Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 28-02-2021 Uruchomiony przez Agrax (administrator) AGRAX (ASUS All Series) (03-03-2021 22:26:27) Uruchomiony z C:\Users\48518\Downloads Załadowane profile: Agrax Platform: Windows 10 Pro Wersja 1909 18363.1379 (X64) Język: Polski (Polska) Domyślna przeglądarka: FF Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) F:\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (Discord Inc. -> Discord Inc.) C:\Users\48518\AppData\Local\Discord\app-0.0.309\Discord.exe <6> (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <3> (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\117.4.378\QtWebEngineProcess.exe <2> (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler64.exe (Hewlett Packard -> Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 4510 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 4510 series\Bin\ScanToPCActivationApp.exe (Hewlett Packard -> Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet Pro 8100\Bin\HPNetworkCommunicatorCom.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2> (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Users\48518\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2102.1001.17.0_x64__8wekyb3d8bbwe\XboxAppServices.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.50.5005.0_x64__8wekyb3d8bbwe\GamingServices.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.50.5005.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.521.2012.0_x64__8wekyb3d8bbwe\GameBar.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.521.2012.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows Hardware Compatibility Publisher -> ) C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2101.9-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2101.9-0\NisSrv.exe (Micro-Star International CO., LTD. -> ) C:\Program Files\GamingOSD\mysticlight\MysticLightController.exe (Micro-Star International CO., LTD. -> MICRO-STAR INT'L,.LTD.) C:\Program Files\GamingOSD\GamingOSD.exe (Micro-Star International CO., LTD. -> MSI) C:\Program Files\GamingOSD\MonitorMicroKeyDetector.exe (Micro-Star International CO., LTD. -> MSI) C:\Program Files\GamingOSD\WeatherDetector.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <8> (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_8e68f77150e57b50\Display.NvContainer\NVDisplay.Container.exe <2> (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve -> Valve Corporation) E:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7> (Valve -> Valve Corporation) E:\Steam\steam.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8838400 2016-06-07] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [337720 2020-11-12] (Apple Inc. -> Apple Inc.) HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [7992032 2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [710776 2020-06-18] (Oracle America, Inc. -> Oracle Corporation) HKU\S-1-5-21-3824040131-627335375-284147089-1001\...\Run: [Steam] => E:\Steam\steam.exe [3412696 2021-02-13] (Valve -> Valve Corporation) HKU\S-1-5-21-3824040131-627335375-284147089-1001\...\Run: [Discord] => C:\Users\48518\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub) HKU\S-1-5-21-3824040131-627335375-284147089-1001\...\Run: [AdobeBridge] => [X] HKU\S-1-5-21-3824040131-627335375-284147089-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32721976 2021-02-16] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-3824040131-627335375-284147089-1001\...\Run: [DAEMON Tools Lite Automount] => F:\DAEMON Tools Lite\DTAgent.exe [365160 2020-03-22] (AVB Disc Soft, SIA -> Disc Soft Ltd) HKU\S-1-5-21-3824040131-627335375-284147089-1001\...\Run: [HP Deskjet 4510 series (NET)] => C:\Program Files\HP\HP Deskjet 4510 series\Bin\ScanToPCActivationApp.exe [3487240 2014-03-06] (Hewlett Packard -> Hewlett-Packard Co.) HKU\S-1-5-21-3824040131-627335375-284147089-1001\...\MountPoints2: {d1d81b75-6c89-11ea-937c-e03f49b4b856} - "D:\setup.exe" HKLM\...\Print\Monitors\HP 5B12 Status Monitor: C:\Windows\system32\hpinksts5B12LM.dll [331664 2012-06-13] (Hewlett Packard -> Hewlett-Packard Co.) HKLM\...\Print\Monitors\HP C411 Status Monitor: C:\Windows\system32\hpinkstsC411LM.dll [333496 2012-12-16] (Hewlett Packard -> Hewlett-Packard Co.) HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Deskjet 4510 series): C:\Windows\system32\HPDiscoPMC411.dll [763912 2014-03-06] (Hewlett Packard -> Hewlett-Packard Co.) HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Officejet Pro 8100): C:\Windows\system32\HPDiscoPM5B12.dll [741480 2012-11-01] (Hewlett Packard -> Hewlett-Packard Co.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\88.0.4324.190\Installer\chrmstp.exe [2021-02-25] (Google LLC -> Google LLC) Startup: C:\Users\48518\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Powiadomienia monitorowania tuszu - HP Officejet Pro 8100 (sieć).lnk [2021-03-03] ShortcutAndArgument: Powiadomienia monitorowania tuszu - HP Officejet Pro 8100 (sieć).lnk -> C:\Windows\system32\RunDll32.exe => "C:\Program Files\HP\HP Officejet Pro 8100\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN3BKFVH9905MX;CONNECTION=NW;MONITOR=1; Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2021-01-21] ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS -> SteelSeries ApS) ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {01BE0893-3C65-4705-A3A1-D34FE4C23A87} - System32\Tasks\Microsoft\Windows\PLA\Sprawdzenie CPU => {FF679DA1-8FF2-4474-9C9E-52BBD409B557} C:\Windows\system32\pla.dll [1507328 2020-05-13] (Microsoft Windows -> Microsoft Corporation) Task: {0D211E5B-CF33-4F56-8606-15CBDEA674CB} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115016 2021-02-21] (Microsoft Corporation -> Microsoft Corporation) Task: {0D491B12-DBEB-4077-8019-AEAADE9BFE2C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MpCmdRun.exe [562240 2021-02-12] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {1D995F4B-B2C6-4B39-88C3-BB54B3EE745D} - System32\Tasks\MonitorMysticLight => C:\Program Files\GamingOSD\MysticLight\MysticLightController.exe [31736 2020-01-06] (Micro-Star International CO., LTD. -> ) Task: {1F743B88-5E19-4DFB-AB05-F58D69DA0B66} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation) Task: {25E4751A-85F0-49D4-967C-C2C74CE74D09} - System32\Tasks\AdobeAAMUpdater-1.0-DESKTOP-KO1LG7N-Agrax => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {26948896-328E-47B3-BFB4-2065E74D9EE1} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [27165752 2021-02-16] (Piriform Software Ltd -> Piriform Software Ltd) Task: {26D9F046-24E7-4FCA-BC96-0E6F3C240EB6} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-10-17] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log Task: {2AF34884-9852-468D-99CF-9FA0C321DEDB} - System32\Tasks\MonitorMicroKey => C:\Program Files\GamingOSD\MonitorMicroKeyDetector.exe [81912 2020-03-03] (Micro-Star International CO., LTD. -> MSI) Task: {2D725F4C-4085-4AD8-93B2-AD135F883495} - System32\Tasks\GamingOSDAutoStartUp => C:\Program Files\GamingOSD\GamingOSD.exe [2754552 2020-03-03] (Micro-Star International CO., LTD. -> MICRO-STAR INT'L,.LTD.) Task: {33D82BA8-EE97-4D65-83A7-64E39A4458BB} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation) Task: {362BE51A-2EBA-4DB9-9D79-ABA8DC5988E6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-03-18] (Google LLC -> Google LLC) Task: {45A278BE-B6B1-44BC-9727-EA84BBBD6F8D} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646456 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation) Task: {48FDFBFD-109E-4A3F-B2E6-DB5BBD287148} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [3993520 2021-02-15] (Microsoft Corporation -> Microsoft Corporation) Task: {4E8A07A3-73AD-48D6-B2D0-F9BA4BA5F7BD} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [694752 2021-02-26] (Mozilla Corporation -> Mozilla Foundation) Task: {5EE34316-50D6-415D-99C6-5FCA001C4E2C} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation) Task: {65F055E0-52A8-40EB-953C-B3CF8969F240} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115016 2021-02-21] (Microsoft Corporation -> Microsoft Corporation) Task: {77AE5893-B4A0-4E62-8800-72C048E7875F} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-10-17] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {78C2D80C-4A11-4E7F-A50E-3664B21B0719} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-02-16] (Piriform Software Ltd -> Piriform) Task: {8C55B692-59C3-4336-8A9E-C6462FD485D4} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation) Task: {8E85F95A-89EA-48C5-AF59-3A6118D39E14} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-06-09] (Dropbox, Inc -> Dropbox, Inc.) Task: {940CFECC-050D-4545-96D5-DF7C7CE75A21} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MpCmdRun.exe [562240 2021-02-12] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {9F7793F8-6D52-4ED7-AE1B-3C0FEDE4C674} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MpCmdRun.exe [562240 2021-02-12] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {9FB9E5F2-AC80-4138-8E6A-F5AF9FB00047} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MpCmdRun.exe [562240 2021-02-12] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {A7B4DCD1-60B3-479B-8ADC-AB8C04151C59} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22993800 2021-02-15] (Microsoft Corporation -> Microsoft Corporation) Task: {A7C38BBD-9A47-4649-8F45-3DE0CA2EBB57} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.) Task: {ABEE45AB-3640-425A-A447-C651426A51D3} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [3993520 2021-02-15] (Microsoft Corporation -> Microsoft Corporation) Task: {C18D01B4-3910-4AE8-A809-BD4E66DFE3E7} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22993800 2021-02-15] (Microsoft Corporation -> Microsoft Corporation) Task: {CA111ED5-FBB1-4608-B7DF-D0B1CDC8199D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-03-18] (Google LLC -> Google LLC) Task: {CD2D15E5-6E05-4755-93CC-FFAE5D471AAE} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-06-09] (Dropbox, Inc -> Dropbox, Inc.) Task: {CD5DC9DF-4738-4699-9F9F-E9A14D24844B} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation) Task: {EED6F57D-EC63-4EFF-8754-B96C89AA22C0} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3301176 2020-10-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {F45FF215-C475-40D5-9512-E41A0BD330AF} - System32\Tasks\MonitorWeatherDetector => C:\Program Files\GamingOSD\WeatherDetector.exe [43000 2020-03-03] (Micro-Star International CO., LTD. -> MSI) Task: {FF25FF18-32F4-4192-9CF7-C374AA2E70A9} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.) Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.) Tcpip\Parameters: [DhcpNameServer] 87.204.204.204 62.233.233.233 Tcpip\..\Interfaces\{056a247e-aaf0-460e-8bb6-aa76e9d8824e}: [DhcpNameServer] 87.204.204.204 62.233.233.233 Tcpip\..\Interfaces\{b287f726-8416-46e8-9961-caeac3bc1a74}: [DhcpNameServer] 192.166.255.2 46.45.78.2 192.168.4.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\48518\AppData\Local\Microsoft\Edge\User Data\Default [2021-02-07] FireFox: ======== FF DefaultProfile: md7ks34z.Agrax FF ProfilePath: C:\Users\48518\AppData\Roaming\Mozilla\Firefox\Profiles\9u3cr3r2.default-release [2021-03-03] FF Notifications: Mozilla\Firefox\Profiles\9u3cr3r2.default-release -> hxxps://www.facebook.com; hxxps://chaturbate.com FF Extension: (uBlock Origin) - C:\Users\48518\AppData\Roaming\Mozilla\Firefox\Profiles\9u3cr3r2.default-release\Extensions\uBlock0@raymondhill.net.xpi [2021-02-03] FF ProfilePath: C:\Users\48518\AppData\Roaming\Mozilla\Firefox\Profiles\md7ks34z.Agrax [2020-04-30] FF Notifications: Mozilla\Firefox\Profiles\md7ks34z.Agrax -> hxxps://www.youtube.com; hxxps://sparklesubs.pl; hxxps://kfc.pl; hxxps://chaturbate.com; hxxps://www.instagram.com; hxxps://www.mpspot.pl; hxxps://www.facebook.com; hxxps://www.morele.net; hxxps://www.wp.pl FF Extension: (Tampermonkey) - C:\Users\48518\AppData\Roaming\Mozilla\Firefox\Profiles\md7ks34z.Agrax\Extensions\firefox@tampermonkey.net.xpi [2019-04-05] FF Extension: (uBlock Origin) - C:\Users\48518\AppData\Roaming\Mozilla\Firefox\Profiles\md7ks34z.Agrax\Extensions\uBlock0@raymondhill.net.xpi [2019-03-14] FF Extension: (Video DownloadHelper) - C:\Users\48518\AppData\Roaming\Mozilla\Firefox\Profiles\md7ks34z.Agrax\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2019-07-08] FF Plugin: @java.com/DTPlugin,version=11.261.2 -> C:\Program Files\Java\jre1.8.0_261\bin\dtplugin\npDeployJava1.dll [2020-09-14] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.261.2 -> C:\Program Files\Java\jre1.8.0_261\bin\plugin2\npjp2.dll [2020-09-14] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @videolan.org/vlc,version=3.0.8 -> F:\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> E:\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2019-12-26] (FOXIT SOFTWARE INC. -> Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> E:\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2019-12-26] (FOXIT SOFTWARE INC. -> Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> E:\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2019-12-26] (FOXIT SOFTWARE INC. -> Foxit Corporation) FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> E:\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2019-12-26] (FOXIT SOFTWARE INC. -> Foxit Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-02-02] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-02-02] (Microsoft Corporation -> Microsoft Corporation) FF Plugin HKU\S-1-5-21-3824040131-627335375-284147089-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\48518\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-05-18] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) Chrome: ======= CHR Profile: C:\Users\48518\AppData\Local\Google\Chrome\User Data\Default [2021-02-23] CHR Notifications: Default -> hxxps://meet.google.com CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\48518\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-03] CHR Extension: (Chrome Media Router) - C:\Users\48518\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-01-27] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2020-09-24] (Apple Inc. -> Apple Inc.) R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936456 2015-05-13] (Microsoft Windows Hardware Compatibility Publisher -> ) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8736880 2020-10-20] (BattlEye Innovations e.K. -> ) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8905608 2021-02-13] (Microsoft Corporation -> Microsoft Corporation) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-06-09] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-06-09] (Dropbox, Inc -> Dropbox, Inc.) R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [44272 2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) R3 Disc Soft Lite Bus Service; F:\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4506728 2020-03-22] (AVB Disc Soft, SIA -> Disc Soft Ltd) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2020-02-28] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) S3 FvSvc; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [287720 2020-10-19] (NVIDIA Corporation -> NVIDIA) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6264144 2021-01-14] (Microsoft Windows Publisher -> Microsoft Corporation) S3 SteelSeriesUpdateService; C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesUpdateService.exe [32648 2021-01-20] (SteelSeries ApS -> ) S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [Brak podpisu cyfrowego] R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\NisSrv.exe [2462960 2021-02-12] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MsMpEng.exe [128376 2021-02-12] (Microsoft Windows Publisher -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_8e68f77150e57b50\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_8e68f77150e57b50\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15368 2015-05-13] (Microsoft Windows Hardware Compatibility Publisher -> ) S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [231936 2020-01-09] (Microsoft Corporation) [Brak podpisu cyfrowego] R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [42256 2020-03-22] (AVB Disc Soft, SIA -> Disc Soft Ltd) R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [59360 2020-03-22] (AVB Disc Soft, SIA -> Disc Soft Ltd) R3 ssdevfactory; C:\Windows\System32\drivers\ssdevfactory.sys [48848 2020-09-25] (SteelSeries ApS -> SteelSeries ApS) R3 SteamStreamingMicrophone; C:\Windows\system32\drivers\SteamStreamingMicrophone.sys [40736 2017-07-28] (Valve Corp. -> ) R3 SteamStreamingSpeakers; C:\Windows\system32\drivers\SteamStreamingSpeakers.sys [40736 2017-07-21] (Valve Corp. -> ) S3 tapprotonvpn; C:\Windows\System32\drivers\tapprotonvpn.sys [49008 2020-04-06] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project) S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49552 2021-02-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [419040 2021-02-12] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [71912 2021-02-12] (Microsoft Windows -> Microsoft Corporation) S3 MpKsle7a70653; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{5AF6002E-6182-4E90-BC68-5E155305A88E}\MpKslDrv.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-03-03 21:38 - 2021-03-03 22:26 - 000028028 _____ C:\Users\48518\Downloads\FRST.txt 2021-03-03 21:37 - 2021-03-03 22:26 - 000000000 ____D C:\FRST 2021-03-03 21:36 - 2021-03-03 21:36 - 002301440 _____ (Farbar) C:\Users\48518\Downloads\FRST64.exe 2021-03-03 21:09 - 2021-03-03 21:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2021-03-03 21:06 - 2021-03-03 21:06 - 000911780 _____ C:\Windows\Minidump\030321-8593-02.dmp 2021-03-03 20:57 - 2021-03-03 20:57 - 000000000 ____D C:\Users\48518\AppData\LocalLow\IronGate 2021-03-03 20:41 - 2021-03-03 21:06 - 1050629530 _____ C:\Windows\MEMORY.DMP 2021-03-03 20:41 - 2021-03-03 20:41 - 000893124 _____ C:\Windows\Minidump\030321-8343-01.dmp 2021-03-03 04:12 - 2021-03-03 04:12 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys 2021-03-03 04:12 - 2021-03-03 04:12 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys 2021-03-03 04:12 - 2021-03-03 04:12 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys 2021-03-03 04:12 - 2021-03-03 04:12 - 000044272 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe 2021-02-26 17:22 - 2021-02-26 17:22 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla 2021-02-26 15:35 - 2021-03-02 20:21 - 000000000 ____D C:\Program Files\Mozilla Firefox 2021-02-26 02:10 - 2021-02-26 02:10 - 000000000 ____D C:\Users\48518\AppData\Roaming\SEGA 2021-02-26 02:08 - 2021-02-26 02:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Persona 5 Strikers 2021-02-26 01:39 - 2021-02-26 01:39 - 000000000 ____D C:\Users\48518\AppData\Local\VCLStylesSkin 2021-02-26 00:26 - 2021-02-26 00:26 - 000119748 _____ C:\Users\48518\Downloads\Persona.5.Strikers-Chronos.torrent 2021-02-24 19:45 - 2021-02-24 19:45 - 000000000 ____D C:\Users\48518\AppData\LocalLow\niceplay games 2021-02-24 19:44 - 2021-02-24 19:44 - 000000203 _____ C:\Users\48518\Desktop\Potion Craft Demo.url 2021-02-23 23:18 - 2021-02-23 23:18 - 000001045 _____ C:\Users\48518\Desktop\LearningFactory.exe — skrót.lnk 2021-02-23 23:18 - 2021-02-23 23:18 - 000000000 ____D C:\Users\48518\AppData\LocalLow\Luden_io 2021-02-22 22:51 - 2021-02-22 22:51 - 000001023 _____ C:\Users\48518\Desktop\DSPGAME.exe — skrót.lnk 2021-02-21 23:53 - 2021-02-21 23:53 - 000000000 ____D C:\Users\48518\Documents\Dyson Sphere Program 2021-02-21 23:53 - 2021-02-21 23:53 - 000000000 ____D C:\Users\48518\AppData\LocalLow\Youthcat Studio 2021-02-21 22:41 - 2021-02-24 14:32 - 000000000 ____D C:\Users\48518\Desktop\drive-download-20210221T214042Z-001 2021-02-18 01:52 - 2021-02-18 01:53 - 000000000 ____D C:\Users\48518\AppData\Local\Loop_hero 2021-02-18 01:52 - 2021-02-18 01:52 - 000000203 _____ C:\Users\48518\Desktop\Loop Hero Demo.url 2021-02-12 15:33 - 2021-02-12 15:33 - 002755584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2021-02-12 15:33 - 2021-02-12 15:33 - 002755584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2021-02-12 15:33 - 2021-02-12 15:33 - 000232752 _____ C:\Windows\system32\containerdevicemanagement.dll 2021-02-12 15:33 - 2021-02-12 15:33 - 000000315 _____ C:\Windows\system32\DrtmAuth9.bin 2021-02-12 15:33 - 2021-02-12 15:33 - 000000315 _____ C:\Windows\system32\DrtmAuth8.bin 2021-02-12 15:33 - 2021-02-12 15:33 - 000000315 _____ C:\Windows\system32\DrtmAuth7.bin 2021-02-12 15:33 - 2021-02-12 15:33 - 000000315 _____ C:\Windows\system32\DrtmAuth6.bin 2021-02-12 15:33 - 2021-02-12 15:33 - 000000315 _____ C:\Windows\system32\DrtmAuth5.bin 2021-02-12 15:33 - 2021-02-12 15:33 - 000000315 _____ C:\Windows\system32\DrtmAuth4.bin 2021-02-12 15:33 - 2021-02-12 15:33 - 000000315 _____ C:\Windows\system32\DrtmAuth3.bin 2021-02-12 15:33 - 2021-02-12 15:33 - 000000315 _____ C:\Windows\system32\DrtmAuth2.bin 2021-02-12 15:33 - 2021-02-12 15:33 - 000000315 _____ C:\Windows\system32\DrtmAuth18.bin 2021-02-12 15:33 - 2021-02-12 15:33 - 000000315 _____ C:\Windows\system32\DrtmAuth17.bin 2021-02-12 15:33 - 2021-02-12 15:33 - 000000315 _____ C:\Windows\system32\DrtmAuth16.bin 2021-02-12 15:33 - 2021-02-12 15:33 - 000000315 _____ C:\Windows\system32\DrtmAuth15.bin 2021-02-12 15:33 - 2021-02-12 15:33 - 000000315 _____ C:\Windows\system32\DrtmAuth12.bin 2021-02-12 15:33 - 2021-02-12 15:33 - 000000315 _____ C:\Windows\system32\DrtmAuth11.bin 2021-02-12 15:33 - 2021-02-12 15:33 - 000000315 _____ C:\Windows\system32\DrtmAuth10.bin 2021-02-12 15:33 - 2021-02-12 15:33 - 000000315 _____ C:\Windows\system32\DrtmAuth1.bin 2021-02-05 22:48 - 2021-02-05 22:48 - 000000000 ____D C:\Users\48518\AppData\Local\ES2 2021-02-05 22:48 - 2021-02-05 22:48 - 000000000 ____D C:\Users\48518\AppData\Local\CrashReportClient 2021-02-05 17:04 - 2021-02-05 17:04 - 000000000 ____D C:\Users\48518\AppData\Local\ES2_Prototype 2021-02-04 21:11 - 2021-02-04 21:11 - 000000202 _____ C:\Users\48518\Desktop\Deep Rock Galactic.url ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-03-03 22:22 - 2020-03-18 02:19 - 000000000 ____D C:\Program Files\CCleaner 2021-03-03 22:20 - 2020-03-17 18:48 - 000000000 ____D C:\Users\48518\AppData\Roaming\discord 2021-03-03 22:03 - 2020-03-17 16:55 - 000000000 ____D C:\ProgramData\Mozilla 2021-03-03 22:02 - 2020-03-17 16:55 - 000000000 ____D C:\Users\48518\AppData\LocalLow\Mozilla 2021-03-03 21:49 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-03-03 21:22 - 2020-03-18 02:19 - 000004210 _____ C:\Windows\system32\Tasks\CCleaner Update 2021-03-03 21:21 - 2020-03-17 16:53 - 000000000 ____D C:\ProgramData\NVIDIA 2021-03-03 21:20 - 2020-03-17 14:54 - 000000000 ___RD C:\Users\48518\OneDrive 2021-03-03 21:19 - 2020-03-31 16:02 - 000000000 ____D C:\Users\48518\AppData\Local\CrashDumps 2021-03-03 21:19 - 2020-03-17 14:37 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2021-03-03 21:18 - 2019-03-19 05:37 - 000524288 _____ C:\Windows\system32\config\BBI 2021-03-03 21:09 - 2020-06-09 20:38 - 000000000 ____D C:\Program Files (x86)\Dropbox 2021-03-03 21:06 - 2020-03-17 14:39 - 000000000 ____D C:\Windows\minidump 2021-03-03 21:06 - 2020-03-17 14:37 - 000000000 ____D C:\Windows\system32\SleepStudy 2021-03-03 20:41 - 2019-03-19 05:50 - 000000000 ____D C:\Windows\INF 2021-03-03 02:00 - 2020-03-17 19:09 - 000000000 ____D C:\Users\48518\AppData\Local\Adobe 2021-03-03 00:11 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps 2021-03-03 00:11 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\AppReadiness 2021-03-02 21:38 - 2020-03-17 14:55 - 000000000 ____D C:\Users\48518\AppData\Local\PlaceholderTileLogoFolder 2021-03-02 20:21 - 2020-03-17 17:01 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2021-03-02 20:21 - 2020-03-17 14:50 - 000000000 ____D C:\Users\48518 2021-03-01 18:07 - 2020-09-14 19:33 - 000000000 ____D C:\Users\48518\Desktop\śmieci 2021-02-27 02:29 - 2020-06-09 04:11 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-02-26 17:22 - 2020-03-17 17:01 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2021-02-26 15:39 - 2020-09-11 12:40 - 000000000 ____D C:\Users\48518\AppData\Roaming\Azureus 2021-02-26 01:39 - 2020-03-22 23:46 - 000000000 ____D C:\Users\48518\AppData\Roaming\DAEMON Tools Lite 2021-02-26 00:39 - 2020-09-11 12:40 - 000000000 ____D C:\Users\48518\Documents\Vuze Downloads 2021-02-25 22:06 - 2020-03-17 19:02 - 000000000 ____D C:\Users\48518\AppData\Local\D3DSCache 2021-02-25 19:32 - 2020-03-18 01:12 - 000002307 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2021-02-25 18:07 - 2020-03-17 14:52 - 000000000 ____D C:\Users\48518\AppData\Local\Packages 2021-02-25 17:27 - 2020-04-07 21:06 - 000000000 ____D C:\Users\48518\AppData\Roaming\vlc 2021-02-25 01:03 - 2020-11-29 00:18 - 000000000 ____D C:\Users\48518\AppData\Local\Ubisoft Game Launcher 2021-02-24 21:32 - 2020-03-17 14:54 - 000003356 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3824040131-627335375-284147089-1001 2021-02-24 21:32 - 2020-03-17 14:50 - 000002407 _____ C:\Users\48518\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-02-24 19:44 - 2020-03-17 18:05 - 000000000 ____D C:\Users\48518\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2021-02-21 23:35 - 2020-09-30 23:04 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2021-02-21 21:36 - 2020-03-22 23:53 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2021-02-17 00:24 - 2020-07-21 00:27 - 001615824 _____ (Microsoft Corporation) C:\Windows\system32\xgameruntime.dll 2021-02-17 00:24 - 2020-07-21 00:27 - 000198088 _____ (Microsoft Corporation) C:\Windows\system32\gameplatformservices.dll 2021-02-17 00:24 - 2020-07-21 00:27 - 000167368 _____ (Microsoft Corporation) C:\Windows\system32\gamingservicesproxy.dll 2021-02-17 00:24 - 2020-07-21 00:27 - 000159176 _____ (Microsoft Corporation) C:\Windows\system32\gameconfighelper.dll 2021-02-17 00:24 - 2020-07-21 00:27 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcuihelpers.dll 2021-02-17 00:24 - 2020-07-21 00:27 - 000038352 _____ (Microsoft Corporation) C:\Windows\system32\gamemodcontrol.exe 2021-02-16 18:26 - 2020-03-17 17:49 - 000000000 ____D C:\ProgramData\Package Cache 2021-02-15 13:49 - 2020-03-23 00:10 - 000781116 _____ C:\Windows\system32\perfh00C.dat 2021-02-15 13:49 - 2020-03-23 00:10 - 000149684 _____ C:\Windows\system32\perfc00C.dat 2021-02-15 13:49 - 2020-03-17 14:43 - 002700518 _____ C:\Windows\system32\PerfStringBackup.INI 2021-02-15 13:49 - 2019-03-19 13:24 - 000784752 _____ C:\Windows\system32\perfh015.dat 2021-02-15 13:49 - 2019-03-19 13:24 - 000152550 _____ C:\Windows\system32\perfc015.dat 2021-02-15 13:44 - 2020-03-17 14:52 - 000000000 ___RD C:\Users\48518\3D Objects 2021-02-15 13:43 - 2020-03-17 14:37 - 005102216 _____ C:\Windows\system32\FNTCACHE.DAT 2021-02-12 23:02 - 2019-03-19 05:52 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2021-02-12 23:02 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SysWOW64\Dism 2021-02-12 23:02 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SystemResources 2021-02-12 23:02 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\oobe 2021-02-12 23:02 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\es-MX 2021-02-12 23:02 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\Dism 2021-02-12 23:02 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\ShellExperiences 2021-02-12 23:02 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\PolicyDefinitions 2021-02-12 23:02 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\bcastdvr 2021-02-12 23:02 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files\Common Files\System 2021-02-12 15:36 - 2019-03-19 05:37 - 000000000 ____D C:\Windows\CbsTemp 2021-02-12 15:35 - 2019-03-19 13:26 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\OEMDefaultAssociations.dll 2021-02-12 15:35 - 2019-03-19 13:26 - 000019469 _____ C:\Windows\system32\OEMDefaultAssociations.xml 2021-02-12 14:48 - 2020-03-17 14:37 - 000000000 ____D C:\Windows\system32\Drivers\wd 2021-02-10 15:09 - 2020-06-09 20:39 - 000001162 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job 2021-02-10 15:09 - 2020-06-09 20:39 - 000001158 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job 2021-02-10 00:22 - 2020-03-17 15:14 - 000000000 ____D C:\Windows\system32\MRT 2021-02-10 00:19 - 2020-03-17 15:14 - 130141752 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2021-02-08 19:23 - 2020-06-09 04:10 - 000003510 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-02-08 19:23 - 2020-06-09 04:10 - 000003386 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-02-05 20:30 - 2020-09-30 23:04 - 000916288 _____ (Microsoft Corporation) C:\Windows\system32\sedplugins.dll 2021-02-05 20:30 - 2020-09-30 23:04 - 000437056 _____ (Microsoft Corporation) C:\Windows\system32\QualityUpdateAssistant.dll 2021-02-05 16:25 - 2020-03-18 01:11 - 000003568 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA 2021-02-05 16:25 - 2020-03-18 01:11 - 000003444 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore ==================== Pliki w katalogu głównym wybranych folderów ======== 2020-03-17 19:55 - 2020-03-17 19:55 - 000000132 _____ () C:\Users\48518\AppData\Roaming\Preferencje formatu PNG CS6 firmy Adobe 2020-06-26 15:19 - 2020-06-26 15:19 - 000000509 _____ () C:\Users\48518\AppData\Local\Perfmon.PerfmonCfg 2020-06-26 14:54 - 2020-06-26 14:54 - 000000017 _____ () C:\Users\48518\AppData\Local\resmon.resmoncfg ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================