Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 07-05-2023 01
- Uruchomiony przez erykc (administrator) DESKTOP-4QUP59M (Micro-Star International Co., Ltd MS-7C02) (08-05-2023 12:26:36)
- Uruchomiony z C:\Users\erykc\Downloads\FRST64.exe
- Załadowane profile: erykc
- Platforma: Microsoft Windows 10 Home Wersja 22H2 19045.2846 (X64) Język: Polski (Polska)
- Domyślna przeglądarka: Brave
- Tryb startu: Normal
- ==================== Procesy (filtrowane) =================
- (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)
- (A225F3B5-240D-4EE9-BCF4-697A07F5E93E -> ) C:\Program Files\WindowsApps\9426MICRO-STARINTERNATION.MSICenter_2.0.14.0_x64__kzh8wxbdkxb8p\DCv2\DCv2.exe
- (Brother Industries, Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
- (C:\Program Files (x86)\iVMS320\iVMS320 Watch.exe ->) (Herospeed Digital Technology Limited -> ) C:\Program Files (x86)\iVMS320\iVMS320 Server.exe
- (C:\Program Files (x86)\MSI\MSI Center\MSI.CentralServer.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\MSI Center\Engine\CC_Engine_x64.exe
- (C:\Program Files (x86)\MSI\MSI Center\MSI_Central_Service.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Center\MSI.CentralServer.exe
- (C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_appbroker.exe
- (C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe
- (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
- (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
- (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
- (C:\Users\erykc\AppData\Local\GG\Application\gghub.exe ->) (Xevin Consulting -> GG Network S.A.) C:\Users\erykc\AppData\Local\GG\Application\ggapp.exe
- (C:\Users\erykc\AppData\Local\Programs\nordpass\NordPass.exe ->) (nordvpn s.a. -> ) C:\Users\erykc\AppData\Local\Programs\nordpass\resources\nordpass-background-app.exe
- (Discord Inc. -> Discord Inc.) C:\Users\erykc\AppData\Local\Discord\app-1.0.9013\Discord.exe <6>
- (explorer.exe ->) (GG Network S.A. -> GG Network S.A.) C:\Users\erykc\AppData\Local\GG\Application\gghub.exe
- (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <16>
- (explorer.exe ->) (Herospeed Digital Technology Limited -> ) C:\Program Files (x86)\iVMS320\iVMS 320.exe
- (explorer.exe ->) (nordvpn s.a. -> NordPass Team) C:\Users\erykc\AppData\Local\Programs\nordpass\NordPass.exe <4>
- (explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.212\GoogleCrashHandler.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.212\GoogleCrashHandler64.exe
- (Kilonova LLC -> Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.5.0.7\Lightshot.exe
- (Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
- (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
- (services.exe ->) (Brother Industries, Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Browny02\BrYNSvc.exe
- (services.exe ->) (Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
- (services.exe ->) (HeroSpeed Digital Technology Co.,Ltd -> ) C:\Users\Public\longse_ivms\Database\bin\vlmysqld.exe
- (services.exe ->) (Herospeed Digital Technology Limited -> ) C:\Program Files (x86)\iVMS320\iVMS320 Watch.exe
- (services.exe ->) (Huawei Technologies Co., Ltd. -> ) [Brak podpisu cyfrowego] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
- (services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe
- (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MsMpEng.exe
- (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\NisSrv.exe
- (services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI Center\Case\MSI_Case_Service.exe
- (services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Center\MSI_Central_Service.exe
- (services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI Center\Mystic Light\LightKeeperService.exe
- (services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Center\Mystic Light\Mystic_Light_Service.exe
- (services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI Center\Voice Control\VoiceControl_Service.exe
- (services.exe ->) (nordvpn s.a. -> nordvpn S.A.) C:\Program Files\NordUpdater\NordUpdateService.exe
- (services.exe ->) (nordvpn s.a. -> TEFINCOM S.A.) C:\Program Files\NordVPN\nordvpn-service.exe
- (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
- (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispsi.inf_amd64_89cdd9f6f9724565\Display.NvContainer\NVDisplay.Container.exe <2>
- (svchost.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2210.0.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
- (svchost.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.23032.186.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
- (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
- (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
- (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
- (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe <2>
- (svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Center\MSI.TerminalServer.exe
- (svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Center\Mystic Light\LEDKeeper2.exe
- (svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI Center\Speed Up\StorageMonitor.exe
- (svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Center\True Color\New\MSI.True Color.exe
- (svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI Center\Voice Control\VoiceControlEngine.exe
- ==================== Rejestr (filtrowane) ===================
- (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)
- HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9270560 2023-02-03] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
- HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [139264 2013-05-14] (Brother Industries, Ltd.) [Brak podpisu cyfrowego]
- HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [4522496 2012-12-27] (Brother Industries, Ltd.) [Brak podpisu cyfrowego]
- HKLM-x32\...\Run: [BrHelp] => C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe [2009088 2013-01-18] (Brother Industries, Ltd.) [Brak podpisu cyfrowego]
- HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226728 2019-07-22] (Kilonova LLC -> )
- HKU\S-1-5-21-25499631-917461811-3646189918-1001\...\Run: [NordVPN] => C:\Program Files\NordVPN\NordVPN.exe [253816 2022-08-03] (nordvpn s.a. -> TEFINCOM S.A.)
- HKU\S-1-5-21-25499631-917461811-3646189918-1001\...\Run: [Discord] => C:\Users\erykc\AppData\Local\Discord\Update.exe [1525016 2023-01-13] (Discord Inc. -> GitHub)
- HKU\S-1-5-21-25499631-917461811-3646189918-1001\...\Run: [GG] => C:\Users\erykc\AppData\Local\GG\Application\gghub.exe [4078144 2022-12-28] (GG Network S.A. -> GG Network S.A.)
- HKU\S-1-5-21-25499631-917461811-3646189918-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37040592 2023-05-03] (Epic Games Inc. -> Epic Games, Inc.)
- HKU\S-1-5-21-25499631-917461811-3646189918-1001\...\Run: [electron.app.NordPass] => C:\Users\erykc\AppData\Local\Programs\nordpass\NordPass.exe [149017512 2023-04-20] (nordvpn s.a. -> NordPass Team)
- HKU\S-1-5-21-25499631-917461811-3646189918-1001\...\MountPoints2: {73ba7d22-a9f2-11ed-8b49-00d8616ee10a} - "E:\HiSuiteDownLoader.exe"
- HKU\S-1-5-21-25499631-917461811-3646189918-1001\...\MountPoints2: {73ba7d93-a9f2-11ed-8b49-00d8616ee10a} - "E:\HiSuiteDownLoader.exe"
- HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\112.0.5615.139\Installer\chrmstp.exe [2023-05-04] (Google LLC -> Google LLC)
- HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\113.1.51.110\Installer\chrmstp.exe [2023-05-04] (Brave Software, Inc. -> Brave Software, Inc.)
- GroupPolicy: Ograniczenia ? <==== UWAGA
- GroupPolicy-Firefox: Ograniczenia <==== UWAGA
- Policies: C:\ProgramData\NTUSER.pol: Ograniczenia <==== UWAGA
- ==================== Zaplanowane zadania (filtrowane) ============
- (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
- Task: {0FADD5BB-8C57-4367-B5B9-2D66D228B4E1} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
- Task: {172D6B00-81C0-4A47-A0AD-0B149BC4704E} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
- Task: {22C1B7CA-0EF7-4DF8-AAC7-179E191446A6} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-15] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
- Task: {32EAD7B8-CA95-4469-89F4-174B3304A0A4} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [718240 2023-04-26] (Mozilla Corporation -> Mozilla Foundation)
- Task: {36C12A28-C101-4022-84A0-A04386CF20E7} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
- Task: {3DB493AF-9406-418C-9804-5440DB2D0857} - System32\Tasks\AMDAutoUpdate => C:\Program Files\AMD\AutoUpdate\AMDAutoUpdate.exe [672064 2022-12-02] (Advanced Micro Devices Inc. -> )
- Task: {3EE32BA6-1F2E-4295-8B60-936B7A7A8482} - System32\Tasks\e-pity2022_styczen => C:\Program Files (x86)\e-file\e-pity\Assets\signxml.exe [35328 2023-02-24] (e-file sp. z o.o. sp. k.) [Brak podpisu cyfrowego]
- Task: {54503DA7-FE1E-40CC-BD92-58D513285DE7} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
- Task: {7303A42E-E6DA-4951-9204-22BB793260C4} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
- Task: {810FE39E-3FBF-4417-9ECE-E162BB65C9E0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1650024 2023-05-03] (Microsoft Windows Publisher -> Microsoft Corporation)
- Task: {8F15FC64-7CFE-4A18-80A3-4CE85BA7AB1E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1650024 2023-05-03] (Microsoft Windows Publisher -> Microsoft Corporation)
- Task: {91CF4115-6312-439C-BC6D-08B538BABC23} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [804312 2022-11-17] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
- Task: {9614EB8E-1D0C-40C5-B1FA-E4DC4BE52F8E} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\erykc\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [21737944 2023-03-21] (ESET, spol. s r.o. -> ESET)
- Task: {99C3B948-FA75-41FE-9D5E-DBDE1912AA3B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1650024 2023-05-03] (Microsoft Windows Publisher -> Microsoft Corporation)
- Task: {ADAD5FF5-83AE-4AED-B273-D6E34EECD0CB} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
- Task: {AEA75DC6-2784-4860-8ACF-A243F3819FFD} - System32\Tasks\GoogleUpdateTaskMachineCore{DB0A6048-5EB8-4BE4-8F7C-13CA5FF38886} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2023-02-03] (Google LLC -> Google LLC)
- Task: {B094B778-4B33-489F-8B6F-C98AF679A242} - System32\Tasks\update-S-1-5-21-25499631-917461811-3646189918-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
- Task: {B1D60025-8B47-4FDF-BD57-106A3DF71465} - System32\Tasks\MSI Task Host - LEDKeeper2_Host => C:\Program Files (x86)\MSI\MSI Center\Mystic Light\LEDKeeper2.exe [2461792 2023-04-07] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
- Task: {C0344347-0F24-4808-BEA7-69801082A547} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676768 2023-04-26] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
- Task: {C120D491-07A6-4D8E-AF72-263ADAB3EDC2} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA{9FECC37A-7E76-4C87-8AB6-A67C84D5F7F9} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174960 2023-02-03] (Brave Software, Inc. -> BraveSoftware Inc.)
- Task: {DD9ED46C-A50F-4766-B6CF-637B5691D234} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
- Task: {E0B2DF70-8EC2-459B-95D6-A0E9DBA0DB7D} - System32\Tasks\e-pity2022_kwiecien => C:\Program Files (x86)\e-file\e-pity\Assets\signxml.exe [35328 2023-02-24] (e-file sp. z o.o. sp. k.) [Brak podpisu cyfrowego]
- Task: {E1DFCFB1-108E-4BA8-9C83-745E064DA66B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564152 2023-04-03] (Adobe Inc. -> Adobe Inc.)
- Task: {E2F6A717-2C0B-495D-BF17-45FC07B37401} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\erykc\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [21737944 2023-03-21] (ESET, spol. s r.o. -> ESET)
- Task: {E65129D9-1002-47B1-8F0F-6F2FB194D2E0} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore{183557F7-1726-426E-B29F-4A8D9048C988} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174960 2023-02-03] (Brave Software, Inc. -> BraveSoftware Inc.)
- Task: {E65F9244-E467-498C-952C-168C5AAE967C} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2023-01-27] (Nvidia Corporation -> NVIDIA Corporation)
- Task: {EC427FCA-2D0B-4932-8050-58BFB2322A4A} - System32\Tasks\GoogleUpdateTaskMachineUA{E5DAE026-D529-4247-91B2-C9A84D29D2C1} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2023-02-03] (Google LLC -> Google LLC)
- Task: {EDF1FD21-F1D4-41A7-9A64-6A68E846EB34} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe [1650024 2023-05-03] (Microsoft Windows Publisher -> Microsoft Corporation)
- Task: {F2992F48-EB85-40FB-836A-F1755843CDB2} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
- (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.)
- Task: C:\Windows\Tasks\update-S-1-5-21-25499631-917461811-3646189918-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
- Task: C:\Windows\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
- ==================== Internet (filtrowane) ====================
- (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)
- Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0
- Tcpip\..\Interfaces\{c752c7f5-0796-4180-bbee-2afd0a821388}: [DhcpNameServer] 192.168.0.1 0.0.0.0
- Edge:
- =======
- Edge Profile: C:\Users\erykc\AppData\Local\Microsoft\Edge\User Data\Default [2023-04-23]
- Edge Extension: (Ghostery – Bloker reklam chroniący prywatność) - C:\Users\erykc\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fclbdkbhjlgkbpfldjodgjncejkkjcme [2023-04-07]
- Edge Extension: (Edge relevant text changes) - C:\Users\erykc\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-04-13]
- Edge Extension: (uBlock Origin) - C:\Users\erykc\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\odfafepnkmbhccpbejgmiehpchacaeak [2023-04-19]
- FireFox:
- ========
- FF DefaultProfile: 4ew1vfne.default
- FF ProfilePath: C:\Users\erykc\AppData\Roaming\Mozilla\Firefox\Profiles\4ew1vfne.default [2023-03-29]
- FF ProfilePath: C:\Users\erykc\AppData\Roaming\Mozilla\Firefox\Profiles\meuw3dpf.default-release [2023-05-06]
- FF Extension: (Bloker reklam AdGuard) - C:\Users\erykc\AppData\Roaming\Mozilla\Firefox\Profiles\meuw3dpf.default-release\Extensions\adguardadblocker@adguard.com.xpi [2023-04-26]
- FF Extension: (Ghostery – Bloker reklam chroniący prywatność) - C:\Users\erykc\AppData\Roaming\Mozilla\Firefox\Profiles\meuw3dpf.default-release\Extensions\firefox@ghostery.com.xpi [2023-04-26]
- FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-04-04] (Adobe Inc. -> Adobe Systems Inc.)
- FF Plugin-x32: Longse.cn/LsIPCCtl -> C:\Program Files (x86)\iVMS320\ocx\HsIPCCtl\npLsIPCCtl.dll [2021-06-23] (Herospeed Digital Technology Limited -> Longse)
- FF Plugin-x32: lsjt.com/LsNetClientCtl -> C:\Program Files (x86)\iVMS320\ocx\HsWebPlugin\npLsNetClientCtl.dll [2021-06-23] (Herospeed Digital Technology Limited -> ls)
- FF Plugin-x32: lsjt.com/LsRcxNetClientCtl -> C:\Program Files (x86)\iVMS320\ocx\HsRcxWebPlugin\npLsRCXNetClientCtl.dll [2021-06-23] (Herospeed Digital Technology Limited -> ls)
- FF Plugin-x32: lsls.com/LsNvrNetClient -> C:\Program Files (x86)\iVMS320\ocx\LsNXVRPlugin\npLsNvrNetClient.dll [2021-06-23] (Herospeed Digital Technology Limited -> ls)
- Chrome:
- =======
- CHR DefaultProfile: Default
- CHR Profile: C:\Users\erykc\AppData\Local\Google\Chrome\User Data\Default [2023-05-08]
- CHR Extension: (Tłumacz Google) - C:\Users\erykc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2023-03-22]
- CHR Extension: (Bloker reklam AdGuard) - C:\Users\erykc\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgnkhhnnamicmpeenaelnjfhikgbkllg [2023-04-09]
- CHR Extension: (NordPass® Password Manager & Digital Vault) - C:\Users\erykc\AppData\Local\Google\Chrome\User Data\Default\Extensions\fooolghllnmhmmndgjiamiiodkpenpbb [2023-04-18]
- CHR Extension: (Dokumenty Google offline) - C:\Users\erykc\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-04-25]
- CHR Extension: (Ghostery – Bloker reklam chroniący prywatność) - C:\Users\erykc\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2023-04-08]
- CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\erykc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-02-03]
- CHR Profile: C:\Users\erykc\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-05-08]
- CHR Profile: C:\Users\erykc\AppData\Local\Google\Chrome\User Data\Profile 1 [2023-04-12]
- CHR Extension: (Adobe Acrobat: edycja plików PDF, konwertowanie, narzędzia podpisywania) - C:\Users\erykc\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-03-28]
- CHR Extension: (Dokumenty Google offline) - C:\Users\erykc\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-03-28]
- CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\erykc\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-03-28]
- CHR Profile: C:\Users\erykc\AppData\Local\Google\Chrome\User Data\System Profile [2023-05-08]
- CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
- Brave:
- =======
- BRA Profile: C:\Users\erykc\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2023-05-08]
- BRA Extension: (Tłumacz Google) - C:\Users\erykc\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2023-03-24]
- BRA Extension: (Bloker reklam AdGuard) - C:\Users\erykc\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\bgnkhhnnamicmpeenaelnjfhikgbkllg [2023-04-11]
- BRA Extension: (ColorZilla) - C:\Users\erykc\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\bhlhnicpbhignbdhedgjhgdocnmhomnp [2023-02-03]
- BRA Extension: (NordPass® Password Manager & Digital Vault) - C:\Users\erykc\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\fooolghllnmhmmndgjiamiiodkpenpbb [2023-04-21]
- BRA Extension: (Ghostery – Bloker reklam chroniący prywatność) - C:\Users\erykc\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2023-04-11]
- BRA Extension: (Brave Local Data Files Updater) - C:\Users\erykc\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2023-05-08]
- BRA Extension: (Brave NTP background images) - C:\Users\erykc\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2023-02-03]
- BRA Extension: (Brave Ad Block Updater (Oficjalne Polskie Filtry Przeciwko Alertom o Adblocku - Uzupełnienie (plaintext))) - C:\Users\erykc\AppData\Local\BraveSoftware\Brave-Browser\User Data\bdnfonbomiianhopbpfgfeekmlcbegfo [2023-04-08]
- BRA Extension: (Brave Ad Block Updater (Oficjalne Polskie Filtry Przeciwko Alertom o Adblocku (plaintext))) - C:\Users\erykc\AppData\Local\BraveSoftware\Brave-Browser\User Data\beeceepafhbchnbfdkfalfipoancnjkm [2023-04-08]
- BRA Extension: (Brave Ad Block Updater (Fanboy's Mobile Notifications List (plaintext))) - C:\Users\erykc\AppData\Local\BraveSoftware\Brave-Browser\User Data\bfpgedeaaibpoidldhjcknekahbikncb [2023-05-08]
- BRA Extension: (Wallet Data Files Updater) - C:\Users\erykc\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2023-05-04]
- BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\erykc\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2023-04-26]
- BRA Extension: (Brave NTP sponsored images) - C:\Users\erykc\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodhafecfemgejckecbnmpobnhmoaoag [2023-05-08]
- BRA Extension: (Brave Ad Block Updater (Default (plaintext))) - C:\Users\erykc\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2023-05-08]
- BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\erykc\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2023-03-16]
- BRA Extension: (Brave Ad Block Updater (Oficjalne Polskie Filtry do AdBlocka, uBlocka Origin i AdGuarda (plaintext))) - C:\Users\erykc\AppData\Local\BraveSoftware\Brave-Browser\User Data\ngcohbdfildjnmfnicgdipopmlhdcokg [2023-05-08]
- BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\erykc\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2023-05-06]
- ==================== Usługi (filtrowane) ===================
- (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
- R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-04-03] (Adobe Inc. -> Adobe Inc.)
- S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [9712432 2023-03-07] (BattlEye Innovations e.K. -> )
- S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174960 2023-02-03] (Brave Software, Inc. -> BraveSoftware Inc.)
- S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174960 2023-02-03] (Brave Software, Inc. -> BraveSoftware Inc.)
- S3 BraveVpnService; C:\Program Files\BraveSoftware\Brave-Browser\Application\113.1.51.110\brave_vpn_helper.exe [3029808 2023-05-03] (Brave Software, Inc. -> Brave Software, Inc.)
- R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112 2012-10-26] (Brother Industries, Ltd.) [Brak podpisu cyfrowego]
- S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2023-02-10] (Epic Games Inc. -> Epic Games, Inc.)
- R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [236864 2022-06-24] (Huawei Technologies Co., Ltd. -> ) [Brak podpisu cyfrowego]
- R2 IVMS320MYSQL; C:\\Users\\Public\\longse_ivms\\Database\\my.ini [5111 ] () [Brak podpisu cyfrowego]
- R2 iVMS320_Server; C:\Program Files (x86)\iVMS320\iVMS320 Watch.exe [40728 2021-06-23] (Herospeed Digital Technology Limited -> )
- R2 LightKeeperService; C:\Program Files (x86)\MSI\MSI Center\Mystic Light\LightKeeperService.exe [86776 2020-12-23] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
- R2 MSI_Case_Service; C:\Program Files (x86)\MSI\MSI Center\Case\MSI_Case_Service.exe [70776 2023-03-02] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
- R2 MSI_Center_Service; C:\Program Files (x86)\MSI\MSI Center\MSI_Central_Service.exe [150176 2022-08-04] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
- R2 MSI_VoiceControl_Service; C:\Program Files (x86)\MSI\MSI Center\Voice Control\VoiceControl_Service.exe [34032 2022-05-12] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
- R2 Mystic_Light_Service; C:\Program Files (x86)\MSI\MSI Center\Mystic Light\Mystic_Light_Service.exe [37616 2022-04-28] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
- S3 nordsec-threatprotection-service; C:\Program Files\NordVPN\NordSec ThreatProtection\nordsec-threatprotection-service.exe [310136 2021-06-11] (nordvpn s.a. -> TEFINCOM S.A.)
- R2 NordUpdaterService; C:\Program Files\NordUpdater\NordUpdateService.exe [297848 2022-11-21] (nordvpn s.a. -> nordvpn S.A.)
- R2 nordvpn-service; C:\Program Files\NordVPN\nordvpn-service.exe [254328 2022-08-03] (nordvpn s.a. -> TEFINCOM S.A.)
- R2 OptionsPlusUpdaterService; C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe [17929472 2023-05-08] (Logitech Inc -> Logitech, Inc.)
- R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2023-04-24] (Even Balance, Inc. -> )
- S3 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [805224 2023-01-11] (Oracle Corporation -> Oracle and/or its affiliates)
- R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\NisSrv.exe [3216064 2023-05-03] (Microsoft Windows Publisher -> Microsoft Corporation)
- R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MsMpEng.exe [133544 2023-05-03] (Microsoft Windows Publisher -> Microsoft Corporation)
- S3 BraveElevationService; "C:\Program Files\BraveSoftware\Brave-Browser\Application\113.1.51.110\elevation_service.exe" [X]
- R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispsi.inf_amd64_89cdd9f6f9724565\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispsi.inf_amd64_89cdd9f6f9724565\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
- ===================== Sterowniki (filtrowane) ===================
- (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
- S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego]
- S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego]
- S3 ew_usbccgpfilter; C:\Windows\System32\drivers\ew_usbccgpfilter.sys [18944 2022-06-24] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
- U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2022-06-24] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
- S3 mshield; C:\Windows\System32\DRIVERS\mshield.sys [43112 2022-08-24] (nordvpn s.a. -> Nordvpn S.A.)
- R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [17424 2020-01-19] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
- R2 NDivert; C:\Program Files\NordVPN\7.7.5.0\Drivers\NDivert.sys [131472 2022-06-28] (nordvpn s.a. -> Nordvpn S.A.)
- R1 nordlwf; C:\Windows\system32\DRIVERS\nordlwf.sys [44928 2022-02-22] (nordvpn s.a. -> TEFINCOM S.A.)
- R3 NTIOLib_CC_Clock; C:\Program Files (x86)\MSI\MSI Center\Lib\NTIOLib_X64.sys [14288 2017-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
- R3 NTIOLib_CC_COMM; C:\Program Files (x86)\MSI\MSI Center\Lib\SYS\NTIOLib_X64.sys [28480 2022-04-27] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
- S3 NTIOLib_CC_CPU; C:\Program Files (x86)\MSI\MSI Center\Super Charger\NTIOLib_X64.sys [14288 2017-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
- R3 NTIOLib_MysticLight; C:\Program Files (x86)\MSI\MSI Center\Mystic Light\Lib\NTIOLib_X64.sys [14288 2017-07-11] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
- R3 NvModuleTracker; C:\Windows\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2023-01-16] (Nvidia Corporation -> NVIDIA Corporation)
- R3 tapnordvpn; C:\Windows\System32\drivers\tapnordvpn.sys [49744 2022-07-14] (nordvpn s.a. -> The OpenVPN Project)
- R3 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [254616 2023-01-11] (Oracle Corporation -> Oracle and/or its affiliates)
- R1 VBoxNetLwf; C:\Windows\system32\DRIVERS\VBoxNetLwf.sys [265488 2023-01-11] (Oracle Corporation -> Oracle and/or its affiliates)
- R1 VBoxSup; C:\Windows\system32\DRIVERS\VBoxSup.sys [1061392 2023-01-11] (Oracle Corporation -> Oracle and/or its affiliates)
- S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49616 2023-05-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
- R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [498944 2023-05-03] (Microsoft Windows -> Microsoft Corporation)
- R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [99608 2023-05-03] (Microsoft Windows -> Microsoft Corporation)
- S3 wintun; C:\Windows\System32\drivers\wintun.sys [29592 2023-02-03] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
- S3 WireGuard; C:\Windows\System32\drivers\wireguard.sys [489368 2023-03-20] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
- ==================== NetSvcs (filtrowane) ===================
- (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
- ==================== Jeden miesiąc (utworzone) (filtrowane) =========
- (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
- 2023-05-08 12:26 - 2023-05-08 12:27 - 000033873 _____ C:\Users\erykc\Downloads\FRST.txt
- 2023-05-08 12:26 - 2023-05-08 12:26 - 000000000 ____D C:\FRST
- 2023-05-08 12:25 - 2023-05-08 12:25 - 002382848 _____ (Farbar) C:\Users\erykc\Downloads\FRST64.exe
- 2023-05-08 12:13 - 2023-05-08 12:13 - 983726852 _____ C:\Windows\MEMORY.DMP
- 2023-05-08 12:13 - 2023-05-08 12:13 - 001158668 _____ C:\Windows\Minidump\050823-5031-01.dmp
- 2023-05-08 12:13 - 2023-05-08 12:13 - 000000000 ____D C:\Windows\Minidump
- 2023-05-08 12:13 - 2023-05-08 12:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
- 2023-05-08 12:13 - 2023-05-08 12:13 - 000000000 ____D C:\Program Files\LogiOptionsPlus
- 2023-05-08 11:14 - 2023-05-08 11:14 - 000116443 _____ C:\Users\erykc\Documents\Potwierdzenie-nadania.pdf
- 2023-05-07 11:16 - 2023-05-07 11:16 - 000000898 _____ C:\Users\erykc\AppData\Local\recently-used.xbel
- 2023-05-04 19:49 - 2023-05-04 19:50 - 000000000 ____D C:\Users\erykc\Documents\karola
- 2023-05-04 16:58 - 2023-05-04 16:58 - 000000000 ____D C:\Users\erykc\AppData\Roaming\Ubisoft
- 2023-05-04 08:16 - 2023-05-04 08:16 - 000000000 ____D C:\Program Files\chrome_url_fetcher_12564_853315448
- 2023-05-04 08:16 - 2023-05-04 08:16 - 000000000 ____D C:\Program Files\chrome_url_fetcher_12564_285899258
- 2023-05-04 08:16 - 2023-05-04 08:16 - 000000000 ____D C:\Program Files\chrome_url_fetcher_12564_2056538432
- 2023-05-04 08:16 - 2023-05-04 08:16 - 000000000 ____D C:\Program Files\chrome_url_fetcher_12564_1510638725
- 2023-05-04 08:16 - 2023-05-04 08:16 - 000000000 ____D C:\Program Files\chrome_url_fetcher_12564_1027316932
- 2023-05-02 17:36 - 2023-05-02 17:36 - 000104335 _____ C:\Users\erykc\Documents\kreatynina_01_05_2023.pdf
- 2023-05-02 16:34 - 2023-05-02 16:34 - 000000000 ____D C:\Users\erykc\AppData\Local\Mordhau
- 2023-04-26 16:19 - 2023-04-28 14:26 - 000000000 ____D C:\Program Files\Mozilla Firefox
- 2023-04-26 13:28 - 2023-04-26 13:28 - 000000000 ____D C:\Program Files\chrome_url_fetcher_12780_738738123
- 2023-04-24 10:58 - 2023-04-24 10:58 - 000281688 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
- 2023-04-24 10:58 - 2023-04-24 10:58 - 000000000 ____D C:\Users\erykc\Documents\My Games
- 2023-04-24 10:58 - 2023-04-24 10:58 - 000000000 ____D C:\Users\erykc\AppData\Local\PunkBuster
- 2023-04-24 10:56 - 2023-04-24 10:58 - 000281688 _____ C:\Windows\SysWOW64\PnkBstrB.exe
- 2023-04-24 10:56 - 2023-04-24 10:56 - 000282512 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
- 2023-04-24 10:56 - 2023-04-24 10:56 - 000076888 _____ C:\Windows\SysWOW64\PnkBstrA.exe
- 2023-04-21 11:02 - 2022-08-24 10:18 - 000043112 _____ (Nordvpn S.A.) C:\Windows\system32\Drivers\mshield.sys
- 2023-04-19 12:21 - 2023-04-19 12:21 - 000000000 ___HD C:\$WinREAgent
- 2023-04-19 09:08 - 2023-04-19 09:08 - 000000000 ____D C:\Program Files\chrome_url_fetcher_67612_745367912
- 2023-04-19 09:08 - 2023-04-19 09:08 - 000000000 ____D C:\Program Files\chrome_url_fetcher_67612_690274951
- 2023-04-19 09:08 - 2023-04-19 09:08 - 000000000 ____D C:\Program Files\chrome_url_fetcher_67612_33630760
- 2023-04-19 09:08 - 2023-04-19 09:08 - 000000000 ____D C:\Program Files\chrome_url_fetcher_67612_309618825
- 2023-04-19 09:08 - 2023-04-19 09:08 - 000000000 ____D C:\Program Files\chrome_url_fetcher_67612_1828193787
- 2023-04-19 09:08 - 2023-04-19 09:08 - 000000000 ____D C:\Program Files\chrome_url_fetcher_67612_1553174871
- 2023-04-18 10:59 - 2023-04-18 10:59 - 000000000 ____D C:\Intel
- 2023-04-18 10:55 - 2023-04-18 10:55 - 000588312 _____ C:\Users\erykc\Documents\decyzja_pcpr_turnus_2023.pdf
- 2023-04-17 15:38 - 2023-04-17 15:38 - 000001290 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk
- 2023-04-17 15:38 - 2023-04-17 15:38 - 000000000 ____D C:\Users\erykc\AppData\Local\UnrealEngineLauncher
- 2023-04-17 15:38 - 2023-04-17 15:38 - 000000000 ____D C:\Users\erykc\AppData\Local\EpicGamesLauncher
- 2023-04-17 15:38 - 2023-04-17 15:38 - 000000000 ____D C:\Program Files (x86)\Epic Games
- 2023-04-17 15:33 - 2023-05-04 16:58 - 000000000 ____D C:\ProgramData\Ubisoft
- 2023-04-17 15:32 - 2023-05-04 19:49 - 000000000 ____D C:\Users\erykc\AppData\Local\Ubisoft Game Launcher
- 2023-04-17 15:32 - 2023-04-17 15:32 - 000000000 ____D C:\Users\erykc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
- 2023-04-17 15:32 - 2023-04-17 15:32 - 000000000 ____D C:\Program Files (x86)\Ubisoft
- 2023-04-14 16:45 - 2023-04-10 21:03 - 002172496 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
- 2023-04-14 16:45 - 2023-04-10 21:03 - 002172496 _____ C:\Windows\system32\vulkaninfo.exe
- 2023-04-14 16:45 - 2023-04-10 21:03 - 001607760 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
- 2023-04-14 16:45 - 2023-04-10 21:03 - 001607760 _____ C:\Windows\SysWOW64\vulkaninfo.exe
- 2023-04-14 16:45 - 2023-04-10 21:03 - 001487896 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
- 2023-04-14 16:45 - 2023-04-10 21:03 - 001479248 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
- 2023-04-14 16:45 - 2023-04-10 21:03 - 001479248 _____ C:\Windows\system32\vulkan-1.dll
- 2023-04-14 16:45 - 2023-04-10 21:03 - 001226760 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
- 2023-04-14 16:45 - 2023-04-10 21:03 - 001211472 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
- 2023-04-14 16:45 - 2023-04-10 21:03 - 001211472 _____ C:\Windows\SysWOW64\vulkan-1.dll
- 2023-04-14 16:45 - 2023-04-10 21:00 - 000851992 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
- 2023-04-14 16:45 - 2023-04-10 21:00 - 000671200 _____ C:\Windows\system32\nvofapi64.dll
- 2023-04-14 16:45 - 2023-04-10 21:00 - 000506864 _____ C:\Windows\SysWOW64\nvofapi.dll
- 2023-04-14 16:45 - 2023-04-10 20:59 - 002166280 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
- 2023-04-14 16:45 - 2023-04-10 20:59 - 001620960 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
- 2023-04-14 16:45 - 2023-04-10 20:59 - 001535968 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
- 2023-04-14 16:45 - 2023-04-10 20:59 - 001194992 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
- 2023-04-14 16:45 - 2023-04-10 20:59 - 000978912 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
- 2023-04-14 16:45 - 2023-04-10 20:59 - 000759320 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
- 2023-04-14 16:45 - 2023-04-10 20:59 - 000741384 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
- 2023-04-14 16:45 - 2023-04-10 20:58 - 013768672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
- 2023-04-14 16:45 - 2023-04-10 20:58 - 011650032 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
- 2023-04-14 16:45 - 2023-04-10 20:58 - 006084120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
- 2023-04-14 16:45 - 2023-04-10 20:58 - 005911576 _____ (NVIDIA Corporation) C:\Windows\system32\nvcudadebugger.dll
- 2023-04-14 16:45 - 2023-04-10 20:58 - 005834760 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
- 2023-04-14 16:45 - 2023-04-10 20:58 - 003429896 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
- 2023-04-14 16:45 - 2023-04-10 20:58 - 000457696 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
- 2023-04-14 16:45 - 2023-04-10 20:57 - 000853000 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
- 2023-04-14 16:45 - 2023-04-08 15:12 - 000104369 _____ C:\Windows\system32\nvinfo.pb
- 2023-04-14 13:46 - 2023-04-14 13:46 - 000711791 _____ C:\Users\erykc\Documents\inf_turnus.pdf
- 2023-04-13 09:32 - 2023-04-13 09:32 - 000135673 _____ C:\Users\erykc\Documents\WplataBank (2).pdf
- 2023-04-12 18:27 - 2023-04-13 17:48 - 000000000 ____D C:\Users\erykc\Documents\p
- 2023-04-11 11:04 - 2023-05-08 12:14 - 000000000 ____D C:\Users\erykc\AppData\Roaming\GG
- 2023-04-11 11:04 - 2023-04-11 11:04 - 000001218 _____ C:\Users\erykc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GG.lnk
- 2023-04-11 11:04 - 2023-04-11 11:04 - 000000000 ____D C:\Users\erykc\AppData\Local\GG
- 2023-04-10 13:24 - 2023-04-10 13:24 - 000002808 _____ C:\Users\erykc\Unigine_Heaven_Benchmark_4.0_20230410_1324.html
- 2023-04-10 13:15 - 2023-04-10 13:24 - 000000000 ____D C:\Users\erykc\Heaven
- 2023-04-10 13:13 - 2023-04-10 13:15 - 001065984 _____ C:\Users\erykc\AppData\Local\file__0.localstorage
- 2023-04-10 13:13 - 2023-04-10 13:13 - 000000000 ____D C:\Program Files (x86)\Unigine
- 2023-04-10 11:23 - 2023-04-10 11:23 - 000003176 _____ C:\Windows\system32\Tasks\MSI Task Host - LEDKeeper2_Host
- 2023-04-10 11:23 - 2023-04-10 11:23 - 000000000 ____D C:\Program Files\WD
- 2023-04-10 11:23 - 2023-04-10 11:23 - 000000000 ____D C:\Program Files\Verbatim
- 2023-04-10 11:23 - 2023-04-10 11:23 - 000000000 ____D C:\Program Files\ENE
- ==================== Jeden miesiąc (zmodyfikowane) ==================
- (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
- 2023-05-08 12:25 - 2023-02-03 13:15 - 000000000 ____D C:\ProgramData\NVIDIA
- 2023-05-08 12:20 - 2023-02-03 13:16 - 001767980 _____ C:\Windows\system32\PerfStringBackup.INI
- 2023-05-08 12:20 - 2019-12-07 17:08 - 000784334 _____ C:\Windows\system32\perfh015.dat
- 2023-05-08 12:20 - 2019-12-07 17:08 - 000152230 _____ C:\Windows\system32\perfc015.dat
- 2023-05-08 12:20 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
- 2023-05-08 12:19 - 2023-02-03 14:14 - 000000000 ____D C:\Users\erykc\AppData\Roaming\discord
- 2023-05-08 12:19 - 2023-02-03 14:14 - 000000000 ____D C:\Users\erykc\AppData\Local\Discord
- 2023-05-08 12:16 - 2023-02-12 20:06 - 000000000 ____D C:\Program Files\HWiNFO64
- 2023-05-08 12:15 - 2023-02-03 14:16 - 000000000 ____D C:\Program Files (x86)\Google
- 2023-05-08 12:14 - 2023-04-04 18:17 - 000003142 _____ C:\Windows\system32\Tasks\MSIAfterburner
- 2023-05-08 12:14 - 2023-04-03 14:35 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
- 2023-05-08 12:14 - 2023-04-03 14:34 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
- 2023-05-08 12:14 - 2023-02-03 13:44 - 000000000 ____D C:\Users\erykc\AppData\Roaming\NordPass
- 2023-05-08 12:14 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
- 2023-05-08 12:13 - 2023-02-03 17:46 - 000000000 ____D C:\Users\erykc\AppData\Local\LogiOptionsPlus
- 2023-05-08 12:13 - 2023-02-03 14:01 - 000000000 ____D C:\MSI
- 2023-05-08 12:13 - 2023-02-03 13:17 - 000000000 ___RD C:\Users\erykc\OneDrive
- 2023-05-08 12:13 - 2023-02-03 13:14 - 000000000 ____D C:\Users\erykc
- 2023-05-08 12:13 - 2023-02-03 13:09 - 000008192 ___SH C:\DumpStack.log.tmp
- 2023-05-08 12:13 - 2023-02-03 13:09 - 000000006 ____H C:\Windows\Tasks\SA.DAT
- 2023-05-08 12:13 - 2023-02-03 13:09 - 000000000 ____D C:\Windows\system32\SleepStudy
- 2023-05-08 11:55 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
- 2023-05-08 11:16 - 2023-02-03 14:10 - 000007871 _____ C:\Windows\BRRBCOM.INI
- 2023-05-08 11:16 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
- 2023-05-07 19:12 - 2023-02-22 11:57 - 000000000 ____D C:\Program Files (x86)\iVMS320
- 2023-05-07 11:16 - 2023-03-09 15:20 - 000000000 ____D C:\Users\erykc\AppData\Local\babl-0.1
- 2023-05-07 11:05 - 2023-02-03 13:09 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
- 2023-05-06 16:53 - 2023-03-29 15:44 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
- 2023-05-06 15:55 - 2023-02-03 13:18 - 000003580 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-25499631-917461811-3646189918-1001
- 2023-05-06 15:55 - 2023-02-03 13:17 - 000003374 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-25499631-917461811-3646189918-1001
- 2023-05-06 15:55 - 2023-02-03 13:14 - 000002419 _____ C:\Users\erykc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
- 2023-05-05 21:25 - 2023-02-22 11:57 - 000000000 ____D C:\Users\Public\longse_ivms
- 2023-05-05 17:31 - 2023-02-03 13:14 - 000000000 ___SD C:\Users\erykc\AppData\Roaming\Microsoft\Credentials
- 2023-05-04 16:58 - 2023-02-03 13:19 - 000000000 ____D C:\Users\erykc\AppData\Local\D3DSCache
- 2023-05-04 08:16 - 2023-02-03 14:17 - 000002253 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
- 2023-05-04 08:16 - 2023-02-03 13:36 - 000002370 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
- 2023-05-03 12:46 - 2023-02-03 13:09 - 000000000 ____D C:\Windows\system32\Drivers\wd
- 2023-05-02 21:42 - 2023-02-22 12:04 - 000000000 ____D C:\Users\erykc\AppData\Local\CrashDumps
- 2023-05-02 16:34 - 2023-02-03 13:29 - 000000000 ____D C:\ProgramData\Package Cache
- 2023-05-01 20:34 - 2023-02-03 16:26 - 000000000 ____D C:\Users\erykc\AppData\Roaming\Code
- 2023-05-01 16:53 - 2023-03-21 13:55 - 000003858 _____ C:\Windows\system32\Tasks\EOSv3 Scheduler onLogOn
- 2023-05-01 16:53 - 2023-03-21 13:55 - 000003416 _____ C:\Windows\system32\Tasks\EOSv3 Scheduler onTime
- 2023-05-01 16:53 - 2023-03-21 12:36 - 000001374 _____ C:\Users\erykc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
- 2023-04-29 19:30 - 2023-02-03 16:26 - 000000000 ____D C:\Users\erykc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Visual Studio Code
- 2023-04-28 14:26 - 2023-03-29 15:44 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
- 2023-04-28 14:26 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\NDF
- 2023-04-28 14:26 - 2019-12-07 11:03 - 000524288 _____ C:\Windows\system32\config\BBI
- 2023-04-27 16:04 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\LiveKernelReports
- 2023-04-26 16:29 - 2023-03-29 15:44 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
- 2023-04-25 16:28 - 2023-02-03 14:16 - 000003940 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA{E5DAE026-D529-4247-91B2-C9A84D29D2C1}
- 2023-04-25 16:28 - 2023-02-03 14:16 - 000003816 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore{DB0A6048-5EB8-4BE4-8F7C-13CA5FF38886}
- 2023-04-24 14:24 - 2023-03-29 15:44 - 000000000 ____D C:\Users\erykc\AppData\LocalLow\Mozilla
- 2023-04-22 13:28 - 2023-02-03 13:40 - 000000000 ____D C:\Users\erykc\AppData\Local\NordVPN
- 2023-04-21 11:03 - 2023-02-03 13:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NordSec
- 2023-04-21 11:03 - 2023-02-03 13:40 - 000000000 ____D C:\Program Files\NordVPN
- 2023-04-19 14:27 - 2023-02-03 13:09 - 000432800 _____ C:\Windows\system32\FNTCACHE.DAT
- 2023-04-19 14:26 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
- 2023-04-19 14:26 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
- 2023-04-19 14:26 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\oobe
- 2023-04-19 14:26 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
- 2023-04-19 14:26 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
- 2023-04-19 14:26 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinMetadata
- 2023-04-19 14:26 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\setup
- 2023-04-19 14:26 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
- 2023-04-19 14:26 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\es-MX
- 2023-04-19 14:26 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism
- 2023-04-19 14:26 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\DDFs
- 2023-04-19 14:26 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\PolicyDefinitions
- 2023-04-19 14:26 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
- 2023-04-19 12:28 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
- 2023-04-19 12:25 - 2023-02-03 13:11 - 003015680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
- 2023-04-19 12:17 - 2023-02-04 13:22 - 000000000 ____D C:\Windows\system32\MRT
- 2023-04-19 12:16 - 2023-02-04 13:22 - 156112424 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
- 2023-04-17 15:40 - 2023-03-03 18:22 - 000000000 ____D C:\ProgramData\Epic
- 2023-04-14 16:50 - 2023-02-03 13:16 - 000000000 ____D C:\Users\erykc\AppData\Local\NVIDIA
- 2023-04-13 17:47 - 2023-02-14 14:07 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
- 2023-04-10 20:56 - 2023-02-03 13:26 - 006798824 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
- 2023-04-10 20:56 - 2023-02-03 13:14 - 007935592 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
- 2023-04-10 16:52 - 2023-02-13 15:40 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
- 2023-04-10 13:13 - 2023-04-03 14:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unigine
- ==================== Pliki w katalogu głównym wybranych folderów ========
- 2023-04-10 13:13 - 2023-04-10 13:15 - 001065984 _____ () C:\Users\erykc\AppData\Local\file__0.localstorage
- 2023-05-07 11:16 - 2023-05-07 11:16 - 000000898 _____ () C:\Users\erykc\AppData\Local\recently-used.xbel
- 2023-02-28 15:51 - 2023-02-28 15:51 - 000000003 _____ () C:\Users\erykc\AppData\Local\updater.log
- 2023-02-28 15:51 - 2023-02-28 15:51 - 000000424 _____ () C:\Users\erykc\AppData\Local\UserProducts.xml
- ==================== SigCheck ============================
- (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)
- ==================== Koniec FRST.txt ========================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement