Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 29-12-2022 Uruchomiony przez Bolo (administrator) DESKTOP-N2TTQE3 (Gigabyte Technology Co., Ltd. Z690 UD DDR4) (06-01-2023 22:26:50) Uruchomiony z C:\Users\Bolo\Downloads Załadowane profile: Bolo Platform: Microsoft Windows 10 Pro Wersja 21H2 19044.2364 (X64) Język: Polski (Polska) Domyślna przeglądarka: FF Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (A-Volute -> NahimicAPI) C:\Program Files\NahimicAPI\NahimicAPISvc64.exe (A-Volute -> NahimicAPI) C:\Program Files\NahimicAPI\x86\NahimicAPISvc32.exe (C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\SwAgent\ArmourySwAgent.exe (C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryWebBrowserEdge.exe (C:\Program Files (x86)\ASUS\ROG Armoury\Live Update\ArmouryLiveUpdate.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ROG Armoury\Live Update\LiveUpdateSyncCheck.exe (C:\Program Files (x86)\ASUS\ROG Armoury\Live Update\ArmouryLiveUpdate.exe ->) (ASUSTeK Computer Inc. -> TODO: ) C:\Program Files (x86)\ASUS\ROG Armoury\Tools\Mutually Exclusive AURA Agent.exe (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (Discord Inc. -> Discord Inc.) C:\Users\Bolo\AppData\Local\Discord\app-1.0.9008\Discord.exe <6> (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\108.0.1462.54\msedgewebview2.exe <6> (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) C:\Program Files (x86)\Gigabyte\AppCenter\ApCent.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <9> (Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (Nvidia Corporation -> NVIDIA Corporation) C:\Users\Bolo\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe (services.exe ->) () [Brak podpisu cyfrowego] C:\Program Files (x86)\Gigabyte\AppCenter\AdjustService.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUS Inc.) C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe (services.exe ->) (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.) C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe (services.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.02.12\atkexComSvc.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files (x86)\ASUS\ROG Live Service\ROGLiveService.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Program Files (x86)\LightingService\LightingService.exe (services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Gry\Origin\OriginWebHelperService.exe (services.exe ->) (eSim Games, LLC -> eSim Games) C:\Program Files\eSim Games\Steel Beasts Map Transfer Tools\Service\WindowsService.exe (services.exe ->) (Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe (services.exe ->) (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Windows\System32\GigabyteUpdateService.exe (services.exe ->) (Guillemot Corporation -> Guillemot Corporation) C:\Program Files (x86)\Thrustmaster\TARGET\TmService.exe (services.exe ->) (Guillemot Recherche et Développement, Inc -> Thrustmaster®) C:\Programy\Thrustmaster\Hotas Warthog\drivers\amd64\tmAInstall.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_9d19662e01abea6b\OneApp.IGCC.WinService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_0797c0ea8580ae89\IntelCpHDCPSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_f52c4b8723f8dd33\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_c984e9ce714075ab\RtkAudUService64.exe <2> (services.exe ->) (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe (services.exe ->) (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files\CodeMeter\Runtime\bin\CmWebAdmin.exe (svchost.exe ->) (ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\ROG Armoury\Live Update\ArmouryLiveUpdate.exe (svchost.exe ->) (ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\ROG Armoury\MacroAgent.exe (svchost.exe ->) (ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\ROG Armoury\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (svchost.exe ->) (ASUSTeK Computer Inc. -> ) C:\Program Files\ASUS\KINGSTON_Aac_DRAM\AacKingstonDramHal_x86.exe (svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe (svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe (svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe <3> (svchost.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ROG Armoury\Protocol\AudioLEDControl\ledcontrolservice3.exe (svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\AacExtCard\extensionCardHal_x86.exe (svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\ASUS_Aac_DRAM\Aac3572DramHal_x86.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22102.229.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Realtek Semiconductor Corp) C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.28.255.0_x64__dt26b99r8h8gj\RtkUWP.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_c984e9ce714075ab\RtkAudUService64.exe [1345104 2021-09-08] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [Asus Headset Svc64] => C:\Program Files\NahimicAPI\NahimicAPISvc64.exe [744320 2020-03-23] (A-Volute -> NahimicAPI) HKLM\...\Run: [Asus Headset Svc32] => C:\Program Files\NahimicAPI\x86\NahimicAPISvc32.exe [583552 2020-03-23] (A-Volute -> NahimicAPI) HKLM-x32\...\RunOnce: [PreRun] => C:\Program Files (x86)\Gigabyte\AppCenter\PreRun.exe [14632 2016-02-26] (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Ograniczenia <==== UWAGA HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Ograniczenia <==== UWAGA HKU\S-1-5-21-2172412559-1957594031-3291844680-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2626440 2023-01-05] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-2172412559-1957594031-3291844680-1001\...\Run: [Discord] => C:\Users\Bolo\AppData\Local\Discord\Update.exe [1512608 2021-09-21] (Discord Inc. -> GitHub) HKU\S-1-5-21-2172412559-1957594031-3291844680-1001\...\Run: [Steam] => C:\Gry\Steam\steam.exe [4246376 2022-12-15] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-2172412559-1957594031-3291844680-1001\...\Run: [GarminExpress] => C:\Programy\Garmin\Express\express.exe [31298328 2022-10-27] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) Startup: C:\Users\Bolo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CodeMeter Control Center.lnk [2022-05-25] ShortcutTarget: CodeMeter Control Center.lnk -> C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {025A44CB-3E54-4AFA-B0F3-97305032440C} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {0277E3E9-237F-4C03-91F1-CF0D70BA37FC} - System32\Tasks\MicrosoftEdgeShadowStackRollbackTask => C:\Program Files (x86)\Microsoft\Edge\Application\108.0.1462.54\Installer\setup.exe [3367848 2022-12-18] (Microsoft Corporation -> Microsoft Corporation) Task: {0F607A3D-0C04-4494-AFAB-A1BA71FED10B} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908856 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation) Task: {12DC2602-C92E-4444-8ED0-12F98C81FEA9} - System32\Tasks\ASUS\ArmourySocketServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe [1858928 2022-08-31] (ASUSTeK COMPUTER INC. -> ASUS) Task: {2891EB8C-A747-48FD-A2D8-D07B9F465DF4} - System32\Tasks\GarminUpdaterTask => C:\Programy\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [29464 2022-10-27] (Garmin International, Inc. -> ) Task: {2AEA4D65-4A84-483F-9D02-913F5AC3BD79} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB" Task: {4517F5DF-37DE-4E12-B9B6-6884E49BA47A} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655864 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation) Task: {4A063F4C-082F-4190-8A1E-4915B2FA4C03} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655864 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation) Task: {505AD616-F223-43A4-89C6-9AF38C768F07} - System32\Tasks\ASUS\ArmouryLiveUpdate => C:\Program Files (x86)\ASUS\ROG Armoury\Live Update\ArmouryLiveUpdate.exe [1462760 2020-03-31] (ASUSTeK Computer Inc. -> ) Task: {56456B76-F6B2-4518-904C-99C1E9387785} - System32\Tasks\NahimicAPISvc64Run => C:\Program Files\NahimicAPI\NahimicAPISvc64.exe [744320 2020-03-23] (A-Volute -> NahimicAPI) Task: {5CA555F5-62E2-4BA4-BC3E-1A5E6A89C995} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2022-10-17] (Nvidia Corporation -> NVIDIA Corporation) Task: {64A86A52-D2BC-4A07-B63B-909DC6332E91} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908856 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation) Task: {6C852207-8FD0-4EB5-A285-05EA5014A7FB} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-08-30] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {781FE263-2ECF-48A4-A0CE-90DB188701FE} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655864 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation) Task: {7FC125C5-B90F-4935-AE5E-D04C1B1BEE17} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (Brak pliku) Task: {80E5728D-E020-492C-8714-5B2BF0EC016A} - System32\Tasks\ASUS\Framework Service => C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe [43797544 2022-09-01] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) Task: {8683D56C-3C36-47CB-922C-4652CF0D1C3A} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation) Task: {9322295E-E88D-444B-9B64-65B69BB81108} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2172412559-1957594031-3291844680-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4189064 2023-01-05] (Microsoft Corporation -> Microsoft Corporation) Task: {A736C8B4-77DC-49AE-BBFD-146AAE73FBFC} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655864 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation) Task: {B43117B6-BF3C-433F-B5BE-3FCAA04913EF} - System32\Tasks\ASUS\MacroAgent => C:\Program Files (x86)\ASUS\ROG Armoury\MacroAgent.exe [77960 2020-03-31] (ASUSTeK Computer Inc. -> ) Task: {B4CE4D4C-2ED4-413C-8F5A-D92DC70DE127} - System32\Tasks\ASUS\ASUSUpdateTaskMachineUA => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2022-09-22] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) Task: {BC901705-7B64-4E13-AE32-78792BBC6422} - System32\Tasks\ASUS\ledcontrolservice3 => C:\Program Files (x86)\ASUS\ROG Armoury\Protocol\AudioLEDControl\ledcontrolservice3.exe [2557744 2020-01-08] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) Task: {D04AD07E-DF5D-4D22-8B34-4744B8ECF9DE} - System32\Tasks\ASUS\AcPowerNotification => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe [308592 2022-08-31] (ASUSTeK COMPUTER INC. -> ASUS) Task: {DDD54587-AE30-45E8-9925-25F3BA67BFC8} - System32\Tasks\ASUS\P508PowerAgent => C:\Program Files (x86)\ASUS\ROG Armoury\Mouse\ROG STRIX CARRY\P508PowerAgent.exe [51120 2019-11-01] (ASUSTeK Computer Inc. -> ) Task: {DF0FA28C-1D74-4387-9866-D4599C28B7CB} - System32\Tasks\ASUS\ASUSUpdateTaskMachineCore1d8ce8d717fef66 => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2022-09-22] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) Task: {E6E66DE5-2039-4AFE-B19B-DFCE3CFFD10D} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4189064 2023-01-05] (Microsoft Corporation -> Microsoft Corporation) Task: {F8F4F242-BC52-4599-BBD0-461416C19BCA} - System32\Tasks\NahimicAPISvc32Run => C:\Program Files\NahimicAPI\x86\NahimicAPISvc32.exe [583552 2020-03-23] (A-Volute -> NahimicAPI) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.18.1 Tcpip\..\Interfaces\{16ca767d-a405-4d9b-9561-b68c542b96dd}: [DhcpNameServer] 192.168.18.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\Bolo\AppData\Local\Microsoft\Edge\User Data\Default [2022-12-28] Edge Extension: (Outlook) - C:\Users\Bolo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bjhmmnoficofgoiacjaajpkfndojknpb [2022-01-20] Edge Extension: (Word) - C:\Users\Bolo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hikhggiobiflkdfdgdajcfklmcibbopi [2022-01-20] Edge Extension: (Excel) - C:\Users\Bolo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\leffmjdabcgaflkikcefahmlgpodjkdm [2022-01-20] Edge Extension: (PowerPoint) - C:\Users\Bolo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\opfacbhaojodjaojgocnibmklknchehf [2022-01-20] FireFox: ======== FF DefaultProfile: rowy5y6m.default FF ProfilePath: C:\Users\Bolo\AppData\Roaming\Mozilla\Firefox\Profiles\rowy5y6m.default [2023-01-06] FF ProfilePath: C:\Users\Bolo\AppData\Roaming\Mozilla\Firefox\Profiles\on7t47yn.default-release [2023-01-06] FF Homepage: Mozilla\Firefox\Profiles\on7t47yn.default-release -> hxxps://www.wp.pl/ ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) "BEDaisy" => serwis nie został odblokowany. <==== UWAGA HKLM\SYSTEM\ControlSet001\Services\BEDaisy => \??\C:\Program Files (x86)\Common Files\BattlEye\BEDaisy.sys <==== UWAGA (Rootkit!/Zablokowana usługa) S3 ArmouryLiveUpdate; C:\Windows\System32\DriverStore\FileRepository\rogms.inf_amd64_5d90e8e8f8692743\ArmouryLiveUpdate.exe [577280 2022-08-03] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.02.12\atkexComSvc.exe [457544 2022-02-10] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) S2 asus; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2022-09-22] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) R2 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe [181576 2021-09-30] (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.) S3 asusm; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [153112 2022-09-22] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [9712432 2022-11-09] (BattlEye Innovations e.K. -> ) R2 CmWebAdmin.exe; C:\Program Files\CodeMeter\Runtime\bin\CmWebAdmin.exe [10759616 2021-09-29] (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.248.1127.0001\FileSyncHelper.exe [3478912 2023-01-05] (Microsoft Corporation -> Microsoft Corporation) R2 GameSDK Service; C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe [397544 2022-05-31] (ASUSTeK COMPUTER INC. -> ASUS Inc.) R2 LightingService; C:\Program Files (x86)\LightingService\LightingService.exe [3887504 2022-07-25] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8892256 2023-01-06] (Malwarebytes Inc. -> Malwarebytes) R2 MyService1; C:\Program Files (x86)\Gigabyte\AppCenter\AdjustService.exe [18944 2021-04-08] () [Brak podpisu cyfrowego] S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.248.1127.0001\OneDriveUpdaterService.exe [3845000 2023-01-05] (Microsoft Corporation -> Microsoft Corporation) S3 Origin Client Service; C:\Gry\Origin\OriginClientService.exe [2579264 2022-11-09] (Electronic Arts, Inc. -> Electronic Arts) R2 Origin Web Helper Service; C:\Gry\Origin\OriginWebHelperService.exe [3497800 2022-11-09] (Electronic Arts, Inc. -> Electronic Arts) R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75136 2022-07-24] (Even Balance, Inc. -> ) R2 ROG Live Service; C:\Program Files (x86)\ASUS\ROG Live Service\ROGLiveService.exe [6694520 2022-08-15] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [224184 2022-12-18] (Microsoft Windows Publisher -> Microsoft Corporation) R2 tmAInstall; C:\Programy\Thrustmaster\Hotas Warthog\drivers\amd64\tmAInstall.exe [38408 2018-03-01] (Guillemot Recherche et Développement, Inc -> Thrustmaster®) R2 TmWinService; C:\Program Files (x86)\Thrustmaster\TARGET\TmService.exe [316968 2018-07-18] (Guillemot Corporation -> Guillemot Corporation) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe [3191264 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe [133592 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation) R2 GigabyteUpdateService; C:\Windows\system32\GigabyteUpdateService.exe [869032 2023-01-06] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.) R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_f52c4b8723f8dd33\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_f52c4b8723f8dd33\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem R2 SBMapPackageDownloadService; C:\Program Files\eSim Games\Steel Beasts Map Transfer Tools\Service\WindowsService.exe --logpath="C:\ProgramData\eSim Games\Steel Beasts Map Transfer Tools\logs" --configpath="C:\ProgramData\eSim Games\Steel Beasts Map Transfer Tools\config" ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R1 Asusgio2; C:\Windows\system32\drivers\AsIO2.sys [34384 2022-02-10] (ASUSTeK Computer Inc. -> ) R1 Asusgio3; C:\Windows\system32\drivers\AsIO3.sys [43168 2021-09-30] (ASUSTeK Computer Inc. -> ) S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego] S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego] S3 CH341SER_A64; C:\Windows\System32\Drivers\CH341S64.SYS [78328 2021-08-25] (Microsoft Windows Hardware Compatibility Publisher -> www.winchiphead.com) R1 CTIAIO; C:\Windows\system32\drivers\CtiAIo64.sys [32320 2022-09-22] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.) S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [158640 2023-01-06] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 gdrv3; C:\Windows\System32\drivers\gdrv3.sys [45248 2022-10-13] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) R3 iaLPSS2_GPIO2_ADL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_e11257f05c0c2f89\iaLPSS2_GPIO2_ADL.sys [139928 2021-07-29] (Intel Corporation -> Intel Corporation) R3 iaLPSS2_I2C_ADL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_i2c_adl.inf_amd64_778b19a5f4d49cba\iaLPSS2_I2C_ADL.sys [202896 2021-07-29] (Intel Corporation -> Intel Corporation) R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [223176 2023-01-06] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2023-01-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [197088 2023-01-06] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [76216 2023-01-06] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239544 2023-01-06] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [181816 2023-01-06] (Malwarebytes Inc. -> Malwarebytes) R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [18496 2022-06-08] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd) R3 NvModuleTracker; C:\Windows\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation) R3 ROGKB; C:\Windows\System32\DriverStore\FileRepository\rogkb.inf_amd64_aac22bf40476bdf6\ROGKB.sys [41296 2022-08-03] (ASUSTeK COMPUTER INC. -> Windows (R) Win 7 DDK provider) R3 ROGMS; C:\Windows\System32\DriverStore\FileRepository\rogms.inf_amd64_5d90e8e8f8692743\ROGMS.sys [40784 2022-08-03] (ASUSTeK COMPUTER INC. -> Windows (R) Win 7 DDK provider) S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 tmabulk; C:\Windows\System32\Drivers\tmabulk.sys [248328 2018-03-01] (Guillemot Recherche et Développement, Inc -> © Guillemot R&D, 2017. All rights reserved.) R3 TmBusEn; C:\Windows\System32\drivers\TmBusEn.sys [30208 2011-01-26] (Guillemot Corporation -> Guillemot Corporation) R3 TmBusEn; C:\Windows\SysWOW64\drivers\TmBusEn.sys [30208 2011-01-26] (Guillemot Corporation -> Guillemot Corporation) S3 TmFilter; C:\Windows\System32\drivers\TmFilter.sys [24576 2011-01-26] (Guillemot Corporation -> Guillemot Corporation) S3 TmFilter; C:\Windows\SysWOW64\drivers\TmFilter.sys [24576 2011-01-26] (Guillemot Corporation -> Guillemot Corporation) S3 TmHid; C:\Windows\system32\DRIVERS\TmHid.sys [24704 2011-01-26] (Guillemot Corporation -> Guillemot Corporation) S3 TmHid; C:\Windows\SysWOW64\DRIVERS\TmHid.sys [24704 2011-01-26] (Guillemot Corporation -> Guillemot Corporation) S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [49568 2022-12-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [473376 2022-12-09] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [99616 2022-12-09] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-01-06 15:07 - 2023-01-06 15:07 - 000181816 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys 2023-01-06 15:06 - 2023-01-06 15:06 - 000000000 ____D C:\Users\Bolo\AppData\Local\mbam 2023-01-06 14:32 - 2023-01-06 14:32 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2023-01-06 14:32 - 2023-01-06 14:32 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2023-01-06 14:32 - 2023-01-06 14:32 - 000000000 ____D C:\ProgramData\Malwarebytes 2023-01-06 14:32 - 2023-01-06 14:32 - 000000000 ____D C:\Program Files\Malwarebytes 2023-01-06 13:44 - 2023-01-06 22:27 - 000027897 _____ C:\Users\Bolo\Downloads\FRST.txt 2023-01-06 13:15 - 2023-01-06 13:15 - 078905344 _____ C:\Windows\system32\config\SOFTWARE 2023-01-06 13:15 - 2023-01-06 13:15 - 000000004 ____H C:\ProgramData\cm-lock 2023-01-06 12:43 - 2023-01-06 13:15 - 000000000 ____D C:\Windows\Microsoft Antimalware 2023-01-06 12:33 - 2023-01-06 12:45 - 000000000 ____D C:\Program Files\Mozilla Firefox 2023-01-05 19:06 - 2023-01-06 22:26 - 000000000 ____D C:\FRST 2023-01-05 19:05 - 2023-01-05 19:05 - 002376192 _____ (Farbar) C:\Users\Bolo\Downloads\FRST64.exe 2023-01-05 18:42 - 2023-01-05 18:42 - 000000000 ____D C:\Users\Bolo\Desktop\telefon 2 2023-01-05 18:13 - 2023-01-05 18:13 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2023-01-05 18:13 - 2023-01-05 18:13 - 000002252 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2023-01-05 18:13 - 2023-01-05 18:13 - 000000000 ___RD C:\Users\Default\OneDrive 2023-01-05 18:12 - 2023-01-06 19:07 - 000000000 ____D C:\Program Files\Microsoft OneDrive 2023-01-02 19:41 - 2023-01-06 12:13 - 000000000 ____D C:\Windows\Minidump 2023-01-02 19:41 - 2023-01-06 12:08 - 4284604048 _____ C:\Windows\MEMORY.DMP 2023-01-02 14:03 - 2023-01-02 14:03 - 000000000 ____D C:\Users\Bolo\AppData\Roaming\Google 2023-01-02 02:00 - 2023-01-06 13:06 - 000000000 ____D C:\Users\Bolo\AppData\Roaming\Win32Sync 2023-01-02 02:00 - 2023-01-02 02:00 - 000000000 ____D C:\Users\Bolo\Google 2023-01-02 01:48 - 2023-01-02 01:58 - 000000000 ____D C:\Users\Bolo\AppData\Local\_ 2023-01-02 01:29 - 2023-01-02 01:29 - 000000000 ____D C:\Users\Bolo\AppData\Local\Yandex 2022-12-18 17:37 - 2022-12-18 17:37 - 000000000 ___HD C:\$WinREAgent 2022-12-16 17:21 - 2022-12-06 21:49 - 002236992 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe 2022-12-16 17:21 - 2022-12-06 21:49 - 002236992 _____ C:\Windows\system32\vulkaninfo.exe 2022-12-16 17:21 - 2022-12-06 21:49 - 001642568 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2022-12-16 17:21 - 2022-12-06 21:49 - 001642568 _____ C:\Windows\SysWOW64\vulkaninfo.exe 2022-12-16 17:21 - 2022-12-06 21:49 - 001487352 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2022-12-16 17:21 - 2022-12-06 21:49 - 001444424 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll 2022-12-16 17:21 - 2022-12-06 21:49 - 001444424 _____ C:\Windows\system32\vulkan-1.dll 2022-12-16 17:21 - 2022-12-06 21:49 - 001226744 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2022-12-16 17:21 - 2022-12-06 21:49 - 001168960 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll 2022-12-16 17:21 - 2022-12-06 21:49 - 001168960 _____ C:\Windows\SysWOW64\vulkan-1.dll 2022-12-16 17:21 - 2022-12-06 21:44 - 000851448 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll 2022-12-16 17:21 - 2022-12-06 21:44 - 000672760 _____ C:\Windows\system32\nvofapi64.dll 2022-12-16 17:21 - 2022-12-06 21:44 - 000507408 _____ C:\Windows\SysWOW64\nvofapi.dll 2022-12-16 17:21 - 2022-12-06 21:43 - 002163712 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2022-12-16 17:21 - 2022-12-06 21:43 - 001619432 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2022-12-16 17:21 - 2022-12-06 21:43 - 001532456 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2022-12-16 17:21 - 2022-12-06 21:43 - 001191912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2022-12-16 17:21 - 2022-12-06 21:43 - 000949784 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2022-12-16 17:21 - 2022-12-06 21:43 - 000738344 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe 2022-12-16 17:21 - 2022-12-06 21:43 - 000734720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2022-12-16 17:21 - 2022-12-06 21:42 - 012453400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2022-12-16 17:21 - 2022-12-06 21:42 - 010220584 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2022-12-16 17:21 - 2022-12-06 21:42 - 005891072 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2022-12-16 17:21 - 2022-12-06 21:42 - 005857328 _____ (NVIDIA Corporation) C:\Windows\system32\nvcudadebugger.dll 2022-12-16 17:21 - 2022-12-06 21:42 - 003334656 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2022-12-16 17:21 - 2022-12-06 21:42 - 000458280 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe 2022-12-16 17:21 - 2022-12-06 21:41 - 005817880 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2022-12-16 17:21 - 2022-12-06 21:41 - 000852984 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe 2022-12-16 17:21 - 2022-12-06 05:54 - 000100741 _____ C:\Windows\system32\nvinfo.pb ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-01-06 22:26 - 2022-01-23 15:31 - 000000000 ____D C:\Users\Bolo\AppData\Roaming\discord 2023-01-06 22:25 - 2022-02-17 18:20 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2023-01-06 22:23 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-01-06 22:20 - 2022-01-20 14:46 - 000000000 ____D C:\Users\Bolo\AppData\LocalLow\Mozilla 2023-01-06 21:40 - 2022-01-23 15:31 - 000000000 ____D C:\Users\Bolo\AppData\Local\Discord 2023-01-06 20:52 - 2020-09-27 06:52 - 000000000 ____D C:\Windows\system32\SleepStudy 2023-01-06 17:17 - 2022-02-07 15:43 - 000000000 ____D C:\ProgramData\USVFS 2023-01-06 14:32 - 2019-12-07 10:14 - 000000000 ___HD C:\Windows\ELAMBKUP 2023-01-06 13:20 - 2022-01-20 21:14 - 001768494 _____ C:\Windows\system32\PerfStringBackup.INI 2023-01-06 13:20 - 2019-12-07 16:08 - 000784502 _____ C:\Windows\system32\perfh015.dat 2023-01-06 13:20 - 2019-12-07 16:08 - 000152398 _____ C:\Windows\system32\perfc015.dat 2023-01-06 13:20 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF 2023-01-06 13:16 - 2022-09-22 15:56 - 000000000 ____D C:\Program Files\NahimicAPI 2023-01-06 13:16 - 2022-01-20 21:18 - 000091304 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Windows\system32\GigabyteDownloadAssistant.exe 2023-01-06 13:16 - 2022-01-20 15:02 - 000000000 ____D C:\ProgramData\NVIDIA 2023-01-06 13:16 - 2022-01-20 14:22 - 000000000 ___RD C:\Users\Bolo\OneDrive 2023-01-06 13:15 - 2022-01-20 21:09 - 000882856 _____ C:\Windows\system32\wpbbin.exe 2023-01-06 13:15 - 2022-01-20 21:09 - 000869032 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Windows\system32\GigabyteUpdateService.exe 2023-01-06 13:15 - 2020-09-27 08:52 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2023-01-06 13:15 - 2020-09-27 06:52 - 000008192 ___SH C:\DumpStack.log.tmp 2023-01-06 13:13 - 2022-01-23 17:34 - 000000000 ____D C:\Users\Bolo\AppData\Local\CrashDumps 2023-01-06 13:13 - 2019-12-07 10:03 - 000524288 _____ C:\Windows\system32\config\BBI 2023-01-06 13:12 - 2022-02-19 19:20 - 000000000 ____D C:\Users\Bolo\AppData\Local\ElevatedDiagnostics 2023-01-06 12:45 - 2022-01-20 14:46 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2023-01-06 12:38 - 2022-01-20 14:46 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2023-01-06 12:38 - 2022-01-20 14:46 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla 2023-01-06 12:14 - 2022-07-22 13:38 - 000000000 ____D C:\Users\Bolo\AppData\LocalLow\Temp 2023-01-06 12:14 - 2022-01-20 21:16 - 000000000 ____D C:\Users\Bolo 2023-01-05 18:43 - 2022-05-21 20:38 - 000000000 ____D C:\Users\Bolo\Desktop\telefon 2023-01-05 18:41 - 2022-01-23 15:31 - 000000000 ____D C:\Users\Bolo\Documents\opentrack-2.3 2023-01-05 18:13 - 2022-01-20 14:23 - 000003596 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2172412559-1957594031-3291844680-1001 2023-01-03 18:59 - 2022-01-20 16:20 - 000000000 ____D C:\Users\Bolo\AppData\Local\D3DSCache 2022-12-30 21:54 - 2022-01-20 15:28 - 000000971 _____ C:\Users\Public\Desktop\Battlestate Games Launcher.lnk 2022-12-30 21:54 - 2022-01-20 15:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlestate Games 2022-12-28 13:21 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\NDF 2022-12-27 18:59 - 2020-09-27 08:54 - 000003566 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-12-27 18:59 - 2020-09-27 08:54 - 000003442 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2022-12-26 14:17 - 2022-09-22 15:12 - 000000000 ____D C:\ProgramData\ASUS 2022-12-25 12:46 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-12-25 12:46 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness 2022-12-19 22:09 - 2020-09-27 06:52 - 000258664 _____ C:\Windows\system32\FNTCACHE.DAT 2022-12-19 22:08 - 2022-01-23 15:21 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2022-12-19 22:08 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\UNP 2022-12-19 22:08 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata 2022-12-19 22:08 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\lv-LV 2022-12-19 22:08 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\lt-LT 2022-12-19 22:08 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\et-EE 2022-12-19 22:08 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\es-MX 2022-12-19 22:08 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Dism 2022-12-19 22:08 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources 2022-12-19 22:08 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemApps 2022-12-19 22:08 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinMetadata 2022-12-19 22:08 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lv-LV 2022-12-19 22:08 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lt-LT 2022-12-19 22:08 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\et-EE 2022-12-19 22:08 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\es-MX 2022-12-19 22:08 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Dism 2022-12-19 22:08 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Provisioning 2022-12-19 22:08 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr 2022-12-19 22:08 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System 2022-12-18 17:40 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp 2022-12-18 17:39 - 2020-09-27 08:54 - 003014656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll 2022-12-18 17:37 - 2022-01-21 15:59 - 000004784 _____ C:\Windows\system32\Tasks\MicrosoftEdgeShadowStackRollbackTask 2022-12-18 17:37 - 2020-09-27 08:55 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-12-17 13:47 - 2022-01-23 15:37 - 000001014 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DCS-SRS Client.lnk 2022-12-16 17:27 - 2022-01-20 15:02 - 000000000 ____D C:\Users\Bolo\AppData\Local\NVIDIA 2022-12-16 17:18 - 2022-01-20 14:44 - 000000000 ____D C:\Windows\system32\MRT 2022-12-16 17:17 - 2022-01-20 14:44 - 148633544 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2022-12-10 18:22 - 2022-01-23 15:31 - 000002226 _____ C:\Users\Bolo\Desktop\Discord.lnk 2022-12-09 16:01 - 2022-01-20 14:23 - 000000000 ____D C:\ProgramData\Package Cache 2022-12-09 14:51 - 2020-09-27 08:52 - 000000000 ____D C:\Windows\system32\Drivers\wd ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================