Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 15-08-2022 02 Uruchomiony przez 48518 (administrator) DESKTOP-EF2B9E8 (LENOVO 10A6S25000) (15-08-2022 19:45:56) Uruchomiony z C:\Users\48518\Downloads Załadowane profile: 48518 Platform: Microsoft Windows 10 Home Wersja 21H2 19044.1889 (X64) Język: Polski (Polska) Domyślna przeglądarka: FF Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe (explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe (explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) C:\Windows\System32\igfxEM.exe (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) C:\Windows\System32\igfxHK.exe (services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe (services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_e3f96af62737a898\RstMwService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxTsr.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11910.1002.5.0_x64__8wekyb3d8bbwe\WinStore.App.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19677472 2020-03-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [194736 2022-06-21] (ESET, spol. s r.o. -> ESET) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\103.0.5060.134\Installer\chrmstp.exe [2022-07-22] (Google LLC -> Google LLC) ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {53D7C108-1E20-465A-BD87-6027007A4891} - System32\Tasks\Opera scheduled Autoupdate 1658322091 => C:\Users\48518\AppData\Local\Programs\Opera\launcher.exe [2527216 2022-08-03] (Opera Norway AS -> Opera Software) Task: {638A3CB9-116C-43C5-B33E-6799E6FFB96B} - System32\Tasks\CCleanerSkipUAC - 48518 => C:\Program Files\CCleaner\CCleaner.exe [31101528 2022-07-18] (Piriform Software Ltd -> Piriform Software Ltd) Task: {655A5BD4-7868-4171-9D1F-7B82BC6E52A6} - System32\Tasks\Microsoft\Windows\Management\Autopilot\RemediateHardwareChange => {62B2DD2C-F129-42EE-BF59-55D3FD21C215} C:\Windows\System32\Autopilot.dll [192000 2022-08-09] (Microsoft Windows -> Microsoft Corporation) Task: {6A8D15D9-3DBE-4564-80A0-727F2BC3C73B} - System32\Tasks\GoogleUpdateTaskMachineCore{388FE84C-0A86-4CD7-9C53-16B40FF0F60B} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-07-22] (Google LLC -> Google LLC) Task: {86233FC3-A90A-4360-8C0D-8F3F2DAAA459} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB" Task: {A72C3072-EFC1-4AC3-85E4-BCA453CF840C} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-07-18] (Piriform Software Ltd -> Piriform) Task: {B0EDB491-47B7-4ECE-8DD9-8A871B3CC328} - System32\Tasks\GoogleUpdateTaskMachineUA{627DF5C3-A2E8-462E-87F1-8FA110521596} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-07-22] (Google LLC -> Google LLC) Task: {CEEECE0F-14D0-47CD-AE4A-47CA4DF0D28E} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {DD0F9D03-1F4B-4DC5-8755-B8D07F0F7CE0} - System32\Tasks\Microsoft\Windows\Management\Autopilot\DetectHardwareChange => {62B2DD2C-F129-42EE-BF59-55D3FD21C215} C:\Windows\System32\Autopilot.dll [192000 2022-08-09] (Microsoft Windows -> Microsoft Corporation) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{abaf8c7d-4688-40b9-994d-e199f86178f2}: [DhcpNameServer] 192.168.1.1 Edge: ======= Edge Profile: C:\Users\48518\AppData\Local\Microsoft\Edge\User Data\Default [2022-08-14] FireFox: ======== FF DefaultProfile: huxr0oq7.default FF ProfilePath: C:\Users\48518\AppData\Roaming\Mozilla\Firefox\Profiles\w6yaojd8.default-release-1 [2022-08-14] FF Extension: (Polski Language Pack) - C:\Users\48518\AppData\Roaming\Mozilla\Firefox\Profiles\w6yaojd8.default-release-1\Extensions\langpack-pl@firefox.mozilla.org.xpi [2022-07-20] FF ProfilePath: C:\Users\48518\AppData\Roaming\Mozilla\Firefox\Profiles\huxr0oq7.default [2022-07-20] FF ProfilePath: C:\Users\48518\AppData\Roaming\Mozilla\Firefox\Profiles\g3eo4qhg.default-release [2022-08-15] FF Notifications: Mozilla\Firefox\Profiles\g3eo4qhg.default-release -> hxxps://www.instagram.com; hxxps://portal.tgmpanel.com; hxxps://ekspert.streetcom.pl FF Extension: (uBlock Origin) - C:\Users\48518\AppData\Roaming\Mozilla\Firefox\Profiles\g3eo4qhg.default-release\Extensions\uBlock0@raymondhill.net.xpi [2022-07-20] FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2022-08-15] Chrome: ======= CHR Profile: C:\Users\48518\AppData\Local\Google\Chrome\User Data\Default [2022-08-12] CHR Extension: (Dokumenty Google offline) - C:\Users\48518\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-07-22] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\48518\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-07-22] Opera: ======= OPR Profile: C:\Users\48518\AppData\Roaming\Opera Software\Opera Stable [2022-08-12] OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding} OPR Extension: (Rich Hints Agent) - C:\Users\48518\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2022-07-20] OPR Extension: (Opera Crypto Wallet) - C:\Users\48518\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2022-07-20] OPR Extension: (Amazon Assistant Promotion) - C:\Users\48518\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2022-07-20] StartMenuInternet: (HKU\S-1-5-21-3266655915-1981900270-190188007-1002) OperaStable - "C:\Users\48518\AppData\Local\Programs\Opera\Launcher.exe" ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1081432 2022-07-18] (Piriform Software Ltd -> ) R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4960120 2022-08-03] (AVB Disc Soft, SIA -> Disc Soft Ltd) R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [3342536 2022-06-21] (ESET, spol. s r.o. -> ESET) R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [3342536 2022-06-21] (ESET, spol. s r.o. -> ESET) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego] R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [42256 2022-08-03] (AVB Disc Soft, SIA -> Disc Soft Ltd) R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [63696 2022-08-03] (AVB Disc Soft, SIA -> Disc Soft Ltd) R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [192880 2022-06-21] (ESET, spol. s r.o. -> ESET) R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [116960 2022-06-21] (ESET, spol. s r.o. -> ESET) S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [15824 2022-07-14] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET) R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [234192 2022-06-21] (ESET, spol. s r.o. -> ESET) R2 ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [52880 2022-06-21] (ESET, spol. s r.o. -> ESET) R1 epfw; C:\Windows\system32\DRIVERS\epfw.sys [79216 2022-06-21] (ESET, spol. s r.o. -> ESET) R1 epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [119528 2022-06-21] (ESET, spol. s r.o. -> ESET) S0 iaStorVD; C:\Windows\System32\drivers\iaStorVD.sys [1421688 2020-08-17] (Intel(R) Rapid Storage Technology -> Intel Corporation) R3 LBAI; C:\Windows\System32\Drivers\LBAI.sys [23208 2017-11-13] (WDKTestCert Win10P64US,131547553407012624 -> Lenovo) S2 SecDrv; C:\Windows\SysWOW64\drivers\SECDRV.SYS [29392 2022-08-03] () [Brak podpisu cyfrowego] S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2022-08-15 19:45 - 2022-08-15 19:46 - 000012445 _____ C:\Users\48518\Downloads\FRST.txt 2022-08-15 19:45 - 2022-08-15 19:46 - 000000000 ____D C:\FRST 2022-08-15 19:45 - 2022-08-15 19:45 - 000000000 ____D C:\Users\48518\Downloads\FRST-OlderVersion 2022-08-15 19:44 - 2022-08-15 19:45 - 002371072 _____ (Farbar) C:\Users\48518\Downloads\FRST64.exe 2022-08-14 10:23 - 2022-08-14 10:23 - 000001001 _____ C:\Users\48518\Desktop\Revo Uninstaller Pro.lnk 2022-08-14 10:23 - 2022-08-14 10:23 - 000000000 ____D C:\Users\48518\AppData\Local\VS Revo Group 2022-08-14 10:23 - 2022-08-14 10:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro 2022-08-14 10:23 - 2022-08-14 10:23 - 000000000 ____D C:\Program Files\Revo Uninstaller Pro 2022-08-14 10:23 - 2016-12-21 14:52 - 000040240 _____ (VS Revo Group) C:\Windows\system32\Drivers\revoflt.sys 2022-08-12 16:03 - 2022-08-12 16:03 - 000000000 ____D C:\ProgramData\Piriform 2022-08-10 19:31 - 2022-08-12 16:12 - 000000000 ____D C:\Program Files\Mozilla Firefox 2022-08-09 20:43 - 2022-08-09 20:43 - 000581120 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr 2022-08-09 20:43 - 2022-08-09 20:43 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr 2022-08-09 20:43 - 2022-08-09 20:43 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll 2022-08-09 20:43 - 2022-08-09 20:43 - 000162304 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe 2022-08-09 20:43 - 2022-08-09 20:43 - 000089088 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.proxystub.dll 2022-08-09 20:43 - 2022-08-09 20:43 - 000073216 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll 2022-08-09 20:43 - 2022-08-09 20:43 - 000060928 _____ C:\Windows\system32\runexehelper.exe 2022-08-09 20:43 - 2022-08-09 20:43 - 000011803 _____ C:\Windows\system32\DrtmAuthTxt.wim 2022-08-09 20:38 - 2022-08-09 20:38 - 000000000 ___HD C:\$WinREAgent 2022-08-08 22:42 - 2022-08-14 10:38 - 000002252 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC - 48518 2022-08-08 22:42 - 2022-08-10 12:45 - 000003048 _____ C:\Windows\system32\Tasks\CCleaner Update 2022-08-08 22:42 - 2022-08-08 22:42 - 000000870 _____ C:\Users\Public\Desktop\CCleaner.lnk 2022-08-08 22:42 - 2022-08-08 22:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2022-08-08 22:41 - 2022-08-14 10:38 - 000000000 ____D C:\Program Files\CCleaner 2022-08-08 22:35 - 2022-08-08 22:39 - 000000000 ____D C:\Users\48518\AppData\LocalLow\DiamosDev 2022-08-08 22:35 - 2022-08-08 22:35 - 000000000 ____D C:\Users\48518\AppData\Roaming\DOGE 2022-08-07 13:10 - 2022-08-07 13:10 - 000000000 ____D C:\Users\48518\AppData\Roaming\Kalypso Media 2022-08-07 13:10 - 2022-08-07 13:10 - 000000000 ____D C:\Users\48518\AppData\LocalLow\Torus Games 2022-08-06 12:58 - 2022-08-06 12:58 - 000000000 ____D C:\Users\48518\AppData\Roaming\Goldberg SteamEmu Saves 2022-08-06 12:58 - 2022-08-06 12:58 - 000000000 ____D C:\Users\48518\AppData\LocalLow\CyberLab Studios 2022-08-04 14:02 - 2022-08-04 14:02 - 000000000 ____D C:\Users\48518\AppData\Roaming\Leadertech 2022-08-04 10:46 - 2022-08-04 10:46 - 000000000 ____D C:\Users\Public\Documents\Catch! 2022-08-04 10:35 - 2022-08-12 15:59 - 000000000 ____D C:\Users\48518\Desktop\sosy 2022-08-03 12:51 - 2022-08-03 12:51 - 000029392 _____ C:\Windows\SysWOW64\Drivers\SECDRV.SYS 2022-08-03 12:49 - 2022-08-03 12:49 - 000000000 ____D C:\Users\48518\AppData\Roaming\DAEMON Tools Lite 2022-08-03 12:48 - 2022-08-03 12:48 - 000063696 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtliteusbbus.sys 2022-08-03 12:48 - 2022-08-03 12:48 - 000042256 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtlitescsibus.sys 2022-08-03 12:48 - 2022-08-03 12:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\DAEMON Tools Lite 2022-08-03 12:48 - 2022-08-03 12:48 - 000000000 ____D C:\Program Files\DAEMON Tools Lite 2022-08-03 07:44 - 2022-08-03 07:44 - 000000000 ____D C:\Users\48518\AppData\Local\Rockstar Games 2022-08-02 02:46 - 2022-08-02 02:46 - 000000000 ____D C:\Users\48518\AppData\LocalLow\Bush League 2022-08-02 02:36 - 2022-08-02 02:36 - 000000000 ____D C:\ProgramData\Electronic Arts 2022-08-01 13:50 - 2022-08-01 13:50 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2022-07-31 03:37 - 2022-07-31 03:37 - 000000000 ____D C:\Users\48518\AppData\LocalLow\Red Dot Games 2022-07-29 23:46 - 2022-07-30 00:15 - 000000000 ____D C:\Users\48518\AppData\LocalLow\Microids 2022-07-29 23:46 - 2022-07-30 00:14 - 000000000 ____D C:\Users\48518\AppData\LocalLow\Anuman Interactive 2022-07-25 09:43 - 2017-12-07 01:53 - 000564240 _____ (Intel Corporation) C:\Windows\system32\Drivers\e1d65x64.sys 2022-07-25 09:43 - 2017-12-06 21:46 - 000003130 _____ C:\Windows\system32\e1d65x64.din 2022-07-25 09:36 - 2022-07-25 09:36 - 000000000 ____D C:\Users\48518\AppData\Roaming\ProtectDISC 2022-07-25 09:10 - 2022-07-25 09:13 - 000000000 ____D C:\Users\48518\AppData\LocalLow\RageSquid 2022-07-25 00:41 - 2022-07-25 00:41 - 000000000 ____D C:\Users\48518\AppData\Local\CEF 2022-07-24 02:46 - 2022-07-24 02:46 - 000000000 ____D C:\Users\48518\AppData\Roaming\RapidCRC 2022-07-23 23:31 - 2022-07-23 23:38 - 000000000 ____D C:\Users\48518\AppData\LocalLow\Interior Night Ltd 2022-07-23 08:01 - 2022-07-23 08:09 - 000000000 ____D C:\Users\48518\AppData\Roaming\2K Sports 2022-07-22 10:44 - 2022-07-30 04:41 - 000003634 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA{627DF5C3-A2E8-462E-87F1-8FA110521596} 2022-07-22 10:44 - 2022-07-30 04:41 - 000003410 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore{388FE84C-0A86-4CD7-9C53-16B40FF0F60B} 2022-07-22 10:44 - 2022-07-22 10:44 - 000002332 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-07-22 10:44 - 2022-07-22 10:44 - 000002291 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2022-07-22 10:44 - 2022-07-22 10:44 - 000000000 ____D C:\Program Files\Google 2022-07-21 10:06 - 2022-07-21 10:06 - 000000000 ____H C:\Users\48518\Documents\Default.rdp 2022-07-20 21:22 - 2022-08-01 04:58 - 000000000 ____D C:\ProgramData\Package Cache 2022-07-20 18:25 - 2022-08-12 16:12 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2022-07-20 18:25 - 2022-08-11 06:58 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2022-07-20 18:25 - 2022-07-20 18:27 - 000001000 _____ C:\Users\Public\Desktop\Firefox.lnk 2022-07-20 17:22 - 2022-08-02 02:14 - 000000000 ____D C:\Program Files (x86)\Google 2022-07-20 17:22 - 2022-07-22 10:44 - 000000000 ____D C:\Users\48518\AppData\Local\Google 2022-07-20 15:21 - 2022-07-20 15:21 - 000000000 ____D C:\Users\48518\AppData\Local\Mozilla 2022-07-20 15:02 - 2022-08-11 06:58 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla 2022-07-20 15:01 - 2022-08-08 22:39 - 000003614 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1658322091 2022-07-20 15:01 - 2022-08-05 13:32 - 000001412 _____ C:\Users\48518\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Przeglądarka Opera.lnk 2022-07-20 15:01 - 2022-07-20 15:01 - 000000000 ____D C:\Users\48518\AppData\Local\Opera Software 2022-07-19 07:32 - 2022-07-19 07:32 - 000000000 ____D C:\ProgramData\VS Revo Group 2022-07-18 11:29 - 2022-07-18 11:29 - 000000000 ___HD C:\Users\48518\AppData\Roaming\twt2.nacon.anzu 2022-07-18 09:21 - 2022-07-20 15:01 - 000000000 ____D C:\Users\48518\AppData\Roaming\Opera Software 2022-07-17 23:43 - 2022-07-17 23:43 - 000000000 ____D C:\Users\48518\AppData\Roaming\WinRAR 2022-07-17 23:43 - 2022-07-17 23:43 - 000000000 ____D C:\Users\48518\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2022-07-17 23:43 - 2022-07-17 23:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2022-07-17 23:43 - 2022-07-17 23:43 - 000000000 ____D C:\Program Files\WinRAR 2022-07-17 17:11 - 2022-07-17 17:11 - 000000000 ____D C:\Windows\system32\Tasks\Agent Activation Runtime 2022-07-17 11:57 - 2022-08-06 13:44 - 000000000 ____D C:\ProgramData\KONAMI 2022-07-17 11:57 - 2022-07-17 11:57 - 000000000 ____D C:\Users\48518\AppData\Roaming\CPY_SAVES ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2022-08-15 19:45 - 2022-07-14 15:56 - 000000000 ____D C:\Users\48518\AppData\LocalLow\Mozilla 2022-08-15 17:18 - 2022-07-12 12:20 - 000000000 ____D C:\Windows\system32\SleepStudy 2022-08-15 14:25 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-08-15 14:11 - 2022-07-14 15:56 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2022-08-15 14:10 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness 2022-08-15 14:07 - 2022-07-14 15:52 - 000000000 __SHD C:\Users\48518\IntelGraphicsProfiles 2022-08-15 14:07 - 2022-07-14 14:14 - 000000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2022-08-14 10:39 - 2022-07-14 15:52 - 000000000 ____D C:\Users\48518\AppData\Local\Packages 2022-08-14 10:39 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-08-14 10:26 - 2022-07-14 17:23 - 000000000 ____D C:\GRY 2022-08-14 10:10 - 2022-07-14 15:54 - 000000000 ____D C:\Users\48518\AppData\Local\PlaceholderTileLogoFolder 2022-08-12 16:16 - 2022-07-14 15:26 - 001767980 _____ C:\Windows\system32\PerfStringBackup.INI 2022-08-12 16:16 - 2019-12-07 17:08 - 000784334 _____ C:\Windows\system32\perfh015.dat 2022-08-12 16:16 - 2019-12-07 17:08 - 000152230 _____ C:\Windows\system32\perfc015.dat 2022-08-12 16:16 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF 2022-08-12 16:12 - 2022-07-12 12:21 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2022-08-12 16:12 - 2022-07-12 12:20 - 000008192 ___SH C:\DumpStack.log.tmp 2022-08-12 16:12 - 2019-12-07 11:03 - 000524288 _____ C:\Windows\system32\config\BBI 2022-08-10 12:49 - 2022-07-12 12:20 - 000258584 _____ C:\Windows\system32\FNTCACHE.DAT 2022-08-10 12:48 - 2019-12-07 17:11 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2022-08-10 12:48 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2022-08-10 12:48 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata 2022-08-10 12:48 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism 2022-08-10 12:48 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources 2022-08-10 12:48 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinMetadata 2022-08-10 12:48 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns 2022-08-10 12:48 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe 2022-08-10 12:48 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism 2022-08-10 12:48 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellExperiences 2022-08-10 12:48 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr 2022-08-10 11:52 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp 2022-08-10 10:05 - 2022-07-14 19:19 - 000000000 ____D C:\Users\48518\AppData\Local\D3DSCache 2022-08-09 20:43 - 2022-07-12 12:21 - 003011072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll 2022-08-09 20:37 - 2022-07-14 18:34 - 000000000 ____D C:\Windows\system32\MRT 2022-08-09 20:37 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates 2022-08-09 20:35 - 2022-07-14 18:34 - 144534560 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2022-08-08 22:39 - 2022-07-14 15:54 - 000003122 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3266655915-1981900270-190188007-1002 2022-08-08 22:39 - 2022-07-14 15:53 - 000002918 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3266655915-1981900270-190188007-1002 2022-08-07 13:56 - 2022-07-14 15:48 - 000000000 ____D C:\Users\48518 2022-08-07 13:44 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\registration 2022-08-04 14:31 - 2019-12-07 11:03 - 000524288 _____ C:\Windows\system32\config\BBI(7) 2022-08-04 10:44 - 2022-07-14 19:16 - 000000000 ___HD C:\Windows\msdownld.tmp 2022-08-04 10:44 - 2022-07-14 19:16 - 000000000 ____D C:\Windows\SysWOW64\directx 2022-08-04 10:43 - 2019-12-07 11:10 - 000383488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll 2022-08-04 10:43 - 2019-12-07 11:10 - 000215552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplayx.dll 2022-08-04 10:43 - 2019-12-07 11:10 - 000060928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnathlp.dll 2022-08-04 10:43 - 2019-12-07 11:10 - 000045568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpwsockx.dll 2022-08-04 10:43 - 2019-12-07 11:10 - 000023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpmodemx.dll 2022-08-04 10:43 - 2019-12-07 11:10 - 000022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnsvr.exe 2022-08-04 10:43 - 2019-12-07 11:10 - 000020480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplaysvr.exe 2022-08-04 10:43 - 2019-12-07 11:10 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhupnp.dll 2022-08-04 10:43 - 2019-12-07 11:10 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhpast.dll 2022-08-04 10:43 - 2019-12-07 11:10 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnlobby.dll 2022-08-04 10:43 - 2019-12-07 11:10 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnaddr.dll 2022-08-04 10:43 - 2019-12-07 11:09 - 000494592 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll 2022-08-04 10:43 - 2019-12-07 11:09 - 000070656 _____ (Microsoft Corporation) C:\Windows\system32\dpnathlp.dll 2022-08-04 10:43 - 2019-12-07 11:09 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe 2022-08-04 10:43 - 2019-12-07 11:09 - 000010240 _____ (Microsoft Corporation) C:\Windows\system32\dpnhupnp.dll 2022-08-04 10:43 - 2019-12-07 11:09 - 000010240 _____ (Microsoft Corporation) C:\Windows\system32\dpnhpast.dll 2022-08-04 10:43 - 2019-12-07 11:09 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\dpnlobby.dll 2022-08-04 10:43 - 2019-12-07 11:09 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\dpnaddr.dll 2022-08-04 10:36 - 2022-07-14 15:53 - 000002430 _____ C:\Users\48518\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-08-03 12:48 - 2022-07-15 14:27 - 000000000 ____D C:\Users\48518\AppData\Roaming\Disc-Soft 2022-08-03 12:47 - 2022-07-15 14:26 - 000000000 ____D C:\ProgramData\Disc-Soft 2022-07-30 04:42 - 2022-07-14 19:30 - 000003554 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-07-30 04:41 - 2022-07-14 19:30 - 000003330 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2022-07-28 00:10 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\LiveKernelReports 2022-07-20 15:21 - 2022-07-14 15:56 - 000000000 ____D C:\Users\48518\AppData\Roaming\Mozilla 2022-07-20 14:55 - 2022-07-12 12:23 - 000000000 ____D C:\ProgramData\Packages 2022-07-20 14:33 - 2022-07-15 00:18 - 000000000 ____D C:\Users\48518\AppData\Local\UnrealEngine 2022-07-19 14:00 - 2022-07-12 12:25 - 000003118 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3266655915-1981900270-190188007-500 2022-07-19 14:00 - 2022-07-12 12:25 - 000002914 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3266655915-1981900270-190188007-500 2022-07-18 22:46 - 2022-07-14 15:52 - 000000000 ____D C:\Users\48518\AppData\Local\Publishers 2022-07-17 14:16 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2022-07-16 06:23 - 2022-07-12 12:20 - 000000000 ____D C:\Windows\Panther ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================