Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 06-08-2023 Uruchomiony przez Administrator (administrator) DESKTOP-0AQ6AOK (08-08-2023 18:53:49) Uruchomiony z M:\Portable\frst\FRST64.exe Załadowane profile: Administrator Platforma: Microsoft Windows 10 Pro Wersja 22H2 19045.3208 (X64) Język: Polski (Polska) Domyślna przeglądarka: Brave Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <5> (Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.141\BraveCrashHandler.exe (Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.141\BraveCrashHandler64.exe (C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\SwAgent\ArmourySwAgent.exe (C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryHtmlDebugServer.exe (C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.UserSessionHelper.exe (C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe (explorer.exe ->) (VideoLAN -> VideoLAN) C:\Program Files\VideoLAN\VLC\vlc.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUS Inc.) C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe (services.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.02.12\atkexComSvc.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Program Files (x86)\LightingService\LightingService.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe (services.exe ->) (Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\9.0.1.1462\AdskLicensingService\AdskLicensingService.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe (services.exe ->) (ChaosGroup) [Brak podpisu cyfrowego] C:\Program Files\Chaos Group\Chaos Cosmos\cbservice.exe (services.exe ->) (Flexera Software LLC -> Flexera) C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_19f3764f95906f94\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (SplitmediaLabs Limited -> SplitmediaLabs Limited) C:\Program Files\XSplit\VCam\service\XSpltVidSvc.exe (services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe (svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2330.7.0_x64__cv1g1gvanyjgm\WhatsApp.exe (svchost.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files\ASUS\KINGSTON_Aac_DRAM\AacKingstonDramHal_x86.exe (svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe (svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe (svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe <4> (svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\AacExtCard\extensionCardHal_x86.exe (svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\ASUS_Aac_DRAM\Aac3572DramHal_x86.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2210.0.0_x64__8wekyb3d8bbwe\CalculatorApp.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.3205_none_7e1f4da67c811930\TiWorker.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [220056 2023-07-04] (Avast Software s.r.o. -> AVAST Software) HKLM\...\Run: [kX Mixer] => "C:\WINDOWS\System32\kxmixer.exe" --startup (Brak pliku) HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-04-30] (Adobe Inc. -> ) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [707768 2022-03-10] (Oracle America, Inc. -> Oracle Corporation) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Ograniczenia <==== UWAGA HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Ograniczenia <==== UWAGA HKU\S-1-5-21-713009339-1946454614-2320559408-500\...\Run: [TeraBoxWeb] => D:\Nagrania\Nowy folder\TeraBox\TeraBoxWebService.exe [1139056 2023-02-03] (FLEXTECH INC. -> Flextech Inc.) HKU\S-1-5-21-713009339-1946454614-2320559408-500\...\Run: [MicrosoftEdgeAutoLaunch_98769996E24836F99EC8617644423B4C] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4088256 2023-08-06] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-713009339-1946454614-2320559408-500\...\Run: [Income.Client] => M:\pierdoły\jakies gufno\Income\Income.Main.exe (Brak pliku) HKU\S-1-5-21-713009339-1946454614-2320559408-500\...\MountPoints2: {a2667f8e-1eb2-11ec-9c54-002522e7eb66} - "D:\HiSuiteDownLoader.exe" HKU\S-1-5-21-713009339-1946454614-2320559408-500\...\MountPoints2: {b5126645-b504-11eb-9c36-002522e7eb66} - "D:\HiSuiteDownLoader.exe" HKLM\Software\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\System32\Rundll32.exe C:\Windows\System32\mscories.dll,Install HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\115.0.5790.171\Installer\chrmstp.exe [2023-08-07] (Google LLC -> Google LLC) HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\115.1.56.20\Installer\chrmstp.exe [2023-08-05] (Brave Software, Inc.) [Brak podpisu cyfrowego] HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install HKLM\Software\...\Authentication\Credential Providers: [{AC7DD106-EAB6-4b41-AC4F-D52FD62A82C7}] -> C:\Program Files\Fortinet\FortiClient\FortiCredentialProvider2.dll [2021-08-09] (Fortinet Technologies (Canada) ULC -> Fortinet Inc.) HKLM\Software\...\Authentication\Credential Provider Filters: [{AC7DD106-EAB6-4b41-AC4F-D52FD62A82C7}] -> C:\Program Files\Fortinet\FortiClient\FortiCredentialProvider2.dll [2021-08-09] (Fortinet Technologies (Canada) ULC -> Fortinet Inc.) Startup: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\FreeRapid 0.9u4.lnk [2022-04-28] ShortcutTarget: FreeRapid 0.9u4.lnk -> M:\pierdoBy\pobierak jakis\frd.exe (Brak pliku) Startup: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GenuineService.lnk [2021-04-30] ShortcutTarget: GenuineService.lnk -> C:\Users\Administrator\Autodesk\Genuine Service\GenuineService.exe (Autodesk, Inc. -> Autodesk) HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {3E4D0E04-3AE7-4982-BE26-8C96FA7C881F} - System32\Tasks\ASUS\AcPowerNotification => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe [309608 2022-11-24] (ASUSTeK COMPUTER INC. -> ASUS) Task: {EEF4C91C-5E26-49C6-9466-1C110D3F6193} - System32\Tasks\ASUS\ArmourySocketServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe [1855848 2022-11-24] (ASUSTeK COMPUTER INC. -> ASUS) Task: {9504C5A7-D593-4538-AD72-42468C3C086C} - System32\Tasks\ASUS\ASUSUpdateTaskMachineCore1d8938e7ac9d715 => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2022-07-09] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) Task: {05A6A6B0-5727-4978-9FFD-15099B5A500E} - System32\Tasks\ASUS\ASUSUpdateTaskMachineUA => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2022-07-09] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) Task: {FE6F084C-3E70-4171-8F78-CDC254DBC663} - System32\Tasks\ASUS\Framework Service => C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe [44888504 2022-11-04] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) Task: {777C15B0-33E2-491F-81E5-CBE694B71166} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (Brak pliku) Task: {57263F32-C1CB-4B14-ABFC-2FAFADDA5D78} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4944792 2023-08-01] (Avast Software s.r.o. -> AVAST Software) Task: {A0FB03F4-9AE6-4837-9090-E69EFF367846} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2144664 2023-08-02] (Avast Software s.r.o. -> Avast Software) Task: {E32DBEFE-428D-4F16-8A5F-2C8A92AF4A8A} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162968 2022-02-02] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {4FBC4FD6-7646-4727-A8DC-6DD3C9B4FA97} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162968 2022-02-02] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {E7AFEEFE-AAC2-4432-B038-C0D8B07256A1} - System32\Tasks\GoogleUpdateTaskMachineCore{8656924B-F6D6-4DEA-A719-F2576039766B} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-02-02] (Google LLC -> Google LLC) Task: {4875D5C5-C28A-47D2-962F-7ADD05974B61} - System32\Tasks\GoogleUpdateTaskMachineUA{5A4327A9-75F0-4F95-ACBA-94F44C19B2EB} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-02-02] (Google LLC -> Google LLC) Task: {88EDA843-E58E-4C4B-8229-CBA01503D363} - System32\Tasks\Microsoft\Windows\CUAssistant\CULauncher => %ProgramFiles%\CUAssistant\culauncher.exe (Brak pliku) Task: {08123C88-DD44-4CB1-9994-DEB9547B29BD} - System32\Tasks\NahimicAPISvc32Run => "C:\Program Files\NahimicAPI\x86\NahimicAPISvc32.exe" $(Arg0) $(Arg1) $(Arg2) $(Arg3) $(Arg4) $(Arg5) $(Arg6) $(Arg7) (Brak pliku) Task: {DA87DB7D-49E1-4554-8C5C-0FE8DE9E50D1} - System32\Tasks\NahimicAPISvc64Run => "C:\Program Files\NahimicAPI\NahimicAPISvc64.exe" $(Arg0) $(Arg1) $(Arg2) $(Arg3) $(Arg4) $(Arg5) $(Arg6) $(Arg7) (Brak pliku) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{c914c09d-c4a0-4c31-bbef-6df6fbb82aca}: [DhcpNameServer] 192.168.1.1 Edge: ======= DownloadDir: C:\Users\Administrator\Desktop Edge Extension: (Brak nazwy) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [nie znaleziono] Edge Extension: (Brak nazwy) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [nie znaleziono] Edge DefaultProfile: Default Edge Profile: C:\Users\Administrator\AppData\Local\Microsoft\Edge\User Data\Default [2023-08-08] Edge StartupUrls: Default -> "hxxp://google.pl/","hxxp://google.com/" Edge Extension: (Edge relevant text changes) - C:\Users\Administrator\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-08-06] Edge Extension: (AdBlock — najlepszy bloker reklam) - C:\Users\Administrator\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2023-08-06] Edge HKU\S-1-5-21-713009339-1946454614-2320559408-500\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [dpadflhmiohjfhhaehelneimpllfbpcg] - D:\Nagrania\Nowy folder\TeraBox\terabox_ext_chrome.crx [2023-02-03] FireFox: ======== FF DefaultProfile: 0n8a6w3a.default FF ProfilePath: C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\0n8a6w3a.default [2021-04-29] FF ProfilePath: C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\3y6tbok5.default-release [2022-02-03] FF Homepage: Mozilla\Firefox\Profiles\3y6tbok5.default-release -> google.pl FF Notifications: Mozilla\Firefox\Profiles\3y6tbok5.default-release -> hxxps://poczta.onet.pl FF Extension: (Free Download Manager) - C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\3y6tbok5.default-release\Extensions\fdm_ffext2@freedownloadmanager.org.xpi [2021-10-15] FF Extension: (Google Translator for Firefox) - C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\3y6tbok5.default-release\Extensions\translator@zoli.bod.xpi [2021-12-20] FF Extension: (uBlock Origin) - C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\3y6tbok5.default-release\Extensions\uBlock0@raymondhill.net.xpi [2022-01-12] FF Extension: (Easy Youtube Video Downloader Express) - C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\3y6tbok5.default-release\Extensions\{b9acf540-acba-11e1-8ccb-001fd0e08bd4}.xpi [2021-12-20] FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.) FF Plugin: @java.com/DTPlugin,version=11.331.2 -> C:\Program Files\Java\jre1.8.0_331\bin\dtplugin\npDeployJava1.dll [2022-04-28] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.331.2 -> C:\Program Files\Java\jre1.8.0_331\bin\plugin2\npjp2.dll [2022-04-28] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN) FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default [2023-07-12] CHR HomePage: Default -> hxxp://search.freemusiczilla.com/ CHR StartupUrls: Default -> "hxxp://www.google.com","hxxp://www.sweet-page.com/?type=hp&ts=1417804154&from=cor&uid=WDCXWD2500BEVS-75UST0_WD-WXE608L1124311243","hxxp://www.mystartsearch.com/?type=hp&ts=1420722894&from=smt&uid=ST3250620AS_5QE1B7TTXXXX5QE1B7TT","hxxp://isearch.omiga-plus.com/?type=hp&ts=1422123886&from=obw&uid=ST3250620AS_5QE1B7TTXXXX5QE1B7TT","hxxp://www.delta-homes.com/?type=hp&ts=1432889833&z=022e7bbe619e1578aaf5f62gezac7oab0bct7q8t0z&from=wpm052932&uid=ST3250620AS_5QE1B7TTXXXX5QE1B7TT","hxxp://www.istartsurf.com/?type=hp&ts=1439624388&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=cornl&uid=WDCXWD2500BEVS-75UST0_WD-WXE608L1124311243" CHR Session Restore: Default -> [funkcja włączona] CHR Extension: (Stylus) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\clngdbkpkpeebahjckkjfobafhncgmne [2023-03-08] CHR Extension: (Tampermonkey) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2023-01-01] CHR Extension: (MyJDownloader Browser Extension) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbcohnmimjicjdomonkcbcpbpnhggkip [2023-01-01] CHR Extension: (AdBlock — najlepszy bloker reklam) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-03-08] CHR Extension: (Avast Online Security & Privacy) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2023-01-01] CHR Extension: (Google Keep – notatki i listy) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2023-01-01] CHR Extension: (Video DownloadHelper) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2023-01-01] CHR Extension: (Zrób pełny, całkowity zrzut ekranu strony internetowej - FireShot) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcbpblocgmgfnpjjppndjkmgjaogfceg [2023-01-01] CHR Extension: (YouTube NonStop) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlkaejimjacpillmajjnopmpbkbnocid [2023-01-01] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-12-22] CHR Profile: C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-12-22] CHR Profile: C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Profile 1 [2022-02-11] CHR Profile: C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\System Profile [2022-12-22] CHR HKLM\...\Chrome\Extension: [kaebhgioafceeldhgjmendlfhbfjefmo] - M:\pierdoBy\pobierak jakis\EagleGet\addon\eagleget_cext@eagleget.com.crx CHR HKLM-x32\...\Chrome\Extension: [dpadflhmiohjfhhaehelneimpllfbpcg] - D:\Nagrania\Nowy folder\TeraBox\terabox_ext_chrome.crx [2023-02-03] Brave: ======= BRA DefaultProfile: Default BRA Profile: C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2023-08-08] BRA DownloadDir: C:\Users\Administrator\Desktop BRA Notifications: Default -> hxxps://poczta.onet.pl; hxxps://web.skype.com; hxxps://www.facebook.com; hxxps://www.instagram.com BRA HomePage: Default -> hxxp://google.pl/ BRA StartupUrls: Default -> "hxxps://www.google.com/" BRA Extension: (Tłumacz Google) - C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2023-03-22] BRA Extension: (Volume Booster Plus) - C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\gchlkohjaamkodekfkidlieinaoddcpe [2023-05-29] BRA Profile: C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\Guest Profile [2023-02-27] BRA Extension: (Brave Local Data Files Updater) - C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2023-08-08] BRA Extension: (Brave NTP background images) - C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2023-06-10] BRA Extension: (Brave Ad Block Updater (Oficjalne Polskie Filtry Przeciwko Alertom o Adblocku - Uzupełnienie (plaintext))) - C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\bdnfonbomiianhopbpfgfeekmlcbegfo [2023-04-06] BRA Extension: (Brave Ad Block Updater (Oficjalne Polskie Filtry Przeciwko Alertom o Adblocku (plaintext))) - C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\beeceepafhbchnbfdkfalfipoancnjkm [2023-04-06] BRA Extension: (Brave Ad Block Updater (Fanboy's Mobile Notifications (plaintext))) - C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\bfpgedeaaibpoidldhjcknekahbikncb [2023-08-08] BRA Extension: (Wallet Data Files Updater) - C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2023-08-07] BRA Extension: (Brave Ad Block Updater (EasyList Cookie (plaintext))) - C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\cdbbhgbmjhfnhnmgeddbliobbofkgdhe [2023-08-08] BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2022-12-02] BRA Extension: (Brave Tor Client Updater (Windows)) - C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\cpoalefficncklhjfpglfiplenlpccdb [2023-04-29] BRA Extension: (Brave Ads Resources) - C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\feeklcgpaolphdiamjaolkkcpbeihkbh [2023-07-29] BRA Extension: (Brave Ads Resources) - C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\fojhemdeemkcacelmecilmibcjallejo [2022-03-29] BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2023-07-29] BRA Extension: (Brave NTP Super Referrer mapping table) - C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\heplpbhjcbmiibdlchlanmdenffpiibo [2022-02-02] BRA Extension: (Brave NTP sponsored images) - C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodhafecfemgejckecbnmpobnhmoaoag [2023-08-08] BRA Extension: (Brave Ad Block Updater (Default (plaintext))) - C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2023-08-08] BRA Extension: (Brave SpeedReader Updater) - C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2022-03-10] BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2023-08-08] BRA Extension: (Brave Ad Block Updater (Oficjalne Polskie Filtry do AdBlocka (plaintext))) - C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\ngcohbdfildjnmfnicgdipopmlhdcokg [2023-07-29] BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2023-08-02] BRA Extension: (Brave Ad Block Updater (Oficjalne Polskie Filtry do AdBlocka, uBlocka Origin i AdGuarda)) - C:\Users\Administrator\AppData\Local\BraveSoftware\Brave-Browser\User Data\paoecjnjjbclkgbempaeemcbeldldlbo [2022-12-02] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AdskLicensingService; C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe [16939312 2019-01-09] (Autodesk, Inc. -> Autodesk) R2 ArmouryCrateService; C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe [394864 2023-01-25] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) S3 ArmouryLiveUpdate; C:\WINDOWS\System32\DriverStore\FileRepository\rogms.inf_amd64_9074891d243b506d\ArmouryLiveUpdate.exe [577256 2022-09-29] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.02.12\atkexComSvc.exe [457544 2022-02-10] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) S2 asus; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2022-07-09] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) R2 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe [558104 2022-05-19] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) S3 asusm; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2022-07-09] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8892824 2023-07-04] (Avast Software s.r.o. -> AVAST Software) R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [578968 2023-07-04] (Avast Software s.r.o. -> AVAST Software) R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [579992 2023-07-04] (Avast Software s.r.o. -> AVAST Software) R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-05-20] (Avast Software s.r.o. -> AVAST Software) S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162968 2022-02-02] (Brave Software, Inc. -> BraveSoftware Inc.) S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162968 2022-02-02] (Brave Software, Inc. -> BraveSoftware Inc.) S3 BraveVpnService; C:\Program Files\BraveSoftware\Brave-Browser\Application\115.1.56.20\brave_vpn_helper.exe [3178008 2023-08-03] (Brave Software, Inc. -> Brave Software, Inc.) R2 CCBService; C:\Program Files\Chaos Group\Chaos Cosmos\cbservice.exe [41120623 2021-04-30] (ChaosGroup) [Brak podpisu cyfrowego] S2 FA_Scheduler; C:\Program Files\Fortinet\FortiClient\scheduler.exe [246416 2021-08-09] (Fortinet Technologies (Canada) ULC -> Fortinet Inc.) R2 GameSDK Service; C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe [397544 2022-05-31] (ASUSTeK COMPUTER INC. -> ASUS Inc.) R2 LightingService; C:\Program Files (x86)\LightingService\LightingService.exe [3887976 2022-09-26] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) R2 ROG Live Service; C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe [1625200 2023-04-06] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [402216 2023-07-12] (Microsoft Windows Publisher -> Microsoft Corporation) R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [14676264 2021-07-01] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) S3 TeraBoxUtility; D:\Nagrania\Nowy folder\TeraBox\YunUtilityService.exe [113520 2023-02-03] (FLEXTECH INC. -> Flextech Inc.) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 XSplit_VCam_Updater; C:\Program Files\XSplit\VCam\XSplit_VCam_Updater.exe [3210080 2022-07-05] (SplitmediaLabs Limited -> XSplit) R2 XSpltVidSvc; C:\Program Files\XSplit\VCam\service\XSpltVidSvc.exe [266080 2022-07-05] (SplitmediaLabs Limited -> SplitmediaLabs Limited) S3 BraveElevationService; "C:\Program Files\BraveSoftware\Brave-Browser\Application\115.1.56.20\elevation_service.exe" [X] R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_19f3764f95906f94\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_19f3764f95906f94\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem S2 RailCloneService; "C:\Program Files\ItooServer\RailClone.exe" [X] ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R1 Asusgio2; C:\WINDOWS\system32\drivers\AsIO2.sys [34384 2022-02-10] (ASUSTeK Computer Inc. -> ) R1 Asusgio3; C:\WINDOWS\system32\drivers\AsIO3.sys [49256 2022-08-16] (ASUSTeK COMPUTER INC. -> ) R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [31416 2023-08-01] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [237984 2023-08-01] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [392880 2023-08-01] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [297880 2023-08-01] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [95960 2023-08-01] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [25576 2022-10-13] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software) R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [39600 2023-08-01] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [272568 2023-08-01] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [559136 2023-08-01] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [105240 2023-08-01] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [80416 2023-08-01] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [946048 2023-08-01] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [705376 2023-08-01] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [212632 2023-07-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [319512 2023-08-01] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego] S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego] R1 CTIAIO; C:\WINDOWS\system32\drivers\CtiAIo64.sys [32320 2023-01-25] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.) S3 DroidCam; C:\WINDOWS\System32\drivers\droidcam.sys [32240 2020-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Dev47Apps) S3 DroidCamVideo; C:\WINDOWS\System32\DriverStore\FileRepository\droidcamvideo.inf_amd64_47e18363cbf3dfe0\droidcamvideo.sys [33784 2021-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) R1 FortiFilter; C:\WINDOWS\system32\DRIVERS\FortiFilter.sys [35400 2021-08-09] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc) S3 Fortips; C:\WINDOWS\System32\drivers\fortips.sys [160440 2021-08-09] (Fortinet, Inc. -> Fortinet Inc) R1 FortiShield; C:\WINDOWS\System32\drivers\FortiShield.sys [101384 2021-08-09] (Microsoft Windows Hardware Compatibility Publisher -> Fortinet Inc) S3 FortiTransCtrl; C:\WINDOWS\System32\drivers\FortiTransCtrl.sys [64680 2021-08-09] (Fortinet, Inc. -> Fortinet Inc) S3 ftsvnic; C:\WINDOWS\System32\drivers\ftsvnic.sys [67472 2021-08-09] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) R3 ft_vnic; C:\WINDOWS\System32\drivers\ftvnic.sys [70368 2021-08-09] (Fortinet Technologies (Canada) Inc. -> Fortinet Corporation) R3 IOMap; C:\WINDOWS\system32\drivers\IOMap64.sys [35344 2023-01-25] (ASUSTEK COMPUTER INC. -> ASUSTeK Computer Inc.) R3 kxwdmdrv; C:\WINDOWS\system32\drivers\kx.sys [508072 2013-12-28] (CEntrance, Inc. -> Eugene Gavrilov) R1 MSIO; C:\WINDOWS\system32\drivers\MsIo64.sys [18496 2022-06-09] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd) R3 pppop; C:\WINDOWS\System32\drivers\pppop64.sys [54344 2021-08-09] (Fortinet Technologies (Canada) Inc. -> Fortinet Inc.) R3 ROGKB; C:\WINDOWS\System32\DriverStore\FileRepository\rogkb.inf_amd64_d77507607440a92c\ROGKB.sys [41240 2022-09-29] (ASUSTeK COMPUTER INC. -> Windows (R) Win 7 DDK provider) R3 ROGMS; C:\WINDOWS\System32\DriverStore\FileRepository\rogms.inf_amd64_9074891d243b506d\ROGMS.sys [40720 2022-09-29] (ASUSTeK COMPUTER INC. -> Windows (R) Win 7 DDK provider) S3 SnapCameraVirtualDevice; C:\WINDOWS\System32\drivers\SnapCameraVirtualDevice.sys [2800232 2020-10-12] (Snap Inc. -> Windows (R) Win 7 DDK provider) S3 VOICEMOD_Driver; C:\WINDOWS\system32\drivers\mvvad.sys [48144 2022-07-26] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 XSpltVid; C:\WINDOWS\system32\DRIVERS\XSpltVid.sys [122376 2021-08-24] (Microsoft Windows Hardware Compatibility Publisher -> SplitmediaLabs Limited) S3 VBAudioVMVAIOMME; \SystemRoot\System32\drivers\vbaudio_vmvaio64_win7.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Trzy miesiące (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-08-08 18:53 - 2023-08-08 18:54 - 000000000 ____D C:\FRST 2023-08-08 16:13 - 2023-08-08 16:37 - 000000000 ____D C:\Users\TEMP 2023-08-07 23:40 - 2023-08-07 23:40 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Clip Organizer 2023-08-07 13:43 - 2023-08-07 13:43 - 000000000 ____D C:\Users\Administrator\Desktop\Nowy folder 2023-08-06 23:27 - 2023-08-06 23:27 - 000001843 _____ C:\Users\Administrator\Desktop\testy — skrót .lnk 2023-08-01 12:54 - 2023-08-01 12:54 - 000313240 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe 2023-08-01 12:29 - 2023-08-01 12:29 - 000000000 ____D C:\Users\Administrator\Documents\OpenTTD 2023-07-12 12:31 - 2023-07-12 12:31 - 000000000 ___HD C:\$WinREAgent 2023-07-10 22:51 - 2023-07-16 22:10 - 000000000 ____D C:\Users\Administrator\Desktop\vray corona 2023-07-06 14:26 - 2023-07-06 14:26 - 000001634 _____ C:\Users\Administrator\Desktop\Blade Tutorial - Extended Edition - Substance Painter 2 - PBR Texturing — skrót .lnk 2023-07-04 11:26 - 2023-05-17 07:12 - 002172472 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2023-07-04 11:26 - 2023-05-17 07:12 - 002172472 _____ C:\WINDOWS\system32\vulkaninfo.exe 2023-07-04 11:26 - 2023-05-17 07:12 - 001607776 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2023-07-04 11:26 - 2023-05-17 07:12 - 001607776 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2023-07-04 11:26 - 2023-05-17 07:12 - 001479216 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2023-07-04 11:26 - 2023-05-17 07:12 - 001479216 _____ C:\WINDOWS\system32\vulkan-1.dll 2023-07-04 11:26 - 2023-05-17 07:12 - 001211448 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2023-07-04 11:26 - 2023-05-17 07:12 - 001211448 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2023-07-04 11:26 - 2023-05-17 07:10 - 001487872 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2023-07-04 11:26 - 2023-05-17 07:10 - 001226736 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2023-07-04 11:26 - 2023-05-17 07:02 - 000851968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll 2023-07-04 11:26 - 2023-05-17 07:02 - 000671216 _____ C:\WINDOWS\system32\nvofapi64.dll 2023-07-04 11:26 - 2023-05-17 07:02 - 000506352 _____ C:\WINDOWS\SysWOW64\nvofapi.dll 2023-07-04 11:26 - 2023-05-17 07:01 - 002166256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2023-07-04 11:26 - 2023-05-17 07:01 - 001620968 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2023-07-04 11:26 - 2023-05-17 07:01 - 001536512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2023-07-04 11:26 - 2023-05-17 07:01 - 001194480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2023-07-04 11:26 - 2023-05-17 07:01 - 000979456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll 2023-07-04 11:26 - 2023-05-17 07:01 - 000758760 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2023-07-04 11:26 - 2023-05-17 07:01 - 000741360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe 2023-07-04 11:26 - 2023-05-17 07:00 - 000457752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe 2023-07-04 11:26 - 2023-05-17 06:59 - 013769216 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2023-07-04 11:26 - 2023-05-17 06:59 - 011650088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2023-07-04 11:26 - 2023-05-17 06:59 - 006083560 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2023-07-04 11:26 - 2023-05-17 06:59 - 005911016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll 2023-07-04 11:26 - 2023-05-17 06:59 - 003430400 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2023-07-04 11:26 - 2023-05-17 06:58 - 005835288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll 2023-07-04 11:26 - 2023-05-17 06:56 - 000852976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe 2023-07-04 11:26 - 2023-05-17 06:12 - 000104369 _____ C:\WINDOWS\system32\nvinfo.pb 2023-06-22 23:30 - 2023-06-22 23:30 - 000001677 _____ C:\Users\Administrator\Desktop\shelby-cobra-147067 — skrót .lnk 2023-06-02 19:19 - 2023-06-02 19:19 - 000001572 _____ C:\Users\Administrator\Desktop\ZBrush 2018.exe — skrót .lnk 2023-06-01 17:53 - 2023-06-01 17:53 - 000001191 _____ C:\Users\Administrator\Desktop\Adobe Substance 3D Painter.lnk 2023-06-01 17:52 - 2023-06-01 17:52 - 000001191 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Substance 3D Painter.lnk 2023-05-30 22:43 - 2023-05-30 22:44 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\UI Launcher 2023-05-30 22:40 - 2023-05-30 22:40 - 000000000 ____D C:\Autodesk 2023-05-29 14:37 - 2023-05-29 14:37 - 000000000 __SHD C:\ProgramData\ms-drivers 2023-05-29 14:37 - 2023-05-29 14:37 - 000000000 __SHD C:\ProgramData\icsxml 2023-05-29 14:37 - 2023-05-29 14:37 - 000000000 __SHD C:\ProgramData\DIBsection 2023-05-26 00:40 - 2023-05-26 00:40 - 000000000 ____D C:\Users\Administrator\AppData\Local\ToastNotificationManagerCompat 2023-05-26 00:38 - 2022-07-26 12:49 - 000048144 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\mvvad.sys 2023-05-26 00:33 - 2023-05-26 00:33 - 070629400 _____ (Voicemod S.L. ) C:\Users\Administrator\Downloads\voicemod-2.23.1.2-installer.exe 2023-05-26 00:24 - 2023-05-26 00:24 - 001665255 _____ ( ) C:\Users\Administrator\Downloads\voicemaster-2.0.0.92-installer.exe 2023-05-26 00:17 - 2023-05-26 00:21 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VB Audio 2023-05-26 00:17 - 2023-05-26 00:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VB Audio 2023-05-26 00:17 - 2023-05-26 00:21 - 000000000 ____D C:\Program Files\VB 2023-05-26 00:17 - 2023-05-26 00:17 - 000000000 ____D C:\Program Files (x86)\VB 2023-05-22 00:57 - 2023-05-22 00:57 - 000000000 ____D C:\WINDOWS\Panther 2023-05-21 21:24 - 2023-05-21 21:24 - 000000000 ____D C:\ProgramData\PLUG ==================== Trzy miesiące (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-08-08 18:51 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2023-08-08 18:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2023-08-08 18:50 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-08-08 18:47 - 2022-02-02 22:45 - 000000000 ____D C:\Program Files (x86)\Google 2023-08-08 18:47 - 2021-12-18 02:09 - 000000000 ____D C:\WINDOWS\SystemTemp 2023-08-08 18:44 - 2022-07-09 14:26 - 000000000 ____D C:\Program Files\ASUS 2023-08-08 16:55 - 2022-10-20 16:06 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\vlc 2023-08-08 16:40 - 2021-04-29 23:36 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Mozilla 2023-08-08 16:38 - 2022-08-18 17:43 - 000004571 _____ C:\GetDeviceStatus.xml 2023-08-08 16:38 - 2022-08-18 17:43 - 000003467 _____ C:\GetDeviceCap.xml 2023-08-08 16:38 - 2022-08-18 17:43 - 000000528 _____ C:\QueryAllDevice.xml 2023-08-08 16:38 - 2022-08-18 17:43 - 000000228 _____ C:\SetMatrixLEDScript.xml 2023-08-08 16:37 - 2021-07-18 19:49 - 000000000 ____D C:\ProgramData\NVIDIA 2023-08-08 16:37 - 2021-05-14 17:49 - 000000000 ____D C:\Program Files\TeamViewer 2023-08-08 16:15 - 2021-04-29 21:59 - 000000000 ___HD C:\OneDriveTemp 2023-08-08 16:13 - 2021-04-29 21:57 - 000000000 __RHD C:\Users\Public\AccountPictures 2023-08-08 16:13 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2023-08-07 23:51 - 2021-04-30 11:40 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Szablony 2023-08-07 23:51 - 2021-04-30 11:40 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Office 2023-08-07 23:44 - 2021-04-30 11:40 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Word 2023-08-07 23:15 - 2022-02-02 22:46 - 000002253 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2023-08-07 23:13 - 2021-05-02 17:21 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-08-07 23:13 - 2021-05-02 17:21 - 000002286 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2023-08-07 23:12 - 2021-05-02 17:20 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2023-08-07 17:24 - 2022-02-02 17:19 - 000003592 _____ C:\WINDOWS\system32\Tasks\BraveSoftwareUpdateTaskMachineUA 2023-08-07 17:24 - 2022-02-02 17:19 - 000003468 _____ C:\WINDOWS\system32\Tasks\BraveSoftwareUpdateTaskMachineCore 2023-08-06 21:37 - 2022-07-07 16:08 - 000002378 _____ C:\WINDOWS\system32\Tasks\NahimicAPISvc32Run 2023-08-06 21:37 - 2022-07-07 16:08 - 000002370 _____ C:\WINDOWS\system32\Tasks\NahimicAPISvc64Run 2023-08-06 21:37 - 2022-02-02 22:45 - 000003582 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{5A4327A9-75F0-4F95-ACBA-94F44C19B2EB} 2023-08-06 21:37 - 2022-02-02 22:45 - 000003358 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{8656924B-F6D6-4DEA-A719-F2576039766B} 2023-08-06 21:37 - 2021-05-02 17:27 - 000003494 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2023-08-06 21:37 - 2021-05-02 17:27 - 000003300 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d73f67881f53a3 2023-08-06 21:37 - 2021-05-02 17:27 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software 2023-08-06 14:37 - 2021-04-30 15:13 - 000000000 ____D C:\Users\Administrator\AppData\Local\CrashDumps 2023-08-06 14:37 - 2021-04-30 12:17 - 000000000 ____D C:\Users\Administrator\Documents\3ds Max 2020 2023-08-05 14:29 - 2022-02-02 17:20 - 000002370 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk 2023-08-05 14:29 - 2022-02-02 17:20 - 000002329 _____ C:\Users\Public\Desktop\Brave.lnk 2023-08-03 23:32 - 2022-10-10 19:48 - 000000939 _____ C:\Users\Administrator\Desktop\7-Zip File Manager.lnk 2023-08-01 12:55 - 2021-05-02 17:27 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update 2023-08-01 12:54 - 2021-04-29 23:43 - 000946048 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys 2023-08-01 12:54 - 2021-04-29 23:43 - 000705376 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys 2023-08-01 12:54 - 2021-04-29 23:43 - 000559136 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys 2023-08-01 12:54 - 2021-04-29 23:43 - 000392880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys 2023-08-01 12:54 - 2021-04-29 23:43 - 000319512 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys 2023-08-01 12:54 - 2021-04-29 23:43 - 000297880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys 2023-08-01 12:54 - 2021-04-29 23:43 - 000272568 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys 2023-08-01 12:54 - 2021-04-29 23:43 - 000237984 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys 2023-08-01 12:54 - 2021-04-29 23:43 - 000105240 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys 2023-08-01 12:54 - 2021-04-29 23:43 - 000095960 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys 2023-08-01 12:54 - 2021-04-29 23:43 - 000080416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys 2023-08-01 12:54 - 2021-04-29 23:43 - 000039600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys 2023-08-01 12:54 - 2021-04-29 23:43 - 000031416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys 2023-08-01 12:54 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2023-07-29 23:14 - 2021-04-30 11:10 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\discord 2023-07-29 23:07 - 2021-04-30 11:10 - 000000000 ____D C:\Users\Administrator\AppData\Local\Discord 2023-07-21 02:52 - 2021-05-02 16:16 - 000000000 ____D C:\Users\Administrator 2023-07-20 17:26 - 2021-05-02 17:30 - 001768508 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2023-07-20 17:26 - 2019-12-07 17:09 - 000784464 _____ C:\WINDOWS\system32\perfh015.dat 2023-07-20 17:26 - 2019-12-07 17:09 - 000152360 _____ C:\WINDOWS\system32\perfc015.dat 2023-07-20 17:26 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2023-07-20 17:21 - 2021-05-02 17:27 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2023-07-20 17:21 - 2021-05-02 17:20 - 000008192 ___SH C:\DumpStack.log.tmp 2023-07-20 00:13 - 2021-04-30 00:30 - 000000000 ____D C:\Users\Administrator\AppData\Local\D3DSCache 2023-07-17 12:46 - 2021-11-25 23:10 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\WhatsApp 2023-07-13 18:10 - 2021-04-30 11:10 - 000002267 _____ C:\Users\Administrator\Desktop\Discord.lnk 2023-07-13 13:25 - 2021-04-29 23:43 - 000000000 ____D C:\ProgramData\Avast Software 2023-07-13 00:24 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2023-07-13 00:23 - 2021-05-02 17:20 - 000358416 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2023-07-13 00:22 - 2019-12-07 17:12 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2023-07-13 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2023-07-13 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources 2023-07-13 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup 2023-07-13 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates 2023-07-13 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2023-07-13 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2023-07-12 12:39 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2023-07-12 12:36 - 2021-05-02 17:23 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2023-07-12 12:36 - 2021-04-29 22:43 - 000416104 __RSH C:\bootmgr 2023-07-12 12:13 - 2021-04-30 10:48 - 000000000 ____D C:\WINDOWS\system32\MRT 2023-07-12 12:10 - 2021-04-30 10:48 - 173351160 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2023-07-10 22:10 - 2023-03-14 21:21 - 000000000 ____D C:\Users\Administrator\Desktop\cg wisdom ==================== Pliki w katalogu głównym wybranych folderów ======== 2021-09-12 20:45 - 2021-09-12 20:45 - 000000017 _____ () C:\Users\Administrator\AppData\Local\resmon.resmoncfg ==================== SigCheckExt ========================= 2021-04-30 12:16 - 2021-04-30 12:16 - 000599040 _____ C:\xf-adesk20.exe 2021-03-18 06:13 - 2021-03-18 06:13 - 000176128 _____ C:\WINDOWS\system32\FCStdThumbnail.dll 2006-10-26 13:45 - 2006-10-26 13:45 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WISPTIS.EXE 2023-05-26 00:24 - 2023-05-26 00:24 - 001665255 _____ ( ) C:\Users\Administrator\Downloads\voicemaster-2.0.0.92-installer.exe ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== BCD ================================ Windows Boot Manager -------------------- identifier {bootmgr} device partition=C: description Windows Boot Manager locale pl-PL inherit {globalsettings} default {current} resumeobject {830c59e7-a92b-11eb-b216-d5b752b2f320} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Windows Boot Loader ------------------- identifier {current} device partition=C: path \WINDOWS\system32\winload.exe description Windows 10 locale pl-PL inherit {bootloadersettings} recoverysequence {830c59ea-a92b-11eb-b216-d5b752b2f320} displaymessageoverride Recovery recoveryenabled Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \WINDOWS resumeobject {830c59e7-a92b-11eb-b216-d5b752b2f320} nx OptIn numproc 4 bootmenupolicy Standard usefirmwarepcisettings No Windows Boot Loader ------------------- identifier {830c59ea-a92b-11eb-b216-d5b752b2f320} device ramdisk=[\Device\HarddiskVolume2]\Recovery\WindowsRE\Winre.wim,{830c59eb-a92b-11eb-b216-d5b752b2f320} path \windows\system32\winload.exe description Windows Recovery Environment locale pl-PL inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[\Device\HarddiskVolume2]\Recovery\WindowsRE\Winre.wim,{830c59eb-a92b-11eb-b216-d5b752b2f320} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Resume from Hibernate --------------------- identifier {830c59e7-a92b-11eb-b216-d5b752b2f320} device partition=C: path \WINDOWS\system32\winresume.exe description Windows Resume Application locale pl-PL inherit {resumeloadersettings} recoverysequence {830c59ea-a92b-11eb-b216-d5b752b2f320} recoveryenabled Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Windows Memory Tester --------------------- identifier {memdiag} device partition=C: path \boot\memtest.exe description Diagnostyka pamięci systemu Windows locale pl-PL inherit {globalsettings} badmemoryaccess Yes EMS Settings ------------ identifier {emssettings} bootems No Debugger Settings ----------------- identifier {dbgsettings} debugtype Local RAM Defects ----------- identifier {badmemory} Global Settings --------------- identifier {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} Boot Loader Settings -------------------- identifier {bootloadersettings} inherit {globalsettings} {hypervisorsettings} Hypervisor Settings ------------------- identifier {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 Resume Loader Settings ---------------------- identifier {resumeloadersettings} inherit {globalsettings} Device options -------------- identifier {830c59eb-a92b-11eb-b216-d5b752b2f320} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume2 ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Koniec FRST.txt ========================