Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 12-06-2023 Uruchomiony przez grzeg (administrator) DESKTOP-34EKAJP (12-06-2023 13:40:14) Uruchomiony z L:\Tu pobieraj\FRST64.exe Załadowane profile: grzeg Platforma: Microsoft Windows 10 Home Wersja 21H2 19044.2965 (X64) Język: Polski (Polska) Domyślna przeglądarka: Chrome Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.133\BraveCrashHandler.exe (Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.133\BraveCrashHandler64.exe (C:\!!! TU INSTALUJ GRY\Wargaming.net\GameCenter\wgc.exe ->) (Wargaming Group Limited -> Wargaming.net) C:\!!! TU INSTALUJ GRY\Wargaming.net\GameCenter\dlls\wgc_renderer_host.exe <3> (C:\!!! TU INSTALUJ GRY\Wargaming.net\GameCenter\wgc.exe ->) (Wargaming.net Limited -> Wargaming.net) C:\!!! TU INSTALUJ GRY\Wargaming.net\GameCenter\wargamingerrormonitor.exe (C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe ->) (CHENGDU YIWO Tech Development Co., Ltd. -> ) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe (C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.96.0_x64__nzyj5cx40ttqa\iCloud\iCloudServices.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc) C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.96.0_x64__nzyj5cx40ttqa\iCloud\iCloudCKKS.exe (C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.96.0_x64__nzyj5cx40ttqa\iCloud\iCloudServices.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Microsoft Corporation) C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.96.0_x64__nzyj5cx40ttqa\iCloud\WebView2\msedgewebview2.exe <7> (C:\Users\grzeg\AppData\Roaming\uTorrent Web\utweb.exe ->) (Rainberry Inc -> BitTorrent Inc.) C:\Users\grzeg\AppData\Roaming\uTorrent Web\helper\helper.exe (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TrayProcess.exe (cmd.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.96.0_x64__nzyj5cx40ttqa\iCloud\iCloudChrome.exe (explorer.exe ->) () [Brak podpisu cyfrowego] C:\Program Files (x86)\Safe In Cloud\SafeInCloud.exe (explorer.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.96.0_x64__nzyj5cx40ttqa\iCloud\iCloudDrive.exe (explorer.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.96.0_x64__nzyj5cx40ttqa\iCloud\iCloudPhotos.exe (explorer.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.96.0_x64__nzyj5cx40ttqa\iCloud\iCloudServices.exe (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <58> (explorer.exe ->) (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\ReflectMonitor.exe (explorer.exe ->) (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\ReflectUI.exe (explorer.exe ->) (Rainberry Inc -> BitTorrent Inc.) C:\Users\grzeg\AppData\Roaming\uTorrent Web\utweb.exe (explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (explorer.exe ->) (Telegram FZ-LLC -> Telegram FZ-LLC) L:\! TU INSTALUJ !\Telegram Desktop\Telegram.exe (explorer.exe ->) (Wargaming Group Limited -> Wargaming.net) C:\!!! TU INSTALUJ GRY\Wargaming.net\GameCenter\wgc.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.242\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.242\GoogleCrashHandler64.exe (Kilonova LLC -> Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.5.0.7\Lightshot.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe (Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Brak podpisu cyfrowego] C:\Program Files (x86)\EaseUS\ENS\ensserver.exe (services.exe ->) (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe (services.exe ->) (FingerPower Digital Technology Ltd. -> ) C:\Users\grzeg\AppData\Local\Kingosoft\Kingo Root\update_27205\bin\KingoSoftService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2> (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe (services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\vds.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\NisSrv.exe (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_019f08f3b4bddfa3\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\MacriumService.exe (svchost.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.96.0_x64__nzyj5cx40ttqa\iCloud\APSDaemon.exe (svchost.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple, Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.96.0_x64__nzyj5cx40ttqa\iCloud\secd.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\SDXHelper.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2210.0.0_x64__8wekyb3d8bbwe\CalculatorApp.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.823.3261.0_x64__8wekyb3d8bbwe\GameBar.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.823.3261.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <4> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [464608 2014-09-08] (Samsung Electronics CO., LTD. -> ) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13662936 2013-10-24] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [Reflect UI] => C:\Program Files\Macrium\Common\ReflectUI.exe [9923856 2023-01-10] (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226728 2019-07-21] (Kilonova LLC -> ) HKLM-x32\...\Run: [windows_component] => C:\Program Files (x86)\windows_component\windows_component.exe [83290112 2020-01-26] (GitHub, Inc.) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [TrayProcess] => C:\Program Files (x86)\EaseUS\Todo Backup\bin\TrayProcess.exe [971496 2022-11-30] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\76.0.3.0\GoogleDriveFS.exe [145176856 2023-06-12] (Google LLC -> Google, Inc.) HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\76.0.3.0\GoogleDriveFS.exe [145176856 2023-06-12] (Google LLC -> Google, Inc.) HKU\S-1-5-21-3112216012-3349756465-3589550777-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2605944 2023-06-08] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-3112216012-3349756465-3589550777-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [49958368 2022-02-01] (Google LLC -> ) HKU\S-1-5-21-3112216012-3349756465-3589550777-1001\...\Run: [IDMan] => L:\! TU INSTALUJ !\Internet Download Manager\IDMan.exe [3985464 2016-11-11] (Tonec Inc.) [Brak podpisu cyfrowego] HKU\S-1-5-21-3112216012-3349756465-3589550777-1001\...\Run: [Napisy24.pl] => C:\Program Files (x86)\Napisy24\Napisy24.exe [7492840 2019-06-19] (ALLPlayer Group sp. z o.o. -> Napisy24.pl) HKU\S-1-5-21-3112216012-3349756465-3589550777-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [40454048 2023-05-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) HKU\S-1-5-21-3112216012-3349756465-3589550777-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32873544 2021-01-20] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-3112216012-3349756465-3589550777-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\76.0.3.0\GoogleDriveFS.exe [145176856 2023-06-12] (Google LLC -> Google, Inc.) HKU\S-1-5-21-3112216012-3349756465-3589550777-1001\...\Run: [SafeInCloud] => C:\Program Files (x86)\Safe In Cloud\SafeInCloud.exe [4605440 2022-10-10] () [Brak podpisu cyfrowego] HKU\S-1-5-21-3112216012-3349756465-3589550777-1001\...\Run: [Lync] => C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe [23979376 2023-06-07] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-3112216012-3349756465-3589550777-1001\...\Run: [Wargaming.net Game Center] => C:\!!! TU INSTALUJ GRY\Wargaming.net\GameCenter\wgc.exe [2192152 2023-06-06] (Wargaming Group Limited -> Wargaming.net) HKU\S-1-5-21-3112216012-3349756465-3589550777-1001\...\Run: [btweb] => "C:\Users\grzeg\AppData\Roaming\BitTorrent Web\btweb.exe" /MINIMIZED (Brak pliku) HKU\S-1-5-21-3112216012-3349756465-3589550777-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize (Brak pliku) <==== UWAGA HKU\S-1-5-21-3112216012-3349756465-3589550777-1001\...\Run: [MicrosoftEdgeAutoLaunch_B9EBB27DF024DCD190DA9B10443EB315] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4113872 2023-06-08] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-3112216012-3349756465-3589550777-1001\...\Run: [utweb] => C:\Users\grzeg\AppData\Roaming\uTorrent Web\utweb.exe [6418944 2023-04-04] (Rainberry Inc -> BitTorrent Inc.) HKU\S-1-5-21-3112216012-3349756465-3589550777-1001\...\RunOnce: [Application Restart #1] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --flag-switches-begin --disable-features=WebContentsForceDark --flag-switches-end --enable-audio-service-sandbox --restore-last-session --f (dane wartości zawierają 69 znaków więcej). [3231512 2023-06-05] (Google LLC -> Google LLC) HKU\S-1-5-21-3112216012-3349756465-3589550777-1001\...\MountPoints2: {38af634b-4abb-11eb-9cc7-0015830cbfeb} - "M:\HiSuiteDownLoader.exe" HKU\S-1-5-21-3112216012-3349756465-3589550777-1001\...\MountPoints2: {cec74b77-45a6-11ea-9c6b-0015830cbfeb} - "E:\HiSuiteDownLoader.exe" HKU\S-1-5-21-3112216012-3349756465-3589550777-1001\...\MountPoints2: {cec74c3b-45a6-11ea-9c6b-0015830cbfeb} - "E:\HiSuiteDownLoader.exe" HKU\S-1-5-21-3112216012-3349756465-3589550777-1001\...\MountPoints2: {dc443ff8-9c13-11e9-9c0d-0015830cbfeb} - "N:\WD Drive Unlock.exe" autoplay=true HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\76.0.3.0\GoogleDriveFS.exe [145176856 2023-06-12] (Google LLC -> Google, Inc.) HKLM\...\Windows x64\Print Processors\ssm4mPC: C:\Windows\System32\spool\prtprocs\x64\ssm4mpc.dll [52088 2019-06-20] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider) HKLM\...\Windows x64\Print Processors\us016PC: C:\Windows\System32\spool\prtprocs\x64\us016pc.dll [61736 2022-02-24] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider) HKLM\...\Print\Monitors\CY Language Monitor: c:\windows\system32\CSJCYLM.DLL [28160 2017-11-08] (Dai Nippon Printing Co., Ltd. -> ) HKLM\...\Print\Monitors\ssm4m Langmon: c:\windows\system32\ssm4mlm.dll [31096 2019-06-20] (Microsoft Windows Hardware Compatibility Publisher -> ) HKLM\...\Print\Monitors\us016 Langmon: c:\windows\system32\us016lm.dll [40744 2022-02-24] (Microsoft Windows Hardware Compatibility Publisher -> ) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\114.0.5735.110\Installer\chrmstp.exe [2023-06-06] (Google LLC -> Google LLC) HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\114.1.52.122\Installer\chrmstp.exe [2023-06-07] (Brave Software, Inc. -> Brave Software, Inc.) IFEO\osppsvc.exe: [VerifierDlls] SppExtComObjHook.dll IFEO\SppExtComObj.exe: [VerifierDlls] SppExtComObjHook.dll Startup: C:\Users\grzeg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Telegram.lnk [2022-09-05] ShortcutTarget: Telegram.lnk -> L:\! TU INSTALUJ !\Telegram Desktop\Telegram.exe (Telegram FZ-LLC -> Telegram FZ-LLC) HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {02603655-8E93-4553-9CB8-E3B21668FD54} - System32\Tasks\CCleanerSkipUAC - grzeg => C:\Program Files\CCleaner\CCleaner.exe [34264480 2023-05-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {1B93537A-B791-4571-8A9A-D345029E6045} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-01] (Google Inc -> Google LLC) Task: {28BC7EF8-23AB-465E-A621-4F65E18CF8BA} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564152 2023-04-03] (Adobe Inc. -> Adobe Inc.) Task: {2A811A53-AF99-40CB-8E1A-30390902A5FC} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {2DF7EB5B-2384-45F7-ABDA-B82D7E708316} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {33BA5A84-859E-4755-8906-98DFCFB9121C} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [123752 2023-06-07] (Microsoft Corporation -> Microsoft Corporation) Task: {35645695-19F7-416B-B35D-7C666B006E92} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2023-01-27] (Nvidia Corporation -> NVIDIA Corporation) Task: {3D7ED3A6-D7CF-4095-B9C4-A2326731B9CC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\MpCmdRun.exe [1649976 2023-06-01] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {51D03DF7-185F-4F98-B16B-A8A7BF51F9E4} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-15] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {5659EB2E-2A3D-43B4-B4F1-25BF09F39706} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26557360 2023-06-07] (Microsoft Corporation -> Microsoft Corporation) Task: {57CC4BB5-6A92-4783-8BF6-9E948ECB49A1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\MpCmdRun.exe [1649976 2023-06-01] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {5981C2E1-6D47-43AA-9C3B-D9ECAB258343} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {5F120086-1DF6-44D0-984F-5970877D16D5} - System32\Tasks\Odkurzacz => C:\Program Files (x86)\Odkurzacz\odkurzacz.exe [1069056 2022-12-15] (FranmoSoftware) [Brak podpisu cyfrowego] Task: {6D635094-C28D-4537-9A33-7DCB2279F94C} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157320 2019-10-25] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {7CE2D02C-2B92-474F-9C08-5A2D496A3C51} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [123752 2023-06-07] (Microsoft Corporation -> Microsoft Corporation) Task: {96D88972-DEAC-4588-AAA7-34DDBE33E9DB} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {A2764B39-CBB8-44D7-B8CC-7E28262603EF} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157320 2019-10-25] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {A9D84DFE-1985-44FE-8864-C84EC3D09505} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: ) Task: {AC27046A-E959-4D72-8F2F-91D958032069} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3112216012-3349756465-3589550777-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4147592 2023-06-08] (Microsoft Corporation -> Microsoft Corporation) Task: {B126C820-4583-493B-88CA-24E5E0D01ECB} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {B8E46200-9F2A-49CF-AA72-8EF522B75A35} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {C8669992-7E71-4973-9DBB-F06EFC9D1CD5} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4147592 2023-06-08] (Microsoft Corporation -> Microsoft Corporation) Task: {C9958033-0CA0-423A-874C-63DA90FC892E} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-05-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "e2832043-de7a-4790-b60a-791b077bca8b" --version "6.12.10490" --silent Task: {CF902CA6-8582-46DD-A910-4537B5BB0162} - System32\Tasks\Office 2019 Statique Activation Planificateur => C:\Users\grzeg\Desktop\ActO19\ActO19.cmd -> -renewalonly Task: {D4F0BB65-AF11-46C1-A4E2-F8E3CD1BF855} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {D86382E7-C9A6-4932-AB56-E4D73756319A} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-04-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {DC7FBAA1-DD55-486B-940A-E70F8BEFC7F2} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26557360 2023-06-07] (Microsoft Corporation -> Microsoft Corporation) Task: {E1856E7A-B8F9-4426-8A9E-6A93E363D233} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-01] (Google Inc -> Google LLC) Task: {E670D9C7-427F-471D-8E0E-599B4EA19466} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\MpCmdRun.exe [1649976 2023-06-01] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {EBEDA453-B199-4B7F-BE00-0C16D480FB3C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\MpCmdRun.exe [1649976 2023-06-01] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {F11EAE37-238C-4567-9DBC-B0F0C59FA007} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3112216012-3349756465-3589550777-1002 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4147592 2023-06-08] (Microsoft Corporation -> Microsoft Corporation) Task: {F63F5E09-F8D3-4EFA-B421-C7980B8F599E} - System32\Tasks\update-S-1-5-21-3112216012-3349756465-3589550777-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: ) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe Task: C:\WINDOWS\Tasks\update-S-1-5-21-3112216012-3349756465-3589550777-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{4d291ecb-a190-4d54-b45b-e5d6f2c7e464}: [DhcpNameServer] 89.228.4.126 31.11.173.2 Tcpip\..\Interfaces\{d8044d19-bdb9-4703-89cb-cc037aee5629}: [DhcpNameServer] 192.168.1.1 Edge: ======= Edge Extension: (Brak nazwy) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [nie znaleziono] Edge Extension: (Brak nazwy) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [nie znaleziono] Edge Extension: (Brak nazwy) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [nie znaleziono] Edge Extension: (Brak nazwy) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [nie znaleziono] Edge DefaultProfile: Default Edge Profile: C:\Users\grzeg\AppData\Local\Microsoft\Edge\User Data\Default [2023-06-12] Edge Extension: (Edge relevant text changes) - C:\Users\grzeg\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-04-25] FireFox: ======== FF HKU\S-1-5-21-3112216012-3349756465-3589550777-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\grzeg\AppData\Roaming\IDM\idmmzcc5 FF Extension: (IDM CC) - C:\Users\grzeg\AppData\Roaming\IDM\idmmzcc5 [2022-06-22] [Przestarzałe] [Brak podpisu cyfrowego] FF HKU\S-1-5-21-3112216012-3349756465-3589550777-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - L:\! TU INSTALUJ !\Internet Download Manager\idmmzcc2.xpi FF Extension: (IDM integration) - L:\! TU INSTALUJ !\Internet Download Manager\idmmzcc2.xpi [2016-11-16] [Przestarzałe] FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-11-24] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-11-24] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2023-06-04] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\grzeg\AppData\Local\Google\Chrome\User Data\Default [2023-06-12] CHR DownloadDir: L:\Tu pobieraj CHR Notifications: Default -> hxxps://app.mail3.me; hxxps://calendar.google.com; hxxps://etherscan.io; hxxps://ktomalek.pl; hxxps://mail.google.com; hxxps://robus36.experty.io; hxxps://twitter.com; hxxps://www.ipla.tv; hxxps://www.pyszne.pl CHR HomePage: Default -> hxxp://www.google.com CHR StartupUrls: Default -> "hxxps://www.facebook.com/","hxxps://mail.google.com/","hxxps://www.youtube.com/feed/subscriptions","hxxps://portal.pixelfederation.com/pl/trainstation/about/","hxxps://darkbox.vip/login/","hxxps://exchange.pancakeswap.finance/#/swap?outputCurrency=0xbB3837Fa11d4B789717C8f622Ec4f6eee5375C49","hxxps://app.apeswap.finance/swap?inputCurrency=BNB&outputCurrency=0xec15a508a187e8ddfe572a5423faa82bbdd65120","hxxps://vesting.flourishingcapital.io/","hxxps://crucible-beta.ferrumnetwork.io/dashboard/crucible" CHR Extension: (Easy Auto Refresh) - C:\Users\grzeg\AppData\Local\Google\Chrome\User Data\Default\Extensions\aabcgdmkeabbnleenpncegpcngjpnjkc [2022-12-06] CHR Extension: (Aukcjoner.pl - snajper aukcyjny) - C:\Users\grzeg\AppData\Local\Google\Chrome\User Data\Default\Extensions\adlgbomailbjbfdeicibbjokbnackdim [2023-06-01] CHR Extension: (OpenOffice Writer on rollApp) - C:\Users\grzeg\AppData\Local\Google\Chrome\User Data\Default\Extensions\aefnmlhnadcihhnfplfbmcmodoiannan [2019-07-01] CHR Extension: (Phantom) - C:\Users\grzeg\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfnaelmomeimhlpmgjnjophhpkkoljpa [2023-06-03] CHR Extension: (uBlock Origin) - C:\Users\grzeg\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2023-06-08] CHR Extension: (Keplr) - C:\Users\grzeg\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmkamcknogkgcdfhhbddcghachkejeap [2023-06-10] CHR Extension: (Taho) - C:\Users\grzeg\AppData\Local\Google\Chrome\User Data\Default\Extensions\eajafomhmkipbjmfmhebemolkcicgfmd [2023-06-12] CHR Extension: (Martian Wallet for Sui & Aptos) - C:\Users\grzeg\AppData\Local\Google\Chrome\User Data\Default\Extensions\efbglgofoippbgcjepnhiblaibcnclgk [2023-06-05] CHR Extension: (minerBlock) - C:\Users\grzeg\AppData\Local\Google\Chrome\User Data\Default\Extensions\emikbbbebcdfohonlaifafnoanocnebl [2022-10-17] CHR Extension: (Zakładki iCloud) - C:\Users\grzeg\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2023-06-10] CHR Extension: (Morphis Wallet) - C:\Users\grzeg\AppData\Local\Google\Chrome\User Data\Default\Extensions\heefohaffomkkkphnlpohglngmbcclhi [2023-05-31] CHR Extension: (Suiet | Sui Wallet) - C:\Users\grzeg\AppData\Local\Google\Chrome\User Data\Default\Extensions\khpkpbbcccdmmclmpigdgddabeilkdpd [2023-06-12] CHR Extension: (Eternl) - C:\Users\grzeg\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmhcihpebfmpgmihbkipmjlmmioameka [2023-06-08] CHR Extension: (SafeInCloud Password Manager) - C:\Users\grzeg\AppData\Local\Google\Chrome\User Data\Default\Extensions\lchdigjbcmdgcfeijpfkpadacbijihjl [2022-10-11] CHR Extension: (Mapy Google) - C:\Users\grzeg\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2019-07-01] CHR Extension: (Glass wallet | Sui wallet) - C:\Users\grzeg\AppData\Local\Google\Chrome\User Data\Default\Extensions\loinekcabhlmhjjbocijdoimmejangoa [2023-05-06] CHR Extension: (Morpheon Dark) - C:\Users\grzeg\AppData\Local\Google\Chrome\User Data\Default\Extensions\mafbdhjdkjnoafhfelkjpchpaepjknad [2022-06-23] CHR Extension: (Ethos Sui Wallet) - C:\Users\grzeg\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcbigmjiafegjnnogedioegffbooigli [2023-06-11] CHR Extension: (MetaMask) - C:\Users\grzeg\AppData\Local\Google\Chrome\User Data\Default\Extensions\nkbihfbeogaeaoehlefnkodbefgpgknn [2023-06-08] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\grzeg\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30] CHR Extension: (Elli - Sui Wallet) - C:\Users\grzeg\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocjdpmoallmgmjbbogfiiaofphbjgchh [2023-05-27] CHR Extension: (Sui Wallet) - C:\Users\grzeg\AppData\Local\Google\Chrome\User Data\Default\Extensions\opcgpfmipidbgpenhmajoajpbobppdil [2023-06-11] CHR Extension: (Pontem Aptos Wallet) - C:\Users\grzeg\AppData\Local\Google\Chrome\User Data\Default\Extensions\phkbamefinggmakgklpkljjmgibohnba [2023-06-07] CHR Extension: (Cradle) - C:\Users\grzeg\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppgbdgcacdkfilmdgjlcmigpbnamdkip [2023-02-19] CHR Profile: C:\Users\grzeg\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-05-10] CHR Profile: C:\Users\grzeg\AppData\Local\Google\Chrome\User Data\Profile 2 [2023-05-06] CHR Extension: (Trust Wallet) - C:\Users\grzeg\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\egjidjbpglichdcondbcbdnbeeppgdph [2023-05-06] CHR Extension: (Dokumenty Google offline) - C:\Users\grzeg\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-12-13] CHR Extension: (Program uruchamiający aplikacje dla plików z Dysku (od Google)) - C:\Users\grzeg\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2022-12-13] CHR Extension: (MetaMask) - C:\Users\grzeg\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nkbihfbeogaeaoehlefnkodbefgpgknn [2022-12-13] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\grzeg\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-12-13] CHR Extension: (e-pity - dodatek) - C:\Users\grzeg\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ofoeigeaodhbjogdigckajfhjbonaofg [2022-12-13] CHR Profile: C:\Users\grzeg\AppData\Local\Google\Chrome\User Data\System Profile [2023-06-06] CHR HKU\S-1-5-21-3112216012-3349756465-3589550777-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] CHR HKLM-x32\...\Chrome\Extension: [ofoeigeaodhbjogdigckajfhjbonaofg] Brave: ======= BRA Profile: C:\Users\grzeg\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2023-06-11] BRA Extension: (SafeInCloud Password Manager) - C:\Users\grzeg\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\lchdigjbcmdgcfeijpfkpadacbijihjl [2022-10-12] BRA Extension: (Program uruchamiający aplikacje dla plików z Dysku (od Google)) - C:\Users\grzeg\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-01-26] BRA Extension: (MetaMask) - C:\Users\grzeg\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\nkbihfbeogaeaoehlefnkodbefgpgknn [2023-06-08] BRA Extension: (e-pity - dodatek) - C:\Users\grzeg\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\ofoeigeaodhbjogdigckajfhjbonaofg [2021-04-22] BRA Extension: (Brave Local Data Files Updater) - C:\Users\grzeg\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2023-06-11] BRA Extension: (Brave Ads Resources) - C:\Users\grzeg\AppData\Local\BraveSoftware\Brave-Browser\User Data\aijecnhpjljblhnogamehknbmljlbfgn [2021-05-25] BRA Extension: (Brave NTP background images) - C:\Users\grzeg\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2023-06-11] BRA Extension: (Brave Ad Block Updater (Fanboy's Mobile Notifications List (plaintext))) - C:\Users\grzeg\AppData\Local\BraveSoftware\Brave-Browser\User Data\bfpgedeaaibpoidldhjcknekahbikncb [2023-05-06] BRA Extension: (Wallet Data Files Updater) - C:\Users\grzeg\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2023-06-11] BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\grzeg\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2022-12-02] BRA Extension: (Brave Tor Client Updater (Windows)) - C:\Users\grzeg\AppData\Local\BraveSoftware\Brave-Browser\User Data\cpoalefficncklhjfpglfiplenlpccdb [2021-03-09] BRA Extension: (Brave Ads Resources) - C:\Users\grzeg\AppData\Local\BraveSoftware\Brave-Browser\User Data\feeklcgpaolphdiamjaolkkcpbeihkbh [2023-06-08] BRA Extension: (Brave Ads Resources) - C:\Users\grzeg\AppData\Local\BraveSoftware\Brave-Browser\User Data\fojhemdeemkcacelmecilmibcjallejo [2022-04-21] BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\grzeg\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2023-06-11] BRA Extension: (Brave NTP sponsored images) - C:\Users\grzeg\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodhafecfemgejckecbnmpobnhmoaoag [2023-06-11] BRA Extension: (Brave Ad Block Updater (Default (plaintext))) - C:\Users\grzeg\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2023-06-11] BRA Extension: (Brave SpeedReader Updater) - C:\Users\grzeg\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2022-03-18] BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\grzeg\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2023-06-11] BRA Extension: (Crypto Wallets) - C:\Users\grzeg\AppData\Local\BraveSoftware\Brave-Browser\User Data\odbfpeeihdkbihmopkbjmoonfanlbfcl [2021-03-09] BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\grzeg\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2023-06-11] StartMenuInternet: Brave - C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-04-03] (Adobe Inc. -> Adobe Inc.) S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157320 2019-10-25] (Brave Software, Inc. -> BraveSoftware Inc.) S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157320 2019-10-25] (Brave Software, Inc. -> BraveSoftware Inc.) S3 BraveVpnService; C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\114.1.52.122\brave_vpn_helper.exe [3055640 2023-06-06] (Brave Software, Inc. -> Brave Software, Inc.) S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1063840 2023-05-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11774392 2023-06-07] (Microsoft Corporation -> Microsoft Corporation) R2 EaseUS Agent; C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe [41192 2022-11-30] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) R2 EaseUS UPDATE SERVICE; C:\Program Files (x86)\EaseUS\ENS\ensserver.exe [27784 2022-11-14] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Brak podpisu cyfrowego] S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.114.0530.0001\FileSyncHelper.exe [3446648 2023-06-08] (Microsoft Corporation -> Microsoft Corporation) R2 KingoSoftService; C:\Users\grzeg\AppData\Local\Kingosoft\Kingo Root\update_27205\bin\checkupdate.exe [377832 2018-03-08] (FingerPower Digital Technology Ltd. -> ) R2 MacriumService; C:\Program Files\Macrium\Common\MacriumService.exe [11072008 2023-01-10] (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.114.0530.0001\OneDriveUpdaterService.exe [3781496 2023-06-08] (Microsoft Corporation -> Microsoft Corporation) S3 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2020-11-26] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) S3 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [919992 2020-11-26] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) R3 VssEaseusProvider; C:\WINDOWS\system32\dllhost.exe /Processid:{94DCF2B1-2FBB-4D00-859A-DB9E14CDCEE3} [21312 2020-10-04] (Microsoft Windows -> Microsoft Corporation) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\NisSrv.exe [3228464 2023-06-01] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\MsMpEng.exe [133592 2023-06-01] (Microsoft Windows Publisher -> Microsoft Corporation) S3 BraveElevationService; "C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\114.1.52.122\elevation_service.exe" [X] R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_019f08f3b4bddfa3\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_019f08f3b4bddfa3\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 ampa; C:\WINDOWS\system32\ampa.sys [38320 2017-02-28] (CHENGDU AOMEI Tech Co., Ltd. -> ) S3 ddmdrv; C:\WINDOWS\system32\ddmdrv.sys [35760 2016-12-27] (CHENGDU AOMEI Tech Co., Ltd. -> ) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [161288 2020-12-09] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R0 EUBAKUP; C:\WINDOWS\System32\drivers\eubakup.sys [75848 2022-11-14] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd) R0 EUBKMON; C:\WINDOWS\System32\drivers\EUBKMON.sys [55352 2022-11-14] (Microsoft Windows Hardware Compatibility Publisher -> ) R1 EUDSKACS; C:\WINDOWS\system32\drivers\eudskacs.sys [24152 2022-11-14] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd) R1 EUFDDISK; C:\WINDOWS\system32\drivers\EuFdDisk.sys [556112 2022-11-14] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd) R1 googledrivefs31092; C:\WINDOWS\System32\DRIVERS\googledrivefs31092.sys [384600 2023-05-06] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.) R1 HWiNFO; C:\WINDOWS\system32\drivers\HWiNFO64A.SYS [61208 2020-01-31] (Martin Malik - REALiX -> REALiX(tm)) S3 KMWDFILTER; C:\WINDOWS\System32\drivers\KMWDFILTER.sys [30208 2009-04-29] (MLK Technologies Limited -> Windows (R) Codename Longhorn DDK provider) S3 NVFLASH; C:\Windows\system32\drivers\nvflash.sys [48896 2020-01-29] (NVIDIA Corporation -> NVIDIA Corporation) R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation) S1 PQNTDrv; C:\Windows\SysWow64\Drivers\PQNTDrv.sys [4228 2002-09-16] (PowerQuest Corporation) [Brak podpisu cyfrowego] S3 PSMounterEx; C:\Windows\system32\drivers\psmounterex.sys [179416 2019-02-15] (Paramount Software UK Ltd -> Windows (R) Win 7 DDK provider) S3 psvolacc; C:\WINDOWS\system32\drivers\psvolacc.sys [50856 2022-05-25] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software) R2 SSPORT; C:\WINDOWS\system32\Drivers\SSPORT.sys [14224 2021-04-01] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [168968 2020-12-09] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 usbscan; C:\WINDOWS\system32\DRIVERS\usbscan.sys [49152 2020-05-15] (Microsoft Corporation) [Brak podpisu cyfrowego] S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49616 2023-06-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [498984 2023-06-01] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99608 2023-06-01] (Microsoft Windows -> Microsoft Corporation) R1 WinRing0_1_2_0; C:\Program Files (x86)\EVGA\WinRing0\WinRing0x64.sys [14536 2019-06-24] (EVGA -> OpenLibSys.org) U3 aswbdisk; Brak ImagePath S3 GPU-Z-v2; \??\C:\Users\grzeg\AppData\Local\Temp\GPU-Z-v2.sys [X] <==== UWAGA ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Trzy miesiące (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-06-12 13:39 - 2023-06-12 13:40 - 000000000 ____D C:\FRST 2023-06-12 13:27 - 2023-06-12 13:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Debug Diagnostics Tool 2 2023-06-12 13:27 - 2023-06-12 13:27 - 000000000 ____D C:\Program Files\DebugDiag 2023-06-12 13:25 - 2023-06-12 13:25 - 000026007 _____ C:\WINDOWS\system32\Running_Process.txt 2023-06-10 18:49 - 2023-06-12 13:01 - 000000000 ___RD C:\Users\grzeg\iCloudDrive 2023-06-10 18:48 - 2023-06-12 13:02 - 000000000 ____D C:\Users\grzeg\AppData\Local\Apple Inc 2023-06-10 18:46 - 2023-06-10 18:46 - 000000000 ____D C:\ProgramData\Apple Inc 2023-06-10 18:46 - 2023-06-10 18:46 - 000000000 ____D C:\ProgramData\Apple Computer 2023-06-10 18:46 - 2023-06-10 18:46 - 000000000 ____D C:\ProgramData\Apple 2023-06-10 18:25 - 2023-06-10 18:25 - 1545342970 _____ C:\WINDOWS\MEMORY.DMP 2023-06-10 18:25 - 2023-06-10 18:25 - 001377660 _____ C:\WINDOWS\Minidump\061023-15421-01.dmp 2023-06-08 12:04 - 2023-06-08 12:05 - 000000000 ____D C:\Program Files (x86)\Kingo ROOT 2023-06-08 12:04 - 2023-06-08 12:04 - 000001104 _____ C:\Users\Public\Desktop\Kingo ROOT.lnk 2023-06-08 12:04 - 2023-06-08 12:04 - 000000000 ____D C:\Users\grzeg\AppData\Roaming\Kingosoft 2023-06-08 12:04 - 2023-06-08 12:04 - 000000000 ____D C:\Users\grzeg\AppData\Local\Kingosoft 2023-06-08 12:04 - 2023-06-08 12:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kingo ROOT 2023-06-08 11:49 - 2023-06-08 11:51 - 000000000 ____D C:\Users\grzeg\Desktop\MyBackup 2023-06-05 12:40 - 2023-06-05 13:20 - 000000000 ____D C:\Users\grzeg\Desktop\kopia telefon 2023-05-31 18:26 - 2023-05-31 18:26 - 000002413 _____ C:\WINDOWS\system32\Drivers\etc\hosts.rollback 2023-05-31 18:26 - 2019-11-07 14:17 - 000000852 _____ C:\WINDOWS\system32\Drivers\etc\hosts.backup 2023-05-31 18:24 - 2023-05-31 18:24 - 000000000 ___HD C:\WINDOWS\msdownld.tmp 2023-05-31 18:16 - 2023-05-31 18:16 - 000001529 _____ C:\Users\Public\Desktop\Democracy 4.lnk 2023-05-30 21:21 - 2023-06-05 20:55 - 000000000 ____D C:\Users\grzeg\AppData\Roaming\WeMod 2023-05-30 21:20 - 2023-06-05 20:55 - 000000000 ____D C:\Users\grzeg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WeMod 2023-05-30 21:20 - 2023-06-05 20:55 - 000000000 ____D C:\Users\grzeg\AppData\Local\WeMod 2023-05-27 10:03 - 2023-05-27 10:03 - 000000000 ____D C:\Users\grzeg\AppData\LocalLow\JUJUBEE_S_A 2023-05-27 10:00 - 2023-06-12 13:38 - 000000000 ____D C:\Users\grzeg\AppData\Roaming\uTorrent Web 2023-05-27 10:00 - 2023-05-27 10:00 - 000001879 _____ C:\Users\grzeg\Desktop\uTorrent Web.lnk 2023-05-27 10:00 - 2023-05-27 10:00 - 000001865 _____ C:\Users\grzeg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent Web.lnk 2023-05-27 09:54 - 2023-05-27 09:54 - 000001785 _____ C:\Users\Public\Desktop\Realpolitiks II.lnk 2023-05-27 09:54 - 2023-05-27 09:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Realpolitiks II [GOG.com] 2023-05-24 04:51 - 2023-05-24 04:51 - 000000000 ____D C:\ProgramData\PLUG 2023-05-23 20:09 - 2023-05-23 20:09 - 000000000 ____D C:\Program Files\RUXIM 2023-05-13 20:40 - 2023-05-13 20:40 - 000000000 ___HD C:\$WinREAgent 2023-05-06 09:42 - 2023-05-06 09:42 - 000001759 _____ C:\Users\grzeg\Desktop\World_of_Warships.lnk 2023-04-20 17:47 - 2023-04-07 09:37 - 002172512 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2023-04-20 17:47 - 2023-04-07 09:37 - 002172512 _____ C:\WINDOWS\system32\vulkaninfo.exe 2023-04-20 17:47 - 2023-04-07 09:37 - 001607776 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2023-04-20 17:47 - 2023-04-07 09:37 - 001607776 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2023-04-20 17:47 - 2023-04-07 09:37 - 001479264 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2023-04-20 17:47 - 2023-04-07 09:37 - 001479264 _____ C:\WINDOWS\system32\vulkan-1.dll 2023-04-20 17:47 - 2023-04-07 09:37 - 001211488 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2023-04-20 17:47 - 2023-04-07 09:37 - 001211488 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2023-04-20 17:47 - 2023-04-07 09:36 - 001487344 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2023-04-20 17:47 - 2023-04-07 09:36 - 001227264 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2023-04-20 17:47 - 2023-04-07 09:32 - 000671744 _____ C:\WINDOWS\system32\nvofapi64.dll 2023-04-20 17:47 - 2023-04-07 09:32 - 000506392 _____ C:\WINDOWS\SysWOW64\nvofapi.dll 2023-04-20 17:47 - 2023-04-07 09:31 - 001536000 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2023-04-20 17:47 - 2023-04-07 09:31 - 001194536 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2023-04-20 17:47 - 2023-04-07 09:31 - 000851480 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll 2023-04-20 17:47 - 2023-04-07 09:31 - 000741888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe 2023-04-20 17:47 - 2023-04-07 09:30 - 002165744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2023-04-20 17:47 - 2023-04-07 09:30 - 001620968 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2023-04-20 17:47 - 2023-04-07 09:30 - 000979440 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll 2023-04-20 17:47 - 2023-04-07 09:30 - 000759808 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2023-04-20 17:47 - 2023-04-07 09:30 - 000457752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe 2023-04-20 17:47 - 2023-04-07 09:29 - 013767192 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2023-04-20 17:47 - 2023-04-07 09:29 - 011647528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2023-04-20 17:47 - 2023-04-07 09:29 - 006083608 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2023-04-20 17:47 - 2023-04-07 09:29 - 005911552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll 2023-04-20 17:47 - 2023-04-07 09:29 - 005834728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll 2023-04-20 17:47 - 2023-04-07 09:29 - 003429912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2023-04-20 17:47 - 2023-04-07 09:28 - 000853016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe 2023-04-20 17:47 - 2023-04-07 08:56 - 000104369 _____ C:\WINDOWS\system32\nvinfo.pb 2023-04-07 12:21 - 2023-04-07 12:21 - 000398193 _____ C:\Users\grzeg\Desktop\Instrukcja obsługi Candy CSO4 H7A1TBE-S (Polski - 124 stron).pdf 2023-04-06 14:50 - 2023-04-06 14:50 - 000000000 ____D C:\ProgramData\BraveSoftware 2023-03-18 09:27 - 2023-03-18 09:27 - 000000000 ____D C:\Program Files (x86)\Windows Kits 2023-03-18 09:27 - 2023-03-18 09:27 - 000000000 ____D C:\Program Files (x86)\Microsoft GameInput ==================== Trzy miesiące (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-06-12 13:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Registration 2023-06-12 13:34 - 2022-07-05 13:42 - 000007606 _____ C:\Users\grzeg\AppData\Local\Resmon.ResmonCfg 2023-06-12 13:34 - 2020-04-24 12:09 - 000000000 ____D C:\Users\grzeg\AppData\Local\BitTorrentHelper 2023-06-12 13:34 - 2019-07-01 17:30 - 000000000 ____D C:\Program Files (x86)\Google 2023-06-12 13:12 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-06-12 13:03 - 2020-02-07 15:16 - 000000000 ____D C:\ProgramData\NVIDIA 2023-06-12 13:03 - 2020-01-31 14:08 - 000004226 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{D3C42FD5-D66C-4148-821B-1D2E132A8E6C} 2023-06-12 13:03 - 2019-10-01 16:47 - 000000000 ____D C:\Program Files\CCleaner 2023-06-12 13:02 - 2021-09-25 09:34 - 000002057 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk 2023-06-12 13:02 - 2021-09-25 09:34 - 000001899 _____ C:\Users\Default\Desktop\Google Slides.lnk 2023-06-12 13:02 - 2021-09-25 09:34 - 000001899 _____ C:\Users\Default\Desktop\Google Sheets.lnk 2023-06-12 13:02 - 2021-09-25 09:34 - 000001887 _____ C:\Users\Default\Desktop\Google Docs.lnk 2023-06-11 08:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2023-06-11 08:39 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\WindowsApps 2023-06-10 18:49 - 2020-01-31 14:01 - 000000000 ____D C:\Users\grzeg 2023-06-10 18:48 - 2019-07-05 21:24 - 000000000 ____D C:\Users\grzeg\AppData\Local\D3DSCache 2023-06-10 18:42 - 2019-07-01 18:12 - 000000000 ____D C:\Users\grzeg\AppData\Local\ElevatedDiagnostics 2023-06-10 18:35 - 2020-08-14 14:50 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-06-10 18:32 - 2020-01-31 14:07 - 001767980 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2023-06-10 18:32 - 2019-12-07 17:08 - 000784334 _____ C:\WINDOWS\system32\perfh015.dat 2023-06-10 18:32 - 2019-12-07 17:08 - 000152230 _____ C:\WINDOWS\system32\perfc015.dat 2023-06-10 18:32 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2023-06-10 18:30 - 2019-07-01 18:35 - 000000000 ____D C:\Users\grzeg\AppData\Local\CrashDumps 2023-06-10 18:27 - 2020-09-04 09:14 - 000000000 ____D C:\WINDOWS\Minidump 2023-06-10 18:25 - 2022-11-26 20:02 - 000000000 ____D C:\Program Files\Microsoft OneDrive 2023-06-10 18:25 - 2022-10-01 19:36 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job 2023-06-10 18:25 - 2020-01-31 14:08 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2023-06-10 18:25 - 2020-01-31 14:00 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2023-06-10 18:25 - 2020-01-31 13:59 - 000008192 ___SH C:\DumpStack.log.tmp 2023-06-09 21:31 - 2019-07-01 17:43 - 000000000 ____D C:\ProgramData\Packages 2023-06-09 21:31 - 2019-07-01 17:27 - 000000000 ____D C:\Users\grzeg\AppData\Local\Packages 2023-06-09 21:30 - 2019-07-01 17:27 - 000000000 ____D C:\Users\grzeg\AppData\Local\Publishers 2023-06-09 18:00 - 2022-10-11 20:46 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader.lnk 2023-06-09 17:57 - 2019-07-01 19:42 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2023-06-08 11:18 - 2022-11-24 14:41 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2023-06-08 11:18 - 2022-11-24 14:41 - 000002176 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2023-06-08 11:18 - 2021-12-15 12:21 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3112216012-3349756465-3589550777-1001 2023-06-07 15:45 - 2019-10-25 12:10 - 000002424 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk 2023-06-07 15:45 - 2019-10-25 12:10 - 000002383 _____ C:\Users\Public\Desktop\Brave.lnk 2023-06-06 18:48 - 2019-07-01 17:30 - 000002307 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2023-06-03 15:36 - 2021-09-20 12:26 - 000000000 ____D C:\Program Files\Cheat Engine 7.3 2023-06-02 22:17 - 2020-09-17 08:17 - 000000000 ____D C:\Users\grzeg\AppData\Roaming\TeamViewer 2023-06-02 22:17 - 2019-08-23 15:40 - 000000000 ____D C:\Program Files (x86)\Steam 2023-06-01 17:33 - 2019-07-01 17:19 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2023-06-01 17:27 - 2021-12-28 14:45 - 000000000 ____D C:\WINDOWS\SystemTemp 2023-06-01 17:25 - 2022-11-02 14:39 - 000003476 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting 2023-06-01 17:25 - 2020-01-31 14:08 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2023-05-31 18:26 - 2020-01-31 17:30 - 000000000 ____D C:\WINDOWS\SysWOW64\directx 2023-05-31 18:16 - 2022-12-22 14:34 - 000000000 ____D C:\!!! TU INSTALUJ GRY 2023-05-31 12:04 - 2019-12-07 11:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI 2023-05-30 21:20 - 2022-05-12 12:11 - 000000000 ____D C:\Users\grzeg\AppData\Local\SquirrelTemp 2023-05-24 22:45 - 2020-01-31 14:00 - 000446576 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2023-05-24 22:44 - 2019-12-07 17:08 - 000000000 ____D C:\WINDOWS\SysWOW64\pl 2023-05-24 22:44 - 2019-12-07 17:08 - 000000000 ____D C:\WINDOWS\system32\pl 2023-05-24 22:44 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2023-05-24 22:44 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources 2023-05-24 22:44 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates 2023-05-24 22:44 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2023-05-24 22:44 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences 2023-05-24 22:44 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2023-05-19 16:47 - 2020-01-31 14:08 - 000003864 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2023-05-19 16:47 - 2020-01-31 14:08 - 000003740 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2023-05-13 21:02 - 2021-02-20 16:28 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2023-05-13 21:02 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2023-05-13 20:58 - 2019-07-01 18:18 - 000416102 __RSH C:\bootmgr 2023-05-13 20:57 - 2020-01-31 14:05 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2023-05-13 20:39 - 2019-07-01 23:46 - 000000000 ____D C:\WINDOWS\system32\MRT 2023-05-13 20:25 - 2019-07-01 23:46 - 159583304 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe ==================== Pliki w katalogu głównym wybranych folderów ======== 2021-05-24 10:40 - 2021-05-25 10:00 - 000000000 _____ () C:\Users\grzeg\AppData\Roaming\MCVi2UserDetail.ini 2019-07-15 16:49 - 2020-09-03 15:45 - 000001496 _____ () C:\Users\grzeg\AppData\Local\Adobe Zapisz dla Internetu 13.0 Prefs 2022-08-01 18:19 - 2022-08-01 18:19 - 000000875 _____ () C:\Users\grzeg\AppData\Local\recently-used.xbel 2022-07-05 13:42 - 2023-06-12 13:34 - 000007606 _____ () C:\Users\grzeg\AppData\Local\Resmon.ResmonCfg 2023-01-18 21:08 - 2023-03-21 12:06 - 000000019 _____ () C:\Users\grzeg\AppData\Local\tkeysss.txt 2019-08-10 15:52 - 2019-08-10 15:52 - 000000003 _____ () C:\Users\grzeg\AppData\Local\updater.log 2019-08-10 15:52 - 2022-04-21 19:17 - 000000424 _____ () C:\Users\grzeg\AppData\Local\UserProducts.xml ==================== SigCheckExt ========================= 2014-09-08 13:37 - 2014-09-08 13:37 - 000072192 _____ C:\WINDOWS\system32\CDASpl.dll 2022-04-23 18:04 - 2016-08-10 13:07 - 002847744 ____N C:\WINDOWS\system32\DlgSearchEngine.dll 2019-08-30 10:05 - 2019-08-30 10:05 - 000105984 _____ (Beepa P/L) C:\WINDOWS\system32\frapsv64.dll 2022-10-08 14:33 - 2022-10-08 14:33 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingrepair.dll 2022-10-08 14:33 - 2022-10-08 14:33 - 000069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingrepair.exe 2020-08-19 14:36 - 2023-05-09 11:52 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll 2019-08-22 17:16 - 2011-12-07 19:37 - 000148992 _____ ( ) C:\WINDOWS\system32\lagarith.dll 2022-11-24 14:19 - 2022-11-24 14:19 - 000000000 ____L C:\WINDOWS\system32\SECOPatcher.dll 2022-11-24 16:06 - 2022-11-24 16:06 - 000019968 _____ C:\WINDOWS\system32\SppExtComObjHook.dll 2018-05-17 10:07 - 2018-05-17 10:07 - 000087552 _____ C:\WINDOWS\system32\Ssdevm64.dll 2019-08-22 17:16 - 2017-07-30 12:50 - 003799552 _____ (x264vfw project) C:\WINDOWS\system32\x264vfw64.dll 2019-08-22 17:16 - 2019-12-28 12:00 - 000784384 _____ C:\WINDOWS\system32\xvidcore.dll 2019-08-22 17:16 - 2019-12-28 12:00 - 000310784 _____ C:\WINDOWS\system32\xvidvfw.dll 2022-04-23 18:04 - 2016-08-10 13:07 - 002094592 ____N C:\WINDOWS\SysWOW64\DlgSearchEngine.dll 2019-08-22 17:16 - 2015-10-24 18:00 - 000112128 _____ C:\WINDOWS\SysWOW64\ff_vfw.dll 2019-08-30 10:05 - 2019-08-30 10:05 - 000094208 _____ (Beepa P/L) C:\WINDOWS\SysWOW64\frapsvid.dll 2019-08-22 17:16 - 2011-12-07 19:32 - 000216064 _____ ( ) C:\WINDOWS\SysWOW64\lagarith.dll 2019-09-23 15:07 - 2016-06-22 09:45 - 000189952 _____ (GDCL (www.gdcl.co.uk)) C:\WINDOWS\SysWOW64\mp4demux.dll 2018-05-17 10:07 - 2018-05-17 10:07 - 000094208 _____ C:\WINDOWS\SysWOW64\Ssdevm.dll 2019-08-22 17:16 - 2017-07-30 12:50 - 003850240 _____ (x264vfw project) C:\WINDOWS\SysWOW64\x264vfw.dll 2002-09-16 18:16 - 2002-09-16 18:16 - 001357032 _____ (PowerQuest Corporation) C:\WINDOWS\SysWOW64\XMNT2002.exe 2019-08-22 17:16 - 2019-12-28 12:00 - 000681984 _____ C:\WINDOWS\SysWOW64\xvidcore.dll 2019-08-22 17:16 - 2019-12-28 12:00 - 000284160 _____ C:\WINDOWS\SysWOW64\xvidvfw.dll 2021-08-28 05:37 - 2017-11-08 02:17 - 000026624 _____ () C:\WINDOWS\system32\Drivers\CSJCYlm.dll 2021-08-28 05:37 - 2017-11-08 02:17 - 000002560 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\DSRX1res.dll 2021-08-28 05:37 - 2017-11-08 02:17 - 000027648 _____ () C:\WINDOWS\system32\Drivers\DSRX1rn.dll 2021-08-28 05:37 - 2017-11-08 02:17 - 000091648 _____ () C:\WINDOWS\system32\Drivers\DSRX1ui.dll ==================== FCheck ================================ (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) FCheck: C:\WINDOWS\system32\SECOPatcher.dll [2022-11-24] [simlink -> C:\Program Files (x86)\Microsoft Office\KMS-VL-ALL-7.2RC2\KMS-VL-ALL-7.2RC2\KMS-VL-ALL-7.2RC2\KMS-VL-ALL-7.2RC2\64-bit\SECOPatcher.dll] [] <==== UWAGA ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== BCD ================================ Windows Boot Manager -------------------- identifier {bootmgr} device partition=C: description Windows Boot Manager locale pl-PL inherit {globalsettings} flightsigning Yes default {current} resumeobject {255eb1c6-4421-11ea-8904-a4b5c8bf9461} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Windows Boot Loader ------------------- identifier {current} device partition=C: path \WINDOWS\system32\winload.exe description Windows 10 locale pl-PL inherit {bootloadersettings} recoverysequence {4b80ef73-4421-11ea-9c69-c4db410df0b6} displaymessageoverride Recovery recoveryenabled Yes flightsigning Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \WINDOWS resumeobject {255eb1c6-4421-11ea-8904-a4b5c8bf9461} nx OptIn numproc 4 bootmenupolicy Standard quietboot Yes usefirmwarepcisettings No Windows Boot Loader ------------------- identifier {4b80ef73-4421-11ea-9c69-c4db410df0b6} device ramdisk=[\Device\HarddiskVolume2]\Recovery\WindowsRE\Winre.wim,{4b80ef74-4421-11ea-9c69-c4db410df0b6} path \windows\system32\winload.exe description Windows Recovery Environment locale pl-PL inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[\Device\HarddiskVolume2]\Recovery\WindowsRE\Winre.wim,{4b80ef74-4421-11ea-9c69-c4db410df0b6} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Resume from Hibernate --------------------- identifier {255eb1c6-4421-11ea-8904-a4b5c8bf9461} device partition=C: path \WINDOWS\system32\winresume.exe description Windows Resume Application locale pl-PL inherit {resumeloadersettings} recoverysequence {4b80ef73-4421-11ea-9c69-c4db410df0b6} recoveryenabled Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Windows Memory Tester --------------------- identifier {memdiag} device partition=C: path \boot\memtest.exe description Diagnostyka pamięci systemu Windows locale pl-PL inherit {globalsettings} badmemoryaccess Yes EMS Settings ------------ identifier {emssettings} bootems No Debugger Settings ----------------- identifier {dbgsettings} debugtype Local RAM Defects ----------- identifier {badmemory} Global Settings --------------- identifier {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} Boot Loader Settings -------------------- identifier {bootloadersettings} inherit {globalsettings} {hypervisorsettings} Hypervisor Settings ------------------- identifier {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 Resume Loader Settings ---------------------- identifier {resumeloadersettings} inherit {globalsettings} Device options -------------- identifier {4b80ef74-4421-11ea-9c69-c4db410df0b6} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume2 ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Koniec FRST.txt ========================