Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 29-12-2022 Uruchomiony przez dzemu (administrator) DESKTOP-5IEHLNF (ASUSTeK COMPUTER INC. VivoBook_ASUSLaptop X421IA_M433IA) (07-01-2023 20:29:17) Uruchomiony z C:\Users\dzemu\OneDrive\Pulpit\FRST Załadowane profile: dzemu Platform: Microsoft Windows 10 Home Wersja 21H2 19044.2364 (X64) Język: Polski (Polska) Domyślna przeglądarka: Chrome Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_aeff025f0108fb44\ASUSOptimization\AsusOSD.exe (C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (cmd.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MbamBgNativeMsg.exe (DriverStore\FileRepository\asussci2.inf_amd64_aeff025f0108fb44\ASUSOptimization\AsusOptimization.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_aeff025f0108fb44\ASUSOptimization\AsusOptimizationStartupTask.exe (DriverStore\FileRepository\asussci2.inf_amd64_aeff025f0108fb44\ASUSSoftwareManager\AsusSoftwareManager.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_aeff025f0108fb44\ASUSSoftwareManager\AsusSoftwareManagerAgent.exe (DriverStore\FileRepository\u0375185.inf_amd64_73f65969b9079bf6\B375122\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0375185.inf_amd64_73f65969b9079bf6\B375122\atieclxx.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <8> (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0375185.inf_amd64_73f65969b9079bf6\B375122\atiesrxx.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_aeff025f0108fb44\ASUSLinkRemote\AsusLinkRemote.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_aeff025f0108fb44\AsusAppService\AsusAppService.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_aeff025f0108fb44\ASUSLinkNear\AsusLinkNear.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_aeff025f0108fb44\ASUSOptimization\AsusOptimization.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_aeff025f0108fb44\ASUSSoftwareManager\AsusSoftwareManager.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_aeff025f0108fb44\ASUSSwitch\AsusSwitch.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_aeff025f0108fb44\ASUSSystemAnalysis\AsusSystemAnalysis.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_aeff025f0108fb44\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe (services.exe ->) (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ELANFPService.exe (services.exe ->) (Firebird Project) [Brak podpisu cyfrowego] C:\Program Files\Firebird\Firebird_4_0\firebird.exe (services.exe ->) (ICEpower a/s -> ICEpower A/S) C:\Windows\System32\DriverStore\FileRepository\icesoundapo64.inf_amd64_f2e61b83163bf054\ICEsoundService64.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\piecomponent.inf_amd64_e72614dff5a8a910\Intel_PIE_Service.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\ibtsiva.exe (services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21256.0_x64__8wekyb3d8bbwe\HxAccounts.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21256.0_x64__8wekyb3d8bbwe\HxOutlook.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21256.0_x64__8wekyb3d8bbwe\HxTsr.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22102.229.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_238aadee4b6d04be\RtkAudUService64.exe <3> ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Ograniczenia <==== UWAGA HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Ograniczenia <==== UWAGA HKU\S-1-5-21-1522622024-609790871-1620437185-1001\...\Run: [MicrosoftEdgeAutoLaunch_8339864A6BC1CBD10C4180711F939F69] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3879368 2023-01-05] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1522622024-609790871-1620437185-1001\...\MountPoints2: {133c3d0b-1bf7-11ed-825b-ac120339bbf5} - "G:\HiSuiteDownLoader.exe" HKU\S-1-5-21-1522622024-609790871-1620437185-1001\...\MountPoints2: {32615259-a13d-11eb-8217-ac120339bbf5} - "G:\HiSuiteDownLoader.exe" HKU\S-1-5-21-1522622024-609790871-1620437185-1001\...\MountPoints2: {c26ee6a2-bf85-11ec-8247-ac120339bbf5} - "G:\HiSuiteDownLoader.exe" HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\108.0.5359.125\Installer\chrmstp.exe [2023-01-07] (Google LLC -> Google LLC) AppInit_DLLs: C:\Windows\system32\sxsshell.dll => C:\Windows\system32\sxsshell.dll [620152 2022-12-29] (LIMESTONE DIGITAL LIMITED -> ) ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {030FACCA-40BB-435B-98E9-274BCD9A7770} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1706496 2020-11-23] () [Brak podpisu cyfrowego] Task: {0C4BC371-2839-4106-B0A3-C8449D82851C} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [113536 2021-09-21] (Microsoft Corporation -> Microsoft Corporation) Task: {124C2307-522E-408A-87FF-3950844F0760} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [113536 2021-09-21] (Microsoft Corporation -> Microsoft Corporation) Task: {30DC71CA-3989-4B72-A052-D829857175C6} - System32\Tasks\GoogleUpdateTaskMachineUA{17A2E621-DF87-4E1B-89A0-1D3250DD48EF} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2023-01-07] (Google LLC -> Google LLC) Task: {54C4F86A-B5B9-4B05-ABED-11696C4A16EF} - System32\Tasks\RtkAudUService64_BG => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_238aadee4b6d04be\RtkAudUService64.exe [1262504 2021-06-02] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {AFF297E7-9079-4C71-B7E5-6A9223C7C84C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1552376 2022-09-26] (Adobe Inc. -> Adobe Inc.) Task: {CF93F0FB-7E4A-4AC0-801D-B792A96C9067} - System32\Tasks\GoogleUpdateTaskMachineCore{B07DBA42-F3B8-4649-99C8-6B3C46846570} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2023-01-07] (Google LLC -> Google LLC) Task: {DCE414BA-8BF5-4188-8FF5-AD1DDC3C177A} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21857672 2021-09-10] (Microsoft Corporation -> Microsoft Corporation) Task: {E5FE4710-04E1-4A34-8DED-51A600DFC80F} - System32\Tasks\ASUS Update Checker 2.0 => C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_aeff025f0108fb44\ASUSSoftwareManager\AsusUpdateChecker.exe [788112 2022-10-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) Task: {F8B1A693-714B-4956-BF0E-02EBA939CBC4} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21857672 2021-09-10] (Microsoft Corporation -> Microsoft Corporation) Task: {FB4D1ACE-CD33-49BD-909C-D22CA32C07C7} - System32\Tasks\ASUS Optimization 36D18D69AFC3 => C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_aeff025f0108fb44\ASUSOptimization\AsusHotkey.exe [263816 2022-10-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) Task: {FCC61345-BCA9-455F-8AE2-1108BEA45FAC} - System32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 => C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_aeff025f0108fb44\ASUSSystemAnalysis\AsusSystemAnalysis.exe [3606672 2022-10-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{943db57b-d38d-40b0-82e9-0eab33c5a620}: [DhcpNameServer] 192.168.0.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\dzemu\AppData\Local\Microsoft\Edge\User Data\Default [2023-01-07] Edge Extension: (Outlook) - C:\Users\dzemu\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bjhmmnoficofgoiacjaajpkfndojknpb [2020-12-09] Edge Extension: (Malwarebytes Browser Guard) - C:\Users\dzemu\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bojobppfploabceghnmlahpoonbcbacn [2023-01-04] Edge Extension: (TotalСashback — кэшбэк-сервис) - C:\Users\dzemu\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\eofogjfkadmolbbmnlbohhbkhbodcjjm [2021-02-21] Edge Extension: (Word) - C:\Users\dzemu\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hikhggiobiflkdfdgdajcfklmcibbopi [2020-12-09] Edge Extension: (Malwarebytes Browser Guard) - C:\Users\dzemu\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-12-14] Edge Extension: (Excel) - C:\Users\dzemu\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\leffmjdabcgaflkikcefahmlgpodjkdm [2020-12-09] Edge Extension: (PowerPoint) - C:\Users\dzemu\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\opfacbhaojodjaojgocnibmklknchehf [2020-12-09] Edge HKLM\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn] Edge HKLM-x32\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn] Edge HKLM-x32\...\Edge\Extension: [eofogjfkadmolbbmnlbohhbkhbodcjjm] Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee] FireFox: ======== FF DefaultProfile: e20ynrd5.default FF ProfilePath: C:\Users\dzemu\AppData\Roaming\Mozilla\Firefox\Profiles\e20ynrd5.default [2023-01-07] FF ProfilePath: C:\Users\dzemu\AppData\Roaming\Mozilla\Firefox\Profiles\g5swje65.default-release [2023-01-07] FF Plugin-x32: @java.com/DTPlugin,version=11.281.2 -> C:\Program Files (x86)\Java\jre1.8.0_281\bin\dtplugin\npDeployJava1.dll [2021-04-05] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.281.2 -> C:\Program Files (x86)\Java\jre1.8.0_281\bin\plugin2\npjp2.dll [2021-04-05] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-05-26] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2022-11-14] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\dzemu\AppData\Local\Google\Chrome\User Data\Default [2023-01-07] CHR HomePage: Default -> hxxp://www.google.com/ CHR StartupUrls: Default -> "hxxp://google.pl/" CHR Extension: (uBlock Origin) - C:\Users\dzemu\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2023-01-01] CHR Extension: (Adblock dla Youtube™) - C:\Users\dzemu\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2022-12-17] CHR Extension: (Adblocker for Youtube™) - C:\Users\dzemu\AppData\Local\Google\Chrome\User Data\Default\Extensions\dohhllnjedhiiabhboagadalhcckcddc [2021-02-21] [UpdateUrl:hxxps://clients37.google.com/service/update2/crx] <==== UWAGA CHR Extension: (Dokumenty Google offline) - C:\Users\dzemu\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-11-30] CHR Extension: (AdBlock — najlepszy bloker reklam) - C:\Users\dzemu\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-12-21] CHR Extension: (Szafir SDK Web) - C:\Users\dzemu\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjalhnomhafafofonpdihihjnbafkipc [2022-06-25] CHR Extension: (Malwarebytes Browser Guard) - C:\Users\dzemu\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-12-13] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\dzemu\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30] CHR Profile: C:\Users\dzemu\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-01-07] CHR Profile: C:\Users\dzemu\AppData\Local\Google\Chrome\User Data\Profile 1 [2023-01-07] CHR Extension: (Safe Torrent Scanner) - C:\Users\dzemu\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2022-04-24] CHR Extension: (Dokumenty Google offline) - C:\Users\dzemu\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-04-24] CHR Extension: (Malwarebytes Browser Guard) - C:\Users\dzemu\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-04-24] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\dzemu\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-04-24] CHR Profile: C:\Users\dzemu\AppData\Local\Google\Chrome\User Data\System Profile [2023-01-07] CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb] CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2022-09-26] (Adobe Inc. -> Adobe Inc.) R2 AsusAppService; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_aeff025f0108fb44\AsusAppService\AsusAppService.exe [902232 2022-10-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R2 ASUSLinkNear; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_aeff025f0108fb44\ASUSLinkNear\AsusLinkNear.exe [1181288 2022-10-12] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) R2 ASUSLinkRemote; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_aeff025f0108fb44\ASUSLinkRemote\AsusLinkRemote.exe [764552 2022-10-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​) R2 ASUSOptimization; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_aeff025f0108fb44\ASUSOptimization\AsusOptimization.exe [386152 2022-10-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R2 ASUSSoftwareManager; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_aeff025f0108fb44\ASUSSoftwareManager\AsusSoftwareManager.exe [1087080 2022-10-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R2 ASUSSwitch; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_aeff025f0108fb44\ASUSSwitch\AsusSwitch.exe [634504 2022-10-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R2 ASUSSystemAnalysis; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_aeff025f0108fb44\ASUSSystemAnalysis\AsusSystemAnalysis.exe [3606672 2022-10-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R2 ASUSSystemDiagnosis; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_aeff025f0108fb44\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe [790128 2022-10-12] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9179528 2021-09-10] (Microsoft Corporation -> Microsoft Corporation) R2 FirebirdServerFirebird_4_Server; c:\Program Files\Firebird\Firebird_4_0\firebird.exe [1129984 2022-08-09] (Firebird Project) [Brak podpisu cyfrowego] R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8892256 2023-01-04] (Malwarebytes Inc. -> Malwarebytes) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe [3191264 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe [133592 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 amdwddmg; C:\Windows\System32\DriverStore\FileRepository\u0375185.inf_amd64_73f65969b9079bf6\B375122\amdkmdag.sys [80558944 2021-12-27] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) S3 AmUStor; C:\Windows\system32\drivers\AmUStorU.sys [150840 2021-07-08] (Alcorlink Corp. -> ) R3 AsusPTPDrv; C:\Windows\System32\drivers\AsusPTPFilter.sys [113496 2021-01-14] (ASUSTek Computer Inc. -> ASUSTek COMPUTER INC.) R3 AsusSAIO; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_aeff025f0108fb44\ASUSSystemAnalysis\AsusSAIO.sys [46736 2022-10-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R1 ATKWMIACPIIO; C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_aeff025f0108fb44\ASUSOptimization\AsusWmiAcpi.sys [45280 2022-10-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [287744 2022-05-11] (Microsoft Corporation) [Brak podpisu cyfrowego] R1 dokan1; C:\Windows\System32\DRIVERS\dokan1.sys [140280 2020-06-01] (ADAPP SASU -> Dokan Project) R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [158640 2023-01-04] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [223176 2023-01-07] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2023-01-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [197088 2023-01-07] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [76216 2023-01-07] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239544 2023-01-04] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [181816 2023-01-07] (Malwarebytes Inc. -> Malwarebytes) S3 usbscan; C:\Windows\System32\drivers\usbscan.sys [49152 2020-11-19] (Microsoft Corporation) [Brak podpisu cyfrowego] S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [49568 2022-12-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [473376 2022-12-09] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [99616 2022-12-09] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Trzy miesiące (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-01-07 20:06 - 2023-01-07 20:06 - 000181816 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys 2023-01-07 20:06 - 2023-01-07 20:06 - 000000008 __RSH C:\ProgramData\ntuser.pol 2023-01-07 20:06 - 2023-01-07 20:06 - 000000000 ____D C:\Users\dzemu\AppData\LocalLow\IGDump 2023-01-07 14:08 - 2023-01-07 14:08 - 008502088 _____ (ESET) C:\Users\dzemu\Downloads\eset_internet_security_live_installer.exe 2023-01-07 12:39 - 2023-01-07 12:39 - 000000000 ____D C:\Users\dzemu\AppData\Local\Mirillis 2023-01-07 12:39 - 2023-01-07 12:39 - 000000000 ____D C:\Users\dzemu\AppData\Local\Aiseesoft Studio 2023-01-07 12:32 - 2023-01-07 12:32 - 000000000 ____D C:\Users\dzemu\Downloads\FRST-OlderVersion 2023-01-07 12:29 - 2023-01-07 20:29 - 000000000 ____D C:\FRST 2023-01-07 12:14 - 2023-01-07 12:14 - 000002325 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2023-01-07 12:13 - 2023-01-07 12:13 - 001427176 _____ (Google LLC) C:\Users\dzemu\Downloads\ChromeSetup.exe 2023-01-07 12:13 - 2023-01-07 12:13 - 001427176 _____ (Google LLC) C:\Users\dzemu\Downloads\ChromeSetup (1).exe 2023-01-07 12:13 - 2023-01-07 12:13 - 000003646 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA{17A2E621-DF87-4E1B-89A0-1D3250DD48EF} 2023-01-07 12:13 - 2023-01-07 12:13 - 000003522 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore{B07DBA42-F3B8-4649-99C8-6B3C46846570} 2023-01-07 10:30 - 2023-01-07 10:32 - 000000000 ____D C:\ProgramData\Ortodoncja 9 2023-01-07 10:30 - 2023-01-07 10:32 - 000000000 ____D C:\Program Files\Ortodoncja 9 2023-01-07 10:30 - 2023-01-07 10:30 - 000000000 ____D C:\Users\dzemu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ortodoncja 9 2023-01-07 10:30 - 2023-01-07 10:30 - 000000000 ____D C:\Users\dzemu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MeshLab 2023-01-07 09:52 - 2023-01-07 10:45 - 000000000 ____D C:\ProgramData\firebird 2023-01-07 09:52 - 2023-01-07 09:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firebird 4.0 (x64) 2023-01-07 09:50 - 2023-01-07 09:51 - 026138092 _____ (Firebird Project ) C:\Users\dzemu\Downloads\Firebird-4.0.2.2816-0-x64.exe 2023-01-07 09:50 - 2023-01-07 09:50 - 030665764 _____ C:\Users\dzemu\Downloads\Firebird-4.0.2.2816-0.tar.xz 2023-01-07 09:35 - 2023-01-07 09:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MeshLab 2023-01-07 09:34 - 2023-01-07 10:29 - 000000000 ____D C:\Program Files\Ortodoncja 8 2023-01-07 09:19 - 2023-01-07 09:19 - 000000000 ____D C:\Users\dzemu\AppData\Local\CEF 2023-01-07 09:19 - 2023-01-07 09:19 - 000000000 ____D C:\Users\dzemu\AppData\Local\Adobe 2023-01-07 09:18 - 2023-01-07 12:44 - 000000000 ____D C:\Users\dzemu\AppData\Local\CrashDumps 2023-01-07 09:02 - 2023-01-07 09:02 - 000000000 ____D C:\Users\dzemu\AppData\Local\ASUS 2023-01-07 08:58 - 2023-01-07 12:11 - 000000000 ____D C:\Users\dzemu\AppData\Local\WindowsApp 2023-01-07 08:23 - 2023-01-07 08:24 - 144012280 _____ (Ortobajt ) C:\Users\dzemu\Downloads\Ortodoncja9005Setup.exe 2023-01-07 07:56 - 2023-01-07 07:58 - 180547640 _____ (Ortobajt ) C:\Users\dzemu\Downloads\Ortodoncja9101Setup (3).exe 2023-01-07 07:55 - 2023-01-07 07:56 - 180547640 _____ (Ortobajt ) C:\Users\dzemu\Downloads\Ortodoncja9101Setup (1).exe 2023-01-07 07:53 - 2023-01-07 07:54 - 180547640 _____ (Ortobajt ) C:\Users\dzemu\Downloads\Ortodoncja9101Setup.exe 2023-01-04 20:16 - 2023-01-07 09:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EasyCleaner 2023-01-04 20:16 - 2023-01-04 20:16 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2023-01-04 20:16 - 2023-01-04 20:16 - 000000000 ____D C:\Program Files (x86)\ToniArts 2023-01-04 20:14 - 2023-01-04 20:14 - 002951802 _____ (InstallShield Software Corporation) C:\Users\dzemu\Downloads\EClea2_0.exe 2023-01-03 23:51 - 2023-01-03 23:51 - 006874600 _____ (EnigmaSoft Limited) C:\Users\dzemu\Downloads\SpyHunter-Installer.exe 2023-01-03 23:37 - 2023-01-03 23:37 - 064352611 _____ C:\Users\dzemu\Downloads\Clinical cases in early orthodontic treatment an atlas of when, how, and why to treat ( PDFDrive ) (1).pdf 2023-01-03 23:36 - 2023-01-03 23:36 - 024897746 _____ C:\Users\dzemu\Downloads\Clinical problem solving in Orthodontics and Pediatric dentistry ( PDFDrive ).pdf 2023-01-03 23:33 - 2023-01-03 23:33 - 000000000 ____D C:\Program Files\ChromeExtension 2023-01-03 23:33 - 2022-12-29 05:06 - 000620152 _____ C:\Windows\system32\sxsshell.dll 2023-01-02 22:13 - 2023-01-02 22:13 - 016881126 _____ C:\Users\dzemu\Downloads\17_Kowalska_Mikolaj_(1).tif 2023-01-02 22:09 - 2023-01-02 22:09 - 000260222 _____ C:\Users\dzemu\Downloads\convert-dpi.com.zip 2023-01-02 21:59 - 2023-01-02 21:59 - 006093979 _____ C:\Users\dzemu\Downloads\17 Kowalska Mikolaj (1).psd 2023-01-02 00:02 - 2023-01-02 00:02 - 000011209 _____ C:\Users\dzemu\Downloads\styczeń.xlsx 2023-01-01 22:55 - 2023-01-01 22:55 - 000059247 _____ C:\Users\dzemu\Downloads\ins_details_20230101_225506.pdf 2023-01-01 22:25 - 2023-01-01 22:25 - 000071107 _____ C:\Users\dzemu\Downloads\ipko_credit_schedule_20230101_222550.pdf 2023-01-01 18:29 - 2023-01-01 18:29 - 000225983 _____ C:\Users\dzemu\Downloads\44-Oplacalnosc-nadplaty-kredytu-z-prowizja-PLN.xlsx 2022-12-31 08:09 - 2022-12-31 08:09 - 000082908 _____ C:\Users\dzemu\Downloads\ipko_credit_schedule_20221231_080942.pdf 2022-12-31 00:56 - 2022-12-31 00:56 - 000082900 _____ C:\Users\dzemu\Downloads\ipko_credit_schedule_20221231_005629.pdf 2022-12-30 17:31 - 2022-12-30 17:31 - 001220851 _____ C:\Users\dzemu\Downloads\63-Szablon-budzet-domowy-2021-PLN-v7-4 (1).xlsx 2022-12-30 17:10 - 2023-01-02 00:46 - 000263508 _____ C:\Users\dzemu\Downloads\13-Czy-nadplacac-kredyt-Wariant-1.xlsx 2022-12-30 17:10 - 2023-01-02 00:46 - 000241680 _____ C:\Users\dzemu\Downloads\14-Czy-nadplacac-kredyt-Wariant-2.xlsx 2022-12-30 17:10 - 2022-12-30 17:10 - 000017496 _____ C:\Users\dzemu\Downloads\09-Kategorie-wydatkow-Michal.xlsx 2022-12-30 17:10 - 2022-12-30 17:10 - 000016558 _____ C:\Users\dzemu\Downloads\15-Czy-nadplacac-kredyt-Analiza.xlsx 2022-12-30 17:10 - 2022-12-30 17:10 - 000014540 _____ C:\Users\dzemu\Downloads\04-Koszt-czasu.xlsx 2022-12-30 17:10 - 2022-12-30 17:10 - 000013758 _____ C:\Users\dzemu\Downloads\11-Kategorie-wydatkow-Kontomierz.xlsx 2022-12-30 17:10 - 2022-12-30 17:10 - 000012264 _____ C:\Users\dzemu\Downloads\12-Kategorie-wydatkow-Meritum-Planer.xlsx 2022-12-30 17:10 - 2022-12-30 17:10 - 000011578 _____ C:\Users\dzemu\Downloads\10-Kategorie-wydatkow-Andrzej-Fesnak.xlsx 2022-12-30 17:10 - 2022-12-30 17:10 - 000010765 _____ C:\Users\dzemu\Downloads\03-Zakup-na-raty-czy-gotowka.xlsx 2022-12-29 23:06 - 2022-12-29 23:06 - 001382909 _____ C:\Users\dzemu\Downloads\Mądry dom, bogaty dom - Witold Wrotek full.pdf 2022-12-29 22:54 - 2022-12-29 22:54 - 000029585 _____ C:\Users\dzemu\Downloads\tf03428920_win32.xltx 2022-12-27 01:06 - 2022-12-27 01:06 - 000176128 _____ C:\Users\dzemu\Downloads\cpi_linked_calculator.xls 2022-12-26 23:52 - 2023-01-01 20:54 - 000360571 _____ C:\Users\dzemu\Downloads\IKE-OBLIGACJE-kalkulator-Finanse-Bardzo-Osobiste-Marcin-Iwuc.xlsx 2022-12-21 14:28 - 2022-12-21 14:28 - 000213290 _____ C:\Users\dzemu\Downloads\zal_nr_1_do_zr_8_17_01_1 (3).pdf 2022-12-20 01:04 - 2022-12-20 01:04 - 024073227 _____ C:\Users\dzemu\Downloads\Iwuć M. - Jak zadbać o własne finanse.rar 2022-12-17 23:49 - 2022-12-17 23:49 - 000148485 _____ C:\Users\dzemu\Downloads\Ile-odkladac-na-emeryture-kalkulator-FBO-2022-11-23.xlsx 2022-12-17 23:36 - 2022-12-17 23:36 - 003762926 _____ C:\Users\dzemu\Downloads\finansowa-twierdza.pdf 2022-12-17 21:20 - 2022-12-17 21:21 - 000000000 ____D C:\Users\dzemu\Downloads\The Banshees Of Inisherin (2022) [1080p] [WEBRip] [5.1] [YTS.MX] 2022-12-15 23:33 - 2022-12-15 23:33 - 000110627 _____ C:\Users\dzemu\Downloads\vwfs-kalkulacja.pdf 2022-12-15 08:50 - 2022-12-15 08:50 - 000000000 ___HD C:\$WinREAgent 2022-12-09 08:29 - 2022-12-09 08:29 - 000118575 _____ C:\Users\dzemu\Downloads\Ocena 270 ang (1).pdf 2022-12-06 07:46 - 2022-12-06 07:46 - 000216641 _____ C:\Users\dzemu\Downloads\zal_nr_2_do_zr_8_17_01_1.pdf 2022-12-03 14:07 - 2022-12-03 14:07 - 001971971 _____ C:\Users\dzemu\Downloads\File_Part.1.ZIP 2022-12-03 14:06 - 2022-12-03 14:06 - 002232475 _____ C:\Users\dzemu\Downloads\first_penetration_teacher_after_school_cut_clitoris_video.ZIP 2022-11-29 22:25 - 2022-11-29 22:25 - 006093979 _____ C:\Users\dzemu\Downloads\17 Kowalska Mikolaj.psd 2022-11-29 21:58 - 2022-11-29 21:58 - 000832155 _____ C:\Users\dzemu\Downloads\jcm-09-03813 (4).pdf 2022-11-29 21:50 - 2022-11-29 21:50 - 000617518 _____ C:\Users\dzemu\Downloads\ijerph-19-01577-v2.pdf 2022-11-28 21:32 - 2022-11-28 21:32 - 000017025 _____ C:\Users\dzemu\Downloads\2022-06-14_Zał 2- do Umowy rozliczenie m-c (3) (3).odt 2022-11-27 21:02 - 2022-11-27 21:02 - 000059260 _____ C:\Users\dzemu\Downloads\pko_trans_details_20221127_210238.pdf 2022-11-24 22:07 - 2022-11-24 22:07 - 003648895 _____ C:\Users\dzemu\Downloads\302014275_5394810120608754_7873033646453787709_n.mp4 2022-11-24 22:04 - 2022-11-24 22:04 - 016555100 _____ C:\Users\dzemu\Downloads\304961778_599314248265784_5524807679486067137_n.mp4 2022-11-23 23:06 - 2022-11-23 23:06 - 009438824 _____ C:\Users\dzemu\Downloads\24071_cover_choy_burstones_biomechanical_foundation_of_clinical_orthodontics.tif 2022-11-23 23:06 - 2022-11-23 23:06 - 000360065 _____ C:\Users\dzemu\Downloads\The_biomechanical_foundation_of_clinical_orthodont.pdf 2022-11-23 21:56 - 2022-11-23 21:56 - 002939721 _____ C:\Users\dzemu\Downloads\57-65.pdf 2022-11-21 22:50 - 2022-11-21 22:50 - 000058161 _____ C:\Users\dzemu\Downloads\Korespondencja dotyczaca bledow w dokumentach oraz braku dokumentow ZUS RIA.pdf 2022-11-21 11:42 - 2022-11-21 11:42 - 000017025 _____ C:\Users\dzemu\Downloads\2022-06-14_Zał 2- do Umowy rozliczenie m-c (3) (2).odt 2022-11-19 23:13 - 2022-11-25 23:06 - 000000000 ____D C:\Users\dzemu\Downloads\Rambo.Last.Blood.2019.1080p.BDRip.X264.AC3-EVO[TGx] 2022-11-19 21:27 - 2022-12-17 21:43 - 000000000 ____D C:\Users\dzemu\Downloads\Rambo.Last.Blood.2019.1080p.Bluray.x264.AAC-ETRG 2022-11-17 20:51 - 2022-11-17 20:51 - 000181794 _____ C:\Users\dzemu\Downloads\diagnostics-template.dot 2022-11-16 20:15 - 2022-11-16 20:15 - 200553337 _____ C:\Users\dzemu\Downloads\Wojcik Magdalena cbct 12.zip 2022-11-16 10:30 - 2022-11-16 10:30 - 000288125 _____ C:\Users\dzemu\Downloads\16103841-221116103026249.pdf 2022-11-16 10:29 - 2022-11-16 10:29 - 000222870 _____ C:\Users\dzemu\Downloads\16103841-221116102900195.pdf 2022-11-16 10:28 - 2022-11-16 10:28 - 000210240 _____ C:\Users\dzemu\Downloads\16103841-221116102806270.pdf 2022-11-15 23:31 - 2022-11-15 23:32 - 001159878 _____ C:\Users\dzemu\Downloads\Dokument_193039205 (3).pdf 2022-11-15 23:24 - 2022-11-15 23:24 - 001159878 _____ C:\Users\dzemu\Downloads\Dokument_193039205 (2).pdf 2022-11-15 10:23 - 2022-11-15 10:23 - 000060725 _____ C:\Users\dzemu\Downloads\Wniosek_o_wyplate_dodatku_dla_gospodarstw_domowych_z_tytulu_wykorzystywania_niektorych_zrodel_ciepla.pdf 2022-11-15 09:49 - 2022-11-15 09:49 - 000538212 _____ C:\Users\dzemu\Downloads\Nowy_wzór_wniosku_o_wypłatę_dodatku_osłonowego.pdf 2022-11-15 09:37 - 2022-11-15 09:37 - 000027260 _____ C:\Users\dzemu\Downloads\4209126-9ee1f0ddd1ca63578607277814509831b35000c0fab9d9390b9488145d29b892.pdf 2022-11-15 08:42 - 2022-11-15 08:42 - 000017025 _____ C:\Users\dzemu\Downloads\2022-06-14_Zał 2- do Umowy rozliczenie m-c (3) (1).odt 2022-11-14 20:48 - 2022-11-14 20:48 - 000160155 _____ C:\Users\dzemu\Downloads\jcm-template (1).dot 2022-11-14 20:44 - 2022-11-14 20:44 - 020436181 _____ C:\Users\dzemu\Downloads\install-tl-windows.exe 2022-11-09 21:28 - 2022-11-09 21:28 - 000017025 _____ C:\Users\dzemu\Downloads\2022-06-14_Zał 2- do Umowy rozliczenie m-c (3).odt 2022-11-09 11:44 - 2022-11-09 11:44 - 000082905 _____ C:\Users\dzemu\Downloads\ipko_credit_schedule_20221109_114418.pdf 2022-11-06 15:22 - 2022-11-06 15:22 - 000117015 _____ C:\Users\dzemu\Downloads\Klon_Max_550_EC.pdf 2022-11-05 18:56 - 2022-11-05 19:15 - 000000000 ____D C:\Users\dzemu\Downloads\Thirteen Lives (2022) [1080p] [WEBRip] [5.1] [YTS.MX] 2022-11-04 23:26 - 2022-11-04 23:26 - 000014281 _____ C:\Users\dzemu\Downloads\t2098204.torrent 2022-11-04 23:22 - 2022-11-04 23:22 - 002087685 _____ C:\Users\dzemu\Downloads\double_penetration_schoolgirl_after_school_vagina_photo.ZIP 2022-11-04 08:04 - 2022-11-04 08:04 - 000158440 _____ C:\Users\dzemu\Downloads\PD__umiejętności_IV_ATS.zip 2022-11-03 09:52 - 2022-11-03 09:52 - 000213290 _____ C:\Users\dzemu\Downloads\zal_nr_1_do_zr_8_17_01_1 (2).pdf 2022-10-31 20:21 - 2022-10-31 20:22 - 169171568 _____ C:\Users\dzemu\Downloads\Terraforming.Mars-GOG.rar 2022-10-24 21:29 - 2022-10-24 21:29 - 000257024 _____ C:\Users\dzemu\Downloads\129758.xls 2022-10-20 20:49 - 2022-10-20 20:49 - 000525334 _____ C:\Users\dzemu\Downloads\mulligan_przykladowy-rozdzial.pdf 2022-10-18 22:21 - 2022-10-18 22:21 - 156001272 _____ C:\Users\dzemu\Downloads\wetransfer_15-09-2022-gold_2022-10-17_1334.zip 2022-10-14 13:38 - 2022-10-14 13:40 - 009742630 _____ C:\Users\dzemu\MeshEmbossState.mes 2022-10-13 20:03 - 2022-10-13 20:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blue Sky Plan 4 2022-10-13 20:02 - 2022-10-13 20:02 - 000000000 ____D C:\ProgramData\BlueSkyPlan4 2022-10-13 19:31 - 2022-11-20 21:40 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader.lnk 2022-10-12 22:20 - 2022-10-12 22:20 - 000213290 _____ C:\Users\dzemu\Downloads\zal_nr_1_do_zr_8_17_01_1 (1).pdf 2022-10-09 12:34 - 2022-10-09 12:34 - 052095035 _____ C:\Users\dzemu\Downloads\CT kurs benefit-20221009T113353Z-001.zip 2022-10-09 10:34 - 2022-10-09 10:34 - 000894379 _____ C:\Users\dzemu\Downloads\zalaczniki_regulamin_wynagradzania_tj_od_15_lipca_2022.pdf 2022-10-09 10:33 - 2022-10-09 10:33 - 000494707 _____ C:\Users\dzemu\Downloads\zal_or_5_2022_regulamin_wynagradzania_tj_od_15_lipca_2022.pdf 2022-10-09 10:33 - 2022-10-09 10:33 - 000194065 _____ C:\Users\dzemu\Downloads\or_5_regulamin_wynagradzania_tekst_ujednolicony.pdf 2022-10-09 07:08 - 2022-10-09 07:08 - 067523634 _____ C:\Users\dzemu\Downloads\Wojciech.pęch_UpperJaw.stl 2022-10-09 07:08 - 2022-10-09 07:08 - 053550684 _____ C:\Users\dzemu\Downloads\Wojciech.pęch_LowerJaw.stl ==================== Trzy miesiące (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-01-07 20:18 - 2020-12-09 16:37 - 000000000 ____D C:\Program Files (x86)\Google 2023-01-07 20:13 - 2020-12-16 19:29 - 000003752 _____ C:\Windows\system32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 2023-01-07 20:10 - 2020-12-09 09:24 - 001678234 _____ C:\Windows\system32\PerfStringBackup.INI 2023-01-07 20:10 - 2019-12-07 16:08 - 000748784 _____ C:\Windows\system32\perfh015.dat 2023-01-07 20:10 - 2019-12-07 16:08 - 000144494 _____ C:\Windows\system32\perfc015.dat 2023-01-07 20:10 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF 2023-01-07 20:06 - 2020-12-09 09:16 - 000008192 ___SH C:\DumpStack.log.tmp 2023-01-07 20:06 - 2020-11-19 00:29 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2023-01-07 20:06 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ServiceState 2023-01-07 20:06 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-01-07 20:06 - 2019-12-07 10:03 - 000786432 _____ C:\Windows\system32\config\BBI 2023-01-07 20:05 - 2020-11-18 23:29 - 000000000 ____D C:\Windows\system32\SleepStudy 2023-01-07 19:21 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\GroupPolicy 2023-01-07 14:25 - 2020-12-09 11:14 - 000000000 ____D C:\Users\dzemu\AppData\Local\D3DSCache 2023-01-07 13:12 - 2020-12-09 09:28 - 000000000 ____D C:\Users\dzemu\AppData\Local\Packages 2023-01-07 12:57 - 2022-10-08 19:11 - 000000000 ____D C:\Program Files\BlueSkyPlan4 2023-01-07 12:53 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2023-01-07 12:53 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness 2023-01-07 12:44 - 2020-12-18 18:11 - 000000000 ____D C:\Users\dzemu\AppData\Roaming\Blueberry 2023-01-07 12:44 - 2020-12-18 18:11 - 000000000 ____D C:\ProgramData\Blueberry 2023-01-07 12:44 - 2020-12-18 18:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mirillis 2023-01-07 12:44 - 2020-12-18 18:02 - 000000000 ____D C:\Program Files (x86)\Mirillis 2023-01-07 12:43 - 2021-01-28 21:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apowersoft 2023-01-07 12:36 - 2020-12-13 08:45 - 000000000 ____D C:\Users\dzemu\AppData\LocalLow\Temp 2023-01-07 09:35 - 2020-12-14 20:59 - 000000000 ____D C:\Program Files\VCG 2023-01-07 09:15 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns 2023-01-07 09:07 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\registration 2023-01-07 07:58 - 2020-12-14 20:59 - 000000000 ____D C:\Program Files\Firebird 2023-01-07 07:40 - 2020-11-19 00:31 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-01-04 20:38 - 2021-04-05 11:16 - 000000000 ____D C:\Program Files\Mozilla Firefox 2023-01-04 20:38 - 2021-04-05 11:16 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2023-01-04 20:35 - 2021-02-22 20:24 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2023-01-04 20:35 - 2021-01-03 12:12 - 000000000 ____D C:\Users\dzemu\EasternGraphics 2023-01-04 20:33 - 2020-12-13 01:47 - 000000000 ____D C:\ProgramData\Package Cache 2023-01-04 20:11 - 2021-04-05 11:16 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2023-01-04 20:11 - 2021-04-05 11:16 - 000000000 ____D C:\Users\dzemu\AppData\LocalLow\Mozilla 2023-01-04 20:11 - 2021-04-05 11:16 - 000000000 ____D C:\ProgramData\Mozilla 2023-01-04 20:10 - 2021-11-10 07:44 - 000239544 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys 2023-01-04 20:10 - 2021-02-27 00:39 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2023-01-04 20:09 - 2021-02-27 00:39 - 000158640 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys 2023-01-04 00:30 - 2020-12-18 16:46 - 000000000 ____D C:\Users\dzemu\AppData\Roaming\uTorrent 2023-01-03 21:06 - 2020-11-19 00:31 - 000003566 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2023-01-03 21:06 - 2020-11-19 00:31 - 000003442 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2022-12-18 06:15 - 2020-11-18 23:29 - 000299800 _____ C:\Windows\system32\FNTCACHE.DAT 2022-12-18 06:14 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\UNP 2022-12-18 06:14 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata 2022-12-18 06:14 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\lv-LV 2022-12-18 06:14 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\lt-LT 2022-12-18 06:14 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\et-EE 2022-12-18 06:14 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\es-MX 2022-12-18 06:14 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Dism 2022-12-18 06:14 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources 2022-12-18 06:14 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemApps 2022-12-18 06:14 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinMetadata 2022-12-18 06:14 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lv-LV 2022-12-18 06:14 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lt-LT 2022-12-18 06:14 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\et-EE 2022-12-18 06:14 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\es-MX 2022-12-18 06:14 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Dism 2022-12-18 06:14 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Provisioning 2022-12-18 06:14 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr 2022-12-18 06:14 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System 2022-12-17 21:52 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp 2022-12-15 08:54 - 2020-11-19 00:31 - 003014656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll 2022-12-15 08:16 - 2020-12-20 09:08 - 000000000 ____D C:\Windows\system32\MRT 2022-12-15 08:14 - 2020-12-20 09:08 - 148633544 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2022-12-14 21:23 - 2020-12-12 18:43 - 000000000 ____D C:\Users\dzemu\AppData\Roaming\Zoom 2022-12-09 08:28 - 2020-11-19 00:29 - 000000000 ____D C:\Windows\system32\Drivers\wd ==================== SigCheckExt ========================= 2013-05-28 21:23 - 2013-05-28 21:23 - 000652288 _____ C:\Windows\system32\ficvdec_x64.dll 2020-12-12 23:15 - 2005-01-22 01:53 - 000055296 _____ C:\Windows\system32\huffyuv.dll 2020-12-12 23:15 - 2011-12-07 19:37 - 000148992 _____ ( ) C:\Windows\system32\lagarith.dll 2020-12-12 23:15 - 2017-07-30 12:50 - 003799552 _____ (x264vfw project) C:\Windows\system32\x264vfw64.dll 2020-12-12 23:15 - 2019-12-28 11:00 - 000784384 _____ C:\Windows\system32\xvidcore.dll 2020-12-12 23:15 - 2019-12-28 11:00 - 000310784 _____ C:\Windows\system32\xvidvfw.dll 2020-12-12 23:15 - 2015-10-24 18:00 - 000112128 _____ C:\Windows\SysWOW64\ff_vfw.dll 2013-05-28 21:22 - 2013-05-28 21:22 - 000641024 _____ C:\Windows\SysWOW64\ficvdec_x86.dll 2020-12-12 23:15 - 2004-05-18 20:16 - 000039936 _____ (Disappearing Inc.) C:\Windows\SysWOW64\huffyuv.dll 2020-12-12 23:15 - 2011-12-07 19:32 - 000216064 _____ ( ) C:\Windows\SysWOW64\lagarith.dll 2003-04-18 16:46 - 2003-04-18 16:46 - 001233920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml4.dll 2003-04-18 16:29 - 2003-04-18 16:29 - 000082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml4r.dll 2020-12-12 23:15 - 2017-07-30 12:50 - 003850240 _____ (x264vfw project) C:\Windows\SysWOW64\x264vfw.dll 2020-12-12 23:15 - 2019-12-28 11:00 - 000681984 _____ C:\Windows\SysWOW64\xvidcore.dll 2020-12-12 23:15 - 2019-12-28 11:00 - 000284160 _____ C:\Windows\SysWOW64\xvidvfw.dll 2022-05-16 06:07 - 2022-05-16 06:07 - 061179831 _____ (Unknown ) C:\Users\dzemu\Downloads\AutoCEPH-1.1.3-windows-x64.exe 2020-12-18 18:11 - 2020-12-18 18:11 - 025321368 _____ (Blueberry Software (UK) Ltd.) C:\Users\dzemu\Downloads\bbfbex5.exe 2021-08-01 22:13 - 2021-08-01 22:13 - 001123840 _____ (Karol Winnicki) C:\Users\dzemu\Downloads\BESTplayer.exe 2023-01-04 20:14 - 2023-01-04 20:14 - 002951802 _____ (InstallShield Software Corporation) C:\Users\dzemu\Downloads\EClea2_0.exe 2023-01-07 09:50 - 2023-01-07 09:51 - 026138092 _____ (Firebird Project ) C:\Users\dzemu\Downloads\Firebird-4.0.2.2816-0-x64.exe 2022-11-14 20:44 - 2022-11-14 20:44 - 020436181 _____ C:\Users\dzemu\Downloads\install-tl-windows.exe 2021-04-11 17:29 - 2021-04-11 17:29 - 009348248 _____ ( ) C:\Users\dzemu\Downloads\NapiProjektSetup2.2.0.2399 (1).exe 2020-12-18 17:00 - 2020-12-18 17:01 - 009348248 _____ ( ) C:\Users\dzemu\Downloads\NapiProjektSetup2.2.0.2399.exe 2023-01-07 08:23 - 2023-01-07 08:24 - 144012280 _____ (Ortobajt ) C:\Users\dzemu\Downloads\Ortodoncja9005Setup.exe 2021-12-01 01:06 - 2021-12-01 01:06 - 002146304 _____ (Kodak) C:\Users\dzemu\Downloads\TWV (1).exe ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== BCD ================================ Firmware Boot Manager --------------------- identifier {fwbootmgr} displayorder {bootmgr} timeout 2 Windows Boot Manager -------------------- identifier {bootmgr} device partition=\Device\HarddiskVolume1 path \EFI\MICROSOFT\BOOT\BOOTMGFW.EFI description Windows Boot Manager locale pl-PL inherit {globalsettings} default {current} resumeobject {58b82c65-39f6-11eb-a83f-af58fa1a939d} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Windows Boot Loader ------------------- identifier {current} device partition=C: path \Windows\system32\winload.efi description Windows 10 locale pl-PL inherit {bootloadersettings} recoverysequence {58b82c67-39f6-11eb-a83f-af58fa1a939d} displaymessageoverride SystemRestore recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \Windows resumeobject {58b82c65-39f6-11eb-a83f-af58fa1a939d} nx OptIn bootmenupolicy Standard Windows Boot Loader ------------------- identifier {58b82c67-39f6-11eb-a83f-af58fa1a939d} device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{58b82c68-39f6-11eb-a83f-af58fa1a939d} path \windows\system32\winload.efi description Windows Recovery Environment locale pl-pl inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{58b82c68-39f6-11eb-a83f-af58fa1a939d} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Resume from Hibernate --------------------- identifier {58b82c65-39f6-11eb-a83f-af58fa1a939d} device partition=C: path \Windows\system32\winresume.efi description Windows Resume Application locale pl-PL inherit {resumeloadersettings} recoverysequence {58b82c67-39f6-11eb-a83f-af58fa1a939d} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Windows Memory Tester --------------------- identifier {memdiag} device partition=\Device\HarddiskVolume1 path \EFI\Microsoft\Boot\memtest.efi description Diagnostyka pami©ci systemu Windows locale pl-PL inherit {globalsettings} badmemoryaccess Yes EMS Settings ------------ identifier {emssettings} bootems No Debugger Settings ----------------- identifier {dbgsettings} debugtype Local RAM Defects ----------- identifier {badmemory} Global Settings --------------- identifier {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} Boot Loader Settings -------------------- identifier {bootloadersettings} inherit {globalsettings} {hypervisorsettings} Hypervisor Settings ------------------- identifier {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 Resume Loader Settings ---------------------- identifier {resumeloadersettings} inherit {globalsettings} Device options -------------- identifier {58b82c68-39f6-11eb-a83f-af58fa1a939d} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume4 ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Koniec FRST.txt ========================