Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 16-09-2024 Uruchomiony przez darek (27-10-2024 12:25:13) Uruchomiony z D:\ Microsoft Windows 11 Pro Wersja 24H2 26100.2161 (X64) (2024-10-10 18:51:28) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= (Załączenie wejścia w fixlist spowoduje jego usunięcie.) Administrator (S-1-5-21-395480095-3073642453-2710149471-500 - Administrator - Disabled) darek (S-1-5-21-395480095-3073642453-2710149471-1001 - Administrator - Enabled) => C:\Users\darek Gość (S-1-5-21-395480095-3073642453-2710149471-501 - Limited - Disabled) Konto domyślne (S-1-5-21-395480095-3073642453-2710149471-503 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-395480095-3073642453-2710149471-504 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) 7-Zip 23.01 (x64) (HKLM\...\7-Zip) (Version: 23.01 - Igor Pavlov) Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1045-1033-7760-BC15014EA700}) (Version: 24.003.20180 - Adobe) Adobe Photoshop 2021 (HKLM-x32\...\PHSP_22_3_1) (Version: 22.3.1.122 - Adobe Inc.) Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601102}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 24.10.1 - Advanced Micro Devices, Inc.) Branding64 (HKLM\...\{492AEFBE-1B81-4C20-A111-E6974BB98EC5}) (Version: 1.00.0009 - Advanced Micro Devices, Inc.) Hidden Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.20.13 - Canon Inc.) Canon MG3600 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG3600_series) (Version: 1.02 - Canon Inc.) CPUID CPU-Z 2.09 (HKLM\...\CPUID CPU-Z_is1) (Version: 2.09 - CPUID, Inc.) Documentation Manager (HKLM\...\{94DE47AB-3149-4877-8547-DDA27945A1F2}) (Version: 23.70.2.3 - Intel Corporation) Hidden Dynamic Application Loader Host Interface Service (HKLM\...\{FE08EA18-3549-49F1-8F5D-01F176DCE1CC}) (Version: 1.0.0.0 - Intel Corporation) Hidden ENE_QSI_Loki_HAL (HKLM\...\{BDE43F26-5917-44F8-B86A-F1D9A6B80B32}) (Version: 1.0.3.0 - ENE TECHNOLOGY INC.) Hidden ENE_QSI_Loki_HAL (HKLM-x32\...\{205ef3a8-937b-43cb-90fc-2f58f71408d8}) (Version: 1.0.3.0 - ENE TECHNOLOGY INC.) Hidden foobar2000 v2.1.5 (HKLM-x32\...\foobar2000) (Version: 2.1.5 - Peter Pawlowski) HWiNFO® 64 (HKLM\...\HWiNFO® 64_is1) (Version: 8.10 - Martin Malik, REALiX s.r.o.) Intel Processor Diagnostic Tool 64bit (HKLM\...\{EAC7315F-25E1-4F28-B520-D877F3D0D2EA}) (Version: 4.1.9 - Intel Corporation) Intel(R) Chipset Device Software (HKLM\...\{2B96B7E3-FA08-4749-9D23-CDC64F1B835B}) (Version: 10.1.19600.8418 - Intel Corporation) Hidden Intel(R) Chipset Device Software (HKLM-x32\...\{404581d0-19c1-47ba-bcd3-10178793c239}) (Version: 10.1.19600.8418 - Intel(R) Corporation) Intel(R) Icls (HKLM\...\{CB2D5928-7697-4A8B-B7E0-63A5699686D2}) (Version: 1.0.0.0 - Intel Corporation) Hidden Intel(R) LMS (HKLM\...\{6A2335AD-315C-4ADD-BFFC-0C7D0FC8A2B9}) (Version: 1.0.0.0 - Intel Corporation) Hidden Intel(R) Management Engine Components (HKLM\...\{11107004-9658-44DB-8E95-2ECAFAE17B7B}) (Version: 1.0.0.0 - Intel Corporation) Hidden Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2201.16.0.2645 - Intel Corporation) Intel(R) Management Engine Driver (HKLM\...\{7F7FEA98-7076-40EE-A318-07C48E67385F}) (Version: 1.0.0.0 - Intel Corporation) Hidden Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 28.2 - Intel) Intel® Software Installer (HKLM-x32\...\{2f7b77cf-9080-41ab-b879-938730a33f60}) (Version: 23.70.2.3 - Intel Corporation) Hidden IrfanView 4.66 (64-bit) (HKLM\...\IrfanView64) (Version: 4.66 - Irfan Skiljan) LibreOffice 7.6 Help Pack (Polish) (HKLM\...\{A3CCFB12-17B6-4D67-BBC2-389B4AFB99EE}) (Version: 7.6.1.2 - The Document Foundation) LibreOffice 7.6.1.2 (HKLM\...\{2E54FDCB-3252-46B2-AC54-AAA5D0C7087F}) (Version: 7.6.1.2 - The Document Foundation) Marvell FastLinQ Edge Network Adapter Drivers (64 bit) (HKLM\...\{1F983CE7-9CD2-4E5C-B44F-C2E8E41B8780}) (Version: 3.1.3.0 - Marvell Semiconductor Inc.) Microsoft .NET Core Host - 3.1.28 (x64) (HKLM\...\{26ECE92F-518E-40AF-9108-7B7B444A46DE}) (Version: 24.112.31513 - Microsoft Corporation) Hidden Microsoft .NET Core Host FX Resolver - 3.1.28 (x64) (HKLM\...\{CDEA72F4-1367-4E0A-AC5F-0EBAF7C6825A}) (Version: 24.112.31513 - Microsoft Corporation) Hidden Microsoft .NET Core Runtime - 3.1.28 (x64) (HKLM\...\{3691148D-EF42-4812-8956-AE11FC413B8D}) (Version: 24.112.31513 - Microsoft Corporation) Hidden Microsoft .NET Core Runtime - 3.1.28 (x64) (HKLM-x32\...\{231e3b76-4d0f-4e60-9d69-f11c9c448630}) (Version: 3.1.28.31513 - Microsoft Corporation) Microsoft .NET Host - 6.0.35 (x64) (HKLM\...\{C59601A1-771B-426B-A9F7-6CACCAC4DB4E}) (Version: 48.140.21458 - Microsoft Corporation) Hidden Microsoft .NET Host - 8.0.10 (x64) (HKLM\...\{3A80EBC5-6B68-49B9-BEBD-E1A6C966B416}) (Version: 64.40.21578 - Microsoft Corporation) Hidden Microsoft .NET Host FX Resolver - 6.0.35 (x64) (HKLM\...\{E91F8AC1-4917-455E-AACA-B40B193C7A62}) (Version: 48.140.21458 - Microsoft Corporation) Hidden Microsoft .NET Host FX Resolver - 8.0.10 (x64) (HKLM\...\{062CD1ED-0A3C-483C-A871-50173240C545}) (Version: 64.40.21578 - Microsoft Corporation) Hidden Microsoft .NET Runtime - 6.0.35 (x64) (HKLM\...\{C79F6EEC-3A2B-487D-A3B6-EDF4057B4E4B}) (Version: 48.140.21458 - Microsoft Corporation) Hidden Microsoft .NET Runtime - 6.0.35 (x64) (HKLM-x32\...\{96ec02bb-b5fa-4892-a305-c6128466beda}) (Version: 6.0.35.34109 - Microsoft Corporation) Microsoft .NET Runtime - 8.0.10 (x64) (HKLM\...\{15B7D0C2-F209-4C28-AF1C-FD8326F4D58A}) (Version: 64.40.21578 - Microsoft Corporation) Hidden Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 130.0.2849.56 - Microsoft Corporation) Microsoft Teams Meeting Add-in for Microsoft Office (HKLM\...\{A7AB73A3-CB10-4AA5-9D38-6AEFFBDE4C91}) (Version: 1.24.25503 - Microsoft) Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.38.33135 (HKLM-x32\...\{c649ede4-f16a-4486-a117-dcc2f2a35165}) (Version: 14.38.33135.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.32.31332 (HKLM-x32\...\{a98dc6ff-d360-4878-9f0a-915eba86eaf3}) (Version: 14.32.31332.0 - Microsoft Corporation) Microsoft Visual C++ 2022 X64 Additional Runtime - 14.38.33135 (HKLM\...\{19AFE054-CA83-45D5-A9DB-4108EF4BD391}) (Version: 14.38.33135 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.38.33135 (HKLM\...\{AA0C8AB5-7297-4D46-A0D9-08096FE59E46}) (Version: 14.38.33135 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X86 Additional Runtime - 14.32.31332 (HKLM-x32\...\{8972AC25-452E-4FFE-945A-EB9E28C20322}) (Version: 14.32.31332 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.32.31332 (HKLM-x32\...\{AEAA18F7-9C96-4A43-BC07-8B88A4913EEB}) (Version: 14.32.31332 - Microsoft Corporation) Hidden Microsoft Windows Desktop Runtime - 6.0.35 (x64) (HKLM\...\{8AA69679-CCD6-42D9-BCDA-99BE386D57B7}) (Version: 48.140.21525 - Microsoft Corporation) Hidden Microsoft Windows Desktop Runtime - 6.0.35 (x64) (HKLM-x32\...\{ed3bbfea-cc20-425e-b845-bc087d129675}) (Version: 6.0.35.34113 - Microsoft Corporation) Microsoft Windows Desktop Runtime - 8.0.10 (x64) (HKLM\...\{614C9740-3FD4-4788-A277-7C35CB4C323B}) (Version: 64.40.21605 - Microsoft Corporation) Hidden Microsoft Windows Desktop Runtime - 8.0.10 (x64) (HKLM-x32\...\{d990096d-6282-42c5-8d16-71272c5be274}) (Version: 8.0.10.34118 - Microsoft Corporation) Mozilla Firefox (x64 pl) (HKLM\...\Mozilla Firefox 131.0.3 (x64 pl)) (Version: 131.0.3 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 107.0 - Mozilla) MyPhoneExplorer (HKLM-x32\...\MPE) (Version: 2.1 - F.J. Wechselberger) Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 8.6.2 - Notepad++ Team) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) OptaneDowngradeGuard (HKLM\...\{86B0E6C1-32E0-42CC-BC4F-BF3C0730CECB}) (Version: 18.0.0.0 - Intel Corporation) Hidden qBittorrent (HKLM-x32\...\qBittorrent) (Version: 4.6.6 - The qBittorrent project) Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9244.1 - Realtek Semiconductor Corp.) Registry Workshop (HKLM\...\Registry Workshop) (Version: 5.1.0 - TorchSoft) ROGFontInstaller (HKLM\...\{605108C1-153E-43D8-8A67-7CE326B00ECA}) (Version: 1.0.0 - ASUS) RstDowngradeGuard (HKLM\...\{13C2A26E-7AD4-4D82-BB4F-DEA6E871B958}) (Version: 18.0.0.0 - Intel Corporation) Hidden Sapphire TRIXX (HKLM-x32\...\{49272457-BEDE-4A3A-808F-7BBD4840E85B}_is1) (Version: 1.0.0 - Sapphire) Service Pack 2 for SQL Server 2008 R2 (KB2630458) (64-bit) (HKLM\...\KB2630458) (Version: 10.52.4000.0 - Microsoft Corporation) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Stellarium 24.1 (HKLM\...\Stellarium_is1) (Version: 24.1.0 - Stellarium team) Środowisko uruchomieniowe Microsoft Edge WebView2 (HKLM-x32\...\Microsoft EdgeWebView) (Version: 130.0.2849.52 - Microsoft Corporation) TechPowerUp GPU-Z (HKLM-x32\...\{8B0F211E-5846-4FB2-B0B9-4EB31546FDF9}}_is1) (Version: 2.57.0 - TechPowerUp) Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 11.00 - Ghisler Software GmbH) UE4 Prerequisites (x64) (HKLM\...\{F9EC45F9-074A-48BF-92E9-A8CADD56F693}) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden UE4 Prerequisites (x64) (HKLM-x32\...\{4e242cc8-5e3c-4b08-9d55-dbc62ddd1208}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden ViGEm Bus Driver (HKLM\...\{966606F3-2745-49E9-BF15-5C3EAA4E9077}) (Version: 1.22.0 - Nefarius Software Solutions e.U.) VLC media player (HKLM\...\VLC media player) (Version: 3.0.20 - VideoLAN) Packages: ========= @{MicrosoftWindows.Client.AIX_1000.26100.29.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.Client.AIX/resources/ProductPkgDisplayName} -> C:\Windows\SystemApps\MicrosoftWindows.Client.AIX_cw5n1h2txyewy [2024-10-25] (Microsoft Windows) @{MicrosoftWindows.Client.AIX_1000.26100.41.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.Client.AIX/resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.AIX_cw5n1h2txyewy [2024-10-25] (Microsoft Windows) @{MicrosoftWindows.Client.Photon_1000.26100.4.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.Client.Photon/resources/ProductPkgDisplayName} -> C:\Windows\SystemApps\MicrosoftWindows.Client.Photon_cw5n1h2txyewy [2024-10-25] (Microsoft Windows) @{MicrosoftWindows.LKG.AccountsService_1000.22621.4317.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.LKG.AccountsService/resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\LKG\MicrosoftWindows.LKG.AccountsService_cw5n1h2txyewy [2024-10-25] (Microsoft Windows) @{MicrosoftWindows.LKG.AccountsService_1000.26100.1742.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.LKG.AccountsService/resources/ProductPkgDisplayName} -> C:\Windows\SystemApps\LKG\MicrosoftWindows.LKG.AccountsService_cw5n1h2txyewy [2024-10-25] (Microsoft Windows) @{MicrosoftWindows.LKG.AccountsService_1000.26100.2033.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.LKG.AccountsService/resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\LKG\MicrosoftWindows.LKG.AccountsService_cw5n1h2txyewy [2024-10-25] (Microsoft Windows) @{MicrosoftWindows.LKG.IrisService_1000.22621.4317.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.LKG.IrisService/resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\LKG\MicrosoftWindows.LKG.IrisService_cw5n1h2txyewy [2024-10-25] (Microsoft Windows) @{MicrosoftWindows.LKG.IrisService_1000.26100.1742.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.LKG.IrisService/resources/ProductPkgDisplayName} -> C:\Windows\SystemApps\LKG\MicrosoftWindows.LKG.IrisService_cw5n1h2txyewy [2024-10-25] (Microsoft Windows) @{MicrosoftWindows.LKG.IrisService_1000.26100.2033.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.LKG.IrisService/resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\LKG\MicrosoftWindows.LKG.IrisService_cw5n1h2txyewy [2024-10-25] (Microsoft Windows) @{MicrosoftWindows.LKG.TwinSxS_1000.26100.2033.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.LKG.TwinSxS/resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\LKG\MicrosoftWindows.LKG.TwinSxS_cw5n1h2txyewy [2024-10-25] (Microsoft Windows) Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2024-06-16] () AMD Radeon Software -> C:\Program Files\AMD\CNext\CNext [2024-10-18] (Advanced Micro Devices Inc.) Dev Home (Preview) -> C:\Program Files\WindowsApps\Microsoft.Windows.DevHome_0.1801.640.0_x64__8wekyb3d8bbwe [2024-10-10] (Microsoft Corporation) [Startup Task] Microsoft.ApplicationCompatibilityEnhancements -> C:\Program Files\WindowsApps\Microsoft.ApplicationCompatibilityEnhancements_1.2405.3.0_x64__8wekyb3d8bbwe [2024-10-11] (Microsoft Corporation) Microsoft.AV1VideoExtension -> C:\Program Files\WindowsApps\Microsoft.AV1VideoExtension_1.2.2331.0_x64__8wekyb3d8bbwe [2024-09-11] (Microsoft Corporation) Microsoft.AVCEncoderVideoExtension -> C:\Program Files\WindowsApps\Microsoft.AVCEncoderVideoExtension_1.1.3.0_x64__8wekyb3d8bbwe [2024-10-17] (Microsoft Corporation) Microsoft.BingSearch -> C:\Program Files\WindowsApps\Microsoft.BingSearch_1.1.0.0_x64__8wekyb3d8bbwe [2024-10-25] (Microsoft Corporation) Microsoft.MPEG2VideoExtension -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.61931.0_x64__8wekyb3d8bbwe [2024-10-10] (Microsoft Corporation) Microsoft.StartExperiencesApp -> C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.1.181.0_x64__8wekyb3d8bbwe [2024-10-27] (Microsoft Corporation) [Startup Task] MicrosoftWindows.CrossDevice -> C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24092.24.0_x64__cw5n1h2txyewy [2024-10-22] (Microsoft Windows) [Startup Task] Notepad++ -> C:\Program Files\Notepad++\contextMenu [2024-01-28] (Notepad++) Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.29.256.0_x64__dt26b99r8h8gj [2023-01-29] (Realtek Semiconductor Corp) Sonic Radar 3 -> C:\Program Files\WindowsApps\A-Volute.28054DF1F58B4_3.16.21.0_x64__w2gh52qy24etm [2024-07-21] (A-Volute) Sonic Studio 3 -> C:\Program Files\WindowsApps\A-Volute.SonicStudio3_3.16.21.0_x64__w2gh52qy24etm [2024-07-21] (A-Volute) Widgets Platform Runtime -> C:\Program Files\WindowsApps\Microsoft.WidgetsPlatformRuntime_1.4.0.0_x64__8wekyb3d8bbwe [2024-09-20] (Microsoft Corporation) Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\LKG\MicrosoftWindows.LKG.AccountsService_cw5n1h2txyewy [2024-10-25] (Microsoft Windows) Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\LKG\MicrosoftWindows.LKG.DesktopSpotlight_cw5n1h2txyewy [2024-10-25] (Microsoft Windows) Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\LKG\MicrosoftWindows.LKG.IrisService_cw5n1h2txyewy [2024-10-25] (Microsoft Windows) Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\LKG\MicrosoftWindows.LKG.RulesEngine_cw5n1h2txyewy [2024-10-25] (Microsoft Windows) Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\LKG\MicrosoftWindows.LKG.SpeechRuntime_cw5n1h2txyewy [2024-10-25] (Microsoft Windows) Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\LKG\MicrosoftWindows.LKG.TwinSxS_cw5n1h2txyewy [2024-10-25] (Microsoft Windows) Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.AIX_cw5n1h2txyewy [2024-10-25] (Microsoft Windows) Windows Feature Experience Pack -> C:\Windows\SystemApps\MicrosoftWindows.Client.OOBE_cw5n1h2txyewy [2024-10-25] (Microsoft Windows) Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.Photon_cw5n1h2txyewy [2024-10-25] (Microsoft Windows) Windows HDR Calibration -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WindowsHDRCalibration_1.0.152.0_x64__8wekyb3d8bbwe [2024-07-21] (Microsoft Corp.) Zdjęcia -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2024.11070.31001.0_x64__8wekyb3d8bbwe [2024-08-09] (Microsoft Corporation) [Startup Task] ==================== Niestandardowe rejestracje CLSID (filtrowane): ============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-395480095-3073642453-2710149471-1001_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe) CustomCLSID: HKU\S-1-5-21-395480095-3073642453-2710149471-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\darek\AppData\Local\Microsoft\TeamsMeetingAdd-in\1.24.25503\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-395480095-3073642453-2710149471-1001_Classes\CLSID\{23B3E3D8-C162-4A8B-AB0C-0905DCB1DF19}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-395480095-3073642453-2710149471-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe) CustomCLSID: HKU\S-1-5-21-395480095-3073642453-2710149471-1001_Classes\CLSID\{5405618e-4c42-4fb9-a80a-d24d89911296}\localserver32 -> "C:\Users\darek\AppData\Local\NhNotifSys\sonicstudio\asusns.exe" -ToastActivated /app sonicstudio => Brak pliku CustomCLSID: HKU\S-1-5-21-395480095-3073642453-2710149471-1001_Classes\CLSID\{a3d7e084-b0df-4d14-8e0a-27a572a6332c}\localserver32 -> "C:\Program Files\Sony\Imaging Edge Desktop\ied.exe" -ToastActivated => Brak pliku CustomCLSID: HKU\S-1-5-21-395480095-3073642453-2710149471-1001_Classes\CLSID\{F9590F37-5F0E-49E9-B63F-701BAEF6E23E}\InprocServer32 -> C:\Users\darek\AppData\Local\BraveSoftware\Update\1.3.361.137\psuser_64.dll => Brak pliku ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2022-11-20] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2022-11-20] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2022-11-20] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Brak pliku ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> Brak pliku ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> Brak pliku ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Brak pliku ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Brak pliku ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Brak pliku ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> Brak pliku ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Brak pliku ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> Brak pliku ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> Brak pliku ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Brak pliku ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Brak pliku ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Brak pliku ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> Brak pliku ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2023-06-20] (Igor Pavlov) [Brak podpisu cyfrowego] ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2022-11-20] (Adobe Inc. -> ) ContextMenuHandlers1-x32: [MyPhoneExplorer] -> {A372C6DF-7A85-41B1-B3B0-D1E24073DCBF} => C:\Program Files (x86)\MyPhoneExplorer\DLL\ShellMgr.dll [2010-03-30] (F.J. Wechselberger) [Brak podpisu cyfrowego] ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2023-06-20] (Igor Pavlov) [Brak podpisu cyfrowego] ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2023-06-20] (Igor Pavlov) [Brak podpisu cyfrowego] ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2022-11-20] (Adobe Inc. -> ) ==================== Codecs (filtrowane) ==================== ==================== Skróty & WMI ======================== ==================== Załadowane moduły (filtrowane) ============= 2024-04-01 12:50 - 2015-03-17 07:51 - 000375296 _____ (CANON INC.) [Brak podpisu cyfrowego] C:\WINDOWS\System32\CNMN6PPM.DLL 2023-12-03 17:49 - 2023-07-20 05:00 - 000409088 _____ (CANON INC.) [Brak podpisu cyfrowego] C:\WINDOWS\System32\CNMXLMCT.DLL ==================== Alternate Data Streams (filtrowane) ======== (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\ProgramData\TEMP:4FC01C57 [140] ==================== Tryb awaryjny (filtrowane) ================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\cdd.dll => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{13cfe1b1-6b17-424c-ac3f-16ace8733898} => ""="I3C devices" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\cdd.dll => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ExecutionContext.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\netadaptercx.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WinHttpAutoProxySvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{13cfe1b1-6b17-424c-ac3f-16ace8733898} => ""="I3C devices" ==================== Powiązania plików (filtrowane) ================= ==================== Internet Explorer (filtrowane) ============= ==================== Hosts - zawartość: ========================= (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2022-05-07 06:24 - 2023-07-30 14:02 - 000002624 _____ C:\WINDOWS\system32\drivers\etc\hosts 109.94.209.70 fitgirlrepacks.in # Fake FitGirl site 109.94.209.70 www.fitgirlrepacks.in # Fake FitGirl site 109.94.209.70 fitgirlrepacks.co # Fake FitGirl site 109.94.209.70 fitgirl-repacks.cc # Fake FitGirl site 109.94.209.70 fitgirl-repacks.to # Fake FitGirl site 109.94.209.70 fitgirl-repack.com # Fake FitGirl site 109.94.209.70 fitgirl-repacks.website # Fake FitGirl site 109.94.209.70 www.fitgirlrepacks.co # Fake FitGirl site 109.94.209.70 www.fitgirl-repacks.cc # Fake FitGirl site 109.94.209.70 www.fitgirl-repacks.to # Fake FitGirl site 109.94.209.70 www.fitgirl-repack.com # Fake FitGirl site 109.94.209.70 www.fitgirl-repacks.website # Fake FitGirl site 109.94.209.70 ww9.fitgirl-repacks.xyz # Fake FitGirl site 109.94.209.70 *.fitgirl-repacks.xyz # Fake FitGirl site 109.94.209.70 fitgirl-repacks.xyz # Fake FitGirl site 109.94.209.70 fitgirl-repack.net # Fake FitGirl site 109.94.209.70 www.fitgirl-repack.net # Fake FitGirl site 109.94.209.70 fitgirlpack.site # Fake FitGirl site 109.94.209.70 www.fitgirlpack.site # Fake FitGirl site 109.94.209.70 fitgirl-repack.org # Fake FitGirl site 109.94.209.70 www.fitgirl-repack.org # Fake FitGirl site 109.94.209.70 fitgirlrepacks.pro # Fake FitGirl site 109.94.209.70 www.fitgirlrepacks.pro # Fake FitGirl site 109.94.209.70 fitgirlrepack.games # Fake FitGirl site 109.94.209.70 www.fitgirlrepack.games # Fake FitGirl site 2023-02-14 14:23 - 2024-10-27 08:30 - 000000435 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics 172.29.64.1 Darek.mshome.net # 2029 10 5 26 7 30 42 947 ==================== Inne obszary =========================== (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-395480095-3073642453-2710149471-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Kolizja\kolizja.jpg DNS Servers: 192.168.100.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja włączona] Network Binding: ============= Ethernet 2: Marvell 10G Ethernet connection -> aqnic650.sys Ethernet: Intel(R) Ethernet Controller (2) I225-V -> e2fn.sys vEthernet (Default Switch): Hyper-V Virtual Ethernet Adapter -> Wi-Fi: Intel(R) Wi-Fi 6 AX201 160MHz -> Netwtw10.sys Połączenie sieciowe Bluetooth: Bluetooth Device (Personal Area Network) -> bthpan.sys vms_vsf: Hyper-V Virtual Switch Extension Filter ms_l1vhlwf: Nested Network Virtualization vms_vsp: Hyper-V Virtual Switch Extension Protocol ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Załączenie wejścia w fixlist spowoduje jego usunięcie.) HKLM\...\StartupApproved\Run32: => "Adobe CCXProcess" HKU\S-1-5-21-395480095-3073642453-2710149471-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_6F32EBF149EC79040D47D212F0DF0D3E" HKU\S-1-5-21-395480095-3073642453-2710149471-1001\...\StartupApproved\Run: => "Steam" ==================== Reguły Zapory systemu Windows (filtrowane) ================ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{AC6B97FA-457C-44C2-9312-89EC71C993E0}] => (Allow) C:\Program Files\IDA Freeware 8.4\ida64.exe => Brak pliku FirewallRules: [{31BA62C8-8717-4401-80BE-7FB368C563BF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rise of the Tomb Raider\ROTTR.exe (Square Enix LTD -> Eidos Inc.) FirewallRules: [{313B7DE0-E475-4C4A-B927-D6411C349F16}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rise of the Tomb Raider\ROTTR.exe (Square Enix LTD -> Eidos Inc.) FirewallRules: [UDP Query User{32676770-2399-4DAC-9D72-2AFE7133E5E0}C:\users\darek\appdata\local\dualsensex\app-1.4.9\dualsensex.exe] => (Allow) C:\users\darek\appdata\local\dualsensex\app-1.4.9\dualsensex.exe () [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{A35E3497-A51C-43CC-9063-53D87AACE34D}C:\users\darek\appdata\local\dualsensex\app-1.4.9\dualsensex.exe] => (Allow) C:\users\darek\appdata\local\dualsensex\app-1.4.9\dualsensex.exe () [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{C4E04CBF-BF5B-435B-B1A6-D745084339C9}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [TCP Query User{97AEF7B8-8535-444F-8D0A-23265217B8E7}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{78C75C9E-EB2A-43C9-BEB7-6276D889127B}] => (Allow) C:\Program Files (x86)\MyPhoneExplorer\MyPhoneExplorer.exe (Franz Josef Wechselberger -> F.J. Wechselberger) FirewallRules: [{50D6810E-5F4A-4EF0-AD67-1D199AFD62F7}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{3887A1F8-BC6E-4523-832E-1805F40056D3}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{8B6F1E46-46C5-45B2-9BC6-282504D657CA}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_22287.702.1670.9453_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{0312CAC4-11CC-4239-8AFD-90882BFFF844}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_22287.702.1670.9453_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{76B1574C-60CD-48CD-88B4-3E2AEC537649}C:\program files\eclipse adoptium\jdk-17.0.7.7-hotspot\bin\javaw.exe] => (Allow) C:\program files\eclipse adoptium\jdk-17.0.7.7-hotspot\bin\javaw.exe => Brak pliku FirewallRules: [UDP Query User{3401091B-7E86-4CFC-8EC1-F6DA36918CA8}C:\program files\eclipse adoptium\jdk-17.0.7.7-hotspot\bin\javaw.exe] => (Allow) C:\program files\eclipse adoptium\jdk-17.0.7.7-hotspot\bin\javaw.exe => Brak pliku FirewallRules: [TCP Query User{863AA70B-0758-46C7-8FE5-3B782EF58646}C:\games\uncharted - legacy of thieves collection\u4.exe] => (Block) C:\games\uncharted - legacy of thieves collection\u4.exe => Brak pliku FirewallRules: [UDP Query User{FD3DB350-D8BC-44C5-BDBC-26BF8619C52F}C:\games\uncharted - legacy of thieves collection\u4.exe] => (Block) C:\games\uncharted - legacy of thieves collection\u4.exe => Brak pliku FirewallRules: [{AE5A29E3-ECD3-40D0-8BE5-A2F32EDF7A5C}] => (Allow) C:\Program Files\Unity Hub\Unity Hub.exe => Brak pliku FirewallRules: [TCP Query User{AEFD3238-D95B-4001-936F-AB5313A651F5}C:\program files\unity hub\unity hub.exe] => (Allow) C:\program files\unity hub\unity hub.exe => Brak pliku FirewallRules: [UDP Query User{3D714F90-01AC-4919-8B15-052C84FDF5D5}C:\program files\unity hub\unity hub.exe] => (Allow) C:\program files\unity hub\unity hub.exe => Brak pliku FirewallRules: [{C4AD8B70-22C7-4BE8-9ADD-5AC18129E525}] => (Allow) C:\Users\darek\AppData\Local\Packages\B9ECED6F.ArmouryCrate_qmba6cd70vzyy\LocalState\GridUpdateFile\ASUSGCDriverUpdateClient.exe => Brak pliku FirewallRules: [{4220F9C7-E010-4957-AC70-F9217C358BD0}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [Brak podpisu cyfrowego] FirewallRules: [{513D5FBD-80CE-4E50-A22E-B1C67138ED08}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [Brak podpisu cyfrowego] FirewallRules: [{E84B9F58-E165-449B-8740-656B25C1F302}] => (Allow) C:\Program Files (x86)\MyPhoneExplorer\MyPhoneExplorer.exe (Franz Josef Wechselberger -> F.J. Wechselberger) FirewallRules: [TCP Query User{9FD8A90D-826F-4D58-A7EF-813A4A2372E6}C:\games\uncharted - legacy of thieves collection\tll.exe] => (Block) C:\games\uncharted - legacy of thieves collection\tll.exe => Brak pliku FirewallRules: [UDP Query User{E0E3792A-9BCF-4E62-BBF6-B7E681D50FFD}C:\games\uncharted - legacy of thieves collection\tll.exe] => (Block) C:\games\uncharted - legacy of thieves collection\tll.exe => Brak pliku FirewallRules: [{BBE2156A-1F00-4D1F-8848-AE717CA57220}] => (Allow) C:\Ross-Tech\VCDS\VCDS.EXE => Brak pliku FirewallRules: [{69F027C2-F5B0-4A0A-9B7A-7B4A71A23891}] => (Allow) LPort=135 FirewallRules: [{2C207B55-6AC4-4B2F-926A-E623725353C8}] => (Allow) C:\ElsaWin\bin\ElsaWin.exe => Brak pliku FirewallRules: [{F4336566-F3A5-4C85-8C98-F19CA7E6FC12}] => (Allow) C:\ElsaWin\bin\ElsaWin.exe => Brak pliku FirewallRules: [TCP Query User{D8963B70-5CB7-4016-AD7B-892912954BC6}C:\program files\java\jdk-22\bin\javaw.exe] => (Block) C:\program files\java\jdk-22\bin\javaw.exe => Brak pliku FirewallRules: [UDP Query User{9531B022-2243-463D-8227-626B65E2FDE1}C:\program files\java\jdk-22\bin\javaw.exe] => (Block) C:\program files\java\jdk-22\bin\javaw.exe => Brak pliku FirewallRules: [{4F6FF3C2-1BA5-4537-B385-71FAD0C8B55E}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [Brak podpisu cyfrowego] FirewallRules: [{BF8CBCDB-DBF9-4E0C-AE51-BDF3FD4FA9E6}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [Brak podpisu cyfrowego] FirewallRules: [{3CEAAC5B-2C0A-405D-8386-1DA82B08555F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{EE36B783-EC1C-4CFA-BF82-D3E662ACEFF2}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{9D9A8C1E-EFF4-4DDB-8E53-517A859D6E44}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{00633216-89A9-47F3-A503-DA172AB1A0F8}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{195CDBFB-C662-4CBC-9859-CFAF33E0146A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Shadow of the Tomb Raider\SOTTR.exe (Crystal Dynamics, Inc -> Eidos Inc.) FirewallRules: [{78A1C35A-6108-4F06-B079-C7B2CA088848}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Shadow of the Tomb Raider\SOTTR.exe (Crystal Dynamics, Inc -> Eidos Inc.) FirewallRules: [{B93F53DE-726C-4167-B5C0-017995C39E46}] => (Allow) C:\Program Files\WindowsApps\MSTeams_24243.1309.3132.617_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{A1CB4999-6DF2-4EFA-ABD5-E3C0ECD296EB}] => (Allow) C:\Program Files\WindowsApps\MSTeams_24243.1309.3132.617_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{2D2E1378-1ABE-4768-B4EB-700888E7010B}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.52\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) ==================== Punkty Przywracania systemu ========================= 23-10-2024 20:11:27 Windows Update 23-10-2024 20:11:28 Windows Update 23-10-2024 20:11:28 Windows Update 25-10-2024 04:09:35 Instalator modułów systemu Windows ==================== Wadliwe urządzenia w Menedżerze urządzeń ============ ==================== Błędy w Dzienniku zdarzeń: ======================== Dziennik Aplikacja: ================== Error: (10/26/2024 11:57:52 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas wywoływania procedury CoCreateInstance. hr = 0x8007045b, Trwa proces zamykania systemu.. Error: (10/26/2024 11:57:52 PM) (Source: VSS) (EventID: 13) (User: ) Description: Informacje Usługi kopiowania woluminów w tle: nie można uruchomić serwera usługi COM z identyfikatorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} i nazwą CEventSystem. [0x8007045b, Trwa proces zamykania systemu.] Error: (10/26/2024 12:00:50 AM) (Source: VSS) (EventID: 13) (User: ) Description: Informacje Usługi kopiowania woluminów w tle: nie można uruchomić serwera usługi COM z identyfikatorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} i nazwą CEventSystem. [0x8007045b, Trwa proces zamykania systemu.] Error: (10/25/2024 08:28:14 PM) (Source: Application Error) (EventID: 1000) (User: ZARZĄDZANIE NT) Description: Nazwa aplikacji powodującej błąd: DtsApo4Service.exe, wersja: 1.5.3.0, sygnatura czasowa: 0x5f0d2715 Nazwa modułu powodującego błąd: DtsApo4Service.exe, wersja: 1.5.3.0, sygnatura czasowa: 0x5f0d2715 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x000000000000bdc2 Identyfikator procesu błędu: 0x15b0 Czas uruchomienia aplikacji powodującej błąd: 0x1db270ada427b72 Faulting ścieżka aplikacji: C:\WINDOWS\System32\DTS\PC\APO4x\DtsApo4Service.exe Faulting ścieżka modułu: C:\WINDOWS\System32\DTS\PC\APO4x\DtsApo4Service.exe Report Id: 588aad56-a57d-4972-9658-69031ba00372 Faulting pełna nazwa pakietu: Faulting identyfikator aplikacji względnej dla pakietu: Error: (10/25/2024 05:38:49 PM) (Source: Application Error) (EventID: 1000) (User: ZARZĄDZANIE NT) Description: Nazwa aplikacji powodującej błąd: DtsApo4Service.exe, wersja: 1.5.3.0, sygnatura czasowa: 0x5f0d2715 Nazwa modułu powodującego błąd: DtsApo4Service.exe, wersja: 1.5.3.0, sygnatura czasowa: 0x5f0d2715 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x000000000000bdc2 Identyfikator procesu błędu: 0x1340 Czas uruchomienia aplikacji powodującej błąd: 0x1db26fbb742710a Faulting ścieżka aplikacji: C:\WINDOWS\System32\DTS\PC\APO4x\DtsApo4Service.exe Faulting ścieżka modułu: C:\WINDOWS\System32\DTS\PC\APO4x\DtsApo4Service.exe Report Id: 310ec766-9ab6-43d5-8be7-c1dab69a11ce Faulting pełna nazwa pakietu: Faulting identyfikator aplikacji względnej dla pakietu: Error: (10/25/2024 05:33:37 PM) (Source: Application Error) (EventID: 1000) (User: ZARZĄDZANIE NT) Description: Nazwa aplikacji powodującej błąd: DtsApo4Service.exe, wersja: 1.5.3.0, sygnatura czasowa: 0x5f0d2715 Nazwa modułu powodującego błąd: DtsApo4Service.exe, wersja: 1.5.3.0, sygnatura czasowa: 0x5f0d2715 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x000000000000bdc2 Identyfikator procesu błędu: 0x15f0 Czas uruchomienia aplikacji powodującej błąd: 0x1db26dafa1bca28 Faulting ścieżka aplikacji: C:\WINDOWS\System32\DTS\PC\APO4x\DtsApo4Service.exe Faulting ścieżka modułu: C:\WINDOWS\System32\DTS\PC\APO4x\DtsApo4Service.exe Report Id: cb9539a4-2fbd-4ab2-90e0-0162dbe12037 Faulting pełna nazwa pakietu: Faulting identyfikator aplikacji względnej dla pakietu: Error: (10/25/2024 04:15:46 AM) (Source: Application Error) (EventID: 1000) (User: ZARZĄDZANIE NT) Description: Nazwa aplikacji powodującej błąd: DtsApo4Service.exe, wersja: 1.5.3.0, sygnatura czasowa: 0x5f0d2715 Nazwa modułu powodującego błąd: DtsApo4Service.exe, wersja: 1.5.3.0, sygnatura czasowa: 0x5f0d2715 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x000000000000bdc2 Identyfikator procesu błędu: 0x15e4 Czas uruchomienia aplikacji powodującej błąd: 0x1db26845b2e7af3 Faulting ścieżka aplikacji: C:\WINDOWS\System32\DTS\PC\APO4x\DtsApo4Service.exe Faulting ścieżka modułu: C:\WINDOWS\System32\DTS\PC\APO4x\DtsApo4Service.exe Report Id: 0021489e-dd93-42ac-834e-a6baebdca3f5 Faulting pełna nazwa pakietu: Faulting identyfikator aplikacji względnej dla pakietu: Error: (10/24/2024 09:08:03 PM) (Source: Application Error) (EventID: 1000) (User: ZARZĄDZANIE NT) Description: Nazwa aplikacji powodującej błąd: DtsApo4Service.exe, wersja: 1.5.3.0, sygnatura czasowa: 0x5f0d2715 Nazwa modułu powodującego błąd: DtsApo4Service.exe, wersja: 1.5.3.0, sygnatura czasowa: 0x5f0d2715 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x000000000000bdc2 Identyfikator procesu błędu: 0x15c8 Czas uruchomienia aplikacji powodującej błąd: 0x1db26139b7ea0c3 Faulting ścieżka aplikacji: C:\WINDOWS\System32\DTS\PC\APO4x\DtsApo4Service.exe Faulting ścieżka modułu: C:\WINDOWS\System32\DTS\PC\APO4x\DtsApo4Service.exe Report Id: 92bdacd7-e87c-4c01-b5da-489b495286e6 Faulting pełna nazwa pakietu: Faulting identyfikator aplikacji względnej dla pakietu: Dziennik System: ============= Error: (10/27/2024 08:30:35 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi l1vhlwf z powodu następującego błędu: Funkcja hypervisor nie jest dostępna dla użytkownika. Error: (10/26/2024 11:57:52 PM) (Source: Microsoft-Windows-DeviceAssociationService) (EventID: 3503) (User: ZARZĄDZANIE NT) Description: Usługa kojarzenia urządzeń wykryła błąd odnajdywania punktów końcowych. Error: (10/26/2024 11:57:52 PM) (Source: Microsoft-Windows-DeviceAssociationService) (EventID: 3503) (User: ZARZĄDZANIE NT) Description: Usługa kojarzenia urządzeń wykryła błąd odnajdywania punktów końcowych. Error: (10/26/2024 11:34:16 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi l1vhlwf z powodu następującego błędu: Funkcja hypervisor nie jest dostępna dla użytkownika. Error: (10/26/2024 04:53:03 PM) (Source: Microsoft-Windows-DeviceAssociationService) (EventID: 3503) (User: ZARZĄDZANIE NT) Description: Usługa kojarzenia urządzeń wykryła błąd odnajdywania punktów końcowych. Error: (10/26/2024 04:53:03 PM) (Source: Microsoft-Windows-DeviceAssociationService) (EventID: 3503) (User: ZARZĄDZANIE NT) Description: Usługa kojarzenia urządzeń wykryła błąd odnajdywania punktów końcowych. Error: (10/26/2024 03:00:31 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi l1vhlwf z powodu następującego błędu: Funkcja hypervisor nie jest dostępna dla użytkownika. Error: (10/26/2024 01:06:32 PM) (Source: Microsoft-Windows-DeviceAssociationService) (EventID: 3503) (User: ZARZĄDZANIE NT) Description: Usługa kojarzenia urządzeń wykryła błąd odnajdywania punktów końcowych. Windows Defender: ================ Date: 2024-10-27 00:57:41 Description: Skanowanie produktu Program antywirusowy Microsoft Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania: {03805DCD-11A3-4008-8C1E-2D8F0E5E18CD} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Szybkie skanowanie Użytkownik: ZARZĄDZANIE NT\SYSTEM Date: 2024-10-25 22:38:59 Description: Skanowanie produktu Program antywirusowy Microsoft Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania: {EDDC93FC-7A19-4AC6-8A66-38EACD153581} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Szybkie skanowanie Użytkownik: ZARZĄDZANIE NT\SYSTEM Date: 2024-10-24 21:58:36 Description: Skanowanie produktu Program antywirusowy Microsoft Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania: {6807337C-7484-47B3-8BAC-3E4C7EC63217} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Szybkie skanowanie Użytkownik: ZARZĄDZANIE NT\SYSTEM Date: 2024-10-22 15:13:33 Description: Skanowanie produktu Program antywirusowy Microsoft Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania: {6C34F67F-BAE5-45AC-B9BB-D5F47217000D} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Szybkie skanowanie Użytkownik: ZARZĄDZANIE NT\SYSTEM Date: 2024-10-17 22:05:18 Description: Skanowanie produktu Program antywirusowy Microsoft Defender zostało zatrzymane przed ukończeniem. Identyfikator skanowania: {425A712D-19D9-4D49-89A8-DB1F617FD9C3} Typ skanowania: Narzędzia chroniące przed złośliwym oprogramowaniem Parametry skanowania: Szybkie skanowanie Użytkownik: ZARZĄDZANIE NT\SYSTEM  ==================== Statystyki pamięci =========================== BIOS: American Megatrends Inc. 3001 02/16/2024 Płyta główna: ASUSTeK COMPUTER INC. ROG MAXIMUS XII FORMULA Procesor: Intel(R) Core(TM) i9-10900K CPU @ 3.70GHz Procent pamięci w użyciu: 23% Całkowita pamięć fizyczna: 32644.55 MB Dostępna pamięć fizyczna: 25065.55 MB Całkowita pamięć wirtualna: 34692.55 MB Dostępna pamięć wirtualna: 22692.09 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:930.39 GB) (Free:777.69 GB) (Model: WD Blue SN570 1TB) NTFS Drive d: (Różne) (Fixed) (Total:200 GB) (Free:113.57 GB) (Model: WDC WD20EZRZ-22Z5HB0) NTFS Drive e: (Programy) (Fixed) (Total:100 GB) (Free:51.85 GB) (Model: WDC WD20EZRZ-22Z5HB0) NTFS Drive f: (Film_Muzyka) (Fixed) (Total:1000 GB) (Free:145.35 GB) (Model: WDC WD20EZRZ-22Z5HB0) NTFS Drive g: (Zdjęcia) (Fixed) (Total:563 GB) (Free:411.45 GB) (Model: WDC WD20EZRZ-22Z5HB0) NTFS \\?\Volume{84831e36-8093-44c9-b7cc-dce6cdbc961f}\ () (Fixed) (Total:1.01 GB) (Free:0.31 GB) NTFS \\?\Volume{c946ee97-80da-4ab2-82b9-400079d67ab9}\ () (Fixed) (Total:0.09 GB) (Free:0.06 GB) FAT32 ==================== MBR & Tablica partycji ==================== ========================================================== Disk: 0 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 1 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000) Partition: GPT. ==================== Koniec Addition.txt =======================