Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 15-08-2022 Uruchomiony przez Kotlet (administrator) KOTLET-ACER-SWI (Acer Swift SF314-59) (21-08-2022 22:06:50) Uruchomiony z C:\Users\Kotlet\Desktop Załadowane profile: Kotlet Platform: Microsoft Windows 10 Pro Wersja 21H2 19044.1889 (X64) Język: Polski (Polska) Domyślna przeglądarka: FF Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe (DriverStore\FileRepository\cui_dch.inf_amd64_01e62fd23fef9f71\igfxCUIServiceN.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_01e62fd23fef9f71\igfxEMN.exe (explorer.exe ->) (Mike Ward) [Brak podpisu cyfrowego] C:\Users\Kotlet\AppData\Local\Desk Drive\bin\deskdrive.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <19> (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (DTS, Inc. -> DTS Inc.) C:\Windows\System32\DTS\PC\APO4x\DtsApo4Service.exe (services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_f75fa513cf0ccec1\esif_uf.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorvd.inf_amd64_a5ea1b1d8db1527e\RstMwService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe (services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_e5855ce1805681c2\AS\IAS\IntelAudioService.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_01e62fd23fef9f71\igfxCUIServiceN.exe (services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_7de174f2e8b6260b\OneApp.IGCC.WinService.exe (services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_56663c64bec44963\IntelCpHDCPSvc.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_238aadee4b6d04be\RtkAudUService64.exe <2> (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_238aadee4b6d04be\RtkAudUService64.exe [1262512 2021-06-02] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [194736 2022-07-01] (ESET, spol. s r.o. -> ESET) HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [139776 2014-06-16] (Brother Industries, Ltd.) [Brak podpisu cyfrowego] HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Ograniczenia <==== UWAGA HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Ograniczenia <==== UWAGA HKU\S-1-5-21-475056248-1176369030-3679479662-1001\...\Run: [DeskDriveStartup] => C:\Users\Kotlet\AppData\Local\Desk Drive\bin\deskdrive.exe [62464 2015-06-25] (Mike Ward) [Brak podpisu cyfrowego] HKU\S-1-5-21-475056248-1176369030-3679479662-1001\...\Run: [Napisy24.pl] => C:\Program Files\Napisy24\Napisy24.exe [11984896 2021-03-08] (Napisy24.pl) [Brak podpisu cyfrowego] HKU\S-1-5-21-475056248-1176369030-3679479662-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\scrnsave.scr [39936 2019-12-07] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\104.0.5112.101\Installer\chrmstp.exe [2022-08-20] (Google LLC -> Google LLC) GroupPolicy: Ograniczenia ? <==== UWAGA Policies: C:\ProgramData\NTUSER.pol: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0FBE8DBA-ACFF-4234-8964-705D1A402911} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8406496 2022-08-09] (Microsoft Corporation -> Microsoft Corporation) Task: {1CFC574C-4956-491E-BC05-55C4925E9A7F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.) Task: {56E7BA09-ECC4-467C-B31F-60CC4D1A51D7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-08] (Google LLC -> Google LLC) Task: {5F4F210D-CF00-4287-B54E-6BD81364A462} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {660684DC-C5AF-4D30-A5F1-B02EBD5F0E60} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23713200 2022-08-09] (Microsoft Corporation -> Microsoft Corporation) Task: {66943AC0-7AF4-4EA6-A513-0081F0EFAA1D} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [61856 2022-08-09] (Microsoft Corporation -> Microsoft Corporation) Task: {6E798D28-CBFD-44F2-85E9-52522C4E7DAB} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145304 2022-08-12] (Microsoft Corporation -> Microsoft Corporation) Task: {88396CCD-53A9-4E01-8DA5-D5C38353A8C7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-08] (Google LLC -> Google LLC) Task: {94D33DCF-E9FB-41AC-81BB-E2B0113523E8} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8406496 2022-08-09] (Microsoft Corporation -> Microsoft Corporation) Task: {9F983B8D-DFF2-42D1-90C8-05D90E41D43C} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1907712 2021-07-20] () [Brak podpisu cyfrowego] Task: {B1690446-9B11-4CD4-A896-BED4C937C5D3} - System32\Tasks\Microsoft\Windows\Management\Autopilot\RemediateHardwareChange => {62B2DD2C-F129-42EE-BF59-55D3FD21C215} C:\Windows\System32\Autopilot.dll [192000 2022-08-11] (Microsoft Windows -> Microsoft Corporation) Task: {B413F5B4-2EEB-4AB7-B3F1-CD904F640F26} - System32\Tasks\Microsoft\Windows\Management\Autopilot\DetectHardwareChange => {62B2DD2C-F129-42EE-BF59-55D3FD21C215} C:\Windows\System32\Autopilot.dll [192000 2022-08-11] (Microsoft Windows -> Microsoft Corporation) Task: {C054E34C-7187-4D8C-BF47-21CA487BCDB9} - System32\Tasks\MicrosoftEdgeShadowStackRollbackTask => C:\Program Files (x86)\Microsoft\Edge\Application\104.0.1293.63\Installer\setup.exe [3286968 2022-08-21] (Microsoft Corporation -> Microsoft Corporation) Task: {C539FBBC-C1B1-4F36-9129-006495A0AD31} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23713200 2022-08-09] (Microsoft Corporation -> Microsoft Corporation) Task: {D5CCDE99-6AC0-40AE-8EDD-04D781E77E85} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB" Task: {E3D7664A-7980-4F82-BCFE-ED20A6777AB2} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145304 2022-08-12] (Microsoft Corporation -> Microsoft Corporation) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.31.1 Tcpip\..\Interfaces\{d2cc3924-7bf4-4397-b48d-e7d9d1f2374d}: [DhcpNameServer] 192.168.31.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\Kotlet\AppData\Local\Microsoft\Edge\User Data\Default [2022-08-11] Edge HKLM\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn] Edge HKLM-x32\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn] FireFox: ======== FF DefaultProfile: vumsuwkl.default FF ProfilePath: D:\PULPiT\PLiKi\MOZiLLA 2019\MÓJ PROFiL MOZiLLA FiREFOX [2022-08-21] FF DownloadDir: C:\Users\Kotlet\Desktop FF Notifications: D:\PULPiT\PLiKi\MOZiLLA 2019\MÓJ PROFiL MOZiLLA FiREFOX -> hxxps://poczta.wp.pl; hxxps://rankomat.pl; hxxps://www1.ecleneue.com FF Extension: (Youtube to audio converter) - D:\PULPiT\PLiKi\MOZiLLA 2019\MÓJ PROFiL MOZiLLA FiREFOX\Extensions\2conv@hotger.com.xpi [2018-11-21] FF Extension: (Użyj Google Translate) - D:\PULPiT\PLiKi\MOZiLLA 2019\MÓJ PROFiL MOZiLLA FiREFOX\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2021-10-11] FF Extension: (Adblock Plus - darmowy adblocker) - D:\PULPiT\PLiKi\MOZiLLA 2019\MÓJ PROFiL MOZiLLA FiREFOX\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2022-07-06] FF ProfilePath: C:\Users\Kotlet\AppData\Roaming\Mozilla\Firefox\Profiles\vumsuwkl.default [2021-07-31] FF ProfilePath: C:\Users\Kotlet\AppData\Roaming\Mozilla\Firefox\Profiles\0e1av3cj.default-release [2021-07-31] FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-07-08] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-08-02] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-03-06] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-07-08] (Microsoft Corporation -> Microsoft Corporation) FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2022-08-21] Chrome: ======= CHR Profile: C:\Users\Kotlet\AppData\Local\Google\Chrome\User Data\Default [2022-08-17] CHR Extension: (Dokumenty Google offline) - C:\Users\Kotlet\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-06-28] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Kotlet\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-10-08] CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12102608 2022-08-09] (Microsoft Corporation -> Microsoft Corporation) R2 DtsApo4Service; C:\Windows\System32\DTS\PC\APO4x\DtsApo4Service.exe [210872 2021-03-21] (DTS, Inc. -> DTS Inc.) R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [3342536 2022-07-01] (ESET, spol. s r.o. -> ESET) R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [3342536 2022-07-01] (ESET, spol. s r.o. -> ESET) R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [224320 2022-08-19] (HP Inc. -> HP Inc.) R2 IntelAudioService; C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_e5855ce1805681c2\\AS\\IAS\\IntelAudioService.exe [539832 2021-05-17] (Intel Corporation -> Intel) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6255896 2022-08-11] (Microsoft Windows Publisher -> Microsoft Corporation) S3 ss_conn_launcher_service; C:\Windows\System32\Samsung\EasySetup\ss_conn_launcher.exe [182392 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 AcerAirplaneModeController; C:\Windows\System32\drivers\AcerAirplaneModeController.sys [30168 2020-05-12] (Acer Incorporated -> Acer Incorporated) S3 AcxHdAudio; C:\Windows\System32\drivers\AcxHdAudio.sys [526848 2022-07-13] (Microsoft Windows -> Microsoft Corporation) S3 AX88179A; C:\Windows\System32\DriverStore\FileRepository\netax88179x_178a_772d.inf_amd64_e86ece73a69c7639\ax88179x_178a_772d.sys [158488 2022-04-22] (WDKTestCert AndyChen,132652806163117881 -> ASIX Electronics Corp.) S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [192880 2022-07-01] (ESET, spol. s r.o. -> ESET) S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [15824 2021-06-21] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET) R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [234192 2022-07-01] (ESET, spol. s r.o. -> ESET) R1 epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [119528 2022-07-01] (ESET, spol. s r.o. -> ESET) R3 iaLPSS2_GPIO2_TGL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_gpio2_tgl.inf_amd64_2d381b4e92c4580e\iaLPSS2_GPIO2_TGL.sys [129288 2020-06-04] (Intel Corporation -> Intel Corporation) R3 iaLPSS2_I2C_TGL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_i2c_tgl.inf_amd64_18d252599a45c7f5\iaLPSS2_I2C_TGL.sys [198408 2020-06-04] (Intel Corporation -> Intel Corporation) R0 iaStorVD; C:\Windows\System32\drivers\iaStorVD.sys [1544912 2021-08-26] (Intel Corporation -> Intel Corporation) R3 IntcSDW; C:\Windows\System32\DriverStore\FileRepository\intcsdw.inf_amd64_c447f3ebbd1456bd\IntcSDW.sys [864336 2021-05-17] (Intel Corporation -> Intel(R) Corporation) R3 IntcUSB; C:\Windows\System32\DriverStore\FileRepository\intcusb.inf_amd64_781687200d129207\IntcUSB.sys [1668672 2021-05-17] (Intel Corporation -> Intel(R) Corporation) R3 IntelGNA; C:\Windows\System32\DriverStore\FileRepository\gna.inf_amd64_c08af0e43cbc91c3\gna.sys [83856 2020-08-03] (Gaussian Mixture Models and Neural Networks Accelerator -> Intel Corporation) S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 ss_conn_usb_driver2; C:\Windows\System32\Drivers\ss_conn_usb_driver2.sys [43640 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2022-08-21 22:06 - 2022-08-21 22:07 - 000018269 _____ C:\Users\Kotlet\Desktop\FRST.txt 2022-08-21 22:05 - 2022-08-21 22:06 - 000000000 ____D C:\FRST 2022-08-21 22:04 - 2022-08-21 22:04 - 000001162 _____ C:\Users\Kotlet\Desktop\eset.txt 2022-08-21 22:03 - 2022-08-21 22:03 - 002371072 _____ (Farbar) C:\Users\Kotlet\Desktop\FRST64.exe 2022-08-21 21:57 - 2022-08-21 21:57 - 015274968 _____ (ESET) C:\Users\Kotlet\Desktop\esetonlinescanner.exe 2022-08-21 21:57 - 2022-08-21 21:57 - 000001386 _____ C:\Users\Kotlet\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk 2022-08-21 21:57 - 2022-08-21 21:57 - 000001280 _____ C:\Users\Kotlet\Desktop\ESET Online Scanner.lnk 2022-08-21 14:34 - 2022-08-21 19:13 - 000000000 ____D C:\Users\Kotlet\Desktop\STERY 2022-08-19 14:20 - 2022-08-21 22:00 - 000000000 ____D C:\Users\Kotlet\AppData\Roaming\uTorrent PRO v3.5.5 Build 45095 2022-08-19 12:54 - 2022-08-19 12:54 - 000000000 ____D C:\AdwCleaner 2022-08-19 12:36 - 2022-08-19 12:36 - 000000000 ____D C:\Users\Kotlet\Desktop\aaa 2022-08-19 12:35 - 2022-08-19 12:46 - 000000000 ____D C:\Users\Kotlet\AppData\Local\mbam 2022-08-19 12:05 - 2022-08-19 12:05 - 000000000 ____D C:\Users\Kotlet\Desktop\PULPiT ACER 08.2022 2022-08-19 12:05 - 2008-11-17 12:43 - 000314368 _____ (Marcin Dutkiewicz) C:\Users\Kotlet\Desktop\Screenshotek.exe 2022-08-17 13:57 - 2022-08-17 13:57 - 000000000 ____D C:\Users\Kotlet\AppData\Local\ElevatedDiagnostics 2022-08-17 10:30 - 2022-08-21 16:32 - 000000000 ____D C:\Intel 2022-08-11 19:19 - 2022-08-11 19:19 - 000581120 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr 2022-08-11 19:19 - 2022-08-11 19:19 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr 2022-08-11 19:19 - 2022-08-11 19:19 - 000011803 _____ C:\Windows\system32\DrtmAuthTxt.wim 2022-08-11 19:18 - 2022-08-11 19:18 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll 2022-08-11 19:18 - 2022-08-11 19:18 - 000162304 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe 2022-08-11 19:18 - 2022-08-11 19:18 - 000089088 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.proxystub.dll 2022-08-11 19:18 - 2022-08-11 19:18 - 000073216 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll 2022-08-11 19:18 - 2022-08-11 19:18 - 000060928 _____ C:\Windows\system32\runexehelper.exe 2022-08-11 19:14 - 2022-08-11 19:14 - 000000000 ___HD C:\$WinREAgent 2022-08-04 12:58 - 2022-08-04 12:58 - 000000000 ____D C:\Windows\system32\Samsung 2022-08-04 12:58 - 2022-08-04 12:58 - 000000000 ____D C:\ProgramData\Samsung 2022-08-04 12:57 - 2021-10-08 11:00 - 000167544 _____ (Samsung Electronics Co., Ltd.) C:\Windows\system32\Drivers\ssudmdm.sys 2022-08-04 12:57 - 2021-10-08 11:00 - 000043640 _____ (Samsung Electronics Co., Ltd.) C:\Windows\system32\Drivers\ss_conn_usb_driver2.sys ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2022-08-21 22:02 - 2021-10-08 16:52 - 000000000 ____D C:\Program Files (x86)\Google 2022-08-21 22:00 - 2021-08-04 11:29 - 000000000 ____D C:\Program Files\Napisy24 2022-08-21 21:57 - 2021-08-03 19:02 - 000000000 ____D C:\Users\Kotlet\AppData\Local\ESET 2022-08-21 21:55 - 2021-07-31 11:13 - 000000000 ____D C:\Windows\system32\SleepStudy 2022-08-21 21:05 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinBioDatabase 2022-08-21 20:52 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-08-21 19:12 - 2022-02-13 20:32 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2022-08-21 19:11 - 2021-07-31 11:37 - 000000000 ____D C:\Users\Kotlet\AppData\LocalLow\Mozilla 2022-08-21 17:35 - 2022-05-11 12:07 - 000783236 _____ C:\Windows\system32\perfh015.dat 2022-08-21 17:35 - 2022-05-11 12:07 - 000151752 _____ C:\Windows\system32\perfc015.dat 2022-08-21 17:35 - 2021-07-31 11:18 - 001758684 _____ C:\Windows\system32\PerfStringBackup.INI 2022-08-21 17:35 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF 2022-08-21 17:22 - 2021-07-31 11:34 - 000000000 __SHD C:\Users\Kotlet\IntelGraphicsProfiles 2022-08-21 16:32 - 2021-07-31 11:13 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2022-08-21 16:32 - 2021-07-31 11:12 - 000008192 ___SH C:\DumpStack.log.tmp 2022-08-21 16:32 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ServiceState 2022-08-21 16:32 - 2019-12-07 11:03 - 000786432 _____ C:\Windows\system32\config\BBI 2022-08-21 14:29 - 2021-07-31 11:27 - 000000408 __RSH C:\ProgramData\ntuser.pol 2022-08-21 14:04 - 2021-11-21 17:40 - 000004784 _____ C:\Windows\system32\Tasks\MicrosoftEdgeShadowStackRollbackTask 2022-08-21 14:04 - 2021-07-31 11:13 - 000002455 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-08-21 14:04 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-08-21 14:04 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness 2022-08-20 18:55 - 2021-10-08 16:52 - 000002260 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-08-19 19:02 - 2021-08-16 14:32 - 000000000 ____D C:\Windows\system32\Tasks\HP 2022-08-19 19:02 - 2021-08-16 13:32 - 000000000 ____D C:\Program Files\HPPrintScanDoctor 2022-08-19 12:57 - 2019-12-07 11:14 - 000000000 ___HD C:\Windows\ELAMBKUP 2022-08-19 12:52 - 2022-05-05 11:22 - 000000000 ____D C:\Users\Kotlet\AppData\Roaming\All Free FLAC to MP3 Converter New Version Available 2022-08-19 12:49 - 2022-05-05 11:22 - 000000000 ____D C:\Program Files (x86)\All Free FLAC to MP3 Converter 2022-08-19 12:47 - 2022-05-05 11:22 - 000001466 _____ C:\Users\Kotlet\AppData\Roaming\Microsoft\Windows\Start Menu\All Free FLAC to MP3 Converter.lnk 2022-08-19 12:47 - 2022-05-05 11:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\All Free FLAC to MP3 Converter 2022-08-19 12:46 - 2022-05-05 11:22 - 000000040 _____ C:\Users\Kotlet\AppData\Roaming\cdr.ini 2022-08-19 12:46 - 2022-05-05 11:22 - 000000000 ____D C:\Users\Kotlet\AppData\Roaming\All Free FLAC to MP3 Converter 2022-08-17 10:28 - 2021-07-31 11:19 - 000000000 ____D C:\Users\Kotlet 2022-08-17 09:35 - 2021-08-12 18:42 - 000000000 ____D C:\Users\Kotlet\AppData\Local\D3DSCache 2022-08-17 09:16 - 2021-07-31 11:13 - 000003566 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-08-17 09:16 - 2021-07-31 11:13 - 000003442 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2022-08-12 19:10 - 2021-07-31 11:29 - 000000000 ____D C:\Program Files\Microsoft Office 2022-08-11 23:40 - 2022-05-06 08:57 - 000455248 _____ C:\Windows\system32\FNTCACHE.DAT 2022-08-11 23:40 - 2021-07-31 11:37 - 000000000 ____D C:\Program Files\Mozilla Firefox 2022-08-11 23:40 - 2021-07-31 11:37 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2022-08-11 23:40 - 2019-12-07 17:12 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2022-08-11 23:40 - 2019-12-07 17:12 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2022-08-11 23:40 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2022-08-11 23:40 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata 2022-08-11 23:40 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism 2022-08-11 23:40 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources 2022-08-11 23:40 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinMetadata 2022-08-11 23:40 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns 2022-08-11 23:40 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe 2022-08-11 23:40 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism 2022-08-11 23:40 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellExperiences 2022-08-11 23:40 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr 2022-08-11 19:20 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp 2022-08-11 19:18 - 2021-07-31 11:16 - 003011072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll 2022-08-11 19:14 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates 2022-08-11 19:13 - 2021-07-31 11:36 - 000000000 ____D C:\Windows\system32\MRT 2022-08-11 19:12 - 2021-07-31 11:36 - 144534560 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2022-08-11 19:03 - 2021-10-24 16:10 - 000002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk 2022-08-11 19:03 - 2021-07-31 19:42 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task 2022-08-11 15:39 - 2021-08-25 18:34 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla 2022-08-11 15:39 - 2021-07-31 11:37 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2022-08-11 15:35 - 2021-07-31 22:57 - 000000000 ____D C:\Program Files\JD 2022-08-08 14:14 - 2021-08-16 14:37 - 000000000 ____D C:\Users\Kotlet\AppData\Local\HP 2022-08-08 14:14 - 2021-07-31 11:19 - 000000000 ____D C:\Users\Kotlet\AppData\Local\VirtualStore 2022-08-05 16:49 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\LiveKernelReports 2022-08-04 19:49 - 2021-08-31 09:01 - 000000000 ____D C:\Users\Kotlet\AppData\Local\ChomikBox 2022-08-04 18:03 - 2021-08-31 09:01 - 000000000 ____D C:\Users\Kotlet\.gstreamer-0.10 ==================== Pliki w katalogu głównym wybranych folderów ======== 2021-10-11 20:24 - 2021-10-11 20:24 - 000000045 _____ () C:\Users\Kotlet\license.dat 2022-05-05 11:22 - 2022-08-19 12:46 - 000000040 _____ () C:\Users\Kotlet\AppData\Roaming\cdr.ini ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================