Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 19-07-2021 01 Uruchomiony przez motionMixx (administrator) DESKTOP-RN94ED4 (MSI MS-7751) (28-07-2021 15:36:14) Uruchomiony z C:\Users\motionMixx\Desktop Załadowane profile: motionMixx Platform: Windows 10 Home Wersja 21H1 19043.1110 (X64) Język: Polski (Polska) Domyślna przeglądarka: FF Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Dream Machines) [Brak podpisu cyfrowego] C:\Program Files (x86)\DM1 Pro S\Monitor.exe (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\NisSrv.exe (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\Gaming APP\MSI_LED.exe (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\EyeRest.exe (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\TriggerModeMonitor.exe (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\VideoCardMonitorII.exe (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Windows\SysWOW64\muachost.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <8> (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5d5c294bb8d17217\Display.NvContainer\NVDisplay.Container.exe <2> (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (TEFINCOM S.A. -> TEFINCOM S.A.) C:\Program Files\NordVPN\nordvpn-service.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9181696 2016-12-09] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM-x32\...\Run: [DM1 Pro S Mouse Driver] => C:\Program Files (x86)\DM1 Pro S\Monitor.exe [765952 2017-04-27] (Dream Machines) [Brak podpisu cyfrowego] HKU\S-1-5-21-2172697353-3305396955-2558023588-1001\...\Run: [Napisy24Update] => C:\Program Files\Napisy24\Napisy24Update.exe [3990528 2018-02-02] (Napisy24.pl) [Brak podpisu cyfrowego] HKU\S-1-5-21-2172697353-3305396955-2558023588-1001\...\Run: [Napisy24.pl] => C:\Program Files\Napisy24\Napisy24.exe [11984896 2021-03-08] (Napisy24.pl) [Brak podpisu cyfrowego] GroupPolicy: Ograniczenia ? <==== UWAGA Policies: C:\ProgramData\NTUSER.pol: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {18CCF972-12B0-4599-841C-7056F42267E6} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339120 2021-06-15] (NVIDIA Corporation -> NVIDIA Corporation) Task: {1CF851E6-D374-4E0F-AB61-CC2FF953B93B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MpCmdRun.exe [673816 2021-07-23] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {1D2FEC21-C08A-4A61-A05B-D632EB0AA0B0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MpCmdRun.exe [673816 2021-07-23] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {33D3FB3D-D023-4FFD-B911-CAE4BFC76BBD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MpCmdRun.exe [673816 2021-07-23] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {4826F8B5-5CA8-46C4-8F6D-187590636B2E} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2172697353-3305396955-2558023588-500 => C:\Users\motionMixx\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe Task: {4A9D69DF-2859-486B-86F1-79B0E20BD770} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {524D71D3-4774-4F5C-84B3-B315A7325ACE} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log Task: {672E50CB-F2AD-45F6-8171-DFA249C9117D} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {689E847A-EC80-4362-ADB9-6CB95DA5FF05} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.) Task: {75E06AAD-206E-42E9-B0F1-CD2785C70D40} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [681400 2021-07-23] (Mozilla Corporation -> Mozilla Foundation) Task: {7D79FEAC-C7AC-4840-B698-DE14164ECEBE} - System32\Tasks\MSISW_Host => C:\Windows\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) Task: {84C5D833-60C5-49D9-86B9-292BE8791B5C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MpCmdRun.exe [673816 2021-07-23] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {9322474E-A561-4B48-A152-9900FF8727D6} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {96140E9A-8C70-4A0C-95FE-EAEA1E36128D} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {A249CA32-9426-4DBB-BFDF-7B751A35AB74} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {B2BDB0AA-AC14-44D3-89F6-EB11F2E1FC52} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {C3A0397E-4C35-46E1-B05E-5C2207CB4582} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {D6907692-6792-4D6D-ACE1-F144C0C81067} - System32\Tasks\NVIDIA GeForceNow_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Users\motionMixx\AppData\Local\NVIDIA Corporation\GeForceNOW\CEF\GeForceNOW.exe Task: {D9238762-68EB-414B-B52E-5C49AD01C5B9} - System32\Tasks\MSIGH_Host => C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe [3354296 2019-01-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) Task: {E56A67C9-E6BE-434A-9562-A87D9AA8DFF3} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 89.228.4.126 31.11.173.2 Tcpip\..\Interfaces\{8e8c332c-8a13-4e85-8e27-6b85c94d537d}: [DhcpNameServer] 89.228.4.126 31.11.173.2 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\motionMixx\AppData\Local\Microsoft\Edge\User Data\Default [2021-07-28] Edge Extension: (Malwarebytes Browser Guard) - C:\Users\motionMixx\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-06-12] Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee] FireFox: ======== FF DefaultProfile: 2b2xypbg.default FF ProfilePath: C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\2b2xypbg.default [2020-12-03] FF ProfilePath: C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release [2021-07-28] FF DownloadDir: C:\Users\motionMixx\Desktop FF Homepage: Mozilla\Firefox\Profiles\8hit7a6v.default-release -> hxxps://www.google.com/ FF Extension: (Facebook Container) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\@contain-facebook.xpi [2021-05-12] FF Extension: (Dark Reader) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\addon@darkreader.org.xpi [2021-07-16] FF Extension: (HTTPS Everywhere) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\https-everywhere@eff.org.xpi [2021-07-16] FF Extension: (Decentraleyes) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\jid1-BoFifL9Vbdl2zQ@jetpack.xpi [2020-12-03] FF Extension: (SoundCloud MP3 Downloader) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\jid1-hnmMaq1milpehc6uI@jetpack.xpi [2021-07-16] FF Extension: (Turn Off the Lights) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\stefanvandamme@stefanvd.net.xpi [2021-02-22] FF Extension: (uBlock Origin) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\uBlock0@raymondhill.net.xpi [2021-07-27] FF Extension: (Cyberpunk Purple Red) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{07f4aa05-92b5-4abf-bd53-9365aa472031}.xpi [2020-12-03] FF Extension: (Orion Galaxy) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{0eaebc2d-94e2-4bc2-946c-25686adf6aa0}.xpi [2020-12-03] FF Extension: (Planet Fox in space) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{0fa6bb56-5494-4bb2-b8b6-aa3895482e77}.xpi [2020-12-03] FF Extension: (Dark Matter Subspace) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{11ae7332-32dc-4131-9ec2-891fc2fd79de}.xpi [2020-12-03] FF Extension: (Cyberpurple) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{12049de8-2553-4897-9ccb-561f334f14b4}.xpi [2020-12-03] FF Extension: (Fantasy of Lights - N.Lights Series 1) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{1a176495-2247-4217-b1fc-139fc11c4324}.xpi [2020-12-03] FF Extension: (Galaxia Theme) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{1b80616e-976e-43cc-ab8f-daf126a28b5e}.xpi [2020-12-03] FF Extension: (Inseto 02 by Tersin@) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{1fca8184-9940-4b5a-941c-3fe8db236a8e}.xpi [2020-12-03] FF Extension: (Dark-ish Rainbow) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{21f69c5d-b9e1-470f-a890-74454e954eee}.xpi [2020-12-03] FF Extension: (ANIMATED In the Beginning by candelora) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{252b9dd5-f423-44d9-b8b5-20a49a74b9de}.xpi [2021-07-16] FF Extension: (Calm Sunrise by MaDonna) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{389b9555-dbf1-4ac0-b302-336ff129fc63}.xpi [2021-06-11] FF Extension: (firefox mf12 space) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{3f7e7b7d-991e-4884-89c7-e5f69341e348}.xpi [2020-12-03] FF Extension: (Colorwheel) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{517240c2-2ab0-40b8-be35-af6fde3f2111}.xpi [2020-12-03] FF Extension: (Night Club) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{5451513c-31d4-4f9b-8dbd-a2f82cfb710e}.xpi [2020-12-03] FF Extension: (Ori+Hollow Knight+Portal theme) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{569cdcc6-6b7c-4cf6-9713-8253a6e04727}.xpi [2020-12-03] FF Extension: (Deep Texture 2.0) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{58638123-3880-4122-9631-cff21f105ea1}.xpi [2020-12-03] FF Extension: (DarkMagic) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{5f3d72a6-5ae0-4d03-8bf4-21f2b0ab1010}.xpi [2020-12-03] FF Extension: (Quantum of Purple) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{6264a236-3106-4aba-8360-5273817a7fd4}.xpi [2020-12-03] FF Extension: (A Light in Space by MaDonna) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{6e68ac2f-4352-427d-ae23-bf7a2b854aed}.xpi [2021-07-23] FF Extension: (rainbow blur) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{7477cece-5973-41fe-a60e-2d2ffae6d21e}.xpi [2020-12-03] FF Extension: (Plexus Crystals (Orange)) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{8a0bf576-7db2-4ecd-9ebc-47e9a66c007e}.xpi [2021-03-12] FF Extension: (Prism Waves 4) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{8f763ba3-9ccb-4051-ad33-24c8ead12fa5}.xpi [2020-12-03] FF Extension: (Winter Solstice) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{8fb1d740-0194-4f22-9bba-7930c44657d7}.xpi [2020-12-03] FF Extension: (chrystalize) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{96b7a652-8716-4678-be68-7a8bac53a373}.xpi [2020-12-03] FF Extension: (Amazing in Space by MaDonna) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{98ec4fd8-493d-4ef5-8453-f860b8ac563e}.xpi [2021-07-23] FF Extension: (Bamboo illuminated) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{9f323bf2-aa23-4cb9-b5c7-bbc0f5316b65}.xpi [2020-12-03] FF Extension: (Firefox Quantum Nightly) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{a52d8854-4831-4a49-b621-7464a3291692}.xpi [2020-12-03] FF Extension: (Matte Black (Red)) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{a7589411-c5f6-41cf-8bdc-f66527d9d930}.xpi [2020-12-03] FF Extension: (Celestial by MaDonna) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{a9721261-d74c-4d0c-9385-7a80449db986}.xpi [2020-12-03] FF Extension: (riberg Nebula1) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{a97557d4-8db2-48e1-af14-58544f57a58c}.xpi [2020-12-03] FF Extension: (Space Shuttle launch night) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{ab51c3cb-24a5-4071-a348-148a2cc69bff}.xpi [2020-12-03] FF Extension: (Space stars) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{abe8f000-d325-47f3-a385-f570c430f965}.xpi [2020-12-03] FF Extension: (Matte Black (Violet)) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{ad213ecb-ae95-4ac8-ac7a-5925ba36ea1d}.xpi [2020-12-19] FF Extension: (Space) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{b1b28fd9-5edd-4907-b3be-8e69ad6e7108}.xpi [2020-12-03] FF Extension: (Swirlie Colors) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{b3e31b24-b4ed-4b8a-9f9c-92639018eba4}.xpi [2020-12-03] FF Extension: (Simple Space Stars) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{b721610c-33d1-498d-b94c-73209c43bbc6}.xpi [2020-12-03] FF Extension: (Moon over Pyramids by M♥Donna) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{b7c0d18e-1667-4033-9a9d-2654733dd855}.xpi [2021-06-11] FF Extension: (Spase) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{bdf45aae-0af3-4e15-9426-895a74afdcff}.xpi [2020-12-03] FF Extension: (Katagame) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{bf171c80-cc27-4628-a885-6f66cdf0cac6}.xpi [2020-12-03] FF Extension: (Galaxy - Wonder of Nature) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{c51e852b-061a-4454-9290-1a89b642da33}.xpi [2020-12-03] FF Extension: (Dark green grass) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{c9fa5dd5-04c4-4b21-b562-9b5938bd9b25}.xpi [2020-12-03] FF Extension: (Strands of Gold by MaDonna) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{ced087e8-01fe-4ff3-b168-b6fff293f019}.xpi [2021-06-11] FF Extension: (Dark Polygon by MaDonna) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{d9b7a49e-5770-4b7a-b6b9-766a1be8118d}.xpi [2020-12-03] FF Extension: (Universum_09) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{e12a4cd3-10c2-4e95-a004-d379c2fd7bc6}.xpi [2020-12-03] FF Extension: (Space 07) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{ebea7b99-db28-4884-afdf-49c7261d46a2}.xpi [2020-12-03] FF Extension: (Glow VA v2) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{f01c8847-19d6-44c2-9fb5-8d69393242af}.xpi [2020-12-03] FF Extension: (Acid Nebula) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{fa6d8bfb-8fb2-4614-89ff-588157786e43}.xpi [2020-12-03] FF Extension: (Summerwood) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{fb7d2936-bd43-4dcd-ae06-bf7a15401808}.xpi [2020-12-03] FF Extension: (Northern Lake FT by MaDonna) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{fcebb804-5eb9-43d9-a12a-30f6ca1b9b1b}.xpi [2021-05-29] FF Extension: (Pixel Art City) - C:\Users\motionMixx\AppData\Roaming\Mozilla\Firefox\Profiles\8hit7a6v.default-release\Extensions\{fd9490e3-7529-47cf-85ff-618a7beb4cf0}.xpi [2020-12-03] FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-06-27] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb] CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.) S3 EQU8_13; C:\ProgramData\EQU8\Diabotical\bin\anticheat.x64.equ8.exe [5537984 2021-07-25] (Int3 Software AB -> Int3 Software AB) R2 GamingApp_Service; C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe [46776 2018-09-06] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) R2 GamingHotkey_Service; C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe [2027192 2019-01-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) S3 mracsvc; C:\Windows\System32\mracsvc.exe [21753376 2021-05-12] (Mail.Ru LLC -> LLC Mail.Ru) R2 MSI_ActiveX_Service; C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe [86688 2018-07-25] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) R2 nordvpn-service; C:\Program Files\NordVPN\nordvpn-service.exe [277688 2021-04-21] (TEFINCOM S.A. -> TEFINCOM S.A.) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2556048 2021-06-22] (Electronic Arts, Inc. -> Electronic Arts) R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3474584 2021-06-22] (Electronic Arts, Inc. -> Electronic Arts) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\NisSrv.exe [2727416 2021-07-23] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MsMpEng.exe [136656 2021-07-23] (Microsoft Windows Publisher -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5d5c294bb8d17217\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5d5c294bb8d17217\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego] R1 EneIo; C:\Windows\system32\drivers\ene.sys [17624 2019-05-22] (Microsoft Windows Hardware Compatibility Publisher -> ) S3 EQU8_HELPER_13; C:\Windows\system32\DRIVERS\EQU8_HELPER_13.sys [38032 2021-07-26] (Int3 Software AB -> ) R3 I2cHkBurn; C:\Windows\system32\drivers\I2cHkBurn.sys [41760 2015-07-27] (Feature Integration Technology -> FINTEK Corp.) R3 MpKslf544e99a; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{8C6BAA22-D4F2-4AF8-AA56-CCAF712B9575}\MpKslDrv.sys [107752 2021-07-28] (Microsoft Windows -> Microsoft Corporation) S3 mracdrv; C:\Windows\System32\drivers\mracdrv1.sys [20986200 2021-05-12] (Mail.Ru LLC -> LLC Mail.Ru) R2 NDivert; C:\Windows\System32\drivers\NDivert.sys [105184 2021-03-28] (TEFINCOM S.A. -> ) R3 nlwt; C:\Windows\system32\DRIVERS\nlwt.sys [39360 2021-04-30] (TEFINCOM S.A. -> WireGuard LLC) R1 nordlwf; C:\Windows\system32\DRIVERS\nordlwf.sys [38608 2020-12-14] (TEFINCOM S.A. -> TEFINCOM S.A.) S3 NTIOLib_MBAPI; C:\Program Files (x86)\MSI\Gaming APP\Lib\NTIOLib_X64.sys [14288 2017-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) R3 tapnordvpn; C:\Windows\System32\drivers\tapnordvpn.sys [44896 2020-06-09] (TEFINCOM S.A. -> The OpenVPN Project) S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49568 2021-07-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [434424 2021-07-23] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [78072 2021-07-23] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-07-28 15:36 - 2021-07-28 15:36 - 000026996 _____ C:\Users\motionMixx\Desktop\FRST.txt 2021-07-28 15:36 - 2021-07-28 15:36 - 000000000 ____D C:\FRST 2021-07-28 15:35 - 2021-07-28 15:35 - 002300416 _____ (Farbar) C:\Users\motionMixx\Desktop\FRST64.exe 2021-07-27 09:09 - 2021-07-28 10:36 - 000000000 ____D C:\Users\motionMixx\AppData\LocalLow\BitTorrent 2021-07-26 13:06 - 2021-07-26 13:06 - 000000000 ____D C:\Windows\LastGood.Tmp 2021-07-26 13:00 - 2021-07-13 19:07 - 001858664 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe 2021-07-26 13:00 - 2021-07-13 19:07 - 001858664 _____ C:\Windows\system32\vulkaninfo.exe 2021-07-26 13:00 - 2021-07-13 19:07 - 001438824 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2021-07-26 13:00 - 2021-07-13 19:07 - 001438824 _____ C:\Windows\SysWOW64\vulkaninfo.exe 2021-07-26 13:00 - 2021-07-13 19:07 - 001097856 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll 2021-07-26 13:00 - 2021-07-13 19:07 - 001097856 _____ C:\Windows\system32\vulkan-1.dll 2021-07-26 13:00 - 2021-07-13 19:07 - 000951936 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll 2021-07-26 13:00 - 2021-07-13 19:07 - 000951936 _____ C:\Windows\SysWOW64\vulkan-1.dll 2021-07-26 13:00 - 2021-07-13 19:06 - 001474704 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2021-07-26 13:00 - 2021-07-13 19:06 - 001212560 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2021-07-26 13:00 - 2021-07-13 19:02 - 001520776 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2021-07-26 13:00 - 2021-07-13 19:02 - 000716912 _____ C:\Windows\system32\nvofapi64.dll 2021-07-26 13:00 - 2021-07-13 19:02 - 000676480 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll 2021-07-26 13:00 - 2021-07-13 19:02 - 000645232 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll 2021-07-26 13:00 - 2021-07-13 19:02 - 000577152 _____ C:\Windows\SysWOW64\nvofapi.dll 2021-07-26 13:00 - 2021-07-13 19:02 - 000564352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll 2021-07-26 13:00 - 2021-07-13 19:01 - 002112128 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2021-07-26 13:00 - 2021-07-13 19:01 - 001595520 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2021-07-26 13:00 - 2021-07-13 19:01 - 001171072 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2021-07-26 13:00 - 2021-07-13 19:01 - 000919168 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2021-07-26 13:00 - 2021-07-13 19:01 - 000750208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2021-07-26 13:00 - 2021-07-13 19:01 - 000706176 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe 2021-07-26 13:00 - 2021-07-13 19:00 - 008854144 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2021-07-26 13:00 - 2021-07-13 19:00 - 007920768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2021-07-26 13:00 - 2021-07-13 19:00 - 005680760 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2021-07-26 13:00 - 2021-07-13 19:00 - 004987520 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2021-07-26 13:00 - 2021-07-13 19:00 - 002925696 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2021-07-26 13:00 - 2021-07-13 19:00 - 000447104 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe 2021-07-26 13:00 - 2021-07-13 18:59 - 000849008 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe 2021-07-26 13:00 - 2021-07-13 18:57 - 007280312 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2021-07-26 13:00 - 2021-07-13 18:57 - 006215792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2021-07-26 13:00 - 2021-07-12 13:32 - 000083062 _____ C:\Windows\system32\nvinfo.pb 2021-07-25 21:52 - 2021-07-25 21:52 - 000000000 ____D C:\Users\motionMixx\AppData\Local\Epic Games 2021-07-25 21:51 - 2021-07-26 21:14 - 000038032 _____ C:\Windows\system32\Drivers\EQU8_HELPER_13.sys 2021-07-25 21:51 - 2021-07-25 21:52 - 000000000 ____D C:\Users\motionMixx\AppData\Roaming\Diabotical 2021-07-25 21:51 - 2021-07-25 21:51 - 000000365 _____ C:\Users\motionMixx\Desktop\Diabotical.url 2021-07-25 21:51 - 2021-07-25 21:51 - 000000000 ____D C:\ProgramData\EQU8 2021-07-25 21:36 - 2021-07-25 21:36 - 000000000 ____D C:\Program Files\Epic Games 2021-07-24 10:55 - 2021-07-24 10:55 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla 2021-07-23 21:55 - 2021-07-25 01:05 - 000000000 ____D C:\Program Files\Mozilla Firefox 2021-07-18 10:48 - 2021-07-18 10:48 - 000011357 _____ C:\Windows\system32\DrtmAuthTxt.wim 2021-07-18 10:48 - 2021-07-18 10:48 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsraLegacy.tlb 2021-07-18 10:48 - 2021-07-18 10:48 - 000007680 _____ (Microsoft Corporation) C:\Windows\system32\MsraLegacy.tlb 2021-07-18 10:48 - 2021-07-18 10:48 - 000006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rendezvousSession.tlb 2021-07-18 10:48 - 2021-07-18 10:48 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\rendezvousSession.tlb 2021-07-18 10:47 - 2021-07-18 10:47 - 001823280 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi 2021-07-18 00:47 - 2021-07-18 00:48 - 005183384 _____ (Husdawg, LLC) C:\Users\motionMixx\Desktop\Detection.exe 2021-07-16 03:19 - 2021-07-16 03:19 - 000002144 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2021-07-04 09:01 - 2021-07-04 09:01 - 000004308 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-07-04 09:01 - 2021-07-04 09:01 - 000004106 _____ C:\Windows\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-07-04 09:01 - 2021-07-04 09:01 - 000003976 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-07-04 09:01 - 2021-07-04 09:01 - 000003940 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-07-04 09:01 - 2021-07-04 09:01 - 000003894 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-07-04 09:01 - 2021-07-04 09:01 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-07-04 09:01 - 2021-07-04 09:01 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-07-04 09:01 - 2021-07-04 09:01 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-07-04 09:01 - 2021-07-04 09:01 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-07-04 09:01 - 2021-07-04 09:01 - 000003654 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-07-04 09:01 - 2021-06-09 16:17 - 002838384 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll 2021-07-04 09:01 - 2021-06-09 16:17 - 002186608 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll 2021-07-04 09:01 - 2021-06-02 16:03 - 000067464 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvhci.sys 2021-07-02 12:57 - 2021-07-28 12:45 - 000000000 ____D C:\Users\motionMixx\AppData\Local\Spotify 2021-07-02 12:57 - 2021-07-26 21:02 - 000000000 ____D C:\Users\motionMixx\AppData\Roaming\Spotify 2021-07-02 12:57 - 2021-07-02 12:57 - 000001875 _____ C:\Users\motionMixx\Desktop\Spotify.lnk 2021-07-02 12:57 - 2021-07-02 12:57 - 000001861 _____ C:\Users\motionMixx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-07-28 15:36 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF 2021-07-28 15:32 - 2020-12-04 01:00 - 000000000 ____D C:\ProgramData\NVIDIA 2021-07-28 15:32 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-07-28 15:31 - 2020-12-06 00:16 - 000000000 ____D C:\Users\motionMixx\AppData\Local\CrashDumps 2021-07-28 15:31 - 2020-12-03 22:31 - 000000000 ____D C:\ProgramData\Mozilla 2021-07-28 15:30 - 2020-12-03 22:31 - 000000000 ____D C:\Users\motionMixx\AppData\LocalLow\Mozilla 2021-07-28 15:29 - 2020-09-27 09:52 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2021-07-28 15:29 - 2020-09-27 07:52 - 000008192 ___SH C:\DumpStack.log.tmp 2021-07-28 14:27 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness 2021-07-28 14:19 - 2020-09-27 07:52 - 000000000 ____D C:\Windows\system32\SleepStudy 2021-07-28 13:05 - 2020-12-03 22:26 - 001678234 _____ C:\Windows\system32\PerfStringBackup.INI 2021-07-28 13:05 - 2019-12-07 17:08 - 000747542 _____ C:\Windows\system32\perfh015.dat 2021-07-28 13:05 - 2019-12-07 17:08 - 000144288 _____ C:\Windows\system32\perfc015.dat 2021-07-28 12:45 - 2021-02-12 10:51 - 000000000 ____D C:\Users\motionMixx\AppData\Local\BitTorrentHelper 2021-07-28 12:45 - 2020-12-04 00:30 - 000000000 ____D C:\Users\motionMixx\AppData\Roaming\BitTorrent 2021-07-28 12:45 - 2020-12-04 00:30 - 000000000 ____D C:\Users\motionMixx\.btfs 2021-07-28 02:54 - 2020-12-04 00:43 - 000000000 ____D C:\Users\motionMixx\AppData\Roaming\Origin 2021-07-28 02:54 - 2020-12-04 00:43 - 000000000 ____D C:\ProgramData\Origin 2021-07-27 21:22 - 2020-12-04 00:45 - 000000000 ____D C:\Program Files (x86)\Origin Games 2021-07-27 21:22 - 2020-12-04 00:43 - 000000000 ____D C:\Users\motionMixx\AppData\Local\Origin 2021-07-26 13:07 - 2020-12-04 01:00 - 000000000 ____D C:\Users\motionMixx\AppData\Local\NVIDIA 2021-07-26 13:03 - 2020-12-04 01:00 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2021-07-25 23:04 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-07-25 21:35 - 2020-12-03 23:24 - 000000000 ____D C:\Program Files (x86)\Steam 2021-07-25 18:31 - 2020-12-03 22:35 - 000000000 ____D C:\Users\motionMixx\AppData\Local\D3DSCache 2021-07-25 01:05 - 2020-12-03 22:31 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2021-07-24 11:04 - 2020-09-27 09:55 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-07-24 10:55 - 2020-12-03 22:31 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2021-07-23 22:02 - 2020-09-27 09:52 - 000000000 ____D C:\Windows\system32\Drivers\wd 2021-07-18 10:55 - 2020-09-27 07:52 - 000463680 _____ C:\Windows\system32\FNTCACHE.DAT 2021-07-18 10:53 - 2019-12-07 11:03 - 000262144 _____ C:\Windows\system32\config\BBI 2021-07-18 10:51 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources 2021-07-18 10:51 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns 2021-07-18 10:51 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr 2021-07-18 10:51 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System 2021-07-18 10:51 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp 2021-07-18 10:42 - 2020-12-03 23:09 - 000000000 ____D C:\Windows\system32\MRT 2021-07-18 10:40 - 2020-12-03 23:09 - 133422552 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2021-07-05 10:14 - 2020-12-03 23:20 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2021-07-04 09:10 - 2020-12-04 01:00 - 000000000 ____D C:\Users\motionMixx\AppData\Local\NVIDIA Corporation 2021-07-04 09:01 - 2020-12-04 01:00 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2021-07-04 09:01 - 2020-12-04 00:52 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2021-07-02 12:56 - 2020-12-03 22:21 - 000000000 ____D C:\Users\motionMixx\AppData\Local\Packages 2021-07-02 09:50 - 2020-12-04 00:44 - 000000000 ____D C:\Program Files (x86)\Origin 2021-07-02 01:38 - 2020-09-27 09:54 - 000003510 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-07-02 01:38 - 2020-09-27 09:54 - 000003386 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================