Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 25.03.2024 Uruchomiony przez Admin (administrator) DESKTOP-DMI0A8H (Gigabyte Technology Co., Ltd. B550 GAMING X V2) (27-03-2024 20:33:59) Uruchomiony z C:\Users\Admin\Downloads\FRST64.exe Załadowane profile: Admin Platforma: Microsoft Windows 11 Pro Wersja 23H2 22631.3296 (X64) Język: Angielski (Stany Zjednoczone) -> Polski (Polska) Domyślna przeglądarka nie została wykryta! Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) () [Brak podpisu cyfrowego] D:\PROGRAMY\infinix\platform-tools\adb.exe (Adguard Software Limited -> Adguard Software Limited) C:\Program Files (x86)\Adguard\Adguard.exe (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe (C:\Program Files (x86)\F-Secure\TOTAL\Ultralight\ulcore\1709915545\fshoster64.exe ->) (WithSecure Oyj -> WithSecure Corporation) C:\Program Files (x86)\F-Secure\TOTAL\Ultralight\ulcore\1709915545\FsPisces.exe (C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe (C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe (C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe (C:\Program Files\Google\Chrome\Application\chrome.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe (cmd.exe ->) (F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\TOTAL\FSNifWeb\1710321643\nif2_ols_ca.exe (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\Comodo\Internet Security Essentials\vkise.exe (DriverStore\FileRepository\u0382934.inf_amd64_cbf07db13ec1507d\B381983\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0382934.inf_amd64_cbf07db13ec1507d\B381983\atieclxx.exe (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <13> (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\GraphicsCardEngine.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler64.exe (services.exe ->) () [Brak podpisu cyfrowego] C:\Program Files (x86)\Gigabyte\AppCenter\AdjustService.exe (services.exe ->) (Adguard Software Limited -> Adguard Software Limited) C:\Program Files (x86)\Adguard\AdguardSvc.exe (services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0382934.inf_amd64_cbf07db13ec1507d\B381983\atiesrxx.exe (services.exe ->) (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\Comodo\Internet Security Essentials\isesrv.exe (services.exe ->) (F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\TOTAL\fshoster32.exe <3> (services.exe ->) (F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\TOTAL\FSNifWeb\1710321643\fshoster64.exe (services.exe ->) (F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\TOTAL\fsvpnservice.exe (services.exe ->) (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\EasyTuneEngineService.exe (services.exe ->) (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Windows\System32\GigabyteUpdateService.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_b55ed36a9a78cc75\RtkAudUService64.exe <2> (services.exe ->) (WithSecure Oyj -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\TOTAL\Ultralight\ulcore\1709915545\fsorsp64.exe (services.exe ->) (WithSecure Oyj -> WithSecure Corporation) C:\Program Files (x86)\F-Secure\TOTAL\Ultralight\ulcore\1709915545\fshoster64.exe <2> (services.exe ->) (WithSecure Oyj -> WithSecure Corporation) C:\Program Files (x86)\F-Secure\TOTAL\Ultralight\ulcore\1709915545\fsulprothoster.exe (svchost.exe ->) (Advanced Micro Devices, Inc.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\cpumetricsserver.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_b55ed36a9a78cc75\RtkAudUService64.exe [3495808 2022-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM-x32\...\Run: [Adguard] => C:\Program Files (x86)\Adguard\Adguard.exe [7072472 2023-10-20] (Adguard Software Limited -> Adguard Software Limited) HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [105280 2020-02-23] (Elaborate Bytes AG -> Elaborate Bytes AG) HKLM-x32\...\Run: [IseUI] => C:\Program Files (x86)\COMODO\Internet Security Essentials\vkise.exe [4187856 2019-01-29] (Comodo Security Solutions, Inc. -> COMODO) HKLM-x32\...\RunOnce: [PreRun] => C:\Program Files (x86)\Gigabyte\AppCenter\PreRun.exe [14632 2016-02-26] (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) HKLM-x32\...\RunOnce: [SelLed] => C:\Program Files (x86)\GIGABYTE\RGBFusion\RunLed.exe [50096 2019-04-29] (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) HKLM\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1 HKLM\...\Policies\Explorer: [NoInternetOpenWith] 1 HKLM\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 HKLM\...\Policies\Explorer: [NoResolveSearch] 1 HKLM\...\Policies\Explorer: [SettingsPageVisibility] hide:maps;holographic-audio HKLM\...\Policies\Explorer: [NoThumbnailCache] 0 HKLM\...\Policies\Explorer: [DisableThumbnailCache] 0 HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Ograniczenia <==== UWAGA HKLM\SOFTWARE\Policies\Microsoft\Windows Defender Security Center: Ograniczenia <==== UWAGA HKLM\Software\Policies\...\system: [DisableAcrylicBackgroundOnLogon] 1 HKLM\Software\Policies\...\system: [EnableSmartScreen] 0 HKU\S-1-5-19\...\RunOnce: [] => [X] HKU\S-1-5-19\...\RunOnce: [Edge_DisableAskMeWhatToDoWithEachDownload] => REG ADD "HKCU\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Download" /F /V "EnableSavePrompt" /T R (dane wartości zawierają 22 znaków więcej). (Brak pliku) <==== UWAGA HKU\S-1-5-19\...\RunOnce: [Edge_DisableBlockPopup] => REG ADD "HKCU\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\New Windows" /F /V "PopupMgr" /T REG_SZ (dane wartości zawierają 8 znaków więcej). (Brak pliku) <==== UWAGA HKU\S-1-5-19\...\RunOnce: [Edge_DisableCortanaAssistant] => REG ADD "HKCU\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ServiceUI" /F /V "EnableCortana" /T REG (dane wartości zawierają 20 znaków więcej). (Brak pliku) <==== UWAGA HKU\S-1-5-19\...\RunOnce: [Edge_DisablePagePrediction] => REG ADD "HKCU\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\FlipAhead" /F /V "FPEnabled" /T REG_DWO (dane wartości zawierają 16 znaków więcej). (Brak pliku) <==== UWAGA HKU\S-1-5-19\...\RunOnce: [Edge_DisableSmartScreen] => REG ADD "HKCU\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\PhishingFilter" /F /V "EnabledV9" /T RE (dane wartości zawierają 21 znaków więcej). (Brak pliku) <==== UWAGA HKU\S-1-5-19\...\RunOnce: [Edge_EnableSendDoNotTrackRequests] => REG ADD "HKCU\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Main" /F /V "DoNotTrack" /T REG_DWORD / (dane wartości zawierają 12 znaków więcej). (Brak pliku) <==== UWAGA HKU\S-1-5-19\...\RunOnce: [Edge_ShowFavoritesBar] => REG ADD "HKCU\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\LinksBar" /F /V "Enabled" /T REG_DWORD (dane wartości zawierają 13 znaków więcej). (Brak pliku) <==== UWAGA HKU\S-1-5-19\...\RunOnce: [Edge_UseDarkTheme] => REG ADD "HKCU\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Main" /F /V "Theme" /T REG_DWORD /D "00 (dane wartości zawierają 7 znaków więcej). (Brak pliku) <==== UWAGA HKU\S-1-5-19\...\RunOnce: [Explorer_Privacy_WebsiteIDAccess_Disable] => REG ADD "HKCU\Control Panel\International\User Profile" /F /V "HttpAcceptLanguageOptOut" /T REG_DWORD /D "00000001" (Brak pliku) <==== UWAGA HKU\S-1-5-19\...\Policies\Explorer: [HideSCAMeetNow] 1 HKU\S-1-5-19\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 HKU\S-1-5-19\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1 HKU\S-1-5-19\...\Policies\Explorer: [NoResolveSearch] 1 HKU\S-1-5-19\...\Policies\Explorer: [NoInternetOpenWith] 1 HKU\S-1-5-20\...\RunOnce: [] => [X] HKU\S-1-5-20\...\RunOnce: [Edge_DisableAskMeWhatToDoWithEachDownload] => REG ADD "HKCU\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Download" /F /V "EnableSavePrompt" /T R (dane wartości zawierają 22 znaków więcej). (Brak pliku) <==== UWAGA HKU\S-1-5-20\...\RunOnce: [Edge_DisableBlockPopup] => REG ADD "HKCU\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\New Windows" /F /V "PopupMgr" /T REG_SZ (dane wartości zawierają 8 znaków więcej). (Brak pliku) <==== UWAGA HKU\S-1-5-20\...\RunOnce: [Edge_DisableCortanaAssistant] => REG ADD "HKCU\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ServiceUI" /F /V "EnableCortana" /T REG (dane wartości zawierają 20 znaków więcej). (Brak pliku) <==== UWAGA HKU\S-1-5-20\...\RunOnce: [Edge_DisablePagePrediction] => REG ADD "HKCU\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\FlipAhead" /F /V "FPEnabled" /T REG_DWO (dane wartości zawierają 16 znaków więcej). (Brak pliku) <==== UWAGA HKU\S-1-5-20\...\RunOnce: [Edge_DisableSmartScreen] => REG ADD "HKCU\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\PhishingFilter" /F /V "EnabledV9" /T RE (dane wartości zawierają 21 znaków więcej). (Brak pliku) <==== UWAGA HKU\S-1-5-20\...\RunOnce: [Edge_EnableSendDoNotTrackRequests] => REG ADD "HKCU\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Main" /F /V "DoNotTrack" /T REG_DWORD / (dane wartości zawierają 12 znaków więcej). (Brak pliku) <==== UWAGA HKU\S-1-5-20\...\RunOnce: [Edge_ShowFavoritesBar] => REG ADD "HKCU\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\LinksBar" /F /V "Enabled" /T REG_DWORD (dane wartości zawierają 13 znaków więcej). (Brak pliku) <==== UWAGA HKU\S-1-5-20\...\RunOnce: [Edge_UseDarkTheme] => REG ADD "HKCU\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Main" /F /V "Theme" /T REG_DWORD /D "00 (dane wartości zawierają 7 znaków więcej). (Brak pliku) <==== UWAGA HKU\S-1-5-20\...\RunOnce: [Explorer_Privacy_WebsiteIDAccess_Disable] => REG ADD "HKCU\Control Panel\International\User Profile" /F /V "HttpAcceptLanguageOptOut" /T REG_DWORD /D "00000001" (Brak pliku) <==== UWAGA HKU\S-1-5-20\...\Policies\Explorer: [HideSCAMeetNow] 1 HKU\S-1-5-20\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 HKU\S-1-5-20\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1 HKU\S-1-5-20\...\Policies\Explorer: [NoResolveSearch] 1 HKU\S-1-5-20\...\Policies\Explorer: [NoInternetOpenWith] 1 HKU\S-1-5-21-1303617771-391412065-3885917864-1000\...\Run: [Microsoft Edge Update] => C:\Users\Admin\AppData\Local\Microsoft\EdgeUpdate\1.3.185.27\MicrosoftEdgeUpdateCore.exe [267848 2024-03-26] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1303617771-391412065-3885917864-1000\...\Run: [ocmanage] => wscript.exe "C:\Users\Admin\AppData\Roaming\Microsoft\Windows NT\ocmanage.js" (Brak pliku) <==== UWAGA HKU\S-1-5-21-1303617771-391412065-3885917864-1000\...\Policies\Explorer: [HideSCAMeetNow] 1 HKU\S-1-5-21-1303617771-391412065-3885917864-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 HKU\S-1-5-21-1303617771-391412065-3885917864-1000\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1 HKU\S-1-5-21-1303617771-391412065-3885917864-1000\...\Policies\Explorer: [NoResolveSearch] 1 HKU\S-1-5-21-1303617771-391412065-3885917864-1000\...\Policies\Explorer: [NoInternetOpenWith] 1 HKU\S-1-5-21-1303617771-391412065-3885917864-1000\...\Policies\Explorer: [NoThumbnailCache] 0 HKU\S-1-5-21-1303617771-391412065-3885917864-1000\...\Policies\Explorer: [DisableThumbnailCache] 0 HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\123.0.6312.59\Installer\chrmstp.exe [2024-03-24] (Google LLC -> Google LLC) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SPDriverInstall.lnk [2024-03-27] <==== UWAGA ShortcutTarget: SPDriverInstall.lnk -> C:\Program Files\MediaTek\SP Driver\SPDriverInstall (Brak pliku) <==== UWAGA BootExecute: GroupPolicy: Ograniczenia ? <==== UWAGA Policies: C:\ProgramData\NTUSER.pol: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0600DD45-FAF2-4131-A006-0B17509B9F78} - \Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser -> Brak pliku <==== UWAGA Task: {4738DE7A-BCC1-4E2D-B1B0-CADB044BFA81} - \Microsoft\Windows\Customer Experience Improvement Program\KernelCeipTask -> Brak pliku <==== UWAGA Task: {6FAC31FA-4A85-4E64-BFD5-2154FF4594B3} - \Microsoft\Windows\Customer Experience Improvement Program\UsbCeip -> Brak pliku <==== UWAGA Task: {950FEF3E-0634-42DD-ADA7-5064A8EE395C} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1708512 2022-08-02] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) Task: {172AF22F-EB2C-45A8-8D82-E1BDE8D4298A} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1708512 2022-08-02] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) Task: {E8FBDB30-3958-4360-A47A-575A40992166} - System32\Tasks\AMDRyzenMasterSDKTask => C:\Program Files\AMD\CNext\CNext\cpumetricsserver.exe [47104 2022-08-02] (Advanced Micro Devices, Inc.) [Brak podpisu cyfrowego] Task: {7486D5AB-90EC-4CAB-B0E9-A79A95D38C29} - System32\Tasks\Driver Booster SkipUAC (Admin) => "C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe" /skipuac (Brak pliku) Task: {4394161B-ECB7-4788-9312-9E360451319F} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\Admin\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe LOGON (Brak pliku) Task: {88D637D1-E7D6-4177-A171-402578CE84EA} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\Admin\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe SCHED (Brak pliku) Task: {66013CFC-93C7-405F-BAD7-A19C5C268A2A} - System32\Tasks\F-Secure\F-Secure Hotfix => C:\Program Files (x86)\F-Secure\TOTAL\fs_hotfix_32.exe [467336 2024-02-06] (F-Secure Corporation -> F-Secure Corporation) Task: {8C68EF16-4A3D-4D52-8958-9810EBCE9A43} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2024-03-24] (Google LLC -> Google LLC) Task: {C066CDE4-CE08-4DFB-A7F2-CA8813563584} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2024-03-24] (Google LLC -> Google LLC) Task: {5BA250F9-F126-4F20-8B82-9931545F42F1} - System32\Tasks\GraphicsCardEngine => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngineStarter.exe [237672 2023-06-26] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) Task: {EAD9DEEB-10BF-4FE7-A861-7F7C1BCA9411} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2113024 2024-03-11] () [Brak podpisu cyfrowego] Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Brak pliku) Task: {5709C6DC-755D-46BE-851E-3CDF2CB9F0C3} - System32\Tasks\Microsoft\Windows\Windows.Webows-processor-aggregator-events => C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe [58856 2022-05-07] (Microsoft Corporation -> Microsoft Corporation) -> C:\ProgramData\LayerSign\ButtonAnpmitioc\/U C:\ProgramData\LayerSign\ButtonAnpmitioc\jyjxicoVr2.dll Task: {43DFBF1A-6498-4F43-99CC-B016134ED5A9} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-1303617771-391412065-3885917864-1000Core{0C5C2C69-1888-4C39-A59A-5EB075AE6CB5} => C:\Users\Admin\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [206296 2024-03-20] (Microsoft Corporation -> Microsoft Corporation) Task: {CC2063DD-5C97-41CF-8CEE-C2B9767A6F38} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-1303617771-391412065-3885917864-1000UA{D6078585-CEAF-4F86-95C0-81FD6D00DC78} => C:\Users\Admin\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [206296 2024-03-20] (Microsoft Corporation -> Microsoft Corporation) Task: {7067E37C-224D-4683-A7F4-250085247603} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1708512 2022-08-02] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) Task: {68E1A810-F710-455F-A15D-9420D26DA6A2} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [817536 2024-02-08] (MICRO-STAR INTERNATIONAL CO., LTD. -> ) Task: {29AFBFEE-0C7B-42CB-9BD2-D43E17E6967C} - System32\Tasks\Opera GX scheduled Autoupdate 1711073982 => C:\Users\Admin\AppData\Local\Programs\Opera GX\launcher.exe --scheduledautoupdate $(Arg0) (Brak pliku) Task: {B2480133-52CE-4B68-8872-C03F60DBF696} - System32\Tasks\PrivaZer_SkipUAC => C:\Program Files (x86)\PrivaZer\PrivaZer.exe [21148200 2024-03-22] (Goversoft LLC -> Goversoft LLC) -> C:\Program Files (x86)\PrivaZer\\$(Arg0) Task: {7FE5D4F8-CF1A-45A5-B09E-3CC6E2D775C4} - System32\Tasks\Process Lasso Management Console (GUI) => "C:\Program Files\Process Lasso\processlasso.exe" (Brak pliku) Task: {1FDD6F8F-37EE-4DCD-BD05-70B95EA7C04F} - System32\Tasks\Sapphire TRIXX => C:\Program Files (x86)\Sapphire TRIXX\TRIXX.exe -> C:\Program Files (x86)\Sapphire TRIXX\-s Task: {1CE9A269-51DB-4BBC-8682-C081A48340BD} - System32\Tasks\Session agent for Process Lasso => "C:\Program Files\Process Lasso\bitsumsessionagent.exe" ---------------------------------------------------------------- (Brak pliku) Task: {C6D85539-28C9-4374-ABED-72FF8743B318} - System32\Tasks\SIV => C:\Program Files (x86)\GIGABYTE\SIV\Thermald.exe [392304 2023-12-13] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) Task: {D63D0BE6-FCA8-49D1-9268-C703DBAB08A7} - System32\Tasks\SIV-VGA => C:\Program Files (x86)\GIGABYTE\SIV\Sensord.exe [260208 2023-12-13] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) Task: {2F2609CC-CDB2-4975-827E-29EF45CDC332} - System32\Tasks\StartAllBack Update => C:\Program Files\StartAllBack\UpdateCheck.exe [49376 2024-03-20] (IP Zinukhov Stanislav Igorevich -> www.startisback.com) Task: {104A4464-452C-47B3-9B22-A5D345EBF5EA} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [57312 2022-08-02] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) Task: {3940EF2A-3724-4352-B94C-838AD1138E53} - System32\Tasks\StartCNBM => C:\Program Files\AMD\CNext\CNext\cncmd.exe [57312 2022-08-02] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) Task: {A1558BE2-42A6-4CE8-8E5E-8A0D2AC4414F} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [263136 2022-08-02] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{99168161-dcc5-4a93-8600-ab365a2e0838}: [DhcpNameServer] 192.168.1.1 Chrome: ======= CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default [2024-03-27] CHR Notifications: Default -> hxxps://forum.dobreprogramy.pl CHR Extension: (Tłumacz Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2024-03-24] CHR Extension: (Popup Blocker (strict)) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aefkmifgmaafnojlojpnekbpbmjiiogg [2024-03-24] CHR Extension: (YouTube WATCHED. Classic View) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aendhplcpcfjlebhcjfiapmoaiekpkba [2024-03-24] CHR Extension: (uBlock Origin) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2024-03-24] CHR Extension: (Dokumenty Google offline) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-24] CHR Extension: (Screenshot YouTube) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjoijpfmdhbjkkgnmahganhoinjjpohk [2024-03-24] CHR Extension: (Stream Recorder - download HLS as MP4) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\iogidnfllpdhagebkblkgbfijkbkjdmm [2024-03-24] CHR Extension: (Ochrona przeglądania F-Secure) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmjjnhpacphpjmnnlnccpfmhkcloaade [2024-03-26] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-03-24] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 Adguard Service; C:\Program Files (x86)\Adguard\AdguardSvc.exe [800984 2023-10-20] (Adguard Software Limited -> Adguard Software Limited) R2 EasyTuneEngineService; C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\EasyTuneEngineService.exe [150640 2023-11-06] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) R2 fshoster; C:\Program Files (x86)\F-Secure\TOTAL\fshoster32.exe [228744 2024-02-06] (F-Secure Corporation -> F-Secure Corporation) R2 fsnethoster; C:\Program Files (x86)\F-Secure\TOTAL\fshoster32.exe [228744 2024-02-06] (F-Secure Corporation -> F-Secure Corporation) R2 fsnifwebhoster; C:\Program Files (x86)\F-Secure\TOTAL\FSNifWeb\1710321643\fshoster64.exe [414600 2024-03-26] (F-Secure Corporation -> F-Secure Corporation) R2 fsulhoster; C:\Program Files (x86)\F-Secure\TOTAL\Ultralight\ulcore\1709915545\fshoster64.exe [738256 2024-03-26] (WithSecure Oyj -> WithSecure Corporation) R2 fsulnethoster; C:\Program Files (x86)\F-Secure\TOTAL\Ultralight\ulcore\1709915545\fshoster64.exe [738256 2024-03-26] (WithSecure Oyj -> WithSecure Corporation) R2 fsulorsp; C:\Program Files (x86)\F-Secure\TOTAL\Ultralight\ulcore\1709915545\fsorsp64.exe [109432 2024-03-26] (WithSecure Oyj -> F-Secure Corporation) R2 fsulprothoster; C:\Program Files (x86)\F-Secure\TOTAL\Ultralight\ulcore\1709915545\fsulprothoster.exe [738256 2024-03-26] (WithSecure Oyj -> WithSecure Corporation) R2 fsvpnsvc; C:\Program Files (x86)\F-Secure\TOTAL\fsvpnservice.exe [1983368 2024-02-06] (F-Secure Corporation -> F-Secure Corporation) S3 HwmRecordService; C:\Program Files (x86)\GIGABYTE\SIV\HwmRecordService.exe [133232 2023-12-13] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) R2 isesrv; C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe [1044176 2019-01-29] (Comodo Security Solutions, Inc. -> COMODO) S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9423680 2024-03-26] (Malwarebytes Inc. -> Malwarebytes) S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [3073888 2024-03-26] (Malwarebytes Inc. -> Malwarebytes) R2 MyService1; C:\Program Files (x86)\Gigabyte\AppCenter\AdjustService.exe [18944 2021-04-08] () [Brak podpisu cyfrowego] S2 OCButtonService; C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\OcButtonService.exe [131184 2023-12-06] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) S4 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522200 2024-03-21] (Microsoft Windows Publisher -> Microsoft Corporation) S4 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [2909208 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation) S4 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [128376 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation) R2 GigabyteUpdateService; C:\Windows\system32\GigabyteUpdateService.exe [878840 2024-03-27] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) S2 ProcessGovernor; "C:\Program Files\Process Lasso\srvstub.exe" "C:\Program Files\Process Lasso\processgovernor.exe" "ProcessGovernor" /exitevent:Global\ProcessGovernorExitEvent ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R1 adgnetworktdidrv; C:\Windows\System32\drivers\adgnetworktdidrv.sys [69184 2023-06-29] (Microsoft Windows Hardware Compatibility Publisher -> Adguard Software Limited) R3 amdfendrmgr; C:\Windows\System32\drivers\amdfendrmgr.sys [36800 2024-03-22] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) R3 amdgpio3; C:\Windows\System32\drivers\amdgpio3.sys [36928 2022-09-16] (ASMedia Technology Inc. -> Advanced Micro Devices, Inc) R3 AMDSAFD; C:\Windows\System32\DriverStore\FileRepository\amdsafd.inf_amd64_8e2568524f674315\amdsafd.sys [100768 2021-03-29] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices) R3 AmdTools64; C:\Windows\System32\drivers\AmdTools64.sys [63392 2020-06-16] (Microsoft Windows Hardware Compatibility Publisher -> ) R3 AMDXE; C:\Windows\System32\drivers\amdxe.sys [63096 2022-02-22] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) R1 CTIIO; C:\Windows\system32\drivers\CtiIo64.sys [34512 2024-03-20] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.) R1 ElbyCDIO; C:\Windows\System32\Drivers\ElbyCDIO.sys [42616 2017-05-14] (Microsoft Windows Hardware Compatibility Publisher -> Elaborate Bytes AG) R3 F-Secure Gatekeeper; C:\Program Files (x86)\F-Secure\TOTAL\Ultralight\ulcore\1709915545\fsulgk.sys [481968 2024-03-26] (Microsoft Windows Hardware Compatibility Publisher -> WithSecure Corporation) S0 fselms; C:\Windows\System32\drivers\fselms.sys [17400 2024-03-26] (Microsoft Windows Early Launch Anti-malware Publisher -> WithSecure Corporation) R2 fsnif2; C:\Program Files (x86)\F-Secure\TOTAL\Ultralight\nif2\1710924332\nif2s64.sys [186048 2024-03-27] (Microsoft Windows Hardware Compatibility Publisher -> WithSecure Corporation) R3 fsvpnwintun; C:\Windows\System32\drivers\fsvpnwintun.sys [31256 2023-12-11] (Microsoft Windows Hardware Compatibility Publisher -> F-Secure Corporation) R3 gdrv3; C:\Windows\System32\drivers\gdrv3.sys [51520 2024-03-20] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) R1 isedrv; C:\Windows\system32\drivers\isedrv.sys [63256 2018-08-29] (Comodo Security Solutions, Inc. -> COMODO) S3 libusb0; C:\Windows\System32\drivers\libusb0.sys [52832 2012-01-17] (Travis Lee Robinson -> hxxp://libusb-win32.sourceforge.net) S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2024-03-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239576 2024-03-26] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R1 Muvm6Sup; C:\Program Files\Muvm6Vbox\LoadedDrivers\Muvm6Drv.sys [366712 2022-08-23] (NetEase (Hangzhou) Network Co., Ltd -> NetEase Corporation) R3 rt68cx21; C:\Windows\System32\DriverStore\FileRepository\rt68cx21x64.inf_amd64_78de62dcb501407d\rt68cx21x64.sys [779624 2024-03-22] (Realtek Semiconductor Corp. -> Realtek) S3 rtcx21; C:\Windows\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek) R3 UsbDk; C:\Windows\System32\Drivers\UsbDk.sys [103128 2020-03-13] (Red Hat, Inc. -> Red Hat Inc.) R3 VClone; C:\Windows\System32\drivers\VClone.sys [44544 2020-02-22] (Microsoft Windows Hardware Compatibility Publisher -> Elaborate Bytes AG) R1 veracrypt; C:\Windows\System32\drivers\veracrypt.sys [813112 2024-03-22] (Microsoft Windows Hardware Compatibility Publisher -> IDRIX) S3 VGAOCTool; C:\Users\Admin\AppData\Local\Temp\VGAOCTool.sys [27008 2024-03-24] (TechPowerUp -> ) <==== UWAGA S4 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [48536 2022-05-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S4 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [438544 2022-05-07] (Microsoft Windows -> Microsoft Corporation) S3 wdm_usb; C:\Windows\system32\DRIVERS\usb2ser.sys [151184 2016-07-16] (NGO -> MBB) S4 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [90384 2022-05-07] (Microsoft Windows -> Microsoft Corporation) R3 WinRing0_1_2_0; C:\Users\Admin\AppData\Local\Temp\WinRing0x64.sys [33176 2024-03-27] (NetEase(Hangzhou) Network Co. Ltd. -> ) <==== UWAGA S2 IDMWFP; \SystemRoot\System32\drivers\idmwfp.sys [X] U3 TrueSight; \??\C:\Windows\System32\drivers\truesight.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2024-03-27 20:33 - 2024-03-27 20:34 - 000032390 _____ C:\Users\Admin\Downloads\FRST.txt 2024-03-27 20:33 - 2024-03-27 20:34 - 000000000 ____D C:\FRST 2024-03-27 20:33 - 2024-03-27 20:33 - 002391552 _____ (Farbar) C:\Users\Admin\Downloads\FRST64.exe 2024-03-27 19:37 - 2024-03-27 19:37 - 000002389 _____ C:\Users\Admin\Desktop\LabyMod Launcher.lnk 2024-03-27 19:07 - 2024-03-27 19:07 - 003084702 _____ C:\Users\Admin\Downloads\com.android.vending_1.8-1801_minAPI33(nodpi)_apkmirror.com.apk 2024-03-27 18:23 - 2024-03-27 18:23 - 000016239 _____ C:\Users\Admin\Downloads\remove-bloatware-for-android-1.1.1.zip 2024-03-27 18:21 - 2024-03-27 18:21 - 000022705 _____ C:\Users\Admin\Downloads\android-bloatware-remover.zip 2024-03-27 18:19 - 2024-03-27 18:19 - 007694336 _____ C:\Users\Admin\Downloads\uad_gui-windows.exe 2024-03-27 18:19 - 2024-03-27 18:19 - 005093888 _____ C:\Users\Admin\Downloads\uad_gui-windows-opengl.exe 2024-03-27 18:19 - 2024-03-27 18:19 - 000000000 ____D C:\Users\Admin\AppData\Roaming\uad 2024-03-27 18:19 - 2024-03-27 18:19 - 000000000 ____D C:\Users\Admin\AppData\Local\uad 2024-03-27 18:04 - 2024-03-27 18:04 - 001007047 _____ (Snoop05) C:\Users\Admin\Downloads\System Apps Uninstaller.exe 2024-03-27 18:02 - 2024-03-27 18:02 - 000000000 ____D C:\Users\Admin\.android 2024-03-27 17:39 - 2024-03-27 17:39 - 000000000 ____D C:\Users\Admin\.idlerc 2024-03-27 17:37 - 2024-03-27 17:37 - 000798218 _____ C:\Windows\system32\perfh015.dat 2024-03-27 17:37 - 2024-03-27 17:37 - 000158294 _____ C:\Windows\system32\perfc015.dat 2024-03-27 17:35 - 2024-03-27 17:36 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.12 2024-03-27 17:35 - 2024-03-27 17:35 - 026667456 _____ (Python Software Foundation) C:\Users\Admin\Downloads\python-3.12.2-amd64.exe 2024-03-27 17:35 - 2024-03-27 17:35 - 000641489 _____ (LibUSB-Win32 ) C:\Users\Admin\Downloads\libusb-win32-devel-filter-1.2.6.0.exe 2024-03-27 17:35 - 2024-03-27 17:35 - 000000000 ____D C:\Users\Admin\AppData\Local\Package Cache 2024-03-27 17:35 - 2024-03-27 17:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibUSB-Win32 2024-03-27 17:35 - 2024-03-27 17:35 - 000000000 ____D C:\Program Files\LibUSB-Win32 2024-03-27 17:35 - 2012-01-17 09:40 - 000076384 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\system32\libusb0.dll 2024-03-27 17:35 - 2012-01-17 09:40 - 000067680 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\SysWOW64\libusb0.dll 2024-03-27 17:35 - 2012-01-17 09:40 - 000052832 _____ (hxxp://libusb-win32.sourceforge.net) C:\Windows\system32\Drivers\libusb0.sys 2024-03-27 17:34 - 2024-03-27 17:34 - 000020558 _____ C:\Users\Admin\Downloads\exploits_collection-1.6.zip 2024-03-27 17:34 - 2024-03-27 17:34 - 000008130 _____ C:\Users\Admin\Downloads\bypass_utility-v.1.4.2.zip 2024-03-27 17:30 - 2024-03-27 17:30 - 000089336 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Windows\system32\GigabyteDownloadAssistant.exe 2024-03-27 17:30 - 2024-03-27 17:30 - 000003142 _____ C:\Windows\system32\Tasks\MSIAfterburner 2024-03-27 17:30 - 2024-03-27 17:30 - 000003126 _____ C:\Windows\system32\Tasks\AMDInstallLauncher 2024-03-27 17:30 - 2024-03-27 17:30 - 000003078 _____ C:\Windows\system32\Tasks\AMDLinkUpdate 2024-03-27 17:30 - 2024-03-27 17:30 - 000000000 ____D C:\Windows\LastGood 2024-03-27 17:29 - 2024-03-27 17:29 - 000000000 ____D C:\Users\Admin\Downloads\MediaTek_Preloader_USB_VCOM_Drivers_Setup_Signed 2024-03-27 17:29 - 2024-03-27 17:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SP Driver 2024-03-27 17:29 - 2024-03-27 17:29 - 000000000 ____D C:\Program Files\MediaTek 2024-03-27 17:29 - 2024-03-27 17:29 - 000000000 ____D C:\Program Files (x86)\MediaTek 2024-03-27 17:29 - 2016-07-16 04:10 - 000151184 _____ (MBB) C:\Windows\system32\Drivers\usb2ser.sys 2024-03-27 17:28 - 2024-03-27 17:28 - 000000000 ____D C:\Windows\LastGood.Tmp 2024-03-27 17:17 - 2024-03-27 17:17 - 000000000 ____D C:\ProgramData\SP_MDT_Logs 2024-03-27 16:53 - 2024-03-27 16:54 - 000000000 ____D C:\Users\Admin\AppData\Local\Mediatek 2024-03-27 16:42 - 2024-03-27 16:42 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_UsbDk_01011.Wdf 2024-03-27 16:42 - 2020-03-13 04:34 - 000103128 _____ (Red Hat Inc.) C:\Windows\system32\Drivers\UsbDk.sys 2024-03-27 16:41 - 2024-03-27 16:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OPPO售后驱动程序 2024-03-27 16:41 - 2024-03-27 16:41 - 000000000 ____D C:\Program Files\OPPO 2024-03-27 16:31 - 2024-03-27 16:31 - 000000000 ____D C:\Users\Admin\AppData\Local\BitTorrentHelper 2024-03-27 16:30 - 2024-03-27 16:32 - 000000000 ____D C:\Users\Admin\AppData\Roaming\utorrent 2024-03-27 16:30 - 2024-03-27 16:31 - 000000000 ____D C:\Users\Admin\AppData\LocalLow\uTorrent.WebView2 2024-03-27 16:30 - 2024-03-27 16:30 - 001739080 _____ ( ) C:\Users\Admin\Downloads\utorrent_installer.exe 2024-03-27 16:30 - 2024-03-27 16:30 - 000000910 _____ C:\Users\Admin\Desktop\µTorrent.lnk 2024-03-27 16:30 - 2024-03-27 16:30 - 000000890 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk 2024-03-27 16:28 - 2024-03-27 16:28 - 000000061 _____ C:\Users\Admin\Downloads\settings.ini 2024-03-27 16:27 - 2024-03-27 16:27 - 040090112 _____ C:\Users\Admin\Downloads\Android_Multi_Tool_v1.2.6.4.exe 2024-03-27 16:22 - 2024-03-27 16:22 - 000000000 ____D C:\Users\Admin\AppData\Local\Trolltech 2024-03-27 16:08 - 2024-03-27 16:08 - 000000005 _____ C:\Windows\libusb0a.dll 2024-03-27 16:08 - 2024-03-27 16:08 - 000000000 ____D C:\Users\Admin\Documents\UBL 2024-03-27 15:44 - 2024-03-27 15:44 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf 2024-03-27 15:38 - 2024-03-27 15:38 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Xiaomi 2024-03-27 15:17 - 2024-03-27 17:32 - 000000000 ____D C:\ProgramData\SP_FT_V6_Logs 2024-03-27 15:13 - 2024-03-27 17:06 - 000000000 ____D C:\ProgramData\SP_FT_Logs 2024-03-27 12:22 - 2024-03-27 12:22 - 000000878 _____ C:\Windows\system32\InstallUtil.InstallLog 2024-03-27 12:22 - 2024-03-27 12:22 - 000000000 ____D C:\ProgramData\TinyWall 2024-03-27 12:22 - 2024-03-27 12:22 - 000000000 ____D C:\Program Files (x86)\TinyWall 2024-03-27 12:19 - 2024-03-27 12:19 - 000000000 ____D C:\Users\Admin\AppData\Local\glasswire 2024-03-27 12:18 - 2024-03-27 12:19 - 000000000 ____D C:\ProgramData\glasswire 2024-03-27 12:18 - 2024-03-27 12:18 - 000000000 _____ C:\Windows\system32\Tasks\CIS_{81EFDD93-DBBE-415B-BE6E-49B9664E3E82} 2024-03-27 12:01 - 2024-03-27 12:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo 2024-03-27 12:01 - 2024-03-27 12:02 - 000000000 ____D C:\Program Files (x86)\Comodo 2024-03-27 12:01 - 2024-03-27 12:01 - 001060864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71.dll 2024-03-27 12:01 - 2024-03-27 12:01 - 000348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll 2024-03-27 12:01 - 2019-01-29 09:42 - 000254440 _____ (COMODO) C:\Windows\system32\iseguard64.dll 2024-03-27 12:01 - 2019-01-29 09:42 - 000205024 _____ (COMODO) C:\Windows\SysWOW64\iseguard32.dll 2024-03-27 12:01 - 2018-08-29 23:55 - 000063256 _____ (COMODO) C:\Windows\system32\Drivers\isedrv.sys 2024-03-27 12:00 - 2024-03-27 12:19 - 000000000 ____D C:\ProgramData\Comodo 2024-03-27 08:16 - 2024-03-27 08:17 - 000000000 ____D C:\W10UIuup 2024-03-27 07:43 - 2024-03-27 07:43 - 000000407 _____ C:\DelFix.txt 2024-03-26 23:59 - 2024-03-26 23:59 - 000000001 _____ C:\Users\Admin\AppData\Local\llftool.4.40.agreement 2024-03-26 23:54 - 2024-03-26 23:54 - 000000000 ____D C:\Users\Admin\AppData\Roaming\qualys 2024-03-26 22:46 - 2024-03-26 22:46 - 000003858 _____ C:\Windows\system32\Tasks\EOSv3 Scheduler onLogOn 2024-03-26 22:46 - 2024-03-26 22:46 - 000003416 _____ C:\Windows\system32\Tasks\EOSv3 Scheduler onTime 2024-03-26 22:24 - 2024-03-27 06:35 - 000000000 ____D C:\Users\Admin\AppData\Local\ESET 2024-03-26 22:24 - 2024-03-26 22:24 - 000001408 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk 2024-03-26 21:15 - 2024-03-26 23:39 - 000000000 ____D C:\Users\Admin\AppData\Local\Malwarebytes 2024-03-26 21:15 - 2024-03-26 21:18 - 000002119 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2024-03-26 21:15 - 2024-03-26 21:18 - 000002107 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2024-03-26 21:15 - 2024-03-26 21:18 - 000000000 ____D C:\ProgramData\Malwarebytes 2024-03-26 21:15 - 2024-03-26 21:18 - 000000000 ____D C:\Program Files\Malwarebytes 2024-03-26 06:49 - 2024-03-26 14:57 - 000000000 ____D C:\ProgramData\ProcessLasso 2024-03-26 06:44 - 2024-03-26 06:45 - 000000000 ____D C:\ProgramData\F-Secure 2024-03-26 06:44 - 2024-03-26 06:44 - 000002173 _____ C:\Users\Public\Desktop\F-Secure.lnk 2024-03-26 06:44 - 2024-03-26 06:44 - 000000000 ____D C:\Windows\system32\Tasks\F-Secure 2024-03-26 06:44 - 2024-03-26 06:44 - 000000000 ____D C:\Users\Admin\AppData\Local\F-Secure 2024-03-26 06:44 - 2024-03-26 06:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\F-Secure 2024-03-26 06:44 - 2024-03-26 06:44 - 000000000 ____D C:\Program Files (x86)\F-Secure 2024-03-26 06:36 - 2024-03-26 06:36 - 000000591 _____ C:\Users\Admin\Documents\forum.txt 2024-03-26 00:39 - 2024-03-26 06:47 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows NT 2024-03-26 00:38 - 2024-03-26 00:38 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Java 2024-03-26 00:29 - 2024-03-26 00:29 - 000888600 _____ (Google LLC) C:\Users\Public\Documents\gcapi.dll 2024-03-26 00:29 - 2024-03-26 00:29 - 000000000 ____D C:\ProgramData\Avast Software 2024-03-25 23:59 - 2024-03-25 23:59 - 000000000 ___HD C:\ProgramData\DNTException 2024-03-25 23:57 - 2024-03-26 15:56 - 000000000 ____D C:\Program Files (x86)\RogueKiller Anti Malware Premium 2024-03-25 22:57 - 2024-03-25 23:56 - 000000000 ____D C:\Users\Admin\Desktop\włłamania 2024-03-25 00:59 - 2024-03-25 00:59 - 000000000 ____D C:\Windows\system32\appmgmt 2024-03-24 19:17 - 2024-03-27 16:58 - 000000000 ____D C:\Users\Admin\AppData\Local\CrashDumps 2024-03-24 18:55 - 2024-03-24 18:55 - 000003402 _____ C:\Windows\system32\Tasks\Sapphire TRIXX 2024-03-24 14:35 - 2024-03-24 14:35 - 000000000 ____D C:\Users\Admin\AppData\Local\NemuPlayer 2024-03-24 09:56 - 2024-03-24 09:56 - 000000000 ____D C:\Users\Admin\AppData\Local\FLiNGTrainer 2024-03-24 09:14 - 2024-03-24 09:14 - 000304664 _____ C:\Windows\system32\FNTCACHE.DAT 2024-03-24 09:12 - 2024-03-24 09:12 - 000000000 ____D C:\Windows\SysWOW64\XPSViewer 2024-03-24 09:12 - 2024-03-24 09:12 - 000000000 ____D C:\Program Files\Reference Assemblies 2024-03-24 09:12 - 2024-03-24 09:12 - 000000000 ____D C:\Program Files\MSBuild 2024-03-24 09:12 - 2024-03-24 09:12 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies 2024-03-24 09:12 - 2024-03-24 09:12 - 000000000 ____D C:\Program Files (x86)\MSBuild 2024-03-24 09:08 - 2024-03-26 00:46 - 000000000 ____D C:\Windows\system32\Tasks\Abelssoft 2024-03-24 09:03 - 2024-03-24 09:03 - 000000000 ____D C:\ProgramData\AME 2024-03-24 08:52 - 2019-01-27 09:26 - 000804552 _____ (elpamsoft.com ) C:\Users\Admin\Desktop\SSDTweaker.exe 2024-03-24 08:51 - 2024-03-24 08:51 - 000000000 ____D C:\Users\Admin\AppData\Local\Abelssoft 2024-03-24 06:17 - 2024-03-24 06:23 - 000003714 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA 2024-03-24 06:17 - 2024-03-24 06:23 - 000003590 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore 2024-03-24 06:17 - 2024-03-24 06:17 - 000002341 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2024-03-24 06:17 - 2024-03-24 06:17 - 000002300 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2024-03-24 06:17 - 2024-03-24 06:17 - 000000000 ____D C:\Program Files\Google 2024-03-24 05:51 - 2024-03-24 05:51 - 000000174 _____ C:\Users\Admin\advanced_ip_scanner_MAC.bin 2024-03-24 05:51 - 2024-03-24 05:51 - 000000015 _____ C:\Users\Admin\advanced_ip_scanner_Comments.bin 2024-03-24 05:51 - 2024-03-24 05:51 - 000000015 _____ C:\Users\Admin\advanced_ip_scanner_Aliases.bin 2024-03-24 05:50 - 2024-03-24 05:50 - 000001084 _____ C:\Users\Public\Desktop\Advanced IP Scanner.lnk 2024-03-24 05:50 - 2024-03-24 05:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced IP Scanner v2 2024-03-24 05:50 - 2024-03-24 05:50 - 000000000 ____D C:\Program Files (x86)\Advanced IP Scanner 2024-03-24 04:56 - 2024-03-24 04:59 - 1305149440 _____ C:\Users\Admin\Downloads\Windows 10 XpEditionx64.iso 2024-03-23 23:20 - 2024-03-23 23:20 - 000000000 ____D C:\ProgramData\Propagation 2024-03-23 21:42 - 2024-03-23 21:42 - 000000000 ____D C:\Users\Admin\AppData\Local\ATI 2024-03-23 21:26 - 2024-03-23 21:26 - 000000958 _____ C:\Users\Public\Desktop\Winaero Tweaker.lnk 2024-03-23 21:26 - 2024-03-23 21:26 - 000000000 ____D C:\Users\Admin\Desktop\winaero tweaker 2024-03-23 21:26 - 2024-03-23 21:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winaero Tweaker 2024-03-23 21:26 - 2024-03-23 21:26 - 000000000 ____D C:\Program Files\Winaero Tweaker 2024-03-23 21:06 - 2024-03-23 21:06 - 000001087 _____ C:\Users\Admin\Downloads\general.ini 2024-03-23 12:17 - 2024-03-23 12:17 - 000000000 ____D C:\Windows\SysWOW64\directx 2024-03-23 12:17 - 2024-03-23 12:17 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server 2024-03-23 12:17 - 2024-03-23 12:17 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server 2024-03-23 12:16 - 2024-03-27 13:38 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner 2024-03-23 12:16 - 2024-03-25 23:44 - 000001181 _____ C:\Users\Admin\Desktop\MSI Afterburner.lnk 2024-03-23 12:16 - 2024-03-23 12:16 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner 2024-03-23 12:08 - 2024-03-23 12:08 - 000000000 ____D C:\Users\Admin\Documents\SIV 2024-03-23 11:59 - 2024-03-25 23:44 - 000001223 _____ C:\Users\Admin\Desktop\FurMark2 x64.lnk 2024-03-23 11:59 - 2024-03-23 11:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Geeks3D 2024-03-23 11:59 - 2024-03-23 11:59 - 000000000 ____D C:\Program Files\Geeks3D 2024-03-23 05:26 - 2024-03-26 21:26 - 000000000 ____D C:\Users\Admin\AppData\Local\AMD_Common 2024-03-23 04:00 - 2024-03-23 04:00 - 000003304 _____ C:\Windows\system32\Tasks\StartCNBM 2024-03-23 03:59 - 2024-03-23 05:05 - 000000000 ____D C:\AMD 2024-03-23 01:22 - 2024-03-23 01:22 - 000003274 _____ C:\Windows\system32\Tasks\Session agent for Process Lasso 2024-03-23 01:22 - 2024-03-23 01:22 - 000003106 _____ C:\Windows\system32\Tasks\Process Lasso Management Console (GUI) 2024-03-23 01:18 - 2024-03-23 01:18 - 000000000 ____D C:\Users\Admin\AppData\Local\ProcessLasso 2024-03-23 00:07 - 2024-03-25 19:26 - 000000000 ____D C:\Users\Admin\AppData\Roaming\MPC-HC 2024-03-23 00:01 - 2024-03-23 00:01 - 000003300 _____ C:\Windows\system32\Tasks\klcp_update 2024-03-23 00:01 - 2024-03-23 00:01 - 000001544 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk 2024-03-23 00:01 - 2024-03-23 00:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack 2024-03-23 00:01 - 2024-03-23 00:01 - 000000000 ____D C:\Program Files (x86)\K-Lite Codec Pack 2024-03-22 20:49 - 2024-03-22 20:49 - 000003188 _____ C:\Windows\system32\Tasks\PrivaZer_SkipUAC 2024-03-22 20:48 - 2024-03-26 16:53 - 000000000 ____D C:\Users\Admin\AppData\Local\PrivaZer 2024-03-22 20:48 - 2024-03-22 20:48 - 000001980 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PrivaZer.lnk 2024-03-22 20:48 - 2024-03-22 20:48 - 000001968 _____ C:\Users\Public\Desktop\PrivaZer.lnk 2024-03-22 20:48 - 2024-03-22 20:48 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PrivaZer 2024-03-22 20:48 - 2024-03-22 20:48 - 000000000 ____D C:\ProgramData\privazer 2024-03-22 20:48 - 2024-03-22 20:48 - 000000000 ____D C:\Program Files (x86)\PrivaZer 2024-03-22 20:00 - 2024-03-22 20:00 - 000000902 _____ C:\Users\Public\Desktop\VeraCrypt.lnk 2024-03-22 20:00 - 2024-03-22 20:00 - 000000000 ____D C:\Users\Admin\AppData\Roaming\VeraCrypt 2024-03-22 20:00 - 2024-03-22 20:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VeraCrypt 2024-03-22 20:00 - 2024-03-22 20:00 - 000000000 ____D C:\Program Files\VeraCrypt 2024-03-22 19:48 - 2024-03-22 19:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIDA64 2024-03-22 19:48 - 2024-03-22 19:48 - 000000000 ____D C:\Program Files (x86)\AIDA64 2024-03-22 15:32 - 2024-03-25 01:32 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Vortex 2024-03-22 15:32 - 2024-03-22 15:32 - 000000000 ____D C:\Program Files\dotnet 2024-03-22 15:31 - 2024-03-22 15:31 - 000002082 _____ C:\Users\Public\Desktop\Vortex.lnk 2024-03-22 15:31 - 2024-03-22 15:31 - 000000000 ____D C:\Users\Admin\AppData\Local\vortex-updater 2024-03-22 15:31 - 2024-03-22 15:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Black Tree Gaming Ltd 2024-03-22 15:31 - 2024-03-22 15:31 - 000000000 ____D C:\Program Files\Black Tree Gaming Ltd 2024-03-22 15:11 - 2024-03-22 15:11 - 000000000 ____D C:\Users\Admin\Documents\CD Projekt Red 2024-03-22 15:07 - 2024-03-23 23:11 - 000000000 ____D C:\Users\Admin\AppData\Local\REDEngine 2024-03-22 15:07 - 2024-03-22 15:07 - 000000000 ____D C:\Users\Public\Documents\Steam 2024-03-22 15:07 - 2024-03-22 15:07 - 000000000 ____D C:\Users\Admin\AppData\Local\CD Projekt Red 2024-03-22 15:06 - 2024-03-22 15:06 - 000001131 _____ C:\Users\Public\Desktop\Play Cyberpunk 2077.lnk 2024-03-22 15:06 - 2024-03-22 15:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cyberpunk 2077 2024-03-22 04:03 - 2024-03-22 04:03 - 000574904 _____ C:\Users\Admin\Downloads\DODI21DODI21DODI.torrent 2024-03-22 03:45 - 2024-03-22 03:45 - 000000000 ____D C:\Windows\CSC 2024-03-22 03:43 - 2024-03-22 03:43 - 000000000 ____D C:\Users\Admin\AppData\Local\mbamtray 2024-03-22 03:43 - 2023-11-06 21:35 - 000000582 _____ C:\Windows\system32\Drivers\etc\hosts.ics 2024-03-22 03:42 - 2024-03-22 03:51 - 000000000 ____D C:\Users\Admin\Downloads\[FTUApps.com] - Malwarebytes Premium v5.0.17.99 Multilingual Pre-Activated [RePack] 2024-03-22 03:31 - 2024-03-22 03:31 - 000525744 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdtee_api.dll 2024-03-22 03:31 - 2024-03-22 03:31 - 000397232 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdtee_api.dll 2024-03-22 03:31 - 2024-03-22 03:31 - 000062392 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\Drivers\amdpsp.sys 2024-03-22 03:30 - 2024-03-26 15:07 - 000000000 ____D C:\ProgramData\IObit 2024-03-22 03:30 - 2024-03-22 03:30 - 000003292 _____ C:\Windows\system32\Tasks\Driver Booster SkipUAC (Admin) 2024-03-22 03:25 - 2024-03-22 03:25 - 000036800 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\amdfendrmgr.sys 2024-03-22 03:24 - 2024-03-22 03:24 - 000352304 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\amdfendr.sys 2024-03-22 03:23 - 2024-03-22 03:25 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Easeware 2024-03-22 03:20 - 2024-03-22 03:28 - 000000000 ____D C:\Users\Admin\AppData\Local\Senior Flash Decompiler 2024-03-22 03:19 - 2024-03-22 03:48 - 000000000 ____D C:\Users\Admin\AppData\Local\DPulse 2024-03-22 03:19 - 2024-03-22 03:19 - 000004264 _____ C:\Windows\system32\Tasks\Opera GX scheduled Autoupdate 1711073982 2024-03-22 03:19 - 2024-03-22 03:19 - 000000000 ____D C:\Users\Admin\AppData\Roaming\npm 2024-03-22 03:19 - 2024-03-22 03:19 - 000000000 ____D C:\ProgramData\NetTrace 2024-03-22 03:19 - 2024-03-22 03:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Node.js 2024-03-21 21:31 - 2024-03-27 19:37 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LabyMedia GmbH 2024-03-21 21:30 - 2024-03-27 20:31 - 000000000 ____D C:\Users\Admin\AppData\Roaming\LabyMod Launcher 2024-03-21 21:30 - 2024-03-27 19:36 - 000000000 ____D C:\Users\Admin\AppData\Local\labymodlauncher 2024-03-21 21:30 - 2024-03-21 21:37 - 000000000 ____D C:\Users\Admin\AppData\Roaming\LabyMod 2024-03-21 21:30 - 2024-03-21 21:31 - 000000000 ____D C:\Users\Admin\AppData\Local\SquirrelTemp 2024-03-21 21:23 - 2024-03-21 21:23 - 000000000 ____D C:\Users\Admin\AppData\Local\CEF 2024-03-21 21:22 - 2024-03-24 17:23 - 000000000 ____D C:\Users\Admin\AppData\Roaming\.minecraft 2024-03-21 21:22 - 2024-03-22 03:32 - 000000000 ____D C:\XboxGames 2024-03-21 21:22 - 2024-03-21 21:22 - 000000028 ____H C:\.GamingRoot 2024-03-21 15:41 - 2024-03-21 15:41 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps 2024-03-21 06:13 - 2024-03-27 17:30 - 000906584 _____ C:\Windows\system32\wpbbin.exe 2024-03-21 06:13 - 2024-03-27 17:30 - 000878840 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Windows\system32\GigabyteUpdateService.exe 2024-03-21 06:13 - 2024-03-21 06:13 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf 2024-03-21 05:36 - 2024-03-25 23:44 - 000001226 _____ C:\Users\Admin\Desktop\Skijumping 2007.lnk 2024-03-21 05:36 - 2024-03-21 05:36 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RTL Playtainment 2024-03-21 05:36 - 2024-03-21 05:36 - 000000000 ____D C:\Program Files (x86)\Skijumping 2007 2024-03-21 05:24 - 2024-03-24 08:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ski Springen (2007) 2024-03-21 05:23 - 2024-03-21 05:24 - 000000000 ____D C:\Program Files (x86)\Ski Springen 2007 2024-03-21 04:56 - 2024-03-21 04:56 - 000001351 _____ C:\Users\Public\Desktop\Virtual CloneDrive.lnk 2024-03-21 04:56 - 2024-03-21 04:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elaborate Bytes 2024-03-21 04:56 - 2024-03-21 04:56 - 000000000 ____D C:\Program Files (x86)\Elaborate Bytes 2024-03-21 04:44 - 2024-03-21 04:44 - 000000000 ____D C:\Users\Admin\AppData\LocalLow\Blue Sunset Games 2024-03-21 04:20 - 2024-03-26 21:23 - 000000000 ____D C:\Program Files (x86)\uTorrent 2024-03-21 00:05 - 2024-03-22 03:12 - 000000000 ____D C:\ProgramData\Realtek 2024-03-20 23:36 - 2024-03-24 14:51 - 000000000 ____D C:\Users\Admin\Documents\MuMuSharedFolder 2024-03-20 23:36 - 2024-03-20 23:36 - 000002206 _____ C:\Users\Public\Desktop\MuMu Multi-DriveX.lnk 2024-03-20 23:36 - 2024-03-20 23:36 - 000002167 _____ C:\Users\Public\Desktop\MuMu Player X.lnk 2024-03-20 23:36 - 2024-03-20 23:36 - 000000000 ____D C:\Users\Public\Documents\Creative 2024-03-20 23:36 - 2024-03-20 23:36 - 000000000 ____D C:\Users\Public\.MUVM6 2024-03-20 23:36 - 2024-03-20 23:36 - 000000000 ____D C:\Users\Default\.MUVM6 2024-03-20 23:36 - 2024-03-20 23:36 - 000000000 ____D C:\Users\Admin\Documents\temp 2024-03-20 23:36 - 2024-03-20 23:36 - 000000000 ____D C:\Users\Admin\AppData\Local\CrashRpt 2024-03-20 23:36 - 2024-03-20 23:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MuMu Player X 2024-03-20 23:35 - 2024-03-27 19:41 - 000000000 ____D C:\Users\Admin\.MUVM6 2024-03-20 23:35 - 2024-03-20 23:36 - 000000000 ____D C:\Program Files\Muvm6Vbox 2024-03-20 23:35 - 2024-03-20 23:35 - 000000000 ____D C:\Users\Admin\Downloads\AndroidLaunchers 2024-03-20 23:34 - 2024-03-27 19:41 - 000000000 ____D C:\Users\Public\Documents\MuMu Files 9 2024-03-20 23:32 - 2024-03-20 23:32 - 000000000 ____D C:\Program Files\MuMu9 2024-03-20 23:29 - 2024-03-20 23:29 - 000000942 _____ C:\ProgramData\ntuser.pol 2024-03-20 23:06 - 2024-03-27 06:35 - 000000000 ____D C:\Users\Admin\Downloads\Compressed 2024-03-20 23:06 - 2024-03-21 15:07 - 000000000 ____D C:\Users\Admin\Downloads\Video 2024-03-20 23:05 - 2024-03-20 23:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip 2024-03-20 23:05 - 2024-03-20 23:05 - 000000000 ____D C:\Program Files\7-Zip 2024-03-20 23:02 - 2024-03-27 20:31 - 000000000 ____D C:\ProgramData\Adguard 2024-03-20 23:02 - 2024-03-27 17:30 - 000000000 ____D C:\Program Files (x86)\Adguard 2024-03-20 23:02 - 2024-03-20 23:02 - 000001967 _____ C:\Users\Public\Desktop\AddTrialAdguard.lnk 2024-03-20 23:02 - 2024-03-20 23:02 - 000001086 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AdGuard for Windows.lnk 2024-03-20 23:02 - 2024-03-20 23:02 - 000001074 _____ C:\Users\Public\Desktop\Adguard.lnk 2024-03-20 23:02 - 2024-03-20 23:02 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Adguard Software Limited 2024-03-20 23:02 - 2024-03-20 23:02 - 000000000 ____D C:\Users\Admin\AppData\Local\Adguard_Software_Limited 2024-03-20 23:02 - 2024-03-20 23:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adguard 2024-03-20 22:55 - 2024-03-27 20:28 - 000000000 ____D C:\Program Files (x86)\Google 2024-03-20 22:55 - 2024-03-24 06:17 - 000000000 ____D C:\Users\Admin\AppData\Local\Google 2024-03-20 22:55 - 2024-03-20 22:55 - 000000000 ____D C:\Users\Admin\AppData\LocalLow\AMD 2024-03-20 22:53 - 2024-03-20 22:53 - 000002108 _____ C:\Users\Public\Desktop\Bloody7.lnk 2024-03-20 22:53 - 2024-03-20 22:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bloody 2024-03-20 22:53 - 2024-03-20 22:53 - 000000000 ____D C:\ProgramData\Bloody7 2024-03-20 22:53 - 2024-03-20 22:53 - 000000000 ____D C:\Program Files (x86)\Bloody7 2024-03-20 22:51 - 2024-03-26 01:02 - 000003902 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-1303617771-391412065-3885917864-1000UA{D6078585-CEAF-4F86-95C0-81FD6D00DC78} 2024-03-20 22:51 - 2024-03-26 01:02 - 000003838 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-1303617771-391412065-3885917864-1000Core{0C5C2C69-1888-4C39-A59A-5EB075AE6CB5} 2024-03-20 22:50 - 2024-03-20 22:50 - 000000000 ____D C:\Users\Admin\AppData\Local\cache 2024-03-20 22:42 - 2024-03-20 22:42 - 000003488 _____ C:\Windows\system32\Tasks\ModifyLinkUpdate 2024-03-20 22:42 - 2024-03-20 22:42 - 000003160 _____ C:\Windows\system32\Tasks\StartCN 2024-03-20 22:42 - 2024-03-20 22:42 - 000003080 _____ C:\Windows\system32\Tasks\StartDVR 2024-03-20 22:42 - 2024-03-20 22:42 - 000002620 _____ C:\Windows\system32\Tasks\AMDRyzenMasterSDKTask 2024-03-20 22:42 - 2024-03-20 22:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon Software 2024-03-20 22:42 - 2024-03-20 22:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Link For Windows 2024-03-20 22:42 - 2024-03-20 22:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Bug Report Tool 2024-03-20 22:41 - 2024-03-23 05:05 - 000000000 ____D C:\Program Files\AMD 2024-03-20 22:41 - 2024-03-23 04:00 - 000000000 ____D C:\ProgramData\AMD 2024-03-20 22:41 - 2022-08-02 16:09 - 002241656 _____ (AMD Inc.) C:\Windows\SysWOW64\AMDBugReportTool.exe 2024-03-20 22:40 - 2024-03-20 22:40 - 000000000 ____D C:\Users\Admin\AppData\Local\RadeonInstaller 2024-03-20 22:37 - 2024-03-20 22:37 - 000000000 ____D C:\Program Files (x86)\Realtek 2024-03-20 22:37 - 2022-06-29 18:34 - 006174016 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys 2024-03-20 22:37 - 2021-05-17 02:50 - 002875968 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll 2024-03-20 22:30 - 2024-03-20 22:30 - 000051520 ____N (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Windows\system32\Drivers\gdrv3.sys 2024-03-20 22:29 - 2024-03-23 04:00 - 000000000 ____D C:\Users\Admin\AppData\Local\Downloaded Installations 2024-03-20 22:29 - 2024-03-20 22:29 - 000002089 _____ C:\Users\Public\Desktop\RGBFusion.lnk 2024-03-20 22:29 - 2024-03-20 22:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\AORUS 2024-03-20 22:29 - 2024-03-20 22:29 - 000000000 ____D C:\Program Files\WD 2024-03-20 22:29 - 2024-03-20 22:29 - 000000000 ____D C:\Program Files\Verbatim 2024-03-20 22:29 - 2024-03-20 22:29 - 000000000 ____D C:\Program Files\Patriot 2024-03-20 22:29 - 2024-03-20 22:29 - 000000000 ____D C:\Program Files\ENE 2024-03-20 22:28 - 2024-03-20 22:28 - 000003478 _____ C:\Windows\system32\Tasks\GraphicsCardEngine 2024-03-20 22:28 - 2024-03-20 22:28 - 000003384 _____ C:\Windows\system32\Tasks\SIV-VGA 2024-03-20 22:28 - 2024-03-20 22:28 - 000003378 _____ C:\Windows\system32\Tasks\SIV 2024-03-20 22:26 - 2024-03-26 15:27 - 000003536 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2024-03-20 22:26 - 2024-03-26 15:27 - 000003412 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2024-03-20 22:26 - 2024-03-20 22:26 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Network 2024-03-20 22:25 - 2024-03-20 22:25 - 000000000 ____D C:\Users\Admin\AppData\Roaming\AMD 2024-03-20 22:25 - 2024-03-20 22:25 - 000000000 ____D C:\Users\Admin\AppData\Local\setup 2024-03-20 22:25 - 2024-03-20 22:25 - 000000000 ____D C:\Program Files (x86)\AMD 2024-03-20 22:21 - 2024-03-23 12:17 - 000000000 ____D C:\ProgramData\Package Cache 2024-03-20 22:21 - 2024-03-20 22:37 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2024-03-20 22:21 - 2024-03-20 22:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gigabyte 2024-03-20 22:21 - 2024-03-20 22:34 - 000000000 ____D C:\Program Files (x86)\Gigabyte 2024-03-20 22:20 - 2024-03-20 22:20 - 000000000 ____D C:\Windows\SysWOW64\pl 2024-03-20 22:20 - 2024-03-20 22:20 - 000000000 ____D C:\Windows\system32\pl 2024-03-20 22:19 - 2024-03-20 22:19 - 000003022 _____ C:\Windows\system32\Tasks\StartAllBack Update 2024-03-20 22:19 - 2024-03-20 22:19 - 000000000 ____D C:\Users\Admin\AppData\Local\StartAllBack 2024-03-20 22:19 - 2024-03-20 22:19 - 000000000 ____D C:\Program Files\StartAllBack 2024-03-20 22:18 - 2024-03-20 22:18 - 000000000 ____D C:\Users\Admin\AppData\Local\Publishers 2024-03-20 22:17 - 2024-03-21 21:22 - 000000000 ____D C:\Users\Admin\AppData\Local\PlaceholderTileLogoFolder 2024-03-20 22:15 - 2024-03-27 17:29 - 000065536 _____ C:\Windows\system32\spu_storage.bin 2024-03-20 22:15 - 2024-03-24 18:49 - 000000000 ____D C:\Users\Admin\AppData\Local\AMD 2024-03-20 22:15 - 2024-03-23 23:11 - 000000000 ____D C:\Windows\system32\AMD 2024-03-20 22:15 - 2024-03-20 22:15 - 000000420 _____ C:\Users\Admin\Desktop\This PC.lnk 2024-03-03 23:44 - 2024-03-21 04:57 - 000000000 ____D C:\Users\Admin\AppData\Local\VirtualStore 2024-03-03 19:49 - 2024-03-21 03:26 - 000000000 ____D C:\Windows\system32\Microsoft-Edge-WebView 2024-03-03 19:49 - 2024-03-03 19:49 - 000000000 ____D C:\Windows\system32\Drivers\mde 2024-03-03 19:49 - 2024-03-03 19:49 - 000000000 ____D C:\Windows\system32\appraiser 2024-03-03 19:44 - 2024-03-03 19:44 - 000060462 _____ C:\Windows\SysWOW64\ctac.json 2024-03-03 19:44 - 2024-03-03 19:44 - 000020023 _____ C:\Windows\SysWOW64\IntegratedServicesRegionPolicySet.json 2024-03-03 19:43 - 2024-03-03 19:43 - 000060462 _____ C:\Windows\system32\ctac.json 2024-03-03 19:43 - 2024-03-03 19:43 - 000020023 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2024-03-27 20:28 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SystemTemp 2024-03-27 18:19 - 2023-11-26 09:11 - 000000000 ____D C:\Users\Admin\AppData\Local\D3DSCache 2024-03-27 18:02 - 2023-11-26 09:11 - 000000000 ____D C:\Users\Admin 2024-03-27 18:01 - 2022-05-07 06:22 - 000000000 ____D C:\Windows\INF 2024-03-27 17:37 - 2023-11-26 09:16 - 001797776 _____ C:\Windows\system32\PerfStringBackup.INI 2024-03-27 17:30 - 2023-11-26 09:10 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2024-03-27 13:44 - 2023-11-26 09:10 - 000000000 ____D C:\Windows\system32\SleepStudy 2024-03-27 12:18 - 2022-05-07 06:24 - 000000000 ___HD C:\Windows\ELAMBKUP 2024-03-27 12:05 - 2022-05-07 06:17 - 000262144 _____ C:\Windows\system32\config\BBI 2024-03-27 08:40 - 2023-11-26 09:11 - 000000000 ____D C:\Users\Admin\AppData\Local\Packages 2024-03-27 08:40 - 2022-05-07 06:24 - 000000000 ___HD C:\Program Files\WindowsApps 2024-03-27 08:40 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\AppReadiness 2024-03-26 15:09 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SystemResources 2024-03-26 15:09 - 2022-05-07 06:17 - 000000000 ____D C:\Windows\CbsTemp 2024-03-24 09:12 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SysWOW64\MUI 2024-03-24 09:12 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\MUI 2024-03-24 06:12 - 2023-11-26 09:11 - 000000000 ____D C:\ProgramData\Packages 2024-03-23 23:11 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\LiveKernelReports 2024-03-21 21:22 - 2023-11-26 09:11 - 000000000 ____D C:\Users\Admin\AppData\Local\ConnectedDevicesPlatform 2024-03-21 07:13 - 2022-05-07 06:24 - 000028672 _____ C:\Windows\system32\config\BCD-Template 2024-03-21 03:42 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\USOPrivate 2024-03-21 03:33 - 2023-11-26 09:08 - 000000000 ____D C:\Windows\Panther 2024-03-21 03:26 - 2023-11-26 06:28 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2024-03-21 03:26 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SysWOW64\Dism 2024-03-21 03:26 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\bcastdvr 2024-03-21 03:26 - 2022-05-07 06:17 - 000000000 ____D C:\Windows\servicing 2024-03-20 23:27 - 2022-05-07 06:24 - 000000000 ___HD C:\Windows\system32\GroupPolicy 2024-03-20 22:48 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2024-03-20 22:22 - 2024-02-09 00:00 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\MMC 2024-03-20 22:20 - 2022-05-07 07:10 - 000000000 ____D C:\Program Files\Windows Photo Viewer 2024-03-20 22:20 - 2022-05-07 07:10 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2024-03-20 22:20 - 2022-05-07 07:01 - 000000000 ____D C:\Windows\SysWOW64\winrm 2024-03-20 22:20 - 2022-05-07 07:01 - 000000000 ____D C:\Windows\SysWOW64\WCN 2024-03-20 22:20 - 2022-05-07 07:01 - 000000000 ____D C:\Windows\SysWOW64\slmgr 2024-03-20 22:20 - 2022-05-07 07:01 - 000000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts 2024-03-20 22:20 - 2022-05-07 07:01 - 000000000 ____D C:\Windows\system32\winrm 2024-03-20 22:20 - 2022-05-07 07:01 - 000000000 ____D C:\Windows\system32\WCN 2024-03-20 22:20 - 2022-05-07 07:01 - 000000000 ____D C:\Windows\system32\slmgr 2024-03-20 22:20 - 2022-05-07 07:01 - 000000000 ____D C:\Windows\system32\Printing_Admin_Scripts 2024-03-20 22:20 - 2022-05-07 06:24 - 000000000 ___SD C:\Windows\SysWOW64\F12 2024-03-20 22:20 - 2022-05-07 06:24 - 000000000 ___SD C:\Windows\SysWOW64\DiagSvcs 2024-03-20 22:20 - 2022-05-07 06:24 - 000000000 ___SD C:\Windows\system32\F12 2024-03-20 22:20 - 2022-05-07 06:24 - 000000000 ___SD C:\Windows\system32\DiagSvcs 2024-03-20 22:20 - 2022-05-07 06:24 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2024-03-20 22:20 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SysWOW64\oobe 2024-03-20 22:20 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SysWOW64\Com 2024-03-20 22:20 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\WinBioPlugIns 2024-03-20 22:20 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\SystemResetPlatform 2024-03-20 22:20 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\Sysprep 2024-03-20 22:20 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\Sgrm 2024-03-20 22:20 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\PerceptionSimulation 2024-03-20 22:20 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\oobe 2024-03-20 22:20 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\migwiz 2024-03-20 22:20 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\Dism 2024-03-20 22:20 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\Com 2024-03-20 22:20 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\PolicyDefinitions 2024-03-20 22:20 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\IME 2024-03-20 22:20 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files\Windows Defender 2024-03-20 22:20 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files\Common Files\System 2024-03-20 22:20 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files (x86)\Windows Defender 2024-03-20 22:19 - 2023-11-26 09:11 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Spelling 2024-03-20 22:19 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\OCR 2024-03-20 22:14 - 2022-05-07 06:28 - 000000000 ____D C:\Windows\Setup 2024-03-03 22:49 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\MsDtc 2024-03-03 19:49 - 2023-11-26 06:28 - 000000000 __SHD C:\Windows\BitLockerDiscoveryVolumeContents 2024-03-03 19:49 - 2023-11-26 06:28 - 000000000 ___SD C:\Windows\system32\AppV 2024-03-03 19:49 - 2023-11-26 06:28 - 000000000 ____D C:\Windows\InboxApps 2024-03-03 19:49 - 2022-05-07 06:24 - 000000000 ___SD C:\Windows\system32\UNP 2024-03-03 19:49 - 2022-05-07 06:24 - 000000000 ___RD C:\Windows\PrintDialog 2024-03-03 19:49 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\WUModels 2024-03-03 19:49 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\UUS 2024-03-03 19:49 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata 2024-03-03 19:49 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SysWOW64\vi-VN 2024-03-03 19:49 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SysWOW64\setup 2024-03-03 19:49 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SysWOW64\PerceptionSimulation 2024-03-03 19:49 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SysWOW64\InputMethod 2024-03-03 19:49 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SysWOW64\IME 2024-03-03 19:49 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SysWOW64\id-ID 2024-03-03 19:49 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SysWOW64\gl-ES 2024-03-03 19:49 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SysWOW64\eu-ES 2024-03-03 19:49 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SysWOW64\ca-ES 2024-03-03 19:49 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SystemApps 2024-03-03 19:49 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\WinMetadata 2024-03-03 19:49 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\vi-VN 2024-03-03 19:49 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\ShellExperiences 2024-03-03 19:49 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\setup 2024-03-03 19:49 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\SecureBootUpdates 2024-03-03 19:49 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\InputMethod 2024-03-03 19:49 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\IME 2024-03-03 19:49 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\id-ID 2024-03-03 19:49 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\HealthAttestationClient 2024-03-03 19:49 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\gl-ES 2024-03-03 19:49 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\eu-ES 2024-03-03 19:49 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\DDFs 2024-03-03 19:49 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\system32\ca-ES 2024-03-03 19:49 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\ShellExperiences 2024-03-03 19:49 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\ShellComponents 2024-03-03 19:49 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\Provisioning 2024-03-03 19:49 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\Performance 2024-03-03 19:49 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\Globalization 2024-03-03 19:49 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\DiagTrack 2024-03-03 19:49 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\BrowserCore 2024-03-03 19:49 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\appcompat ==================== Pliki w katalogu głównym wybranych folderów ======== 2024-01-27 17:37 - 2024-01-27 17:37 - 000000258 _____ () C:\ProgramData\fontcacheev1.dat 2024-03-26 23:59 - 2024-03-26 23:59 - 000000001 _____ () C:\Users\Admin\AppData\Local\llftool.4.40.agreement ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================