Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 06-10-2023 Uruchomiony przez adam (administrator) BIGOFFICE (MSI MS-7672) (24-10-2023 20:31:02) Uruchomiony z C:\Users\adam\Downloads\FRST64.exe Załadowane profile: adam & kuba Platforma: Microsoft Windows 7 Ultimate Service Pack 1 (X64) Język: Polski (Polska) Domyślna przeglądarka: FF Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe ->) (CHENGDU YIWO Tech Development Co., Ltd. -> ) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe (C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7> (explorer.exe ->) (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe <2> (explorer.exe ->) (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe <2> (explorer.exe ->) (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxtray.exe (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe <2> (explorer.exe ->) (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <12> (explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe <2> (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler64.exe (Renesas Electronics Corporation -> Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe <2> (services.exe ->) (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe (services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\vds.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe (winlogon.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LogonUI.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7233640 2011-06-24] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1353680 2016-11-14] (Microsoft Corporation -> Microsoft Corporation) HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-17] (Renesas Electronics Corporation -> Renesas Electronics Corporation) HKLM-x32\...\Run: [Super-Charger] => C:\Program Files (x86)\MSI\Super-Charger\StartSuperCharger.exe (Brak pliku) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Ograniczenia <==== UWAGA HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA HKU\S-1-5-21-3594772646-711307958-767422707-1001\...\Run: [Opera Browser Assistant] => C:\Users\adam\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [4124056 2023-04-27] (Opera Norway AS -> Opera Software) HKU\S-1-5-21-3594772646-711307958-767422707-1001\...\MountPoints2: {6080705b-704b-11ee-8cae-806e6f6e6963} - F:\DVDSetup.exe HKU\S-1-5-21-3594772646-711307958-767422707-1003\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4375912 2023-09-29] (Valve Corp. -> Valve Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\109.0.5414.120\Installer\chrmstp.exe [2023-10-21] (Google LLC -> Google LLC) GroupPolicy: Ograniczenia ? <==== UWAGA Policies: C:\ProgramData\NTUSER.pol: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {15FCE6B9-5790-454D-826B-05044263B2A3} - System32\Tasks\GoogleUpdateTaskMachineCore{DC1E023F-6C3A-4037-A07B-468A61C22C94} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162080 2023-10-21] (Google LLC -> Google LLC) Task: {EB6996A0-6B0B-40B0-A501-E3048314D02E} - System32\Tasks\GoogleUpdateTaskMachineUA{BE9E2E85-1130-49DC-A9BF-B3930F5049D6} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162080 2023-10-21] (Google LLC -> Google LLC) Task: {76CB1AAA-37CD-4D45-B222-237B75830FB3} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [686496 2023-09-28] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {21E211B6-0304-49D8-8DC9-F0B209A24D3C} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [724384 2023-09-28] (Mozilla Corporation -> Mozilla Foundation) Task: {5F8E2F14-84FE-489F-9197-0B8F3C624254} - System32\Tasks\Opera scheduled assistant Autoupdate 1697922003 => C:\Users\adam\AppData\Local\Programs\Opera\launcher.exe [1977752 2023-04-27] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\adam\AppData\Local\Programs\Opera\assistant" $(Arg0) Task: {FC5044DA-1C64-4400-9A01-FDB572A6B29B} - System32\Tasks\Opera scheduled Autoupdate 1697922003 => C:\Users\adam\AppData\Local\Programs\Opera\launcher.exe [1977752 2023-04-27] (Opera Norway AS -> Opera Software) Task: {7132FCA0-A3F0-431E-9945-C2B58D3DFCAF} - System32\Tasks\Patch WU ESU => C:\Windows\WuEsu\PatchWU.cmd [1838 2020-12-07] () [Brak podpisu cyfrowego] -> (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt Tcpip\Parameters: [DhcpNameServer] 208.67.222.123 208.67.220.123 Tcpip\..\Interfaces\{6A2C69A6-718D-4EAB-8078-0608777226EE}: [DhcpNameServer] 208.67.222.123 208.67.220.123 Tcpip\..\Interfaces\{F1A3B4A1-1BD8-4502-A9D9-86F52E6958F6}: [DhcpNameServer] 208.67.222.123 208.67.220.123 Edge: ======= Edge Profile: C:\Users\adam\AppData\Local\Microsoft\Edge\User Data\Default [2023-10-24] Edge HomePage: Default -> hxxps://www.google.pl/ Edge StartupUrls: Default -> "hxxp://google.pl/" Edge Extension: (uBlock Origin) - C:\Users\adam\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2023-10-22] Edge Extension: (Edge relevant text changes) - C:\Users\adam\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-10-22] FireFox: ======== FF DefaultProfile: AdamNew FF ProfilePath: C:\Users\adam\AppData\Roaming\Mozilla\Firefox\Profiles\xeszcgui.default-esr-1 [2023-10-24] FF Homepage: Mozilla\Firefox\Profiles\xeszcgui.default-esr-1 -> hxxps://www.google.pl/ FF Session Restore: Mozilla\Firefox\Profiles\xeszcgui.default-esr-1 -> [funkcja włączona] FF Extension: (Social Fixer for Facebook) - C:\Users\adam\AppData\Roaming\Mozilla\Firefox\Profiles\xeszcgui.default-esr-1\Extensions\betterfacebook@mattkruse.com.xpi [2023-10-22] FF Extension: (Cookie Manager) - C:\Users\adam\AppData\Roaming\Mozilla\Firefox\Profiles\xeszcgui.default-esr-1\Extensions\cookie-manager@robwu.nl.xpi [2023-10-22] FF Extension: (Enhancer for YouTube™) - C:\Users\adam\AppData\Roaming\Mozilla\Firefox\Profiles\xeszcgui.default-esr-1\Extensions\enhancerforyoutube@maximerf.addons.mozilla.org.xpi [2023-10-22] FF Extension: (Tampermonkey) - C:\Users\adam\AppData\Roaming\Mozilla\Firefox\Profiles\xeszcgui.default-esr-1\Extensions\firefox@tampermonkey.net.xpi [2023-10-22] FF Extension: (Forecastfox (fix version)) - C:\Users\adam\AppData\Roaming\Mozilla\Firefox\Profiles\xeszcgui.default-esr-1\Extensions\forecastfox@s3_fix_version.xpi [2023-10-22] FF Extension: (I don't care about cookies) - C:\Users\adam\AppData\Roaming\Mozilla\Firefox\Profiles\xeszcgui.default-esr-1\Extensions\jid1-KKzOGWgsW3Ao4Q@jetpack.xpi [2023-10-22] FF Extension: (DuckDuckGo Privacy Essentials) - C:\Users\adam\AppData\Roaming\Mozilla\Firefox\Profiles\xeszcgui.default-esr-1\Extensions\jid1-ZAdIEUB7XOzOJw@jetpack.xpi [2023-10-22] FF Extension: (Średnia do Librusa) - C:\Users\adam\AppData\Roaming\Mozilla\Firefox\Profiles\xeszcgui.default-esr-1\Extensions\librus-average-roundel@zdul.xyz.xpi [2023-10-22] FF Extension: (Polska Ciasteczkowa Zgoda) - C:\Users\adam\AppData\Roaming\Mozilla\Firefox\Profiles\xeszcgui.default-esr-1\Extensions\PolishCookieConsentExt@polishannoyancefilters.netlify.com.xpi [2023-10-22] FF Extension: (Save as PDF) - C:\Users\adam\AppData\Roaming\Mozilla\Firefox\Profiles\xeszcgui.default-esr-1\Extensions\save-as-pdf-ff@pdfcrowd.com.xpi [2023-10-22] FF Extension: (Tab Session Manager) - C:\Users\adam\AppData\Roaming\Mozilla\Firefox\Profiles\xeszcgui.default-esr-1\Extensions\Tab-Session-Manager@sienori.xpi [2023-10-22] FF Extension: (uBlock Origin) - C:\Users\adam\AppData\Roaming\Mozilla\Firefox\Profiles\xeszcgui.default-esr-1\Extensions\uBlock0@raymondhill.net.xpi [2023-10-22] FF Extension: (ePUB Reader) - C:\Users\adam\AppData\Roaming\Mozilla\Firefox\Profiles\xeszcgui.default-esr-1\Extensions\{323353ee-cfbd-4178-9676-85566d98c8b1}.xpi [2023-10-22] FF Extension: (EPUBReader) - C:\Users\adam\AppData\Roaming\Mozilla\Firefox\Profiles\xeszcgui.default-esr-1\Extensions\{5384767E-00D9-40E9-B72F-9CC39D655D6F}.xpi [2023-10-22] FF Extension: (New Tab Homepage) - C:\Users\adam\AppData\Roaming\Mozilla\Firefox\Profiles\xeszcgui.default-esr-1\Extensions\{66E978CD-981F-47DF-AC42-E3CF417C1467}.xpi [2023-10-22] FF Extension: (NoScript) - C:\Users\adam\AppData\Roaming\Mozilla\Firefox\Profiles\xeszcgui.default-esr-1\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2023-10-22] FF Extension: (Fixed Zoom) - C:\Users\adam\AppData\Roaming\Mozilla\Firefox\Profiles\xeszcgui.default-esr-1\Extensions\{a655a6b2-69a5-40de-a3b8-3f7f200c95a7}.xpi [2023-10-22] FF Extension: (Add Link to qBittorrent WebUI) - C:\Users\adam\AppData\Roaming\Mozilla\Firefox\Profiles\xeszcgui.default-esr-1\Extensions\{bb20a766-c3c7-4765-b9d2-4cc891ecd172}.xpi [2023-10-22] FF ProfilePath: C:\Users\adam\AppData\Roaming\Mozilla\Firefox\Profiles\7d1ea8e4.default-esr [2023-10-22] FF ProfilePath: C:\Zasoby\Profile Osobiste\Firefox\AdamNew [2023-10-22] FF Homepage: C:\Zasoby\Profile Osobiste\Firefox\AdamNew -> hxxps://www.google.pl/ FF Session Restore: C:\Zasoby\Profile Osobiste\Firefox\AdamNew -> [funkcja włączona] FF Notifications: C:\Zasoby\Profile Osobiste\Firefox\AdamNew -> hxxps://10.0.0.2:10000; hxxps://webchat.freenode.net; hxxps://klient.warta.pl; hxxps://manager.paczkomaty.pl FF NewTabOverride: C:\Zasoby\Profile Osobiste\Firefox\AdamNew -> Enabled: newtaboverride@agenedia.com FF NewTabOverride: C:\Zasoby\Profile Osobiste\Firefox\AdamNew -> Disabled: {66E978CD-981F-47DF-AC42-E3CF417C1467} FF NewTabOverride: C:\Zasoby\Profile Osobiste\Firefox\AdamNew -> Enabled: Tab-Session-Manager@sienori FF NewTabOverride: C:\Zasoby\Profile Osobiste\Firefox\AdamNew -> Enabled: uBlock0@raymondhill.net FF NewTabOverride: C:\Zasoby\Profile Osobiste\Firefox\AdamNew -> Enabled: cookie-manager@robwu.nl FF NewTabOverride: C:\Zasoby\Profile Osobiste\Firefox\AdamNew -> Disabled: jid1-ZAdIEUB7XOzOJw@jetpack FF Extension: (Social Fixer for Facebook) - C:\Zasoby\Profile Osobiste\Firefox\AdamNew\Extensions\betterfacebook@mattkruse.com.xpi [2023-09-13] FF Extension: (Cookie Manager) - C:\Zasoby\Profile Osobiste\Firefox\AdamNew\Extensions\cookie-manager@robwu.nl.xpi [2022-10-08] FF Extension: (Tampermonkey) - C:\Zasoby\Profile Osobiste\Firefox\AdamNew\Extensions\firefox@tampermonkey.net.xpi [2023-07-03] FF Extension: (Forecastfox (fix version)) - C:\Zasoby\Profile Osobiste\Firefox\AdamNew\Extensions\forecastfox@s3_fix_version.xpi [2020-11-23] FF Extension: (I don't care about cookies) - C:\Zasoby\Profile Osobiste\Firefox\AdamNew\Extensions\jid1-KKzOGWgsW3Ao4Q@jetpack.xpi [2023-09-26] FF Extension: (DuckDuckGo Privacy Essentials) - C:\Zasoby\Profile Osobiste\Firefox\AdamNew\Extensions\jid1-ZAdIEUB7XOzOJw@jetpack.xpi [2023-09-25] FF Extension: (Language: English (GB)) - C:\Zasoby\Profile Osobiste\Firefox\AdamNew\Extensions\langpack-en-GB@firefox.mozilla.org.xpi [2023-10-03] FF Extension: (Language: English (US)) - C:\Zasoby\Profile Osobiste\Firefox\AdamNew\Extensions\langpack-en-US@firefox.mozilla.org.xpi [2023-10-03] FF Extension: (Średnia do Librusa) - C:\Zasoby\Profile Osobiste\Firefox\AdamNew\Extensions\librus-average-roundel@zdul.xyz.xpi [2023-06-05] FF Extension: (New Tab Override) - C:\Zasoby\Profile Osobiste\Firefox\AdamNew\Extensions\newtaboverride@agenedia.com.xpi [2021-05-26] FF Extension: (Polska Ciasteczkowa Zgoda) - C:\Zasoby\Profile Osobiste\Firefox\AdamNew\Extensions\PolishCookieConsentExt@polishannoyancefilters.netlify.com.xpi [2023-05-27] FF Extension: (RESTer) - C:\Zasoby\Profile Osobiste\Firefox\AdamNew\Extensions\rester@kuehle.me.xpi [2022-07-23] FF Extension: (Menedżer haseł RoboForm) - C:\Zasoby\Profile Osobiste\Firefox\AdamNew\Extensions\rf-firefox@siber.com.xpi [2023-10-02] FF Extension: (Save as PDF) - C:\Zasoby\Profile Osobiste\Firefox\AdamNew\Extensions\save-as-pdf-ff@pdfcrowd.com.xpi [2023-02-12] FF Extension: (Tab Session Manager) - C:\Zasoby\Profile Osobiste\Firefox\AdamNew\Extensions\Tab-Session-Manager@sienori.xpi [2023-09-14] FF Extension: (uBlock Origin) - C:\Zasoby\Profile Osobiste\Firefox\AdamNew\Extensions\uBlock0@raymondhill.net.xpi [2023-10-03] FF Extension: (uMatrix) - C:\Zasoby\Profile Osobiste\Firefox\AdamNew\Extensions\uMatrix@raymondhill.net.xpi [2021-07-20] FF Extension: (ePub Reader) - C:\Zasoby\Profile Osobiste\Firefox\AdamNew\Extensions\{323353ee-cfbd-4178-9676-85566d98c8b1}.xpi [2021-05-15] FF Extension: (EPUBReader) - C:\Zasoby\Profile Osobiste\Firefox\AdamNew\Extensions\{5384767E-00D9-40E9-B72F-9CC39D655D6F}.xpi [2020-10-30] FF Extension: (New Tab Homepage) - C:\Zasoby\Profile Osobiste\Firefox\AdamNew\Extensions\{66E978CD-981F-47DF-AC42-E3CF417C1467}.xpi [2020-01-23] FF Extension: (NoScript) - C:\Zasoby\Profile Osobiste\Firefox\AdamNew\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2023-09-13] FF Extension: (Fixed Zoom) - C:\Zasoby\Profile Osobiste\Firefox\AdamNew\Extensions\{a655a6b2-69a5-40de-a3b8-3f7f200c95a7}.xpi [2020-01-22] FF Extension: (Add Link to qBittorrent WebUI) - C:\Zasoby\Profile Osobiste\Firefox\AdamNew\Extensions\{bb20a766-c3c7-4765-b9d2-4cc891ecd172}.xpi [2023-02-02] FF Extension: (Web Developer) - C:\Zasoby\Profile Osobiste\Firefox\AdamNew\Extensions\{c45c406e-ab73-11d8-be73-000a95be3b12}.xpi [2020-01-13] FF Extension: (Brak nazwy) - C:\Zasoby\Zasoby_RCKiK\ProfileFirefox\ProfilFirefoxRCKiK_New\extensions\forecastfox@s3_fix_version.xpi [nie znaleziono] FF Extension: (Brak nazwy) - C:\Zasoby\Zasoby_RCKiK\ProfileFirefox\ProfilFirefoxRCKiK_New\extensions\status4evar@caligonstudios.com.xpi [nie znaleziono] FF Extension: (Brak nazwy) - C:\Zasoby\Zasoby_RCKiK\ProfileFirefox\ProfilFirefoxRCKiK_New\extensions\ClassicThemeRestorer@ArisT2Noia4dev.xpi [nie znaleziono] FF Plugin: @microsoft.com/GENUINE -> disabled [Brak pliku] FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Brak pliku] Chrome: ======= CHR Profile: C:\Users\adam\AppData\Local\Google\Chrome\User Data\Default [2023-10-21] CHR Extension: (Dokumenty Google offline) - C:\Users\adam\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-21] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\adam\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-10-21] Opera: ======= OPR Profile: C:\Users\adam\AppData\Roaming\Opera Software\Opera Stable [2023-10-24] OPR Extension: (Rich Hints Agent) - C:\Users\adam\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2023-10-21] OPR Extension: (Opera Wallet) - C:\Users\adam\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2023-10-21] OPR Extension: (Amazon Assistant Promotion) - C:\Users\adam\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2023-10-21] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 EaseUS Agent; C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe [49856 2023-09-06] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation -> Microsoft Corporation) R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation -> Microsoft Corporation) R3 VssEaseusProvider; C:\Windows\system32\dllhost.exe /Processid:{31E5BE8A-F5BE-409C-95E6-2BB7BA45FD6D} [9728 2009-07-14] (Microsoft Windows -> Microsoft Corporation) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2021-07-15] (Microsoft Windows -> Microsoft Corporation) R2 wuauserv; C:\Windows\System32\wuaueng3.dll [2655744 2023-10-22] (Microsoft Corporation) [Brak podpisu cyfrowego] ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 ebrntdrv; C:\Windows\system32\ebrntdrv.sys [27272 2023-06-19] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Brak podpisu cyfrowego] S3 epmdkdrv; C:\Windows\system32\epmdkdrv.sys [27272 2022-12-29] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Brak podpisu cyfrowego] R0 EPMVolFl; C:\Windows\System32\drivers\EPMVolFl.sys [21384 2022-12-29] (CHENGDU YIWO Tech Development Co., Ltd. -> Windows (R) Codename Longhorn DDK provider) [Brak podpisu cyfrowego] R0 EUBKMON; C:\Windows\System32\drivers\EUBKMON.sys [60920 2023-09-06] (CHENGDU YIWO Tech Development Co., Ltd. -> ) R0 EUDCPEPM; C:\Windows\System32\drivers\EUDCPEPM.sys [72144 2022-01-01] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Brak podpisu cyfrowego] R1 EUEDKEPM; C:\Windows\system32\drivers\EUEDKEPM.sys [19408 2022-01-01] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Brak podpisu cyfrowego] S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [14728 2022-12-29] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Brak podpisu cyfrowego] R3 euimgprt; C:\Windows\System32\DRIVERS\euimgprt.sys [29688 2023-09-06] (CHENGDU YIWO Tech Development Co., Ltd. -> ) R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation -> Microsoft Corporation) S3 MpKsle4cf0221; C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{47315BC3-26ED-4E3B-9C98-0A1CECD9AF68}\MpKslDrv.sys [54680 2023-10-22] (Microsoft Windows -> Microsoft Corporation) S3 mtinvme; C:\Windows\system32\drivers\mtinvme.sys [129504 2019-11-05] (Micron Technology, Inc. -> Micron Technology, Inc.) R0 mv91cons; C:\Windows\System32\DRIVERS\mv91cons.sys [24880 2011-03-14] (Marvell Semiconductor -> Marvell Semiconductor Inc.) R0 mvs91xx; C:\Windows\System32\drivers\mvs91xx.sys [342760 2016-04-13] (Marvell Semiconductor, Inc. -> Marvell Semiconductor, Inc.) R3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation -> Microsoft Corporation) R3 nusb3hub; C:\Windows\System32\DRIVERS\nusb3hub.sys [82432 2011-02-10] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation) R3 nusb3xhc; C:\Windows\System32\DRIVERS\nusb3xhc.sys [181760 2011-02-10] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation) S3 nvme; C:\Windows\system32\drivers\nvme.sys [77488 2016-08-17] (Lite-On Technology Corporation -> Windows (R) Win 7 DDK provider) S3 secnvme; C:\Windows\system32\drivers\secnvme.sys [90648 2020-01-21] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd) R0 secnvmeF; C:\Windows\System32\drivers\secnvmeF.sys [30456 2020-01-21] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd) S3 tusb3hub; C:\Windows\system32\drivers\tusb3hub.sys [409128 2017-12-06] (Intel(R) Client Connectivity Division SW -> Intel Corporation) S3 tusb3xhc; C:\Windows\system32\drivers\tusb3xhc.sys [824872 2017-12-06] (Intel(R) Client Connectivity Division SW -> Intel Corporation) S3 MSICDSetup; \??\F:\CDriver64.sys [X] S3 NTIOLib_1_0_3; \??\C:\Program Files (x86)\MSI\Super-Charger\NTIOLib_X64.sys [X] S3 VGPU; System32\drivers\rdvgkmd.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-10-24 20:31 - 2023-10-24 20:31 - 000022769 _____ C:\Users\adam\Downloads\FRST.txt 2023-10-24 20:29 - 2023-10-24 20:31 - 000000000 ____D C:\FRST 2023-10-24 20:28 - 2023-10-24 20:28 - 002383360 _____ (Farbar) C:\Users\adam\Downloads\FRST64.exe 2023-10-22 17:30 - 2023-10-22 17:31 - 000000000 ____D C:\Users\kuba\AppData\Local\Steam 2023-10-22 17:30 - 2023-10-22 17:30 - 000000000 ____D C:\Users\kuba\AppData\Local\CEF 2023-10-22 17:29 - 2023-10-24 20:30 - 000000000 ____D C:\Program Files (x86)\Steam 2023-10-22 17:29 - 2023-10-22 17:29 - 000000963 _____ C:\Users\Public\Desktop\Steam.lnk 2023-10-22 17:29 - 2023-10-22 17:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam 2023-10-22 17:28 - 2023-10-22 17:28 - 002296488 _____ C:\Users\kuba\Downloads\SteamSetup.exe 2023-10-22 17:12 - 2023-10-22 17:12 - 593359681 _____ C:\Windows\MEMORY.DMP 2023-10-22 17:12 - 2023-10-22 17:12 - 000281528 _____ C:\Windows\Minidump\102223-13790-01.dmp 2023-10-22 17:12 - 2023-10-22 17:12 - 000000000 ____D C:\Windows\Minidump 2023-10-22 17:08 - 2023-10-22 17:10 - 000000000 ____D C:\Users\kuba\AppData\Local\GeometryDash 2023-10-22 17:08 - 2023-10-22 17:08 - 000000000 ____D C:\Users\kuba\AppData\Roaming\Goldberg SteamEmu Saves 2023-10-22 17:02 - 2023-10-22 17:02 - 000000000 ____D C:\Users\kuba\AppData\Roaming\Mozilla 2023-10-22 17:02 - 2023-10-22 17:02 - 000000000 ____D C:\Users\kuba\AppData\Local\Mozilla 2023-10-22 16:58 - 2023-10-22 16:58 - 000058016 _____ C:\Users\kuba\AppData\Local\GDIPFONTCACHEV1.DAT 2023-10-22 16:58 - 2023-10-22 16:58 - 000001421 _____ C:\Users\kuba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2023-10-22 16:58 - 2023-10-22 16:58 - 000000020 ___SH C:\Users\kuba\ntuser.ini 2023-10-22 16:58 - 2023-10-22 16:58 - 000000000 _SHDL C:\Users\kuba\Ustawienia lokalne 2023-10-22 16:58 - 2023-10-22 16:58 - 000000000 _SHDL C:\Users\kuba\Szablony 2023-10-22 16:58 - 2023-10-22 16:58 - 000000000 _SHDL C:\Users\kuba\Moje dokumenty 2023-10-22 16:58 - 2023-10-22 16:58 - 000000000 _SHDL C:\Users\kuba\Menu Start 2023-10-22 16:58 - 2023-10-22 16:58 - 000000000 _SHDL C:\Users\kuba\Documents\Moje wideo 2023-10-22 16:58 - 2023-10-22 16:58 - 000000000 _SHDL C:\Users\kuba\Documents\Moje obrazy 2023-10-22 16:58 - 2023-10-22 16:58 - 000000000 _SHDL C:\Users\kuba\Documents\Moja muzyka 2023-10-22 16:58 - 2023-10-22 16:58 - 000000000 _SHDL C:\Users\kuba\Dane aplikacji 2023-10-22 16:58 - 2023-10-22 16:58 - 000000000 _SHDL C:\Users\kuba\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2023-10-22 16:58 - 2023-10-22 16:58 - 000000000 _SHDL C:\Users\kuba\AppData\Local\Historia 2023-10-22 16:58 - 2023-10-22 16:58 - 000000000 _SHDL C:\Users\kuba\AppData\Local\Dane aplikacji 2023-10-22 16:58 - 2023-10-22 16:58 - 000000000 ___SD C:\Users\kuba\AppData\Roaming\Microsoft\SystemCertificates 2023-10-22 16:58 - 2023-10-22 16:58 - 000000000 ___SD C:\Users\kuba\AppData\Roaming\Microsoft\Protect 2023-10-22 16:58 - 2023-10-22 16:58 - 000000000 ___SD C:\Users\kuba\AppData\Roaming\Microsoft\Credentials 2023-10-22 16:58 - 2023-10-22 16:58 - 000000000 ____D C:\Users\kuba\AppData\Roaming\Microsoft\Windows 2023-10-22 16:58 - 2023-10-22 16:58 - 000000000 ____D C:\Users\kuba\AppData\Roaming\Adobe 2023-10-22 16:58 - 2023-10-22 16:58 - 000000000 ____D C:\Users\kuba\AppData\Local\Google 2023-10-22 16:58 - 2023-10-22 16:58 - 000000000 ____D C:\Users\kuba 2023-10-22 16:58 - 2011-04-12 15:32 - 000000000 ____D C:\Users\kuba\AppData\Roaming\Media Center Programs 2023-10-22 16:48 - 2023-10-24 20:28 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2023-10-22 16:48 - 2023-10-24 20:27 - 000000000 ____D C:\Program Files\Mozilla Firefox 2023-10-22 16:48 - 2023-10-22 17:02 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla 2023-10-22 16:48 - 2023-10-22 16:48 - 000002060 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox — tryb prywatny.lnk 2023-10-22 16:48 - 2023-10-22 16:48 - 000000936 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2023-10-22 16:48 - 2023-10-22 16:48 - 000000924 _____ C:\Users\Public\Desktop\Firefox.lnk 2023-10-22 16:48 - 2023-10-22 16:48 - 000000000 ____D C:\Users\adam\AppData\Roaming\Mozilla 2023-10-22 16:48 - 2023-10-22 16:48 - 000000000 ____D C:\Users\adam\AppData\Local\Mozilla 2023-10-22 16:48 - 2023-10-22 16:48 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2023-10-22 16:47 - 2023-10-22 16:47 - 059560168 _____ (Mozilla) C:\Users\adam\Downloads\Firefox Setup 115.3.1esr.exe 2023-10-22 16:45 - 2023-10-22 16:45 - 000001436 _____ C:\Users\adam\Desktop\firefox profile.lnk 2023-10-22 16:43 - 2023-10-22 16:44 - 000000000 ____D C:\Zasoby 2023-10-22 16:16 - 2023-10-22 16:32 - 000000000 ___HD C:\$WINDOWS.~BT 2023-10-22 16:16 - 2023-10-22 16:30 - 000003750 _____ C:\Windows\diagerr.xml 2023-10-22 16:16 - 2023-10-22 16:30 - 000001908 _____ C:\Windows\diagwrn.xml 2023-10-22 16:15 - 2023-10-22 16:15 - 000000000 ___HD C:\$Windows.~WS 2023-10-22 15:14 - 2023-10-22 15:14 - 000000000 ____D C:\easeus_tb_cloud 2023-10-22 15:10 - 2023-10-22 15:10 - 000004096 ___SH C:\{0506533F-4827-4D1C-BB2C-3670AA440BF1}.CBM 2023-10-22 15:07 - 2023-10-22 15:07 - 000263168 ___SH C:\EUMONBMP.SYS 2023-10-22 15:07 - 2023-10-22 15:07 - 000000000 ____D C:\Windows\system32\config\regsave 2023-10-22 15:01 - 2023-10-22 15:03 - 000000000 ____D C:\Users\adam\Downloads\EaseUS Todo Backup Home 2023 Build 20230922 + Keygen 2023-10-22 15:01 - 2023-10-22 15:01 - 001589510 _____ (Igor Pavlov) C:\Users\adam\Downloads\7z2301-x64.exe 2023-10-22 15:01 - 2023-10-22 15:01 - 000000000 ____D C:\Users\adam\Downloads\EaseUS_Todo_Backup_16.0_Multilingual 2023-10-22 15:01 - 2023-10-22 15:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip 2023-10-22 15:01 - 2023-10-22 15:01 - 000000000 ____D C:\Program Files\7-Zip 2023-10-22 14:53 - 2023-10-22 15:04 - 000000000 ____D C:\Users\adam\AppData\Roaming\qBittorrent 2023-10-22 14:53 - 2023-10-22 14:56 - 000000000 ____D C:\Users\adam\Downloads\EaseUS Todo Backup 16.0 + Keygen 2023-10-22 14:53 - 2023-10-22 14:53 - 000000000 ____D C:\Users\adam\AppData\Local\qBittorrent 2023-10-22 14:52 - 2023-10-22 14:52 - 033072492 _____ (The qBittorrent project) C:\Users\adam\Downloads\qbittorrent_4.5.5_x64_setup.exe 2023-10-22 14:52 - 2023-10-22 14:52 - 000000000 ____D C:\Program Files\qBittorrent 2023-10-22 14:45 - 2023-10-22 15:15 - 000000048 _____ C:\Windows\SysWOW64\EUTB.TODL 2023-10-22 14:45 - 2023-10-22 14:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Todo Backup 16.0 2023-10-22 14:45 - 2023-10-22 14:45 - 000000000 ____D C:\ProgramData\EaseUS 2023-10-22 14:45 - 2023-09-06 05:55 - 000033472 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\Windows\system32\fbnative.exe 2023-10-22 14:45 - 2023-09-06 05:51 - 000561656 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\Windows\system32\Drivers\EuFdDisk.sys 2023-10-22 14:45 - 2023-09-06 05:51 - 000081400 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\Windows\system32\Drivers\eubakup.sys 2023-10-22 14:45 - 2023-09-06 05:51 - 000060920 _____ C:\Windows\system32\Drivers\EUBKMON.sys 2023-10-22 14:45 - 2023-09-06 05:51 - 000042488 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\Windows\system32\Drivers\EuFdMount.sys 2023-10-22 14:45 - 2023-09-06 05:51 - 000029688 _____ C:\Windows\system32\Drivers\euimgprt.sys 2023-10-22 14:45 - 2023-09-06 05:51 - 000029688 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\Windows\system32\Drivers\eudskacs.sys 2023-10-22 00:30 - 2023-10-22 15:28 - 000000000 ____D C:\Users\adam\Desktop\tools 2023-10-22 00:27 - 2023-10-22 00:27 - 000000000 ____D C:\Users\adam\AppData\Local\EPMUI 2023-10-22 00:10 - 2023-10-22 14:45 - 000000000 ____D C:\ProgramData\SystemAcCrux 2023-10-22 00:10 - 2023-10-22 14:45 - 000000000 ____D C:\Program Files (x86)\EaseUS 2023-10-22 00:10 - 2023-10-22 00:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Partition Master 2023-10-22 00:10 - 2023-10-22 00:10 - 000000000 ____D C:\Program Files\EaseUS 2023-10-22 00:10 - 2023-08-22 02:14 - 000025792 _____ C:\Windows\system32\EuEpmGdi.dll 2023-10-22 00:10 - 2023-08-22 02:13 - 006035648 _____ C:\Windows\system32\BootMan.exe 2023-10-22 00:10 - 2023-06-19 13:06 - 000163328 _____ C:\Windows\system32\setupdrvx64.exe 2023-10-22 00:10 - 2023-06-19 13:06 - 000027272 _____ C:\Windows\system32\ebrntdrv.sys 2023-10-22 00:10 - 2023-06-19 13:06 - 000000010 _____ C:\Windows\system32\setupdrv.ini 2023-10-22 00:10 - 2022-12-29 13:34 - 000174216 _____ C:\Windows\system32\setupepmdrvx64.exe 2023-10-22 00:10 - 2022-12-29 13:34 - 000027272 _____ C:\Windows\system32\epmdkdrv.sys 2023-10-22 00:10 - 2022-12-29 13:34 - 000021384 _____ (Windows (R) Codename Longhorn DDK provider) C:\Windows\system32\Drivers\EPMVolFl.sys 2023-10-22 00:10 - 2022-12-29 13:34 - 000014728 _____ C:\Windows\system32\EuGdiDrv.sys 2023-10-22 00:10 - 2022-12-29 13:34 - 000000057 _____ C:\Windows\system32\setupepmdrv.ini 2023-10-22 00:10 - 2022-01-01 01:37 - 000072144 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\Windows\system32\Drivers\EUDCPEPM.sys 2023-10-22 00:10 - 2022-01-01 01:37 - 000019408 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\Windows\system32\Drivers\EUEDKEPM.sys 2023-10-21 23:25 - 2023-10-21 23:25 - 000002117 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk 2023-10-21 23:25 - 2023-10-21 23:25 - 000001945 _____ C:\Windows\epplauncher.mif 2023-10-21 23:25 - 2023-10-21 23:25 - 000000000 ____D C:\Program Files\Microsoft Security Client 2023-10-21 23:25 - 2023-10-21 23:25 - 000000000 ____D C:\Program Files (x86)\Microsoft Security Client 2023-10-21 23:17 - 2023-10-21 23:17 - 000001201 _____ C:\Users\adam\Desktop\Pobrane.lnk 2023-10-21 23:12 - 2023-10-21 23:12 - 000001562 _____ C:\Users\adam\Desktop\OMV magazyn (104).lnk 2023-10-21 23:05 - 2023-10-21 23:07 - 000001238 __RSH C:\ProgramData\ntuser.pol 2023-10-21 23:00 - 2023-10-21 23:00 - 000004284 _____ C:\Windows\system32\Tasks\Opera scheduled assistant Autoupdate 1697922003 2023-10-21 23:00 - 2023-10-21 23:00 - 000004094 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1697922003 2023-10-21 23:00 - 2023-10-21 23:00 - 000001304 _____ C:\Users\adam\Desktop\Przeglądarka Opera.lnk 2023-10-21 23:00 - 2023-10-21 23:00 - 000001304 _____ C:\Users\adam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Przeglądarka Opera.lnk 2023-10-21 23:00 - 2023-10-21 23:00 - 000000000 ____D C:\Users\adam\AppData\Local\Opera Software 2023-10-21 22:57 - 2023-10-21 22:57 - 000000000 ____D C:\Users\adam\AppData\Roaming\Opera Software 2023-10-21 22:53 - 2023-10-21 22:54 - 091342424 _____ (Opera Software) C:\Users\adam\Downloads\Opera_95.0.4635.84_Setup.exe 2023-10-21 22:51 - 2023-10-22 16:23 - 000000000 ____D C:\Windows\Panther 2023-10-21 22:48 - 2023-10-22 17:14 - 000000000 ____D C:\Program Files\Google 2023-10-21 22:48 - 2023-10-21 22:48 - 000002248 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2023-10-21 22:48 - 2023-10-21 22:48 - 000002207 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2023-10-21 22:48 - 2023-10-21 22:48 - 000000000 ____D C:\Users\adam\AppData\Local\Google 2023-10-21 22:47 - 2023-10-24 20:27 - 000000000 ____D C:\Program Files (x86)\Google 2023-10-21 22:47 - 2023-10-21 22:47 - 001373744 _____ (Google LLC) C:\Users\adam\Downloads\ChromeSetup.exe 2023-10-21 22:47 - 2023-10-21 22:47 - 000003778 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA{BE9E2E85-1130-49DC-A9BF-B3930F5049D6} 2023-10-21 22:47 - 2023-10-21 22:47 - 000003650 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore{DC1E023F-6C3A-4037-A07B-468A61C22C94} 2023-10-21 22:33 - 2023-10-21 23:15 - 000000000 ____D C:\Program Files (x86)\MSI 2023-10-21 22:28 - 2023-10-21 22:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Renesas Electronics 2023-10-21 22:28 - 2023-10-21 22:28 - 000000000 ____D C:\ProgramData\Downloaded Installations 2023-10-21 22:28 - 2023-10-21 22:28 - 000000000 ____D C:\Program Files (x86)\Renesas Electronics 2023-10-21 22:28 - 2011-02-22 05:59 - 000008192 ____R C:\Windows\system32\Drivers\IntelMEFWVer.dll 2023-10-21 22:27 - 2023-10-21 22:27 - 000000000 ___SD C:\Users\adam\AppData\Roaming\Microsoft\Crypto 2023-10-21 22:27 - 2023-10-21 22:27 - 000000000 ___HD C:\Program Files (x86)\Temp 2023-10-21 22:27 - 2023-10-21 22:27 - 000000000 ____D C:\Windows\SysWOW64\RTCOM 2023-10-21 22:27 - 2023-10-21 22:27 - 000000000 ____D C:\Program Files\Realtek 2023-10-21 22:27 - 2011-06-28 13:15 - 002905832 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys 2023-10-21 22:27 - 2011-06-28 12:08 - 001698408 ____R (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll 2023-10-21 22:27 - 2011-06-28 08:31 - 003115112 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll 2023-10-21 22:27 - 2011-06-28 07:17 - 002428520 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll 2023-10-21 22:27 - 2011-06-27 13:19 - 000092264 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInst64.dll 2023-10-21 22:27 - 2011-06-27 08:45 - 003768152 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek.dll 2023-10-21 22:27 - 2011-06-27 08:44 - 002604376 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib.dll 2023-10-21 22:27 - 2011-06-13 13:04 - 001560680 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl 2023-10-21 22:27 - 2011-06-10 11:35 - 000603472 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll 2023-10-21 22:27 - 2011-06-03 08:11 - 001805928 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll 2023-10-21 22:27 - 2011-05-31 03:42 - 001756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll 2023-10-21 22:27 - 2011-05-31 03:42 - 001568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll 2023-10-21 22:27 - 2011-05-31 03:42 - 001486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll 2023-10-21 22:27 - 2011-05-31 03:42 - 000728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll 2023-10-21 22:27 - 2011-05-31 03:42 - 000712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll 2023-10-21 22:27 - 2011-05-31 03:42 - 000693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll 2023-10-21 22:27 - 2011-05-31 03:42 - 000491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll 2023-10-21 22:27 - 2011-05-31 03:42 - 000432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll 2023-10-21 22:27 - 2011-05-31 03:42 - 000428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll 2023-10-21 22:27 - 2011-05-31 03:42 - 000242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll 2023-10-21 22:27 - 2011-05-31 03:42 - 000242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll 2023-10-21 22:27 - 2011-05-31 03:42 - 000241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll 2023-10-21 22:27 - 2011-05-23 11:12 - 001245288 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll 2023-10-21 22:27 - 2011-05-05 09:24 - 002085440 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll 2023-10-21 22:27 - 2011-05-05 08:15 - 000220512 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll 2023-10-21 22:27 - 2011-05-05 08:14 - 000081248 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll 2023-10-21 22:27 - 2011-05-05 08:14 - 000078176 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll 2023-10-21 22:27 - 2011-05-02 08:27 - 003308376 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll 2023-10-21 22:27 - 2011-05-02 08:27 - 000426328 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll 2023-10-21 22:27 - 2011-05-02 08:27 - 000136024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll 2023-10-21 22:27 - 2011-05-02 08:27 - 000118104 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll 2023-10-21 22:27 - 2011-05-02 08:27 - 000074072 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll 2023-10-21 22:27 - 2010-11-18 05:49 - 000121744 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll 2023-10-21 22:27 - 2010-11-08 01:31 - 000375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll 2023-10-21 22:27 - 2010-11-08 01:31 - 000310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll 2023-10-21 22:27 - 2010-11-08 01:31 - 000310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll 2023-10-21 22:27 - 2010-11-08 01:31 - 000204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll 2023-10-21 22:27 - 2010-11-08 01:31 - 000101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll 2023-10-21 22:27 - 2010-11-08 01:31 - 000078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll 2023-10-21 22:27 - 2010-11-03 12:31 - 000332392 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll 2023-10-21 22:27 - 2010-11-03 12:30 - 000149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll 2023-10-21 22:27 - 2010-10-03 07:46 - 000341336 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll 2023-10-21 22:27 - 2010-09-27 03:34 - 000318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll 2023-10-21 22:27 - 2010-07-22 10:48 - 000074064 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll 2023-10-21 22:27 - 2010-07-22 10:37 - 000200800 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll 2023-10-21 22:27 - 2010-05-06 11:34 - 000334680 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll 2023-10-21 22:27 - 2009-11-24 03:55 - 000518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll 2023-10-21 22:27 - 2009-11-24 03:55 - 000211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll 2023-10-21 22:27 - 2009-11-24 03:55 - 000198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll 2023-10-21 22:27 - 2009-11-24 03:55 - 000155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll 2023-10-21 22:27 - 2009-11-18 12:42 - 002197264 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll 2023-10-21 22:27 - 2009-11-17 12:12 - 000108960 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll 2023-10-21 22:26 - 2023-10-21 22:26 - 000000000 ____D C:\Users\adam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Marvell 2023-10-21 22:26 - 2023-10-21 22:26 - 000000000 ____D C:\Program Files (x86)\Marvell 2023-10-21 22:25 - 2023-10-21 22:33 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2023-10-21 22:25 - 2023-10-21 22:27 - 000000000 ____D C:\Program Files (x86)\Realtek 2023-10-21 22:25 - 2011-06-10 08:34 - 000539240 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys 2023-10-21 22:25 - 2011-06-10 08:34 - 000074272 _____ C:\Windows\system32\RtNicProp64.dll 2023-10-21 22:24 - 2011-04-15 16:00 - 000053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll 2023-10-21 22:21 - 2023-10-21 22:28 - 000000000 ____D C:\Program Files (x86)\Intel 2023-10-21 22:21 - 2023-10-21 22:21 - 000058016 _____ C:\Users\adam\AppData\Local\GDIPFONTCACHEV1.DAT 2023-10-21 22:21 - 2023-10-21 22:21 - 000000000 ____D C:\Intel 2023-10-21 22:17 - 2023-10-21 23:51 - 001640128 _____ C:\Windows\SysWOW64\PerfStringBackup.INI 2023-10-21 22:14 - 2023-10-21 22:15 - 000000000 ____D C:\Windows\system32\MRT 2023-10-21 22:02 - 2023-10-21 22:02 - 000000000 ___SD C:\Users\adam\AppData\Roaming\Microsoft\SystemCertificates 2023-10-21 22:02 - 2023-10-21 22:02 - 000000000 ____D C:\Users\adam\AppData\Roaming\Microsoft\MMC 2023-10-21 22:01 - 2023-10-21 22:19 - 000000000 ____D C:\Users\adam\AppData\Roaming\Microsoft\Windows 2023-10-21 22:01 - 2023-10-21 22:01 - 000001421 _____ C:\Users\adam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2023-10-21 22:01 - 2023-10-21 22:01 - 000000020 ___SH C:\Users\adam\ntuser.ini 2023-10-21 22:01 - 2023-10-21 22:01 - 000000000 _SHDL C:\Users\adam\Ustawienia lokalne 2023-10-21 22:01 - 2023-10-21 22:01 - 000000000 _SHDL C:\Users\adam\Szablony 2023-10-21 22:01 - 2023-10-21 22:01 - 000000000 _SHDL C:\Users\adam\Moje dokumenty 2023-10-21 22:01 - 2023-10-21 22:01 - 000000000 _SHDL C:\Users\adam\Menu Start 2023-10-21 22:01 - 2023-10-21 22:01 - 000000000 _SHDL C:\Users\adam\Documents\Moje wideo 2023-10-21 22:01 - 2023-10-21 22:01 - 000000000 _SHDL C:\Users\adam\Documents\Moje obrazy 2023-10-21 22:01 - 2023-10-21 22:01 - 000000000 _SHDL C:\Users\adam\Documents\Moja muzyka 2023-10-21 22:01 - 2023-10-21 22:01 - 000000000 _SHDL C:\Users\adam\Dane aplikacji 2023-10-21 22:01 - 2023-10-21 22:01 - 000000000 _SHDL C:\Users\adam\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2023-10-21 22:01 - 2023-10-21 22:01 - 000000000 _SHDL C:\Users\adam\AppData\Local\Historia 2023-10-21 22:01 - 2023-10-21 22:01 - 000000000 _SHDL C:\Users\adam\AppData\Local\Dane aplikacji 2023-10-21 22:01 - 2023-10-21 22:01 - 000000000 ___SD C:\Users\adam\AppData\Roaming\Microsoft\Protect 2023-10-21 22:01 - 2023-10-21 22:01 - 000000000 ___SD C:\Users\adam\AppData\Roaming\Microsoft\Credentials 2023-10-21 22:01 - 2023-10-21 22:01 - 000000000 ____D C:\Users\adam\AppData\Roaming\Microsoft\Network 2023-10-21 22:01 - 2023-10-21 22:01 - 000000000 ____D C:\Users\adam\AppData\Roaming\Adobe 2023-10-21 22:01 - 2023-10-21 22:01 - 000000000 ____D C:\Users\adam\AppData\Local\VirtualStore 2023-10-21 22:01 - 2023-10-21 22:01 - 000000000 ____D C:\Users\adam 2023-10-21 22:01 - 2011-04-12 15:32 - 000000000 ____D C:\Users\adam\AppData\Roaming\Media Center Programs 2023-10-21 22:00 - 2023-10-21 22:00 - 000000000 _SHDL C:\Users\Public\Documents\Moje wideo 2023-10-21 22:00 - 2023-10-21 22:00 - 000000000 _SHDL C:\Users\Public\Documents\Moje obrazy 2023-10-21 22:00 - 2023-10-21 22:00 - 000000000 _SHDL C:\Users\Public\Documents\Moja muzyka 2023-10-21 22:00 - 2023-10-21 22:00 - 000000000 _SHDL C:\Users\Default\Ustawienia lokalne 2023-10-21 22:00 - 2023-10-21 22:00 - 000000000 _SHDL C:\Users\Default\Szablony 2023-10-21 22:00 - 2023-10-21 22:00 - 000000000 _SHDL C:\Users\Default\Moje dokumenty 2023-10-21 22:00 - 2023-10-21 22:00 - 000000000 _SHDL C:\Users\Default\Menu Start 2023-10-21 22:00 - 2023-10-21 22:00 - 000000000 _SHDL C:\Users\Default\Documents\Moje wideo 2023-10-21 22:00 - 2023-10-21 22:00 - 000000000 _SHDL C:\Users\Default\Documents\Moje obrazy 2023-10-21 22:00 - 2023-10-21 22:00 - 000000000 _SHDL C:\Users\Default\Documents\Moja muzyka 2023-10-21 22:00 - 2023-10-21 22:00 - 000000000 _SHDL C:\Users\Default\Dane aplikacji 2023-10-21 22:00 - 2023-10-21 22:00 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2023-10-21 22:00 - 2023-10-21 22:00 - 000000000 _SHDL C:\Users\Default\AppData\Local\Historia 2023-10-21 22:00 - 2023-10-21 22:00 - 000000000 _SHDL C:\Users\Default\AppData\Local\Dane aplikacji 2023-10-21 22:00 - 2023-10-21 22:00 - 000000000 _SHDL C:\ProgramData\Ulubione 2023-10-21 22:00 - 2023-10-21 22:00 - 000000000 _SHDL C:\ProgramData\Szablony 2023-10-21 22:00 - 2023-10-21 22:00 - 000000000 _SHDL C:\ProgramData\Pulpit 2023-10-21 22:00 - 2023-10-21 22:00 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programy 2023-10-21 22:00 - 2023-10-21 22:00 - 000000000 _SHDL C:\ProgramData\Menu Start 2023-10-21 22:00 - 2023-10-21 22:00 - 000000000 _SHDL C:\ProgramData\Dokumenty 2023-10-21 22:00 - 2023-10-21 22:00 - 000000000 _SHDL C:\ProgramData\Dane aplikacji 2023-10-21 21:55 - 2023-10-22 11:08 - 000002233 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-10-21 21:55 - 2023-10-22 11:08 - 000002192 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2023-10-21 21:55 - 2023-10-21 21:55 - 000001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk 2023-10-21 21:54 - 2023-10-22 11:01 - 000003466 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2023-10-21 21:54 - 2023-10-22 11:01 - 000003338 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2023-10-21 21:54 - 2023-10-21 21:54 - 000001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk 2023-10-21 21:53 - 2023-10-21 21:53 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf 2023-10-21 21:53 - 2023-10-21 21:53 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_iusb3hcs_01009.Wdf 2023-10-21 21:52 - 2023-10-22 17:12 - 002655744 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng3.dll ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-10-24 20:29 - 2011-04-12 15:21 - 000739808 _____ C:\Windows\system32\perfh015.dat 2023-10-24 20:29 - 2011-04-12 15:21 - 000155382 _____ C:\Windows\system32\perfc015.dat 2023-10-24 20:29 - 2009-07-14 07:13 - 001668226 _____ C:\Windows\system32\PerfStringBackup.INI 2023-10-24 20:29 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\Registration 2023-10-24 20:29 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf 2023-10-22 17:20 - 2009-07-14 06:45 - 000037760 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2023-10-22 17:20 - 2009-07-14 06:45 - 000037760 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2023-10-22 17:12 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2023-10-22 16:58 - 2009-07-14 06:57 - 000001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk 2023-10-22 16:23 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\oobe 2023-10-22 01:25 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\rescache 2023-10-22 00:08 - 2009-07-14 06:45 - 000267360 _____ C:\Windows\system32\FNTCACHE.DAT 2023-10-22 00:07 - 2009-07-14 05:20 - 000000000 ____D C:\Program Files\Common Files\System 2023-10-21 23:03 - 2009-07-14 05:20 - 000000000 ___HD C:\Windows\system32\GroupPolicy 2023-10-21 23:00 - 2011-04-12 15:21 - 000000000 ____D C:\Windows\SysWOW64\winrm 2023-10-21 23:00 - 2011-04-12 15:21 - 000000000 ____D C:\Windows\SysWOW64\WCN 2023-10-21 23:00 - 2011-04-12 15:21 - 000000000 ____D C:\Windows\SysWOW64\slmgr 2023-10-21 23:00 - 2011-04-12 15:21 - 000000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts 2023-10-21 23:00 - 2011-04-12 15:21 - 000000000 ____D C:\Windows\system32\winrm 2023-10-21 23:00 - 2011-04-12 15:21 - 000000000 ____D C:\Windows\system32\WCN 2023-10-21 23:00 - 2011-04-12 15:21 - 000000000 ____D C:\Windows\system32\slmgr 2023-10-21 23:00 - 2011-04-12 15:21 - 000000000 ____D C:\Windows\system32\Printing_Admin_Scripts 2023-10-21 23:00 - 2009-07-14 07:32 - 000000000 ____D C:\Program Files\Windows Sidebar 2023-10-21 23:00 - 2009-07-14 07:32 - 000000000 ____D C:\Program Files\Windows Photo Viewer 2023-10-21 23:00 - 2009-07-14 07:32 - 000000000 ____D C:\Program Files\Windows Defender 2023-10-21 23:00 - 2009-07-14 07:32 - 000000000 ____D C:\Program Files\DVD Maker 2023-10-21 23:00 - 2009-07-14 07:32 - 000000000 ____D C:\Program Files (x86)\Windows Sidebar 2023-10-21 23:00 - 2009-07-14 07:32 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2023-10-21 23:00 - 2009-07-14 07:32 - 000000000 ____D C:\Program Files (x86)\Windows Defender 2023-10-21 23:00 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\SysWOW64\migwiz 2023-10-21 23:00 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\SysWOW64\Dism 2023-10-21 23:00 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\migwiz 2023-10-21 23:00 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\Dism 2023-10-21 23:00 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\servicing 2023-10-21 22:51 - 2009-07-14 07:32 - 000028672 _____ C:\Windows\system32\config\BCD-Template 2023-10-21 22:39 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\tracing 2023-10-21 22:34 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\Setup 2023-10-21 22:34 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\PolicyDefinitions 2023-10-21 22:01 - 2009-07-14 06:45 - 000000000 ____D C:\Windows\Setup 2023-10-21 22:00 - 2009-07-14 05:20 - 000000000 __RHD C:\Users\Public\Libraries 2023-10-21 22:00 - 2009-07-14 05:20 - 000000000 ____D C:\Program Files\Windows NT 2023-10-21 21:55 - 2009-07-14 07:32 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2023-10-21 21:54 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\sysprep 2023-10-21 21:52 - 2011-04-12 15:32 - 000000000 ____D C:\Windows\CSC ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) LastRegBack: 2023-10-22 01:11 ==================== Koniec FRST.txt ========================