CreateRestorePoint:
CloseProcesses:
EmptyTemp:
HKLM\...\Run: [RtkAudUService] => "C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_85cff5320735903d\RtkAudUService64.exe" -background (Brak pliku)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Ograniczenia <==== UWAGA
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Ograniczenia <==== UWAGA
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Ograniczenia <==== UWAGA
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (Brak pliku)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Tcpip\..\Interfaces\{8d9137a6-32fc-4a25-a5d4-7f4ee4cf0447}: [DhcpNameServer] 192.168.0.1
S1 CTIIO; \??\C:\WINDOWS\system32\drivers\CtiIo64.sys [X]
S3 HWiNFO_171; \??\C:\Users\Tomas\AppData\Local\Temp\HWiNFO64A_171.SYS [X] <==== UWAGA
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
2023-03-02 16:38 - 2023-03-02 16:41 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
AlternateDataStreams: C:\ProgramData:err [1100]
AlternateDataStreams: C:\Users\All Users:err [1100]
AlternateDataStreams: C:\ProgramData\Dane aplikacji:err [1100]
AlternateDataStreams: C:\ProgramData\sldh.dat:136096DD5B [3434]
AlternateDataStreams: C:\ProgramData\sldh.dat:A18AAFCFAA [3434]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini:B1DA6C571C [3434]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini:41964AA945 [3434]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk:F20EF51E1F [3434]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [4056]
AlternateDataStreams: C:\Users\Public\Documents\sldh.dat:440BDC81C7 [3434]
AlternateDataStreams: C:\Users\Tomas\Dane aplikacji:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\Tomas\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
FirewallRules: [{CC0DEF34-6D8B-4BAD-9E22-99AB8167B6B1}] => (Allow) C:\asmdata\Servers\Server1\ShooterGame\Binaries\Win64\ShooterGameServer.exe => Brak pliku
FirewallRules: [{806765D2-5A89-48FB-A1EA-8E599FFE9F32}] => (Allow) C:\asmdata\Servers\Server1\ShooterGame\Binaries\Win64\ShooterGameServer.exe => Brak pliku
FirewallRules: [TCP Query User{556F4ED7-38EA-407D-AAB0-D5092E25BF50}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Block) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => Brak pliku
FirewallRules: [UDP Query User{738B53AC-8FDC-41F8-9A4F-E2928094BAB3}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Block) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => Brak pliku
FirewallRules: [TCP Query User{941F691C-1AF8-4DB1-936C-8A5CC89B9191}C:\users\tomas\appdata\local\faceit\app-1.31.7\faceit.exe] => (Allow) C:\users\tomas\appdata\local\faceit\app-1.31.7\faceit.exe => Brak pliku
FirewallRules: [UDP Query User{A141FFF9-1641-4647-AD9E-91ADEA4E41D4}C:\users\tomas\appdata\local\faceit\app-1.31.7\faceit.exe] => (Allow) C:\users\tomas\appdata\local\faceit\app-1.31.7\faceit.exe => Brak pliku
FirewallRules: [{5FF6A38E-4ED8-4609-B583-C3F5A96D7FA5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Black Squad\binaries\win64\BlackSquadGame.exe => Brak pliku
FirewallRules: [{E3AC4652-7184-48B1-B7F8-045A31FDE092}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Black Squad\binaries\win64\BlackSquadGame.exe => Brak pliku
FirewallRules: [{48032F5F-83D4-44A0-B700-6708FE54A48F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Cycle\Prospect\Binaries\Win64\Prospect-Win64-Shipping.exe => Brak pliku
FirewallRules: [{7DE4AA94-A9B4-441A-A820-F79F6FC3FB4D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Cycle\Prospect\Binaries\Win64\Prospect-Win64-Shipping.exe => Brak pliku
FirewallRules: [{745679A8-4179-4EBE-BA76-C97CFA305D40}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Cycle\Prospect\Binaries\Win64\Prospect-Win64-Shipping.exe => Brak pliku
FirewallRules: [{3A1E2DB4-7B54-426C-84AD-24B1758AA707}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Cycle\Prospect\Binaries\Win64\Prospect-Win64-Shipping.exe => Brak pliku
FirewallRules: [TCP Query User{36F83D1F-128D-4B58-81D7-5C9A903A4C3F}C:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) C:\program files\rockstar games\grand theft auto v\gta5.exe => Brak pliku
FirewallRules: [UDP Query User{8EDB1AB4-74C9-4DC5-9320-99A6687BC9FE}C:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) C:\program files\rockstar games\grand theft auto v\gta5.exe => Brak pliku
FirewallRules: [TCP Query User{BDDCAF8D-F907-454A-88E1-690CFFA9935A}C:\users\tomas\appdata\local\discord\app-1.0.9010\discord.exe] => (Allow) C:\users\tomas\appdata\local\discord\app-1.0.9010\discord.exe => Brak pliku
FirewallRules: [UDP Query User{449B9981-798C-4123-A279-64BC7789CDC4}C:\users\tomas\appdata\local\discord\app-1.0.9010\discord.exe] => (Allow) C:\users\tomas\appdata\local\discord\app-1.0.9010\discord.exe => Brak pliku
Removeproxy: