Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 12-08.2024 Uruchomiony przez Grzesiek (19-08-2024 15:11:39) Uruchomiony z C:\Users\Grzesiek\Desktop Microsoft Windows 11 Pro Wersja 23H2 22631.4037 (X64) (2023-07-06 01:08:58) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= (Załączenie wejścia w fixlist spowoduje jego usunięcie.) Administrator (S-1-5-21-1477536923-2438906567-3048903223-500 - Administrator - Disabled) Gość (S-1-5-21-1477536923-2438906567-3048903223-501 - Limited - Disabled) Grzesiek (S-1-5-21-1477536923-2438906567-3048903223-1001 - Administrator - Enabled) => C:\Users\Grzesiek Konto domyślne (S-1-5-21-1477536923-2438906567-3048903223-503 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-1477536923-2438906567-3048903223-504 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 24.7.1 - Advanced Micro Devices, Inc.) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Battlestate Games Launcher 14.3.1.2544 (HKLM-x32\...\{B0FDA062-7581-4D67-B085-C4E7C358037F}_is1) (Version: 14.3.1.2544 - Battlestate Games) Branding64 (HKLM\...\{492AEFBE-1B81-4C20-A111-E6974BB98EC5}) (Version: 1.00.0009 - Advanced Micro Devices, Inc.) Hidden CPUID HWMonitor 1.51 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.51 - CPUID, Inc.) CPUID powerMAX 1.00.1 (HKLM\...\CPUID powerMAX_is1) (Version: 1.00.1 - CPUID, Inc.) Discord (HKU\S-1-5-21-1477536923-2438906567-3048903223-1001\...\Discord) (Version: 1.0.9013 - Discord Inc.) Dynamic Application Loader Host Interface Service (HKLM\...\{FD2C01C4-F511-4B2E-BA8B-AAE44D4C3C7F}) (Version: 1.0.0.0 - Intel Corporation) Hidden EasyTuneEngineService (HKLM-x32\...\{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.24.0109 - GIGABYTE) Hidden EasyTuneEngineService (HKLM-x32\...\InstallShield_{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.24.0109 - GIGABYTE) ENE Video Capture Box HAL (HKLM\...\{A096611D-BA11-4A1A-8D09-0A0462D7C8F2}) (Version: 1.0.5.15 - Ene Tech.) Hidden ENE Video Capture Box HAL (HKLM-x32\...\{974259bf-3ed1-4cd6-9ed1-40c7f601a786}) (Version: 1.0.5.15 - Ene Tech.) Hidden ENE_AIC_Marvell_HAL (HKLM\...\{085E2365-0A70-4230-B664-02D5E4FE7E9C}) (Version: 1.0.7.0 - ENE TECHNOLOGY INC.) Hidden ENE_AIC_Marvell_HAL (HKLM-x32\...\{887e18fb-6bc3-4cd4-b34e-32d9ff71bbae}) (Version: 1.0.7.0 - ENE TECHNOLOGY INC.) Hidden ENE_DRAM_RGB_AIO (HKLM\...\{5B5CE185-F845-487D-824D-9D02A8B778FB}) (Version: 1.0.9.1 - Ene Tech.) Hidden ENE_DRAM_RGB_AIO (HKLM-x32\...\{661c7ac8-4c45-4772-ba1d-090085dde688}) (Version: 1.0.9.1 - Ene Tech.) Hidden ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.0.11.2 - ENE TECHNOLOGY INC.) Hidden ENE_EHD_M2_HAL (HKLM-x32\...\{7cf61546-b8ec-4a85-a301-fa8c79296bd0}) (Version: 1.0.11.2 - ENE TECHNOLOGY INC.) Hidden ENE_External_Device_HAL (HKLM\...\{2B8E611F-0B51-4FAC-87BB-AF50D82E7DDA}) (Version: 1.0.12.7 - ENE Tech) Hidden ENE_External_Device_HAL (HKLM-x32\...\{a7b1cf47-d8f0-423d-9494-568195f1c864}) (Version: 1.0.12.7 - ENE Tech) Hidden ENE_MousePad_HAL (HKLM\...\{9E97178A-ADB8-4778-BE60-7E28E2A72721}) (Version: 1.0.1.8 - ENE TECHNOLOGY INC.) Hidden ENE_MousePad_HAL (HKLM-x32\...\{bf256b46-8ff7-48be-ab7f-5661e9a0651f}) (Version: 1.0.1.8 - ENE TECHNOLOGY INC.) Hidden ENE_X_AIC_HAL (HKLM\...\{CF703694-01C6-4062-B797-84DB215662BC}) (Version: 1.0.6.3 - ENE TECHNOLOGY INC.) Hidden ENE_X_AIC_HAL (HKLM-x32\...\{c662a481-d76a-4188-95d2-6eb4ffd55542}) (Version: 1.0.6.3 - ENE TECHNOLOGY INC.) Hidden Epic Games Launcher (HKLM-x32\...\{310BE3AC-6267-4F59-BB53-1B54C74204FA}) (Version: 1.3.82.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Epic Online Services (HKLM-x32\...\{35905844-0610-427D-86A0-2103FABE3D4D}) (Version: 2.0.42.0 - Epic Games, Inc.) Escape from Tarkov (HKLM-x32\...\EscapeFromTarkov) (Version: 0.14.9.7.31124 - Battlestate Games) FACEIT Anti-Cheat (HKLM\...\{1419E44C-0EF4-4822-9194-9F1A4D43973D}_is1) (Version: 2.1 - FACEIT LTD) Figma (HKU\S-1-5-21-1477536923-2438906567-3048903223-1001\...\Figma) (Version: 116.15.15 - Figma, Inc.) Figma Agent (HKU\S-1-5-21-1477536923-2438906567-3048903223-1001\...\FigmaAgent) (Version: 124.1.15 - Figma, Inc.) FiveM (HKU\S-1-5-21-1477536923-2438906567-3048903223-1001\...\CitizenFX_FiveM) (Version: - Cfx.re) GBT_MB_Update (HKLM\...\GBT_MB_Update) (Version: 24.01.02.01 - GIGABYTE) GBT_RGB_Sync_Control 24.01.16.01 (HKLM\...\GBT_RGB_Sync_Control) (Version: 24.01.16.01 - GIGABYTE) GBT_rgbMotherboard_UC 23.12.28.01 (HKLM\...\GBT_rgbMotherboard_UC) (Version: 23.12.28.01 - GIGABYTE) GBTECService (HKLM-x32\...\{759D7F2F-1F0D-461E-A3CD-BF58FC60DB2F}) (Version: 1.24.0102 - Gigabyte) Hidden GBTECService (HKLM-x32\...\InstallShield_{759D7F2F-1F0D-461E-A3CD-BF58FC60DB2F}) (Version: 1.24.0102 - Gigabyte) GIGABYTE Control Center 24.01.20.01 (HKLM\...\GIGABYTE Control Center) (Version: 24.01.20.01 - GIGABYTE) GIGABYTE Performance Library (HKLM\...\MBEasyTune) (Version: 24.01.09.01 - GIGABYTE) GIGABYTE Storage Library (HKLM\...\MBStorage) (Version: 23.12.29.01 - GIGABYTE) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 127.0.6533.120 - Google LLC) Grand Theft Auto V (HKLM-x32\...\{5EFC6C07-6B87-43FC-9524-F9E967241741}) (Version: 1.0.3274.0 - Rockstar Games) Intel(R) Chipset Device Software (HKLM\...\{D666FBA1-39CE-48D2-9336-9256827EB308}) (Version: 10.1.19502.8391 - Intel Corporation) Hidden Intel(R) Chipset Device Software (HKLM-x32\...\{e7892987-b2d0-4c0d-951c-86af011df195}) (Version: 10.1.19502.8391 - Intel(R) Corporation) Intel(R) HID Event Filter (HKLM-x32\...\3FB06EEC-013D-4366-9918-71B97DFB84EB) (Version: 2.2.1.386 - Intel Corporation) Intel(R) Icls (HKLM\...\{731E6324-F594-4C19-AA7A-B9145A331BD2}) (Version: 1.0.0.0 - Intel Corporation) Hidden Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2331.5.20.0 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{E2021C1F-CC6F-43F5-B4FF-F21E3091DEF1}) (Version: 1.0.0.0 - Intel Corporation) Hidden Intel(R) Management Engine Driver (HKLM\...\{03F18B6E-52BA-4906-8993-9EA0AD0D6DD2}) (Version: 1.0.0.0 - Intel Corporation) Hidden Intel(R) ME WMI Provider (HKLM\...\{492E26A3-3FB9-4ECA-913E-426EEA93E5FB}) (Version: 1.0.0.0 - Intel Corporation) Hidden Intel(R) Serial IO (HKLM\...\{47D5774F-BBF9-401C-B909-B056C0391B39}) (Version: 30.100.2237.26 - Intel Corporation) Hidden Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.2237.26 - Intel Corporation) Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden League of Legends (HKU\S-1-5-21-1477536923-2438906567-3048903223-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 127.0.2651.105 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.40.33810 (HKLM-x32\...\{5af95fd8-a22e-458f-acee-c61bd787178e}) (Version: 14.40.33810.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.40.33810 (HKLM-x32\...\{47109d57-d746-4f8b-9618-ed6a17cc922b}) (Version: 14.40.33810.0 - Microsoft Corporation) Microsoft Visual C++ 2022 X64 Additional Runtime - 14.40.33810 (HKLM\...\{59CED48F-EBFE-480C-8A38-FC079C2BEC0F}) (Version: 14.40.33810 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.40.33810 (HKLM\...\{B8B3BB4A-A10D-4F51-91B7-A64FFAC31EA7}) (Version: 14.40.33810 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X86 Additional Runtime - 14.40.33810 (HKLM-x32\...\{5EA6C998-D5AC-4ED9-89C3-9F25B17CCD3D}) (Version: 14.40.33810 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.40.33810 (HKLM-x32\...\{0C3457A0-3DCE-4A33-BEF0-9B528C557771}) (Version: 14.40.33810 - Microsoft Corporation) Hidden Microsoft Visual Studio Code (User) (HKU\S-1-5-21-1477536923-2438906567-3048903223-1001\...\{771FD6B0-FA20-440A-A002-3B3BAC16DC50}_is1) (Version: 1.86.0 - Microsoft Corporation) Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation) OBS Studio (HKLM-x32\...\OBS Studio) (Version: 30.1.2 - OBS Project) Patriot Viper M2 SSD RGB (HKLM\...\{8B4C0A3D-C135-4E1F-98D8-3926494B4D61}) (Version: 1.1.0.1 - Patriot Memory) Hidden Patriot Viper M2 SSD RGB (HKLM-x32\...\{07236f40-ec25-4646-8cb6-b6aaf1597324}) (Version: 1.1.0.1 - Patriot Memory) Hidden Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9373.1 - Realtek Semiconductor Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 11.16.1123.2023 - Realtek) REDlauncher (HKU\S-1-5-21-1477536923-2438906567-3048903223-1001\...\{7258BA11-600C-430E-A759-27E2C691A335}-REDlauncher_is1) (Version: - CD Projekt RED) Riot Client (HKU\S-1-5-21-1477536923-2438906567-3048903223-1001\...\Riot Game Riot_Client.) (Version: - Riot Games, Inc) Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.) Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.92.2003 - Rockstar Games) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.3.3.1 - Rockstar Games) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Środowisko uruchomieniowe Microsoft Edge WebView2 (HKLM-x32\...\Microsoft EdgeWebView) (Version: 127.0.2651.105 - Microsoft Corporation) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.6.0 - TeamSpeak Systems GmbH) Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{B652B695-C849-4EF2-B09A-72771C7AD2BA}) (Version: 2.71.0.0 - Microsoft Corporation) VALORANT (HKU\S-1-5-21-1477536923-2438906567-3048903223-1001\...\Riot Game valorant.live) (Version: - Riot Games, Inc) Verbatim_SureFireGaming_Product (HKLM\...\{35CB65C6-A7E3-4EE7-AD40-738D70A72164}) (Version: 1.0.3.11 - Verbatim) Hidden Verbatim_SureFireGaming_Product (HKLM-x32\...\{d601832a-0d94-46ce-9b19-78e8a5887313}) (Version: 1.0.3.11 - Verbatim) Hidden WD P40 Game Drive (HKLM\...\{EE55DBAE-ECDD-4ADD-AAB5-23DE848B0996}) (Version: 1.0.2.18 - Western Digital Corporation) Hidden WD P40 Game Drive (HKLM-x32\...\{72b1a866-fc31-4381-bff3-fa6cd8823777}) (Version: 1.0.2.18 - Western Digital Corporation) Hidden Packages: ========= AMD Radeon Software -> C:\Program Files\AMD\CNext\CNext [2024-07-28] (Advanced Micro Devices Inc.) Microsoft.BingSearch -> C:\Program Files\WindowsApps\Microsoft.BingSearch_1.0.95.0_x64__8wekyb3d8bbwe [2024-07-28] (Microsoft Corporation) MicrosoftWindows.CrossDevice -> C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24072.45.0_x64__cw5n1h2txyewy [2024-08-16] (Microsoft Windows) [Startup Task] Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.36.273.0_x64__dt26b99r8h8gj [2024-03-14] (Realtek Semiconductor Corp) Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.244.405.0_x64__zpdnekdrzrea0 [2024-08-15] (Spotify AB) [Startup Task] TradingView -> C:\Program Files\WindowsApps\TradingView.Desktop_2.7.5.5815_x64__n534cwy3pjxzj [2024-03-14] (TradingView, Inc.) [Startup Task] Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\LKG\MicrosoftWindows.LKG.DesktopSpotlight_cw5n1h2txyewy [2024-08-15] (Microsoft Windows) Zdjęcia -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2024.11070.31001.0_x64__8wekyb3d8bbwe [2024-08-07] (Microsoft Corporation) [Startup Task] ==================== Niestandardowe rejestracje CLSID (filtrowane): ============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2024-07-15] (Advanced Micro Devices -> Advanced Micro Devices, Inc.) ==================== Codecs (filtrowane) ==================== ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ShortcutWithArgument: C:\Users\Grzesiek\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Grzegorz - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1" ==================== Załadowane moduły (filtrowane) ============= ==================== Alternate Data Streams (filtrowane) ======== (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini:B1DA6C571C [4290] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Install.data:1727620D02 [4290] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Install.data:A11C0A2554 [3442] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini:41964AA945 [4290] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk:BE32D07BC5 [4290] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FACEIT AC.lnk:550995E265 [4290] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk:F208FC6732 [4290] AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [8742] AlternateDataStreams: C:\Users\Public\Documents\rsEngine.config.backup:A62FD1C36E [4290] ==================== Tryb awaryjny (filtrowane) ================== ==================== Powiązania plików (filtrowane) ================= ==================== Internet Explorer (filtrowane) ========== ==================== Hosts - zawartość: ========================= (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2019-03-19 06:49 - 2019-03-19 06:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Inne obszary =========================== (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-1477536923-2438906567-3048903223-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Grzesiek\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\paul-pastourmatzis-KT3WlrL_bsg-unsplash.jpg DNS Servers: 192.168.18.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja włączona] Network Binding: ============= Ethernet: Realtek Gaming 2.5GbE Family Controller -> rt25cx21x64.sys Wi-Fi 2: MERCUSYS Wireless USB Adapter -> rtwlanu.sys ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Załączenie wejścia w fixlist spowoduje jego usunięcie.) HKLM\...\StartupApproved\Run: => "SteelSeriesGG" HKU\S-1-5-21-1477536923-2438906567-3048903223-1001\...\StartupApproved\Run: => "EpicGamesLauncher" HKU\S-1-5-21-1477536923-2438906567-3048903223-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-1477536923-2438906567-3048903223-1001\...\StartupApproved\Run: => "Discord" HKU\S-1-5-21-1477536923-2438906567-3048903223-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-1477536923-2438906567-3048903223-1001\...\StartupApproved\Run: => "EADM" HKU\S-1-5-21-1477536923-2438906567-3048903223-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_84294AF7306D23DE507761B2AC7AA076" HKU\S-1-5-21-1477536923-2438906567-3048903223-1001\...\StartupApproved\Run: => "utweb" ==================== Reguły Zapory systemu Windows (filtrowane) ================ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{9695F51B-BBAF-421B-967A-46624A74A8AA}] => (Allow) D:\Steam\steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{51320015-49A1-4DA7-ABDF-0273EEC8C334}] => (Allow) D:\Steam\steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{FE28EE38-9C26-4A09-874D-CE0028097274}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{A0C3D760-4625-4BC8-B2F6-C7DC6B04F422}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [TCP Query User{BC108D0F-2A74-4E94-8333-9FEB07A52B86}D:\steam\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) D:\steam\steamapps\common\counter-strike global offensive\csgo.exe => Brak pliku FirewallRules: [UDP Query User{B209EA0B-57F1-476B-AB71-B4A07B9F3577}D:\steam\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) D:\steam\steamapps\common\counter-strike global offensive\csgo.exe => Brak pliku FirewallRules: [TCP Query User{09873D69-C0CC-4ADD-95C7-C92A293A142C}C:\program files\gigabyte\control center\gcc.exe] => (Allow) C:\program files\gigabyte\control center\gcc.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [UDP Query User{437FB1F9-5CBE-41D6-9DF5-363913345A0F}C:\program files\gigabyte\control center\gcc.exe] => (Allow) C:\program files\gigabyte\control center\gcc.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [TCP Query User{5BBE3374-CC23-4A24-995A-2433C9243AC8}C:\program files\windowsapps\spotifyab.spotifymusic_1.216.947.0_x64__zpdnekdrzrea0\spotify.exe] => (Allow) C:\program files\windowsapps\spotifyab.spotifymusic_1.216.947.0_x64__zpdnekdrzrea0\spotify.exe => Brak pliku FirewallRules: [UDP Query User{0A9CBDD7-53D5-4ECE-97EA-DF2CEC2B5CD7}C:\program files\windowsapps\spotifyab.spotifymusic_1.216.947.0_x64__zpdnekdrzrea0\spotify.exe] => (Allow) C:\program files\windowsapps\spotifyab.spotifymusic_1.216.947.0_x64__zpdnekdrzrea0\spotify.exe => Brak pliku FirewallRules: [TCP Query User{7E624E42-0385-4045-A218-672A2C976E0E}D:\hogwart\hogwarts legacy\phoenix\binaries\win64\hogwartslegacy.exe] => (Allow) D:\hogwart\hogwarts legacy\phoenix\binaries\win64\hogwartslegacy.exe => Brak pliku FirewallRules: [UDP Query User{DD6B04E1-6516-4C1B-8DB9-374EB3A9065F}D:\hogwart\hogwarts legacy\phoenix\binaries\win64\hogwartslegacy.exe] => (Allow) D:\hogwart\hogwarts legacy\phoenix\binaries\win64\hogwartslegacy.exe => Brak pliku FirewallRules: [TCP Query User{27EB9802-B409-4CA3-B1A5-DBD6434261F4}D:\lolek\riot games\riot client\riotclientservices.exe] => (Allow) D:\lolek\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.) FirewallRules: [UDP Query User{E89E5ED2-0380-4454-9753-39D4CBBAE8F7}D:\lolek\riot games\riot client\riotclientservices.exe] => (Allow) D:\lolek\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.) FirewallRules: [TCP Query User{1006EC90-AD85-47BA-809C-218D37143390}C:\program files\google\chrome\application\chrome.exe] => (Allow) C:\program files\google\chrome\application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [UDP Query User{F43B1B06-7308-4C9B-8459-A4EA6542CFB6}C:\program files\google\chrome\application\chrome.exe] => (Allow) C:\program files\google\chrome\application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [TCP Query User{5CD94FDD-0466-481A-859C-330D1BC456E0}D:\warzone\call of duty\_retail_\cod.exe] => (Allow) D:\warzone\call of duty\_retail_\cod.exe => Brak pliku FirewallRules: [UDP Query User{2A86B6D8-DB1B-4D57-8455-1B4900465DF0}D:\warzone\call of duty\_retail_\cod.exe] => (Allow) D:\warzone\call of duty\_retail_\cod.exe => Brak pliku FirewallRules: [TCP Query User{E820386D-DF59-4789-82AE-49DA681AEF63}C:\users\grzesiek\appdata\local\discord\app-1.0.9016\discord.exe] => (Allow) C:\users\grzesiek\appdata\local\discord\app-1.0.9016\discord.exe => Brak pliku FirewallRules: [UDP Query User{EDAB5A0B-9640-4CE7-B6BB-9912D9A4CE51}C:\users\grzesiek\appdata\local\discord\app-1.0.9016\discord.exe] => (Allow) C:\users\grzesiek\appdata\local\discord\app-1.0.9016\discord.exe => Brak pliku FirewallRules: [TCP Query User{26FEE03D-8534-4E74-98C9-EB7B0E76F1D3}D:\warzone\diablo iii\x64\diablo iii64.exe] => (Allow) D:\warzone\diablo iii\x64\diablo iii64.exe => Brak pliku FirewallRules: [UDP Query User{48B83C87-C90E-458F-B526-6D29F5D17655}D:\warzone\diablo iii\x64\diablo iii64.exe] => (Allow) D:\warzone\diablo iii\x64\diablo iii64.exe => Brak pliku FirewallRules: [TCP Query User{3645119C-FC4A-42FA-94C6-3699CC528EFC}C:\users\grzesiek\appdata\roaming\.minecraft\runtime\jre-legacy\bin\javaw.exe] => (Allow) C:\users\grzesiek\appdata\roaming\.minecraft\runtime\jre-legacy\bin\javaw.exe FirewallRules: [UDP Query User{851EBD12-0D2E-4690-A639-EDBC3A62E167}C:\users\grzesiek\appdata\roaming\.minecraft\runtime\jre-legacy\bin\javaw.exe] => (Allow) C:\users\grzesiek\appdata\roaming\.minecraft\runtime\jre-legacy\bin\javaw.exe FirewallRules: [{335815D9-3F4F-4093-9CD8-1EB39C71B58A}] => (Allow) D:\Steam\steamapps\common\Outlast\OutlastLauncher.exe (Red Barrels Inc.) [Brak podpisu cyfrowego] FirewallRules: [{5E931481-DBD5-4FE1-BB7C-915523AE3EEE}] => (Allow) D:\Steam\steamapps\common\Outlast\OutlastLauncher.exe (Red Barrels Inc.) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{8A6BE5DA-765A-47E3-A235-5BDF1F8C7C8D}D:\steam\steamapps\common\outlast\binaries\win64\olgame.exe] => (Allow) D:\steam\steamapps\common\outlast\binaries\win64\olgame.exe (Red Barrels Inc.) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{C7D1E78E-AE65-43D1-B422-69DF93588A90}D:\steam\steamapps\common\outlast\binaries\win64\olgame.exe] => (Allow) D:\steam\steamapps\common\outlast\binaries\win64\olgame.exe (Red Barrels Inc.) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{38C7FA4B-D6B9-4922-A4AF-A88AF17835D2}D:\steam\steamapps\common\battlefield 2042\bf2042.exe] => (Allow) D:\steam\steamapps\common\battlefield 2042\bf2042.exe => Brak pliku FirewallRules: [UDP Query User{21714141-005F-4339-8ABD-7351117BF576}D:\steam\steamapps\common\battlefield 2042\bf2042.exe] => (Allow) D:\steam\steamapps\common\battlefield 2042\bf2042.exe => Brak pliku FirewallRules: [TCP Query User{545EE137-2A28-49CE-A573-12D766370C87}D:\lolek\riot games\valorant\live\shootergame\binaries\win64\valorant-win64-shipping.exe] => (Allow) D:\lolek\riot games\valorant\live\shootergame\binaries\win64\valorant-win64-shipping.exe (Riot Games, Inc. -> Riot Games) FirewallRules: [UDP Query User{13DD2BE9-A4D2-46DD-87B4-C84DFF7731A5}D:\lolek\riot games\valorant\live\shootergame\binaries\win64\valorant-win64-shipping.exe] => (Allow) D:\lolek\riot games\valorant\live\shootergame\binaries\win64\valorant-win64-shipping.exe (Riot Games, Inc. -> Riot Games) FirewallRules: [TCP Query User{96FEF4D6-5416-43D4-9827-051CA76DA020}D:\epic\saintsrowthethird\srttr.exe] => (Allow) D:\epic\saintsrowthethird\srttr.exe => Brak pliku FirewallRules: [UDP Query User{428B3142-E2FB-4F6C-A760-F1A879801C9C}D:\epic\saintsrowthethird\srttr.exe] => (Allow) D:\epic\saintsrowthethird\srttr.exe => Brak pliku FirewallRules: [{E084F8B2-D92A-45C6-A1E2-381A0034B092}] => (Allow) D:\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe () [Brak podpisu cyfrowego] FirewallRules: [{D8A74B82-10FE-47B5-9444-728072370670}] => (Allow) D:\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe () [Brak podpisu cyfrowego] FirewallRules: [{CBE80E24-2D49-4A5C-9661-DA9E52BC92B7}] => (Allow) D:\Steam\steamapps\common\Half-Life\hl.exe (Valve Corp. -> Valve) FirewallRules: [{204D01FF-F905-4B31-9463-8938C371A593}] => (Allow) D:\Steam\steamapps\common\Half-Life\hl.exe (Valve Corp. -> Valve) FirewallRules: [TCP Query User{BE297A59-4162-43F4-8F3E-307A71955711}D:\steam\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe] => (Allow) D:\steam\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe => Brak pliku FirewallRules: [UDP Query User{E7F8D4A5-BFB7-40BF-AD28-6E9185C60A71}D:\steam\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe] => (Allow) D:\steam\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe => Brak pliku FirewallRules: [{043A3CE0-84AA-4904-B478-BC97A6827C26}] => (Allow) C:\Users\Grzesiek\AppData\Roaming\utorrent\uTorrent.exe => Brak pliku FirewallRules: [{61075454-90A9-43DE-A603-4A0BBDF87819}] => (Allow) C:\Users\Grzesiek\AppData\Roaming\utorrent\uTorrent.exe => Brak pliku FirewallRules: [TCP Query User{E90A935B-5A88-41F1-A0ED-3256FCF7FB69}D:\gta 5\grand theft auto v\gta5.exe] => (Allow) D:\gta 5\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [UDP Query User{669CFCC5-B9C8-4B08-A8E9-ACBB026FD053}D:\gta 5\grand theft auto v\gta5.exe] => (Allow) D:\gta 5\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [TCP Query User{BDA24239-FF8F-4E56-9F55-65194934D2CA}C:\users\grzesiek\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_chromebrowser] => (Allow) C:\users\grzesiek\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_chromebrowser (Cfx.re) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{3ECA7E25-B2C5-4E1C-8763-BD0F9760AE5C}C:\users\grzesiek\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_chromebrowser] => (Allow) C:\users\grzesiek\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_chromebrowser (Cfx.re) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{7781A30F-5055-416B-A8CF-08B9C33C4ACD}D:\pobrane\jebac kierata\pummel party\pummelparty.exe] => (Allow) D:\pobrane\jebac kierata\pummel party\pummelparty.exe => Brak pliku FirewallRules: [UDP Query User{BCEE7322-E31E-4853-8A3D-C900530052AE}D:\pobrane\jebac kierata\pummel party\pummelparty.exe] => (Allow) D:\pobrane\jebac kierata\pummel party\pummelparty.exe => Brak pliku FirewallRules: [{4C423EAB-ECFD-4427-932C-F5726CBF6844}] => (Allow) D:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve Corp. -> ) FirewallRules: [{F27CE53B-0731-41D6-94D0-BB89D96168E7}] => (Allow) D:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve Corp. -> ) FirewallRules: [TCP Query User{25072F4A-1F88-4C5C-9BE9-B33FA74D98C5}D:\lolek\riot games\riot client\riotclientelectron\riot client.exe] => (Allow) D:\lolek\riot games\riot client\riotclientelectron\riot client.exe (Riot Games, Inc. -> Riot Games, Inc.) FirewallRules: [UDP Query User{F4FF9806-6646-4B93-8474-A1A70966140E}D:\lolek\riot games\riot client\riotclientelectron\riot client.exe] => (Allow) D:\lolek\riot games\riot client\riotclientelectron\riot client.exe (Riot Games, Inc. -> Riot Games, Inc.) FirewallRules: [{EE0A7C68-80BB-4BD1-A0EE-77EB8F8EF725}] => (Allow) C:\Program Files\GIGABYTE\Control Center\GCC.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) FirewallRules: [{B7E8C6C2-160D-4CC9-88CE-99F815D8A0CA}] => (Allow) D:\Steam\steamapps\common\Outlast 2\Binaries\Win64\Outlast2.exe (Red Barrels Inc.) [Brak podpisu cyfrowego] FirewallRules: [{87F0EFD0-A674-429C-8D0C-FFEC3A9E0CB7}] => (Allow) D:\Steam\steamapps\common\Outlast 2\Binaries\Win64\Outlast2.exe (Red Barrels Inc.) [Brak podpisu cyfrowego] FirewallRules: [{200ED24F-16C1-432F-88AF-94140BAC8124}] => (Allow) D:\Steam\steamapps\common\Human Fall Flat\Human.exe () [Brak podpisu cyfrowego] FirewallRules: [{E8AA32F5-40C0-4279-9BCC-A5B5F82FC979}] => (Allow) D:\Steam\steamapps\common\Human Fall Flat\Human.exe () [Brak podpisu cyfrowego] FirewallRules: [{4D91D0D6-BE6C-42D4-B779-4570375B5A33}] => (Allow) D:\Steam\steamapps\common\PAYDAY The Heist\payday_win32_release.exe () [Brak podpisu cyfrowego] FirewallRules: [{5BA6D0E1-EF68-46D2-80C2-812D723AB371}] => (Allow) D:\Steam\steamapps\common\PAYDAY The Heist\payday_win32_release.exe () [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{C2C7AEAC-57AC-47F0-AB82-A6332319C2D4}C:\users\grzesiek\appdata\local\fivem\fivem.exe] => (Allow) C:\users\grzesiek\appdata\local\fivem\fivem.exe (Rockstar Games, Inc. -> Cfx.re) FirewallRules: [UDP Query User{8152A19C-9C90-4394-97D8-46D053FBC16F}C:\users\grzesiek\appdata\local\fivem\fivem.exe] => (Allow) C:\users\grzesiek\appdata\local\fivem\fivem.exe (Rockstar Games, Inc. -> Cfx.re) FirewallRules: [TCP Query User{CEA14826-860D-4F02-82AD-42E1A33A4195}C:\users\grzesiek\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b3095_gtaprocess.exe] => (Allow) C:\users\grzesiek\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b3095_gtaprocess.exe (Cfx.re) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{67714E12-2205-4DA5-9B96-78DFB86415D1}C:\users\grzesiek\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b3095_gtaprocess.exe] => (Allow) C:\users\grzesiek\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b3095_gtaprocess.exe (Cfx.re) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{D9120E0C-660B-4364-AD8F-D156E54F5E40}C:\users\grzesiek\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_steamchild.exe] => (Allow) C:\users\grzesiek\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_steamchild.exe (Rockstar Games, Inc. -> Cfx.re) FirewallRules: [UDP Query User{7C59EA41-5953-434F-9B77-D9326FD4D7C2}C:\users\grzesiek\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_steamchild.exe] => (Allow) C:\users\grzesiek\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_steamchild.exe (Rockstar Games, Inc. -> Cfx.re) FirewallRules: [TCP Query User{8B5C6713-9B74-461B-AB75-9C388A158CC3}C:\users\grzesiek\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2802_gtaprocess.exe] => (Allow) C:\users\grzesiek\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2802_gtaprocess.exe => Brak pliku FirewallRules: [UDP Query User{8AC03E2F-F338-4A4A-A581-B358FEC21985}C:\users\grzesiek\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2802_gtaprocess.exe] => (Allow) C:\users\grzesiek\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2802_gtaprocess.exe => Brak pliku FirewallRules: [TCP Query User{BD5D4627-F3C6-4FB3-A361-1A87FAB80B71}C:\users\grzesiek\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2699_gtaprocess.exe] => (Allow) C:\users\grzesiek\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2699_gtaprocess.exe => Brak pliku FirewallRules: [UDP Query User{EF32D3B4-B467-40E2-9CF0-B697B4C7F897}C:\users\grzesiek\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2699_gtaprocess.exe] => (Allow) C:\users\grzesiek\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2699_gtaprocess.exe => Brak pliku FirewallRules: [TCP Query User{B4ED6533-D0BF-484F-AA17-35D96AB4C831}C:\users\grzesiek\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2944_gtaprocess.exe] => (Allow) C:\users\grzesiek\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2944_gtaprocess.exe => Brak pliku FirewallRules: [UDP Query User{1C54B509-9CB0-451E-A555-D6F81523874B}C:\users\grzesiek\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2944_gtaprocess.exe] => (Allow) C:\users\grzesiek\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2944_gtaprocess.exe => Brak pliku FirewallRules: [{05E77E43-89C4-40F5-8C33-9A479D80543D}] => (Allow) D:\Steam\steamapps\common\Back 4 Blood\Back4Blood.exe (WB Games) [Brak podpisu cyfrowego] FirewallRules: [{07655FF4-C873-484D-BAE4-E87DE389F56A}] => (Allow) D:\Steam\steamapps\common\Back 4 Blood\Back4Blood.exe (WB Games) [Brak podpisu cyfrowego] FirewallRules: [{FDCF201D-EF2F-4E83-902B-3A7E16BFDE18}] => (Allow) D:\Steam\steamapps\common\Back 4 Blood\Gobi\Binaries\Win64\Back4Blood.exe (Turtle Rock Studios, Inc. -> WB Games) FirewallRules: [{ED0862BC-28D9-4DC1-9BF3-EB1F85330B1F}] => (Allow) D:\Steam\steamapps\common\Back 4 Blood\Gobi\Binaries\Win64\Back4Blood.exe (Turtle Rock Studios, Inc. -> WB Games) FirewallRules: [{2051AE04-4587-4A20-803A-81230DE1E7BA}] => (Allow) D:\Steam\steamapps\common\Demonologist\Demonologist.exe (Epic Games, Inc.) [Brak podpisu cyfrowego] FirewallRules: [{6D7A4E32-B574-4FE4-BEA0-40AB9264E098}] => (Allow) D:\Steam\steamapps\common\Demonologist\Demonologist.exe (Epic Games, Inc.) [Brak podpisu cyfrowego] FirewallRules: [{E16403C6-CD03-492E-ACDF-AF9AB5CBE7DD}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\game\bin\win64\cs2.exe (Valve Corp. -> ) FirewallRules: [{A76F28EA-F169-43AD-B08B-696A48909751}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\game\bin\win64\cs2.exe (Valve Corp. -> ) FirewallRules: [TCP Query User{DD18AF63-5EC1-4B06-A6ED-CD4CD5156B5B}C:\users\grzesiek\appdata\local\discord\app-1.0.9156\discord.exe] => (Allow) C:\users\grzesiek\appdata\local\discord\app-1.0.9156\discord.exe => Brak pliku FirewallRules: [UDP Query User{570CA3B9-3DE6-4D04-9A76-3577E77E60B4}C:\users\grzesiek\appdata\local\discord\app-1.0.9156\discord.exe] => (Allow) C:\users\grzesiek\appdata\local\discord\app-1.0.9156\discord.exe => Brak pliku FirewallRules: [{64720E42-3231-4E8E-8288-4352F97F9356}] => (Allow) D:\Steam\steamapps\common\The Binding Of Isaac\Isaac.exe (Edmund Mcmillen & Florian Himsl) [Brak podpisu cyfrowego] FirewallRules: [{5001677C-1F01-4045-A0EF-77DE2E5D1E08}] => (Allow) D:\Steam\steamapps\common\The Binding Of Isaac\Isaac.exe (Edmund Mcmillen & Florian Himsl) [Brak podpisu cyfrowego] FirewallRules: [{B7F678AC-8157-447B-98D3-380C250CE0CC}] => (Allow) D:\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games) FirewallRules: [{48772092-4C9E-4F3A-859F-16B3F59DE93E}] => (Allow) D:\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games) FirewallRules: [{7B917B2E-4410-47CD-85B4-9962FC3DBA7D}] => (Allow) D:\Steam\steamapps\common\Blood and Bacon\BloodandBacon.exe (BigCorporation) [Brak podpisu cyfrowego] FirewallRules: [{DD428D7C-D8A7-4660-81D8-8AD31461A8A0}] => (Allow) D:\Steam\steamapps\common\Blood and Bacon\BloodandBacon.exe (BigCorporation) [Brak podpisu cyfrowego] FirewallRules: [{3AEFDDE5-5467-433A-B897-65D7E4D7DB20}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.244.405.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{B0033707-E164-4657-9397-5A8AA18ED92D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.244.405.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{28434A35-B6DE-49FA-8B74-4A3C10C7BB47}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.244.405.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{9970E4CC-5273-4383-A080-DBBE65376AA2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.244.405.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{8C0188DD-4527-450C-9C5E-6C3E141ADE33}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.244.405.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{36553401-096A-4E87-A6BF-1DD7E8ECBC35}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.244.405.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{FB0753B0-DF25-4B55-8A15-02B3ABC2BBDB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.244.405.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{002D5A1A-2758-48E7-BD07-BF8854EA53EA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.244.405.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{2B98B760-5742-491A-A2DF-87ADA43F95E8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.244.405.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{37C987DA-56FD-4C9E-9D4C-AA5553619093}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.244.405.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{2CA15568-40F9-4513-99E5-79DA76514623}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{F90E838E-57E8-4FA7-910D-521224DCA8CD}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\127.0.2651.105\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) ==================== Punkty Przywracania systemu ========================= ==================== Wadliwe urządzenia w Menedżerze urządzeń ============ ==================== Błędy w Dzienniku zdarzeń: ======================== Dziennik Aplikacja: ================== Error: (08/18/2024 05:22:41 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas wywoływania procedury CoCreateInstance. hr = 0x8007045b, Trwa proces zamykania systemu.. Error: (08/18/2024 05:22:41 PM) (Source: VSS) (EventID: 13) (User: ) Description: Informacje Usługi kopiowania woluminów w tle: nie można uruchomić serwera usługi COM z identyfikatorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} i nazwą CEventSystem. [0x8007045b, Trwa proces zamykania systemu.] Error: (08/15/2024 10:00:12 PM) (Source: Application Hang) (EventID: 1002) (User: ZARZĄDZANIE NT) Description: Program FiveM_b3095_GTAProcess.exe w wersji 2.0.0.9376 przestał korzystać z systemu Windows i został zamknięty. Aby sprawdzić, czy jest dostępnych więcej informacji o problemie, sprawdź historię problemów w panelu sterowania Zabezpieczenia i konserwacja. Error: (08/15/2024 08:26:04 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas wywoływania procedury CoCreateInstance. hr = 0x8007045b, Trwa proces zamykania systemu.. Error: (08/15/2024 08:26:04 PM) (Source: VSS) (EventID: 13) (User: ) Description: Informacje Usługi kopiowania woluminów w tle: nie można uruchomić serwera usługi COM z identyfikatorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} i nazwą CEventSystem. [0x8007045b, Trwa proces zamykania systemu.] Error: (08/15/2024 08:26:04 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas wywoływania procedury CoCreateInstance. hr = 0x8007045b, Trwa proces zamykania systemu.. Error: (08/15/2024 08:26:04 PM) (Source: VSS) (EventID: 13) (User: ) Description: Informacje Usługi kopiowania woluminów w tle: nie można uruchomić serwera usługi COM z identyfikatorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} i nazwą CEventSystem. [0x8007045b, Trwa proces zamykania systemu.] Error: (08/12/2024 12:36:40 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas wywoływania procedury CoCreateInstance. hr = 0x8007045b, Trwa proces zamykania systemu.. Dziennik System: ============= Error: (08/19/2024 03:10:38 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Usługa Google Update (gupdate) z powodu następującego błędu: Usługa nie odpowiada na sygnał uruchomienia lub sygnał sterujący w oczekiwanym czasie. Error: (08/19/2024 03:10:38 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (60000 ms) podczas oczekiwania na połączenie się z usługą Usługa Google Update (gupdate). Error: (08/18/2024 06:20:24 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Usługa Google Update (gupdate) z powodu następującego błędu: Usługa nie odpowiada na sygnał uruchomienia lub sygnał sterujący w oczekiwanym czasie. Error: (08/18/2024 06:20:24 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (60000 ms) podczas oczekiwania na połączenie się z usługą Usługa Google Update (gupdate). Error: (08/18/2024 01:51:47 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Usługa Google Update (gupdate) z powodu następującego błędu: Usługa nie odpowiada na sygnał uruchomienia lub sygnał sterujący w oczekiwanym czasie. Error: (08/18/2024 01:51:47 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (60000 ms) podczas oczekiwania na połączenie się z usługą Usługa Google Update (gupdate). Error: (08/16/2024 08:19:10 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Usługa Google Update (gupdate) z powodu następującego błędu: Usługa nie odpowiada na sygnał uruchomienia lub sygnał sterujący w oczekiwanym czasie. Error: (08/16/2024 08:19:10 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (60000 ms) podczas oczekiwania na połączenie się z usługą Usługa Google Update (gupdate). Windows Defender: ================ Date: 2024-08-19 01:19:32 Description: Skanowanie produktu Program antywirusowy Microsoft Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania: {220F1D0D-0939-49DB-9525-C479549EFF0B} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Szybkie skanowanie Użytkownik: ZARZĄDZANIE NT\SYSTEM Date: 2024-08-03 18:19:16 Description: Skanowanie produktu Program antywirusowy Microsoft Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania: {76A086D5-C4F3-4342-A1D6-7D5C1F097CFE} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Szybkie skanowanie Użytkownik: ZARZĄDZANIE NT\SYSTEM Date: 2024-04-03 15:12:43 Description: Skanowanie produktu Program antywirusowy Microsoft Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania: {51BD7B49-1DFC-4D32-878C-049B45E00871} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Szybkie skanowanie Użytkownik: ZARZĄDZANIE NT\SYSTEM Date: 2024-03-25 21:34:03 Description: Produkt Program antywirusowy Microsoft Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz: https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Crack!pz&threatid=2147890699&enterprise=0 Nazwa: HackTool:Win32/Crack!pz Identyfikator: 2147890699 Ważność: Wysoki Kategoria: Narzędzie Ścieżka: containerfile:_D:\Hogwart\Hogwarts Legacy\Phoenix\Binaries\Win64\EMP.dll; file:_D:\Hogwart\Hogwarts Legacy\Phoenix\Binaries\Win64\EMP.dll->(Upxw64) Pochodzenie wykrycia: Komputer lokalny Typ wykrycia: Konkretne Źródło wykrycia: Ochrona w czasie rzeczywistym Użytkownik: DESKTOP-IQG89MK\Grzesiek Nazwa procesu: D:\Hogwart\Hogwarts Legacy\Phoenix\Binaries\Win64\HogwartsLegacy.exe Wersja analizy zabezpieczeń: AV: 1.407.706.0, AS: 1.407.706.0, NIS: 1.407.706.0 Wersja aparatu: AM: 1.1.24020.9, NIS: 1.1.24020.9 Date: 2024-03-24 14:12:05 Description: Skanowanie produktu Program antywirusowy Microsoft Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania: {300531F5-8AEE-48DE-86F3-195B22C9BBDE} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Szybkie skanowanie Użytkownik: ZARZĄDZANIE NT\SYSTEM  CodeIntegrity: =============== Date: 2024-08-19 15:09:14 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Users\Grzesiek\AppData\Local\Discord\app-1.0.9158\Discord.exe) attempted to load \Device\HarddiskVolume4\ProgramData\obs-studio-hook\graphics-hook64.dll that did not meet the Microsoft signing level requirements. ==================== Statystyki pamięci =========================== BIOS: American Megatrends International, LLC. F9 12/14/2023 Płyta główna: Gigabyte Technology Co., Ltd. B760 GAMING X DDR4 Procesor: 13th Gen Intel(R) Core(TM) i5-13400F Procent pamięci w użyciu: 20% Całkowita pamięć fizyczna: 32592.26 MB Dostępna pamięć fizyczna: 25752.65 MB Całkowita pamięć wirtualna: 38736.26 MB Dostępna pamięć wirtualna: 29621.13 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:145.16 GB) (Free:67.09 GB) (Model: Lexar SSD NM620 1TB) NTFS Drive d: (Wszystko) (Fixed) (Total:807.38 GB) (Free:196.3 GB) (Model: Lexar SSD NM620 1TB) NTFS \\?\Volume{aadb20f1-e70f-4b48-be6f-68ea73a9fa05}\ (Odzyskiwanie) (Fixed) (Total:0.52 GB) (Free:0.5 GB) NTFS \\?\Volume{7296314a-06cd-41ad-b1b9-6744ce1741f4}\ () (Fixed) (Total:0.7 GB) (Free:0.11 GB) NTFS \\?\Volume{d1a6b892-2724-4f72-9008-61de42a25ac6}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Tablica partycji ==================== ========================================================== Disk: 0 (Protective MBR) (Size: 953.9 GB) (Disk ID: 00000000) Partition: GPT. ==================== Koniec Addition.txt =======================