 5.30.0 (HKU\S-1-5-21-3610575030-2036697386-529325907-1001\...\7d96caee-06e6-597c-9f2f-c7bb2e0948b4) (Version: 5.30.0 - Open Whisper Systems) Sprawdzanie kondycji komputera z systemem Windows (HKLM\...\{497ED226-5E88-4EC5-9340-373B1C56906F}) (Version: 3.2.2110.14001 - Microsoft Corporation) Standard Notes 3.8.21 (HKU\S-1-5-21-3610575030-2036697386-529325907-1001\...\774f2290-3906-58eb-baae-35b0dc01c31e) (Version: 3.8.21 - Standard Notes) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Streamlabs OBS 1.3.3 (HKLM\...\029c4619-0385-5543-9426-46f9987161d9) (Version: 1.3.3 - General Workings, Inc.) SWI-Prolog (remove only) (HKLM\...\SWI-Prolog) (Version: - ) Środowisko uruchomieniowe Microsoft Edge WebView2 (HKLM-x32\...\Microsoft EdgeWebView) (Version: 98.0.1108.43 - Microsoft Corporation) Telegram Desktop version 3.4 (HKU\S-1-5-21-3610575030-2036697386-529325907-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 3.4 - Telegram FZ-LLC) The Witcher 2 - Assassins of Kings Enhanced Edition (HKLM-x32\...\1207658930_is1) (Version: 3.5.0.26 - GOG.com) The Witcher Enhanced Edition Director's Cut (HKLM-x32\...\1207658924_is1) (Version: 2.1.0.15 - GOG.com) TP-Link Archer T6E Driver (HKLM-x32\...\{F2CF3250-3769-431E-A808-056BFA917849}) (Version: 2.1.0 - TP-Link) TunnelBear (HKLM-x32\...\{1273a518-e2c4-409b-b060-44aeda09af12}) (Version: 4.4.6.0 - TunnelBear) TunnelBear (HKLM-x32\...\{8DA7C429-95E3-4409-9EC3-A43253FE8F1C}) (Version: 4.4.6.0 - TunnelBear) Hidden Universal CRT Extension SDK (HKLM-x32\...\{4D69FB64-4443-F2DD-DE1C-F14FD98AAC59}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden Universal CRT Headers Libraries and Sources (HKLM-x32\...\{6B56745A-F6A4-C51C-933A-AD96C00683EA}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden Universal CRT Redistributable (HKLM-x32\...\{A57CD0A6-4297-FD30-34A4-34758B6F5F69}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden Universal CRT Tools x64 (HKLM\...\{CD06199B-41C1-AE6D-7567-984CC68792C3}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden Universal CRT Tools x86 (HKLM-x32\...\{BD75F257-50A4-E0CD-9942-C3550CA3E66A}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden Universal General MIDI DLS Extension SDK (HKLM-x32\...\{A7E95C47-B5F4-110C-D27A-DECB03412B96}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden vcpp_crt.redist.clickonce (HKLM-x32\...\{5840A331-6CED-4ACB-9D4D-53103F01FD4E}) (Version: 14.30.30704 - Microsoft Corporation) Hidden Visual Studio Community 2022 Current (HKLM-x32\...\3b257631) (Version: 17.0.0 - Microsoft Corporation) VLC media player (HKLM\...\VLC media player) (Version: 3.0.16 - VideoLAN) VS Immersive Activate Helper (HKLM-x32\...\{C0ACF658-B4DC-4CBB-B8F2-9E667D69919A}) (Version: 17.0.114.0 - Microsoft Corporation) Hidden VS JIT Debugger (HKLM\...\{43F73608-5C94-436F-A1E6-E09ACE680391}) (Version: 17.0.114.0 - Microsoft Corporation) Hidden VS Script Debugging Common (HKLM\...\{9EC852BD-33D2-457C-99BB-ED3099B8176F}) (Version: 17.0.114.0 - Microsoft Corporation) Hidden vs_communitymsires (HKLM-x32\...\{A946AB06-1FD9-4653-B013-58C36BA7D3AA}) (Version: 17.0.31808 - Microsoft Corporation) Hidden vs_communitysharedmsi (HKLM-x32\...\{03DEF081-63DA-48D9-83CF-E0F3F39249C7}) (Version: 17.0.31815 - Microsoft Corporation) Hidden vs_communityx64msi (HKLM\...\{25DF2B02-C761-49C6-81D9-B29B7838A9AC}) (Version: 17.0.31808 - Microsoft Corporation) Hidden vs_CoreEditorFonts (HKLM-x32\...\{C7D6DE5E-D070-42B2-BF2D-1A3BD1D25C07}) (Version: 17.0.31902 - Microsoft Corporation) Hidden vs_devenvsharedmsi (HKLM-x32\...\{EE27C912-1811-45F8-A221-CFF90A37A69F}) (Version: 17.0.31804 - Microsoft Corporation) Hidden vs_devenx64vmsi (HKLM\...\{DC2F8F18-31B5-42F1-A52A-04644329CE90}) (Version: 17.0.31804 - Microsoft Corporation) Hidden vs_filehandler_amd64 (HKLM-x32\...\{CCFBC305-8495-4A7D-B20F-BB0439A12AFB}) (Version: 17.0.31808 - Microsoft Corporation) Hidden vs_filehandler_x86 (HKLM-x32\...\{60C647C8-7865-410D-A947-E98578028922}) (Version: 17.0.31808 - Microsoft Corporation) Hidden vs_FileTracker_Singleton (HKLM-x32\...\{38371BF8-3A6A-4C76-B2C5-403CF3FA711B}) (Version: 17.0.31808 - Microsoft Corporation) Hidden vs_Graphics_Singletonx64 (HKLM\...\{FA204D88-4A70-45B8-BBAC-0EC29BF41595}) (Version: 17.0.31808 - Microsoft Corporation) Hidden vs_Graphics_Singletonx86 (HKLM-x32\...\{54F489A2-2370-4849-89EB-4291A393920C}) (Version: 17.0.31808 - Microsoft Corporation) Hidden vs_minshellinteropsharedmsi (HKLM-x32\...\{2B4801DC-34F8-4706-A5D6-109EE99675FD}) (Version: 17.0.31808 - Microsoft Corporation) Hidden vs_minshellinteropx64msi (HKLM\...\{E8E7F587-35C1-4E2C-BE2A-605FC9F82D9F}) (Version: 17.0.31804 - Microsoft Corporation) Hidden vs_minshellmsires (HKLM-x32\...\{D66A7076-9DFE-4036-BD57-3E065118AAA2}) (Version: 17.0.31808 - Microsoft Corporation) Hidden vs_minshellsharedmsi (HKLM-x32\...\{7FEC4935-AB34-488D-BF33-38C816525040}) (Version: 17.0.31808 - Microsoft Corporation) Hidden vs_minshellx64msi (HKLM\...\{EFF69C65-9C29-46D2-B1F2-3B07C82C7958}) (Version: 17.0.31808 - Microsoft Corporation) Hidden vs_tipsmsi (HKLM-x32\...\{AD4BFA50-ABD0-4C12-94E9-645FD304A8F3}) (Version: 17.0.31804 - Microsoft Corporation) Hidden WinAppDeploy (HKLM-x32\...\{2ADF1977-BF31-E127-B651-AC28A8658317}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden Windows SDK AddOn (HKLM-x32\...\{E18618EC-D9DB-4BCE-B382-85ADA2CBB340}) (Version: 10.1.0.0 - Microsoft Corporation) Windows Software Development Kit - Windows 10.0.19041.685 (HKLM-x32\...\{4591faf1-a2db-4a3d-bfda-aa5a4ebb1587}) (Version: 10.1.19041.685 - Microsoft Corporation) WinRT Intellisense Desktop - en-us (HKLM-x32\...\{BCF7CA0F-E53C-2A4F-B128-A751EC9A1016}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden WinRT Intellisense Desktop - Other Languages (HKLM-x32\...\{B42BF427-AFDB-C00F-DB60-6F51395D74A1}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden WinRT Intellisense IoT - en-us (HKLM-x32\...\{3335615C-ABEB-960E-2226-4274CD28E046}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden WinRT Intellisense IoT - Other Languages (HKLM-x32\...\{216D5F47-257D-6284-5849-B51037875EFA}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden WinRT Intellisense Mobile - en-us (HKLM-x32\...\{443FF51E-16C3-F23B-18FC-0D1D66024B0B}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden WinRT Intellisense PPI - en-us (HKLM-x32\...\{15E29AFF-CB19-A20B-9A81-B0765A63115F}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden WinRT Intellisense PPI - Other Languages (HKLM-x32\...\{FF2B49B7-0254-3D6A-4BE0-EF4C59DBCC2B}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden WinRT Intellisense UAP - en-us (HKLM-x32\...\{0AF3B821-474B-1885-473A-6E3FB4F1CF71}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden WinRT Intellisense UAP - Other Languages (HKLM-x32\...\{8832F8ED-1035-9ABE-FD73-4E5ABAA84A5C}) (Version: 10.1.19041.685 - Microsoft Corporation) Hidden WinSCP 5.19.4 (HKLM-x32\...\winscp3_is1) (Version: 5.19.4 - Martin Prikryl) Zoom (HKU\S-1-5-21-3610575030-2036697386-529325907-1001\...\ZoomUMX) (Version: 5.9.3 (3169) - Zoom Video Communications, Inc.) Packages: ========= Dodatek Aparat multimediów dla aplikacji Zdjęcia -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-09-15] (Microsoft Corporation) Minecraft for Windows 10 -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.18.1004.0_x64__8wekyb3d8bbwe [2022-02-09] (Microsoft Studios) Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2021-08-03] (Netflix, Inc.) NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.962.0_x64__56jybvy8sckqj [2022-01-26] (NVIDIA Corp.) Packages Tracker -> C:\Program Files\WindowsApps\38890sSamedi.PackagesTracker_1.3.0.0_x64__p8fexx3fq3ate [2022-02-09] (sSamedi) Pulpit zdalny Microsoft -> C:\Program Files\WindowsApps\Microsoft.RemoteDesktop_10.2.1817.0_x64__8wekyb3d8bbwe [2021-12-15] (Microsoft Corporation) Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.29.256.0_x64__dt26b99r8h8gj [2021-12-17] (Realtek Semiconductor Corp) Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0 [2022-02-05] (Spotify AB) [Startup Task] TIDAL -> C:\Program Files\WindowsApps\WiMPMusic.27241E05630EA_2.29.7.0_x86__kn85bz84x7te4 [2022-01-29] (TIDAL Music AS) Ubuntu 20.04 LTS -> C:\Program Files\WindowsApps\CanonicalGroupLimited.Ubuntu20.04onWindows_2004.2021.825.0_x64__79rhkp1fndgsc [2021-11-02] (Canonical Group Limited) ==================== Niestandardowe rejestracje CLSID (filtrowane): ============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Brak podpisu cyfrowego] ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Brak podpisu cyfrowego] ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_422d4a8d182d8330\nvshext.dll [2021-11-27] (Nvidia Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Brak podpisu cyfrowego] ==================== Codecs (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [Brak podpisu cyfrowego] HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [Brak podpisu cyfrowego] ==================== Skróty & WMI ======================== ==================== Załadowane moduły (filtrowane) ============= 2021-07-22 16:33 - 2021-07-22 16:33 - 000030720 _____ () [Brak podpisu cyfrowego] [Plik w użyciu] C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.Wrapper.dll 2021-10-29 13:10 - 2013-06-13 06:13 - 000029184 _____ () [Brak podpisu cyfrowego] C:\altera\13.0sp1\quartus\bin64\ccl_ver.dll 2021-10-29 13:10 - 2013-06-13 02:41 - 000879616 _____ () [Brak podpisu cyfrowego] C:\altera\13.0sp1\quartus\bin64\dinkum_alt.dll 2021-08-28 22:41 - 2019-01-29 09:14 - 000059392 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\LG Electronics\OnScreen Control\bin\ScreenSplitterHook1.dll 2021-08-28 22:41 - 2019-01-29 09:14 - 000066048 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\LG Electronics\OnScreen Control\bin\ScreenSplitterHook641.dll 2021-08-28 22:41 - 2018-10-10 08:19 - 006175232 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\LG Electronics\OnScreen Control\bin\TracerLib.dll 2021-04-04 23:10 - 2021-04-04 23:10 - 000232960 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\MSI Afterburner\RTCore.dll 2021-04-04 23:10 - 2021-04-04 23:10 - 000057344 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\MSI Afterburner\RTFC.dll 2021-04-06 15:05 - 2021-04-06 15:05 - 000668672 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\MSI Afterburner\RTHAL.dll 2021-04-04 23:10 - 2021-04-04 23:10 - 000074240 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\MSI Afterburner\RTMUI.dll 2021-04-04 23:10 - 2021-04-04 23:10 - 000371712 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\MSI Afterburner\RTUI.dll 2021-04-05 16:43 - 2021-04-05 16:43 - 000057344 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\RivaTuner Statistics Server\RTFC.dll 2021-04-05 16:43 - 2021-04-05 16:43 - 000074240 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\RivaTuner Statistics Server\RTMUI.dll 2021-04-05 16:43 - 2021-04-05 16:43 - 000368640 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\RivaTuner Statistics Server\RTUI.dll 2021-08-04 19:19 - 2021-10-06 02:30 - 126961152 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libcef.dll 2021-08-04 19:19 - 2021-10-06 02:30 - 000384000 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libegl.dll 2021-08-04 19:19 - 2021-10-06 02:30 - 008006656 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libglesv2.dll 2021-08-17 20:29 - 2019-02-21 17:00 - 000078336 _____ (Igor Pavlov) [Brak podpisu cyfrowego] C:\Program Files\7-Zip\7-zip.dll 2021-10-29 13:10 - 2013-06-13 02:41 - 000070144 _____ (Intel Corporation) [Brak podpisu cyfrowego] C:\altera\13.0sp1\quartus\bin64\tbbmalloc.dll 2021-10-29 13:10 - 2013-06-13 02:41 - 000024576 _____ (Intel Corporation) [Brak podpisu cyfrowego] C:\altera\13.0sp1\quartus\bin64\tbbmalloc_proxy.dll 2021-08-04 19:19 - 2021-10-06 02:30 - 000983552 _____ (The Chromium Authors) [Brak podpisu cyfrowego] C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\chrome_elf.dll 2021-08-28 22:41 - 2020-12-08 13:24 - 006051840 _____ (TODO: ) [Brak podpisu cyfrowego] C:\Program Files (x86)\LG Electronics\OnScreen Control\bin\DPIHandler.dll ==================== Alternate Data Streams (filtrowane) ======== ==================== Tryb awaryjny (filtrowane) ================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Powiązania plików (filtrowane) ================= ==================== Internet Explorer (filtrowane) ========== BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2022-01-27] (Microsoft Corporation -> Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_301\bin\ssv.dll [2021-09-18] (Oracle America, Inc. -> Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_301\bin\jp2ssv.dll [2021-09-18] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2021-10-30] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-01-27] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-01-27] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-01-27] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-01-27] (Microsoft Corporation -> Microsoft Corporation) ==================== Hosts - zawartość: ========================= (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2021-08-06 18:31 - 2021-09-28 21:50 - 000000822 _____ C:\Windows\system32\drivers\etc\hosts 2021-10-26 18:17 - 2022-02-05 13:32 - 000000524 _____ C:\Windows\system32\drivers\etc\hosts.ics 172.28.144.1 DESKTOP-NTSVTFK.mshome.net # 2027 2 4 4 12 32 2 824 2.27.4.8 ubuntu-Virtual-Machine.mshome.net # 2022 1 0 30 18 22 10 503 98 ==================== Inne obszary =========================== (Obecnie brak automatycznej naprawy dla tej sekcji.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Git\cmd; HKU\S-1-5-21-3610575030-2036697386-529325907-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Mariusz\Downloads\jeremy-bezanger-FSYBLpgYAjg-unsplash.jpg DNS Servers: 1.1.1.1 - 185.228.169.168 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Zapora systemu Windows [funkcja włączona] Network Binding: ============= Wi-Fi: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled) VirtualBox Host-Only Network: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled) vEthernet (Default Switch): VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled) Ethernet: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled) Ethernet 2: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled) ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Załączenie wejścia w fixlist spowoduje jego usunięcie.) MSCONFIG\Services: EpicOnlineServices => 3 MSCONFIG\Services: GalaxyClientService => 3 MSCONFIG\Services: GalaxyCommunication => 3 MSCONFIG\Services: Origin Client Service => 3 MSCONFIG\Services: Origin Web Helper Service => 3 MSCONFIG\Services: Steam Client Service => 3 MSCONFIG\Services: TunnelBearMaintenance => 3 HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKLM\...\StartupApproved\Run32: => "Opera Browser Assistant" HKLM\...\StartupApproved\Run32: => "Discord" HKU\S-1-5-21-3610575030-2036697386-529325907-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-3610575030-2036697386-529325907-1001\...\StartupApproved\Run: => "EpicGamesLauncher" HKU\S-1-5-21-3610575030-2036697386-529325907-1001\...\StartupApproved\Run: => "GogGalaxy" HKU\S-1-5-21-3610575030-2036697386-529325907-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-3610575030-2036697386-529325907-1001\...\StartupApproved\Run: => "Discord" HKU\S-1-5-21-3610575030-2036697386-529325907-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_DF2B093D4769B70EEE8ADD3FE8CA128D" ==================== Reguły Zapory systemu Windows (filtrowane) ================ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{37DFEA40-B398-4DCB-81C7-979AE70F5F5C}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{11AF6DE6-0040-4859-8083-A8E1C5536E2F}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{39D30548-3841-4AC0-AE4B-962060A8961D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{4D6BC2E3-1D95-42E4-AF94-267759B5839B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{0922F747-1E5E-4D3A-A99F-03D78E6418AC}] => (Allow) C:\Program Files\HP\HP Deskjet 1510 series\Bin\USBSetup.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{CC429EFE-322F-491E-A779-69C30DF77DDE}] => (Allow) C:\Program Files\HP\HP Deskjet 1510 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{A4D01344-6FB7-4BA8-8B9D-A962FE91A456}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{0F7195C3-39E0-494B-B2E3-4BFFF981E2F6}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{D7992645-B631-4221-8488-E20D781B4AFB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe (Blue Mammoth Games) [Brak podpisu cyfrowego] FirewallRules: [{588B698A-95FC-4971-9D28-60A26FBBDA08}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe (Blue Mammoth Games) [Brak podpisu cyfrowego] FirewallRules: [{3658D8E3-D684-420A-BC3B-E6AC315610E8}] => (Allow) C:\Program Files (x86)\Origin Games\Need for Speed(TM) Most Wanted\NFS13.exe (Electronic Arts -> Electronic Arts) FirewallRules: [{914A9DA7-4CF1-4983-8C53-E1CE2889C575}] => (Allow) C:\Program Files (x86)\Origin Games\Need for Speed(TM) Most Wanted\NFS13.exe (Electronic Arts -> Electronic Arts) FirewallRules: [TCP Query User{2C1F7B22-5954-45D4-8874-1F6D9F26236F}C:\program files\epic games\borderlands3\oakgame\binaries\win64\borderlands3.exe] => (Allow) C:\program files\epic games\borderlands3\oakgame\binaries\win64\borderlands3.exe (Gearbox Software, L.L.C. -> Gearbox Software) FirewallRules: [UDP Query User{1596AFDA-4E65-4023-8329-E9DF1DCB4A57}C:\program files\epic games\borderlands3\oakgame\binaries\win64\borderlands3.exe] => (Allow) C:\program files\epic games\borderlands3\oakgame\binaries\win64\borderlands3.exe (Gearbox Software, L.L.C. -> Gearbox Software) FirewallRules: [TCP Query User{21CA419B-6C0D-4ECF-9BC4-8E26EB06F6D9}C:\program files\windowsapps\wimpmusic.27241e05630ea_2.28.0.0_x86__kn85bz84x7te4\app\tidal.exe] => (Allow) C:\program files\windowsapps\wimpmusic.27241e05630ea_2.28.0.0_x86__kn85bz84x7te4\app\tidal.exe => Brak pliku FirewallRules: [UDP Query User{19E601A9-6BF8-4BD3-9AF7-06FE43E12B32}C:\program files\windowsapps\wimpmusic.27241e05630ea_2.28.0.0_x86__kn85bz84x7te4\app\tidal.exe] => (Allow) C:\program files\windowsapps\wimpmusic.27241e05630ea_2.28.0.0_x86__kn85bz84x7te4\app\tidal.exe => Brak pliku FirewallRules: [TCP Query User{5153E392-C110-40DB-A418-C5AF79515E44}C:\users\mariusz\appdata\roaming\telegram desktop\telegram.exe] => (Allow) C:\users\mariusz\appdata\roaming\telegram desktop\telegram.exe (Telegram FZ-LLC -> Telegram FZ-LLC) FirewallRules: [UDP Query User{3B43A24D-82A9-4659-94B3-61ECE9EEB00D}C:\users\mariusz\appdata\roaming\telegram desktop\telegram.exe] => (Allow) C:\users\mariusz\appdata\roaming\telegram desktop\telegram.exe (Telegram FZ-LLC -> Telegram FZ-LLC) FirewallRules: [TCP Query User{94B4CB39-F312-4181-9B38-55B6F1964791}C:\program files\jetbrains\clion 2021.2\bin\clion64.exe] => (Allow) C:\program files\jetbrains\clion 2021.2\bin\clion64.exe (JetBrains s.r.o. -> JetBrains s.r.o.) FirewallRules: [UDP Query User{376D9A16-2817-4CAE-8715-52325D6A54E8}C:\program files\jetbrains\clion 2021.2\bin\clion64.exe] => (Allow) C:\program files\jetbrains\clion 2021.2\bin\clion64.exe (JetBrains s.r.o. -> JetBrains s.r.o.) FirewallRules: [TCP Query User{2A79D00B-4C48-45C1-A47D-1FFC3C89ACBD}C:\program files\jetbrains\clion 2021.2\jbr\bin\jcef_helper.exe] => (Allow) C:\program files\jetbrains\clion 2021.2\jbr\bin\jcef_helper.exe (JetBrains s.r.o. -> ) FirewallRules: [UDP Query User{C7CC19FC-6826-4C67-B269-B52A49012106}C:\program files\jetbrains\clion 2021.2\jbr\bin\jcef_helper.exe] => (Allow) C:\program files\jetbrains\clion 2021.2\jbr\bin\jcef_helper.exe (JetBrains s.r.o. -> ) FirewallRules: [TCP Query User{9D7CCA2D-1266-4C94-807C-540315345D66}C:\cyberpunk 2077\bin\x64\cyberpunk2077.exe] => (Allow) C:\cyberpunk 2077\bin\x64\cyberpunk2077.exe (CD PROJEKT SPÓŁKA AKCYJNA -> CD PROJEKT S.A.) FirewallRules: [UDP Query User{06B3BA76-4AC5-4BAD-A523-5DF29869EA27}C:\cyberpunk 2077\bin\x64\cyberpunk2077.exe] => (Allow) C:\cyberpunk 2077\bin\x64\cyberpunk2077.exe (CD PROJEKT SPÓŁKA AKCYJNA -> CD PROJEKT S.A.) FirewallRules: [TCP Query User{8AEB0C36-124E-4462-AFB8-5E0F61E7A65B}C:\the witcher 2\bin\witcher2.exe] => (Allow) C:\the witcher 2\bin\witcher2.exe () [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{CE161808-D63D-47CA-8C58-1FA6030D0838}C:\the witcher 2\bin\witcher2.exe] => (Allow) C:\the witcher 2\bin\witcher2.exe () [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{2DF49EA2-E175-4ECB-9AB9-ED599B73EC5F}C:\program files\opera\opera.exe] => (Allow) C:\program files\opera\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [UDP Query User{3348C9EB-A357-48B4-8749-F980A3C83146}C:\program files\opera\opera.exe] => (Allow) C:\program files\opera\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [TCP Query User{E055B38C-2ACF-42AB-8512-A4175C685CF4}C:\users\mariusz\appdata\local\nvidia corporation\geforcenow\cef\geforcenow.exe] => (Allow) C:\users\mariusz\appdata\local\nvidia corporation\geforcenow\cef\geforcenow.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [UDP Query User{3F6A1F7F-5B66-4E36-A5AA-BB59685C5EA1}C:\users\mariusz\appdata\local\nvidia corporation\geforcenow\cef\geforcenow.exe] => (Allow) C:\users\mariusz\appdata\local\nvidia corporation\geforcenow\cef\geforcenow.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{4D77D895-A0DB-4380-A2BC-3EC39CC815EA}] => (Allow) C:\Users\Mariusz\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{BC5905FE-12FF-4A04-B4C5-66F938BB69DA}] => (Allow) C:\Users\Mariusz\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{E43B0CC6-F260-43A3-91AD-FD7DFEAD0079}] => (Allow) C:\Users\Mariusz\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{DEECC65C-2788-49C4-95F3-1DA0345FDB9A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Paladins\Binaries\Win64\PaladinsEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) FirewallRules: [{C81C474B-783F-4C3C-A69F-DFC127DFA7D0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Paladins\Binaries\Win64\PaladinsEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) FirewallRules: [TCP Query User{5D377FE4-201F-4959-9FC0-E2BE94176AB8}C:\program files (x86)\steam\steamapps\common\paladins\binaries\win64\paladins.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\paladins\binaries\win64\paladins.exe (Hirez Studios, Inc.) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{B737F278-1CCA-4583-AAD3-06D45C8FC25D}C:\program files (x86)\steam\steamapps\common\paladins\binaries\win64\paladins.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\paladins\binaries\win64\paladins.exe (Hirez Studios, Inc.) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{2CF55D15-C6EF-4C97-BC13-EA2BB9735E80}C:\program files\joplin\joplin.exe] => (Allow) C:\program files\joplin\joplin.exe (Pogopixels Ltd -> Laurent Cozic) FirewallRules: [UDP Query User{E1FC988A-9B45-42E1-BB8E-62D2F267E6C0}C:\program files\joplin\joplin.exe] => (Allow) C:\program files\joplin\joplin.exe (Pogopixels Ltd -> Laurent Cozic) FirewallRules: [{772BCFF5-5739-4823-9A75-DC3C6529C9B8}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [Brak podpisu cyfrowego] FirewallRules: [{195AD6A3-8E18-4920-9E01-029D20054942}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [Brak podpisu cyfrowego] FirewallRules: [{6EEAD007-97D3-45DD-B3D5-80F1B4FAF5D8}] => (Allow) C:\altera\13.0sp1\quartus\bin64\jtagserver.exe () [Brak podpisu cyfrowego] FirewallRules: [{C6854A9D-93CF-4497-948A-8DC76B8BB4A4}] => (Allow) C:\altera\13.0sp1\quartus\bin64\jtagserver.exe () [Brak podpisu cyfrowego] FirewallRules: [{6C7F2406-75D7-440B-A924-6D4F6CC6E579}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Overcooked! 2\Overcooked2.exe () [Brak podpisu cyfrowego] FirewallRules: [{E4549589-D115-493E-97B3-527FEFCF4B52}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Overcooked! 2\Overcooked2.exe () [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{9ADCB6B4-6E01-4175-AFAC-D30B16985F83}C:\program files\jetbrains\intellij idea 2021.2.3\bin\idea64.exe] => (Allow) C:\program files\jetbrains\intellij idea 2021.2.3\bin\idea64.exe (JetBrains s.r.o. -> JetBrains s.r.o.) FirewallRules: [UDP Query User{748260CB-A819-4BB6-8F82-3E99A59BF0D5}C:\program files\jetbrains\intellij idea 2021.2.3\bin\idea64.exe] => (Allow) C:\program files\jetbrains\intellij idea 2021.2.3\bin\idea64.exe (JetBrains s.r.o. -> JetBrains s.r.o.) FirewallRules: [{D34CB699-ADC2-4D1C-8F7C-EB6024FE7C2D}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{96464D39-08D2-4735-B9D7-9B599BE00C71}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{D6E4AFAC-0AFB-4AAD-9DBA-C1206E6E2FD1}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{A00C69E8-176B-467B-9346-381A9DACA7C8}] => (Allow) C:\Program Files\Opera\82.0.4227.58\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [{94F0A8EC-AE48-40CE-9AF2-1B1457082901}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin64\dontstarve_steam_x64.exe () [Brak podpisu cyfrowego] FirewallRules: [{46FC92B2-E6EC-4A3E-A9FD-8E7D9F9679BC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin64\dontstarve_steam_x64.exe () [Brak podpisu cyfrowego] FirewallRules: [{7CAB4EEA-A3B8-4739-A89E-429BFB03C1AD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe () [Brak podpisu cyfrowego] FirewallRules: [{03315506-0B90-435D-8023-95EB3C4E6FF4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe () [Brak podpisu cyfrowego] FirewallRules: [{9DBF8D3B-395F-499E-8B08-CD7B50398809}] => (Allow) C:\Program Files\Opera\83.0.4254.27\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [{3E6160D5-F91F-45E8-B7E6-2699C52853AF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{B2123EBF-23B9-43C4-ABE3-B3C73D06281A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{818B7D73-7A03-45EE-8EAF-BB312766633A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{0F51C471-8618-430D-9A5D-4966A04017BA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{1AC80056-24E7-4A36-B72C-ACF3A4DE57BC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{3E9B94B6-FC32-4F31-9B8E-2B03F88708D5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{C62027AA-4B5C-458C-BD40-FC95E085EE14}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{69D48DFF-9C73-4B31-AD04-9A8BC6B22E2D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{69984712-D1D0-45CD-9751-F1BCAA7A6A33}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\98.0.1108.43\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) ==================== Punkty Przywracania systemu ========================= 24-01-2022 03:30:38 Zaplanowany punkt kontrolny 01-02-2022 22:38:54 Zaplanowany punkt kontrolny 09-02-2022 12:31:51 Instalator modułów systemu Windows ==================== Wadliwe urządzenia w Menedżerze urządzeń ============ ==================== Błędy w Dzienniku zdarzeń: ======================== Dziennik Aplikacja: ================== Error: (02/07/2022 10:09:03 PM) (Source: SideBySide) (EventID: 35) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Błąd w pliku manifestu lub w pliku zasad "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" w wierszu 1. Tożsamość składnika znaleziona w manifeście nie odpowiada tożsamości składnika żądanego. Odwołanie to UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0". Definicja to UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (02/04/2022 01:35:41 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: Optymalizator magazynów nie może zakończyć operacji ograniczenie ponowne na HDD 2 (Z:) z następującego powodu: Żądana operacja nie jest obsługiwana przez sprzęt obsługujący wolumin. (0x8900002A) Error: (02/04/2022 01:35:39 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: Optymalizator magazynów nie może zakończyć operacji ograniczenie ponowne na HDD 1 (Y:) z następującego powodu: Żądana operacja nie jest obsługiwana przez sprzęt obsługujący wolumin. (0x8900002A) Error: (01/27/2022 10:40:21 AM) (Source: Software Protection Platform Service) (EventID: 8228) (User: ) Description: Aparat reguł nie może ocenić reguł. Przyczyna:0x80070057 Etap:BUILD_FULL_MACHINE_STATE Dane dodatkowe: Error: (01/26/2022 11:47:30 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: Paladins.exe, wersja: 5.1.4424.0, sygnatura czasowa: 0x00000000 Nazwa modułu powodującego błąd: Paladins.exe, wersja: 5.1.4424.0, sygnatura czasowa: 0x00000000 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x0000000000003dd0 Identyfikator procesu powodującego błąd: 0x1b84 Godzina uruchomienia aplikacji powodującej błąd: 0x01d81302f3b04a5a Ścieżka aplikacji powodującej błąd: C:\Program Files (x86)\Steam\steamapps\common\Paladins\Binaries\Win64\Paladins.exe Ścieżka modułu powodującego błąd: C:\Program Files (x86)\Steam\steamapps\common\Paladins\Binaries\Win64\Paladins.exe Identyfikator raportu: 6d3cd33f-d693-4ace-8102-d875624ded28 Pełna nazwa pakietu powodującego błąd: Identyfikator aplikacji względem pakietu powodującego błąd: Error: (01/26/2022 11:18:40 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: Optymalizator magazynów nie może zakończyć operacji ograniczenie ponowne na HDD 2 (Z:) z następującego powodu: Żądana operacja nie jest obsługiwana przez sprzęt obsługujący wolumin. (0x8900002A) Error: (01/26/2022 11:18:39 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: Optymalizator magazynów nie może zakończyć operacji ograniczenie ponowne na HDD 1 (Y:) z następującego powodu: Żądana operacja nie jest obsługiwana przez sprzęt obsługujący wolumin. (0x8900002A) Error: (01/26/2022 09:01:48 PM) (Source: Software Protection Platform Service) (EventID: 8228) (User: ) Description: Aparat reguł nie może ocenić reguł. Przyczyna:0x80070057 Etap:BUILD_FULL_MACHINE_STATE Dane dodatkowe: Dziennik System: ============= Error: (02/05/2022 01:32:01 PM) (Source: VBoxNetLwf) (EventID: 12) (User: ) Description: Sterownik wykrył błąd wewnętrzny sterownika na \Device\VBoxNetLwf. Error: (02/05/2022 01:30:15 PM) (Source: VBoxNetLwf) (EventID: 12) (User: ) Description: Sterownik wykrył błąd wewnętrzny sterownika na \Device\VBoxNetLwf. Error: (02/05/2022 01:30:15 PM) (Source: VBoxNetLwf) (EventID: 12) (User: ) Description: Sterownik wykrył błąd wewnętrzny sterownika na \Device\VBoxNetLwf. Error: (02/05/2022 01:30:14 PM) (Source: VBoxNetLwf) (EventID: 12) (User: ) Description: Sterownik wykrył błąd wewnętrzny sterownika na \Device\VBoxNetLwf. Error: (02/05/2022 01:30:06 PM) (Source: VBoxNetLwf) (EventID: 12) (User: ) Description: Sterownik wykrył błąd wewnętrzny sterownika na \Device\VBoxNetLwf. Error: (02/05/2022 01:30:13 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: Poprzednie zamknięcie systemu przy 00:16:20 na ‎05.‎02.‎2022 było nieoczekiwane. Error: (02/05/2022 01:30:04 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: ZARZĄDZANIE NT) Description: 3221225684A fatal error occurred processing the restoration data. Error: (01/26/2022 08:37:20 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: ZARZĄDZANIE NT) Description: Instalacja nie powiodła się: system Windows nie mógł zainstalować następującej aktualizacji, ponieważ wystąpił błąd 0x80073d02: 9NCBCSZSJRSB-SpotifyAB.SpotifyMusic. Windows Defender: ================ Date: 2022-02-09 12:41:42 Description: Skanowanie produktu Program antywirusowy Microsoft Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania: {CAFFFDEE-E620-4622-9737-9FC72646B1D2} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Szybkie skanowanie Użytkownik: ZARZĄDZANIE NT\SYSTEM Date: 2022-02-09 12:25:22 Description: Produkt Program antywirusowy Microsoft Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz: https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:PowerShell/Obfuse.SM!MTB&threatid=2147795982&enterprise=0 Nazwa: Trojan:PowerShell/Obfuse.SM!MTB Identyfikator: 2147795982 Ważność: Poważny Kategoria: Koń trojański Ścieżka: file:_C:\Users\Mariusz\AppData\Local\Temp\cf7d338d-5a16-4705-946d-908361710c45.tmp Pochodzenie wykrycia: Komputer lokalny Typ wykrycia: Konkretne Źródło wykrycia: Ochrona w czasie rzeczywistym Użytkownik: DESKTOP-NTSVTFK\Mariusz Nazwa procesu: C:\Program Files\Opera\opera.exe Wersja analizy zabezpieczeń: AV: 1.357.335.0, AS: 1.357.335.0, NIS: 1.357.335.0 Wersja aparatu: AM: 1.1.18900.2, NIS: 1.1.18900.2 Date: 2022-02-09 11:25:33 Description: Produkt Program antywirusowy Microsoft Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz: https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:PowerShell/Obfuse.SM!MTB&threatid=2147795982&enterprise=0 Nazwa: Trojan:PowerShell/Obfuse.SM!MTB Identyfikator: 2147795982 Ważność: Poważny Kategoria: Koń trojański Ścieżka: file:_C:\Users\Mariusz\AppData\Local\Temp\28bc005a-5434-4eb6-9f0d-f789deab6881.tmp Pochodzenie wykrycia: Komputer lokalny Typ wykrycia: Konkretne Źródło wykrycia: Ochrona w czasie rzeczywistym Użytkownik: DESKTOP-NTSVTFK\Mariusz Nazwa procesu: C:\Program Files\Opera\opera.exe Wersja analizy zabezpieczeń: AV: 1.357.335.0, AS: 1.357.335.0, NIS: 1.357.335.0 Wersja aparatu: AM: 1.1.18900.2, NIS: 1.1.18900.2 Date: 2022-02-09 11:25:21 Description: Produkt Program antywirusowy Microsoft Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz: https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:PowerShell/Obfuse.SM!MTB&threatid=2147795982&enterprise=0 Nazwa: Trojan:PowerShell/Obfuse.SM!MTB Identyfikator: 2147795982 Ważność: Poważny Kategoria: Koń trojański Ścieżka: file:_C:\Users\Mariusz\AppData\Local\Temp\28bc005a-5434-4eb6-9f0d-f789deab6881.tmp Pochodzenie wykrycia: Komputer lokalny Typ wykrycia: Konkretne Źródło wykrycia: Ochrona w czasie rzeczywistym Użytkownik: DESKTOP-NTSVTFK\Mariusz Nazwa procesu: C:\Program Files\Opera\opera.exe Wersja analizy zabezpieczeń: AV: 1.357.335.0, AS: 1.357.335.0, NIS: 1.357.335.0 Wersja aparatu: AM: 1.1.18900.2, NIS: 1.1.18900.2 Date: 2022-02-09 11:25:11 Description: Produkt Program antywirusowy Microsoft Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz: https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:PowerShell/Obfuse.SM!MTB&threatid=2147795982&enterprise=0 Nazwa: Trojan:PowerShell/Obfuse.SM!MTB Identyfikator: 2147795982 Ważność: Poważny Kategoria: Koń trojański Ścieżka: file:_C:\Users\Mariusz\AppData\Local\Temp\44efb5bc-1dea-4f99-a808-c0832a2141e6.tmp Pochodzenie wykrycia: Komputer lokalny Typ wykrycia: Konkretne Źródło wykrycia: Ochrona w czasie rzeczywistym Użytkownik: DESKTOP-NTSVTFK\Mariusz Nazwa procesu: C:\Program Files\Opera\opera.exe Wersja analizy zabezpieczeń: AV: 1.357.335.0, AS: 1.357.335.0, NIS: 1.357.335.0 Wersja aparatu: AM: 1.1.18900.2, NIS: 1.1.18900.2  CodeIntegrity: =============== Date: 2021-12-18 22:09:33 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system. ==================== Statystyki pamięci =========================== BIOS: American Megatrends Inc. A.C0 01/06/2020 Płyta główna: Micro-Star International Co., Ltd. B450M MORTAR TITANIUM (MS-7B89) Procesor: AMD Ryzen 5 2600 Six-Core Processor Procent pamięci w użyciu: 39% Całkowita pamięć fizyczna: 32720.35 MB Dostępna pamięć fizyczna: 19748.91 MB Całkowita pamięć wirtualna: 56720.35 MB Dostępna pamięć wirtualna: 40186.99 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:931.3 GB) (Free:407.1 GB) NTFS Drive d: (ADATA SX600 PRO) (Fixed) (Total:476.93 GB) (Free:368.95 GB) NTFS Drive e: (android) (Removable) (Total:57.98 GB) (Free:48.04 GB) exFAT Drive y: (HDD 1) (Fixed) (Total:341.79 GB) (Free:201.78 GB) NTFS Drive z: (HDD 2) (Fixed) (Total:356.84 GB) (Free:128.86 GB) NTFS \\?\Volume{759103cf-9618-42c3-b11a-5f7e5fdd1cb3}\ () (Fixed) (Total:0.19 GB) (Free:0.17 GB) FAT32 ==================== MBR & Tablica partycji ==================== ========================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 698.6 GB) (Disk ID: 0490F921) Partition: GPT. ========================================================== Disk: 1 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 2 (Protective MBR) (Size: 476.9 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 3 (Size: 58 GB) (Disk ID: 00001000) Partition 1: (Not Active) - (Size=58 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt =======================