Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 29-12-2022 Uruchomiony przez Bolo (05-01-2023 19:09:51) Uruchomiony z C:\Users\Bolo\Downloads Microsoft Windows 10 Pro Wersja 21H2 19044.2364 (X64) (2022-01-20 20:10:37) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= (Załączenie wejścia w fixlist spowoduje jego usunięcie.) Administrator (S-1-5-21-2172412559-1957594031-3291844680-500 - Administrator - Disabled) Bolo (S-1-5-21-2172412559-1957594031-3291844680-1001 - Administrator - Enabled) => C:\Users\Bolo Gość (S-1-5-21-2172412559-1957594031-3291844680-501 - Limited - Disabled) Konto domyślne (S-1-5-21-2172412559-1957594031-3291844680-503 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-2172412559-1957594031-3291844680-504 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) 7-Zip 22.01 (x64) (HKLM\...\7-Zip) (Version: 22.01 - Igor Pavlov) 888S 1.05 (HKLM-x32\...\888S) (Version: - ) ANT Drivers Installer x64 (HKLM\...\{1F9E60B3-0EFB-435C-8F59-2ADB67BC0249}) (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden APP Center (HKLM-x32\...\{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 3.22.1031.1 - Gigabyte) Hidden APP Center (HKLM-x32\...\InstallShield_{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 3.22.1031.1 - Gigabyte) ASUS AURA Extension Card HAL (HKLM\...\{237E1CAC-1708-4940-AC34-DF15C079AB70}) (Version: 1.1.0.18 - ASUSTeK COMPUTER INC.) Hidden ASUS AURA Extension Card HAL (HKLM-x32\...\{4e2b05b0-eb08-41e5-9eb3-cdcc43d6bee0}) (Version: 1.1.0.18 - ASUSTeK COMPUTER INC.) Hidden ASUS Aura SDK (HKLM\...\{CF8E6E00-9C03-4440-81C0-21FACB921A6B}) (Version: 3.04.17 - ASUSTek COMPUTER INC.) Hidden ASUS AURA VGA Component (HKLM\...\{71BB96A6-EAC4-45AE-A17D-D3ED43FF1D14}) (Version: 0.0.4.3 - ASUSTek COMPUTER INC. ) Hidden ASUS AURA VGA Component (HKLM-x32\...\{7a0d5159-cb5e-4f66-91f8-bab46f864f14}) (Version: 0.0.4.3 - ASUSTek COMPUTER INC. ) Hidden ASUS Framework Service (HKLM-x32\...\{339A6383-7862-46DA-8A9D-E84180EF9424}) (Version: 3.1.1.0 - ASUSTeK Computer Inc.) ASUS Mouse HAL (HKLM\...\{B8F984F2-7887-4DD2-8D96-F9A4BC5A4AC5}) (Version: 1.2.0.47 - ASUSTek COMPUTER INC.) Hidden ASUS Mouse HAL (HKLM-x32\...\{70511575-23b5-4032-8113-7376339793b4}) (Version: 1.2.0.47 - ASUSTek COMPUTER INC.) Hidden ASUS Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.107.93 - ASUSTeK Computer Inc.) Hidden AURA DRAM Component (HKLM\...\{6FB66775-BB93-4D0A-9871-4CC9B2E87BF3}) (Version: 1.1.23 - ASUS) Hidden AURA DRAM Component (HKLM-x32\...\{179f415f-2ff3-4db1-bcc1-d5730f746db8}) (Version: 1.1.23 - ASUS) Hidden AURA lighting effect add-on (HKLM-x32\...\{1E2EA04B-FCA7-457E-B6F4-F33E1858E859}) (Version: 0.0.24 - ASUS) AURA lighting effect add-on x64 (HKLM\...\{C5A4A164-4428-4931-B728-96EEF0FA3C44}) (Version: 0.0.24 - ASUS) AURA Service (HKLM-x32\...\{0E536061-3B55-4D45-BF58-0BDA261C94B0}) (Version: 3.05.66 - ASUSTeK Computer Inc.) Hidden AURA Service (HKLM-x32\...\{d4425362-eb40-415b-bb0d-5933fa345e9c}) (Version: 3.05.66 - ASUSTeK Computer Inc.) Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts) Battlestate Games Launcher 12.12.3.1964 (HKLM-x32\...\{B0FDA062-7581-4D67-B085-C4E7C358037F}_is1) (Version: 12.12.3.1964 - Battlestate Games) CL-Eye Driver (HKLM-x32\...\CL-Eye Driver) (Version: 5.3.0.0341 - Code Laboratories, Inc.) CodeMeter Runtime Kit v7.30a (HKLM\...\{9B600D30-C133-4D53-BDE1-CBDC9783E657}) (Version: 7.30.4820.501 - WIBU-SYSTEMS AG) DCS World (HKLM\...\DCS World_is1) (Version: 2 - Eagle Dynamics) Discord (HKU\S-1-5-21-2172412559-1957594031-3291844680-1001\...\Discord) (Version: 1.0.9003 - Discord Inc.) Dynamic Application Loader Host Interface Service (HKLM\...\{439E5170-CFC8-4944-8119-746ECF219399}) (Version: 1.0.0.0 - Intel Corporation) Hidden Elevated Installer (HKLM-x32\...\{2DB9B571-1A7F-49A9-9A87-EEADE3954D4A}) (Version: 7.15.0.0 - Garmin Ltd or its subsidiaries) Hidden ENE RGB HAL (HKLM\...\{E050E98C-5524-4AFB-9E53-97700BEF2C02}) (Version: 1.1.40.3 - Ene Tech.) Hidden ENE RGB HAL (HKLM-x32\...\{7f329536-2468-4b20-88dc-5e2defcd5ff3}) (Version: 1.1.40.3 - Ene Tech.) Hidden ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.0.9.12 - ENE TECHNOLOGY INC.) Hidden ENE_EHD_M2_HAL (HKLM-x32\...\{97f3a665-a91b-4def-91e2-97fec9f22bfa}) (Version: 1.0.9.12 - ENE TECHNOLOGY INC.) Hidden Escape from Tarkov (HKLM-x32\...\EscapeFromTarkov) (Version: 0.13.0.1.21531 - Battlestate Games) Excel (HKU\S-1-5-21-2172412559-1957594031-3291844680-1001\...\1fc5b090eab9aa41f8a2f5987367e6da) (Version: 1.0 - Excel) GameSDK Service (HKLM-x32\...\{021d69c3-d686-4a94-8fb5-fd1ee782fb14}) (Version: 1.0.5.0 - ASUSTek COMPUTER INC.) GameSDK Service (HKLM-x32\...\{7160DA8D-3F25-4F6E-ABC8-F693551D82FA}) (Version: 1.0.5.0 - ASUSTek COMPUTER INC.) Hidden Garmin Express (HKLM-x32\...\{035D16EC-4DC1-460E-802E-016E516765C6}) (Version: 7.15.0.0 - Garmin Ltd or its subsidiaries) Hidden Garmin Express (HKLM-x32\...\{6196eeca-c53c-46bd-b5f0-f50cca0fb9d8}) (Version: 7.15.0.0 - Garmin Ltd or its subsidiaries) HOTAS WARTHOG drivers (HKLM-x32\...\{C33F3C7C-F964-4919-97D3-0C4F2A538D87}) (Version: 1.TMHW.2018 - Thrustmaster) Intel(R) Chipset Device Software (HKLM\...\{89D00C61-DC40-4846-B938-E2E6158EDAAA}) (Version: 10.1.18836.8283 - Intel Corporation) Hidden Intel(R) Chipset Device Software (HKLM-x32\...\{9b79ab4c-1596-44ee-84e2-a2001f7af089}) (Version: 10.1.18836.8283 - Intel(R) Corporation) Intel(R) HID Event Filter (HKLM-x32\...\3FB06EEC-013D-4366-9918-71B97DFB84EB) (Version: 2.2.1.386 - Intel Corporation) Intel(R) LMS (HKLM\...\{DFFC9992-3A41-4155-A834-9831C6E58D98}) (Version: 1.0.0.0 - Intel Corporation) Hidden Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2130.16.0.2387 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{FA6E1882-F6C1-47E1-A6CB-FC1F5460E311}) (Version: 1.0.0.0 - Intel Corporation) Hidden Intel(R) Management Engine Driver (HKLM\...\{38F0D70E-8F07-4BF9-A5E0-6946C3D614D8}) (Version: 1.0.0.0 - Intel Corporation) Hidden Intel(R) Serial IO (HKLM\...\{8EC4CB19-850D-4BD4-B914-F63DF7DAD67D}) (Version: 30.100.2131.26 - Intel Corporation) Hidden Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.2131.26 - Intel Corporation) Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000040-0220-1045-84C8-B8D95FA3C8C3}) (Version: 22.40.0.2 - Intel Corporation) itch (HKU\S-1-5-21-2172412559-1957594031-3291844680-1001\...\itch) (Version: 25.5.1 - itch corp.) Kingston AURA DRAM Component (HKLM\...\{965CDF5F-901C-476F-B3A8-7396701B1129}) (Version: 1.1.12 - KINGSTON COMPONENTS INC.) Hidden Kingston AURA DRAM Component (HKLM-x32\...\{2237a879-7fa4-4e21-ae3b-00f6a649b9d9}) (Version: 1.1.12 - KINGSTON COMPONENTS INC.) Hidden Microsoft .NET Host - 5.0.14 (x64) (HKLM\...\{61A6E3A7-F406-418A-B2A6-0606DB55B325}) (Version: 40.56.30907 - Microsoft Corporation) Hidden Microsoft .NET Host FX Resolver - 5.0.14 (x64) (HKLM\...\{8D88F0E2-CE9B-4A6D-8309-FDC562195F5B}) (Version: 40.56.30907 - Microsoft Corporation) Hidden Microsoft .NET Runtime - 5.0.14 (x64) (HKLM\...\{B810ACDF-1C0C-4108-9B92-12F1674FA444}) (Version: 40.56.30907 - Microsoft Corporation) Hidden Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 108.0.1462.54 - Microsoft Corporation) Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 22.248.1127.0001 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{7B1FCD52-8F6B-4F12-A143-361EA39F5E7C}) (Version: 3.67.0.0 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.32.31332 (HKLM-x32\...\{3746f21b-c990-4045-bb33-1cf98cff7a68}) (Version: 14.32.31332.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.30.30704 (HKLM-x32\...\{4d8dcf8c-a72a-43e1-9833-c12724db736e}) (Version: 14.30.30704.0 - Microsoft Corporation) Microsoft Visual C++ 2022 X64 Additional Runtime - 14.32.31332 (HKLM\...\{F4499EE3-A166-496C-81BB-51D1BCDC70A9}) (Version: 14.32.31332 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.32.31332 (HKLM\...\{3407B900-37F5-4CC2-B612-5CD5D580A163}) (Version: 14.32.31332 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X86 Additional Runtime - 14.30.30704 (HKLM-x32\...\{BF08E976-B92E-4336-B56F-2171179476C4}) (Version: 14.30.30704 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.30.30704 (HKLM-x32\...\{F6080405-9FA8-4CAA-9982-14E95D1A3DAC}) (Version: 14.30.30704 - Microsoft Corporation) Hidden Microsoft Windows Desktop Runtime - 5.0.14 (x64) (HKLM\...\{4CD6FFC6-FA14-4016-A7A6-B7E3D6286331}) (Version: 40.56.30911 - Microsoft Corporation) Hidden Microsoft Windows Desktop Runtime - 5.0.14 (x64) (HKLM-x32\...\{d21a4f20-968a-4b0c-bf04-a38da5f06e41}) (Version: 5.0.14.30911 - Microsoft Corporation) Mozilla Firefox (x64 pl) (HKLM\...\Mozilla Firefox 108.0.1 (x64 pl)) (Version: 108.0.1 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 96.0.2 - Mozilla) NahimicAPI 64-bit (HKLM\...\{AEC7880F-673E-458E-B3E0-A64BA9CE88D3}) (Version: 1.0.15.0 - Nahimic) NVIDIA FrameView SDK 1.3.8107.31782123 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8107.31782123 - NVIDIA Corporation) NVIDIA GeForce Experience 3.26.0.154 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.26.0.154 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.39.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.39.16 - NVIDIA Corporation) NVIDIA Sterownik graficzny 527.56 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 527.56 - NVIDIA Corporation) opentrack version opentrack-2022.1.0 (HKLM-x32\...\{63F53541-A29E-4B53-825A-9B6F876A2BD6}_is1) (Version: opentrack-2022.1.0 - opentrack) Origin (HKLM-x32\...\Origin) (Version: 10.5.116.52126 - Electronic Arts, Inc.) Outlook (HKU\S-1-5-21-2172412559-1957594031-3291844680-1001\...\6b0f23e57a39ebfbf2814acb1a24293d) (Version: 1.0 - Outlook) Pakiet sterowników systemu Windows - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.) Pakiet sterowników systemu Windows - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software) Patriot Viper DRAM RGB (HKLM\...\{1F9C282E-CCB4-4D8E-A5CB-7B74DFCD8C95}) (Version: 1.0.9.4 - Patriot Memory) Hidden Patriot Viper DRAM RGB (HKLM-x32\...\{7a768c14-2a28-456f-872a-73d67d88f3ce}) (Version: 1.0.9.4 - Patriot Memory) Hidden Patriot Viper M2 SSD RGB (HKLM\...\{8B4C0A3D-C135-4E1F-98D8-3926494B4D61}) (Version: 1.1.0.2 - Patriot Memory) Hidden Patriot Viper M2 SSD RGB (HKLM-x32\...\{959e5696-0edd-4896-b1d8-54aaa725f770}) (Version: 1.1.0.2 - Patriot Memory) Hidden PHISON HAL (HKLM\...\{966E33F0-6786-4B38-AA29-C1B3F6C1955D}) (Version: 1.0.9.0 - PHISON Electronics Corp.) Hidden PHISON HAL (HKLM-x32\...\{549da357-1b81-456b-83f2-dcc47c41dfff}) (Version: 1.0.9.0 - PHISON Electronics Corp.) Hidden PowerPoint (HKU\S-1-5-21-2172412559-1957594031-3291844680-1001\...\319814cb56b667dff88f54e08be8f51f) (Version: 1.0 - PowerPoint) PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.) qBittorrent 4.4.3.1 (HKLM-x32\...\qBittorrent) (Version: 4.4.3.1 - The qBittorrent project) Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9235.1 - Realtek Semiconductor Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.50.511.2021 - Realtek) Roblox Player for Bolo (HKU\S-1-5-21-2172412559-1957594031-3291844680-1001\...\roblox-player) (Version: - Roblox Corporation) ROG Armoury (HKLM-x32\...\{FE703E21-A9E0-4DB3-9115-404175C8222F}) (Version: 3.00.44 - ASUSTeK Computer Inc.) ROG Live Service (HKLM-x32\...\{2D87BFB6-C184-4A59-9BBE-3E20CE797631}) (Version: 1.5.11.0 - ASUSTek COMPUTER INC.) Sprawdzanie kondycji komputera z systemem Windows (HKLM\...\{41E85393-7ED3-4C54-AC25-51F8CDF39CDF}) (Version: 3.6.2204.08001 - Microsoft Corporation) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Steel Beasts Legacy Map Installer (wersja 1.0.0.0) (HKLM\...\{13D1F94F-03A1-4C8F-8CA2-D08476AA8497}}_is1) (Version: 1.0.0.0 - eSim Games, LLC) Steel Beasts Map Transfer Tools (wersja 48.0) (HKLM\...\{020FCC04-A592-4137-93B1-A29E70149EA4}_is1) (Version: 48.0 - eSim Games, LLC) Steel Beasts Maps (wersja 1.0) (HKLM\...\{5D2B1568-2C3D-4427-B034-0FB9C5B1179F}_is1) (Version: 1.0 - eSim Games, LLC) Steel Beasts Pro PE (wersja 4.268) (HKLM\...\SB Pro PE_is1) (Version: 4.268 - eSim Games, LLC) Środowisko uruchomieniowe Microsoft Edge WebView2 (HKLM-x32\...\Microsoft EdgeWebView) (Version: 108.0.1462.54 - Microsoft Corporation) Thrustmaster TARGET (HKLM-x32\...\{8036A569-CA02-4D33-A7E9-E9BC8A482E91}) (Version: 3.0.20.826 - Thrustmaster) TUF GAMING M3 (HKLM-x32\...\{89cc6449-58a5-4aae-b59f-f96ffd1ec35f}) (Version: 3.00.18 - ASUSTek Computer Inc.) Universal Holtek RGB DRAM (HKLM\...\{826388E4-E31F-4514-948B-3BB954FB3EAF}) (Version: 1.0.0.3 - PD) Hidden Universal Holtek RGB DRAM (HKLM-x32\...\{ee57d541-1c3b-44fb-b847-e1b47aae9df4}) (Version: 1.0.0.3 - PD) Hidden Venice Unleashed version 1.0 (HKU\S-1-5-21-2172412559-1957594031-3291844680-1001\...\VeniceUnleashed_is1) (Version: 1.0 - ) WD_BLACK AN1500 (HKLM\...\{085E2365-0A70-4230-B664-02D5E4FE7E9C}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden WD_BLACK AN1500 (HKLM-x32\...\{e42c5874-37b0-4977-9e8d-70bf006e1f76}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden WinRAR 6.02 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 6.02.0 - win.rar GmbH) Word (HKU\S-1-5-21-2172412559-1957594031-3291844680-1001\...\1b837d0bf93d01407352736c91b7bf50) (Version: 1.0 - Word) Packages: ========= Centrum sterowania grafiką Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.4232.0_x64__8j3eq9eme6ctt [2022-12-18] (INTEL CORP) [Startup Task] NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.963.0_x64__56jybvy8sckqj [2022-12-16] (NVIDIA Corp.) Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.28.255.0_x64__dt26b99r8h8gj [2022-01-20] (Realtek Semiconductor Corp) Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.15.12020.0_x64__8wekyb3d8bbwe [2022-12-09] (Microsoft Studios) [MS Ad] ==================== Niestandardowe rejestracje CLSID (filtrowane): ============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\22.248.1127.0001\FileSyncShell64.dll [2023-01-05] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\22.248.1127.0001\FileSyncShell64.dll [2023-01-05] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\22.248.1127.0001\FileSyncShell64.dll [2023-01-05] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\22.248.1127.0001\FileSyncShell64.dll [2023-01-05] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\22.248.1127.0001\FileSyncShell64.dll [2023-01-05] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\22.248.1127.0001\FileSyncShell64.dll [2023-01-05] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\22.248.1127.0001\FileSyncShell64.dll [2023-01-05] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\22.248.1127.0001\FileSyncShell64.dll [2023-01-05] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\22.248.1127.0001\FileSyncShell64.dll [2023-01-05] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\22.248.1127.0001\FileSyncShell64.dll [2023-01-05] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\22.248.1127.0001\FileSyncShell64.dll [2023-01-05] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\22.248.1127.0001\FileSyncShell64.dll [2023-01-05] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\22.248.1127.0001\FileSyncShell64.dll [2023-01-05] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\22.248.1127.0001\FileSyncShell64.dll [2023-01-05] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.248.1127.0001\FileSyncShell64.dll [2023-01-05] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [Brak podpisu cyfrowego] ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Programy\WinRAR\rarext.dll [2021-06-15] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Programy\WinRAR\rarext32.dll [2021-06-15] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.248.1127.0001\FileSyncShell64.dll [2023-01-05] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [Brak podpisu cyfrowego] ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.248.1127.0001\FileSyncShell64.dll [2023-01-05] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_f52c4b8723f8dd33\nvshext.dll [2022-12-06] (Nvidia Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [Brak podpisu cyfrowego] ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Programy\WinRAR\rarext.dll [2021-06-15] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Programy\WinRAR\rarext32.dll [2021-06-15] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (filtrowane) ==================== ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ShortcutWithArgument: C:\Users\Bolo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Excel.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=leffmjdabcgaflkikcefahmlgpodjkdm ShortcutWithArgument: C:\Users\Bolo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outlook.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=bjhmmnoficofgoiacjaajpkfndojknpb ShortcutWithArgument: C:\Users\Bolo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=opfacbhaojodjaojgocnibmklknchehf ShortcutWithArgument: C:\Users\Bolo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Word.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=hikhggiobiflkdfdgdajcfklmcibbopi ==================== Załadowane moduły (filtrowane) ============= 2020-11-27 03:38 - 2020-11-27 03:38 - 000961536 _____ () [Brak podpisu cyfrowego] [Plik w użyciu] C:\Programy\Garmin\Express\CefSharp.BrowserSubprocess.Core.dll 2020-11-27 03:38 - 2020-11-27 03:38 - 001446400 _____ () [Brak podpisu cyfrowego] [Plik w użyciu] C:\Programy\Garmin\Express\CefSharp.Core.dll 2022-10-27 14:35 - 2022-10-27 14:35 - 000073216 _____ () [Brak podpisu cyfrowego] [Plik w użyciu] C:\Programy\Garmin\Express\FixBootSector.dll 2017-05-08 09:35 - 2017-05-08 09:35 - 000325632 _____ () [Brak podpisu cyfrowego] [Plik w użyciu] C:\Programy\Garmin\Express\GpsImgWrapper.dll 2022-09-22 15:17 - 2022-09-01 08:47 - 000522240 _____ () [Brak podpisu cyfrowego] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\ac_node_addon\prebuilds\win32-ia32\node.napi.node 2022-09-22 15:17 - 2022-09-01 08:47 - 000520192 _____ () [Brak podpisu cyfrowego] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\ffi-napi\prebuilds\win32-ia32\node.napi.node 2022-09-22 15:17 - 2022-09-01 08:47 - 000483328 _____ () [Brak podpisu cyfrowego] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\node-system-fonts\build\Release\system-fonts.node 2022-09-22 15:17 - 2022-09-01 08:47 - 000510464 _____ () [Brak podpisu cyfrowego] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\ref-napi\prebuilds\win32-ia32\node.napi.node 2022-09-22 15:17 - 2022-09-01 08:47 - 000786432 _____ () [Brak podpisu cyfrowego] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\usb-detection\prebuilds\win32-ia32\node.napi.node 2022-07-03 21:15 - 2022-11-10 07:19 - 134859776 _____ () [Brak podpisu cyfrowego] C:\Gry\Steam\bin\cef\cef.win7x64\libcef.dll 2022-07-03 21:15 - 2022-11-07 11:17 - 000387072 _____ () [Brak podpisu cyfrowego] C:\Gry\Steam\bin\cef\cef.win7x64\libegl.dll 2022-07-03 21:15 - 2022-11-07 11:17 - 008052736 _____ () [Brak podpisu cyfrowego] C:\Gry\Steam\bin\cef\cef.win7x64\libglesv2.dll 2022-09-22 15:17 - 2022-06-08 09:33 - 000081920 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\WindowID\WindowID.dll 2022-10-02 15:54 - 2019-05-02 14:48 - 002183680 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\ROG Armoury\Live Update\EzULIB_UFB.dll 2022-10-02 15:54 - 2019-05-02 14:48 - 000094208 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\ROG Armoury\Macro\MacroControl.dll 2022-10-25 18:25 - 2022-10-25 18:25 - 001868800 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\Gigabyte\AppCenter\BDR_info.dll 2020-11-18 09:14 - 2020-11-18 09:14 - 117340672 _____ () [Brak podpisu cyfrowego] C:\Programy\Garmin\Express\libcef.dll 2020-11-18 07:40 - 2020-11-18 07:40 - 000323072 _____ () [Brak podpisu cyfrowego] C:\Programy\Garmin\Express\libegl.dll 2020-11-18 07:40 - 2020-11-18 07:40 - 005441536 _____ () [Brak podpisu cyfrowego] C:\Programy\Garmin\Express\libglesv2.dll 2022-10-27 14:35 - 2022-10-27 14:35 - 001976832 _____ (Apache Software Foundation) [Brak podpisu cyfrowego] C:\Programy\Garmin\Express\XercesLib.dll 2022-10-02 15:54 - 2019-05-02 14:48 - 000221184 _____ (ASUSTeK Computer Inc.) [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\ROG Armoury\Live Update\AsMultiLang.dll 2022-10-27 14:42 - 2022-10-27 14:42 - 000234496 _____ (Dynastream Innovations Inc.) [Brak podpisu cyfrowego] C:\Programy\Garmin\Express\ANT_WrappedLib.dll 2022-01-20 14:30 - 2022-01-20 14:30 - 000248320 _____ (Fortemedia) [Brak podpisu cyfrowego] C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.28.255.0_x64__dt26b99r8h8gj\FMAPOCTL.dll 2022-10-27 14:35 - 2022-10-27 14:35 - 002711552 _____ (Garmin International) [Brak podpisu cyfrowego] [Plik w użyciu] C:\Programy\Garmin\Express\legacyio.dll 2017-05-08 09:35 - 2017-05-08 09:35 - 000343552 _____ (Garmin International, Inc.) [Brak podpisu cyfrowego] C:\Programy\Garmin\Express\IMG_GPSMAP.dll 2022-10-27 14:35 - 2022-10-27 14:35 - 000425472 _____ (Garmin) [Brak podpisu cyfrowego] C:\Programy\Garmin\Express\XMLdll.dll 2022-08-24 11:45 - 2022-08-24 11:45 - 000242176 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Gigabyte\AppCenter\yccV3.dll 2022-01-23 15:42 - 2020-04-01 14:46 - 000037376 _____ (Guillemot Corporation) [Brak podpisu cyfrowego] C:\Program Files (x86)\Thrustmaster\TARGET\cint.dll 2022-01-23 15:42 - 2016-04-14 12:46 - 001036800 _____ (Guillemot Corporation) [Brak podpisu cyfrowego] C:\Program Files (x86)\Thrustmaster\TARGET\TmCommon.dll 2022-01-23 15:42 - 2018-02-15 15:23 - 000190976 _____ (Guillemot Corporation) [Brak podpisu cyfrowego] C:\Program Files (x86)\Thrustmaster\TARGET\TmHidControl.dll 2022-10-29 21:19 - 2022-07-15 15:00 - 000094720 _____ (Igor Pavlov) [Brak podpisu cyfrowego] C:\Program Files\7-Zip\7-zip.dll 2022-10-27 14:39 - 2022-10-27 14:39 - 000090112 _____ (Silicon Laboratories, Inc.) [Brak podpisu cyfrowego] C:\Programy\Garmin\Express\DSI_SiUSBXp_3_1.DLL 2022-01-20 14:30 - 2022-01-20 14:30 - 000023040 _____ (Synaptics Incorporated.) [Brak podpisu cyfrowego] C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.28.255.0_x64__dt26b99r8h8gj\SynAudSrvDll.dll 2022-07-03 21:15 - 2022-11-07 11:17 - 000992256 _____ (The Chromium Authors) [Brak podpisu cyfrowego] C:\Gry\Steam\bin\cef\cef.win7x64\chrome_elf.dll 2020-11-18 07:39 - 2020-11-18 07:39 - 000843264 _____ (The Chromium Authors) [Brak podpisu cyfrowego] C:\Programy\Garmin\Express\chrome_elf.dll 2022-07-24 16:54 - 2022-08-12 20:10 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Brak podpisu cyfrowego] C:\Gry\Origin\LIBEAY32.dll 2022-07-24 16:54 - 2022-08-12 20:10 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Brak podpisu cyfrowego] C:\Gry\Origin\ssleay32.dll 2022-05-30 17:06 - 2021-05-18 18:18 - 003439104 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Brak podpisu cyfrowego] C:\Program Files\eSim Games\Steel Beasts Map Transfer Tools\Service\libcrypto-1_1-x64.dll 2022-05-30 17:06 - 2021-05-18 18:18 - 000682496 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Brak podpisu cyfrowego] C:\Program Files\eSim Games\Steel Beasts Map Transfer Tools\Service\libssl-1_1-x64.dll 2022-07-24 16:54 - 2022-08-12 20:10 - 001611264 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Gry\Origin\platforms\qwindows.dll 2022-11-20 13:44 - 2022-08-12 20:10 - 005487104 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Gry\Origin\Qt5Core.dll 2022-11-20 13:44 - 2022-08-12 20:10 - 005841920 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Gry\Origin\Qt5Gui.dll 2022-11-20 13:44 - 2022-08-12 20:10 - 001179136 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Gry\Origin\Qt5Network.dll 2022-11-20 13:44 - 2022-08-12 20:10 - 000146432 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Gry\Origin\Qt5WebSockets.dll 2022-11-20 13:44 - 2022-08-12 20:10 - 005089792 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Gry\Origin\Qt5Widgets.dll 2022-11-20 13:44 - 2022-08-12 20:10 - 000184832 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Gry\Origin\Qt5Xml.dll 2022-10-02 15:54 - 2019-05-02 14:48 - 000072704 _____ (TODO: ) [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\ROG Armoury\Protocol\Interrupt\InterruptTransfer.dll 2015-10-14 01:15 - 2015-10-14 01:15 - 002042368 _____ (TODO: ) [Brak podpisu cyfrowego] C:\Program Files (x86)\Gigabyte\AppCenter\osvi.dll 2022-10-02 15:54 - 2020-02-10 09:27 - 000129024 _____ (TODO: <公司名稱>) [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\ROG Armoury\InstallShield\FilterDriver\AsFilterDriver.dll ==================== Alternate Data Streams (filtrowane) ======== ==================== Tryb awaryjny (filtrowane) ================== ==================== Powiązania plików (filtrowane) ================= ==================== Internet Explorer (filtrowane) ========== ==================== Hosts - zawartość: ========================= (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2019-12-07 10:14 - 2023-01-05 17:33 - 000003755 _____ C:\Windows\system32\drivers\etc\hosts 0.0.0.0 avast.com 0.0.0.0 www.avast.com 0.0.0.0 totalav.com 0.0.0.0 www.totalav.com 0.0.0.0 scanguard.com 0.0.0.0 www.scanguard.com 0.0.0.0 totaladblock.com 0.0.0.0 www.totaladblock.com 0.0.0.0 pcprotect.com 0.0.0.0 www.pcprotect.com 0.0.0.0 mcafee.com 0.0.0.0 www.mcafee.com 0.0.0.0 bitdefender.com 0.0.0.0 www.bitdefender.com 0.0.0.0 us.norton.com 0.0.0.0 www.us.norton.com 0.0.0.0 avg.com 0.0.0.0 www.avg.com 0.0.0.0 malwarebytes.com 0.0.0.0 www.malwarebytes.com 0.0.0.0 pandasecurity.com 0.0.0.0 www.pandasecurity.com 0.0.0.0 surfshark.com 0.0.0.0 www.surfshark.com 0.0.0.0 avira.com 0.0.0.0 www.avira.com 0.0.0.0 norton.com 0.0.0.0 www.norton.com 0.0.0.0 eset.com 0.0.0.0 www.eset.com ==================== Inne obszary =========================== (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-2172412559-1957594031-3291844680-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg DNS Servers: 192.168.18.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == ==================== Reguły Zapory systemu Windows (filtrowane) ================ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{0008223A-AB59-483E-AC39-6C4DB1FDDB21}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{85A1B001-49E3-41E8-AD2B-B22F9CC5E760}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{EF0B2200-FAF1-4445-9508-453FD6276D81}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{B454ADE5-0106-43AE-8722-911BAA918EEC}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{23BF729D-E26E-4C03-9FDA-1CF66BB1AB36}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{BC3491AD-A04B-4218-9AED-628FB42F6B70}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [TCP Query User{D7A45F07-DC14-43F0-B74D-502673F23145}C:\gry\eagle dynamics\dcs world\bin\dcs.exe] => (Allow) C:\gry\eagle dynamics\dcs world\bin\dcs.exe (Eagle Dynamics SA -> Eagle Dynamics) FirewallRules: [UDP Query User{69D5A7DD-8ED5-4E3B-AE25-175867A10C98}C:\gry\eagle dynamics\dcs world\bin\dcs.exe] => (Allow) C:\gry\eagle dynamics\dcs world\bin\dcs.exe (Eagle Dynamics SA -> Eagle Dynamics) FirewallRules: [{49FF17CD-89A5-4E91-B2B5-ECD1D4C69FB1}] => (Block) C:\gry\eagle dynamics\dcs world\bin\dcs.exe (Eagle Dynamics SA -> Eagle Dynamics) FirewallRules: [{658AD7ED-9561-4F0B-815C-ED0EA5774A57}] => (Block) C:\gry\eagle dynamics\dcs world\bin\dcs.exe (Eagle Dynamics SA -> Eagle Dynamics) FirewallRules: [TCP Query User{4609C2C5-069F-4B65-91D6-EB0BD379CB89}C:\programy\dcs-simpleradio-standalone\sr-clientradio.exe] => (Allow) C:\programy\dcs-simpleradio-standalone\sr-clientradio.exe (Open Source Developer, Ciaran Fisher -> Ciribob - GitHub.com/Ciribob) FirewallRules: [UDP Query User{3CD5A4EC-E7ED-4E01-A653-9BA94FCF1A19}C:\programy\dcs-simpleradio-standalone\sr-clientradio.exe] => (Allow) C:\programy\dcs-simpleradio-standalone\sr-clientradio.exe (Open Source Developer, Ciaran Fisher -> Ciribob - GitHub.com/Ciribob) FirewallRules: [{CF0E45EE-0F2F-425C-8A9C-0D485CFA8C85}] => (Block) C:\programy\dcs-simpleradio-standalone\sr-clientradio.exe (Open Source Developer, Ciaran Fisher -> Ciribob - GitHub.com/Ciribob) FirewallRules: [{256799E4-3939-47A9-AA04-F15C9F1468D3}] => (Block) C:\programy\dcs-simpleradio-standalone\sr-clientradio.exe (Open Source Developer, Ciaran Fisher -> Ciribob - GitHub.com/Ciribob) FirewallRules: [{D346966D-FE2A-4D08-A9EF-F5683033798B}] => (Allow) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) FirewallRules: [{5C4A287F-3DE7-4AD4-A065-79F9A06588D6}] => (Allow) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) FirewallRules: [{05C86B9A-885C-46BD-87E3-3FCF94910A0C}] => (Allow) C:\Program Files\CodeMeter\Runtime\bin\CmWebAdmin.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) FirewallRules: [{E36E9D95-7A7B-4095-BF53-2D30DB8E4FED}] => (Allow) C:\Program Files\CodeMeter\Runtime\bin\CmWebAdmin.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) FirewallRules: [{419FE591-827C-4F38-B989-45E1AE21D8B7}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{026B1CCB-F617-47C7-B367-950D90596460}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{4F977274-3C30-40A2-88DF-6AB8867ACAC1}] => (Allow) C:\Gry\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{7B3186E0-C262-4EDC-9C90-E14BB0483683}] => (Allow) C:\Gry\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{29C83374-FB89-4FCE-9DFA-FC8FA7D07A29}] => (Allow) C:\Gry\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{A1111102-9E73-4078-A7D5-38ABCF446E15}] => (Allow) C:\Gry\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{DB15013A-5E3F-454A-8394-86C0E27AA846}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> ) FirewallRules: [{35EE77D6-465B-40FD-8F8E-23EA6F89C1A8}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> ) FirewallRules: [{983C916C-788C-45D8-972E-E9BBA27761FC}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> ) FirewallRules: [{89B26EB2-5E81-481B-9AB2-79E53DB578E8}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> ) FirewallRules: [{ED22203F-9567-4403-85DB-BAFE575A072C}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe (Electronic Arts -> EA Digital Illusions CE AB) FirewallRules: [{82A13C33-85E5-443E-A5FF-DCDAED621412}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe (Electronic Arts -> EA Digital Illusions CE AB) FirewallRules: [TCP Query User{1AC28CE4-E6D2-4597-9F8B-831A8A41CB3F}C:\users\bolo\appdata\local\veniceunleashed\client\vu.exe] => (Allow) C:\users\bolo\appdata\local\veniceunleashed\client\vu.exe (Orfeas Ioannis Zafeiris -> Venice Unleashed) FirewallRules: [UDP Query User{1D086CD0-043A-4DF3-ACA7-2DB257A35864}C:\users\bolo\appdata\local\veniceunleashed\client\vu.exe] => (Allow) C:\users\bolo\appdata\local\veniceunleashed\client\vu.exe (Orfeas Ioannis Zafeiris -> Venice Unleashed) FirewallRules: [{CDE1F10C-3998-4939-9495-C319F6B917DE}] => (Block) C:\users\bolo\appdata\local\veniceunleashed\client\vu.exe (Orfeas Ioannis Zafeiris -> Venice Unleashed) FirewallRules: [{2E183F38-193F-43B5-BA70-2D46A35DA498}] => (Block) C:\users\bolo\appdata\local\veniceunleashed\client\vu.exe (Orfeas Ioannis Zafeiris -> Venice Unleashed) FirewallRules: [{B00BF8F7-3656-44E7-A47F-140D6015F8B8}] => (Allow) C:\Programy\qBittorrent\qbittorrent.exe (The qBittorrent Project) [Brak podpisu cyfrowego] FirewallRules: [{152278F6-EC47-4AF1-A1AC-DFC79E42E0F4}] => (Allow) C:\Programy\qBittorrent\qbittorrent.exe (The qBittorrent Project) [Brak podpisu cyfrowego] FirewallRules: [{865379BE-A1D4-4EA2-9035-78898F4140D2}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) FirewallRules: [{AD22A2D2-466B-4CCB-8382-5C2ABE6EE8B7}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe (ASUSTeK COMPUTER INC. -> ASUS) FirewallRules: [{A6F7FDAD-3ED6-46BC-9E6B-13F43501F824}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryHtmlDebugServer.exe (ASUSTeK COMPUTER INC. -> ASUS) FirewallRules: [{232B79C8-4F1D-481E-A71A-BB3330624334}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{816BA3CC-2E85-41D6-AE9E-6F2FA1852E88}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{3F920529-DE82-438B-BF5B-D95C05C31019}] => (Allow) C:\Gry\Steam\steamapps\common\IL-2 Sturmovik Battle of Stalingrad\bin\game\Il-2.exe (1C-777 Limited) [Brak podpisu cyfrowego] FirewallRules: [{29B641B2-C82C-458F-B7C4-6615103B6DD3}] => (Allow) C:\Gry\Steam\steamapps\common\IL-2 Sturmovik Battle of Stalingrad\bin\game\Il-2.exe (1C-777 Limited) [Brak podpisu cyfrowego] FirewallRules: [{92F45FA3-6234-4C6F-AE8D-0DCF051CB2ED}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{4870594C-D900-469D-B6B3-CA7D33638636}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{626ECEF5-2971-4B4E-95B4-8CF9231FF9B5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{A463A599-AD28-4FDB-B4E1-36F780AD3870}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{BB515BCA-5357-4D68-872B-30A89568F631}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{3D07DCD0-644D-4F77-AAD8-8315BA17DD0B}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{AAEC1ACF-4EDB-4B45-A029-6A404E7E3AFB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.92.3204.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{7A9DA9BD-5D3E-41ED-A556-61D280F51ED6}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.92.3204.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{DE30118C-AC37-47D8-9145-6B8A5EE6C61D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.92.3204.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{AC7E3343-A572-4FD4-BDAC-82B73C89FD0D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.92.3204.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{3D640C99-BFFD-4FB9-BA90-D6D036C8FC00}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\108.0.1462.54\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{E084DC67-4C83-43BF-955E-5E77776E5C03}] => (Allow) C:\Gry\Battlestate Games\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games) FirewallRules: [{4665B94A-AF75-493E-B83E-1ADDA2940045}] => (Allow) C:\Gry\Battlestate Games\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games) DomainProfile\AuthorizedApplications: [C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe] => Enabled:CodeMeter Runtime Server StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe] => Enabled:CodeMeter Runtime Server ==================== Punkty Przywracania systemu ========================= 04-01-2023 21:00:36 Zaplanowany punkt kontrolny ==================== Wadliwe urządzenia w Menedżerze urządzeń ============ ==================== Błędy w Dzienniku zdarzeń: ======================== Dziennik Aplikacja: ================== Error: (01/02/2023 02:45:18 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: AcPowerNotification.exe, wersja: 1.0.5.14, sygnatura czasowa: 0xfca0c742 Nazwa modułu powodującego błąd: KERNELBASE.dll, wersja: 10.0.19041.2364, sygnatura czasowa: 0x1e5c8604 Kod wyjątku: 0xe0434352 Przesunięcie błędu: 0x0012e292 Identyfikator procesu powodującego błąd: 0x2024 Godzina uruchomienia aplikacji powodującej błąd: 0x01d91e3109051be2 Ścieżka aplikacji powodującej błąd: C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe Ścieżka modułu powodującego błąd: C:\Windows\System32\KERNELBASE.dll Identyfikator raportu: 67aed81c-94ce-49c6-9db3-9e5942eb3f06 Pełna nazwa pakietu powodującego błąd: Identyfikator aplikacji względem pakietu powodującego błąd: Error: (01/02/2023 02:45:18 AM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Aplikacja: AcPowerNotification.exe Wersja architektury: v4.0.30319 Opis: proces został przerwany z powodu nieobsłużonego wyjątku. Informacje o wyjątku: System.ArgumentException w System.Windows.Interop.HwndSource.CriticalFromHwnd(IntPtr) w AcPowerNotification.MainWindow.OnClosed(System.EventArgs) w System.Windows.Window.CloseWindowBeforeShow() w System.Windows.Window.InternalClose(Boolean, Boolean) w System.Windows.Application.DoShutdown() w System.Windows.Application.ShutdownImpl() w System.Windows.Application.ShutdownCallback(System.Object) w System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32) w System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate) w System.Windows.Threading.DispatcherOperation.InvokeImpl() w System.Windows.Threading.DispatcherOperation.InvokeInSecurityContext(System.Object) w MS.Internal.CulturePreservingExecutionContext.CallbackWrapper(System.Object) w System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) w System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) w System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object) w MS.Internal.CulturePreservingExecutionContext.Run(MS.Internal.CulturePreservingExecutionContext, System.Threading.ContextCallback, System.Object) w System.Windows.Threading.DispatcherOperation.Invoke() w System.Windows.Threading.Dispatcher.ProcessQueue() w System.Windows.Threading.Dispatcher.WndProcHook(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef) w MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef) w MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object) w System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32) w System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate) w System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32) w MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr) w MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef) w System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame) w System.Windows.Threading.Dispatcher.PushFrame(System.Windows.Threading.DispatcherFrame) w System.Windows.Application.RunDispatcher(System.Object) w System.Windows.Application.RunInternal(System.Windows.Window) w System.Windows.Application.Run(System.Windows.Window) w AcPowerNotification.App.Main() Error: (01/01/2023 08:28:33 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: AcPowerNotification.exe, wersja: 1.0.5.14, sygnatura czasowa: 0xfca0c742 Nazwa modułu powodującego błąd: KERNELBASE.dll, wersja: 10.0.19041.2364, sygnatura czasowa: 0x1e5c8604 Kod wyjątku: 0xe0434352 Przesunięcie błędu: 0x0012e292 Identyfikator procesu powodującego błąd: 0x364c Godzina uruchomienia aplikacji powodującej błąd: 0x01d91df9a4680a93 Ścieżka aplikacji powodującej błąd: C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe Ścieżka modułu powodującego błąd: C:\Windows\System32\KERNELBASE.dll Identyfikator raportu: 07ed55c7-99d6-4f1e-987b-1aa88a3e7bea Pełna nazwa pakietu powodującego błąd: Identyfikator aplikacji względem pakietu powodującego błąd: Error: (01/01/2023 08:28:33 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Aplikacja: AcPowerNotification.exe Wersja architektury: v4.0.30319 Opis: proces został przerwany z powodu nieobsłużonego wyjątku. Informacje o wyjątku: System.ArgumentException w System.Windows.Interop.HwndSource.CriticalFromHwnd(IntPtr) w AcPowerNotification.MainWindow.OnClosed(System.EventArgs) w System.Windows.Window.CloseWindowBeforeShow() w System.Windows.Window.InternalClose(Boolean, Boolean) w System.Windows.Application.DoShutdown() w System.Windows.Application.ShutdownImpl() w System.Windows.Application.ShutdownCallback(System.Object) w System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32) w System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate) w System.Windows.Threading.DispatcherOperation.InvokeImpl() w System.Windows.Threading.DispatcherOperation.InvokeInSecurityContext(System.Object) w MS.Internal.CulturePreservingExecutionContext.CallbackWrapper(System.Object) w System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) w System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) w System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object) w MS.Internal.CulturePreservingExecutionContext.Run(MS.Internal.CulturePreservingExecutionContext, System.Threading.ContextCallback, System.Object) w System.Windows.Threading.DispatcherOperation.Invoke() w System.Windows.Threading.Dispatcher.ProcessQueue() w System.Windows.Threading.Dispatcher.WndProcHook(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef) w MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef) w MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object) w System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32) w System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate) w System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32) w MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr) w MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef) w System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame) w System.Windows.Threading.Dispatcher.PushFrame(System.Windows.Threading.DispatcherFrame) w System.Windows.Application.RunDispatcher(System.Object) w System.Windows.Application.RunInternal(System.Windows.Window) w System.Windows.Application.Run(System.Windows.Window) w AcPowerNotification.App.Main() Error: (12/31/2022 05:32:45 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: AcPowerNotification.exe, wersja: 1.0.5.14, sygnatura czasowa: 0xfca0c742 Nazwa modułu powodującego błąd: KERNELBASE.dll, wersja: 10.0.19041.2364, sygnatura czasowa: 0x1e5c8604 Kod wyjątku: 0xe0434352 Przesunięcie błędu: 0x0012e292 Identyfikator procesu powodującego błąd: 0x198c Godzina uruchomienia aplikacji powodującej błąd: 0x01d91cf15531bf30 Ścieżka aplikacji powodującej błąd: C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe Ścieżka modułu powodującego błąd: C:\Windows\System32\KERNELBASE.dll Identyfikator raportu: 1b035007-86b6-4f0d-a79f-aaf27128031a Pełna nazwa pakietu powodującego błąd: Identyfikator aplikacji względem pakietu powodującego błąd: Error: (12/31/2022 05:32:45 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Aplikacja: AcPowerNotification.exe Wersja architektury: v4.0.30319 Opis: proces został przerwany z powodu nieobsłużonego wyjątku. Informacje o wyjątku: System.ArgumentException w System.Windows.Interop.HwndSource.CriticalFromHwnd(IntPtr) w AcPowerNotification.MainWindow.OnClosed(System.EventArgs) w System.Windows.Window.CloseWindowBeforeShow() w System.Windows.Window.InternalClose(Boolean, Boolean) w System.Windows.Application.DoShutdown() w System.Windows.Application.ShutdownImpl() w System.Windows.Application.ShutdownCallback(System.Object) w System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32) w System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate) w System.Windows.Threading.DispatcherOperation.InvokeImpl() w System.Windows.Threading.DispatcherOperation.InvokeInSecurityContext(System.Object) w MS.Internal.CulturePreservingExecutionContext.CallbackWrapper(System.Object) w System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) w System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) w System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object) w MS.Internal.CulturePreservingExecutionContext.Run(MS.Internal.CulturePreservingExecutionContext, System.Threading.ContextCallback, System.Object) w System.Windows.Threading.DispatcherOperation.Invoke() w System.Windows.Threading.Dispatcher.ProcessQueue() w System.Windows.Threading.Dispatcher.WndProcHook(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef) w MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef) w MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object) w System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32) w System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate) w System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32) w MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr) w MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef) w System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame) w System.Windows.Threading.Dispatcher.PushFrame(System.Windows.Threading.DispatcherFrame) w System.Windows.Application.RunDispatcher(System.Object) w System.Windows.Application.RunInternal(System.Windows.Window) w System.Windows.Application.Run(System.Windows.Window) w AcPowerNotification.App.Main() Error: (12/30/2022 11:25:58 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: AcPowerNotification.exe, wersja: 1.0.5.14, sygnatura czasowa: 0xfca0c742 Nazwa modułu powodującego błąd: KERNELBASE.dll, wersja: 10.0.19041.2364, sygnatura czasowa: 0x1e5c8604 Kod wyjątku: 0xe0434352 Przesunięcie błędu: 0x0012e292 Identyfikator procesu powodującego błąd: 0x40cc Godzina uruchomienia aplikacji powodującej błąd: 0x01d91c90ac6f2f04 Ścieżka aplikacji powodującej błąd: C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe Ścieżka modułu powodującego błąd: C:\Windows\System32\KERNELBASE.dll Identyfikator raportu: 72c1b593-4764-4935-95a2-4d79dc25dbbe Pełna nazwa pakietu powodującego błąd: Identyfikator aplikacji względem pakietu powodującego błąd: Error: (12/30/2022 11:25:58 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Aplikacja: AcPowerNotification.exe Wersja architektury: v4.0.30319 Opis: proces został przerwany z powodu nieobsłużonego wyjątku. Informacje o wyjątku: System.ArgumentException w System.Windows.Interop.HwndSource.CriticalFromHwnd(IntPtr) w AcPowerNotification.MainWindow.OnClosed(System.EventArgs) w System.Windows.Window.CloseWindowBeforeShow() w System.Windows.Window.InternalClose(Boolean, Boolean) w System.Windows.Application.DoShutdown() w System.Windows.Application.ShutdownImpl() w System.Windows.Application.ShutdownCallback(System.Object) w System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32) w System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate) w System.Windows.Threading.DispatcherOperation.InvokeImpl() w System.Windows.Threading.DispatcherOperation.InvokeInSecurityContext(System.Object) w MS.Internal.CulturePreservingExecutionContext.CallbackWrapper(System.Object) w System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) w System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) w System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object) w MS.Internal.CulturePreservingExecutionContext.Run(MS.Internal.CulturePreservingExecutionContext, System.Threading.ContextCallback, System.Object) w System.Windows.Threading.DispatcherOperation.Invoke() w System.Windows.Threading.Dispatcher.ProcessQueue() w System.Windows.Threading.Dispatcher.WndProcHook(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef) w MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef) w MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object) w System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32) w System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate) w System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32) w MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr) w MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef) w System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame) w System.Windows.Threading.Dispatcher.PushFrame(System.Windows.Threading.DispatcherFrame) w System.Windows.Application.RunDispatcher(System.Object) w System.Windows.Application.RunInternal(System.Windows.Window) w System.Windows.Application.Run(System.Windows.Window) w AcPowerNotification.App.Main() Dziennik System: ============= Error: (01/05/2023 06:35:40 PM) (Source: Microsoft-Windows-FilterManager) (EventID: 3) (User: ZARZĄDZANIE NT) Description: Menedżer filtrów nie może dołączyć do woluminu \Device\HarddiskVolume7. Do czasu ponownego rozruchu ten wolumin nie będzie dostępny do filtrowania. Stan końcowy: 0xc03a001c. Error: (01/05/2023 06:35:40 PM) (Source: Microsoft-Windows-FilterManager) (EventID: 3) (User: ZARZĄDZANIE NT) Description: Menedżer filtrów nie może dołączyć do woluminu \Device\HarddiskVolume7. Do czasu ponownego rozruchu ten wolumin nie będzie dostępny do filtrowania. Stan końcowy: 0xc03a001c. Error: (01/05/2023 06:35:40 PM) (Source: Microsoft-Windows-FilterManager) (EventID: 3) (User: ZARZĄDZANIE NT) Description: Menedżer filtrów nie może dołączyć do woluminu \Device\HarddiskVolume7. Do czasu ponownego rozruchu ten wolumin nie będzie dostępny do filtrowania. Stan końcowy: 0xc03a001c. Error: (01/05/2023 06:35:40 PM) (Source: Microsoft-Windows-FilterManager) (EventID: 3) (User: ZARZĄDZANIE NT) Description: Menedżer filtrów nie może dołączyć do woluminu \Device\HarddiskVolume7. Do czasu ponownego rozruchu ten wolumin nie będzie dostępny do filtrowania. Stan końcowy: 0xc03a001c. Error: (01/05/2023 06:35:39 PM) (Source: Microsoft-Windows-FilterManager) (EventID: 3) (User: ZARZĄDZANIE NT) Description: Menedżer filtrów nie może dołączyć do woluminu \Device\HarddiskVolume6. Do czasu ponownego rozruchu ten wolumin nie będzie dostępny do filtrowania. Stan końcowy: 0xc03a001c. Error: (01/05/2023 06:35:39 PM) (Source: Microsoft-Windows-FilterManager) (EventID: 3) (User: ZARZĄDZANIE NT) Description: Menedżer filtrów nie może dołączyć do woluminu \Device\HarddiskVolume6. Do czasu ponownego rozruchu ten wolumin nie będzie dostępny do filtrowania. Stan końcowy: 0xc03a001c. Error: (01/05/2023 06:35:39 PM) (Source: Microsoft-Windows-FilterManager) (EventID: 3) (User: ZARZĄDZANIE NT) Description: Menedżer filtrów nie może dołączyć do woluminu \Device\HarddiskVolume6. Do czasu ponownego rozruchu ten wolumin nie będzie dostępny do filtrowania. Stan końcowy: 0xc03a001c. Error: (01/05/2023 06:35:39 PM) (Source: Microsoft-Windows-FilterManager) (EventID: 3) (User: ZARZĄDZANIE NT) Description: Menedżer filtrów nie może dołączyć do woluminu \Device\HarddiskVolume6. Do czasu ponownego rozruchu ten wolumin nie będzie dostępny do filtrowania. Stan końcowy: 0xc03a001c. Windows Defender: ================ Date: 2023-01-05 19:09:50 Description: Produkt Program antywirusowy Microsoft Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz: https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Tiggre!rfn&threatid=2147723625&enterprise=0 Nazwa: Trojan:Win32/Tiggre!rfn Identyfikator: 2147723625 Ważność: Poważny Kategoria: Koń trojański Ścieżka: file:_C:\Users\Bolo\LicGet.exe Pochodzenie wykrycia: Komputer lokalny Typ wykrycia: FastPath Źródło wykrycia: Ochrona w czasie rzeczywistym Użytkownik: DESKTOP-N2TTQE3\Bolo Nazwa procesu: C:\Users\Bolo\Downloads\FRST64.exe Wersja analizy zabezpieczeń: AV: 1.381.1771.0, AS: 1.381.1771.0, NIS: 1.381.1771.0 Wersja aparatu: AM: 1.1.19900.2, NIS: 1.1.19900.2 Date: 2023-01-05 19:09:49 Description: Produkt Program antywirusowy Microsoft Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz: https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Wacatac.H!ml&threatid=2147814523&enterprise=0 Nazwa: Trojan:Win32/Wacatac.H!ml Identyfikator: 2147814523 Ważność: Poważny Kategoria: Koń trojański Ścieżka: file:_C:\Users\Bolo\ARCheck.exe Pochodzenie wykrycia: Komputer lokalny Typ wykrycia: FastPath Źródło wykrycia: Ochrona w czasie rzeczywistym Użytkownik: DESKTOP-N2TTQE3\Bolo Nazwa procesu: C:\Users\Bolo\Downloads\FRST64.exe Wersja analizy zabezpieczeń: AV: 1.381.1771.0, AS: 1.381.1771.0, NIS: 1.381.1771.0 Wersja aparatu: AM: 1.1.19900.2, NIS: 1.1.19900.2 Date: 2023-01-05 19:09:22 Description: Produkt Program antywirusowy Microsoft Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz: https://go.microsoft.com/fwlink/?linkid=37020&name=SettingsModifier:Win32/PossibleHostsFileHijack&threatid=14994&enterprise=0 Nazwa: SettingsModifier:Win32/PossibleHostsFileHijack Identyfikator: 14994 Ważność: Średni Kategoria: Program modyfikujący ustawienia Ścieżka: file:_C:\Windows\System32\drivers\etc\hosts Pochodzenie wykrycia: Komputer lokalny Typ wykrycia: Konkretne Źródło wykrycia: Ochrona w czasie rzeczywistym Użytkownik: DESKTOP-N2TTQE3\Bolo Nazwa procesu: C:\Users\Bolo\Downloads\FRST64.exe Wersja analizy zabezpieczeń: AV: 1.381.1771.0, AS: 1.381.1771.0, NIS: 1.381.1771.0 Wersja aparatu: AM: 1.1.19900.2, NIS: 1.1.19900.2 Date: 2023-01-05 18:59:08 Description: Produkt Program antywirusowy Microsoft Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz: https://go.microsoft.com/fwlink/?linkid=37020&name=SettingsModifier:Win32/PossibleHostsFileHijack&threatid=14994&enterprise=0 Nazwa: SettingsModifier:Win32/PossibleHostsFileHijack Identyfikator: 14994 Ważność: Średni Kategoria: Program modyfikujący ustawienia Ścieżka: file:_C:\Windows\System32\drivers\etc\hosts Pochodzenie wykrycia: Komputer lokalny Typ wykrycia: Konkretne Źródło wykrycia: Ochrona w czasie rzeczywistym Użytkownik: DESKTOP-N2TTQE3\Bolo Nazwa procesu: C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Notification.exe Wersja analizy zabezpieczeń: AV: 1.381.1771.0, AS: 1.381.1771.0, NIS: 1.381.1771.0 Wersja aparatu: AM: 1.1.19900.2, NIS: 1.1.19900.2 Date: 2023-01-04 19:38:06 Description: Skanowanie produktu Program antywirusowy Microsoft Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania: {187E578E-0189-4836-9FB5-E71789B711BA} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Szybkie skanowanie Użytkownik: ZARZĄDZANIE NT\SYSTEM  CodeIntegrity: =============== Date: 2022-12-16 17:42:26 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Mozilla Firefox\firefox.exe) attempted to load \Device\HarddiskVolume3\Program Files\Mozilla Firefox\mozavcodec.dll that did not meet the Microsoft signing level requirements. Date: 2022-12-16 17:42:26 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Mozilla Firefox\firefox.exe) attempted to load \Device\HarddiskVolume3\Program Files\Mozilla Firefox\mozavutil.dll that did not meet the Microsoft signing level requirements. ==================== Statystyki pamięci =========================== BIOS: American Megatrends International, LLC. F5 12/17/2021 Płyta główna: Gigabyte Technology Co., Ltd. Z690 UD DDR4 Procesor: 12th Gen Intel(R) Core(TM) i5-12600K Procent pamięci w użyciu: 31% Całkowita pamięć fizyczna: 32541.7 MB Dostępna pamięć fizyczna: 22225.96 MB Całkowita pamięć wirtualna: 39965.7 MB Dostępna pamięć wirtualna: 23252.04 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:1907.12 GB) (Free:1391.7 GB) (Model: ADATA SX8200PNP) NTFS \\?\Volume{f9e18a24-2bef-4a99-be6c-652bb6b196fa}\ () (Fixed) (Total:0.5 GB) (Free:0.08 GB) NTFS \\?\Volume{3726a6aa-0000-0000-0080-000000000000}\ (OneDrive Personal Vault) (Fixed) (Total:1024 GB) (Free:1022.12 GB) NTFS \\?\Volume{2465b1fb-8d00-45bf-9d06-f0b8b8fcf920}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Tablica partycji ==================== ========================================================== Disk: 0 (Protective MBR) (Size: 1907.7 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 1024 GB) (Disk ID: 3726A6AA) Partition 1: (Not Active) - (Size=1024 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt =======================