Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 14-07-2022 Uruchomiony przez 48518 (administrator) DESKTOP-EF2B9E8 (LENOVO 10A6S25000) (16-07-2022 06:51:24) Uruchomiony z C:\Users\48518\Downloads Załadowane profile: 48518 Platform: Microsoft Windows 10 Home Wersja 21H2 19044.1826 (X64) Język: Polski (Polska) Domyślna przeglądarka: FF Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe (explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe (explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Microsoft Windows Hardware Compatibility Publisher -> ) C:\Windows\System32\igfxTray.exe (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) C:\Windows\System32\igfxEM.exe (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) C:\Windows\System32\igfxHK.exe (services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe (services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorvd.inf_amd64_5691d7468d2b65ae\RstMwService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxTsr.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19677472 2020-03-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [194736 2022-06-21] (ESET, spol. s r.o. -> ESET) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Ograniczenia <==== UWAGA HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Ograniczenia <==== UWAGA HKLM\Software\Microsoft\Active Setup\Installed Components: [{9459C573-B17A-45AE-9F64-1857B5D58CEE}] -> "C:\Program Files (x86)\Microsoft\Edge\Application\103.0.1264.49\Installer\setup.exe" --configure-user-settings --verbose-logging --system-level --msedge --channel=stable ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {4173F444-6859-4D08-915D-013CE3F09C8A} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {91F86305-F9EB-4DC9-940C-A1BE9C069723} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB" (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{abaf8c7d-4688-40b9-994d-e199f86178f2}: [DhcpNameServer] 192.168.1.1 Edge: ======= Edge Profile: C:\Users\48518\AppData\Local\Microsoft\Edge\User Data\Default [2022-07-16] FireFox: ======== FF DefaultProfile: jq0nikb3.default FF ProfilePath: C:\Users\48518\AppData\Roaming\Mozilla\Firefox\Profiles\jq0nikb3.default [2022-07-14] FF ProfilePath: C:\Users\48518\AppData\Roaming\Mozilla\Firefox\Profiles\eualo7bw.default-release [2022-07-16] FF Notifications: Mozilla\Firefox\Profiles\eualo7bw.default-release -> hxxps://www.instagram.com; hxxps://ekspert.streetcom.pl FF Extension: (uBlock Origin) - C:\Users\48518\AppData\Roaming\Mozilla\Firefox\Profiles\eualo7bw.default-release\Extensions\uBlock0@raymondhill.net.xpi [2022-07-14] FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2022-07-16] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4960120 2022-07-15] (AVB Disc Soft, SIA -> Disc Soft Ltd) R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [3342536 2022-06-21] (ESET, spol. s r.o. -> ESET) R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [3342536 2022-06-21] (ESET, spol. s r.o. -> ESET) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego] R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [42256 2022-07-15] (AVB Disc Soft, SIA -> Disc Soft Ltd) R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [63696 2022-07-15] (AVB Disc Soft, SIA -> Disc Soft Ltd) R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [192880 2022-06-21] (ESET, spol. s r.o. -> ESET) R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [116960 2022-06-21] (ESET, spol. s r.o. -> ESET) S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [15824 2022-07-14] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET) R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [234192 2022-06-21] (ESET, spol. s r.o. -> ESET) R2 ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [52880 2022-06-21] (ESET, spol. s r.o. -> ESET) R1 epfw; C:\Windows\system32\DRIVERS\epfw.sys [79216 2022-06-21] (ESET, spol. s r.o. -> ESET) R1 epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [119528 2022-06-21] (ESET, spol. s r.o. -> ESET) S0 iaStorVD; C:\Windows\System32\drivers\iaStorVD.sys [1421688 2020-08-17] (Intel(R) Rapid Storage Technology -> Intel Corporation) R3 LBAI; C:\Windows\System32\Drivers\LBAI.sys [30432 2017-04-29] (Lenovo -> Lenovo) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2022-07-16 06:51 - 2022-07-16 06:51 - 000008676 _____ C:\Users\48518\Downloads\FRST.txt 2022-07-16 06:51 - 2022-07-16 06:51 - 000000000 ____D C:\Users\48518\Downloads\FRST-OlderVersion 2022-07-16 06:51 - 2022-07-16 06:51 - 000000000 ____D C:\FRST 2022-07-16 06:50 - 2022-07-16 06:51 - 002369536 _____ (Farbar) C:\Users\48518\Downloads\FRST64.exe 2022-07-16 06:26 - 2022-07-16 06:30 - 000000000 ____D C:\ProgramData\Piriform 2022-07-16 06:22 - 2022-07-16 06:22 - 049618184 _____ (Piriform Software Ltd) C:\Users\48518\Downloads\ccsetup601.exe 2022-07-15 21:20 - 2022-07-15 21:22 - 000000000 ____D C:\Users\48518\Documents\Battlefield 4 2022-07-15 21:00 - 2022-07-15 21:00 - 000000000 ____D C:\Windows\SysWOW64\XPSViewer 2022-07-15 21:00 - 2022-07-15 21:00 - 000000000 ____D C:\Program Files\Reference Assemblies 2022-07-15 21:00 - 2022-07-15 21:00 - 000000000 ____D C:\Program Files\MSBuild 2022-07-15 21:00 - 2022-07-15 21:00 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies 2022-07-15 21:00 - 2022-07-15 21:00 - 000000000 ____D C:\Program Files (x86)\MSBuild 2022-07-15 19:14 - 2022-07-15 19:14 - 000000000 ___HD C:\Program Files\Common Files\EAInstaller 2022-07-15 16:53 - 2022-07-15 16:54 - 000000000 ____D C:\Program Files\AdwCleaner 2022-07-15 14:32 - 2022-07-15 14:32 - 000000000 ____D C:\ProgramData\Origin 2022-07-15 14:27 - 2022-07-15 14:27 - 000063696 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtliteusbbus.sys 2022-07-15 14:27 - 2022-07-15 14:27 - 000042256 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtlitescsibus.sys 2022-07-15 14:27 - 2022-07-15 14:27 - 000000841 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk 2022-07-15 14:27 - 2022-07-15 14:27 - 000000000 ____D C:\Users\Public\Documents\Daemon Tools Images 2022-07-15 14:27 - 2022-07-15 14:27 - 000000000 ____D C:\Users\Public\Documents\Catch! 2022-07-15 14:27 - 2022-07-15 14:27 - 000000000 ____D C:\Users\48518\AppData\Roaming\Disc-Soft 2022-07-15 14:27 - 2022-07-15 14:27 - 000000000 ____D C:\Users\48518\AppData\Roaming\DAEMON Tools Lite 2022-07-15 14:27 - 2022-07-15 14:27 - 000000000 ____D C:\Users\48518\AppData\Local\Disc_Soft_Ltd 2022-07-15 14:27 - 2022-07-15 14:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\DAEMON Tools Lite 2022-07-15 14:27 - 2022-07-15 14:27 - 000000000 ____D C:\Program Files\DAEMON Tools Lite 2022-07-15 14:26 - 2022-07-15 14:26 - 000000000 ____D C:\ProgramData\Disc-Soft 2022-07-15 10:02 - 2022-07-15 10:27 - 000000000 ____D C:\Users\48518\AppData\LocalLow\Game Labs 2022-07-15 07:44 - 2022-07-15 07:44 - 000000000 ___HD C:\$WinREAgent 2022-07-15 00:18 - 2022-07-15 00:18 - 000000000 ____D C:\Users\48518\AppData\Local\UnrealEngine 2022-07-14 21:53 - 2022-07-15 19:38 - 000000000 ____D C:\Users\48518\AppData\LocalLow\BKOM Studios 2022-07-14 20:32 - 2022-07-14 20:32 - 000000000 ____D C:\Users\48518\AppData\Local\ESET 2022-07-14 19:39 - 2022-07-14 19:39 - 000000000 ____D C:\Users\48518\AppData\Roaming\Adobe 2022-07-14 19:36 - 2022-07-14 19:36 - 000000000 ____D C:\Windows\SystemTemp 2022-07-14 19:30 - 2022-07-14 19:30 - 000003566 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-07-14 19:30 - 2022-07-14 19:30 - 000003442 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2022-07-14 19:28 - 2022-07-14 19:28 - 000000000 ____D C:\Windows\system32\Drivers\DriverData 2022-07-14 19:19 - 2022-07-15 16:57 - 000000000 ____D C:\Users\48518\AppData\Local\D3DSCache 2022-07-14 19:16 - 2022-07-15 07:09 - 000000000 ___HD C:\Windows\msdownld.tmp 2022-07-14 19:16 - 2022-07-15 07:09 - 000000000 ____D C:\Windows\SysWOW64\directx 2022-07-14 19:09 - 2022-07-14 19:14 - 000000000 ____D C:\Users\48518\AppData\LocalLow\BLOODIOUS GAMES LLC 2022-07-14 18:59 - 2022-07-14 18:59 - 000000000 ____D C:\Users\48518\AppData\Roaming\WinRAR 2022-07-14 18:59 - 2022-07-14 18:59 - 000000000 ____D C:\Users\48518\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2022-07-14 18:59 - 2022-07-14 18:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2022-07-14 18:59 - 2022-07-14 18:59 - 000000000 ____D C:\Program Files\WinRAR 2022-07-14 18:44 - 2022-07-14 18:44 - 001687040 _____ C:\Windows\system32\libcrypto.dll 2022-07-14 18:43 - 2022-07-14 18:43 - 002371072 _____ C:\Windows\system32\rdpnano.dll 2022-07-14 18:43 - 2022-07-14 18:43 - 001864192 _____ (The ICU Project) C:\Windows\SysWOW64\icu.dll 2022-07-14 18:43 - 2022-07-14 18:43 - 000693248 _____ C:\Windows\system32\FsNVSDeviceSource.dll 2022-07-14 18:43 - 2022-07-14 18:43 - 000530944 _____ (curl, hxxps://curl.se/) C:\Windows\system32\curl.exe 2022-07-14 18:43 - 2022-07-14 18:43 - 000470528 _____ (curl, hxxps://curl.se/) C:\Windows\SysWOW64\curl.exe 2022-07-14 18:43 - 2022-07-14 18:43 - 000270848 _____ C:\Windows\system32\EsclScan.dll 2022-07-14 18:43 - 2022-07-14 18:43 - 000152064 _____ C:\Windows\system32\EsclProtocol.dll 2022-07-14 18:43 - 2022-07-14 18:43 - 000104448 _____ C:\Windows\system32\nettraceex.dll 2022-07-14 18:43 - 2022-07-14 18:43 - 000039936 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll 2022-07-14 18:43 - 2022-07-14 18:43 - 000033280 _____ (Microsoft Corporation) C:\Windows\system32\mode.com 2022-07-14 18:43 - 2022-07-14 18:43 - 000026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mode.com 2022-07-14 18:43 - 2022-07-14 18:43 - 000020992 _____ (Microsoft Corporation) C:\Windows\system32\tree.com 2022-07-14 18:43 - 2022-07-14 18:43 - 000018944 _____ C:\Windows\SysWOW64\WsdProviderUtil.dll 2022-07-14 18:43 - 2022-07-14 18:43 - 000017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tree.com 2022-07-14 18:43 - 2022-07-14 18:43 - 000014848 _____ (Microsoft Corporation) C:\Windows\system32\chcp.com 2022-07-14 18:43 - 2022-07-14 18:43 - 000012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\chcp.com 2022-07-14 18:43 - 2022-07-14 18:43 - 000011811 _____ C:\Windows\system32\DrtmAuthTxt.wim 2022-07-14 18:42 - 2022-07-14 18:42 - 002295296 _____ (Digimarc) C:\Windows\system32\DMRCDecoder.dll 2022-07-14 18:42 - 2022-07-14 18:42 - 002260480 _____ C:\Windows\system32\TextInputMethodFormatter.dll 2022-07-14 18:42 - 2022-07-14 18:42 - 002260480 _____ (The ICU Project) C:\Windows\system32\icu.dll 2022-07-14 18:42 - 2022-07-14 18:42 - 002254336 _____ C:\Windows\system32\dwmscene.dll 2022-07-14 18:42 - 2022-07-14 18:42 - 002111488 _____ (Digimarc) C:\Windows\SysWOW64\DMRCDecoder.dll 2022-07-14 18:42 - 2022-07-14 18:42 - 001333760 _____ C:\Windows\SysWOW64\TextInputMethodFormatter.dll 2022-07-14 18:42 - 2022-07-14 18:42 - 001164288 _____ C:\Windows\system32\MBR2GPT.EXE 2022-07-14 18:42 - 2022-07-14 18:42 - 000706536 _____ C:\Windows\system32\TextShaping.dll 2022-07-14 18:42 - 2022-07-14 18:42 - 000657464 _____ C:\Windows\system32\WindowManagementAPI.dll 2022-07-14 18:42 - 2022-07-14 18:42 - 000611960 _____ C:\Windows\SysWOW64\TextShaping.dll 2022-07-14 18:42 - 2022-07-14 18:42 - 000468440 _____ C:\Windows\SysWOW64\WindowManagementAPI.dll 2022-07-14 18:42 - 2022-07-14 18:42 - 000232288 _____ C:\Windows\system32\containerdevicemanagement.dll 2022-07-14 18:42 - 2022-07-14 18:42 - 000223744 _____ C:\Windows\SysWOW64\TpmTool.exe 2022-07-14 18:42 - 2022-07-14 18:42 - 000093696 _____ C:\Windows\system32\Drivers\cimfs.sys 2022-07-14 18:42 - 2022-07-14 18:42 - 000061952 _____ C:\Windows\system32\printticketvalidation.dll 2022-07-14 18:42 - 2022-07-14 18:42 - 000060928 _____ C:\Windows\system32\runexehelper.exe 2022-07-14 18:42 - 2022-07-14 18:42 - 000057344 _____ C:\Windows\system32\APMonUI.dll 2022-07-14 18:42 - 2022-07-14 18:42 - 000048640 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2022-07-14 18:42 - 2022-07-14 18:42 - 000024576 _____ C:\Windows\system32\WsdProviderUtil.dll 2022-07-14 18:41 - 2022-07-14 18:41 - 000640512 _____ C:\Windows\system32\SettingSyncDownloadHelper.dll 2022-07-14 18:41 - 2022-07-14 18:41 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll 2022-07-14 18:41 - 2022-07-14 18:41 - 000287232 _____ C:\Windows\system32\CoreMas.dll 2022-07-14 18:41 - 2022-07-14 18:41 - 000272896 _____ C:\Windows\system32\TpmTool.exe 2022-07-14 18:41 - 2022-07-14 18:41 - 000162816 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe 2022-07-14 18:41 - 2022-07-14 18:41 - 000013312 _____ C:\Windows\system32\agentactivationruntimestarter.exe 2022-07-14 18:35 - 2022-07-14 18:35 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2022-07-14 18:34 - 2022-07-14 18:35 - 000000000 ____D C:\Windows\system32\MRT 2022-07-14 18:33 - 2022-07-14 18:33 - 000001153 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk 2022-07-14 18:33 - 2022-07-14 18:33 - 000000000 ____D C:\Program Files\PCHealthCheck 2022-07-14 17:51 - 2022-07-14 17:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET 2022-07-14 17:51 - 2022-07-14 17:51 - 000000000 ____D C:\ProgramData\ESET 2022-07-14 17:51 - 2022-07-14 17:51 - 000000000 ____D C:\Program Files\ESET 2022-07-14 17:47 - 2022-07-14 17:47 - 005504960 _____ (ESET) C:\Users\48518\Downloads\eset_internet_security_live_installer.exe 2022-07-14 17:30 - 2022-07-14 17:30 - 000001086 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk 2022-07-14 17:30 - 2022-07-14 17:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller 2022-07-14 17:30 - 2022-07-14 17:30 - 000000000 ____D C:\Program Files\VS Revo Group 2022-07-14 17:23 - 2022-07-16 06:28 - 000000000 ____D C:\GRY 2022-07-14 16:08 - 2022-07-14 16:08 - 000000000 ____D C:\Users\48518\AppData\Local\Comms 2022-07-14 16:00 - 2022-07-14 16:00 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf 2022-07-14 15:59 - 2022-07-14 15:59 - 000000000 ____D C:\Users\48518\AppData\Local\OneDrive 2022-07-14 15:56 - 2022-07-16 06:51 - 000000000 ____D C:\Users\48518\AppData\LocalLow\Mozilla 2022-07-14 15:56 - 2022-07-16 06:44 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2022-07-14 15:56 - 2022-07-14 19:01 - 000000000 ____D C:\Users\48518\AppData\Roaming\Mozilla 2022-07-14 15:56 - 2022-07-14 15:56 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2022-07-14 15:56 - 2022-07-14 15:56 - 000001000 _____ C:\Users\Public\Desktop\Firefox.lnk 2022-07-14 15:56 - 2022-07-14 15:56 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla 2022-07-14 15:56 - 2022-07-14 15:56 - 000000000 ____D C:\Users\48518\AppData\Local\Mozilla 2022-07-14 15:56 - 2022-07-14 15:56 - 000000000 ____D C:\Program Files\Mozilla Firefox 2022-07-14 15:56 - 2022-07-14 15:56 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2022-07-14 15:54 - 2022-07-15 18:04 - 000003588 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3266655915-1981900270-190188007-1002 2022-07-14 15:54 - 2022-07-15 10:46 - 000000000 ____D C:\Users\48518\AppData\Local\PlaceholderTileLogoFolder 2022-07-14 15:53 - 2022-07-15 18:04 - 000003378 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3266655915-1981900270-190188007-1002 2022-07-14 15:53 - 2022-07-15 18:04 - 000002430 _____ C:\Users\48518\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-07-14 15:53 - 2022-07-14 15:53 - 000000000 ___RD C:\Users\48518\OneDrive 2022-07-14 15:52 - 2022-07-16 05:39 - 000000000 __SHD C:\Users\48518\IntelGraphicsProfiles 2022-07-14 15:52 - 2022-07-15 22:14 - 000000000 ____D C:\Users\48518\AppData\Local\Packages 2022-07-14 15:52 - 2022-07-14 16:21 - 000000000 ____D C:\Users\48518\AppData\Local\ConnectedDevicesPlatform 2022-07-14 15:52 - 2022-07-14 15:52 - 000000000 ___RD C:\Users\48518\3D Objects 2022-07-14 15:52 - 2022-07-14 15:52 - 000000000 ____D C:\Users\48518\AppData\Local\VirtualStore 2022-07-14 15:52 - 2022-07-14 15:52 - 000000000 ____D C:\Users\48518\AppData\Local\Publishers 2022-07-14 15:48 - 2022-07-14 15:53 - 000000000 ____D C:\Users\48518 2022-07-14 15:48 - 2022-07-14 15:48 - 000000020 ___SH C:\Users\48518\ntuser.ini 2022-07-14 15:48 - 2022-07-14 15:48 - 000000000 _SHDL C:\Users\48518\Ustawienia lokalne 2022-07-14 15:48 - 2022-07-14 15:48 - 000000000 _SHDL C:\Users\48518\Szablony 2022-07-14 15:48 - 2022-07-14 15:48 - 000000000 _SHDL C:\Users\48518\Moje dokumenty 2022-07-14 15:48 - 2022-07-14 15:48 - 000000000 _SHDL C:\Users\48518\Menu Start 2022-07-14 15:48 - 2022-07-14 15:48 - 000000000 _SHDL C:\Users\48518\Documents\Moje wideo 2022-07-14 15:48 - 2022-07-14 15:48 - 000000000 _SHDL C:\Users\48518\Documents\Moje obrazy 2022-07-14 15:48 - 2022-07-14 15:48 - 000000000 _SHDL C:\Users\48518\Documents\Moja muzyka 2022-07-14 15:48 - 2022-07-14 15:48 - 000000000 _SHDL C:\Users\48518\Dane aplikacji 2022-07-14 15:48 - 2022-07-14 15:48 - 000000000 _SHDL C:\Users\48518\AppData\Local\Tymczasowe pliki internetowe 2022-07-14 15:48 - 2022-07-14 15:48 - 000000000 _SHDL C:\Users\48518\AppData\Local\Historia 2022-07-14 15:48 - 2022-07-14 15:48 - 000000000 _SHDL C:\Users\48518\AppData\Local\Dane aplikacji 2022-07-14 15:26 - 2022-07-15 22:20 - 001767980 _____ C:\Windows\system32\PerfStringBackup.INI 2022-07-14 14:14 - 2022-07-16 05:39 - 000000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2022-07-12 12:27 - 2022-07-12 12:27 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_GDKBFlt64_01007.Wdf 2022-07-12 12:27 - 2022-07-12 12:27 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_GDKBB64_01009.Wdf 2022-07-12 12:26 - 2022-07-14 18:17 - 000000000 ____D C:\Program Files\Common Files\AV 2022-07-12 12:25 - 2022-07-14 14:14 - 000003058 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3266655915-1981900270-190188007-500 2022-07-12 12:25 - 2022-07-14 14:14 - 000002854 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3266655915-1981900270-190188007-500 2022-07-12 12:24 - 2022-07-12 12:24 - 000000000 ____D C:\ScratchDir 2022-07-12 12:24 - 2022-07-12 12:24 - 000000000 ____D C:\ProgramData\Microsoft OneDrive 2022-07-12 12:23 - 2022-07-14 16:09 - 000000000 ____D C:\ProgramData\Packages 2022-07-12 12:23 - 2022-07-14 15:53 - 000000000 __RHD C:\Users\Public\AccountPictures 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\Users\Public\Documents\Moje wideo 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\Users\Public\Documents\Moje obrazy 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\Users\Public\Documents\Moja muzyka 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\Users\Default\Ustawienia lokalne 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\Users\Default\Szablony 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\Users\Default\Moje dokumenty 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\Users\Default\Menu Start 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\Users\Default\Documents\Moje wideo 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\Users\Default\Documents\Moje obrazy 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\Users\Default\Documents\Moja muzyka 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\Users\Default\Dane aplikacji 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\Users\Default\AppData\Local\Tymczasowe pliki internetowe 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\Users\Default\AppData\Local\Historia 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\Users\Default\AppData\Local\Dane aplikacji 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\ProgramData\Szablony 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\ProgramData\Pulpit 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programy 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\ProgramData\Menu Start 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\ProgramData\Dokumenty 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\ProgramData\Dane aplikacji 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\Documents and Settings 2022-07-12 12:21 - 2022-07-15 22:15 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2022-07-12 12:21 - 2022-07-14 16:21 - 000676341 _____ C:\Windows\system32\Drivers\rtkhdasetting.zip 2022-07-12 12:21 - 2022-07-14 16:20 - 000000000 ____D C:\Windows\SysWOW64\RTCOM 2022-07-12 12:21 - 2022-07-12 12:23 - 000000000 ____D C:\Intel 2022-07-12 12:21 - 2022-07-12 12:21 - 000000200 _____ C:\Windows\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat 2022-07-12 12:21 - 2022-07-12 12:21 - 000000000 ____H C:\ProgramData\DP45977C.lfl 2022-07-12 12:21 - 2022-07-12 12:21 - 000000000 ____D C:\Windows\system32\Tasks\Intel 2022-07-12 12:21 - 2022-07-12 12:21 - 000000000 ____D C:\Windows\system32\DAX3 2022-07-12 12:21 - 2022-07-12 12:21 - 000000000 ____D C:\Windows\system32\DAX2 2022-07-12 12:21 - 2022-07-12 12:21 - 000000000 ____D C:\Program Files\Realtek 2022-07-12 12:21 - 2022-07-12 12:21 - 000000000 ____D C:\Program Files\Intel 2022-07-12 12:21 - 2022-07-12 12:21 - 000000000 _____ C:\Windows\system32\GfxValDisplayLog.bin 2022-07-12 12:21 - 2018-07-16 23:47 - 000102184 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.DLL 2022-07-12 12:21 - 2018-07-16 23:47 - 000098080 _____ (Khronos Group) C:\Windows\system32\OpenCL.DLL 2022-07-12 12:20 - 2022-07-16 06:23 - 000000000 ____D C:\Windows\Panther 2022-07-12 12:20 - 2022-07-15 22:15 - 000008192 ___SH C:\DumpStack.log.tmp 2022-07-12 12:20 - 2022-07-15 18:25 - 000000000 ____D C:\Windows\system32\SleepStudy 2022-07-12 12:20 - 2022-07-14 19:37 - 000258584 _____ C:\Windows\system32\FNTCACHE.DAT 2022-07-12 12:20 - 2022-07-12 12:21 - 000000000 ____D C:\Windows\ServiceProfiles 2022-06-21 09:12 - 2022-07-14 17:52 - 000015824 _____ (ESET) C:\Windows\system32\Drivers\eelam.sys 2022-06-21 09:12 - 2022-06-21 09:12 - 000234192 _____ (ESET) C:\Windows\system32\Drivers\ehdrv.sys 2022-06-21 09:12 - 2022-06-21 09:12 - 000192880 _____ (ESET) C:\Windows\system32\Drivers\eamonm.sys 2022-06-21 09:12 - 2022-06-21 09:12 - 000119528 _____ (ESET) C:\Windows\system32\Drivers\epfwwfp.sys 2022-06-21 09:12 - 2022-06-21 09:12 - 000116960 _____ (ESET) C:\Windows\system32\Drivers\edevmon.sys 2022-06-21 09:12 - 2022-06-21 09:12 - 000079216 _____ (ESET) C:\Windows\system32\Drivers\epfw.sys 2022-06-21 09:12 - 2022-06-21 09:12 - 000052880 _____ (ESET) C:\Windows\system32\Drivers\ekbdflt.sys ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2022-07-16 06:15 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-07-16 05:46 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness 2022-07-15 22:20 - 2019-12-07 17:08 - 000784334 _____ C:\Windows\system32\perfh015.dat 2022-07-15 22:20 - 2019-12-07 17:08 - 000152230 _____ C:\Windows\system32\perfc015.dat 2022-07-15 22:20 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF 2022-07-15 22:15 - 2019-12-07 11:03 - 000524288 _____ C:\Windows\system32\config\BBI 2022-07-15 22:13 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-07-15 21:00 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\MUI 2022-07-15 21:00 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\MUI 2022-07-15 21:00 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp 2022-07-15 15:32 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2022-07-15 08:52 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\servicing 2022-07-15 05:13 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\appcompat 2022-07-14 19:39 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2022-07-14 19:36 - 2019-12-07 17:09 - 000000000 ____D C:\Windows\system32\OpenSSH 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ___SD C:\Windows\system32\UNP 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ___SD C:\Windows\system32\DiagSvcs 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\PrintDialog 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\setup 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\oobe 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\lv-LV 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\lt-LT 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\et-EE 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\es-MX 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinMetadata 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SystemResetPlatform 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\ShellExperiences 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\setup 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\migwiz 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\lv-LV 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\lt-LT 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\et-EE 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\es-MX 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\DDFs 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\appraiser 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellExperiences 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellComponents 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\Provisioning 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\PolicyDefinitions 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\DiagTrack 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System 2022-07-14 19:18 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\LiveKernelReports 2022-07-14 18:46 - 2019-12-07 17:11 - 000023552 _____ (Microsoft Corporation) C:\Windows\system32\OEMDefaultAssociations.dll 2022-07-14 18:17 - 2019-12-07 11:14 - 000000000 ___SD C:\Windows\SysWOW64\DiagSvcs 2022-07-14 18:17 - 2019-12-07 11:14 - 000000000 ___SD C:\Windows\SysWOW64\Configuration 2022-07-14 18:17 - 2019-12-07 11:14 - 000000000 ___HD C:\Windows\ELAMBKUP 2022-07-14 18:17 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Com 2022-07-14 15:26 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\USOPrivate 2022-07-14 14:17 - 2019-12-07 11:03 - 000032768 _____ C:\Windows\system32\config\ELAM 2022-07-14 14:16 - 2019-12-07 17:10 - 000000000 ____D C:\Windows\system32\FxsTmp 2022-07-12 13:19 - 2019-12-07 11:14 - 000028672 _____ C:\Windows\system32\config\BCD-Template 2022-07-12 12:27 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Sysprep 2022-07-12 12:24 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinBioDatabase 2022-07-12 12:24 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\spool 2022-07-12 12:24 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ServiceState 2022-07-12 12:23 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows NT ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================