Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 18-11-2022 Uruchomiony przez LukeMike (administrator) LUKEMIKECOMP (18-11-2022 21:21:35) Uruchomiony z C:\Users\LukeMike\Downloads Załadowane profile: LukeMike Platform: Microsoft Windows 10 Home Wersja 22H2 19045.2251 (X64) Język: Polski (Polska) Domyślna przeglądarka: Chrome Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (C:\Program Files\Logitech Gaming Software\LCore.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\ArxApplets\Discord\logitechg_discord.exe (C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCopyAccelerator.exe (Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNMNSST2.exe (CMedia) [Brak podpisu cyfrowego] C:\Program Files\ASUS Xonar D1 Audio\Customapp\AsusAudioCenter.exe (explorer.exe ->) () [Brak podpisu cyfrowego] C:\Windows\System\HsMgr64.exe (explorer.exe ->) () [Brak podpisu cyfrowego] C:\Windows\SysWOW64\HsMgr.exe (explorer.exe ->) (F.lux Software LLC -> f.lux Software LLC) C:\Users\LukeMike\AppData\Local\FluxSoftware\Flux\flux.exe (explorer.exe ->) (Firebit OU -> Rainmeter) C:\Program Files\Rainmeter\Rainmeter.exe (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <11> (explorer.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe (explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Odmowa dostępu) [Brak podpisu cyfrowego] S:\GRY\Football Manager 2023\Content\fm.exe (S:\GRY\Football Manager 2023\Content\fm.exe ->) (Odmowa dostępu) [Brak podpisu cyfrowego] S:\GRY\Football Manager 2023\Content\crash_reporter.exe (services.exe ->) (Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe (services.exe ->) (Even Balance, Inc. -> ) C:\Windows\System32\PnkBstrA.exe (services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2> (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2> (services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_7.70.13002.0_x64__8wekyb3d8bbwe\gamingservices.exe (services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_7.70.13002.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\NisSrv.exe (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_6fd074e02d655c70\Display.NvContainer\NVDisplay.Container.exe <2> (svchost.exe ->) (FinalWire Kft. -> FinalWire Ltd.) C:\Program Files (x86)\FinalWire\AIDA64 Engineer\aida64.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.822.10271.0_x64__8wekyb3d8bbwe\GameBar.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.822.10271.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\GameBarPresenceWriter.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> ) C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe (Xing Wang -> www.BitComet.com) C:\Program Files\BitComet\BitComet.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [Cmaudio8788] => C:\Windows\Syswow64\cmicnfgp.dll [12935168 2012-11-20] (C-Media Corporation) [Brak podpisu cyfrowego] HKLM\...\Run: [Cmaudio8788GX] => C:\Windows\syswow64\HsMgr.exe [200704 2008-07-11] () [Brak podpisu cyfrowego] HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [18725336 2022-05-12] (Logitech Inc -> Logitech Inc.) HKLM\...\Run: [Cmaudio8788GX64] => C:\Windows\system\HsMgr64.exe [282112 2008-07-11] () [Brak podpisu cyfrowego] HKLM-x32\...\Run: [IJNetworkScannerSelectorEX2] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNMNSST2.exe [279240 2016-12-09] (Canon Inc. -> CANON INC.) HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1313408 2017-07-05] (Canon Inc. -> CANON INC.) HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Ograniczenia <==== UWAGA HKU\S-1-5-21-3308613058-3076913746-2055097149-1000\...\Run: [f.lux] => C:\Users\LukeMike\AppData\Local\FluxSoftware\Flux\flux.exe [1515848 2021-06-18] (F.lux Software LLC -> f.lux Software LLC) HKU\S-1-5-21-3308613058-3076913746-2055097149-1003\...\Run: [Sidebar] => C:\Program Files\Windows Sidebar\sidebar.exe /autoRun (Brak pliku) HKU\S-1-5-21-3308613058-3076913746-2055097149-1003\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Moooooniś\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" (Brak pliku) HKU\S-1-5-21-3308613058-3076913746-2055097149-1003\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Moooooniś\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" (Brak pliku) HKU\S-1-5-21-3308613058-3076913746-2055097149-1003\...\RunOnce: [Uninstall 22.176.0821.0003] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Moooooniś\AppData\Local\Microsoft\OneDrive\22.176.0821.0003" (Brak pliku) HKLM\...\Windows x64\Print Processors\Canon G3010 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDEI.DLL [482816 2017-08-22] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ Language Monitor G3010 series: C:\Windows\system32\CNMLMEI.DLL [1303040 2017-08-22] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\107.0.5304.107\Installer\chrmstp.exe [2022-11-11] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] -> Startup: C:\Users\LukeMike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled [2021-11-22] Startup: C:\Users\LukeMike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk [2022-09-21] ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe (Firebit OU -> Rainmeter) GroupPolicy: Ograniczenia - Edge <==== UWAGA Policies: C:\ProgramData\NTUSER.pol: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {14694261-F356-4C71-8069-F0C0FAC7FB31} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316} Task: {1EFDCC1E-AD00-461C-BC64-91902CCA3D00} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [792120 2021-05-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> ) Task: {223F34F6-06CF-44D4-A7E4-DE01631E2421} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43da-BFD7-FBEEA2180A1E} Task: {3D666EA6-152E-4306-BE91-07D28C0E4C57} - System32\Tasks\GoogleUpdateTaskMachineUA{22A3B1A4-8F87-4B78-98C0-7D89DE261183} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-11-13] (Google Inc -> Google LLC) Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47c2-B62A-B7C4CED925CB} Task: {4DB4C9E1-8E9F-4842-BC48-194A4E595640} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3308613058-3076913746-2055097149-1003 => C:\Users\LukeMike\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe /reporting (Brak pliku) Task: {4F5B4C3F-3D31-4DD2-8508-045CD3C357FA} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969} Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A} Task: {6ACE406E-1873-4C03-880E-E1E75F5FC471} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3308613058-3076913746-2055097149-1003 => C:\Users\LukeMike\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Brak pliku) Task: {6F21A14F-E74D-4CE5-91F6-C19EE4E4A1FB} - System32\Tasks\{9282AF07-BB5B-49D7-AA72-6AEC522CB43A} => C:\Windows\system32\pcalua.exe -a C:\Users\LukeMike\Downloads\XboxInstaller.exe -d C:\Users\LukeMike\Downloads Task: {83508C4F-7541-42C9-8D6C-9DECA9D46C68} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDfE067B1} Task: {88661F50-3E1D-4394-8882-8EBF1B36AA10} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {8E4FACAE-713D-4168-A8A5-D0E8EE3B76A2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-10] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {A4A5A7F4-4E3D-4B6C-9BDD-560823FE2BDE} - System32\Tasks\GoogleUpdateTaskMachineCore{946A1F29-762F-4490-9BC0-3441C6F6FB46} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-11-13] (Google Inc -> Google LLC) Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40b4-8963-D3C761B18371} Task: {BFDFBC31-EAD6-4260-8BED-823764ED4D7E} - System32\Tasks\AIDA64 AutoStart => C:\Program Files (x86)\FinalWire\AIDA64 Engineer\aida64.exe [11561120 2021-10-18] (FinalWire Kft. -> FinalWire Ltd.) Task: {D53E3783-FBAF-4179-964D-6BA87AA7E3CF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-10] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {D6A822ED-2D1E-4F0E-B812-4CB3BA4E9E3B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-10] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {D6B9A4EB-F7B2-4680-9F0B-38F5379E0F60} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4f47-879B-29A80C355D61} Task: {FA34C748-F88C-4DAF-B056-11399030070D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-10] (Microsoft Windows Publisher -> Microsoft Corporation) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{D4971D09-AC0C-4C5C-BAAB-1F841EE70E90}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{F9EBA975-1C9D-4772-919C-A4EA403BABDC}: [NameServer] 8.8.8.8,8.8.4.4 Tcpip\..\Interfaces\{F9EBA975-1C9D-4772-919C-A4EA403BABDC}: [DhcpNameServer] 192.168.1.1 Edge: ======= Edge Profile: C:\Users\LukeMike\AppData\Local\Microsoft\Edge\User Data\Default [2022-10-12] Edge DefaultSearchURL: Default -> {bing:baseURL}search?q={searchTerms}&{bing:cvid}{bing:msb}{google:assistedQueryStats} FireFox: ======== FF DefaultProfile: k4vf4yh6.default-1517417306323 FF DefaultProfile: 2cgj3vks.default FF ProfilePath: C:\Users\LukeMike\AppData\Roaming\Mozilla\Firefox\Profiles\k4vf4yh6.default-1517417306323 [2022-11-18] FF ProfilePath: C:\Users\LukeMike\AppData\Roaming\K-Meleon\2cgj3vks.default [2020-12-07] FF Extension: (Brak nazwy) - C:\Program Files (x86)\K-Meleon\browser\extensions\{899DF1F8-2F43-4394-8315-37F6744E6319}.xpi [nie znaleziono] FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (Electronic Arts -> EA Digital Illusions CE AB) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL [2016-04-13] (CANON INC.) [Brak podpisu cyfrowego] FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (Electronic Sports Network i Sverige AB -> ESN Social Software AB) FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) [Brak podpisu cyfrowego] FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (Electronic Arts -> EA Digital Illusions CE AB) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin HKU\S-1-5-21-3308613058-3076913746-2055097149-1000: electronicarts.com/GameFacePlugin -> C:\Users\LukeMike\AppData\Roaming\Electronic Arts\Game Face\npGameFacePlugin.dll [2012-12-20] (Electronic Arts) [Brak podpisu cyfrowego] Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\LukeMike\AppData\Local\Google\Chrome\User Data\Default [2022-11-18] CHR Notifications: Default -> hxxps://forum.purepc.pl; hxxps://forum.release-apk.com; hxxps://pyszne.pl; hxxps://secure.payu.com; hxxps://sprzedajemy.pl; hxxps://www.citycams.tv; hxxps://www.sejda.com CHR HomePage: Default -> hxxps://www.google.pl/?gws_rd=ssl CHR StartupUrls: Default -> "hxxp://www.onet.pl/" CHR Extension: (uBlock Origin) - C:\Users\LukeMike\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2022-09-19] CHR Extension: (Morpheon Dark) - C:\Users\LukeMike\AppData\Local\Google\Chrome\User Data\Default\Extensions\mafbdhjdkjnoafhfelkjpchpaepjknad [2022-10-15] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\LukeMike\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR Extension: (uBlock Origin Extra) - C:\Users\LukeMike\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgdnlhfefecpicbbihgmbmffkjpaplco [2019-09-09] CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [9811832 2022-05-20] (BattlEye Innovations e.K. -> ) S4 BITCOMET_HELPER_SERVICE; C:\Program Files\BitComet\tools\BitCometService.exe [2682920 2021-11-16] (Xing Wang -> www.BitComet.com) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [818304 2022-02-08] (EasyAntiCheat Oy -> Epic Games, Inc) S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [584680 2022-03-20] (EasyAntiCheat Oy -> Epic Games, Inc.) S4 ElevationService; C:\Program Files (x86)\Wondershare\dr.fone\Addins\Transfer\ElevationService.exe [913408 2021-01-20] () [Brak podpisu cyfrowego] S4 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [84672 2021-05-06] (Mixbyte Inc -> Freemake) R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [443344 2020-05-25] (Canon Inc. -> ) S4 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [206808 2022-05-12] (Logitech Inc -> Logitech Inc.) S3 mracsvc; C:\WINDOWS\System32\mracsvc.exe [26030880 2022-09-27] (My.Com B.V. -> My.com B.V.) S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [12153200 2022-10-15] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.) S3 Origin Client Service; S:\GRY\Origin\OriginClientService.exe [2575064 2022-04-16] (Electronic Arts, Inc. -> Electronic Arts) S2 Origin Web Helper Service; S:\GRY\Origin\OriginWebHelperService.exe [3494672 2022-04-16] (Electronic Arts, Inc. -> Electronic Arts) R2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [76152 2022-05-05] (Even Balance, Inc. -> ) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\NisSrv.exe [3191272 2022-11-10] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe [133544 2022-11-10] (Microsoft Windows Publisher -> Microsoft Corporation) S4 Wondershare InstallAssist; C:\ProgramData\Wondershare\Service\InstallAssistService.exe [262824 2021-04-13] (Wondershare Technology Co.,Ltd -> Wondershare) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_6fd074e02d655c70\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_6fd074e02d655c70\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 AIDA64Driver; C:\Program Files (x86)\FinalWire\AIDA64 Engineer\kerneld.x64 [68376 2021-10-18] (FinalWire Kft. -> ) S3 AthDfu; C:\WINDOWS\System32\Drivers\AthDfu.sys [55336 2012-08-22] (Atheros Communications Inc. -> Windows (R) Win 7 DDK provider) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2021-10-06] (Microsoft Corporation) [Brak podpisu cyfrowego] S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [154112 2021-10-06] (Microsoft Corporation) [Brak podpisu cyfrowego] S3 BTKRNL; C:\WINDOWS\System32\DRIVERS\btkrnl.sys [1106944 2006-01-17] (Broadcom Corporation.) [Brak podpisu cyfrowego] R3 cmudaxp; C:\WINDOWS\system32\drivers\cmudaxp.sys [2734080 2013-04-11] (C-MEDIA ELECTRONICS INC. -> C-Media Inc) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 dtlitescsibus; C:\WINDOWS\System32\DRIVERS\dtlitescsibus.sys [30264 2017-11-05] (Disc Soft Ltd -> Disc Soft Ltd) S3 dtliteusbbus; C:\WINDOWS\System32\DRIVERS\dtliteusbbus.sys [47672 2017-11-05] (Disc Soft Ltd -> Disc Soft Ltd) S3 GeneStor; C:\WINDOWS\System32\drivers\GeneStor.sys [60928 2016-01-13] (Microsoft Windows Hardware Compatibility Publisher -> GenesysLogic) R3 LGBusEnum; C:\WINDOWS\system32\drivers\LGBusEnum64.sys [46264 2022-05-12] (Logitech Inc -> Logitech Inc.) R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech -> Logitech) R3 LGJoyHidFilter; C:\WINDOWS\System32\drivers\LGJoyHidFilter64.sys [67768 2022-05-12] (Logitech Inc -> Logitech Inc.) R3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore64.sys [76480 2022-05-12] (Logitech Inc -> Logitech Inc.) R3 LGSHidFilt; C:\WINDOWS\system32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech -> Logitech Inc.) R3 LGVirHid; C:\WINDOWS\system32\drivers\LGVirHid64.sys [34496 2022-05-12] (Logitech Inc -> Logitech Inc.) R2 mi2c; C:\Windows\system32\drivers\mi2c.sys [20784 2019-03-01] (AOC International (Europe) GmbH -> Nicomsoft Ltd.) S3 mracdrv; C:\WINDOWS\System32\drivers\mracdrv1.sys [25266488 2022-09-27] (My.Com B.V. -> My.com B.V.) R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [36824 2020-07-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> ) S3 UHSfiltv; C:\WINDOWS\System32\drivers\UHSfiltv.sys [23552 2014-12-22] (Creative Technology Ltd.) [Brak podpisu cyfrowego] R1 ViGEmBus; C:\WINDOWS\System32\drivers\ViGEmBus.sys [165744 2020-12-14] (Microsoft Windows Hardware Compatibility Publisher -> Nefarius Software Solutions e.U.) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49616 2022-11-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [469288 2022-11-10] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [95520 2022-11-10] (Microsoft Windows -> Microsoft Corporation) U4 idsvc; Brak ImagePath ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2022-11-18 21:21 - 2022-11-18 21:22 - 000022991 _____ C:\Users\LukeMike\Downloads\FRST.txt 2022-11-18 21:13 - 2022-11-18 21:21 - 000000000 ____D C:\FRST 2022-11-18 21:12 - 2022-11-18 21:12 - 002375680 _____ (Farbar) C:\Users\LukeMike\Downloads\FRST64.exe 2022-11-16 13:22 - 2022-11-18 20:11 - 000000000 ____D C:\Program Files\Mozilla Firefox 2022-11-11 04:48 - 2022-11-11 04:48 - 000012253 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2022-11-11 04:44 - 2022-11-11 04:44 - 000000000 ___HD C:\$WinREAgent 2022-11-08 17:05 - 2022-11-08 17:06 - 000000000 ____D C:\Users\LukeMike\Downloads\drive-download-20221108T160408Z-001 2022-11-08 01:37 - 2022-11-08 01:37 - 000004670 _____ C:\Users\LukeMike\AppData\Local\93759642671 2022-11-01 10:38 - 2022-11-01 10:38 - 000688128 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll 2022-11-01 10:38 - 2022-11-01 10:38 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll 2022-11-01 10:38 - 2022-11-01 10:38 - 000073216 _____ C:\WINDOWS\system32\nettraceex.dll 2022-10-24 00:26 - 2022-10-24 19:13 - 000000000 ____D C:\Users\LukeMike\Downloads\drive-download-20221023T232600Z-001 2022-10-23 12:10 - 2022-10-28 09:25 - 000001980 _____ C:\Users\LukeMike\Desktop\Nowy dokument tekstowy.txt 2022-10-22 11:17 - 2022-10-22 11:17 - 000000000 ____D C:\Program Files (x86)\Windows Kits 2022-10-22 11:17 - 2022-10-22 11:17 - 000000000 ____D C:\Program Files (x86)\Microsoft GameInput ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2022-11-18 21:21 - 2015-05-24 18:20 - 000000000 ____D C:\Users\LukeMike\AppData\Roaming\BitComet 2022-11-18 21:13 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF 2022-11-18 21:07 - 2017-11-16 17:20 - 000000000 ____D C:\Users\LukeMike\Desktop\Documents\Nowy folder 2022-11-18 21:05 - 2021-11-18 10:54 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-11-18 20:48 - 2015-05-23 16:12 - 000000000 ____D C:\Program Files (x86)\Google 2022-11-18 20:11 - 2017-01-07 13:54 - 000000000 ____D C:\Users\LukeMike\AppData\LocalLow\Mozilla 2022-11-18 18:55 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-11-18 02:48 - 2022-02-09 07:16 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2022-11-17 21:57 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-11-17 21:57 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2022-11-16 18:59 - 2018-01-31 17:48 - 000001121 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2022-11-12 17:29 - 2022-08-11 00:31 - 000000279 _____ C:\Users\LukeMike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kosz.lnk 2022-11-12 00:00 - 2022-06-20 22:41 - 000000000 ____D C:\Users\LukeMike\AppData\Roaming\Spotify 2022-11-11 12:03 - 2021-11-18 10:56 - 001971926 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2022-11-11 12:03 - 2019-12-07 16:08 - 000856296 _____ C:\WINDOWS\system32\perfh015.dat 2022-11-11 12:03 - 2019-12-07 16:08 - 000188138 _____ C:\WINDOWS\system32\perfc015.dat 2022-11-11 11:57 - 2021-12-28 00:43 - 000008192 ___SH C:\DumpStack.log.tmp 2022-11-11 11:57 - 2021-11-18 10:59 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-11-11 11:57 - 2021-11-18 10:54 - 000338672 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2022-11-11 11:57 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources 2022-11-11 11:57 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2022-11-11 11:57 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2022-11-11 11:57 - 2017-01-08 20:20 - 000000000 ____D C:\ProgramData\NVIDIA 2022-11-11 11:56 - 2021-12-03 01:12 - 000003142 _____ C:\WINDOWS\system32\Tasks\MSIAfterburner 2022-11-11 04:49 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2022-11-11 04:48 - 2021-11-18 10:57 - 003014656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2022-11-11 04:48 - 2015-05-23 16:56 - 000415688 __RSH C:\bootmgr 2022-11-11 04:44 - 2015-05-23 16:57 - 000000000 ____D C:\WINDOWS\system32\MRT 2022-11-11 04:42 - 2015-05-23 16:57 - 146960040 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2022-11-11 01:48 - 2019-11-13 22:29 - 000002307 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-11-10 11:51 - 2021-11-18 10:59 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2022-11-10 00:13 - 2022-06-20 22:42 - 000000000 ____D C:\Users\LukeMike\AppData\Local\Spotify 2022-11-09 00:11 - 2021-12-23 14:43 - 000000000 ____D C:\Users\LukeMike\Desktop\Documents\Sports Interactive 2022-11-08 01:37 - 2022-07-21 11:06 - 000000000 ____D C:\Users\LukeMike\AppData\Local\Sports Interactive 2022-11-04 12:26 - 2016-05-18 20:25 - 000000324 _____ C:\Users\LukeMike\Desktop\Documents\120x40.txt 2022-11-03 23:48 - 2021-11-18 11:00 - 000000000 ____D C:\ProgramData\Packages 2022-11-03 23:48 - 2021-11-18 10:59 - 000000000 ____D C:\Users\LukeMike\AppData\Local\Packages 2022-11-01 10:41 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP 2022-11-01 10:41 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2022-11-01 10:41 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2022-11-01 10:41 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2022-11-01 10:41 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2022-11-01 10:30 - 2021-12-03 17:27 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2022-10-26 10:51 - 2022-07-21 10:58 - 000000000 ____D C:\Users\LukeMike\AppData\Local\NVIDIA 2022-10-25 13:36 - 2020-08-12 15:18 - 000000000 ____D C:\ProgramData\CanonIJPLM 2022-10-22 11:17 - 2021-11-18 12:23 - 002815456 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll 2022-10-22 11:17 - 2021-11-18 12:23 - 000452048 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll 2022-10-22 11:17 - 2021-11-18 12:23 - 000243168 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll 2022-10-22 11:17 - 2021-11-18 12:23 - 000198096 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll 2022-10-22 11:17 - 2021-11-18 12:23 - 000153048 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll 2022-10-22 11:17 - 2021-11-18 12:23 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll ==================== Pliki w katalogu głównym wybranych folderów ======== 2022-01-21 13:24 - 2022-04-08 23:09 - 000000076 _____ () C:\Users\LukeMike\AppData\Roaming\BattleBitConfig.ini 2021-08-24 01:19 - 2021-09-16 22:19 - 000000081 _____ () C:\Users\LukeMike\AppData\Local\.bidstack.fault 2021-12-23 14:43 - 2021-12-23 14:43 - 000005222 _____ () C:\Users\LukeMike\AppData\Local\2636042875 2022-07-20 00:47 - 2022-09-21 20:08 - 000005190 _____ () C:\Users\LukeMike\AppData\Local\4096968421 2022-11-08 01:37 - 2022-11-08 01:37 - 000004670 _____ () C:\Users\LukeMike\AppData\Local\93759642671 2017-01-31 19:16 - 2021-10-24 15:38 - 000005632 _____ () C:\Users\LukeMike\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2021-11-20 18:25 - 2021-11-20 18:25 - 000000017 _____ () C:\Users\LukeMike\AppData\Local\resmon.resmoncfg 2016-02-15 23:19 - 2016-02-15 23:19 - 000014330 _____ () C:\Users\LukeMike\AppData\Local\WiDiSetupLog.20160215.231944.wdl 2016-02-15 23:20 - 2016-02-15 23:20 - 000015138 _____ () C:\Users\LukeMike\AppData\Local\WiDiSetupLog.20160215.232005.wdl ==================== FLock ============================== 2015-10-11 10:07 C:\ProgramData\Info ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================