Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 01.07.2024 Uruchomiony przez emili (administrator) MSI (Micro-Star International Co., Ltd. Thin GF63 12VE) (04-07-2024 23:08:08) Uruchomiony z C:\Users\emili\AppData\Local\Temp\scoped_dir8472_2064494085\FRST64.exe Załadowane profile: emili Platforma: Microsoft Windows 11 Home Wersja 23H2 22631.3810 (X64) Język: Polski (Polska) Domyślna przeglądarka: Opera Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (A-Volute SAS -> A-Volute) C:\Users\emili\AppData\Local\NhNotifSys\nahimic\nahimicNotifSys.exe (C:\Program Files (x86)\MSI\MSI Center\MSI_Central_Service.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Center\MSI.CentralServer.exe (C:\Program Files (x86)\MSI\MSI NBFoundation Service\MSIAPService.exe ->) (Micro-Star International CO., LTD. -> ) C:\Program Files (x86)\MSI\MSI Center\Base Module\Start_HDR.exe (C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\ProgramData\NVIDIA Corporation\Downloader\9ee42bbf5cf4b69db4038fc25f0dca4f_extracted\setup.exe (C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <8> (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe (C:\Users\emili\AppData\Local\Programs\Opera GX\opera.exe ->) (Opera Norway AS -> Opera Software) C:\Users\emili\AppData\Local\Programs\Opera GX\109.0.5097.142\opera_crashreporter.exe (DriverStore\FileRepository\ipf_cpu.inf_amd64_cf5beef3831571d4\ipf_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_cf5beef3831571d4\ipf_helper.exe (explorer.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.ScreenSketch_11.2405.32.0_x64__8wekyb3d8bbwe\SnippingTool\SnippingTool.exe (explorer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe <3> (explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe <3> (Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.) C:\Program Files (x86)\MSI\MSI NBFoundation Service\OmApSvcBroker.exe (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (Opera Norway AS -> Opera Software) C:\Users\emili\AppData\Local\Programs\Opera GX\opera.exe <25> (services.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dtt_sw.inf_amd64_a56d66a9d40a4cb2\ipfsvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_34447035f523cae3\OneApp.IGCC.WinService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_f73ac9c2b65df779\IntelCpHDCPSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_cf5beef3831571d4\ipf_uf.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe (services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe (services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_cbcebe813d4324dc\AS\IAS\IntelAudioService.exe (services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Micro-Star International CO., LTD. -> ) C:\Program Files (x86)\MSI\MSI NBFoundation Service\Sendevsvc.exe (services.exe ->) (Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.) C:\Program Files (x86)\MSI\MSI NBFoundation Service\MSIAPService.exe (services.exe ->) (Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.) C:\Windows\SysWOW64\MSIService.exe (services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI Center\Game Highlights\MSI_Companion_Service.exe (services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Center\MSI_Central_Service.exe (services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI Center\Voice Control\VoiceControl_Service.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2> (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmii.inf_amd64_2a8cae9d0cba5813\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (RCS LT UAB -> RCS LT) C:\Program Files (x86)\Combo Cleaner\ComboCleaner.Guard.exe (services.exe ->) (RCS LT UAB -> RCS LT) C:\Program Files (x86)\Combo Cleaner\ComboCleaner.WinService.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_0def78d8fd7b6e2b\RtkAudUService64.exe <2> (services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe (svchost.exe ->) (21E1B422-257A-44A2-9C8F-379165856473 -> ) C:\Program Files\WindowsApps\A-Volute.Nahimic_1.10.1.0_x64__w2gh52qy24etm\Nahimic3.exe (svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2424.6.0_x64__cv1g1gvanyjgm\WhatsApp.exe (svchost.exe ->) (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> ) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.240.599.0_x64__zpdnekdrzrea0\XboxGameBarSpotify.exe (svchost.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicSvc64.exe (svchost.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\SysWOW64\NahimicSvc32.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2406.1001.20.0_x64__8wekyb3d8bbwe\XboxPcAppFT.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe (svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Center\MSI.TerminalServer.exe (svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI Center\Voice Control\VoiceControl_Engine.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_0def78d8fd7b6e2b\RtkAudUService64.exe [1974728 2024-04-08] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3023152 2024-06-28] (Riot Games, Inc. -> Riot Games, Inc.) HKLM\...\Run: [Combo Cleaner] => C:\Program Files (x86)\Combo Cleaner\ComboCleaner.exe [2143976 2024-06-04] (RCS LT UAB -> RCS LT) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Ograniczenia <==== UWAGA HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Ograniczenia <==== UWAGA HKU\S-1-5-21-344851665-1215438941-605073250-1001\...\Run: [MicrosoftEdgeAutoLaunch_998EE77CCECDD7D64F52D25BBF695A8B] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3883472 2024-07-01] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-344851665-1215438941-605073250-1001\...\Run: [Opera Stable] => C:\Users\emili\AppData\Local\Programs\Opera\opera.exe [1595296 2024-07-03] (Opera Norway AS -> Opera Software) HKU\S-1-5-21-344851665-1215438941-605073250-1001\...\Run: [Opera GX Stable] => C:\Users\emili\AppData\Local\Programs\Opera GX\launcher.exe [2273696 2024-06-18] (Opera Norway AS -> Opera Software) HKU\S-1-5-21-344851665-1215438941-605073250-1001\...\Run: [Discord] => C:\Users\emili\AppData\Local\Discord\Update.exe [1525024 2023-11-28] (Discord Inc. -> GitHub) HKU\S-1-5-21-344851665-1215438941-605073250-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4407656 2024-06-20] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-344851665-1215438941-605073250-1001\...\Run: [RiotClient] => C:\Riot Games\Riot Client\RiotClientServices.exe [70989920 2024-06-29] (Riot Games, Inc. -> Riot Games, Inc.) HKU\S-1-5-21-344851665-1215438941-605073250-1001\...\Run: [Opera GX Browser Assistant] => C:\Users\emili\AppData\Local\Programs\Opera GX\assistant\browser_assistant.exe [3291288 2021-02-01] (Opera Software AS -> Opera Software) HKU\S-1-5-21-344851665-1215438941-605073250-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1832968 2024-07-02] (Overwolf Ltd -> Overwolf Ltd.) HKU\S-1-5-21-344851665-1215438941-605073250-1001\...\Run: [EADM] => C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe [3360360 2024-06-29] (Electronic Arts, Inc. -> Electronic Arts) HKU\S-1-5-21-344851665-1215438941-605073250-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37550568 2024-06-25] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-18\...\Run: [Norton Download ManagerFORCE_UPGRADE_22_23_5] => C:\PROGRA~3\Norton\{0C55C~1\NORTON~1.EXE /m /noui /instversion "22.23.5" (Brak pliku) ==================== Zaplanowane zadania (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0AD7B81E-F9CC-4FA5-84A6-697D9AFAF92D} - System32\Tasks\C__Program Files_HeidiSQL_heidisql.exe => C:\Program Files\HeidiSQL\heidisql.exe [23741176 2024-05-05] (Ansgar Becker -> ) Task: {B2BCF9A9-C9F1-4389-8FD1-66F078DC5490} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\emili\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [15145336 2024-07-02] (ESET, spol. s r.o. -> ESET) Task: {AEE5DE5B-7F85-4295-BECC-310322E37F78} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\emili\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [15145336 2024-07-02] (ESET, spol. s r.o. -> ESET) Task: {586F5BA9-72A5-4FAC-ADA4-CE2469AFC9A5} - System32\Tasks\Intel\Intel Telemetry 3 => C:\Program Files\Intel\Telemetry 3.0\lrio.exe [5900448 2023-09-20] (Intel Corporation -> Intel Corporation) Task: {1E176206-ECAE-411C-8D52-2AF357753577} - System32\Tasks\Meta\Messenger-WSP-Helper-S-1-5-21-344851665-1215438941-605073250-1001 => C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_2140.12.228.0_x64__8xx8rvfyw5nnt\app\MessengerHelper.exe [2187000 2024-06-25] (6E08453F-9BA7-4311-999C-D22FBA2FB1B8 -> Meta Platforms, Inc.) Task: {30B2B8CB-3712-4B02-BB5E-00CDED10009F} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28512448 2024-06-26] (Microsoft Corporation -> Microsoft Corporation) Task: {5868401F-2662-48B5-A846-0DAF1F6659D5} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28512448 2024-06-26] (Microsoft Corporation -> Microsoft Corporation) Task: {43BDBE34-0B3C-431E-88A4-6CE02EF999F9} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309696 2024-06-30] (Microsoft Corporation -> Microsoft Corporation) Task: {5D161B71-73D3-4A9D-9740-B29C5560C5FF} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309696 2024-06-30] (Microsoft Corporation -> Microsoft Corporation) Task: {8AF8F360-E8BE-489B-AFC0-C6EDDEB612F9} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [169408 2024-06-30] (Microsoft Corporation -> Microsoft Corporation) Task: {9FCB7810-3942-4F34-A659-587C726201C5} - System32\Tasks\Microsoft\Windows\Application Experience\PcaWallpaperAppDetect => C:\Windows\system32\rundll32.exe [73728 2024-05-04] (Microsoft Windows -> Microsoft Corporation) -> %windir%\system32\PcaSvc.dll,PcaWallpaperAppDetect Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Brak pliku) Task: {3BFBEC88-4108-4FDB-9C4E-401A94E38CF9} - System32\Tasks\NahimicTask32 => C:\Windows\System32\..\SysWOW64\NahimicSvc32.exe [1117448 ] (A-Volute SAS -> Nahimic) Task: {F99D14BC-75A3-4170-957D-FAF74EB87714} - System32\Tasks\NahimicTask64 => C:\Windows\System32\.\NahimicSvc64.exe [1437448 ] (A-Volute SAS -> Nahimic) Task: {FF766C6D-5F49-4474-A2E4-D76CEBDAA4AD} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1277480 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {281E3483-92E4-424E-A530-AC9F1C625034} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3347496 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation) Task: {7A9A2817-CA52-49AF-B669-A10398B8F74A} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646696 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler Task: {28D3C226-0D62-4089-85AB-5D8C53DA2A81} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation) Task: {458804E9-0CEC-45A9-B9DB-7456B492EC87} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation) Task: {B4D2F848-2B22-4ECE-AC03-5FC0191FAFAE} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation) Task: {984B7E51-8503-4EB5-B755-C7095E2B09B8} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation) Task: {5E8B2B9D-901E-42C3-9108-10FF15DD8C13} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation) Task: {315618E4-31C4-44FC-9C2F-EBD710A742B7} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation) Task: {E64718AD-89C3-4E1C-A559-78F7AC64A552} - System32\Tasks\OmApSvcBroker => C:\Program Files (x86)\MSI\MSI NBFoundation Service\OmApSvcBroker.exe [961584 2024-07-04] (Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.) Task: {E2C69619-7817-4F4C-BB96-F6EDAFF93C08} - System32\Tasks\OneDC_Updater => C:\Users\emili\OneDrive\Dokumenty\temp\OneDC_Updater\OneDC_Updater.exe [657552 2023-11-30] (Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.) Task: {04065BC5-647A-451C-B557-B91C0C89EAC6} - System32\Tasks\Opera GX scheduled assistant Autoupdate 1701716696 => C:\Users\emili\AppData\Local\Programs\Opera GX\launcher.exe [2273696 2024-06-18] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\emili\AppData\Local\Programs\Opera GX\assistant" $(Arg0) Task: {5D53F473-0B5F-4041-911A-C737AC8ECC83} - System32\Tasks\Opera GX scheduled Autoupdate 1701371078 => C:\Users\emili\AppData\Local\Programs\Opera GX\launcher.exe [2273696 2024-06-18] (Opera Norway AS -> Opera Software) Task: {5578A314-FC48-40B8-985A-E2E6BE95E586} - System32\Tasks\Opera scheduled Autoupdate 1701370305 => C:\Users\emili\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [5749664 2024-07-01] (Opera Norway AS -> Opera Software) Task: {35988D56-F979-4B9F-A3CD-1E5D441D8874} - System32\Tasks\Optimize Push Notification Data File-S-1-5-21-344851665-1215438941-605073250-1001 => {201600D8-6EFF-48CE-B842-E14D37A0682D} C:\Windows\System32\wpninprc.dll [65536 2024-05-04] (Microsoft Windows -> Microsoft Corporation) Task: {FB319A70-C905-4D2D-A547-BD1A8841CC48} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2369544 2024-07-02] (Overwolf Ltd -> Overwolf LTD) -> C:\Program Files (x86)\Overwolf\/RunningFrom Schedule Task: {268430CB-2286-49E5-8987-D51A646F5C10} - System32\Tasks\Profile.exe => C:\Users\emili\AppData\Local\Profile.exe [69693205 2024-07-01] (Profile) [Brak podpisu cyfrowego] (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 Tcpip\..\Interfaces\{972b257b-9614-447a-93aa-3f7a5c8e239c}: [DhcpNameServer] 192.168.178.1 Tcpip\..\Interfaces\{972b257b-9614-447a-93aa-3f7a5c8e239c}: [DhcpDomain] fritz.box Tcpip\..\Interfaces\{f3911c36-945e-4f22-bb56-7276db6fc788}: [DhcpNameServer] 192.168.178.1 Tcpip\..\Interfaces\{f3911c36-945e-4f22-bb56-7276db6fc788}: [DhcpDomain] fritz.box Tcpip\..\Interfaces\{f3911c36-945e-4f22-bb56-7276db6fc788}\5527A750146A756E6965602D4334302: [DhcpNameServer] 192.168.209.205 Tcpip\..\Interfaces\{f3911c36-945e-4f22-bb56-7276db6fc788}\A556E666F6E656021303: [DhcpNameServer] 192.168.139.85 Edge: ======= Edge Profile: C:\Users\emili\AppData\Local\Microsoft\Edge\User Data\Default [2024-07-02] Edge Extension: (Dokumenty Google offline) - C:\Users\emili\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-11-30] Edge Extension: (Edge relevant text changes) - C:\Users\emili\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-21] FireFox: ======== FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-11] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-11] (Microsoft Corporation -> Microsoft Corporation) Opera: ======= OPR DefaultProfile: Default StartMenuInternet: (HKU\S-1-5-21-344851665-1215438941-605073250-1001) Opera GXStable - "C:\Users\emili\AppData\Local\Programs\Opera GX\Launcher.exe" ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14023752 2024-06-21] (Microsoft Corporation -> Microsoft Corporation) R2 ComboCleaner.Guard; C:\Program Files (x86)\Combo Cleaner\ComboCleaner.Guard.exe [144616 2024-06-04] (RCS LT UAB -> RCS LT) R2 ComboCleaner.WinService; C:\Program Files (x86)\Combo Cleaner\ComboCleaner.WinService.exe [152296 2024-06-04] (RCS LT UAB -> RCS LT) R2 dptftcs; C:\Windows\System32\DriverStore\FileRepository\dtt_sw.inf_amd64_a56d66a9d40a4cb2\ipfsvc.exe [558176 2023-10-23] (Intel Corporation -> Intel Corporation) S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [16589928 2024-06-29] (Electronic Arts, Inc. -> Electronic Arts) S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2023-08-02] (Epic Games Inc. -> Epic Games, Inc.) S2 Intel(R) Platform License Manager Service; C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_fc84dfa25a6a7727\lib\PlatformLicenseManagerService.exe [741488 2023-12-14] (Intel Corporation -> Intel(R) Corporation) R2 IntelAudioService; C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_cbcebe813d4324dc\AS\IAS\IntelAudioService.exe [528928 2022-08-03] (Intel Corporation -> Intel) R2 ipfsvc; C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_cf5beef3831571d4\ipf_uf.exe [2778760 2022-08-03] (Intel Corporation -> Intel Corporation) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8901528 2024-07-04] (Malwarebytes Inc. -> Malwarebytes) S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [3073888 2024-07-04] (Malwarebytes Inc. -> Malwarebytes) S3 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpDefenderCoreService.exe [1505416 2024-06-05] (Microsoft Windows Publisher -> Microsoft Corporation) R2 Micro Star SCM; C:\Windows\SysWOW64\MSIService.exe [171248 2023-05-11] (Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.) R2 MSI Foundation Service; C:\Program Files (x86)\MSI\MSI NBFoundation Service\MSIAPService.exe [100496 2023-11-03] (Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.) R2 MSI Sendevsvc; C:\Program Files (x86)\MSI\MSI NBFoundation Service\Sendevsvc.exe [311536 2023-05-11] (Micro-Star International CO., LTD. -> ) R2 MSI_Center_Service; C:\Program Files (x86)\MSI\MSI Center\MSI_Central_Service.exe [149608 2024-01-05] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) R2 MSI_Companion_Service; C:\Program Files (x86)\MSI\MSI Center\Game Highlights\MSI_Companion_Service.exe [140528 2022-05-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) R2 MSI_VoiceControl_Service; C:\Program Files (x86)\MSI\MSI Center\Voice Control\VoiceControl_Service.exe [36880 2023-04-27] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) R2 NahimicService; C:\Windows\system32\NahimicService.exe [1909512 2023-11-15] (A-Volute SAS -> Nahimic) R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvmii.inf_amd64_2a8cae9d0cba5813\Display.NvContainer\NVDisplay.Container.exe [1275528 2024-01-19] (NVIDIA Corporation -> NVIDIA Corporation) S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2369544 2024-07-02] (Overwolf Ltd -> Overwolf LTD) S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [6792176 2024-07-04] (Rockstar Games, Inc. -> Rockstar Games) S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [9705560 2024-06-28] (Riot Games, Inc. -> Riot Games, Inc.) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\NisSrv.exe [3236728 2024-06-05] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MsMpEng.exe [133704 2024-06-05] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 AcxHdAudio; C:\Windows\System32\drivers\AcxHdAudio.sys [561152 2023-12-01] (Microsoft Corporation) [Brak podpisu cyfrowego] R3 BdDci; C:\Windows\system32\DRIVERS\bddci.sys [800672 2023-10-27] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender) R2 BlueStacksDrv_msi5; C:\Program Files\BlueStacks_msi5\BstkDrv_msi5.sys [310736 2023-08-24] (Microsoft Windows Hardware Compatibility Publisher -> Bluestack System Inc.) S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [158640 2024-07-04] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R0 fse; C:\Windows\System32\drivers\fse.sys [218608 2024-05-31] (Microsoft Windows -> Microsoft Corporation) R3 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [177056 2021-10-10] (Microsoft Windows Hardware Compatibility Publisher -> BitDefender LLC) R3 iaLPSS2_GPIO2_ADL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_302e75596cffa74a\iaLPSS2_GPIO2_ADL.sys [150616 2022-10-18] (Intel Corporation -> Intel Corporation) R3 iaLPSS2_I2C_ADL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_i2c_adl.inf_amd64_e736c048ca307ed2\iaLPSS2_I2C_ADL.sys [220224 2022-10-18] (Intel Corporation -> Intel Corporation) S3 ibtuart; C:\Windows\System32\DriverStore\FileRepository\ibtuart.inf_amd64_2287497d0a09910d\ibtuart.sys [1018432 2022-08-03] (Intel Corporation -> Intel Corporation) S3 IntcSdwBus; C:\Windows\System32\DriverStore\FileRepository\intcsdwbus.inf_amd64_d3d4da2eb15364e3\IntcSdwBus.sys [516672 2022-08-03] (Intel Corporation -> Intel(R) Corporation) R3 IntcUSB; C:\Windows\System32\DriverStore\FileRepository\intcusb.inf_amd64_9d17fea24a602101\IntcUSB.sys [912928 2022-08-03] (Intel Corporation -> Intel(R) Corporation) R3 IntelGNA; C:\Windows\System32\DriverStore\FileRepository\gna.inf_amd64_04d4eecc5838a558\gna.sys [88784 2022-08-03] (Intel Corporation -> Intel Corporation) R3 ipf_acpi; C:\Windows\System32\DriverStore\FileRepository\ipf_acpi.inf_amd64_cf69bf74fab8a0f5\ipf_acpi.sys [87176 2022-08-03] (Intel Corporation -> Intel Corporation) R3 ipf_cpu; C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_cf5beef3831571d4\ipf_cpu.sys [80520 2022-08-03] (Intel Corporation -> Intel Corporation) R3 ipf_lf; C:\Windows\System32\DriverStore\FileRepository\ipf_cpu.inf_amd64_cf5beef3831571d4\ipf_lf.sys [443528 2022-08-03] (Intel Corporation -> Intel Corporation) S3 LT6911Au; C:\Windows\System32\DriverStore\FileRepository\lt6911au.inf_amd64_2f08ac6e600a0ba1\LT6911Au.sys [63520 2022-08-03] (Intel Corporation -> Intel(R) Corporation) R2 mbamchameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [221264 2024-07-04] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2024-07-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\Windows\system32\DRIVERS\farflt11.sys [234856 2024-07-04] (Malwarebytes Inc. -> Malwarebytes) R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [78400 2024-07-04] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239576 2024-07-04] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [188784 2024-07-04] (Malwarebytes Inc. -> Malwarebytes) R3 NahimicBTLink; C:\Windows\System32\drivers\NahimicBTLink.sys [86200 2022-08-18] (A-Volute SAS -> Windows (R) Win 7 DDK provider) R3 Nahimic_Mirroring; C:\Windows\System32\drivers\Nahimic_Mirroring.sys [86224 2022-08-18] (A-Volute SAS -> Windows (R) Win 7 DDK provider) R3 NvModuleTracker; C:\Windows\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_ea6cec41fc5b2a8b\NvModuleTracker.sys [47240 2024-04-03] (NVIDIA Corporation -> NVIDIA Corporation) R3 nvpcf; C:\Windows\System32\drivers\nvpcf.sys [235016 2024-01-18] (NVIDIA Corporation -> NVIDIA Corporation) R3 rt68cx21; C:\Windows\System32\DriverStore\FileRepository\rt68cx21x64.inf_amd64_12e5292d75bc9d96\rt68cx21x64.sys [713136 2022-08-18] (Realtek Semiconductor Corp. -> Realtek) S3 rtcx21; C:\Windows\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek) R3 Trufos; C:\Windows\System32\DRIVERS\Trufos.sys [633264 2022-04-16] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender) R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [40415320 2024-06-27] (Riot Games, Inc. -> Riot Games, Inc.) S3 vmbusproxy; C:\Windows\system32\drivers\vmbusproxy.sys [94208 2023-12-01] (Microsoft Windows -> ) S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [22080 2024-06-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [602520 2024-06-05] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105880 2024-06-05] (Microsoft Windows -> Microsoft Corporation) S3 cpuz158; \??\C:\Windows\temp\cpuz158\cpuz158_x64.sys [X] <==== UWAGA S3 WINIO; \??\C:\Program Files (x86)\MSI\MSI NBFoundation Service\KernCoreLib64.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2024-07-04 23:07 - 2024-07-04 23:08 - 000000000 ____D C:\FRST 2024-07-04 23:05 - 2024-07-04 23:06 - 002395648 _____ (Farbar) C:\Users\emili\Downloads\FRST64.exe 2024-07-04 23:03 - 2024-07-04 23:05 - 000000000 ____D C:\Users\emili\AppData\Local\Malwarebytes 2024-07-04 23:03 - 2024-07-04 23:03 - 000234856 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt11.sys 2024-07-04 23:03 - 2024-07-04 23:03 - 000188784 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys 2024-07-04 23:03 - 2024-07-04 23:03 - 000002100 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2024-07-04 23:02 - 2024-07-04 23:02 - 002591728 _____ (Malwarebytes) C:\Users\emili\Downloads\MBSetup.exe 2024-07-04 23:02 - 2024-07-04 23:02 - 000000000 ____D C:\ProgramData\Malwarebytes 2024-07-04 23:02 - 2024-07-04 23:02 - 000000000 ____D C:\Program Files\Malwarebytes 2024-07-04 20:45 - 2024-07-04 20:46 - 750053110 _____ C:\Users\emili\Downloads\WC_ClothingPack.rar 2024-07-04 20:41 - 2024-07-04 20:41 - 000800970 _____ C:\Windows\system32\perfh015.dat 2024-07-04 20:41 - 2024-07-04 20:41 - 000158968 _____ C:\Windows\system32\perfc015.dat 2024-07-03 21:02 - 2024-07-03 21:07 - 000000000 ____D C:\Users\emili\Downloads\RogueKiller 2024-07-03 19:23 - 2024-07-03 19:23 - 000945118 _____ C:\Users\emili\Downloads\ox_lib (1).zip 2024-07-03 17:59 - 2024-07-03 17:59 - 036325808 _____ C:\Users\emili\Downloads\RogueKiller_portable64.exe 2024-07-03 17:58 - 2024-07-03 17:58 - 000007634 _____ C:\Users\emili\Downloads\raport rogue killer.txt 2024-07-02 23:13 - 2024-07-02 23:15 - 000000000 ____D C:\Program Files (x86)\Combo Cleaner 2024-07-02 23:13 - 2024-07-02 23:13 - 003607336 _____ (RCS LT) C:\Users\emili\Downloads\CCSetup.exe 2024-07-02 23:13 - 2024-07-02 23:13 - 000001966 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Combo Cleaner.lnk 2024-07-02 23:13 - 2024-07-02 23:13 - 000000000 ____D C:\Users\emili\AppData\Local\RCS_LT 2024-07-02 22:09 - 2024-07-02 22:09 - 000003834 _____ C:\Windows\system32\Tasks\EOSv3 Scheduler onLogOn 2024-07-02 22:09 - 2024-07-02 22:09 - 000003392 _____ C:\Windows\system32\Tasks\EOSv3 Scheduler onTime 2024-07-02 22:05 - 2024-07-02 22:10 - 000001385 _____ C:\Users\emili\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk 2024-07-02 22:05 - 2024-07-02 22:05 - 008389496 _____ (ESET) C:\Users\emili\Downloads\esetonlinescanner.exe 2024-07-02 22:05 - 2024-07-02 22:05 - 000000000 ____D C:\Users\emili\AppData\Local\ESET 2024-07-02 22:02 - 2024-07-02 22:02 - 000069790 _____ C:\Users\emili\Downloads\FRST.txt 2024-07-02 19:41 - 2024-07-02 19:41 - 001888676 _____ C:\Users\emili\Downloads\WeihnachtsCase_1.rar 2024-07-01 21:24 - 2024-07-01 21:24 - 006358196 _____ C:\Users\emili\Downloads\gfx-crafting (1).zip 2024-07-01 21:23 - 2024-07-01 21:23 - 006358196 _____ C:\Users\emili\Downloads\gfx-crafting.zip 2024-07-01 21:11 - 2024-07-04 23:00 - 000013432 _____ C:\Windows\system32\Tasks\Profile.exe 2024-07-01 21:10 - 2024-07-01 21:10 - 069693205 _____ (Profile) C:\Users\emili\AppData\Local\Profile.exe 2024-07-01 20:05 - 2024-07-01 20:05 - 003005780 _____ C:\Users\emili\OneDrive\Pulpit\Bez nazwy.xcf 2024-07-01 20:05 - 2024-07-01 20:05 - 000021679 _____ C:\Users\emili\AppData\Local\recently-used.xbel 2024-06-30 20:40 - 2024-06-30 20:40 - 000088561 _____ C:\Users\emili\Downloads\sd-christmas-main.zip 2024-06-30 20:27 - 2024-06-30 20:27 - 002329732 _____ C:\Users\emili\OneDrive\Pulpit\event 1.0.xcf 2024-06-30 16:07 - 2024-06-30 16:07 - 000000000 ____D C:\Users\emili\OneDrive\Pulpit\ox_lib 2024-06-30 14:54 - 2024-07-03 22:38 - 000002418 ____H C:\Users\emili\OneDrive\Dokumenty\Default.rdp 2024-06-30 10:07 - 2024-06-30 10:07 - 000013662 _____ C:\Users\emili\Downloads\nc-headbag_SFF.rar 2024-06-29 20:11 - 2024-06-29 20:11 - 104483540 _____ C:\Users\emili\Downloads\rpemotes.zip 2024-06-28 22:21 - 2024-06-28 22:21 - 000123855 _____ C:\Users\emili\Downloads\Silna woda brzegi.mp4 2024-06-27 19:36 - 2024-06-28 22:33 - 000000000 ____D C:\Users\emili\OneDrive\Pulpit\txData 2024-06-27 19:36 - 2024-06-27 19:36 - 000000101 _____ C:\Users\emili\OneDrive\Pulpit\start_7290_default.bat 2024-06-27 19:35 - 2024-06-27 19:36 - 000000000 ____D C:\Users\emili\OneDrive\Pulpit\localhost 2024-06-27 19:35 - 2024-06-27 19:35 - 000000000 ____D C:\Users\emili\OneDrive\Pulpit\staryserwer 2024-06-27 19:24 - 2024-06-27 19:25 - 000000000 ____D C:\Users\emili\AppData\Roaming\HeidiSQL 2024-06-27 19:24 - 2024-06-27 19:24 - 000003300 _____ C:\Windows\system32\Tasks\C__Program Files_HeidiSQL_heidisql.exe 2024-06-27 19:24 - 2024-06-27 19:24 - 000000000 ____D C:\Users\emili\OneDrive\Dokumenty\HeidiSQL 2024-06-27 19:24 - 2024-06-27 19:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HeidiSQL 2024-06-27 19:24 - 2024-06-27 19:24 - 000000000 ____D C:\Program Files\HeidiSQL 2024-06-27 19:23 - 2024-06-27 19:23 - 043088328 _____ (Ansgar Becker ) C:\Users\emili\Downloads\HeidiSQL_12.7.0.6850_Setup.exe 2024-06-27 18:22 - 2024-06-27 18:22 - 069092241 _____ C:\Users\emili\Downloads\wais.rar 2024-06-26 19:25 - 2024-06-26 19:25 - 000025684 _____ C:\Windows\SysWOW64\IntegratedServicesRegionPolicySet.json 2024-06-26 19:25 - 2024-06-26 19:25 - 000025684 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2024-07-04 23:07 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SystemTemp 2024-07-04 23:07 - 2022-05-07 07:22 - 000000000 ____D C:\Windows\INF 2024-07-04 23:03 - 2023-11-30 20:31 - 000000000 ____D C:\Users\emili\AppData\Local\D3DSCache 2024-07-04 23:03 - 2022-05-07 07:24 - 000000000 ___HD C:\Windows\ELAMBKUP 2024-07-04 23:00 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps 2024-07-04 23:00 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\AppReadiness 2024-07-04 23:00 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2024-07-04 22:59 - 2023-12-01 19:14 - 000003894 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2024-07-04 22:59 - 2023-12-01 19:14 - 000003654 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2024-07-04 22:59 - 2023-11-30 21:30 - 000000000 ____D C:\Program Files (x86)\Steam 2024-07-04 22:59 - 2023-08-07 20:48 - 000004308 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2024-07-04 22:59 - 2023-08-07 20:48 - 000003976 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2024-07-04 22:59 - 2023-08-07 20:48 - 000003940 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2024-07-04 22:59 - 2023-08-07 20:48 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2024-07-04 22:59 - 2023-08-07 20:48 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2024-07-04 22:59 - 2023-08-07 20:48 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2024-07-04 22:59 - 2023-08-07 20:48 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2024-07-04 22:59 - 2023-08-07 20:48 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2024-07-04 22:59 - 2023-08-07 20:47 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2024-07-04 22:59 - 2023-08-07 20:47 - 000000000 ____D C:\ProgramData\NVIDIA 2024-07-04 22:59 - 2023-08-07 20:47 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2024-07-04 22:53 - 2023-08-07 22:20 - 000000000 ____D C:\ProgramData\Common 2024-07-04 22:44 - 2024-02-02 20:44 - 000000000 ____D C:\Program Files (x86)\Overwolf 2024-07-04 20:41 - 2023-06-09 16:29 - 001797776 _____ C:\Windows\system32\PerfStringBackup.INI 2024-07-04 20:35 - 2024-05-01 20:28 - 000000001 _____ C:\Windows\vgkbootstatus.dat 2024-07-04 20:33 - 2024-05-24 20:59 - 000000000 ____D C:\ProgramData\OmApSvcBroker 2024-07-04 20:33 - 2024-05-01 20:26 - 000000000 ____D C:\Program Files\Riot Vanguard 2024-07-04 20:33 - 2023-11-30 19:55 - 000000000 ____D C:\MSI 2024-07-04 20:33 - 2023-08-07 21:43 - 000003108 _____ C:\Windows\system32\Tasks\NahimicTask32 2024-07-04 20:33 - 2023-08-07 21:43 - 000003088 _____ C:\Windows\system32\Tasks\NahimicTask64 2024-07-04 20:33 - 2023-06-09 16:21 - 000012288 ___SH C:\DumpStack.log.tmp 2024-07-04 20:33 - 2023-06-09 16:21 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2024-07-04 20:33 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\ServiceState 2024-07-03 23:07 - 2023-11-30 21:15 - 000000000 ____D C:\Users\emili\AppData\Roaming\discord 2024-07-03 23:07 - 2022-05-07 07:17 - 001048576 _____ C:\Windows\system32\config\BBI 2024-07-03 22:39 - 2024-05-31 20:25 - 000001290 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk 2024-07-03 22:39 - 2024-02-22 00:12 - 000000000 ____D C:\Users\emili\AppData\Roaming\riot-client-ux 2024-07-03 22:39 - 2023-12-01 14:30 - 000000000 ____D C:\ProgramData\Riot Games 2024-07-03 22:39 - 2023-06-09 17:08 - 000002454 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk 2024-07-03 22:39 - 2023-06-09 17:08 - 000002451 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk 2024-07-03 22:39 - 2023-06-09 17:08 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk 2024-07-03 22:39 - 2023-06-09 16:21 - 000002455 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2024-07-03 22:38 - 2023-12-03 05:14 - 000000000 ____D C:\Users\emili\AppData\Roaming\Code 2024-07-03 22:32 - 2023-11-30 21:15 - 000000000 ____D C:\Users\emili\AppData\Local\Discord 2024-07-03 19:38 - 2023-12-03 05:14 - 000000000 ____D C:\Users\emili\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Visual Studio Code 2024-07-03 19:05 - 2023-06-09 16:21 - 000000000 ____D C:\Windows\system32\SleepStudy 2024-07-03 18:02 - 2023-11-30 20:51 - 000004236 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1701370305 2024-07-03 18:02 - 2023-11-30 20:51 - 000001393 _____ C:\Users\emili\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Przeglądarka Opera.lnk 2024-07-03 18:00 - 2023-11-30 20:31 - 000000000 ____D C:\Users\emili\AppData\Local\Packages 2024-07-02 23:13 - 2023-08-07 20:37 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2024-07-02 20:39 - 2023-12-10 02:59 - 000000000 ____D C:\Users\emili\AppData\Local\DigitalEntitlements 2024-07-02 20:22 - 2023-12-04 21:50 - 000000000 ____D C:\Users\emili\AppData\Local\FiveM 2024-07-02 19:49 - 2024-02-16 19:43 - 000267768 _____ (Microsoft Corporation) C:\Windows\system32\gamingservicesproxy_4.dll 2024-07-02 19:49 - 2023-12-31 11:52 - 002799208 _____ (Microsoft Corporation) C:\Windows\system32\xgameruntime.dll 2024-07-02 19:49 - 2023-12-31 11:52 - 000751096 _____ (Microsoft Corporation) C:\Windows\system32\gameplatformservices.dll 2024-07-02 19:49 - 2023-12-31 11:52 - 000222824 _____ (Microsoft Corporation) C:\Windows\system32\gameconfighelper.dll 2024-07-02 19:49 - 2023-12-31 11:52 - 000206440 _____ (Microsoft Corporation) C:\Windows\system32\gamelaunchhelper.dll 2024-07-02 19:49 - 2023-12-31 11:52 - 000145000 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcuihelpers.dll 2024-07-02 19:49 - 2023-12-31 11:52 - 000108024 _____ (Microsoft Corporation) C:\Windows\system32\xgamehelper.exe 2024-07-02 19:49 - 2023-12-31 11:52 - 000075368 _____ (Microsoft Corporation) C:\Windows\system32\xgamecontrol.exe 2024-07-02 19:49 - 2023-11-30 20:33 - 000003584 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-344851665-1215438941-605073250-1001 2024-07-02 19:49 - 2023-11-30 20:33 - 000003352 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-344851665-1215438941-605073250-1001 2024-07-02 19:49 - 2023-11-30 20:33 - 000002430 _____ C:\Users\emili\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2024-07-01 20:13 - 2023-12-01 23:09 - 000000000 ____D C:\Users\emili\AppData\Local\babl-0.1 2024-07-01 20:05 - 2023-12-01 23:21 - 000000000 ____D C:\Users\emili\AppData\Local\gtk-2.0 2024-06-30 22:12 - 2023-11-30 20:31 - 000000000 ____D C:\Users\emili\AppData\Local\CrashDumps 2024-06-30 14:42 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\LiveKernelReports 2024-06-30 08:56 - 2023-06-09 17:05 - 000000000 ____D C:\Program Files\Microsoft Office 2024-06-29 18:37 - 2024-03-09 08:45 - 000000000 ____D C:\ProgramData\EA Desktop 2024-06-28 20:43 - 2023-12-04 11:01 - 000000000 ____D C:\Users\emili\AppData\Local\Nahimic 2024-06-27 21:06 - 2023-12-10 11:01 - 000000000 ____D C:\Users\emili\AppData\Roaming\CitizenFX 2024-06-27 20:34 - 2023-06-09 16:22 - 000000000 ____D C:\ProgramData\Packages 2024-06-27 17:47 - 2023-11-30 21:15 - 000002256 _____ C:\Users\emili\OneDrive\Pulpit\Discord.lnk 2024-06-26 23:27 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate 2024-06-26 23:01 - 2023-06-09 16:22 - 000001623 _____ C:\Windows\system32\config\VSMIDK 2024-06-26 23:00 - 2023-06-09 16:21 - 000475352 _____ C:\Windows\system32\FNTCACHE.DAT 2024-06-26 22:59 - 2023-12-14 14:43 - 000000000 ____D C:\Windows\InboxApps 2024-06-26 22:59 - 2022-05-07 07:24 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2024-06-26 22:59 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\UUS 2024-06-26 22:59 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata 2024-06-26 22:59 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SystemResources 2024-06-26 22:59 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\WinMetadata 2024-06-26 22:59 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\Sgrm 2024-06-26 22:59 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\oobe 2024-06-26 22:59 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\ShellExperiences 2024-06-26 22:59 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\ShellComponents 2024-06-26 22:59 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\Provisioning 2024-06-26 22:59 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\bcastdvr 2024-06-26 19:27 - 2022-05-07 07:17 - 000000000 ____D C:\Windows\CbsTemp 2024-06-26 19:25 - 2023-06-09 16:24 - 003212800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll 2024-06-25 21:25 - 2023-06-09 17:08 - 000002481 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk 2024-06-25 21:25 - 2023-06-09 17:08 - 000002469 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk 2024-06-25 21:25 - 2023-06-09 17:08 - 000002415 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk 2024-06-25 21:25 - 2023-06-09 17:08 - 000002405 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk 2024-06-19 17:55 - 2023-11-30 21:04 - 000004188 _____ C:\Windows\system32\Tasks\Opera GX scheduled Autoupdate 1701371078 2024-06-19 17:55 - 2023-11-30 21:04 - 000001441 _____ C:\Users\emili\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Przeglądarka Opera GX.lnk 2024-06-15 19:48 - 2023-11-30 21:37 - 000000000 ____D C:\Users\emili\AppData\Local\Steam 2024-06-14 17:29 - 2023-11-30 22:32 - 000000000 ____D C:\Windows\system32\MRT 2024-06-14 17:27 - 2023-11-30 22:32 - 199048176 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2024-06-13 23:17 - 2023-12-01 19:38 - 000000000 ____D C:\Windows\system32\Microsoft-Edge-WebView 2024-06-11 22:53 - 2023-08-07 20:48 - 002900520 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll 2024-06-11 22:52 - 2023-08-07 20:48 - 002231336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll 2024-06-11 22:52 - 2023-08-07 20:48 - 001296936 _____ (NVIDIA Corporation) C:\Windows\system32\NvRtmpStreamer64.dll 2024-06-11 22:24 - 2023-08-07 20:48 - 000086568 _____ C:\Windows\system32\FvSDK_x64.dll 2024-06-11 22:24 - 2023-08-07 20:48 - 000075304 _____ C:\Windows\SysWOW64\FvSDK_x86.dll 2024-06-11 18:31 - 2023-08-07 20:48 - 000001951 _____ C:\Windows\NvContainerRecovery.bat 2024-06-08 17:51 - 2023-11-30 20:32 - 000000000 ____D C:\Users\emili\AppData\Local\NVIDIA Corporation 2024-06-07 18:36 - 2024-02-02 20:42 - 000000000 ____D C:\Users\emili\AppData\Local\Overwolf 2024-06-07 18:36 - 2023-06-09 16:21 - 000003566 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2024-06-07 18:36 - 2023-06-09 16:21 - 000003442 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2024-06-05 22:34 - 2023-12-01 00:30 - 000000440 _____ C:\Users\emili\OneDrive\Pulpit\Ten Komputer.lnk 2024-06-05 20:27 - 2023-06-09 16:21 - 000000000 ____D C:\Windows\system32\Drivers\wd ==================== Pliki w katalogu głównym wybranych folderów ======== 2024-03-09 09:02 - 2024-03-09 09:02 - 000000047 _____ () C:\Users\emili\AppData\Roaming\.crystalinst 2024-07-01 21:10 - 2024-07-01 21:10 - 069693205 _____ (Profile) C:\Users\emili\AppData\Local\Profile.exe 2024-07-01 20:05 - 2024-07-01 20:05 - 000021679 _____ () C:\Users\emili\AppData\Local\recently-used.xbel ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================