Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 02-03-2023 Uruchomiony przez Tomas (administrator) DESKTOP-4MIGUQ8 (Gigabyte Technology Co., Ltd. B660M DS3H DDR4) (02-03-2023 18:14:21) Uruchomiony z C:\Users\Tomas\Downloads\FRST-OlderVersion Załadowane profile: Tomas Platform: Microsoft Windows 11 Pro Wersja 21H2 22000.1574 (X64) Język: Polski (Polska) Domyślna przeglądarka: Chrome Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe (Brother Industries, Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe (Brother Industries, Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\BrownyInd\Brother\BrIndicator.exe (C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <8> (C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe (C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (C:\Program Files\Palo Alto Networks\GlobalProtect\PanGPS.exe ->) (Palo Alto Networks -> Palo Alto Networks) C:\Program Files\Palo Alto Networks\GlobalProtect\PanGPA.exe (C:\Program Files\SteelSeries\GG\apps\engine\SteelSeriesEngine.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\apps\engine\prism\SteelSeriesPrism.exe (C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\apps\engine\SteelSeriesEngine.exe (C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.3400.0.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\110.0.1587.57\msedgewebview2.exe <6> (cmd.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe (Discord Inc. -> Discord Inc.) C:\Users\Tomas\AppData\Local\Discord\app-1.0.9011\Discord.exe <6> (DriverStore\FileRepository\u0388766.inf_amd64_2e0df55a120c45e7\B388577\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0388766.inf_amd64_2e0df55a120c45e7\B388577\atieclxx.exe (explorer.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Windows\System32\AMD\ANR\AMDNoiseSuppression.exe (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <41> (explorer.exe ->) (Majestic Games Limited -> Majestic RP) C:\Users\Tomas\AppData\Local\MajesticLauncherEU\Majestic Launcher.exe <4> (explorer.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> ) C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe (explorer.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe (explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\GraphicsCardEngine.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe (services.exe ->) () [Brak podpisu cyfrowego] C:\Program Files (x86)\Gigabyte\AppCenter\AdjustService.exe (services.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe (services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0388766.inf_amd64_2e0df55a120c45e7\B388577\atiesrxx.exe (services.exe ->) (Brother Industries, Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Browny02\BrYNSvc.exe (services.exe ->) (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\EasyTuneEngineService.exe (services.exe ->) (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Windows\System32\GigabyteUpdateService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (services.exe ->) (JOHN MAUTARI -> Mr. John aka japamd) [Brak podpisu cyfrowego] C:\Program Files (x86)\RadeonPro\RadeonProSupport.exe (services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Palo Alto Networks -> Palo Alto Networks) C:\Program Files\Palo Alto Networks\GlobalProtect\PanGPS.exe (services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe (sihost.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\HelpPane.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [SteelSeriesGG] => C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe [12948352 2023-02-28] (SteelSeries ApS -> SteelSeries ApS) HKLM\...\Run: [RtkAudUService] => "C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_85cff5320735903d\RtkAudUService64.exe" -background (Brak pliku) HKLM\...\Run: [XMouseButtonControl] => C:\Program Files\Highresolution Enterprises\X-Mouse Button Control\XMouseButtonControl.exe [1684216 2020-05-13] (Open Source Developer, Phillip Gibbons -> Highresolution Enterprises) HKLM\...\Run: [GlobalProtect] => C:\Program Files\Palo Alto Networks\GlobalProtect\PanGPA.exe [10688360 2022-05-23] (Palo Alto Networks -> Palo Alto Networks) HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [4509184 2012-12-27] (Brother Industries, Ltd.) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [BrStsInd00] => C:\Program Files (x86)\BrownyInd\Brother\BrIndicator.exe [1885184 2012-12-18] (Brother Industries, Ltd.) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [126403424 2022-03-21] (Microsoft Corporation -> Microsoft Corporation) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Ograniczenia <==== UWAGA HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Ograniczenia <==== UWAGA HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Ograniczenia <==== UWAGA HKU\S-1-5-21-290103846-3883716069-1865341971-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4253032 2023-02-14] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-290103846-3883716069-1865341971-1001\...\Run: [Discord] => C:\Users\Tomas\AppData\Local\Discord\Update.exe [1522176 2022-06-08] (Discord Inc. -> GitHub) HKU\S-1-5-21-290103846-3883716069-1865341971-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32823760 2023-02-17] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-290103846-3883716069-1865341971-1001\...\Run: [com.blitz.app] => C:\Users\Tomas\AppData\Local\Programs\Blitz\Blitz.exe [139129544 2023-03-02] (Swift Media Entertainment, Inc. -> Blitz, Inc.) HKU\S-1-5-21-290103846-3883716069-1865341971-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Tomas\AppData\Local\Microsoft\Teams\Update.exe [2587456 2023-02-12] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKU\S-1-5-21-290103846-3883716069-1865341971-1001\...\Run: [Medal] => C:\Users\Tomas\AppData\Local\Medal\update.exe [1974144 2023-02-17] (Ferox Games B.V. -> ) HKU\S-1-5-21-290103846-3883716069-1865341971-1001\...\Run: [MicrosoftEdgeAutoLaunch_5C0488033502362AC4283C7AB99D5FE1] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4243408 2023-02-25] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-290103846-3883716069-1865341971-1001\...\Run: [AMDNoiseSuppression] => C:\WINDOWS\system32\AMD\ANR\AMDNoiseSuppression.exe [155544 2022-08-12] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\110.0.5481.178\Installer\chrmstp.exe [2023-02-28] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{25CA8579-1BD8-469c-B9FC-6AC45A161C18}] -> C:\WINDOWS\system32\PanV2CredProv.dll [2022-05-23] (Palo Alto Networks -> ) HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> Startup: C:\Users\Tomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GameRanger.lnk [2022-09-15] ShortcutTarget: GameRanger.lnk -> C:\Users\Tomas\AppData\Roaming\GameRanger\GameRanger\GameRanger.exe (GameRanger Technologies -> GameRanger Pty Ltd) ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {32360353-478D-46C5-B94E-F519B5C736B8} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1024440 2023-02-17] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) Task: {37B3CBB6-A536-47BB-B043-7756957EA362} - System32\Tasks\SIV => C:\Program Files (x86)\GIGABYTE\SIV\Thermald.exe [389504 2022-02-18] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) Task: {436BF24F-48C2-44C8-94ED-0E99188DB25A} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4184976 2023-02-01] (Microsoft Corporation -> Microsoft Corporation) Task: {4E1539B8-BC1A-471B-9BA6-D068E7ABDD6E} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26334600 2023-02-23] (Microsoft Corporation -> Microsoft Corporation) Task: {53C74254-0439-448E-A290-E84334C2ED96} - System32\Tasks\GoogleUpdateTaskMachineUA{D53ED9DF-AF3A-4DD0-BC3A-E0327B0AC3F6} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-06-22] (Google LLC -> Google LLC) Task: {59F07995-892E-4A52-9B39-266579DBCA9B} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1024440 2023-02-17] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) Task: {62F8C02B-64EA-403C-B585-D340241FC36E} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [56760 2023-02-17] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) Task: {6BB5FB09-BCAD-4A60-ABE8-563A6F8A2CA2} - System32\Tasks\GoogleUpdateTaskMachineCore{801453B9-1663-45C7-89DC-6C0573942CD6} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-06-22] (Google LLC -> Google LLC) Task: {6E16379E-6A8F-4C60-A0F2-52460F545CE9} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [168920 2023-02-03] (Microsoft Corporation -> Microsoft Corporation) Task: {90A578B0-66D0-450C-AC44-EEE09F168393} - System32\Tasks\GraphicsCardEngine => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngineStarter.exe [234880 2021-04-13] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) Task: {A70DE84A-1BA6-4B51-906F-3E2AA5B03CD8} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [291768 2023-02-17] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) Task: {B28CCF89-261D-4635-8B6A-9B49F7768BFD} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144264 2023-02-23] (Microsoft Corporation -> Microsoft Corporation) Task: {B30CE672-3AEC-4067-AEC9-3E6E9156C54D} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1024440 2023-02-17] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) Task: {B7C41A3B-0DDC-4424-B080-26E16C8C3D1D} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144264 2023-02-23] (Microsoft Corporation -> Microsoft Corporation) Task: {BD06468A-28CA-4395-899D-BC5A4D5BB9EE} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-290103846-3883716069-1865341971-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4184976 2023-02-01] (Microsoft Corporation -> Microsoft Corporation) Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (Brak pliku) Task: {D36E4A6C-3F87-424F-9B49-587FED12268C} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe [3825768 2023-02-23] (Microsoft Corporation -> Microsoft Corporation) Task: {E39C0FD4-B2BF-4B5A-A811-79F0A2372901} - System32\Tasks\SIV-VGA => C:\Program Files (x86)\GIGABYTE\SIV\Sensord.exe [257408 2021-06-29] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) Task: {FCF2B738-B01A-47FE-8104-75271FAFCBB4} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26334600 2023-02-23] (Microsoft Corporation -> Microsoft Corporation) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\..\Interfaces\{8d9137a6-32fc-4a25-a5d4-7f4ee4cf0447}: [DhcpNameServer] 192.168.0.1 Edge: ======= Edge Profile: C:\Users\Tomas\AppData\Local\Microsoft\Edge\User Data\Default [2023-03-02] FireFox: ======== FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-12-12] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-12-12] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-12-12] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\Tomas\AppData\Local\Google\Chrome\User Data\Default [2023-03-02] CHR Notifications: Default -> hxxps://www.pyszne.pl CHR Extension: (uBlock Origin) - C:\Users\Tomas\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2023-02-22] CHR Extension: (alerabat.com | kupony i cashback) - C:\Users\Tomas\AppData\Local\Google\Chrome\User Data\Default\Extensions\dacdinoicboceafielngnmjjplncljhj [2023-02-20] CHR Extension: (Dokumenty Google offline) - C:\Users\Tomas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-02-14] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Tomas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-06-22] CHR Profile: C:\Users\Tomas\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-03-02] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 AntiCheatExpert Service; C:\Program Files\AntiCheatExpert\SGuard\x64\SGuardSvc64.exe [2688544 2022-07-07] (PUBG CORPORATION -> ) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8885112 2022-06-22] (BattlEye Innovations e.K. -> ) R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112 2012-10-26] (Brother Industries, Ltd.) [Brak podpisu cyfrowego] R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12554240 2023-02-23] (Microsoft Corporation -> Microsoft Corporation) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [813032 2022-07-14] (EasyAntiCheat Oy -> Epic Games, Inc) S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [935344 2023-02-06] (EasyAntiCheat Oy -> Epic Games, Inc.) S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934368 2022-03-03] (Epic Games Inc. -> Epic Games, Inc.) S3 FACEITService; C:\Program Files\FACEIT AC\faceitservice.exe [24814984 2022-11-16] (FACE IT LIMITED -> ) S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.007.0109.0004\FileSyncHelper.exe [3484544 2023-02-01] (Microsoft Corporation -> Microsoft Corporation) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9002208 2023-03-02] (Malwarebytes Inc. -> Malwarebytes) R2 MyService1; C:\Program Files (x86)\Gigabyte\AppCenter\AdjustService.exe [18944 2021-04-08] () [Brak podpisu cyfrowego] S2 OCButtonService; C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\OcButtonService.exe [127360 2021-04-13] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) S3 OfficeSvcManagerAddons; C:\WINDOWS\system32\dllhost.exe /Processid:{2CA2E202-932F-4BA2-8771-195BB86398F5} [45368 2021-06-05] (Microsoft Windows -> Microsoft Corporation) S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.007.0109.0004\OneDriveUpdaterService.exe [3854208 2023-02-01] (Microsoft Corporation -> Microsoft Corporation) R2 PanGPS; C:\Program Files\Palo Alto Networks\GlobalProtect\PanGPS.exe [7511400 2022-05-23] (Palo Alto Networks -> Palo Alto Networks) R2 RadeonPro Support Service; C:\Program Files (x86)\RadeonPro\RadeonProSupport.exe [20608 2013-11-04] (JOHN MAUTARI -> Mr. John aka japamd) [Brak podpisu cyfrowego] S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [2196464 2023-02-21] (Rockstar Games, Inc. -> Rockstar Games) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [245216 2023-02-17] (Microsoft Windows Publisher -> Microsoft Corporation) S3 SteelSeriesUpdateService; C:\Program Files\SteelSeries\GG\SteelSeriesUpdateService.exe [35200 2023-02-28] (SteelSeries ApS -> ) S3 ucldr_battlegrounds_gl; C:\Program Files\Common Files\Wellbia.com\ucldr_battlegrounds_gl.exe [5950504 2022-11-29] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\NisSrv.exe [3191256 2023-02-15] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MsMpEng.exe [133576 2023-02-15] (Microsoft Windows Publisher -> Microsoft Corporation) S3 zksvc; C:\Program Files\Common Files\PUBG\zksvc.exe [10011208 2022-11-29] (PUBG CORPORATION -> KRAFTON, Inc) R2 GigabyteUpdateService; C:\WINDOWS\system32\GigabyteUpdateService.exe [869032 2023-03-02] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.) ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [36248 2022-10-14] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_1a1a381a2c0e293c\amdsafd.sys [113056 2022-08-25] (Advanced Micro Devices Inc. -> Advanced Micro Devices) R3 AmdTools64; C:\WINDOWS\System32\drivers\AmdTools64.sys [63392 2020-06-16] (Microsoft Windows Hardware Compatibility Publisher -> ) R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0388766.inf_amd64_2e0df55a120c45e7\B388577\amdkmdag.sys [99809672 2023-02-24] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [59920 2022-05-31] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) S3 atvi-brynhildr; C:\ProgramData\Battle.net_components\brynhildr_odin2\brynhildr.sys [2188544 2022-07-15] (Activision Publishing Inc -> Activision Blizzard, Inc.) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [507904 2022-06-22] (Microsoft Corporation) [Brak podpisu cyfrowego] S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [180224 2022-06-22] (Microsoft Corporation) [Brak podpisu cyfrowego] S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [98304 2021-06-05] (Microsoft Corporation) [Brak podpisu cyfrowego] S4 EasyAntiCheat_EOSSys; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.sys [13712896 2023-03-02] (EasyAntiCheat Oy -> EasyAntiCheat Oy) R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [158640 2023-03-02] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R1 FACEIT; C:\WINDOWS\System32\Drivers\FACEIT.sys [16837136 2022-11-28] (Microsoft Windows Hardware Compatibility Publisher -> ) R3 gdrv3; C:\Windows\System32\drivers\gdrv3.sys [41480 2022-06-22] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.) R3 iaLPSS2_GPIO2_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_774a66f35d00ad3d\iaLPSS2_GPIO2_ADL.sys [140960 2022-12-13] (Intel Corporation -> Intel Corporation) R3 iaLPSS2_I2C_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_adl.inf_amd64_1ebed6f33a1c1014\iaLPSS2_I2C_ADL.sys [210600 2022-12-13] (Intel Corporation -> Intel Corporation) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223176 2023-03-02] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-03-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [198112 2023-03-02] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [77736 2023-03-02] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2023-03-02] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [181816 2023-03-02] (Malwarebytes Inc. -> Malwarebytes) S3 PanGpd; C:\WINDOWS\system32\DRIVERS\pangpd.sys [71968 2022-05-23] (Palo Alto Networks -> Palo Alto Networks Inc.) R3 rt25cx21; C:\WINDOWS\System32\DriverStore\FileRepository\rt25cx21x64.inf_amd64_affac63db0770a78\rt25cx21x64.sys [713112 2022-12-13] (Realtek Semiconductor Corp. -> Realtek) R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [36824 2020-07-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> ) R3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [47784 2022-05-03] (SteelSeries ApS -> SteelSeries ApS) R3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [43936 2023-02-27] (Microsoft Windows Hardware Compatibility Publisher -> SteelSeries ApS) R3 SteelSeries_Sonar_VAD; C:\WINDOWS\System32\DriverStore\FileRepository\steelseries-sonar-vad.inf_amd64_6979b8a94c20d77f\SteelSeries-Sonar-VAD.sys [93872 2023-01-10] (SteelSeries ApS -> Windows (R) Win 7 DDK provider) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49576 2023-02-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [473336 2023-02-15] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99576 2023-02-15] (Microsoft Windows -> Microsoft Corporation) S3 xhunter1; C:\WINDOWS\xhunter1.sys [1445920 2022-11-29] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) S1 CTIIO; \??\C:\WINDOWS\system32\drivers\CtiIo64.sys [X] S3 HWiNFO_171; \??\C:\Users\Tomas\AppData\Local\Temp\HWiNFO64A_171.SYS [X] <==== UWAGA S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-03-02 17:55 - 2023-03-02 17:55 - 000007605 _____ C:\Users\Tomas\AppData\Local\Resmon.ResmonCfg 2023-03-02 17:25 - 2023-03-02 17:25 - 000181816 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys 2023-03-02 17:25 - 2023-03-02 17:25 - 000000000 ____D C:\Users\Tomas\AppData\LocalLow\IGDump 2023-03-02 17:14 - 2023-03-02 17:14 - 000000000 ____D C:\Users\Tomas\Documents\RadeonPro Logs 2023-03-02 17:14 - 2023-03-02 17:14 - 000000000 ____D C:\Users\Tomas\Documents\RadeonPro Benchmarks 2023-03-02 17:14 - 2023-03-02 17:14 - 000000000 ____D C:\Users\Tomas\AppData\Roaming\RadeonPro 2023-03-02 17:12 - 2023-03-02 17:12 - 003624936 _____ (John Mautari ) C:\Users\Tomas\Downloads\RadeonPro_Preview_R.exe 2023-03-02 17:12 - 2023-03-02 17:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RadeonPro 2023-03-02 17:12 - 2023-03-02 17:12 - 000000000 ____D C:\Program Files (x86)\RadeonPro 2023-03-02 17:09 - 2023-03-02 17:10 - 000000000 ____D C:\Users\Tomas\Desktop\radeonmod 2023-03-02 17:09 - 2023-03-02 17:09 - 000706887 _____ C:\Users\Tomas\Downloads\[Guru3D.com]-RadeonMod.zip 2023-03-02 16:45 - 2023-03-02 16:45 - 000000000 ____D C:\Users\Tomas\AppData\LocalLow\AMD 2023-03-02 16:44 - 2023-03-02 16:45 - 000000000 ____D C:\ProgramData\AMD 2023-03-02 16:44 - 2023-03-02 16:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Software꞉ Adrenalin Edition 2023-03-02 16:44 - 2023-03-02 16:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Bug Report Tool 2023-03-02 16:43 - 2023-02-24 00:44 - 002248024 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2023-03-02 16:43 - 2023-02-24 00:44 - 002248024 _____ C:\WINDOWS\system32\vulkaninfo.exe 2023-03-02 16:43 - 2023-02-24 00:44 - 001654664 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2023-03-02 16:43 - 2023-02-24 00:44 - 001654664 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2023-03-02 16:43 - 2023-02-24 00:44 - 001472944 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2023-03-02 16:43 - 2023-02-24 00:44 - 001472944 _____ C:\WINDOWS\system32\vulkan-1.dll 2023-03-02 16:43 - 2023-02-24 00:44 - 001196368 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2023-03-02 16:43 - 2023-02-24 00:44 - 001196368 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2023-03-02 16:43 - 2023-02-24 00:44 - 000801160 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Rapidfire64.dll 2023-03-02 16:43 - 2023-02-24 00:44 - 000678280 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\Rapidfire.dll 2023-03-02 16:43 - 2023-02-24 00:44 - 000606040 _____ C:\WINDOWS\system32\GameManager64.dll 2023-03-02 16:43 - 2023-02-24 00:44 - 000547680 _____ C:\WINDOWS\system32\libsmi_guest.dll 2023-03-02 16:43 - 2023-02-24 00:44 - 000542040 _____ C:\WINDOWS\system32\dgtrayicon.exe 2023-03-02 16:43 - 2023-02-24 00:44 - 000541064 _____ C:\WINDOWS\system32\libsmi_host.dll 2023-03-02 16:43 - 2023-02-24 00:44 - 000502104 _____ C:\WINDOWS\system32\EEURestart.exe 2023-03-02 16:43 - 2023-02-24 00:44 - 000459656 _____ C:\WINDOWS\SysWOW64\GameManager32.dll 2023-03-02 16:43 - 2023-02-24 00:44 - 000360792 _____ C:\WINDOWS\system32\clinfo.exe 2023-03-02 16:43 - 2023-02-24 00:44 - 000206168 _____ C:\WINDOWS\system32\mantle64.dll 2023-03-02 16:43 - 2023-02-24 00:44 - 000185736 _____ C:\WINDOWS\system32\mantleaxl64.dll 2023-03-02 16:43 - 2023-02-24 00:44 - 000163168 _____ C:\WINDOWS\SysWOW64\mantle32.dll 2023-03-02 16:43 - 2023-02-24 00:44 - 000147336 _____ C:\WINDOWS\SysWOW64\mantleaxl32.dll 2023-03-02 16:43 - 2023-02-24 00:44 - 000051080 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\RapidFireServer64.dll 2023-03-02 16:43 - 2023-02-24 00:44 - 000047960 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\RapidFireServer.dll 2023-03-02 16:43 - 2023-02-24 00:43 - 002028888 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll 2023-03-02 16:43 - 2023-02-24 00:43 - 001547608 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll 2023-03-02 16:43 - 2023-02-24 00:43 - 001547608 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll 2023-03-02 16:43 - 2023-02-24 00:43 - 000947032 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe 2023-03-02 16:43 - 2023-02-24 00:43 - 000535384 _____ C:\WINDOWS\system32\atieah64.exe 2023-03-02 16:43 - 2023-02-24 00:43 - 000472920 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll 2023-03-02 16:43 - 2023-02-24 00:43 - 000404312 _____ C:\WINDOWS\SysWOW64\atieah32.exe 2023-03-02 16:43 - 2023-02-24 00:43 - 000266072 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll 2023-03-02 16:43 - 2023-02-24 00:43 - 000226648 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll 2023-03-02 16:43 - 2023-02-24 00:43 - 000210056 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll 2023-03-02 16:43 - 2023-02-24 00:43 - 000195928 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll 2023-03-02 16:43 - 2023-02-24 00:43 - 000183688 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll 2023-03-02 16:43 - 2023-02-24 00:43 - 000173000 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll 2023-03-02 16:43 - 2023-02-24 00:43 - 000146824 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll 2023-03-02 16:43 - 2023-02-24 00:43 - 000144216 _____ C:\WINDOWS\system32\atidxx64.dll 2023-03-02 16:43 - 2023-02-24 00:43 - 000118112 _____ C:\WINDOWS\SysWOW64\atidxx32.dll 2023-03-02 16:43 - 2023-02-24 00:42 - 000142256 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll 2023-03-02 16:43 - 2023-02-24 00:42 - 000074672 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ati2erec.dll 2023-03-02 16:43 - 2023-02-24 00:41 - 084666288 _____ C:\WINDOWS\SysWOW64\amd_comgr32.dll 2023-03-02 16:43 - 2023-02-24 00:41 - 000524168 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2023-03-02 16:43 - 2023-02-24 00:41 - 000389512 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2023-03-02 16:43 - 2023-02-24 00:41 - 000118192 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll 2023-03-02 16:43 - 2023-02-24 00:40 - 100645296 _____ C:\WINDOWS\system32\amd_comgr.dll 2023-03-02 16:43 - 2023-02-24 00:38 - 007200168 _____ C:\WINDOWS\system32\amdsmi.exe 2023-03-02 16:43 - 2023-02-24 00:38 - 002266504 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdsasrv64.dll 2023-03-02 16:43 - 2023-02-24 00:38 - 001320288 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdsacli64.dll 2023-03-02 16:43 - 2023-02-24 00:38 - 001048968 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdsacli32.dll 2023-03-02 16:43 - 2023-02-24 00:38 - 000138120 _____ C:\WINDOWS\system32\amdxc64.dll 2023-03-02 16:43 - 2023-02-24 00:38 - 000113544 _____ C:\WINDOWS\SysWOW64\amdxc32.dll 2023-03-02 16:43 - 2023-02-24 00:37 - 000167056 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll 2023-03-02 16:43 - 2023-02-24 00:36 - 001725512 _____ (AMD) C:\WINDOWS\system32\amf-mft-mjpeg-decoder64.dll 2023-03-02 16:43 - 2023-02-24 00:36 - 001399976 _____ (AMD) C:\WINDOWS\SysWOW64\amf-mft-mjpeg-decoder32.dll 2023-03-02 16:43 - 2023-02-24 00:36 - 000943024 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll 2023-03-02 16:43 - 2023-02-24 00:36 - 000136496 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll 2023-03-02 16:43 - 2023-02-24 00:35 - 000770952 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll 2023-03-02 16:43 - 2023-02-24 00:35 - 000470920 _____ C:\WINDOWS\system32\amdlogum.exe 2023-03-02 16:43 - 2023-02-24 00:34 - 000231752 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdihk64.dll 2023-03-02 16:43 - 2023-02-24 00:34 - 000187432 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdihk32.dll 2023-03-02 16:43 - 2023-02-24 00:32 - 016175448 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdhip64.dll 2023-03-02 16:43 - 2023-02-24 00:32 - 004310408 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdadlx64.dll 2023-03-02 16:43 - 2023-02-24 00:32 - 004125016 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdadlx32.dll 2023-03-02 16:43 - 2023-02-24 00:32 - 000568200 _____ C:\WINDOWS\system32\amdgfxinfo64.dll 2023-03-02 16:43 - 2023-02-24 00:32 - 000567712 _____ C:\WINDOWS\system32\amdmiracast.dll 2023-03-02 16:43 - 2023-02-24 00:32 - 000431960 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll 2023-03-02 16:43 - 2023-02-24 00:32 - 000176968 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll 2023-03-02 16:43 - 2023-02-24 00:32 - 000167008 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll 2023-03-02 16:43 - 2023-02-24 00:32 - 000136448 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll 2023-03-02 16:43 - 2023-02-24 00:31 - 000151120 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll 2023-03-02 16:43 - 2023-02-23 23:46 - 000154384 _____ C:\WINDOWS\system32\samu_krnl_ci.sbin 2023-03-02 16:43 - 2023-02-23 23:46 - 000138832 _____ C:\WINDOWS\system32\samu_krnl_isv_ci.sbin 2023-03-02 16:43 - 2023-02-23 23:46 - 000128048 _____ C:\WINDOWS\system32\kapp_ci.sbin 2023-03-02 16:43 - 2023-02-23 23:46 - 000121168 _____ C:\WINDOWS\system32\kapp_si.sbin 2023-03-02 16:43 - 2023-02-23 23:45 - 094812032 _____ C:\WINDOWS\system32\amdxc64.so 2023-03-02 16:43 - 2022-10-14 14:21 - 000611256 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdfendrsr.exe 2023-03-02 16:43 - 2022-10-14 14:21 - 000177048 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdfendr.sys 2023-03-02 16:43 - 2022-10-14 14:21 - 000036248 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdfendrmgr.sys 2023-03-02 16:43 - 2022-08-12 20:25 - 000054704 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ANR-bgproc-Lib.dll 2023-03-02 16:43 - 2022-05-31 18:49 - 000059920 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdxe.sys 2023-03-02 16:42 - 2023-03-02 18:07 - 000000000 ____D C:\Users\Tomas\AppData\Local\D3DSCache 2023-03-02 16:42 - 2023-03-02 17:42 - 000000000 ____D C:\Users\Tomas\AppData\Local\AMD_Common 2023-03-02 16:42 - 2023-03-02 16:44 - 000000000 ____D C:\Program Files\AMD 2023-03-02 16:42 - 2023-03-02 16:43 - 000000000 ____D C:\AMD 2023-03-02 16:42 - 2023-03-02 16:42 - 045483152 _____ (AMD Inc.) C:\Users\Tomas\Downloads\amd-software-adrenalin-edition-23.2.2-minimalsetup-230223_web.exe 2023-03-02 16:42 - 2023-03-02 16:42 - 000000000 ____D C:\Users\Tomas\AppData\Local\AMDSoftwareInstaller 2023-03-02 16:38 - 2023-03-02 16:41 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job 2023-03-02 16:38 - 2023-03-02 16:38 - 000000000 ____D C:\WINDOWS\pss 2023-03-02 16:36 - 2023-03-02 16:36 - 001086317 _____ C:\Users\Tomas\Downloads\[Guru3D.com]-DDU.zip 2023-03-02 16:36 - 2023-03-02 16:36 - 000000000 ____D C:\Users\Tomas\Desktop\display driver 2023-03-02 16:26 - 2023-03-02 16:26 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2023-03-02 16:26 - 2023-03-02 16:26 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2023-03-02 16:26 - 2023-03-02 16:26 - 000000000 ____D C:\Users\Tomas\AppData\Local\mbam 2023-03-02 16:26 - 2023-03-02 16:26 - 000000000 ____D C:\ProgramData\Malwarebytes 2023-03-02 16:26 - 2023-03-02 16:26 - 000000000 ____D C:\Program Files\Malwarebytes 2023-03-02 16:25 - 2023-03-02 16:25 - 002580896 _____ (Malwarebytes) C:\Users\Tomas\Downloads\MBSetup.exe 2023-03-02 16:21 - 2023-03-02 18:14 - 000000000 ____D C:\Users\Tomas\Downloads\FRST-OlderVersion 2023-03-02 16:21 - 2023-03-02 18:14 - 000000000 ____D C:\FRST 2023-03-02 16:21 - 2023-03-02 16:22 - 000001692 _____ C:\Users\Tomas\Downloads\Fixlog.txt 2023-03-02 16:21 - 2023-03-02 16:21 - 002378752 _____ (Farbar) C:\Users\Tomas\Downloads\FRST64.exe 2023-03-02 16:21 - 2023-03-02 16:21 - 000000330 _____ C:\Users\Tomas\Downloads\rkjpvcbriqqein.txt 2023-03-02 07:56 - 2023-03-02 07:56 - 000027048 _____ (EasyAntiCheat Oy) C:\WINDOWS\system32\eac_usermode_419611962470.dll 2023-02-25 03:12 - 2023-02-25 03:12 - 000000000 ____D C:\Users\Tomas\AppData\Local\AMDIdentifyWindow 2023-02-24 01:42 - 2023-02-24 01:43 - 000000009 _____ C:\Users\Tomas\Desktop\Nowy Dokument tekstowy (3).txt 2023-02-24 01:26 - 2023-03-02 17:30 - 000003118 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher 2023-02-24 01:26 - 2023-03-02 16:44 - 000003484 _____ C:\WINDOWS\system32\Tasks\ModifyLinkUpdate 2023-02-23 17:27 - 2023-02-23 17:27 - 1109265761 _____ C:\Users\Tomas\Downloads\reduxx.rar 2023-02-21 17:37 - 2023-02-21 17:37 - 000177033 _____ C:\Users\Tomas\Desktop\DKMS_Typizacja Potwierdzająca - Ankieta.pdf 2023-02-18 08:29 - 2023-03-02 16:14 - 000000000 ____D C:\Medal 2023-02-18 08:29 - 2023-03-02 07:55 - 000000000 ____D C:\Users\Tomas\Documents\Medal 2023-02-18 08:29 - 2023-03-01 20:44 - 000000000 ____D C:\Users\Tomas\AppData\Local\Ferox_Games_B.V 2023-02-17 21:53 - 2023-03-02 16:16 - 000000000 ____D C:\Users\Tomas\AppData\Roaming\Medal 2023-02-17 21:53 - 2023-02-17 21:53 - 000002123 _____ C:\Users\Tomas\Desktop\Medal.lnk 2023-02-17 21:53 - 2023-02-17 21:53 - 000000000 ____D C:\Users\Tomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Medal B.V 2023-02-17 21:52 - 2023-03-01 20:44 - 000000000 ____D C:\Users\Tomas\AppData\Local\Medal 2023-02-17 17:02 - 2023-02-17 17:02 - 005524968 _____ C:\Users\Tomas\Downloads\2Take1MenuVIP (1).zip 2023-02-17 13:25 - 2023-02-17 13:27 - 4061789125 _____ C:\Users\Tomas\Downloads\1000 Redux.rar 2023-02-17 13:18 - 2023-02-17 13:18 - 000000222 _____ C:\Users\Tomas\Desktop\Grand Theft Auto V.url 2023-02-17 13:18 - 2023-02-17 13:18 - 000000000 ____D C:\Users\Tomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2023-02-17 07:03 - 2023-02-17 07:03 - 000000000 ___HD C:\$WinREAgent 2023-02-14 13:10 - 2023-02-22 20:40 - 000000000 ____D C:\Users\Tomas\Desktop\do gta 2023-02-14 11:04 - 2023-02-14 11:04 - 000000013 _____ C:\Users\Tomas\Desktop\podejrzani.txt 2023-02-11 16:52 - 2023-02-11 16:52 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf 2023-02-10 17:41 - 2023-02-28 21:50 - 000000000 ____D C:\Users\Tomas\AppData\Roaming\obs-studio 2023-02-10 17:37 - 2023-02-10 17:37 - 000001052 _____ C:\Users\Public\Desktop\OBS Studio.lnk 2023-02-10 17:37 - 2023-02-10 17:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio 2023-02-10 17:37 - 2023-02-10 17:37 - 000000000 ____D C:\Program Files\obs-studio 2023-02-09 19:19 - 2023-02-09 20:01 - 000000000 ____D C:\Users\Tomas\Documents\Bandicam 2023-02-09 19:19 - 2023-02-09 19:19 - 000000000 ____D C:\Users\Tomas\AppData\Roaming\Bandicam Company 2023-02-09 19:16 - 2023-02-09 19:16 - 000000000 ____D C:\Program Files (x86)\BandiMPEG1 2023-02-07 22:06 - 2023-02-07 22:06 - 000000000 _____ C:\Users\Tomas\Desktop\Nowy Dokument tekstowy (2).txt 2023-02-07 17:15 - 2023-02-07 17:15 - 000000000 _____ C:\Users\Tomas\Desktop\asd.txt 2023-02-05 13:41 - 2023-02-05 14:04 - 000000000 ____D C:\Users\Tomas\Desktop\podania 2023-02-04 17:56 - 2023-02-04 17:56 - 000000829 _____ C:\Users\Tomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RAGE Multiplayer.lnk 2023-02-04 17:27 - 2023-03-02 17:55 - 000000000 ____D C:\MAJESTIC_RAGEMP 2023-02-04 17:19 - 2023-03-02 17:43 - 000000000 ____D C:\Users\Tomas\AppData\Roaming\majestic-launcher 2023-02-04 17:19 - 2023-02-05 00:03 - 000002289 _____ C:\Users\Tomas\Desktop\Majestic Launcher.lnk 2023-02-04 17:19 - 2023-02-04 17:19 - 000002297 _____ C:\Users\Tomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Majestic Launcher.lnk 2023-02-04 17:19 - 2023-02-04 17:19 - 000000000 ____D C:\Users\Tomas\AppData\Local\majestic-launcher-updater 2023-02-04 17:19 - 2023-02-04 17:19 - 000000000 ____D C:\Users\Tomas\AppData\Local\MajesticLauncherEU 2023-02-03 19:38 - 2023-02-03 19:39 - 000000000 ____D C:\Users\Tomas\AppData\Roaming\PopstarDevs 2023-02-03 19:37 - 2023-02-17 17:15 - 000000000 ____D C:\Users\Tomas\Desktop\2take1 2023-02-03 19:25 - 2023-02-03 19:26 - 000000009 _____ C:\Users\Tomas\Desktop\radiantcheats.txt 2023-02-01 16:32 - 2023-02-01 16:32 - 001692270 _____ C:\Users\Tomas\Downloads\Krysiak_Miłosz_praktyki-HRC0275148 (1).pdf 2023-02-01 16:31 - 2023-02-01 16:31 - 000570870 _____ C:\Users\Tomas\Downloads\2023_02_01 16_28 Office Lens.pdf 2023-02-01 16:29 - 2023-02-01 16:29 - 000945380 _____ C:\Users\Tomas\Downloads\Krysiak_Miłosz_praktyki-HRC0275148.pdf 2023-02-01 16:29 - 2023-02-01 16:29 - 000448866 _____ C:\Users\Tomas\Downloads\2023_02_01 09_38 Office Lens-HRC0275148.pdf 2023-01-31 01:46 - 2023-02-01 16:54 - 000000000 ____D C:\Users\Tomas\Desktop\kiddion ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-03-02 18:14 - 2022-06-22 14:49 - 000000000 ____D C:\Users\Tomas\AppData\Roaming\discord 2023-03-02 18:10 - 2022-06-22 12:23 - 000000000 ____D C:\Program Files (x86)\Steam 2023-03-02 17:46 - 2022-06-22 11:47 - 000000000 ____D C:\Users\Tomas\AppData\Local\AMD 2023-03-02 17:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemTemp 2023-03-02 17:39 - 2022-06-22 12:28 - 000000000 ____D C:\Program Files (x86)\Google 2023-03-02 17:36 - 2021-06-05 13:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-03-02 17:30 - 2022-06-24 12:40 - 000003110 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate 2023-03-02 17:29 - 2022-06-22 12:54 - 001794264 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2023-03-02 17:29 - 2021-06-05 18:37 - 000796720 _____ C:\WINDOWS\system32\perfh015.dat 2023-03-02 17:29 - 2021-06-05 18:37 - 000157826 _____ C:\WINDOWS\system32\perfc015.dat 2023-03-02 17:29 - 2021-06-05 13:09 - 000000000 ____D C:\WINDOWS\INF 2023-03-02 17:25 - 2022-06-22 14:49 - 000000000 ____D C:\Users\Tomas\AppData\Local\Discord 2023-03-02 17:25 - 2022-06-22 12:51 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2023-03-02 17:25 - 2022-06-22 11:44 - 000091304 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\WINDOWS\system32\GigabyteDownloadAssistant.exe 2023-03-02 17:25 - 2022-06-22 11:40 - 000882856 _____ C:\WINDOWS\system32\wpbbin.exe 2023-03-02 17:25 - 2022-06-22 11:40 - 000869032 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\WINDOWS\system32\GigabyteUpdateService.exe 2023-03-02 17:25 - 2022-06-22 11:40 - 000012288 ___SH C:\DumpStack.log.tmp 2023-03-02 17:25 - 2021-06-05 13:01 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2023-03-02 16:45 - 2022-06-22 12:49 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2023-03-02 16:44 - 2022-06-24 12:40 - 000003152 _____ C:\WINDOWS\system32\Tasks\StartCN 2023-03-02 16:44 - 2022-06-24 12:40 - 000003072 _____ C:\WINDOWS\system32\Tasks\StartDVR 2023-03-02 16:44 - 2022-06-22 11:47 - 000000000 ____D C:\WINDOWS\system32\AMD 2023-03-02 16:44 - 2022-06-22 11:44 - 000000000 ____D C:\Users\Tomas\AppData\Local\Packages 2023-03-02 16:44 - 2022-06-22 11:44 - 000000000 ____D C:\ProgramData\Packages 2023-03-02 16:44 - 2021-06-05 13:10 - 000000000 ___HD C:\Program Files\WindowsApps 2023-03-02 16:44 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\AppReadiness 2023-03-02 16:28 - 2022-09-17 12:32 - 000000000 ____D C:\Users\Tomas\Desktop\Rifbot-Project 2023-03-02 16:26 - 2021-06-05 13:10 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2023-03-02 16:22 - 2022-08-03 16:22 - 000000000 ____D C:\Users\Tomas\AppData\Roaming\Blitz 2023-03-02 16:14 - 2022-08-03 16:22 - 000000032 _____ C:\Users\Tomas\AppData\Roaming\.machineId 2023-03-02 16:13 - 2022-06-22 12:50 - 000000000 ____D C:\Users\Tomas 2023-03-02 15:42 - 2022-06-22 11:53 - 000000000 ____D C:\Users\Tomas\AppData\Roaming\steelseries-gg-client 2023-03-02 14:28 - 2022-11-20 11:53 - 000004224 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{1E487EB9-77C2-47F5-A285-A444141BC9BA} 2023-02-28 17:43 - 2022-06-22 12:29 - 000002253 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2023-02-28 17:43 - 2022-06-22 12:29 - 000002212 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2023-02-27 20:11 - 2023-01-17 15:35 - 000002286 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2023-02-27 20:11 - 2022-06-22 11:40 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-02-27 15:32 - 2022-06-16 16:57 - 000043936 _____ (SteelSeries ApS) C:\WINDOWS\system32\Drivers\sshid.sys 2023-02-24 21:49 - 2022-06-23 15:44 - 000000000 ____D C:\WINDOWS\Minidump 2023-02-24 21:49 - 2022-06-22 11:40 - 001096373 ____N C:\WINDOWS\Minidump\022423-9062-01.dmp 2023-02-24 21:27 - 2022-06-23 16:17 - 000000000 ____D C:\ProgramData\Riot Games 2023-02-23 08:50 - 2022-12-12 16:57 - 000000000 ____D C:\Program Files\Microsoft Office 2023-02-20 00:25 - 2021-06-05 13:10 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2023-02-19 16:56 - 2022-06-22 12:49 - 000474344 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2023-02-19 16:55 - 2021-06-05 18:44 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2023-02-19 16:55 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemResources 2023-02-19 16:55 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\setup 2023-02-19 16:55 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\oobe 2023-02-19 16:55 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\appraiser 2023-02-19 16:55 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\Provisioning 2023-02-19 16:55 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2023-02-19 16:55 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\bcastdvr 2023-02-19 08:55 - 2022-07-07 18:29 - 000000000 ____D C:\Users\Tomas\AppData\Local\log 2023-02-17 21:53 - 2022-06-22 14:49 - 000000000 ____D C:\Users\Tomas\AppData\Local\SquirrelTemp 2023-02-17 19:30 - 2022-06-22 13:19 - 003032368 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\AMDBugReportTool.exe 2023-02-17 07:31 - 2022-06-22 11:50 - 000000000 ____D C:\WINDOWS\system32\SteelSeries 2023-02-17 07:14 - 2022-06-22 11:49 - 000000000 ____D C:\WINDOWS\system32\MRT 2023-02-17 07:11 - 2022-06-22 11:49 - 149955784 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2023-02-17 07:11 - 2021-06-05 13:01 - 000000000 ____D C:\WINDOWS\CbsTemp 2023-02-17 07:07 - 2022-06-22 12:52 - 003111424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2023-02-17 07:02 - 2022-06-22 14:49 - 000002227 _____ C:\Users\Tomas\Desktop\Discord.lnk 2023-02-15 09:02 - 2022-06-22 11:40 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2023-02-15 08:53 - 2022-08-03 16:22 - 000002213 _____ C:\Users\Tomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blitz.lnk 2023-02-15 08:53 - 2022-08-03 16:22 - 000002205 _____ C:\Users\Tomas\Desktop\Blitz.lnk 2023-02-15 08:50 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\ServiceState 2023-02-12 14:13 - 2022-10-12 16:39 - 000002398 _____ C:\Users\Tomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams (work or school).lnk 2023-02-07 21:05 - 2022-06-22 12:51 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2023-02-07 21:05 - 2022-06-22 12:51 - 000003442 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2023-02-07 15:56 - 2023-01-14 18:08 - 000000000 ____D C:\Program Files\Rockstar Games 2023-02-07 15:56 - 2023-01-14 18:08 - 000000000 ____D C:\Program Files (x86)\Rockstar Games 2023-02-06 21:11 - 2022-07-16 23:54 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat_EOS 2023-02-04 23:57 - 2022-12-13 16:30 - 000000000 ____D C:\Program Files\Microsoft OneDrive 2023-02-04 17:30 - 2022-07-16 10:20 - 000000000 ____D C:\Users\Tomas\AppData\Roaming\EasyAntiCheat 2023-02-01 21:40 - 2022-12-12 16:58 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-290103846-3883716069-1865341971-1001 2023-02-01 21:40 - 2022-12-12 16:58 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2023-02-01 21:40 - 2022-12-12 16:58 - 000002176 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2023-02-01 16:36 - 2022-06-22 13:25 - 000000000 ____D C:\Users\Tomas\Desktop\Gry ==================== Pliki w katalogu głównym wybranych folderów ======== 2022-06-27 14:26 - 2022-06-27 20:13 - 000000000 _____ () C:\ProgramData\sldh.dat 2022-08-03 16:22 - 2023-03-02 16:14 - 000000032 _____ () C:\Users\Tomas\AppData\Roaming\.machineId 2023-03-02 17:55 - 2023-03-02 17:55 - 000007605 _____ () C:\Users\Tomas\AppData\Local\Resmon.ResmonCfg ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================