Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 06-06-2021 01 Uruchomiony przez keramti (administrator) KERAMTI73 (Gigabyte Technology Co., Ltd. Z87-DS3H) (07-06-2021 19:34:03) Uruchomiony z C:\Users\keramti\Downloads Załadowane profile: keramti Platform: Windows 10 Pro Wersja 20H2 19042.985 (X64) Język: Polski (Polska) Domyślna przeglądarka: Chrome Tryb startu: Safe Mode (with Networking) ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) Brak dostępu do procesu -> csrss.exe Brak dostępu do procesu -> csrss.exe Brak dostępu do procesu -> dwm.exe Brak dostępu do procesu -> fontdrvhost.exe Brak dostępu do procesu -> fontdrvhost.exe Brak dostępu do procesu -> WmiPrvSE.exe Brak dostępu do procesu -> WmiPrvSE.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412680 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [146584 2017-11-07] (Brother Industries, Ltd. -> Brother Industries, Ltd.) HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => I:\Hamaci\hamachi-2-ui.exe [5890504 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.) HKLM-x32\...\Run: [REDRAGON GRIFFIN Gaming Mouse] => C:\Program Files (x86)\REDRAGON GRIFFIN Gaming Mouse\hid.exe [955392 2017-11-13] () [Brak podpisu cyfrowego] HKLM\...\RunOnce: [RollbackOnline] => C:\$WINDOWS.~BT\Sources\SetupPlatform.exe [169800 2020-07-18] (Microsoft Windows -> Microsoft Corporation) HKLM\...\Policies\Explorer: [NoInternetOpenWith] 1 HKLM\...\Policies\Explorer: [NoPublishingWizard] 1 HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA HKU\S-1-5-21-3675876383-3003633198-259424462-1000\...\Run: [Gaijin.Net Updater] => C:\Users\keramti\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2374376 2020-12-09] (Gaijin Network LTD -> Gaijin) HKU\S-1-5-21-3675876383-3003633198-259424462-1000\...\Run: [Wargaming.net Game Center] => E:\Word od Warsh\Wargaming.net\GameCenter\wgc.exe [2143168 2021-05-27] (Wargaming.net Limited -> Wargaming.net) HKU\S-1-5-21-3675876383-3003633198-259424462-1000\...\Run: [CCleaner Smart Cleaning] => D:\CClaner\CCleaner64.exe [33770112 2021-05-20] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-3675876383-3003633198-259424462-1000\...\RunOnce: [Uninstall 21.083.0425.0003] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\keramti\AppData\Local\Microsoft\OneDrive\21.083.0425.0003" HKU\S-1-5-21-3675876383-3003633198-259424462-1000\...\MountPoints2: {06d83a2e-3c67-11ea-a769-74d435142b41} - "H:\HiSuiteDownLoader.exe" HKU\S-1-5-21-3675876383-3003633198-259424462-1000\...\MountPoints2: {5094cd91-fa40-11ea-a878-74d435142b41} - "Q:\HiSuiteDownLoader.exe" HKU\S-1-5-21-3675876383-3003633198-259424462-1000\...\MountPoints2: {87189ac0-9d3e-11eb-a93c-74d435142b41} - "Q:\HiSuiteDownLoader.exe" HKU\S-1-5-21-3675876383-3003633198-259424462-1000\...\MountPoints2: {b186003b-e5d5-11ea-a86e-74d435142b41} - "H:\HiSuiteDownLoader.exe" HKU\S-1-5-21-3675876383-3003633198-259424462-1000\...\MountPoints2: {de3a9994-bee8-11eb-a968-74d435142b41} - "H:\HiSuiteDownLoader.exe" HKU\S-1-5-21-3675876383-3003633198-259424462-1000\...\MountPoints2: {e0e5d257-1213-11e7-bea4-74d435142b41} - "H:\AutoRun.exe" HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE -> HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\91.0.4472.77\Installer\chrmstp.exe [2021-06-03] (Google LLC -> Google LLC) Policies: C:\ProgramData\NTUSER.pol: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0ED8B2D7-D072-45EA-AD5D-79FA8A0257BC} - System32\Tasks\SmartGameBooster SkipUAC (adamt) => I:\Smart Game Booster\4.6.0\SgbMain.exe Task: {13327D7B-4404-41BC-8D6D-69BC46CB9643} - System32\Tasks\SmartGameBooster Update => I:\Smart Game Booster\4.6.0\SgbUpdater.exe Task: {1466FA41-E690-47F8-A572-C02DF105198E} - System32\Tasks\BlueStacksHelper => F:\BlueStacks\Client\Helper\BlueStacksHelper.exe [754472 2021-04-05] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.) Task: {30D3D6F9-7742-4D33-92B6-0BC47D0B65E4} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [68280 2019-08-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {315A0783-F04C-4035-820E-76D0F3E18369} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412680 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {3209488F-FEAA-44B8-A270-44972FF0E870} - System32\Tasks\SmartGameBooster Startup => I:\Smart Game Booster\4.6.0\SgbTray.exe Task: {3A26BA04-B9C4-4F62-AACD-C0209E5A5B4E} - System32\Tasks\CCleanerSkipUAC => D:\CClaner\CCleaner.exe [28158080 2021-05-20] (Piriform Software Ltd -> Piriform Software Ltd) Task: {5BA8D8E5-EDBB-4059-8E87-47DC39D005A4} - System32\Tasks\CCleaner Update => D:\CClaner\CCUpdate.exe [684976 2021-05-20] (Piriform Software Ltd -> Piriform) Task: {6108A6AF-3E2B-4704-AE97-3E182C7B2034} - System32\Tasks\MicrosoftEdgeUpdateTaskMachineCore => C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe Task: {64A6A40A-5613-4960-869A-3A1BCB902802} - System32\Tasks\Opera GX scheduled Autoupdate 1598642203 => C:\Users\adamt\AppData\Local\Programs\Opera GX\launcher.exe Task: {6E1F1EE5-B154-4A8C-8BD2-B0FD34BB21F9} - System32\Tasks\Opera GX scheduled Autoupdate 1602694336 => C:\Users\adamt\AppData\Local\Programs\Opera GX\launcher.exe Task: {92C37F69-8EB7-4864-B5C2-1675BAB6B47D} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3675876383-3003633198-259424462-1016 => C:\Users\keramti\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe Task: {AB2106C7-DFCC-4ED4-A269-399E21D5D877} - System32\Tasks\Opera GX scheduled Autoupdate 1613479418 => I:\OperaGX\launcher.exe [1821392 2021-06-01] (Opera Software AS -> Opera Software) Task: {B21694A9-54FD-4BE4-8FA8-6F77DF28F722} - System32\Tasks\Opera GX scheduled assistant Autoupdate 1615886244 => I:\OperaGX\launcher.exe [1821392 2021-06-01] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="I:\OperaGX\assistant" $(Arg0) Task: {C5D91F66-3201-406A-BD28-B2EE13CAA593} - System32\Tasks\MicrosoftEdgeUpdateTaskMachineUA => C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe Task: {DF47C6B9-2F34-4FDA-BC72-1DEFA99FAB5B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2018-12-26] (Google Inc -> Google Inc.) Task: {EC8E34C3-AA11-4690-BC0B-9A880C1D710D} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3675876383-3003633198-259424462-1000 => C:\Users\keramti\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe Task: {F2951072-5C8D-4F2B-9F9F-EBB5DB4B11D8} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61112 2019-08-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {FA238AAC-641D-464E-ABDE-6917A4B7C41C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2018-12-26] (Google Inc -> Google Inc.) Task: {FD74BC93-70D2-4A95-AA32-E777760B1921} - System32\Tasks\Microsoft\VisualStudio\Updates\BackgroundDownload => C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\BackgroundDownload.exe [64944 2021-03-03] (Microsoft Corporation -> Microsoft) Task: {FE889E86-010B-4A3E-ADB5-B62B428F33BE} - System32\Tasks\Opera GX scheduled Autoupdate 1605096523 => I:\OperaGX\launcher.exe [1821392 2021-06-01] (Opera Software AS -> Opera Software) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Winsock: Catalog5 01 C:\WINDOWS\SysWOW64\PrxerNsp.dll [87024 2018-08-15] (Initeks, OOO -> ) Winsock: Catalog5-x64 01 C:\Windows\system32\PrxerNsp.dll [101872 2018-08-15] (Initeks, OOO -> ) Tcpip\Parameters: [DhcpNameServer] 89.228.4.126 31.11.173.2 Tcpip\..\Interfaces\{b0d97abc-b7f2-4e7d-9db6-bc90dd1bc5f1}: [DhcpNameServer] 89.228.4.126 31.11.173.2 Edge: ======= Edge Extension: (Brak nazwy) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [nie znaleziono] Edge Extension: (Brak nazwy) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [nie znaleziono] Edge Extension: (Brak nazwy) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [nie znaleziono] Edge Extension: (Brak nazwy) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [nie znaleziono] Edge DefaultProfile: Default Edge Profile: C:\Users\keramti\AppData\Local\Microsoft\Edge\User Data\Default [2021-06-07] FireFox: ======== FF DefaultProfile: hgdengw4.default-1621723591995 FF ProfilePath: C:\Users\keramti\AppData\Roaming\Mozilla\Firefox\Profiles\hgdengw4.default-1621723591995 [2021-06-07] FF Homepage: Mozilla\Firefox\Profiles\hgdengw4.default-1621723591995 -> www.interia.pl FF Extension: (Sprawdzanie ortografii i gramatyki – LanguageTool) - C:\Users\keramti\AppData\Roaming\Mozilla\Firefox\Profiles\hgdengw4.default-1621723591995\Extensions\languagetool-webextension@languagetool.org.xpi [2021-06-04] FF Extension: (Gamer TIme) - C:\Users\keramti\AppData\Roaming\Mozilla\Firefox\Profiles\hgdengw4.default-1621723591995\Extensions\{3afd3680-7dda-4412-be2c-1494d8162531}.xpi [2021-06-03] StartMenuInternet: Firefox-E020BA2ACACF116C - D:\Mozilla Firefox\firefox.exe Chrome: ======= CHR Profile: C:\Users\keramti\AppData\Local\Google\Chrome\User Data\Default [2021-06-07] CHR Notifications: Default -> hxxps://www.tipli.pl CHR Extension: (Prezentacje) - C:\Users\keramti\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-03-11] CHR Extension: (Safe Torrent Scanner) - C:\Users\keramti\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2021-03-11] CHR Extension: (Dokumenty) - C:\Users\keramti\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-03-11] CHR Extension: (Dysk Google) - C:\Users\keramti\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-03-11] CHR Extension: (YouTube) - C:\Users\keramti\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-03-11] CHR Extension: (Wtyczka Tipli) - C:\Users\keramti\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejocgomhimjbhmpbjphkikodfplbemjb [2021-05-02] CHR Extension: (Arkusze) - C:\Users\keramti\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-03-11] CHR Extension: (Dokumenty Google offline) - C:\Users\keramti\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-05-20] CHR Extension: (Program uruchamiający aplikacje dla plików z Dysku (od Google)) - C:\Users\keramti\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-03-11] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\keramti\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-03-11] CHR Extension: (e-pity - dodatek) - C:\Users\keramti\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofoeigeaodhbjogdigckajfhjbonaofg [2021-04-22] CHR Extension: (Gmail) - C:\Users\keramti\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-03-11] CHR Extension: (Chrome Media Router) - C:\Users\keramti\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-06-04] CHR HKU\S-1-5-21-3675876383-3003633198-259424462-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\keramti\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx CHR HKU\S-1-5-21-3675876383-3003633198-259424462-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb] CHR HKLM-x32\...\Chrome\Extension: [ofoeigeaodhbjogdigckajfhjbonaofg] Opera: ======= OPR Profile: C:\Users\keramti\AppData\Roaming\Opera Software\Opera Stable [2021-06-07] OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding} StartMenuInternet: (HKLM) OperaStable - D:\Opera\Launcher.exe ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [852024 2020-11-13] (Adobe Inc. -> Adobe Inc.) S2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3780296 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated) S2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3548360 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [6212880 2018-06-26] (BattlEye Innovations e.K. -> ) S3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [314368 2018-01-18] (Brother Industries, Ltd.) [Brak podpisu cyfrowego] S3 DisplayFusionService; I:\DisplayFusiopn\DisplayFusion\DisplayFusionService.exe [10570704 2020-12-28] (Binary Fortress Software Ltd -> Binary Fortress Software) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803952 2019-08-02] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) S3 Hamachi2Svc; I:\Hamaci\x64\hamachi-2.exe [3361736 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.) S2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [236864 2020-12-05] (Huawei Technologies Co., Ltd. -> ) S3 MEmuSVC; D:\Program Files\Microvirt\MEmu\MemuService.exe [85304 2019-09-12] (Shanghai Microvirt Software Technology Co., Ltd. -> ) S3 Origin Client Service; F:\Origin\OriginClientService.exe [2547344 2021-05-20] (Electronic Arts, Inc. -> Electronic Arts) S2 Origin Web Helper Service; F:\Origin\OriginWebHelperService.exe [3487384 2021-05-20] (Electronic Arts, Inc. -> Electronic Arts) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5393288 2021-05-14] (Microsoft Windows Publisher -> Microsoft Corporation) S2 USBAppControl; C:\Program Files (x86)\Brother\iPrint&Scan\USBAppControl.exe [12288 2020-12-18] (Microsoft) [Brak podpisu cyfrowego] S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [10069120 2020-11-24] (Riot Games, Inc. -> Riot Games, Inc.) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\NisSrv.exe [2496144 2020-07-02] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2006.10-0\MsMpEng.exe [104192 2020-07-02] (Microsoft Windows Publisher -> Microsoft Corporation) S2 WorkflowAppControl; C:\Program Files (x86)\Brother\iPrint&Scan\WorkflowAppControl.exe [20480 2020-12-18] (Microsoft) [Brak podpisu cyfrowego] ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [62056 2020-12-14] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) S3 aswTap; C:\WINDOWS\System32\drivers\aswTap.sys [53904 2021-03-21] (AVAST Software s.r.o. -> The OpenVPN Project) S2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2020-10-05] (Bluestack Systems, Inc -> Bluestack System Inc.) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego] S3 DFX11_1; C:\WINDOWS\system32\drivers\dfx11_1x64.sys [28008 2018-03-08] (Power Technology -> Windows (R) Win 7 DDK provider) S3 DFX12; C:\WINDOWS\system32\drivers\dfx12x64.sys [39048 2018-03-08] (Power Technology -> Windows (R) Win 7 DDK provider) S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2019-12-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.) S3 FairplayKD; C:\ProgramData\MTA San Andreas All\Common\temp\FairplayKD.sys [104512 2021-06-06] (Hans Roes -> Multi Theft Auto) S1 GUBootStartup; C:\WINDOWS\System32\drivers\GUBootStartup.sys [28936 2019-08-09] (Glarysoft LTD -> Glarysoft Ltd) R3 Hamachi; C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [45680 2019-04-02] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.) U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2020-12-05] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.) S2 inpoutx64; C:\WINDOWS\System32\Drivers\inpoutx64.sys [15008 2019-02-16] (Red Fox UK Limited -> Highresolution Enterprises [www.highrez.co.uk]) S1 MEmuDrv; C:\WINDOWS\system32\DRIVERS\MEmuDrv.sys [320360 2021-01-04] (Shanghai Microvirt Software Technology Co., Ltd. -> Maiwei Corporation) R1 MEmuNetLwf; C:\WINDOWS\system32\DRIVERS\MEmuNetLwf.sys [220560 2020-09-29] (Shanghai Microvirt Software Technology Co., Ltd. -> Maiwei Corporation) R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions) R0 SmartDefragDriver; C:\WINDOWS\System32\Drivers\SmartDefragDriver.sys [30744 2017-03-09] (IObit Information Technology -> IObit) S2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software) S3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [49024 2020-12-30] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project) R3 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [239616 2021-04-28] (Oracle Corporation -> Oracle Corporation) R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [249536 2021-04-28] (Oracle Corporation -> Oracle Corporation) S1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [5811160 2020-11-24] (Riot Games, Inc. -> Riot Games, Inc.) R1 vmkbd3; C:\WINDOWS\system32\DRIVERS\vmkbd.sys [52288 2020-06-05] (VMware, Inc. -> VMware, Inc.) S2 VMnetBridge; C:\WINDOWS\system32\DRIVERS\vmnetbridge.sys [66368 2020-06-05] (VMware, Inc. -> VMware, Inc.) S2 vmparport; C:\WINDOWS\system32\DRIVERS\vmparport.sys [49216 2020-06-05] (VMware, Inc. -> VMware, Inc.) S3 VOICEMOD_Driver; C:\WINDOWS\system32\drivers\vmdrv.sys [45408 2018-11-22] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider) R0 vsock; C:\WINDOWS\System32\DRIVERS\vsock.sys [103224 2019-08-14] (VMware, Inc. -> VMware, Inc.) S2 vstor2-mntapi20-shared; C:\Windows\SysWow64\drivers\vstor2-x64.sys [52576 2018-02-28] (VMware, Inc. -> VMware, Inc.) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45976 2020-07-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [408816 2020-07-02] (Microsoft Windows -> Microsoft Corporation) S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [159936 2019-03-22] (NGO -> MBB) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [64224 2020-07-02] (Microsoft Windows -> Microsoft Corporation) U4 HomeGroupProvider; Brak ImagePath ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-06-07 19:36 - 2021-06-07 20:22 - 000000000 ___DC C:\$Windows.~BT 2021-06-07 19:36 - 2021-06-07 20:18 - 000000000 __HDC C:\$SysReset 2021-06-07 19:34 - 2021-06-07 19:34 - 000021219 ____C C:\Users\keramti\Downloads\FRST.txt 2021-06-07 19:33 - 2021-06-07 19:33 - 002300416 _____ (Farbar) C:\Users\keramti\Downloads\FRST64.exe 2021-06-07 19:30 - 2021-06-07 19:30 - 000000000 ____D C:\ProgramData\Office Genuine Advantage 2021-06-07 18:49 - 2021-06-07 19:19 - 000008192 ___SH C:\DumpStack.log.tmp 2021-06-07 18:28 - 2021-06-07 19:33 - 000146544 _____ C:\WINDOWS\ntbtlog.txt 2021-06-07 18:20 - 2021-06-07 18:20 - 000035259 ____C C:\Users\keramti\Downloads\transfer_20210607.pdf 2021-06-07 15:21 - 2021-06-07 15:21 - 000000740 _____ C:\Users\adamt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Przeglądarka Opera GX.lnk 2021-06-06 22:49 - 2021-06-06 22:49 - 000033022 _____ C:\Users\adamt\AppData\Local\recently-used.xbel 2021-06-06 17:34 - 2021-06-06 17:34 - 000000000 __HDC C:\Users\adamt\Downloads\.opera 2021-06-05 15:18 - 2021-06-07 18:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox 2021-06-05 15:18 - 2021-04-28 14:27 - 000187648 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxUSBMon.sys 2021-06-05 15:18 - 2021-04-28 14:26 - 001038080 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxDrv.sys 2021-06-05 13:51 - 2021-06-05 13:52 - 010496352 ____C C:\Users\adamt\Desktop\miasteczk.mp4 2021-06-03 10:18 - 2021-06-03 10:19 - 000000000 ____D C:\Users\adamt\AppData\Roaming\Google 2021-06-03 10:17 - 2021-06-07 18:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Android Studio 2021-06-01 13:02 - 2021-06-01 13:02 - 000000031 ____C C:\Users\adamt\Desktop\aliexpress.txt 2021-05-31 17:41 - 2021-05-31 17:41 - 000003370 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3675876383-3003633198-259424462-1000 2021-05-30 23:10 - 2021-05-30 23:10 - 010589670 ____C C:\Users\adamt\Desktop\Pogczampo.mp4 2021-05-30 22:31 - 2021-05-30 22:31 - 005741959 ____C C:\Users\adamt\Desktop\VID_44610413_225540_633.mp4 2021-05-28 21:09 - 2021-05-30 11:51 - 000000000 ___DC C:\Users\adamt\Downloads\MEmu Download 2021-05-28 14:08 - 2021-05-28 14:08 - 000004156 _____ C:\WINDOWS\system32\Tasks\Opera GX scheduled Autoupdate 1613479418 2021-05-27 20:11 - 2021-05-27 20:11 - 000000326 ____C C:\Users\adamt\Desktop\Among Us.url 2021-05-27 20:11 - 2021-05-27 20:11 - 000000000 ___DC C:\Users\adamt\AppData\LocalLow\Innersloth 2021-05-26 16:29 - 2020-11-02 16:25 - 000126084 _____ C:\Users\adamt\Desktop\igame24-theme.xml 2021-05-26 15:10 - 2021-05-26 15:10 - 000000809 ____C C:\Users\Public\Desktop\Epic Games Launcher.lnk 2021-05-26 15:10 - 2021-05-26 15:10 - 000000809 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk 2021-05-26 15:10 - 2021-05-26 15:10 - 000000000 ____D C:\Users\adamt\AppData\Local\EpicGamesLauncher 2021-05-26 13:05 - 2021-05-26 14:08 - 000000065 ____C C:\Users\adamt\Desktop\forum.txt 2021-05-26 12:20 - 2021-05-26 12:20 - 000003906 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2021-05-25 13:02 - 2021-05-25 13:02 - 000000000 ____C C:\Users\adamt\Desktop\Nowy dokument tekstowy.txt 2021-05-25 12:43 - 2021-05-25 12:43 - 000000000 ____D C:\Users\adamt\.vscode 2021-05-25 12:42 - 2021-05-25 12:42 - 000000760 ____C C:\Users\adamt\Desktop\Visual Studio Code.lnk 2021-05-24 22:15 - 2021-05-24 22:56 - 000000000 ____D C:\Users\adamt\Desktop\bot 2021-05-24 22:14 - 2021-05-24 22:14 - 000000000 ____D C:\Users\adamt\AppData\Local\pip 2021-05-24 22:06 - 2021-05-24 22:07 - 000000000 ____D C:\Users\adamt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.9 2021-05-24 14:31 - 2021-05-24 14:31 - 000000008 __RSH C:\ProgramData\ntuser.pol 2021-05-24 14:27 - 2021-05-24 14:27 - 000000000 ___DC C:\Users\keramti\Downloads\FRST-OlderVersion 2021-05-23 20:49 - 2021-05-24 14:31 - 000000000 ___DC C:\FRST 2021-05-23 00:46 - 2021-05-23 00:46 - 000000000 ___DC C:\Users\keramti\Desktop\Stare dane programu Firefox 2021-05-23 00:34 - 2021-05-23 00:34 - 000000000 ____D C:\Users\adamt\AppData\Roaming\Mozilla 2021-05-23 00:34 - 2021-05-23 00:34 - 000000000 ____D C:\Users\adamt\AppData\Local\Mozilla 2021-05-21 15:57 - 2021-05-21 15:57 - 000000000 ___DC C:\Users\adamt\Documents\Navicat 2021-05-21 15:56 - 2021-06-07 18:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PremiumSoft 2021-05-21 13:05 - 2021-05-21 13:05 - 000002173 ____C C:\Users\adamt\Desktop\YOUR SPACE.lnk 2021-05-21 09:37 - 2021-05-21 09:37 - 000000128 _____ C:\Users\adamt\AppData\Local\PUTTY.RND 2021-05-20 08:05 - 2021-05-25 22:34 - 000002240 ____C C:\Users\adamt\Desktop\Discord.lnk 2021-05-20 07:59 - 2021-05-20 07:59 - 000000000 ____D C:\WINDOWS\Panther 2021-05-18 18:11 - 2021-05-18 18:12 - 000077824 ____C (Tiime2Act) C:\Users\adamt\Desktop\Spam Bot.exe 2021-05-14 09:15 - 2021-05-14 09:15 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2021-05-14 09:15 - 2021-05-14 09:15 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll 2021-05-14 09:15 - 2021-05-14 09:15 - 000700928 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll 2021-05-14 09:15 - 2021-05-14 09:15 - 000157184 _____ C:\WINDOWS\system32\uwfcsp.dll 2021-05-14 09:15 - 2021-05-14 09:15 - 000153600 _____ C:\WINDOWS\system32\uwfcfgmgmt.dll 2021-05-14 09:14 - 2021-05-14 09:14 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2021-05-14 09:14 - 2021-05-14 09:14 - 001823816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2021-05-14 09:14 - 2021-05-14 09:14 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2021-05-14 09:14 - 2021-05-14 09:14 - 001314120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2021-05-14 09:14 - 2021-05-14 09:14 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE 2021-05-14 09:14 - 2021-05-14 09:14 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe 2021-05-14 09:14 - 2021-05-14 09:14 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe 2021-05-14 09:14 - 2021-05-14 09:14 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe 2021-05-14 09:14 - 2021-05-14 09:14 - 000011351 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-05-10 07:48 - 2021-05-10 07:48 - 000003366 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3675876383-3003633198-259424462-1016 ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2051-04-10 18:47 - 2021-03-06 14:58 - 000000000 __HDC C:\Users\Public\Documents\AdobeGCData 2021-06-07 20:20 - 2021-03-21 22:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Node.js 2021-06-07 20:20 - 2021-02-08 19:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unity 2018.1.1f1 (64-bit) 2021-06-07 20:20 - 2021-02-06 21:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DisplayFusion 2021-06-07 20:20 - 2021-01-27 20:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unity 2018.4.30f1 (64-bit) 2021-06-07 20:20 - 2020-12-19 12:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wargaming.net 2021-06-07 20:20 - 2020-12-14 13:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio 2021-06-07 20:20 - 2020-10-22 20:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image-Line 2021-06-07 20:20 - 2020-08-16 23:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi 2021-06-07 20:20 - 2020-06-08 16:40 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag 2021-06-07 20:20 - 2020-03-20 10:48 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mumble 2021-06-07 20:20 - 2020-01-21 21:24 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam 2021-06-07 20:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase 2021-06-07 20:20 - 2019-08-13 11:23 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2021-06-07 20:20 - 2019-08-09 21:13 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5 2021-06-07 20:20 - 2019-04-20 11:15 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Genesis HX66 Headset Driver 2021-06-07 20:20 - 2019-04-07 00:09 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Multimedialny Kurs Microsoft Excel 2003 2021-06-07 20:20 - 2019-04-06 23:11 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel XP-2003 - praktyczny kurs obsługi 2021-06-07 20:20 - 2019-02-17 17:31 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2021-06-07 20:20 - 2019-02-15 20:54 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2021-06-07 20:20 - 2015-12-31 20:40 - 000000000 ____D C:\WINDOWS\CSC 2021-06-07 19:47 - 2019-12-07 11:14 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template 2021-06-07 19:31 - 2020-07-18 19:04 - 001772132 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-06-07 19:31 - 2019-12-07 17:09 - 000784340 _____ C:\WINDOWS\system32\perfh015.dat 2021-06-07 19:31 - 2019-12-07 17:09 - 000152236 _____ C:\WINDOWS\system32\perfc015.dat 2021-06-07 19:31 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2021-06-07 19:25 - 2018-12-26 09:53 - 000000000 ___DC C:\Users\keramti\AppData\LocalLow\Mozilla 2021-06-07 19:24 - 2020-07-18 18:46 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-06-07 18:51 - 2020-04-12 15:13 - 000000000 ___DC C:\Intel 2021-06-07 18:29 - 2019-12-07 11:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI 2021-06-07 18:02 - 2020-08-17 20:57 - 000000000 ____D C:\Users\keramti\AppData\Local\LogMeIn Hamachi 2021-06-07 18:02 - 2020-07-22 13:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MTA San Andreas 1.5 2021-06-07 18:00 - 2016-01-08 01:48 - 000000000 ___DC C:\Users\keramti\Desktop\PROGRAMY 2021-06-07 17:58 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2021-06-07 17:57 - 2020-07-18 18:56 - 000000000 ____D C:\Users\adamt 2021-06-07 17:57 - 2018-12-26 09:43 - 000000000 _RDCL C:\Users\keramti\OneDrive 2021-06-07 15:33 - 2019-09-23 20:13 - 000000000 ___DC C:\Users\adamt\AppData\Roaming\GlarySoft 2021-06-07 15:31 - 2018-12-27 09:26 - 000000000 ___DC C:\Users\adamt\AppData\Local\ElevatedDiagnostics 2021-06-06 22:49 - 2019-01-01 14:43 - 000000000 ___DC C:\Users\adamt\.gimp-2.8 2021-06-06 21:37 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-06-06 19:54 - 2020-04-30 16:30 - 000008049 ____C C:\WINDOWS\BRRBCOM.INI 2021-06-06 17:44 - 2018-12-26 13:20 - 000000000 ___DC C:\Users\adamt\AppData\Local\D3DSCache 2021-06-06 13:40 - 2018-12-26 14:06 - 000000128 ____C C:\Users\adamt\AppData\Roaming\winscp.rnd 2021-06-06 12:24 - 2020-07-18 19:02 - 000000006 ___HC C:\WINDOWS\Tasks\SA.DAT 2021-06-06 12:23 - 2018-12-26 09:39 - 000065536 ____C C:\WINDOWS\system32\spu_storage.bin 2021-06-05 22:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-06-05 22:28 - 2018-12-26 21:53 - 000000000 ___DC C:\Users\keramti\AppData\Roaming\Origin 2021-06-05 22:28 - 2018-12-26 21:53 - 000000000 ___DC C:\ProgramData\Origin 2021-06-05 21:19 - 2016-01-01 16:39 - 000000000 ___DC C:\Users\keramti\Documents\FIFA 12 2021-06-05 20:32 - 2018-12-26 21:53 - 000000000 ___DC C:\Users\keramti\AppData\Local\Origin 2021-06-05 16:34 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-06-05 15:23 - 2019-11-30 14:23 - 000000000 ___DC C:\Users\adamt\.VirtualBox 2021-06-05 15:20 - 2020-10-15 21:12 - 000000000 ____D C:\ProgramData\VirtualBox 2021-06-05 00:22 - 2019-01-16 19:32 - 000000000 ___DC C:\Users\keramti\AppData\Local\D3DSCache 2021-06-05 00:11 - 2021-03-13 23:10 - 000000000 ____D C:\Users\adamt\AppData\Roaming\discord 2021-06-04 16:08 - 2017-04-05 19:16 - 000000000 _SHDC C:\Users\keramti\IntelGraphicsProfiles 2021-06-04 00:09 - 2019-04-20 10:18 - 000000000 ___DC C:\Users\keramti\AppData\Local\CrashDumps 2021-06-03 21:58 - 2019-01-01 15:09 - 000000000 ___DC C:\Users\adamt\AppData\Local\gtk-2.0 2021-06-03 10:18 - 2021-03-22 10:27 - 000000000 ____D C:\Users\adamt\AppData\Local\Google 2021-06-02 18:48 - 2020-07-18 18:56 - 000000000 ____D C:\Users\keramti 2021-06-02 18:02 - 2019-02-04 22:36 - 000000000 ___DC C:\ProgramData\Mozilla 2021-06-02 17:37 - 2019-06-18 22:27 - 000000000 ___DC C:\Program Files (x86)\Mozilla Maintenance Service 2021-06-02 15:08 - 2021-03-11 15:10 - 000000000 ____D C:\Users\adamt\AppData\Local\CrashDumps 2021-06-01 23:23 - 2018-12-26 09:53 - 000000854 ____C C:\Users\keramti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2021-06-01 13:02 - 2018-12-25 14:02 - 000000000 _SHDC C:\Users\adamt\IntelGraphicsProfiles 2021-05-31 17:40 - 2020-08-16 23:11 - 000000000 ____D C:\Users\adamt\AppData\Local\LogMeIn Hamachi 2021-05-30 11:40 - 2021-03-25 14:33 - 000000000 ____D C:\Users\adamt\AppData\Roaming\Code 2021-05-30 11:26 - 2020-10-22 15:07 - 000000000 ____D C:\Users\adamt\.MemuHyperv 2021-05-27 20:34 - 2021-04-26 13:51 - 000000000 ____D C:\Users\adamt\AppData\Roaming\obs-studio 2021-05-27 12:07 - 2021-03-24 21:55 - 000000000 ____D C:\Users\adamt\AppData\Roaming\Sublime Text 3 2021-05-27 12:07 - 2021-03-24 21:55 - 000000000 ____D C:\Users\adamt\AppData\Local\Sublime Text 3 2021-05-26 15:11 - 2019-01-01 20:24 - 000000000 ___DC C:\Users\adamt\AppData\Local\NVIDIA Corporation 2021-05-26 12:20 - 2020-09-21 16:09 - 000002846 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC 2021-05-25 12:42 - 2021-03-25 14:33 - 000000000 ____D C:\Users\adamt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Visual Studio Code 2021-05-24 22:06 - 2021-02-05 12:08 - 000000000 ____D C:\ProgramData\Package Cache 2021-05-24 22:06 - 2020-08-01 22:23 - 000000000 ____D C:\Users\adamt\AppData\Local\Package Cache 2021-05-24 14:30 - 2020-08-06 12:01 - 000000000 ___DC C:\Users\adamt\AppData\LocalLow\Temp 2021-05-24 14:29 - 2018-09-15 09:33 - 000000000 __HDC C:\WINDOWS\system32\GroupPolicy 2021-05-23 16:59 - 2018-12-26 09:42 - 000000000 __HDC C:\Users\keramti\MicrosoftEdgeBackups 2021-05-23 16:58 - 2021-03-07 22:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RocketDock 2021-05-23 16:58 - 2020-12-02 20:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SIM Dashboard Server 2021-05-23 01:02 - 2018-12-26 09:53 - 000000854 ____C C:\Users\keramti\Desktop\Firefox.lnk 2021-05-23 00:35 - 2019-06-25 21:51 - 000000000 ___DC C:\Users\adamt\AppData\LocalLow\Mozilla 2021-05-22 11:05 - 2019-01-09 13:15 - 000000000 ___DC C:\Program Files (x86)\WinSCP 2021-05-21 18:44 - 2018-12-26 09:46 - 000000000 ___DC C:\Users\keramti\AppData\Roaming\Anvsoft 2021-05-21 13:46 - 2019-04-20 11:15 - 000001986 ____C C:\WINDOWS\Cm108.ini.imi 2021-05-21 12:48 - 2020-12-14 13:34 - 000000014 _____ C:\Users\adamt\AppData\Roaming\obs-virtualcam.txt 2021-05-20 08:05 - 2021-03-13 23:10 - 000000000 ____D C:\Users\adamt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc 2021-05-20 08:05 - 2019-01-21 10:11 - 000000000 ___DC C:\Users\adamt\AppData\Local\SquirrelTemp 2021-05-18 11:09 - 2020-10-26 16:10 - 000000000 ____D C:\Users\adamt\AppData\Roaming\Leppsoft 2021-05-18 10:25 - 2021-05-07 16:18 - 000001070 ____C C:\Users\adamt\Desktop\STEREŁO.txt 2021-05-15 06:40 - 2019-08-30 19:26 - 000000000 ___DC C:\Users\keramti\AppData\Roaming\audacity 2021-05-14 20:56 - 2018-12-26 09:38 - 000000000 ___DC C:\Users\adamt\AppData\Local\Packages 2021-05-14 20:55 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-05-14 13:13 - 2020-07-18 18:46 - 000307712 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-05-14 13:12 - 2019-12-07 17:12 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2021-05-14 13:12 - 2019-12-07 17:10 - 000000000 ____D C:\WINDOWS\system32\OpenSSH 2021-05-14 13:12 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog 2021-05-14 13:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2021-05-14 13:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2021-05-14 13:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2021-05-14 13:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT 2021-05-14 13:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2021-05-14 13:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources 2021-05-14 13:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2021-05-14 13:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2021-05-14 13:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup 2021-05-14 13:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-05-14 13:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT 2021-05-14 13:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2021-05-14 13:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning 2021-05-14 13:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2021-05-14 13:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\DiagTrack 2021-05-14 13:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-05-14 09:18 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-05-14 09:02 - 2018-12-26 10:04 - 000000000 ___DC C:\WINDOWS\system32\MRT 2021-05-14 08:57 - 2018-12-26 10:04 - 132732536 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-05-14 08:56 - 2021-03-03 09:49 - 000000000 ____D C:\Program Files (x86)\dotnet 2021-05-14 08:54 - 2021-02-05 12:08 - 000000000 ____D C:\Users\Default\.dotnet 2021-05-14 08:53 - 2021-03-12 12:24 - 000000000 ____D C:\Program Files\dotnet 2021-05-10 07:47 - 2018-12-26 09:38 - 000000000 _RHDC C:\Users\Public\AccountPictures 2021-05-10 07:20 - 2020-09-07 19:00 - 000000000 __HDC C:\OneDriveTemp ==================== Pliki w katalogu głównym wybranych folderów ======== 2021-03-18 13:12 - 2021-03-18 13:12 - 000015360 _____ () C:\ProgramData\deltaShell.dll 2020-01-07 20:44 - 2020-12-23 17:13 - 000004608 ____C () C:\Users\keramti\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2020-11-13 15:55 - 2020-11-13 15:55 - 000000000 _____ () C:\Users\keramti\AppData\Local\oobelibMkey.log 2019-01-16 19:33 - 2019-01-16 19:33 - 000007626 ____C () C:\Users\keramti\AppData\Local\Resmon.ResmonCfg ==================== FLock ============================== 2020-12-15 08:19 C:\AdwCleaner 2021-05-24 14:31 C:\FRST 2021-05-24 14:27 C:\Users\keramti\Downloads\FRST-OlderVersion ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================