Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 12-08.2024 Uruchomiony przez Grzesiek (administrator) PC (Gigabyte Technology Co., Ltd. B760 GAMING X DDR4) (19-08-2024 15:10:16) Uruchomiony z C:\Users\Grzesiek\Desktop\FRST64.exe Załadowane profile: Grzesiek Platforma: Microsoft Windows 11 Pro Wersja 23H2 22631.4037 (X64) Język: Polski (Polska) Domyślna przeglądarka: Chrome Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe (C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\GraphicsCardEngineStarter.exe ->) (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\GraphicsCardEngine.exe (C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe (C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe (C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe (cmd.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe (D:\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7> (Discord Inc. -> Discord Inc.) C:\Users\Grzesiek\AppData\Local\Discord\app-1.0.9158\Discord.exe <6> (DriverStore\FileRepository\u0405491.inf_amd64_cb31d9b7ce8e6841\B405281\atiesrxx.exe ->) (Advanced Micro Devices -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0405491.inf_amd64_cb31d9b7ce8e6841\B405281\atieclxx.exe (explorer.exe ->) (Figma, Inc. -> ) C:\Users\Grzesiek\AppData\Local\FigmaAgent\figma_agent.exe (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <13> (explorer.exe ->) (Riot Games, Inc. -> Riot Games, Inc.) C:\Program Files\Riot Vanguard\vgtray.exe (explorer.exe ->) (Valve Corp. -> Valve Corporation) D:\Steam\steam.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe (services.exe ->) (Advanced Micro Devices -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0405491.inf_amd64_cb31d9b7ce8e6841\B405281\atiesrxx.exe (services.exe ->) (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\EasyTuneEngineService.exe (services.exe ->) (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Windows\System32\GigabyteUpdateService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\DriverStore\FileRepository\amdfendr.inf_amd64_987f8cede005f427\amdfendrsr.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpDefenderCoreService.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\NisSrv.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_b55ed36a9a78cc75\RtkAudUService64.exe <2> (services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe (svchost.exe ->) (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) C:\Program Files\GIGABYTE\Control Center\GCC.exe (svchost.exe ->) (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\GraphicsCardEngineStarter.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.22040.0_x64__8wekyb3d8bbwe\HxTsr.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.18500.10.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_b55ed36a9a78cc75\RtkAudUService64.exe [3495808 2022-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3023152 2024-07-09] (Riot Games, Inc. -> Riot Games, Inc.) HKU\S-1-5-21-1477536923-2438906567-3048903223-1001\...\Run: [Steam] => D:\Steam\steam.exe [4407656 2024-07-17] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-1477536923-2438906567-3048903223-1001\...\Run: [Discord] => C:\Users\Grzesiek\AppData\Local\Discord\Update.exe [1525016 2023-04-26] (Discord Inc. -> GitHub) HKU\S-1-5-21-1477536923-2438906567-3048903223-1001\...\Run: [EpicGamesLauncher] => D:\Epic\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [36729320 2024-08-05] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-1477536923-2438906567-3048903223-1001\...\Run: [MicrosoftEdgeAutoLaunch_84294AF7306D23DE507761B2AC7AA076] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3814952 2024-08-14] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1477536923-2438906567-3048903223-1001\...\Run: [Figma Agent] => C:\Users\Grzesiek\AppData\Local\FigmaAgent\figma_agent.exe [8729624 2024-07-09] (Figma, Inc. -> ) HKU\S-1-5-21-1477536923-2438906567-3048903223-1001\...\Run: [AMDNoiseSuppression] => C:\WINDOWS\system32\AMD\ANR\AMDNoiseSuppression.exe [155032 2024-05-17] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) HKU\S-1-5-21-1477536923-2438906567-3048903223-1001\...\Run: [utweb] => "C:\Users\Grzesiek\AppData\Roaming\uTorrent Web\utweb.exe" /MINIMIZED (Brak pliku) HKU\S-1-5-21-1477536923-2438906567-3048903223-1001\...\Run: [Grzesiek] => cmd.exe /c start www.dinoklafbzor.org (Brak pliku) <==== UWAGA HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\127.0.6533.120\Installer\chrmstp.exe [2024-08-16] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> ==================== Zaplanowane zadania (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {C99BB504-B2E0-4E86-BB77-D6C12739FBE6} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1031384 2024-07-15] (Advanced Micro Devices -> Advanced Micro Devices, Inc.) Task: {9360A73A-6FA9-4873-88C1-148108813B96} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1031384 2024-07-15] (Advanced Micro Devices -> Advanced Micro Devices, Inc.) Task: {B6970B7A-CCD4-41D6-9163-391F5ADCA8D7} - System32\Tasks\GCC => C:\Program Files\GIGABYTE\Control Center\GCC.exe [35228272 2023-12-26] (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) -> C:\Program Files\GIGABYTE\Control Center\\-b Task: {BFBB913E-D14A-4D7F-BDF0-3281565F6286} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem129.0.6651.0{4FEC94E1-4885-418B-B415-B08430BFF22A} => C:\Program Files (x86)\Google\GoogleUpdater\129.0.6651.0\updater.exe [4906600 2024-08-11] (Google LLC -> Google LLC) Task: {CC5ED580-CBEA-401C-AB86-98902DBC1540} - System32\Tasks\GraphicsCardEngine => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngineStarter.exe [237672 2023-06-26] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) Task: {3244CB1A-37AE-4B55-BBC4-DAE5492DCC7E} - System32\Tasks\Grzesiek => C:\WINDOWS\system32\cmd.exe [323584 2024-07-28] (Microsoft Windows -> Microsoft Corporation) -> /c REG ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /f /v Grzesiek /t REG_SZ /d "cmd.exe /c start www.dinoklafbzor.org" <==== UWAGA Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (Brak pliku) Task: {331B600B-3387-4D83-94EE-2BD15A7F9194} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC RebootDialog (Brak pliku) Task: {2A077FFF-8C57-45A8-A003-D9C866516E6B} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery RebootDialog (Brak pliku) Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Brak pliku) Task: {46C685E4-5802-4BF2-8B72-3906ECE1EDC6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {6895C6A6-B860-4376-A33C-4512721642CC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {7693FC93-E35F-433F-9BCE-69CDD2D01B4B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {27DF8A7A-262A-4B71-90D8-50B6DB2B50F9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {C61F338D-E0BD-41BC-94B8-809DB9D434FE} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1031384 2024-07-15] (Advanced Micro Devices -> Advanced Micro Devices, Inc.) Task: {FEA055D8-760E-4245-9B2F-7EE824CAC500} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [60632 2024-07-15] (Advanced Micro Devices -> Advanced Micro Devices, Inc.) Task: {633E6D4E-EA98-47F4-B944-A557CCD6C059} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [324312 2024-07-15] (Advanced Micro Devices -> Advanced Micro Devices, Inc.) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.18.1 Tcpip\..\Interfaces\{165955b6-5773-4d4a-a64d-41bc3bb9431d}: [DhcpNameServer] 192.168.18.1 Tcpip\..\Interfaces\{a634d1f9-9aa8-4c6a-a0f7-362d9cdd6f09}: [DhcpNameServer] 192.168.18.1 Tcpip\..\Interfaces\{a634d1f9-9aa8-4c6a-a0f7-362d9cdd6f09}\C496175796463597374756D637D29746A463: [DhcpNameServer] 192.168.100.1 Tcpip\..\Interfaces\{c7bbd52a-904d-4f9e-aa49-b8e444cd2204}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{fce50ae8-70d3-4e67-8967-36ec922aadbf}: [DhcpNameServer] 192.168.42.129 Edge: ======= Edge Profile: C:\Users\Grzesiek\AppData\Local\Microsoft\Edge\User Data\Default [2024-08-16] Edge Extension: (Dokumenty Google offline) - C:\Users\Grzesiek\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-03] Edge Extension: (Edge relevant text changes) - C:\Users\Grzesiek\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24] Chrome: ======= CHR DefaultProfile: Profile 1 CHR Profile: C:\Users\Grzesiek\AppData\Local\Google\Chrome\User Data\Default [2023-07-04] CHR DownloadDir: D:\Pobrane CHR Extension: (Dokumenty Google offline) - C:\Users\Grzesiek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-07-04] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Grzesiek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-07-04] CHR Profile: C:\Users\Grzesiek\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-07-04] CHR Profile: C:\Users\Grzesiek\AppData\Local\Google\Chrome\User Data\Profile 1 [2024-08-19] CHR Extension: (Adblock Plus - darmowy adblocker) - C:\Users\Grzesiek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2024-08-15] CHR Extension: (Dokumenty Google offline) - C:\Users\Grzesiek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-21] CHR Extension: (Space Catboy) - C:\Users\Grzesiek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gmbjjjdjenobhcpmhbjaljalfmbjmkap [2023-08-22] CHR Extension: (LastPass: Free Password Manager) - C:\Users\Grzesiek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2024-05-07] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Grzesiek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-07-04] CHR Profile: C:\Users\Grzesiek\AppData\Local\Google\Chrome\User Data\Profile 2 [2023-07-04] CHR Extension: (Dokumenty Google offline) - C:\Users\Grzesiek\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-07-04] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Grzesiek\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-07-04] CHR Profile: C:\Users\Grzesiek\AppData\Local\Google\Chrome\User Data\System Profile [2023-10-31] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 battlenet_helpersvc; C:\ProgramData\Battle.net_components\battlenet_helpersvc\AgentHelper.exe [2569352 2024-08-03] (Blizzard Entertainment, Inc. -> Blizzard Entertainment) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [18663720 2024-08-06] (BattlEye Innovations e.K. -> ) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1137576 2023-10-21] (EasyAntiCheat Oy -> Epic Games, Inc) S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [960752 2024-07-29] (EasyAntiCheat Oy -> Epic Games, Inc.) R2 EasyTuneEngineService; C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\EasyTuneEngineService.exe [150640 2023-11-06] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [375248 2024-03-24] (Epic Games Inc. -> Epic Games, Inc.) S3 FACEITService; C:\Program Files\FACEIT AC\faceitservice.exe [78948008 2024-03-12] (ESL Gaming GmbH -> ) S2 GBTECService; C:\Program Files (x86)\Gigabyte\GBTECService\OLEDDisplayService.exe [19568 2023-12-07] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) S2 Intel(R) Platform License Manager Service; C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_fc84dfa25a6a7727\lib\PlatformLicenseManagerService.exe [741488 2023-12-14] (Intel Corporation -> Intel(R) Corporation) R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpDefenderCoreService.exe [1427024 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation) S2 OCButtonService; C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\OcButtonService.exe [131184 2023-12-06] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) S3 Rockstar Service; D:\Rockstar launcher\RockstarService.exe [6792176 2024-07-28] (Rockstar Games, Inc. -> Rockstar Games) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522096 2024-08-15] (Microsoft Windows Publisher -> Microsoft Corporation) S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [9730864 2024-07-09] (Riot Games, Inc. -> Riot Games, Inc.) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\NisSrv.exe [3199648 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MsMpEng.exe [133704 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation) R2 GigabyteUpdateService; C:\WINDOWS\system32\GigabyteUpdateService.exe [1161976 2024-08-19] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 amdfendrmgr; C:\WINDOWS\System32\DriverStore\FileRepository\amdfendr.inf_amd64_987f8cede005f427\amdfendrmgr.sys [36040 2024-05-09] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_d4de13a10f2586d0\amdsafd.sys [112952 2024-06-15] (AMD Test Build -> Advanced Micro Devices) R3 amduw23g; C:\WINDOWS\System32\DriverStore\FileRepository\u0405491.inf_amd64_cb31d9b7ce8e6841\B405281\amdkmdag.sys [106157352 2024-07-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc.) R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [63008 2024-05-16] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) S3 athur; C:\WINDOWS\System32\drivers\athurx.sys [1847296 2010-01-05] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [544768 2023-07-06] (Microsoft Corporation) [Brak podpisu cyfrowego] S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [184320 2023-07-06] (Microsoft Corporation) [Brak podpisu cyfrowego] S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Brak podpisu cyfrowego] R1 CTIIO; C:\WINDOWS\system32\drivers\CtiIo64.sys [34512 2024-03-14] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.) R1 FACEIT; C:\Program Files\FACEIT AC\FACEIT_AC.sys [72081472 2024-03-29] (Microsoft Windows Hardware Compatibility Publisher -> ) R3 gdrv3; C:\WINDOWS\system32\drivers\gdrv3.sys [51520 2024-03-14] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) S3 HWiNFO_180; C:\Users\Grzesiek\AppData\Local\Temp\HWiNFO64A_180.SYS [58528 2024-07-31] (WDKTestCert martin,133281419032501408 -> REALiX(tm)) <==== UWAGA R3 iaLPSS2_GPIO2_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_302e75596cffa74a\iaLPSS2_GPIO2_ADL.sys [150616 2022-10-18] (Intel Corporation -> Intel Corporation) R3 iaLPSS2_I2C_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_adl.inf_amd64_e736c048ca307ed2\iaLPSS2_I2C_ADL.sys [220224 2022-10-18] (Intel Corporation -> Intel Corporation) R3 rt25cx21; C:\WINDOWS\System32\DriverStore\FileRepository\rt25cx21x64.inf_amd64_44eaf8324075f31c\rt25cx21x64.sys [779736 2023-12-05] (Realtek Semiconductor Corp. -> Realtek) R3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [48800 2022-02-23] (SteelSeries ApS -> SteelSeries ApS) R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [39676808 2024-07-09] (Riot Games, Inc. -> Riot Games, Inc.) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [22080 2024-08-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [602504 2024-08-08] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2024-08-08] (Microsoft Windows -> Microsoft Corporation) S3 PDFWKRNL; \??\C:\Users\Grzesiek\AppData\Local\Temp\USBCPDFW\pdfwkrnl.sys [X] <==== UWAGA S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Trzy miesiące (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2024-08-19 15:10 - 2024-08-19 15:10 - 000021858 _____ C:\Users\Grzesiek\Desktop\FRST.txt 2024-08-18 18:25 - 2024-08-18 18:25 - 000798244 _____ C:\WINDOWS\system32\perfh015.dat 2024-08-18 18:25 - 2024-08-18 18:25 - 000158294 _____ C:\WINDOWS\system32\perfc015.dat 2024-08-18 14:00 - 2024-08-19 15:10 - 000000000 ____D C:\FRST 2024-08-18 14:00 - 2024-08-18 14:00 - 002397184 _____ (Farbar) C:\Users\Grzesiek\Desktop\FRST64.exe 2024-08-16 20:19 - 2024-08-16 20:19 - 000004184 _____ C:\Users\Grzesiek\Desktop\fixlist.txt 2024-08-16 20:19 - 2024-08-16 20:19 - 000000000 _____ C:\Users\Grzesiek\Desktop\Nowy Dokument tekstowy.txt 2024-08-15 20:18 - 2024-08-15 20:18 - 000026169 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json 2024-08-15 20:17 - 2024-08-15 20:17 - 000026169 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json 2024-08-10 23:36 - 2024-08-10 23:36 - 000000000 ____D C:\Users\Grzesiek\AppData\Local\IsolatedStorage 2024-08-10 23:36 - 2024-08-10 23:36 - 000000000 ____D C:\Program Files (x86)\Microsoft XNA 2024-08-10 22:48 - 2024-08-10 22:48 - 000000000 ____D C:\Users\Grzesiek\AppData\LocalLow\ANPA_US 2024-08-06 21:37 - 2024-08-06 21:37 - 000000000 _____ C:\Users\Public\Documents\rsEngine.config.backup 2024-08-06 18:32 - 2024-08-07 00:40 - 000000000 ____D C:\Users\Grzesiek\AppData\Roaming\ReasonLabs 2024-08-06 18:31 - 2024-08-06 18:31 - 000001880 _____ C:\Users\Grzesiek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent Web.lnk 2024-08-05 13:18 - 2024-08-05 13:18 - 000000000 ____D C:\Users\Grzesiek\AppData\Roaming\Macromedia 2024-08-03 20:25 - 2024-08-03 20:25 - 000001621 _____ C:\Users\Public\Desktop\VALORANT.lnk 2024-08-03 20:23 - 2024-08-03 20:23 - 000003596 _____ C:\WINDOWS\system32\Tasks\Grzesiek 2024-07-31 10:59 - 2024-07-31 10:59 - 000000975 _____ C:\Users\Public\Desktop\CPUID HWMonitor.lnk 2024-07-31 10:59 - 2024-07-31 10:59 - 000000963 _____ C:\Users\Public\Desktop\CPUID powerMAX.lnk 2024-07-31 10:59 - 2024-07-31 10:59 - 000000000 ____D C:\Users\Grzesiek\AppData\Local\CPUID 2024-07-31 10:59 - 2024-07-31 10:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID 2024-07-31 10:59 - 2024-07-31 10:59 - 000000000 ____D C:\Program Files\CPUID 2024-07-29 23:09 - 2024-07-29 23:09 - 000000000 ____D C:\Users\Grzesiek\AppData\Local\Shivers 2024-07-29 10:10 - 2024-07-29 10:10 - 000000000 ____D C:\Users\Grzesiek\AppData\Local\TaskManClient 2024-07-29 10:10 - 2024-07-29 10:10 - 000000000 ____D C:\Users\Grzesiek\AppData\Local\Back4Blood 2024-07-28 23:07 - 2024-08-19 15:08 - 000003098 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher 2024-07-28 23:06 - 2024-07-28 23:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Software꞉ Adrenalin Edition 2024-07-28 23:06 - 2024-07-28 23:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Bug Report Tool 2024-07-28 23:00 - 2024-07-19 17:48 - 002101032 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2024-07-28 23:00 - 2024-07-19 17:48 - 002101032 _____ C:\WINDOWS\system32\vulkaninfo.exe 2024-07-28 23:00 - 2024-07-19 17:48 - 001659184 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2024-07-28 23:00 - 2024-07-19 17:48 - 001659184 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2024-07-28 23:00 - 2024-07-19 17:48 - 001466176 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2024-07-28 23:00 - 2024-07-19 17:48 - 001466176 _____ C:\WINDOWS\system32\vulkan-1.dll 2024-07-28 23:00 - 2024-07-19 17:48 - 001307624 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2024-07-28 23:00 - 2024-07-19 17:48 - 001307624 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2024-07-28 23:00 - 2024-07-19 17:48 - 001031360 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe 2024-07-28 23:00 - 2024-07-19 17:48 - 000632104 _____ C:\WINDOWS\system32\GameManager64.dll 2024-07-28 23:00 - 2024-07-19 17:48 - 000581528 _____ C:\WINDOWS\system32\libamdsmi_guest.dll 2024-07-28 23:00 - 2024-07-19 17:48 - 000563496 _____ C:\WINDOWS\system32\libamdsmi_host.dll 2024-07-28 23:00 - 2024-07-19 17:48 - 000558784 _____ C:\WINDOWS\system32\atieah64.exe 2024-07-28 23:00 - 2024-07-19 17:48 - 000526232 _____ C:\WINDOWS\system32\EEURestart.exe 2024-07-28 23:00 - 2024-07-19 17:48 - 000479632 _____ C:\WINDOWS\SysWOW64\GameManager32.dll 2024-07-28 23:00 - 2024-07-19 17:48 - 000280256 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll 2024-07-28 23:00 - 2024-07-19 17:48 - 000236736 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll 2024-07-28 23:00 - 2024-07-19 17:48 - 000196288 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll 2024-07-28 23:00 - 2024-07-19 17:48 - 000190656 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll 2024-07-28 23:00 - 2024-07-19 17:48 - 000150208 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll 2024-07-28 23:00 - 2024-07-19 17:47 - 002287912 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdsasrv64.dll 2024-07-28 23:00 - 2024-07-19 17:47 - 002152744 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll 2024-07-28 23:00 - 2024-07-19 17:47 - 001797008 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll 2024-07-28 23:00 - 2024-07-19 17:47 - 001797008 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll 2024-07-28 23:00 - 2024-07-19 17:47 - 001347872 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdsacli64.dll 2024-07-28 23:00 - 2024-07-19 17:47 - 001254808 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll 2024-07-28 23:00 - 2024-07-19 17:47 - 001077392 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdsacli32.dll 2024-07-28 23:00 - 2024-07-19 17:47 - 001055536 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll 2024-07-28 23:00 - 2024-07-19 17:47 - 000473488 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll 2024-07-28 23:00 - 2024-07-19 17:47 - 000421568 _____ C:\WINDOWS\SysWOW64\atieah32.exe 2024-07-28 23:00 - 2024-07-19 17:47 - 000142632 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll 2024-07-28 23:00 - 2024-07-19 17:47 - 000140176 _____ C:\WINDOWS\system32\amdxc64.dll 2024-07-28 23:00 - 2024-07-19 17:47 - 000117040 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll 2024-07-28 23:00 - 2024-07-19 17:47 - 000116624 _____ C:\WINDOWS\SysWOW64\amdxc32.dll 2024-07-28 23:00 - 2024-07-19 17:47 - 000075048 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ati2erec.dll 2024-07-28 23:00 - 2024-07-19 17:46 - 110292776 _____ C:\WINDOWS\system32\amd_comgr_2.dll 2024-07-28 23:00 - 2024-07-19 17:46 - 105432984 _____ C:\WINDOWS\system32\amd_comgr.dll 2024-07-28 23:00 - 2024-07-19 17:46 - 093902232 _____ C:\WINDOWS\SysWOW64\amd_comgr32.dll 2024-07-28 23:00 - 2024-07-19 17:46 - 007598784 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdadlx64.dll 2024-07-28 23:00 - 2024-07-19 17:46 - 007373512 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdadlx32.dll 2024-07-28 23:00 - 2024-07-19 17:46 - 002921872 _____ C:\WINDOWS\system32\amd-smi.exe 2024-07-28 23:00 - 2024-07-19 17:46 - 000801584 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Rapidfire64.dll 2024-07-28 23:00 - 2024-07-19 17:46 - 000785088 _____ C:\WINDOWS\system32\hiprt0200064.dll 2024-07-28 23:00 - 2024-07-19 17:46 - 000678696 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\Rapidfire.dll 2024-07-28 23:00 - 2024-07-19 17:46 - 000591144 _____ C:\WINDOWS\system32\amdgfxinfo64.dll 2024-07-28 23:00 - 2024-07-19 17:46 - 000545984 _____ C:\WINDOWS\system32\dgtrayicon.exe 2024-07-28 23:00 - 2024-07-19 17:46 - 000471336 _____ C:\WINDOWS\system32\amdlogum.exe 2024-07-28 23:00 - 2024-07-19 17:46 - 000449432 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll 2024-07-28 23:00 - 2024-07-19 17:46 - 000344256 _____ C:\WINDOWS\system32\clinfo.exe 2024-07-28 23:00 - 2024-07-19 17:46 - 000227624 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2024-07-28 23:00 - 2024-07-19 17:46 - 000197416 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2024-07-28 23:00 - 2024-07-19 17:46 - 000177040 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl6.dll 2024-07-28 23:00 - 2024-07-19 17:46 - 000145816 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl.dll 2024-07-28 23:00 - 2024-07-19 17:46 - 000051504 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\RapidFireServer64.dll 2024-07-28 23:00 - 2024-07-19 17:46 - 000048320 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\RapidFireServer.dll 2024-07-28 23:00 - 2024-07-19 17:45 - 021762456 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdhip64.dll 2024-07-28 23:00 - 2024-07-19 17:45 - 020438312 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdhip64_6.dll 2024-07-28 23:00 - 2024-07-19 17:45 - 001726536 _____ (AMD) C:\WINDOWS\system32\amf-mft-mjpeg-decoder64.dll 2024-07-28 23:00 - 2024-07-19 17:45 - 001401000 _____ (AMD) C:\WINDOWS\SysWOW64\amf-mft-mjpeg-decoder32.dll 2024-07-28 23:00 - 2024-07-19 17:45 - 000552984 _____ C:\WINDOWS\system32\amdmiracast.dll 2024-07-28 23:00 - 2024-07-19 17:45 - 000178864 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll 2024-07-28 23:00 - 2024-07-19 17:45 - 000168648 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll 2024-07-28 23:00 - 2024-07-19 17:45 - 000168640 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll 2024-07-28 23:00 - 2024-07-19 17:45 - 000161792 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atidxx64.dll 2024-07-28 23:00 - 2024-07-19 17:45 - 000154032 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll 2024-07-28 23:00 - 2024-07-19 17:45 - 000140744 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll 2024-07-28 23:00 - 2024-07-19 17:45 - 000140736 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll 2024-07-28 23:00 - 2024-07-19 17:45 - 000134400 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atidxx32.dll 2024-07-28 23:00 - 2024-07-19 17:07 - 113329392 _____ C:\WINDOWS\system32\amdxc64.so 2024-07-28 23:00 - 2024-07-19 17:06 - 009979672 _____ C:\WINDOWS\system32\hiprt02000_amd.hipfb 2024-07-28 23:00 - 2024-07-19 17:06 - 002459536 _____ C:\WINDOWS\system32\oro_compiled_kernels.hipfb 2024-07-28 23:00 - 2024-05-17 21:41 - 000059288 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ANR-bgproc-Lib.dll 2024-07-28 23:00 - 2024-05-16 21:58 - 000063008 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdxe.sys ==================== Trzy miesiące (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2024-08-19 15:10 - 2023-07-04 05:46 - 000000000 ____D C:\Users\Grzesiek\AppData\Roaming\discord 2024-08-19 15:09 - 2023-07-04 05:46 - 000000000 ____D C:\Users\Grzesiek\AppData\Local\Discord 2024-08-19 15:08 - 2024-03-26 17:50 - 000003090 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate 2024-08-19 15:08 - 2024-03-14 00:08 - 000003428 _____ C:\WINDOWS\system32\Tasks\GCC 2024-08-19 15:08 - 2023-07-06 23:15 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat 2024-08-19 15:08 - 2023-07-06 03:08 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2024-08-19 15:08 - 2023-07-04 05:13 - 000012288 ___SH C:\DumpStack.log.tmp 2024-08-19 15:08 - 2023-07-04 04:02 - 000089336 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\WINDOWS\system32\GigabyteDownloadAssistant.exe 2024-08-19 15:08 - 2023-07-04 03:37 - 001189680 _____ C:\WINDOWS\system32\wpbbin.exe 2024-08-19 15:08 - 2023-07-04 03:37 - 001161976 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\WINDOWS\system32\GigabyteUpdateService.exe 2024-08-19 15:08 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp 2024-08-19 15:08 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2024-08-19 01:49 - 2022-05-07 07:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2024-08-19 01:48 - 2023-07-06 03:06 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2024-08-18 18:25 - 2023-07-06 03:08 - 001797768 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2024-08-18 18:25 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF 2024-08-18 14:21 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness 2024-08-18 14:19 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps 2024-08-18 13:54 - 2023-07-04 05:13 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2024-08-16 12:17 - 2023-07-04 04:30 - 000000000 ____D C:\Users\Grzesiek\AppData\Local\D3DSCache 2024-08-16 00:57 - 2023-07-04 04:28 - 000002253 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2024-08-16 00:57 - 2023-07-04 04:28 - 000002212 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2024-08-15 21:18 - 2023-07-04 04:02 - 000000000 ____D C:\Users\Grzesiek\AppData\Local\Packages 2024-08-15 20:26 - 2023-07-06 03:06 - 000296160 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2024-08-15 20:25 - 2023-10-11 13:34 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView 2024-08-15 20:25 - 2022-05-07 12:41 - 000000000 __SHD C:\WINDOWS\BitLockerDiscoveryVolumeContents 2024-08-15 20:25 - 2022-05-07 12:41 - 000000000 ___SD C:\WINDOWS\system32\AppV 2024-08-15 20:25 - 2022-05-07 12:41 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2024-08-15 20:25 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2024-08-15 20:25 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\WUModels 2024-08-15 20:25 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\UUS 2024-08-15 20:25 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2024-08-15 20:25 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2024-08-15 20:25 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources 2024-08-15 20:25 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemApps 2024-08-15 20:25 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2024-08-15 20:25 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm 2024-08-15 20:25 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates 2024-08-15 20:25 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe 2024-08-15 20:25 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Dism 2024-08-15 20:25 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\appraiser 2024-08-15 20:25 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences 2024-08-15 20:25 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents 2024-08-15 20:25 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Provisioning 2024-08-15 20:25 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2024-08-15 20:25 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr 2024-08-15 20:19 - 2022-05-07 07:25 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll 2024-08-15 20:19 - 2022-05-07 07:24 - 000249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll 2024-08-15 20:19 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp 2024-08-15 20:11 - 2023-07-04 05:03 - 000000000 ____D C:\WINDOWS\system32\MRT 2024-08-15 20:09 - 2023-07-04 05:03 - 197093640 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2024-08-15 19:51 - 2023-07-04 05:46 - 000002262 _____ C:\Users\Grzesiek\Desktop\Discord.lnk 2024-08-13 00:02 - 2024-01-30 23:47 - 000000000 ____D C:\Users\Grzesiek\AppData\Local\FiveM 2024-08-11 23:38 - 2023-07-06 23:40 - 000000000 ____D C:\Users\Grzesiek\AppData\Local\CrashDumps 2024-08-11 23:37 - 2023-07-04 14:06 - 000000000 ____D C:\ProgramData\Riot Games 2024-08-11 23:37 - 2023-07-04 05:49 - 000000897 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk 2024-08-11 23:07 - 2023-07-04 05:32 - 000000000 ____D C:\Users\Grzesiek\AppData\Local\AMD_Common 2024-08-11 01:36 - 2023-07-06 02:56 - 000000000 ____D C:\Users\Grzesiek 2024-08-10 21:41 - 2023-07-14 15:00 - 000000892 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FACEIT AC.lnk 2024-08-10 21:41 - 2023-07-09 11:31 - 000000585 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk 2024-08-10 21:41 - 2023-07-07 01:23 - 000000000 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Install.data 2024-08-08 01:29 - 2023-07-05 20:38 - 000000000 ____D C:\Users\Grzesiek\AppData\Roaming\EasyAntiCheat 2024-08-08 01:05 - 2023-07-04 03:38 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2024-08-07 12:53 - 2023-07-21 12:08 - 000000000 ____D C:\Users\Grzesiek\AppData\Local\BitTorrentHelper 2024-08-06 21:50 - 2024-01-30 23:48 - 000000000 ____D C:\Users\Grzesiek\AppData\Roaming\CitizenFX 2024-08-06 11:55 - 2023-07-06 02:55 - 000000000 ____D C:\WINDOWS\system32\SteelSeries 2024-08-06 11:40 - 2023-11-24 13:43 - 000000000 ____D C:\Users\Grzesiek\AppData\Local\BattlEye 2024-08-06 11:38 - 2024-01-23 23:08 - 000000617 _____ C:\Users\Public\Desktop\Battlestate Games Launcher.lnk 2024-08-06 11:38 - 2024-01-23 23:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlestate Games 2024-08-05 22:52 - 2024-03-12 00:09 - 000000000 ____D C:\Users\Grzesiek\AppData\Roaming\riot-client-ux 2024-08-03 20:25 - 2023-07-04 13:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games 2024-08-03 20:22 - 2023-07-04 16:41 - 000000000 ____D C:\ProgramData\Battle.net_components 2024-08-03 20:22 - 2023-07-04 14:09 - 000000000 ____D C:\ProgramData\Battle.net 2024-07-29 23:09 - 2023-07-04 05:50 - 000000000 ____D C:\Users\Grzesiek\AppData\Local\UnrealEngine 2024-07-29 23:09 - 2023-07-04 05:28 - 000000000 ____D C:\ProgramData\Package Cache 2024-07-29 10:10 - 2023-11-21 18:19 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat_EOS 2024-07-29 09:51 - 2023-07-06 03:08 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2024-07-29 09:51 - 2023-07-06 03:08 - 000003472 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d9ae2590112c11 2024-07-29 09:18 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData 2024-07-29 09:17 - 2023-07-06 17:27 - 000000000 ____D C:\Program Files\Riot Vanguard 2024-07-29 09:17 - 2023-07-04 05:32 - 000000000 ____D C:\AMD 2024-07-29 00:26 - 2023-07-04 05:19 - 000000000 ____D C:\Users\Grzesiek\AppData\Local\AMD 2024-07-28 23:06 - 2024-03-26 17:50 - 000003484 _____ C:\WINDOWS\system32\Tasks\ModifyLinkUpdate 2024-07-28 23:06 - 2024-03-26 17:50 - 000003072 _____ C:\WINDOWS\system32\Tasks\StartDVR 2024-07-28 23:06 - 2023-11-17 21:41 - 000003152 _____ C:\WINDOWS\system32\Tasks\StartCN 2024-07-28 23:06 - 2023-07-04 05:19 - 000000000 ____D C:\Program Files\AMD 2024-07-28 23:06 - 2023-07-04 04:17 - 000000000 ____D C:\ProgramData\Packages 2024-07-28 17:02 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate 2024-07-28 16:44 - 2022-05-07 12:41 - 000000000 ____D C:\WINDOWS\InboxApps 2024-07-28 16:44 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12 2024-07-28 16:44 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs 2024-07-28 16:44 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\system32\UNP 2024-07-28 16:44 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\system32\F12 2024-07-28 16:44 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2024-07-28 16:44 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\PrintDialog 2024-07-28 16:44 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2024-07-28 16:44 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation 2024-07-28 16:44 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2024-07-28 16:44 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2024-07-28 16:44 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences 2024-07-28 16:44 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\setup 2024-07-28 16:44 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation 2024-07-28 16:44 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\migwiz 2024-07-28 16:44 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient 2024-07-28 16:44 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\BrowserCore 2024-07-28 16:44 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\servicing 2024-07-28 16:43 - 2022-05-07 12:41 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll 2024-07-28 16:43 - 2022-05-07 12:41 - 000024383 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml 2024-07-28 16:41 - 2023-07-06 03:09 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll ==================== Pliki w katalogu głównym wybranych folderów ======== 2023-07-23 13:01 - 2023-08-28 13:50 - 000208896 _____ () C:\Users\Grzesiek\AppData\Roaming\emp.bin ==================== SigCheckExt ========================= 2024-08-18 14:00 - 2024-08-18 14:00 - 002397184 _____ (Farbar) C:\Users\Grzesiek\Desktop\FRST64.exe ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== BCD ================================ Firmware Boot Manager --------------------- identifier {fwbootmgr} displayorder {bootmgr} timeout 1 Windows Boot Manager -------------------- identifier {bootmgr} device partition=\Device\HarddiskVolume2 path \EFI\Microsoft\Boot\bootmgfw.efi description Windows Boot Manager locale pl-PL inherit {globalsettings} default {current} resumeobject {1f34d9bf-1a21-11ee-b444-864862190ca3} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Windows Boot Loader ------------------- identifier {current} device partition=C: path \WINDOWS\system32\winload.efi description Windows 11 locale pl-PL inherit {bootloadersettings} recoverysequence {1f34d9c2-1a21-11ee-b444-864862190ca3} displaymessageoverride Recovery recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \WINDOWS resumeobject {1f34d9bf-1a21-11ee-b444-864862190ca3} nx OptIn bootmenupolicy Standard Windows Boot Loader ------------------- identifier {1f34d9c2-1a21-11ee-b444-864862190ca3} device ramdisk=[\Device\HarddiskVolume5]\Recovery\WindowsRE\Winre.wim,{1f34d9c4-1a21-11ee-b444-864862190ca3} path \windows\system32\winload.efi description Windows Recovery Environment locale pl-PL inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[\Device\HarddiskVolume5]\Recovery\WindowsRE\Winre.wim,{1f34d9c4-1a21-11ee-b444-864862190ca3} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Resume from Hibernate --------------------- identifier {1f34d9bf-1a21-11ee-b444-864862190ca3} device partition=C: path \WINDOWS\system32\winresume.efi description Windows Resume Application locale pl-PL inherit {resumeloadersettings} recoverysequence {1f34d9c2-1a21-11ee-b444-864862190ca3} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: custom:21000026 partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Windows Memory Tester --------------------- identifier {memdiag} device partition=\Device\HarddiskVolume2 path \EFI\Microsoft\Boot\memtest.efi description Diagnostyka pamięci systemu Windows locale pl-PL inherit {globalsettings} badmemoryaccess Yes EMS Settings ------------ identifier {emssettings} bootems No Debugger Settings ----------------- identifier {dbgsettings} debugtype Local RAM Defects ----------- identifier {badmemory} Global Settings --------------- identifier {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} Boot Loader Settings -------------------- identifier {bootloadersettings} inherit {globalsettings} {hypervisorsettings} Hypervisor Settings ------------------- identifier {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 Resume Loader Settings ---------------------- identifier {resumeloadersettings} inherit {globalsettings} Device options -------------- identifier {1f34d9c4-1a21-11ee-b444-864862190ca3} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume5 ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Koniec FRST.txt ========================