Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 12-08.2024 Uruchomiony przez i7 (administrator) DESKTOP-S2II1MR (Gigabyte Technology Co., Ltd. H310M S2H 2.0) (16-08-2024 09:40:10) Uruchomiony z C:\Users\i7\Desktop\FRST64.exe Załadowane profile: i7 Platforma: Microsoft Windows 10 Pro Wersja 22H2 19045.4780 (X64) Język: Polski (Polska) Domyślna przeglądarka nie została wykryta! Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastUI.exe <3> (C:\Program Files (x86)\AlrisitApplication\AlrisitService.exe ->) (AlrisitDevFa Group Fa -> ) [Brak podpisu cyfrowego] C:\Program Files (x86)\AlrisitApplication\AlrisitApp.exe (C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswEngSrv.exe (explorer.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5587.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe (explorer.exe ->) (EEDAA6AB-26BE-455F-9139-769243BEFDA8 -> ) C:\Program Files\WindowsApps\64343GTDocStudio.OfficeDocOpener_3.4.2.0_x64__3h5nez1g3qt2c\FileWatcher\FileWatcher.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <12> (services.exe ->) (AlrisitDevFa Group Fa -> ) [Brak podpisu cyfrowego] [Plik w użyciu] C:\Program Files (x86)\AlrisitApplication\AlrisitService.exe (services.exe ->) (AnyDesk Software GmbH -> AnyDesk Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe (services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe (services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastSvc.exe (services.exe ->) (Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe (services.exe ->) (Famatech Corp. -> Famatech Corp.) C:\Program Files (x86)\Radmin VPN\RvControlSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_3de4831720bb2934\RstMwService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe (services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_518f2921ba495409\IntelCpHDCPSvc.exe (services.exe ->) (LogMeIn, Inc. -> LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe (services.exe ->) (LogMeIn, Inc. -> LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpDefenderCoreService.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MsMpEng.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_14c40086f8e718c9\Display.NvContainer\NVDisplay.Container.exe <2> (svchost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5587.0_x64__8j3eq9eme6ctt\IGCC.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3023152 2024-05-15] (Riot Games, Inc. -> Riot Games, Inc.) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [426904 2024-07-30] (Avast Software s.r.o. -> Gen Digital Inc.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19572536 2023-06-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-04] (Adobe Inc. -> ) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [750680 2023-12-19] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [7811960 2024-03-25] (LogMeIn, Inc. -> LogMeIn Inc.) HKLM-x32\...\Run: [RadminVPN] => C:\Program Files (x86)\Radmin VPN\RvRvpnGui.exe [2089536 2023-07-10] (Famatech Corp. -> Famatech Corp.) HKU\S-1-5-21-3198104584-1951858979-1071046496-1001\...\Run: [Medal] => C:\Users\i7\AppData\Local\Medal\update.exe [2046824 2024-01-19] (Ferox Games B.V. -> ) HKU\S-1-5-21-3198104584-1951858979-1071046496-1001\...\Run: [Spotify] => C:\Users\i7\AppData\Roaming\Spotify\Spotify.exe [19678208 2022-05-13] (Spotify Ltd) [Brak podpisu cyfrowego] HKU\S-1-5-21-3198104584-1951858979-1071046496-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [36729320 2024-07-30] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-3198104584-1951858979-1071046496-1001\...\Run: [Camera Hub] => C:\Program Files\Elgato\CameraHub\Camera Hub.exe [29870632 2022-10-18] (Corsair Memory, Inc. -> Corsair Memory, Inc.) HKU\S-1-5-21-3198104584-1951858979-1071046496-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4407656 2024-07-17] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-3198104584-1951858979-1071046496-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45430176 2024-05-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) HKU\S-1-5-21-3198104584-1951858979-1071046496-1001\...\Run: [Opera GX Stable] => C:\Users\i7\AppData\Local\Programs\Opera GX\launcher.exe [2273696 2024-06-18] (Opera Norway AS -> Opera Software) HKU\S-1-5-21-3198104584-1951858979-1071046496-1001\...\Run: [qBittorrent] => C:\Program Files\qBittorrent\qbittorrent.exe [29698560 2023-02-28] (The qBittorrent Project) [Brak podpisu cyfrowego] HKU\S-1-5-21-3198104584-1951858979-1071046496-1001\...\Run: [RiotClient] => C:\Riot Games\Riot Client\RiotClientServices.exe [72121616 2024-06-06] (Riot Games, Inc. -> Riot Games, Inc.) HKU\S-1-5-21-3198104584-1951858979-1071046496-1001\...\Run: [Discord] => C:\Users\i7\AppData\Local\Discord\Update.exe [1525024 2023-09-18] (Discord Inc. -> GitHub) HKU\S-1-5-21-3198104584-1951858979-1071046496-1001\...\Run: [MicrosoftEdgeAutoLaunch_B938E366F1C197C9E46D8EBEB4F065F0] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3814968 2024-08-07] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-3198104584-1951858979-1071046496-1001\...\Run: [SteamServerBrowser] => C:\Users\i7\AppData\Roaming\SteamServerBrowser\SteamServerBrowser.exe [289304 2023-11-20] (Lyrha Software Technologies Inc. -> ) HKU\S-1-5-21-3198104584-1951858979-1071046496-1001\...\Run: [ProductAuthenticationService] => C:\Users\i7\AppData\Roaming\ProductAuthenticationService\pas.exe [1004072 2019-05-07] (ResolveDevOps Limited -> ResolveDevOps Limited) <==== UWAGA HKU\S-1-5-21-3198104584-1951858979-1071046496-1001\...\Run: [EADM] => C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe [2750056 2024-05-26] (Electronic Arts, Inc. -> Electronic Arts) HKU\S-1-5-21-3198104584-1951858979-1071046496-1001\...\Run: [movavi_suite_agent] => C:\Users\i7\AppData\Roaming\Movavi Video Suite 21\AgentInformer.exe [953528 2024-05-28] (Movavi Software Limited -> Movavi) HKU\S-1-5-21-3198104584-1951858979-1071046496-1001\...\MountPoints2: {4c4da684-9c16-11ed-9443-18c04d59aa18} - "E:\SETUP.EXE" HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\127.0.6533.120\Installer\chrmstp.exe [2024-08-16] (Google LLC -> Google LLC) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2023-06-18] ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (AnyDesk Software GmbH -> AnyDesk Software GmbH) HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {89DA73CA-BAF9-493A-8124-8B517D4B204C} - System32\Tasks\Avast Software\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [5157272 2024-07-30] (Avast Software s.r.o. -> Gen Digital Inc.) Task: {69CE2765-A00D-4166-97AD-9016AFB63F57} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2144664 2023-08-01] (Avast Software s.r.o. -> Avast Software) Task: {82C883F8-D1DA-4F76-9E65-0F4B1D7E49DF} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2024-05-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {D8C62E39-88FB-4C0A-A977-93C85A2048FC} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5074848 2024-05-20] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc. All rights reserved.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "cd2ea48c-bbdc-4c4f-a524-d547ff03c879" --version "6.24.11060" --silent Task: {B3E0BA8C-D641-4A5C-9723-8016E797FBE7} - System32\Tasks\CCleanerSkipUAC - i7 => C:\Program Files\CCleaner\CCleaner.exe [39169952 2024-05-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {28F81859-B74E-4B89-B2FB-E5F8A66AC851} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\10.5.0\Scheduler.exe [159208 2023-05-08] (IObit CO., LTD -> IObit) Task: {F14FBE7E-D4EF-497F-B4B2-0B75C0893CAE} - System32\Tasks\Driver Booster SkipUAC (i7) => C:\Program Files (x86)\IObit\Driver Booster\10.5.0\DriverBooster.exe [8966120 2023-06-08] (IObit CO., LTD -> IObit) Task: {F08F5AE5-CFF2-4675-8713-E30A7DAE2B83} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\10.5.0\AutoUpdate.exe [2516968 2023-05-08] (IObit CO., LTD -> IObit) Task: {85831A02-651E-4DC6-92DD-1B11A2188418} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem129.0.6651.0{3418F1BC-C9B4-40BD-91D9-13B58E75EBB6} => C:\Program Files (x86)\Google\GoogleUpdater\129.0.6651.0\updater.exe [4906600 2024-08-11] (Google LLC -> Google LLC) Task: {F6662610-B141-4EDA-BEFD-5FB73A00C61D} - System32\Tasks\Intel PTT EK Recertification => C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_fc84dfa25a6a7727\lib\IntelPTTEKRecertification.exe [855664 2023-12-14] (Intel Corporation -> Intel(R) Corporation) Task: {406B4DE5-96AE-47EB-840D-D6F838834D8C} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Task: {F1CDEEE6-3B57-42DB-A30A-C762B2A17062} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Task: {229E1F37-FA91-4C0D-BDA7-12A1976FDA45} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Task: {A9A8E3D3-AE23-41C2-B86A-0CDDBCD9D1AC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {4C7DAE11-E0A2-4FBF-8A0A-C9B778134BEA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {21D19C65-4F23-4F91-AF0C-7BCF55BA0F3C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {EAA0A2CB-AA45-405A-BAD5-3CA61083F713} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {33C823EE-26F1-4A3A-821F-F7E7C0971689} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676936 2024-08-15] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (dane wartości zawierają 6 znaków więcej). Task: {51D9EFC2-2972-44FA-9A65-D9FCAA1C0FD4} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-3198104584-1951858979-1071046496-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676936 2024-08-15] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (dane wartości zawierają 6 znaków więcej). Task: {068860AC-2DD9-4FCE-B28E-672CB7677C5A} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34376 2024-08-15] (Mozilla Corporation -> Mozilla Foundation) Task: {0EC63012-A758-4DBA-9EB0-07BC8BE72E79} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1005096 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {C93794DD-770F-4CF5-9ED0-EDF5AA54DC19} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3345448 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {87D814D0-9F6A-441D-BAF0-8DC60B736A80} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler Task: {D1088116-6055-4AB2-9FEA-BCCA9F57708C} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {56F47565-A982-4245-97F3-DF735B63C496} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {4EE87B33-3256-4459-A395-B50942D27386} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {2387B7F0-83AC-4FE2-BD33-D290BE844EEF} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {69003EEB-A097-449A-B00F-B4BF401CD695} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {81178155-3691-4E47-88CC-DA5F70B0DD6B} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {9BBE7DB6-3CCB-4A89-9284-8E6C24CDF1FA} - System32\Tasks\Opera GX scheduled Autoupdate 1669491905 => C:\Users\i7\AppData\Local\Programs\Opera GX\launcher.exe [2273696 2024-06-18] (Opera Norway AS -> Opera Software) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\..\Interfaces\{0abb1187-7a54-43d4-9dd7-c81d452042e6}: [NameServer] 9.9.9.9 Tcpip\..\Interfaces\{0abb1187-7a54-43d4-9dd7-c81d452042e6}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{0abb1187-7a54-43d4-9dd7-c81d452042e6}: [DhcpDomain] home Edge: ======= Edge Profile: C:\Users\i7\AppData\Local\Microsoft\Edge\User Data\Default [2024-08-15] Edge Extension: (Dokumenty Google offline) - C:\Users\i7\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-29] Edge Extension: (Edge relevant text changes) - C:\Users\i7\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-26] FireFox: ======== FF DefaultProfile: 2eqhduk1.default FF ProfilePath: C:\Users\i7\AppData\Roaming\Mozilla\Firefox\Profiles\2eqhduk1.default [2023-02-06] FF ProfilePath: C:\Users\i7\AppData\Roaming\Mozilla\Firefox\Profiles\pvpgak2t.default-release [2024-08-16] FF Notifications: Mozilla\Firefox\Profiles\pvpgak2t.default-release -> hxxps://gadzetomania.pl; hxxps://www.messenger.com; hxxps://www.kupbilecik.pl; hxxps://meet.google.com; hxxps://www.auto-swiat.pl FF Extension: (BTRoblox - Making Roblox Better) - C:\Users\i7\AppData\Roaming\Mozilla\Firefox\Profiles\pvpgak2t.default-release\Extensions\btroblox@antiboomz.com.xpi [2024-08-13] FF Extension: (RoPro - Enhance Your Roblox Experience) - C:\Users\i7\AppData\Roaming\Mozilla\Firefox\Profiles\pvpgak2t.default-release\Extensions\ropro@cracked.com.xpi [2023-10-28] [UpdateUrl:hxxps://clients2.google.com/service/update2/crx] FF Extension: (LibrusPro - rozszerzenie do Librusa) - C:\Users\i7\AppData\Roaming\Mozilla\Firefox\Profiles\pvpgak2t.default-release\Extensions\{2ddaa55f-7db8-460a-bf9b-01396684935b}.xpi [2024-01-21] FF Extension: (Turn all styles off) - C:\Users\i7\AppData\Roaming\Mozilla\Firefox\Profiles\pvpgak2t.default-release\Extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi [2024-04-26] FF Extension: (RoPro - Enhance Your Roblox Experience) - C:\Users\i7\AppData\Roaming\Mozilla\Firefox\Profiles\pvpgak2t.default-release\Extensions\{4d40a96d-658f-4a3e-8585-809800431ad6}.xpi [2023-06-17] [UpdateUrl:hxxps://clients2.google.com/service/update2/crx] FF Extension: (Send invitations) - C:\Users\i7\AppData\Roaming\Mozilla\Firefox\Profiles\pvpgak2t.default-release\Extensions\{b75a35da-cd53-4313-afd1-fcb0b2bec23f}.xpi [2024-03-01] [UpdateUrl:hxxps://wot-recruitment.com/public/extensions/extension-firefox-update.json] FF Plugin: @java.com/DTPlugin,version=11.401.2 -> C:\Program Files\Java\jre-1.8\bin\dtplugin\npDeployJava1.dll [2023-12-19] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.401.2 -> C:\Program Files\Java\jre-1.8\bin\plugin2\npjp2.dll [2023-12-19] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-02-08] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~4\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR Profile: C:\Users\i7\AppData\Local\Google\Chrome\User Data\Default [2024-08-15] CHR Extension: (AutoDraw for skribbl.io) - C:\Users\i7\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpnefockcbbpkbahgkkacjmebfheacjb [2024-08-01] CHR Extension: (alerabat.com | kupony i cashback) - C:\Users\i7\AppData\Local\Google\Chrome\User Data\Default\Extensions\dacdinoicboceafielngnmjjplncljhj [2024-08-01] CHR Extension: (Tampermonkey) - C:\Users\i7\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2024-07-12] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\i7\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-05-16] CHR HKLM-x32\...\Chrome\Extension: [dhkpghipgnngohhckpiadpmjoobjljim] Opera: ======= StartMenuInternet: (HKU\S-1-5-21-3198104584-1951858979-1071046496-1001) Opera GXStable - "C:\Users\i7\AppData\Local\Programs\Opera GX\Launcher.exe" ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AlrisitService; C:\Program Files (x86)\AlrisitApplication\AlrisitService.exe [71891584 2023-07-01] (AlrisitDevFa Group Fa -> ) [Brak podpisu cyfrowego] [Plik w użyciu] <==== UWAGA R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [5328200 2024-05-25] (AnyDesk Software GmbH -> AnyDesk Software GmbH) R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [9014680 2024-07-30] (Avast Software s.r.o. -> AVAST Software) R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [771480 2024-07-30] (Avast Software s.r.o. -> Gen Digital Inc.) R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [1208216 2024-07-30] (Avast Software s.r.o. -> Gen Digital Inc.) R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2023-05-05] (Avast Software s.r.o. -> AVAST Software) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [9712432 2023-07-26] (BattlEye Innovations e.K. -> ) S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1085856 2024-05-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4976976 2023-01-25] (AVB Disc Soft, SIA -> Disc Soft Ltd) S3 EAAntiCheatService; C:\Program Files\EA\AC\eaanticheat.gameservice.exe [74178224 2024-05-16] (Electronic Arts, Inc. -> Electronic Arts) S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [12224104 2024-05-26] (Electronic Arts, Inc. -> Electronic Arts) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [811496 2024-06-14] (EasyAntiCheat Oy -> Epic Games, Inc) S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [954704 2024-04-28] (EasyAntiCheat Oy -> Epic Games, Inc.) S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029456 2022-11-10] (Epic Games Inc. -> Epic Games, Inc.) R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [4920184 2024-03-25] (LogMeIn, Inc. -> LogMeIn Inc.) R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc. -> LogMeIn, Inc.) R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpDefenderCoreService.exe [1427024 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation) S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2369544 2024-06-02] (Overwolf Ltd -> Overwolf LTD) S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1271280 2023-11-11] (Rockstar Games, Inc. -> Rockstar Games) R2 RvControlSvc; C:\Program Files (x86)\Radmin VPN\RvControlSvc.exe [1179712 2023-07-10] (Famatech Corp. -> Famatech Corp.) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522096 2024-08-15] (Microsoft Windows Publisher -> Microsoft Corporation) S3 ucldr_battlegrounds_gl; C:\Program Files\Common Files\Wellbia.com\ucldr_battlegrounds_gl.exe [5964328 2023-06-14] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [9641024 2024-05-15] (Riot Games, Inc. -> Riot Games, Inc.) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\NisSrv.exe [3199648 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MsMpEng.exe [133704 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation) S3 zksvc; C:\Program Files\Common Files\PUBG\zksvc.exe [12359520 2023-08-05] (KRAFTON, Inc. -> KRAFTON, Inc) R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_14c40086f8e718c9\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_14c40086f8e718c9\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [20536 2024-07-30] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [229944 2024-07-30] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [380984 2024-07-30] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [293944 2024-07-30] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [84536 2024-07-30] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) R0 aswElam; C:\Windows\System32\drivers\aswElam.sys [27744 2024-07-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.) R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [28728 2024-07-30] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [271928 2024-07-30] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [549848 2024-08-08] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [97840 2024-07-30] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [69176 2024-07-30] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [948792 2024-07-30] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [1198648 2024-07-30] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [203728 2024-07-30] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [306648 2024-07-30] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [42256 2023-01-25] (AVB Disc Soft, SIA -> Disc Soft Ltd) R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [63696 2023-01-25] (AVB Disc Soft, SIA -> Disc Soft Ltd) R3 ElgatoVirtualCamera; C:\Windows\System32\drivers\ElgatoVirtualCamera.sys [14380560 2022-08-16] (WDKTestCert Elgato,132863164269755022 -> Windows (R) Win 7 DDK provider) R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2022-05-18] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.) R3 iriuna0; C:\Windows\system32\drivers\iriuna0.sys [46976 2021-04-06] (Iriun Oy -> Windows (R) Win 7 DDK provider) R3 NvModuleTracker; C:\Windows\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation) R3 RvNetMP60; C:\Windows\System32\drivers\RvNetMP60.sys [58288 2023-07-10] (Microsoft Windows Hardware Compatibility Publisher -> Famatech Corp.) R2 speedfan; C:\Windows\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software) S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 ss_conn_usb_driver2; C:\Windows\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [34623336 2024-05-14] (Riot Games, Inc. -> Riot Games, Inc.) S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [22080 2024-08-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [602504 2024-08-08] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105864 2024-08-08] (Microsoft Windows -> Microsoft Corporation) S3 xhunter1; C:\Windows\xhunter1.sys [1447240 2023-08-05] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) S3 EAAntiCheat; system32\drivers\eaanticheat.sys [X] S3 WinDivert; \??\C:\Users\i7\AppData\Local\Temp\Rar$EXa20688.5580\WinDivert64.sys [X] <==== UWAGA ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2024-08-16 09:40 - 2024-08-16 09:41 - 000032639 _____ C:\Users\i7\Desktop\FRST.txt 2024-08-16 09:39 - 2024-08-16 09:39 - 002397184 _____ (Farbar) C:\Users\i7\Desktop\FRST64.exe 2024-08-15 17:07 - 2024-08-15 17:07 - 000000000 ___HD C:\$WinREAgent 2024-08-15 16:27 - 2024-08-15 17:41 - 000000050 _____ C:\Users\i7\Desktop\Tundra_1.25.1.1(64)_EU.ini 2024-08-15 16:27 - 2024-08-15 16:27 - 000000000 ____D C:\Users\i7\Desktop\Tundras 09.08.24 2024-08-15 16:27 - 2024-08-08 19:16 - 000403456 _____ C:\Users\i7\Desktop\Tundra_1.25.1.1(64)_EU.exe 2024-08-15 16:26 - 2024-08-09 10:11 - 007147221 _____ C:\Users\i7\Desktop\Tundras 09.08.24.zip 2024-08-15 16:25 - 2024-08-15 16:25 - 007147404 _____ C:\Users\i7\Tundras 09.08.24.zip 2024-08-15 16:25 - 2024-08-15 16:25 - 000000000 ____D C:\Users\i7\Tundras 09.08.24 2024-08-15 15:56 - 2024-07-24 20:34 - 006321152 _____ C:\Users\i7\Desktop\TundraSky 1.28.0.0 x64_last.exe 2024-08-15 15:51 - 2024-08-15 15:57 - 000000000 ____D C:\Program Files (x86)\ExcitedCreditpqvSoft 2024-08-15 15:51 - 2024-08-15 15:51 - 000000000 ____D C:\Users\i7\AppData\Local\MPC-HC 2024-08-15 15:40 - 2024-08-15 23:40 - 000000000 ____D C:\Program Files\Mozilla Firefox 2024-08-04 12:54 - 2024-08-04 12:54 - 036594296 _____ C:\Users\i7\Desktop\Nowy Archiwum WinRARa (ZIP).zip 2024-08-02 16:24 - 2024-08-02 16:24 - 000000220 _____ C:\Users\i7\Desktop\Garry's Mod.url 2024-08-01 09:12 - 2024-08-15 15:57 - 000000050 _____ C:\Users\i7\Desktop\Tundra_1.25.1.0_EU.ini 2024-08-01 09:11 - 2024-08-01 09:11 - 000000050 _____ C:\Users\i7\Desktop\Tundra_1.28.0(64).ini 2024-07-30 16:48 - 2024-07-30 16:48 - 000314776 _____ (Gen Digital Inc.) C:\Windows\system32\aswBoot.exe 2024-07-20 23:00 - 2024-07-20 23:00 - 000000000 ____D C:\segma 2024-07-20 16:36 - 2024-07-20 16:36 - 000000019 _____ C:\Users\i7\Desktop\twitch.txt ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2024-08-16 09:41 - 2023-07-01 13:42 - 000000000 ____D C:\Users\i7\AppData\Local\AlrisitApplication 2024-08-16 09:41 - 2023-02-06 18:27 - 000000000 ____D C:\FRST 2024-08-16 09:39 - 2023-02-06 20:59 - 000000000 ____D C:\Users\i7\AppData\Roaming\qBittorrent 2024-08-16 09:18 - 2023-05-05 17:02 - 000000000 ____D C:\Users\i7\AppData\Local\Avast Software 2024-08-16 09:18 - 2022-05-29 18:22 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2024-08-16 09:17 - 2022-05-16 13:23 - 000000000 ____D C:\ProgramData\NVIDIA 2024-08-16 09:00 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2024-08-16 08:49 - 2023-07-01 13:42 - 000000000 ____D C:\ProgramData\AlrisitApplication 2024-08-16 07:11 - 2022-05-16 11:30 - 000000000 ____D C:\Windows\system32\SleepStudy 2024-08-16 01:45 - 2022-05-16 12:15 - 000002253 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2024-08-16 01:45 - 2022-05-16 12:15 - 000002212 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2024-08-16 01:44 - 2022-05-16 12:03 - 000000000 ____D C:\Windows\SystemTemp 2024-08-15 23:44 - 2022-05-16 11:46 - 000005838 _____ C:\Windows\system32\PerfStringBackup.INI 2024-08-15 23:44 - 2019-12-07 17:09 - 003454602 _____ C:\Windows\system32\perfh015.dat 2024-08-15 23:44 - 2019-12-07 17:09 - 000977002 _____ C:\Windows\system32\perfc015.dat 2024-08-15 23:41 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness 2024-08-15 23:40 - 2024-05-02 12:31 - 000000000 ___HD C:\avast! sandbox 2024-08-15 23:40 - 2023-05-05 16:31 - 000000000 ____D C:\ProgramData\Avast Software 2024-08-15 23:40 - 2022-05-29 18:22 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2024-08-15 23:40 - 2022-05-16 11:45 - 000000000 ____D C:\Intel 2024-08-15 23:40 - 2022-05-16 11:30 - 000437320 _____ C:\Windows\system32\FNTCACHE.DAT 2024-08-15 23:40 - 2022-05-16 11:30 - 000008192 ___SH C:\DumpStack.log.tmp 2024-08-15 23:40 - 2022-05-16 11:30 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2024-08-15 23:40 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ServiceState 2024-08-15 23:40 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF 2024-08-15 23:39 - 2019-12-07 17:12 - 000000000 __SHD C:\Windows\BitLockerDiscoveryVolumeContents 2024-08-15 23:39 - 2019-12-07 17:12 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2024-08-15 23:39 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2024-08-15 23:39 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata 2024-08-15 23:39 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\setup 2024-08-15 23:39 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism 2024-08-15 23:39 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources 2024-08-15 23:39 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinMetadata 2024-08-15 23:39 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\setup 2024-08-15 23:39 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates 2024-08-15 23:39 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe 2024-08-15 23:39 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism 2024-08-15 23:39 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellExperiences 2024-08-15 23:39 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\Provisioning 2024-08-15 23:39 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr 2024-08-15 23:39 - 2019-12-07 11:03 - 000524288 _____ C:\Windows\system32\config\BBI 2024-08-15 22:01 - 2022-05-16 12:17 - 000000000 ____D C:\Users\i7\AppData\Local\D3DSCache 2024-08-15 20:21 - 2022-06-04 12:59 - 000000000 ____D C:\Users\i7\AppData\Roaming\vlc 2024-08-15 20:20 - 2023-05-05 16:31 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software 2024-08-15 20:20 - 2023-03-19 15:03 - 000002248 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC - i7 2024-08-15 20:20 - 2022-05-16 11:30 - 000003494 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2024-08-15 20:20 - 2022-05-16 11:30 - 000003270 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2024-08-15 17:31 - 2023-03-19 15:03 - 000000000 ____D C:\Program Files\CCleaner 2024-08-15 17:19 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp 2024-08-15 17:15 - 2022-05-16 11:34 - 003016192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll 2024-08-15 17:05 - 2022-05-16 11:45 - 000000000 ____D C:\Windows\system32\MRT 2024-08-15 17:02 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2024-08-15 17:01 - 2022-05-16 11:45 - 197093640 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2024-08-15 16:47 - 2022-05-29 18:22 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2024-08-15 16:47 - 2022-05-29 18:22 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla 2024-08-15 16:45 - 2023-01-26 22:05 - 000000000 ____D C:\Program Files (x86)\Steam 2024-08-15 16:45 - 2022-07-28 14:26 - 000000000 ____D C:\Users\i7\AppData\Local\LogMeIn Hamachi 2024-08-15 16:45 - 2022-06-03 19:43 - 000000000 ____D C:\Users\i7\AppData\Local\CrashDumps 2024-08-15 16:25 - 2022-05-16 11:33 - 000000000 ____D C:\Users\i7 2024-08-15 15:52 - 2023-05-05 16:31 - 000000000 ____D C:\Program Files\Avast Software 2024-08-12 21:15 - 2024-05-15 09:54 - 000000000 ____D C:\Windows\Minidumps 2024-08-10 10:01 - 2022-05-16 11:31 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2024-08-08 17:01 - 2023-05-05 16:31 - 000549848 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswNetHub.sys 2024-08-08 17:01 - 2022-05-16 11:30 - 000000000 ____D C:\Windows\system32\Drivers\wd 2024-08-04 12:55 - 2024-02-05 01:06 - 000000000 ____D C:\Users\i7\AppData\Roaming\Feather Launcher 2024-08-04 12:55 - 2022-06-03 17:19 - 000000000 ____D C:\Users\i7\AppData\Roaming\discord 2024-08-04 12:54 - 2022-06-04 12:48 - 000000000 ____D C:\Users\i7\AppData\Roaming\.minecraft 2024-08-04 12:37 - 2023-09-29 12:05 - 000000000 ____D C:\Users\i7\AppData\Local\Discord 2024-08-03 20:35 - 2022-09-23 15:46 - 000000000 ____D C:\Users\i7\AppData\Roaming\paradox-launcher-v2 2024-08-03 13:00 - 2022-08-24 12:01 - 000000000 ____D C:\Users\i7\AppData\Roaming\Spotify 2024-08-03 12:42 - 2022-07-29 22:32 - 000000000 ____D C:\Users\i7\AppData\Roaming\obs-studio 2024-08-03 12:19 - 2022-08-24 12:02 - 000000000 ____D C:\Users\i7\AppData\Local\Spotify 2024-08-02 19:40 - 2024-05-10 17:08 - 000001392 _____ C:\Users\i7\Desktop\Roblox Player.lnk 2024-08-02 19:40 - 2022-06-03 23:07 - 000000000 ____D C:\Users\i7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox 2024-08-02 16:24 - 2022-06-03 18:12 - 000000000 ____D C:\Users\i7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2024-08-02 04:59 - 2023-06-11 10:45 - 000003842 _____ C:\Windows\system32\Tasks\Intel PTT EK Recertification 2024-08-01 17:18 - 2022-06-19 18:58 - 000000000 ____D C:\Users\i7\AppData\Local\Athena 2024-08-01 17:17 - 2022-06-03 23:51 - 000000000 ____D C:\Users\i7\AppData\Roaming\EasyAntiCheat 2024-08-01 08:18 - 2024-06-09 05:24 - 000000050 _____ C:\Users\i7\Desktop\Tundra_1.25.0.0(64)_EU.ini 2024-08-01 05:29 - 2024-02-16 19:30 - 000267776 _____ (Microsoft Corporation) C:\Windows\system32\gamingservicesproxy_4.dll 2024-08-01 05:29 - 2022-10-26 17:35 - 000108024 _____ (Microsoft Corporation) C:\Windows\system32\xgamehelper.exe 2024-08-01 05:29 - 2022-10-26 17:35 - 000075368 _____ (Microsoft Corporation) C:\Windows\system32\xgamecontrol.exe 2024-08-01 05:29 - 2022-06-04 12:45 - 002799096 _____ (Microsoft Corporation) C:\Windows\system32\xgameruntime.dll 2024-08-01 05:29 - 2022-06-04 12:45 - 000755304 _____ (Microsoft Corporation) C:\Windows\system32\gameplatformservices.dll 2024-08-01 05:29 - 2022-06-04 12:45 - 000222712 _____ (Microsoft Corporation) C:\Windows\system32\gameconfighelper.dll 2024-08-01 05:29 - 2022-06-04 12:45 - 000206440 _____ (Microsoft Corporation) C:\Windows\system32\gamelaunchhelper.dll 2024-08-01 05:29 - 2022-06-04 12:45 - 000144888 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcuihelpers.dll 2024-07-30 18:54 - 2022-06-03 18:09 - 000000000 ____D C:\Users\i7\AppData\Local\Steam 2024-07-30 16:48 - 2023-05-05 16:31 - 001198648 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswSP.sys 2024-07-30 16:48 - 2023-05-05 16:31 - 000948792 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswSnx.sys 2024-07-30 16:48 - 2023-05-05 16:31 - 000380984 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswbidsdriver.sys 2024-07-30 16:48 - 2023-05-05 16:31 - 000306648 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswVmm.sys 2024-07-30 16:48 - 2023-05-05 16:31 - 000293944 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswbidsh.sys 2024-07-30 16:48 - 2023-05-05 16:31 - 000271928 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswMonFlt.sys 2024-07-30 16:48 - 2023-05-05 16:31 - 000229944 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswArPot.sys 2024-07-30 16:48 - 2023-05-05 16:31 - 000097840 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswRdr2.sys 2024-07-30 16:48 - 2023-05-05 16:31 - 000084536 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswbuniv.sys 2024-07-30 16:48 - 2023-05-05 16:31 - 000069176 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswRvrt.sys 2024-07-30 16:48 - 2023-05-05 16:31 - 000028728 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswKbd.sys 2024-07-30 16:48 - 2023-05-05 16:31 - 000027744 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswElam.sys 2024-07-30 16:48 - 2023-05-05 16:31 - 000020536 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\aswArDisk.sys 2024-07-30 16:48 - 2019-12-07 11:14 - 000000000 ___HD C:\Windows\ELAMBKUP 2024-07-21 02:35 - 2024-01-19 21:23 - 000000000 ____D C:\Medal 2024-07-21 02:35 - 2022-06-22 15:31 - 000000000 ____D C:\Users\i7\AppData\Roaming\Medal 2024-07-21 02:08 - 2022-06-03 23:07 - 000000000 ____D C:\Users\i7\AppData\Local\Roblox 2024-07-20 22:24 - 2024-01-19 21:22 - 000001272 _____ C:\Users\i7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Medal.lnk 2024-07-20 22:24 - 2022-06-22 15:32 - 000000000 ____D C:\Users\i7\Documents\Medal ==================== Pliki w katalogu głównym wybranych folderów ======== 2022-12-03 22:24 - 2023-12-26 23:51 - 000000015 _____ () C:\Users\i7\AppData\Roaming\obs-virtualcam.txt 2024-01-10 19:56 - 2024-01-10 19:56 - 000000019 _____ () C:\Users\i7\AppData\Local\tkeyausss.txt 2022-11-01 19:51 - 2022-11-01 20:11 - 000000019 _____ () C:\Users\i7\AppData\Local\tkeyf.txt 2022-09-08 17:43 - 2022-09-08 17:43 - 000000019 _____ () C:\Users\i7\AppData\Local\tkeys.txt 2024-04-15 18:13 - 2024-04-15 18:19 - 000000019 _____ () C:\Users\i7\AppData\Local\tkeysss.txt 2023-06-04 21:15 - 2023-06-04 21:15 - 000000019 _____ () C:\Users\i7\AppData\Local\tkeyszss.txt ==================== FCheck ================================ (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) FCheck: C:\Windows\SysWOW64\version_IObitDel.dll [2023-06-11] <==== UWAGA (zerobajtowy plik/folder) ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================