Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 29-05-2023 Uruchomiony przez Tomekku (administrator) LAPTOP-FCN1PLE6 (Acer Aspire A515-51G) (05-06-2023 17:52:50) Uruchomiony z D:\flsc\FRST64.exe Załadowane profile: Tomekku Platforma: Microsoft Windows 10 Home Wersja 22H2 19045.2965 (X64) Język: Polski (Polska) Domyślna przeglądarka: Opera Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QAAgent.exe (D:\360\Total Security\safemon\QHActiveDefense.exe ->) (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) D:\360\Total Security\safemon\QHSafeTray.exe (D:\360\Total Security\safemon\QHActiveDefense.exe ->) (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) D:\360\Total Security\safemon\QHWatchdog.exe (D:\Opera GX\opera.exe ->) (Opera Norway AS -> Opera Software) D:\Opera GX\98.0.4759.82\opera_crashreporter.exe (explorer.exe ->) (Riot Games, Inc. -> Riot Games, Inc.) C:\Program Files\Riot Vanguard\vgtray.exe (Opera Norway AS -> Opera Software) D:\Opera GX\opera.exe <23> (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (services.exe ->) (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) D:\360\Total Security\safemon\QHActiveDefense.exe (svchost.exe ->) (Acer Incorporated -> ) C:\Program Files (x86)\Acer\Care Center\ACCStd.exe (svchost.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\Acer Collection\ACEMon.exe (svchost.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\ePowerButton_NB.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (svchost.exe ->) (SweetLabs Inc -> SweetLabs, Inc) C:\Users\Tomekku\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3088752 2023-05-03] (Riot Games, Inc. -> Riot Games, Inc.) HKLM-x32\...\Run: [QHSafeTray] => D:\360\Total Security\safemon\360Tray.exe [413000 2022-12-14] (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Ograniczenia <==== UWAGA HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Ograniczenia <==== UWAGA HKU\S-1-5-21-3699129381-2143690637-3486842306-1001\...\Run: [Overwolf] => D:\Overwolf\OverwolfLauncher.exe [1785864 2023-05-24] (Overwolf Ltd -> Overwolf Ltd.) HKU\S-1-5-21-3699129381-2143690637-3486842306-1001\...\Run: [Discord] => C:\Users\Tomekku\AppData\Local\Discord\Update.exe [1525016 2023-04-26] (Discord Inc. -> GitHub) HKU\S-1-5-21-3699129381-2143690637-3486842306-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 HKU\S-1-5-21-3699129381-2143690637-3486842306-1001\...\MountPoints2: {2d2e88db-e420-11ec-88b6-70c94e866f12} - "F:\HiSuiteDownLoader.exe" HKU\S-1-5-21-3699129381-2143690637-3486842306-1001\...\MountPoints2: {3023d042-cdbf-11eb-8bb0-70c94e866f11} - "E:\HiSuiteDownLoader.exe" HKLM\...\Windows x64\Print Processors\Canon MG3600 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDCT.DLL [30208 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ Language Monitor MG3600 series: C:\Windows\system32\CNMLMCT.DLL [406528 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\105.0.5195.127\Installer\chrmstp.exe [2022-09-17] (Google LLC -> Google LLC) GroupPolicy: Ograniczenia ? <==== UWAGA Policies: C:\ProgramData\NTUSER.pol: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {041CD73F-1E30-429E-96D9-E4EC0C3AD4AA} - \Microsoft\Windows\Windows Defender\Windows Defender Cleanup -> Brak pliku <==== UWAGA Task: {0C68E431-CF33-48D4-9272-80E1BC71AC29} - \Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan -> Brak pliku <==== UWAGA Task: {0D508443-3BC2-4C86-A054-6CD49446A30B} - System32\Tasks\GoogleUpdateTaskMachineUA{1269C31C-EC88-4863-A3FD-01151504963B} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-02-12] (Google LLC -> Google LLC) Task: {0DB268F8-FF75-4B41-A5B7-9E08A738CC3D} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {0FC090C3-2254-47B4-823E-CCFED3B92813} - \Software Update Application -> Brak pliku <==== UWAGA Task: {1126D646-A390-4277-96A8-6F2CCD1037A3} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {12E4D8BD-03A2-4216-8D71-38F72AAC6ACD} - System32\Tasks\GoogleUpdateTaskMachineCore{75FBE565-A92C-4B5C-9831-006FB926C975} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-02-12] (Google LLC -> Google LLC) Task: {181378DB-0BF0-4320-983F-127491AFCDC3} - \App Explorer -> Brak pliku <==== UWAGA Task: {192B1F14-483F-4611-AFE8-8037660AA414} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {37292EA8-F458-47ED-A55C-5A3A1CCF5FD5} - \Microsoft\Windows\WindowsUpdate\sih -> Brak pliku <==== UWAGA Task: {3891CB81-CF07-4ECD-A7CE-59544F84AF7D} - \Microsoft\Windows\Shell\FamilySafetyMonitorToastTask -> Brak pliku <==== UWAGA Task: {3ACC3A92-7D7E-4266-8D25-8866180D48AA} - \ACCBackgroundApplication -> Brak pliku <==== UWAGA Task: {3AFFC501-BCAD-4D33-A0F8-ED48C36AEF51} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2639880 2023-05-24] (Overwolf Ltd -> Overwolf LTD) Task: {3F69E915-2E54-4D65-98B2-D4B05F5F44E6} - System32\Tasks\CareCenter\RtHDVBg_CTPreset_Reg_HKLMRun => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2020-03-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {5881E12B-5A28-410B-B267-42E3629C00F1} - System32\Tasks\ccleaner update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2023-01-11] (Piriform Software Ltd -> Piriform) Task: {5A6D7005-D1A0-4913-AD14-E8B9AFD465F8} - System32\Tasks\Power Button => C:\Program Files\Acer\Acer Quick Access\ePowerButton_NB.exe [2771104 2022-01-03] (Acer Incorporated -> Acer Incorporated) Task: {5AEF4167-0647-4843-9DB2-92F25E3C4658} - \Acer Collection Monitor Application -> Brak pliku <==== UWAGA Task: {5AF4607D-DA2D-48BC-A054-4AD8619730DB} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {5D0051A2-3681-4C27-8F61-70FDE4EE19F0} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2023-01-27] (Nvidia Corporation -> NVIDIA Corporation) Task: {5FBDBF79-FF1A-4E67-90A8-70681CDA59F1} - System32\Tasks\Quick Access => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [446624 2022-01-03] (Acer Incorporated -> Acer Incorporated) Task: {6923814E-A01B-4708-9E3F-9705194C6B8E} - System32\Tasks\Norton Security Scan for Tomekku => C:\Program Files (x86)\Norton Security Scan\Engine\4.6.1.179\Nss.exe [848912 2019-02-15] (Symantec Corporation -> Symantec Corporation) Task: {6B7F7D29-67D6-4161-ADE2-1F5F57D64013} - \Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance -> Brak pliku <==== UWAGA Task: {74A520AD-EE89-4F4B-B298-DCE87FF0834C} - System32\Tasks\Opera GX scheduled Autoupdate 1644245430 => D:\Opera GX\launcher.exe [2611608 2023-05-25] (Opera Norway AS -> Opera Software) Task: {750087C0-D3F4-4146-B4CD-CEDBE545255C} - \UbtFrameworkService -> Brak pliku <==== UWAGA Task: {7545A7A8-D5B4-4A60-B8E6-F425BFF60C45} - System32\Tasks\CCleanerSkipUAC - Tomekku => C:\Program Files\CCleaner\CCleaner.exe [32617808 2023-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {7BA315A6-F3FF-419A-A261-93C8F790F297} - \Microsoft\Windows\Windows Defender\Windows Defender Verification -> Brak pliku <==== UWAGA Task: {852517C6-5131-4D45-BCE1-C8D369CF6591} - System32\Tasks\CareCenter\RTHDVCPL_Reg_HKLMRun => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19677472 2020-03-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {854614C4-87CC-4FED-AFC6-424F2291EFC5} - \Acer Collection Application -> Brak pliku <==== UWAGA Task: {8EFB83AD-AED2-4EE7-B8E1-1CEB31B94814} - System32\Tasks\AcerCMUpdateTask2.5.22250 => C:\Program Files (x86)\Acer\Amundsen\2.5.22250\awc.exe [96904 2022-09-25] (Acer Incorporated -> ) Task: {90088628-07B5-4D27-8560-FCF9CB8619FF} - \Intel PTT EK Recertification -> Brak pliku <==== UWAGA Task: {90D8A408-D0EF-4159-A3CD-723A5731BAC7} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {A84C012C-00A6-4D34-827F-4BD5EF10F93C} - \OneDrive Standalone Update Task v2 -> Brak pliku <==== UWAGA Task: {AE75FFDF-5F55-4B46-81AB-A5FDAC8EEF28} - System32\Tasks\RtHDVBg_ASC => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2020-03-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {B7777F4F-0A9A-4657-B4F5-FEAE955556FD} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-15] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {B9F596D8-2521-4448-9182-A0881D58F4D6} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4713808 2023-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "bde8ef4b-dfb3-46ed-951d-54cf22bb747f" --version "6.08.10255" --silent Task: {BBF1088F-6F8E-453D-B0FC-032FA713824C} - \ACCAgent -> Brak pliku <==== UWAGA Task: {CECF2696-8769-4192-8D40-B912F287289E} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {D0218C70-9C99-4043-BF17-667E1AE5C42E} - \Microsoft\Windows\UpdateOrchestrator\Reboot -> Brak pliku <==== UWAGA Task: {D2E1D75E-4C14-4982-BDE9-1A50425C1DD5} - \ACC -> Brak pliku <==== UWAGA Task: {DF1DCC92-1BD3-425E-984A-C0AB6B023179} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {F1A7BD4E-4982-453B-AF47-22A9EF6F2D36} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2020-03-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {F9BA3902-D3AF-4364-8D24-AC6FB44FDB3E} - System32\Tasks\DashlaneUpgradeCheck => C:\Windows\system32\net.exe [59904 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {FA8BEB35-4341-4B41-AD3D-8C44FB62854D} - System32\Tasks\CareCenter\RtHDVBg_ASC_Reg_HKLMRun => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2020-03-06] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {FF82846C-D9B1-49EE-8483-7B0B7437E55C} - System32\Tasks\PCA Application Restart {0c1aa261-5a77-4077-a5a7-e9e3b0315a69} => C:\WINDOWS\system32\pcalua.exe [53760 2023-04-14] (Microsoft Windows -> Microsoft Corporation) -> -a D:\giereczki\INDIE\Viper-M1\M1.EXE -d D:\giereczki\INDIE\Viper-M1 (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{177c8413-32eb-4967-9441-47f58d2923a6}: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{90114654-acc3-4f85-8c34-49876e048164}: [DhcpNameServer] 192.168.0.1 HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Ograniczenia <==== UWAGA Edge: ======= Edge Profile: C:\Users\Tomekku\AppData\Local\Microsoft\Edge\User Data\Default [2023-06-02] FireFox: ======== FF DefaultProfile: kv8n9ryv.default FF ProfilePath: C:\Users\Tomekku\AppData\Roaming\Mozilla\Firefox\Profiles\kv8n9ryv.default [2023-06-02] FF Extension: (Amazon Assistant for Firefox) - C:\Users\Tomekku\AppData\Roaming\Mozilla\Firefox\Profiles\kv8n9ryv.default\Extensions\abb-acer@amazon.com [2022-02-07] [hxxps://s3-us-west-2.amazonaws.com/ubp-ubpextension-us-prod/vendor-update/firefox/acer1/updates.json] FF Extension: (العربية Language Pack) - C:\Users\Tomekku\AppData\Roaming\Mozilla\Firefox\Profiles\kv8n9ryv.default\Extensions\langpack-ar@firefox.mozilla.org [2022-02-07] [Przestarzałe] FF Extension: (Английски (САЩ) Language Pack) - C:\Users\Tomekku\AppData\Roaming\Mozilla\Firefox\Profiles\kv8n9ryv.default\Extensions\langpack-bg@firefox.mozilla.org [2022-02-07] [Przestarzałe] FF Extension: (Czech (CZ) Language Pack) - C:\Users\Tomekku\AppData\Roaming\Mozilla\Firefox\Profiles\kv8n9ryv.default\Extensions\langpack-cs@firefox.mozilla.org [2022-02-07] [Przestarzałe] FF Extension: (Dansk (da) Language Pack) - C:\Users\Tomekku\AppData\Roaming\Mozilla\Firefox\Profiles\kv8n9ryv.default\Extensions\langpack-da@firefox.mozilla.org [2022-02-07] [Przestarzałe] FF Extension: (Deutsch (DE) Language Pack) - C:\Users\Tomekku\AppData\Roaming\Mozilla\Firefox\Profiles\kv8n9ryv.default\Extensions\langpack-de@firefox.mozilla.org [2022-02-07] [Przestarzałe] FF Extension: (Ελληνικά Language Pack) - C:\Users\Tomekku\AppData\Roaming\Mozilla\Firefox\Profiles\kv8n9ryv.default\Extensions\langpack-el@firefox.mozilla.org [2022-02-07] [Przestarzałe] FF Extension: (English (US) Language Pack) - C:\Users\Tomekku\AppData\Roaming\Mozilla\Firefox\Profiles\kv8n9ryv.default\Extensions\langpack-en-US@firefox.mozilla.org [2022-02-07] [Przestarzałe] FF Extension: (Español (España) Language Pack) - C:\Users\Tomekku\AppData\Roaming\Mozilla\Firefox\Profiles\kv8n9ryv.default\Extensions\langpack-es-ES@firefox.mozilla.org [2022-02-07] [Przestarzałe] FF Extension: (Estonian Language Pack) - C:\Users\Tomekku\AppData\Roaming\Mozilla\Firefox\Profiles\kv8n9ryv.default\Extensions\langpack-et@firefox.mozilla.org [2022-02-07] [Przestarzałe] FF Extension: (Finnish Language Pack) - C:\Users\Tomekku\AppData\Roaming\Mozilla\Firefox\Profiles\kv8n9ryv.default\Extensions\langpack-fi@firefox.mozilla.org [2022-02-07] [Przestarzałe] FF Extension: (Français Language Pack) - C:\Users\Tomekku\AppData\Roaming\Mozilla\Firefox\Profiles\kv8n9ryv.default\Extensions\langpack-fr@firefox.mozilla.org [2022-02-07] [Przestarzałe] FF Extension: (Hebrew (IL) Language Pack) - C:\Users\Tomekku\AppData\Roaming\Mozilla\Firefox\Profiles\kv8n9ryv.default\Extensions\langpack-he@firefox.mozilla.org [2022-02-07] [Przestarzałe] FF Extension: (Magyar (HU) Language Pack) - C:\Users\Tomekku\AppData\Roaming\Mozilla\Firefox\Profiles\kv8n9ryv.default\Extensions\langpack-hu@firefox.mozilla.org [2022-02-07] [Przestarzałe] FF Extension: (Italiano (IT) Language Pack) - C:\Users\Tomekku\AppData\Roaming\Mozilla\Firefox\Profiles\kv8n9ryv.default\Extensions\langpack-it@firefox.mozilla.org [2022-02-07] [Przestarzałe] FF Extension: (Japanese Language Pack) - C:\Users\Tomekku\AppData\Roaming\Mozilla\Firefox\Profiles\kv8n9ryv.default\Extensions\langpack-ja@firefox.mozilla.org [2022-02-07] [Przestarzałe] FF Extension: (Korean (KR) Language Pack) - C:\Users\Tomekku\AppData\Roaming\Mozilla\Firefox\Profiles\kv8n9ryv.default\Extensions\langpack-ko@firefox.mozilla.org [2022-02-07] [Przestarzałe] FF Extension: (Lietuvių Language Pack) - C:\Users\Tomekku\AppData\Roaming\Mozilla\Firefox\Profiles\kv8n9ryv.default\Extensions\langpack-lt@firefox.mozilla.org [2022-02-07] [Przestarzałe] FF Extension: (Norsk bokmål (NO) Language Pack) - C:\Users\Tomekku\AppData\Roaming\Mozilla\Firefox\Profiles\kv8n9ryv.default\Extensions\langpack-nb-NO@firefox.mozilla.org [2022-02-07] [Przestarzałe] FF Extension: (Nederlands (NL) Language Pack) - C:\Users\Tomekku\AppData\Roaming\Mozilla\Firefox\Profiles\kv8n9ryv.default\Extensions\langpack-nl@firefox.mozilla.org [2022-02-07] [Przestarzałe] FF Extension: (Polski Language Pack) - C:\Users\Tomekku\AppData\Roaming\Mozilla\Firefox\Profiles\kv8n9ryv.default\Extensions\langpack-pl@firefox.mozilla.org [2022-02-07] [Przestarzałe] FF Extension: (Português (pt-BR) Language Pack) - C:\Users\Tomekku\AppData\Roaming\Mozilla\Firefox\Profiles\kv8n9ryv.default\Extensions\langpack-pt-BR@firefox.mozilla.org [2022-02-07] [Przestarzałe] FF Extension: (Português (Europeu) Language Pack) - C:\Users\Tomekku\AppData\Roaming\Mozilla\Firefox\Profiles\kv8n9ryv.default\Extensions\langpack-pt-PT@firefox.mozilla.org [2022-02-07] [Przestarzałe] FF Extension: (Russian (RU) Language Pack) - C:\Users\Tomekku\AppData\Roaming\Mozilla\Firefox\Profiles\kv8n9ryv.default\Extensions\langpack-ru@firefox.mozilla.org [2022-02-07] [Przestarzałe] FF Extension: (Slovak (SK) Language Pack) - C:\Users\Tomekku\AppData\Roaming\Mozilla\Firefox\Profiles\kv8n9ryv.default\Extensions\langpack-sk@firefox.mozilla.org [2022-02-07] [Przestarzałe] FF Extension: (Slovenski jezik Language Pack) - C:\Users\Tomekku\AppData\Roaming\Mozilla\Firefox\Profiles\kv8n9ryv.default\Extensions\langpack-sl@firefox.mozilla.org [2022-02-07] [Przestarzałe] FF Extension: (српски (sr) Language Pack) - C:\Users\Tomekku\AppData\Roaming\Mozilla\Firefox\Profiles\kv8n9ryv.default\Extensions\langpack-sr@firefox.mozilla.org [2022-02-07] [Przestarzałe] FF Extension: (Svenska (SE) Language Pack) - C:\Users\Tomekku\AppData\Roaming\Mozilla\Firefox\Profiles\kv8n9ryv.default\Extensions\langpack-sv-SE@firefox.mozilla.org [2022-02-07] [Przestarzałe] FF Extension: (ไทย Language Pack) - C:\Users\Tomekku\AppData\Roaming\Mozilla\Firefox\Profiles\kv8n9ryv.default\Extensions\langpack-th@firefox.mozilla.org [2022-02-07] [Przestarzałe] FF Extension: (Türkçe (TR) Language Pack) - C:\Users\Tomekku\AppData\Roaming\Mozilla\Firefox\Profiles\kv8n9ryv.default\Extensions\langpack-tr@firefox.mozilla.org [2022-02-07] [Przestarzałe] FF Extension: (Ukrainian (UA) Language Pack) - C:\Users\Tomekku\AppData\Roaming\Mozilla\Firefox\Profiles\kv8n9ryv.default\Extensions\langpack-uk@firefox.mozilla.org [2022-02-07] [Przestarzałe] FF Extension: (Chinese Simplified (zh-CN) Language Pack) - C:\Users\Tomekku\AppData\Roaming\Mozilla\Firefox\Profiles\kv8n9ryv.default\Extensions\langpack-zh-CN@firefox.mozilla.org [2022-02-07] [Przestarzałe] FF Extension: (Traditional Chinese (zh-TW) Language Pack) - C:\Users\Tomekku\AppData\Roaming\Mozilla\Firefox\Profiles\kv8n9ryv.default\Extensions\langpack-zh-TW@firefox.mozilla.org [2022-02-07] [Przestarzałe] FF Extension: (Mozilla Partner Defaults) - C:\Users\Tomekku\AppData\Roaming\Mozilla\Firefox\Profiles\kv8n9ryv.default\Extensions\partnerdefaults@mozilla.com [2022-02-07] [Przestarzałe] FF Extension: (Hotfix for Firefox bug 1548973 (armagaddon 2.0) mitigation) - C:\Users\Tomekku\AppData\Roaming\Mozilla\Firefox\Profiles\kv8n9ryv.default\features\{698acda2-e94e-4eaa-95fe-98a493d417b4}\hotfix-bug-1548973@mozilla.org.xpi [2022-02-07] [Przestarzałe] FF Plugin: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2022-05-25] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2022-05-25] (Oracle America, Inc. -> Oracle Corporation) Chrome: ======= CHR DefaultProfile: Profile 2 CHR Profile: C:\Users\Tomekku\AppData\Local\Google\Chrome\User Data\Default [2023-06-02] CHR Extension: (Google Docs Offline) - C:\Users\Tomekku\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-12-01] CHR Extension: (Chrome Web Store Payments) - C:\Users\Tomekku\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-02-12] CHR Profile: C:\Users\Tomekku\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-06-04] CHR Profile: C:\Users\Tomekku\AppData\Local\Google\Chrome\User Data\Profile 2 [2023-06-04] CHR Notifications: Profile 2 -> hxxps://ebonsewed.com CHR Extension: (Dokumenty Google offline) - C:\Users\Tomekku\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-05-18] CHR Extension: (AdBlock — najlepszy bloker reklam) - C:\Users\Tomekku\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-05-02] CHR Extension: (360 Internet Protection) - C:\Users\Tomekku\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\glcimepnljoholdmjchkloafkggfoijh [2023-01-19] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Tomekku\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-01-19] CHR Profile: C:\Users\Tomekku\AppData\Local\Google\Chrome\User Data\System Profile [2023-06-04] CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb] CHR HKLM-x32\...\Chrome\Extension: [glcimepnljoholdmjchkloafkggfoijh] Opera: ======= OPR Profile: C:\Users\Tomekku\AppData\Roaming\Opera Software\Opera Stable [2023-06-02] StartMenuInternet: (HKU\S-1-5-21-3699129381-2143690637-3486842306-1001) Opera GXStable - "D:\Opera GX\Launcher.exe" ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S4 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [347024 2017-06-02] (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) S4 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [15044872 2023-04-03] (BattlEye Innovations e.K. -> ) S4 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1003344 2023-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) S4 Dashlane Upgrade Service; C:\Program Files (x86)\Dashlane\Upgrade\DashlaneUpgradeService.exe [83992 2017-08-23] (Dashlane -> Dashlane, Inc.) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1134624 2022-11-27] (EasyAntiCheat Oy -> Epic Games, Inc) S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [2348000 2023-05-27] (GOG sp. z o.o -> GOG.com) S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7178720 2023-03-30] (GOG sp. z o.o -> GOG.com) S4 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [236864 2022-10-20] (Huawei Technologies Co., Ltd. -> ) [Brak podpisu cyfrowego] S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9255384 2023-05-19] (Malwarebytes Inc. -> Malwarebytes) S4 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2639880 2023-05-24] (Overwolf Ltd -> Overwolf LTD) S4 QALSvc; C:\Program Files\Acer\Acer Quick Access\QALSvc.exe [466592 2022-01-03] (Acer Incorporated -> Acer Incorporated) S4 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [505504 2022-01-03] (Acer Incorporated -> Acer Incorporated) R2 QHActiveDefense; D:\360\Total Security\safemon\QHActiveDefense.exe [1102080 2022-12-14] (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) S3 QHProtected; D:\360\Total Security\safemon\WscReg.exe [3082096 2022-12-14] (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) S4 SteelSeriesUpdateService; C:\Program Files\SteelSeries\GG\SteelSeriesUpdateService.exe [31568 2022-01-31] (SteelSeries ApS -> ) S4 ucldr_battlegrounds_gl; C:\Program Files\Common Files\UNCHEATER\ucldr_battlegrounds_gl.exe [6020336 2022-03-16] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) S4 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [299824 2017-09-14] (Acer Incorporated -> acer) S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [11023152 2023-05-03] (Riot Games, Inc. -> Riot Games, Inc.) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) S4 zksvc; C:\Program Files\Common Files\PUBG\zksvc.exe [9280816 2022-04-27] (PUBG CORPORATION -> KRAFTON, Inc) S4 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvaci.inf_amd64_6a30f226cb32430c\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvaci.inf_amd64_6a30f226cb32430c\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem S3 Rockstar Service; "D:\Launcher\RockstarService.exe" [X] ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 360AntiHacker; C:\WINDOWS\System32\Drivers\360AntiHacker64.sys [199896 2022-12-14] (Beijing Qihu Technology Co., Ltd. -> 360.cn) S3 360AvFlt; C:\WINDOWS\System32\DRIVERS\360AvFlt.sys [110800 2023-02-21] (Beijing Qihu Technology Co., Ltd. -> 360.cn) R1 360Box64; C:\WINDOWS\System32\DRIVERS\360Box64.sys [360664 2022-10-24] (Beijing Qihu Technology Co., Ltd. -> 360.cn) R1 360Camera; C:\WINDOWS\System32\Drivers\360Camera64.sys [58200 2022-12-14] (Beijing Qihu Technology Co., Ltd. -> 360.cn) S0 360elam64; C:\WINDOWS\System32\DRIVERS\360elam64.sys [17000 2022-12-14] (Microsoft Windows Early Launch Anti-malware Publisher -> 360.cn) R1 360FsFlt; C:\WINDOWS\System32\DRIVERS\360FsFlt.sys [540416 2022-12-14] (Beijing Qihu Technology Co., Ltd. -> 360.cn) R1 360Hvm; C:\WINDOWS\System32\Drivers\360Hvm64.sys [348384 2022-12-14] (Beijing Qihu Technology Co., Ltd. -> 360安全中心) R1 360netmon; C:\WINDOWS\System32\DRIVERS\360netmon.sys [96424 2022-12-14] (Qihoo 360 Software (Beijing) Company Limited -> 360.cn) S3 ACE-BASE; C:\WINDOWS\system32\drivers\ACE-BASE.sys [1869904 2023-06-05] (HIGH MORALE DEVELOPMENTS LIMITED -> ANTICHEATEXPERT.COM) R1 BAPIDRV; C:\WINDOWS\System32\DRIVERS\BAPIDRV64.sys [238304 2022-12-20] (Beijing Qihu Technology Co., Ltd. -> 360.cn) S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2021-11-08] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.) S3 Hamachi; C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [45680 2022-05-18] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.) R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [22320 2017-10-30] (Acer Incorporated -> Acer Incorporated) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-05-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2023-05-19] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation) R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [16688 2017-10-30] (Acer Incorporated -> Acer Incorporated) R3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [46776 2019-02-01] (SteelSeries ApS -> ) S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64912 2017-05-18] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated) R3 SteelSeries_Sonar_VAD; C:\WINDOWS\System32\DriverStore\FileRepository\steelseries-sonar-vad.inf_amd64_689082cfb8a03f07\SteelSeries-Sonar-VAD.sys [80200 2022-01-06] (SteelSeries ApS -> Windows (R) Win 7 DDK provider) R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [22676992 2023-05-03] (Riot Games, Inc. -> Riot Games, Inc.) R3 vmulti; C:\WINDOWS\System32\drivers\vmulti.sys [10752 2018-03-16] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 xhunter1; C:\WINDOWS\xhunter1.sys [1431256 2022-04-27] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-06-05 13:14 - 2023-06-05 13:14 - 000000808 ____C C:\Users\Tomekku\Desktop\Hindie.lnk 2023-06-03 15:53 - 2023-06-03 15:53 - 000574268 _____ C:\Users\Tomekku\Downloads\trim.C62623FF-015D-4223-8DF7-D12C8E28E3CC.mp4 2023-06-02 21:46 - 2023-06-02 21:46 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job 2023-06-02 21:20 - 2023-06-05 17:53 - 000000000 ____D C:\FRST 2023-06-02 21:20 - 2023-06-02 21:20 - 000000000 ____D C:\Users\Tomekku\Downloads\FRST-OlderVersion 2023-06-02 21:13 - 2023-06-02 21:13 - 000000266 __RSH C:\ProgramData\ntuser.pol 2023-06-02 18:57 - 2023-06-02 18:57 - 006721718 _____ C:\Users\Tomekku\Downloads\Jesus_Christ.mp4 2023-06-02 14:26 - 2023-06-02 14:26 - 001053843 _____ C:\Users\Tomekku\Downloads\KRgY2Z4ZNQqPTG9yfvYPocDjlauakGiB.mp4 2023-05-31 13:42 - 2023-05-31 13:42 - 000259170 _____ C:\Users\Tomekku\Downloads\b5da4e834a5371976a0f32504c531cd3.jpeg 2023-05-31 13:19 - 2023-05-31 13:19 - 000613086 _____ C:\Users\Tomekku\Downloads\202305161606.pdf 2023-05-31 13:09 - 2023-05-31 13:09 - 000004880 _____ C:\WINDOWS\system32\Tasks\AcerCMUpdateTask2.5.22250 2023-05-30 01:39 - 2023-05-30 01:39 - 000000000 ____D C:\Users\Tomekku\AppData\Roaming\Microsoft\HTML Help 2023-05-30 01:39 - 2023-05-30 01:39 - 000000000 ____D C:\Users\Tomekku\AppData\Roaming\GHISLER 2023-05-30 01:39 - 2023-05-30 01:39 - 000000000 ____D C:\Users\Tomekku\AppData\Local\GHISLER 2023-05-28 23:34 - 2023-05-28 23:34 - 000000000 ____D C:\Users\Tomekku\AppData\Roaming\Fallout2 2023-05-26 23:59 - 2023-05-26 23:59 - 000000000 ____D C:\Users\Tomekku\AppData\Local\Fallout3 2023-05-26 22:35 - 2023-05-28 00:01 - 000000000 ____D C:\Users\Tomekku\AppData\Local\FalloutNV 2023-05-26 22:35 - 2023-05-26 22:35 - 000000000 ____D C:\Users\Tomekku\AppData\Local\FalloutNV_Epic 2023-05-26 22:35 - 2023-05-26 22:35 - 000000000 ____D C:\Users\Tomekku\AppData\Local\BethesdaNet 2023-05-26 21:14 - 2023-05-26 21:14 - 001014533 _____ C:\Users\Tomekku\Downloads\5cjQ3HFkDs5ltcWsRSLQoEOFZZIdqqIW.mp4 2023-05-25 16:11 - 2023-05-25 16:11 - 013118619 _____ C:\Users\Tomekku\Downloads\Genshin_Memepact-13qcvao.mp4 2023-05-24 14:42 - 2023-06-05 15:15 - 000000000 ____D C:\Users\Tomekku\AppData\Local\Discord 2023-05-24 14:42 - 2023-05-24 14:42 - 000002247 ____C C:\Users\Tomekku\Desktop\Discord.lnk 2023-05-19 21:14 - 2023-05-19 21:14 - 000000000 ____D C:\Users\Tomekku\AppData\Local\mbam 2023-05-19 21:13 - 2023-06-04 17:01 - 000002037 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2023-05-19 21:13 - 2023-06-02 21:13 - 000000000 ____D C:\Users\Tomekku\AppData\Local\Malwarebytes 2023-05-19 21:12 - 2023-05-19 21:12 - 000000000 ____D C:\ProgramData\Malwarebytes 2023-05-19 21:12 - 2023-05-19 21:12 - 000000000 ____D C:\Program Files\Malwarebytes 2023-05-17 11:07 - 2023-05-17 11:14 - 000000000 ____D C:\Users\Tomekku\AppData\Local\Loop_Hero 2023-05-16 19:09 - 2023-05-16 19:09 - 000199747 _____ C:\Users\Tomekku\Downloads\2z1hii.mp4 2023-05-14 17:34 - 2023-05-14 17:34 - 002827161 _____ C:\Users\Tomekku\Downloads\tereny_zalewowe.mp4 2023-05-14 00:13 - 2023-05-14 00:13 - 000000000 ____D C:\Users\Tomekku\AppData\Roaming\UnityHub 2023-05-14 00:13 - 2023-05-14 00:13 - 000000000 ____D C:\Users\Tomekku\AppData\Local\unityhub-updater 2023-05-14 00:13 - 2023-05-14 00:13 - 000000000 ____D C:\Users\Tomekku\AppData\Local\Unity 2023-05-13 17:19 - 2023-05-13 17:19 - 000694139 _____ C:\Users\Tomekku\Downloads\RDT_20230511_131240.mov 2023-05-10 18:42 - 2023-05-10 18:42 - 000000000 ___HD C:\$WinREAgent 2023-05-08 00:05 - 2023-05-08 00:05 - 000000000 ___DC C:\Users\Tomekku\AppData\LocalLow\OttersideGames ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-06-05 17:51 - 2022-12-23 19:34 - 000000000 ___DC C:\Users\Tomekku\AppData\LocalLow\360WD 2023-06-05 17:45 - 2022-02-07 16:33 - 001767980 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2023-06-05 17:45 - 2022-02-07 15:57 - 000785394 _____ C:\WINDOWS\system32\perfh015.dat 2023-06-05 17:45 - 2022-02-07 15:57 - 000152280 _____ C:\WINDOWS\system32\perfc015.dat 2023-06-05 17:45 - 2022-02-07 15:53 - 000000000 ____D C:\WINDOWS\INF 2023-06-05 17:42 - 2022-02-07 19:16 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat 2023-06-05 17:41 - 2022-02-07 15:54 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-06-05 17:40 - 2022-12-23 19:34 - 000000001 _____ C:\WINDOWS\system32\Drivers\360Hvm64.dat 2023-06-05 17:40 - 2022-02-07 16:06 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2023-06-05 17:40 - 2022-02-07 15:54 - 000000000 ____D C:\WINDOWS\ServiceState 2023-06-05 17:40 - 2022-02-02 11:43 - 000008192 ___SH C:\DumpStack.log.tmp 2023-06-05 16:14 - 2022-02-07 18:01 - 000000000 ____D C:\Users\Tomekku\AppData\Roaming\discord 2023-06-05 16:14 - 2022-02-07 15:49 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2023-06-05 13:19 - 2023-04-27 11:33 - 001869904 _____ (ANTICHEATEXPERT.COM) C:\WINDOWS\system32\Drivers\ACE-BASE.sys 2023-06-05 13:19 - 2022-02-07 16:07 - 000000000 ____D C:\ProgramData\NVIDIA 2023-06-05 13:18 - 2023-04-26 18:01 - 000000000 ____D C:\Users\Tomekku\AppData\Local\HoYoverse 2023-06-05 13:15 - 2022-02-07 16:26 - 000000000 ____D C:\Users\Tomekku\AppData\Local\Host App Service 2023-06-04 22:29 - 2021-11-21 01:48 - 000000000 ____D C:\SteamLibrary 2023-06-04 19:30 - 2022-02-07 16:05 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2023-06-04 17:01 - 2021-12-29 20:46 - 000000505 _____ C:\ProgramData\Microsoft\Windows\Start Menu\By Click Downloader.lnk 2023-06-04 17:01 - 2021-06-05 11:08 - 000000809 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk 2023-06-04 17:01 - 2020-03-16 16:02 - 000000381 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elsword.lnk 2023-06-04 17:01 - 2019-12-07 11:10 - 000002349 ____S C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Immersive Control Panel.lnk 2023-06-04 17:01 - 2018-03-18 09:37 - 000001198 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dashlane.lnk 2023-06-04 17:01 - 2017-05-25 20:31 - 000003236 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\App Explorer.lnk 2023-06-04 16:59 - 2022-02-07 18:36 - 000000000 ____D C:\ProgramData\Riot Games 2023-06-04 14:24 - 2022-02-07 15:54 - 000000000 ___HD C:\Program Files\WindowsApps 2023-06-04 14:24 - 2022-02-07 15:54 - 000000000 ____D C:\WINDOWS\AppReadiness 2023-06-04 13:39 - 2022-05-18 04:35 - 000000000 ____D C:\Users\Tomekku\AppData\Local\Overwolf 2023-06-04 13:36 - 2020-06-04 12:25 - 000002412 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-06-03 15:48 - 2022-02-12 18:40 - 000000000 ____D C:\Users\Tomekku\AppData\Roaming\Spotify 2023-06-03 15:07 - 2022-02-12 18:40 - 000000000 ____D C:\Users\Tomekku\AppData\Local\Spotify 2023-06-03 12:46 - 2016-06-03 06:18 - 000008558 _____ C:\WINDOWS\system32\$Acer$.cmd 2023-06-02 22:18 - 2022-02-07 17:22 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3699129381-2143690637-3486842306-1001 2023-06-02 22:18 - 2022-02-07 16:42 - 000003384 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3699129381-2143690637-3486842306-1001 2023-06-02 22:18 - 2022-02-07 16:26 - 000002437 ____C C:\Users\Tomekku\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2023-06-02 21:29 - 2019-05-24 17:13 - 000000000 ___DC C:\Users\Tomekku\AppData\LocalLow\Temp 2023-06-02 21:12 - 2022-02-09 00:36 - 000000000 ____D C:\Users\Tomekku\AppData\Local\CrashDumps 2023-06-02 21:04 - 2022-02-13 03:18 - 000000000 ____D C:\Program Files\CCleaner 2023-05-31 13:09 - 2018-03-18 09:36 - 000000000 ____D C:\Program Files (x86)\Acer 2023-05-31 12:59 - 2022-02-07 16:50 - 000004202 _____ C:\WINDOWS\system32\Tasks\Opera GX scheduled Autoupdate 1644245430 2023-05-31 12:59 - 2022-02-07 16:50 - 000000747 ____C C:\Users\Tomekku\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Przeglądarka Opera GX.lnk 2023-05-29 15:56 - 2018-11-10 17:45 - 000000000 ___DC C:\Users\Tomekku\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2023-05-28 19:20 - 2023-04-18 22:45 - 000000685 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NightLight Desktop.lnk 2023-05-28 19:14 - 2022-12-23 19:34 - 000000000 ____D C:\ProgramData\360safe 2023-05-27 23:34 - 2022-03-26 21:06 - 000000000 ____D C:\Program Files (x86)\GOG Galaxy 2023-05-27 13:39 - 2022-02-07 16:26 - 000000000 ____D C:\Users\Tomekku\AppData\Roaming\Microsoft\Windows 2023-05-26 23:59 - 2018-11-03 17:42 - 000000000 ___DC C:\Users\Tomekku\Documents\My Games 2023-05-26 22:31 - 2022-09-25 21:11 - 000000000 ____D C:\ProgramData\360Quarant 2023-05-26 22:31 - 2019-05-09 19:47 - 000000000 __SHD C:\$360Section 2023-05-26 17:25 - 2022-02-07 15:50 - 000000000 ____D C:\WINDOWS\CbsTemp 2023-05-25 23:22 - 2022-05-26 03:54 - 000000000 ____D C:\Users\Tomekku\AppData\Local\Ubisoft Game Launcher 2023-05-25 15:43 - 2022-03-21 14:08 - 000000000 ____D C:\Users\Tomekku\AppData\Local\User Data 2023-05-24 14:43 - 2022-02-07 18:00 - 000000000 ____D C:\Users\Tomekku\AppData\Local\SquirrelTemp 2023-05-24 14:42 - 2018-11-10 16:36 - 000000000 ___DC C:\Users\Tomekku\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc 2023-05-20 23:02 - 2022-02-07 16:47 - 000000000 ____D C:\Users\Tomekku\AppData\Local\NVIDIA Corporation 2023-05-19 21:19 - 2022-02-07 16:30 - 000003508 _____ C:\WINDOWS\system32\Tasks\DashlaneUpgradeCheck 2023-05-19 21:13 - 2022-02-07 15:54 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2023-05-19 12:56 - 2023-04-13 19:31 - 000000593 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++.lnk 2023-05-19 12:56 - 2022-02-12 00:17 - 000002257 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2023-05-19 10:12 - 2022-07-14 09:54 - 000000000 ____D C:\Program Files\Riot Vanguard 2023-05-14 00:13 - 2018-10-28 15:44 - 000000000 __SDC C:\Users\Tomekku\AppData\Roaming\Microsoft\Credentials 2023-05-14 00:10 - 2021-12-30 22:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unity 2020.3.25f1 (64-bit) 2023-05-13 20:10 - 2019-12-26 02:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Krita 2023-05-13 15:36 - 2022-02-12 18:09 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2023-05-12 07:33 - 2022-02-07 16:06 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2023-05-12 07:33 - 2022-02-07 16:06 - 000003442 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2023-05-10 23:05 - 2022-02-07 16:05 - 000318712 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2023-05-10 23:04 - 2022-02-07 15:57 - 000000000 ____D C:\WINDOWS\SysWOW64\pl 2023-05-10 23:04 - 2022-02-07 15:57 - 000000000 ____D C:\WINDOWS\system32\pl 2023-05-10 23:04 - 2022-02-07 15:54 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2023-05-10 23:04 - 2022-02-07 15:54 - 000000000 ____D C:\WINDOWS\SystemResources 2023-05-10 23:04 - 2022-02-07 15:54 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates 2023-05-10 23:04 - 2022-02-07 15:54 - 000000000 ____D C:\WINDOWS\system32\oobe 2023-05-10 23:04 - 2022-02-07 15:54 - 000000000 ____D C:\WINDOWS\ShellExperiences 2023-05-10 23:04 - 2022-02-07 15:54 - 000000000 ____D C:\WINDOWS\bcastdvr 2023-05-10 18:59 - 2022-02-07 16:08 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2023-05-10 18:42 - 2022-02-11 19:15 - 000000000 ____D C:\WINDOWS\system32\MRT 2023-05-10 18:40 - 2022-02-11 19:15 - 159583304 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2023-05-08 00:06 - 2022-02-15 10:09 - 000000000 ____D C:\Users\Tomekku\AppData\Roaming\Goldberg SteamEmu Saves 2023-05-07 01:14 - 2022-03-15 18:42 - 000000000 ____D C:\WINDOWS\system32\Tasks\CareCenter 2023-05-06 23:59 - 2022-02-07 16:52 - 000000000 ____D C:\Users\Tomekku\AppData\Local\D3DSCache 2023-05-06 14:46 - 2021-10-28 22:55 - 000000000 ___DC C:\Users\Tomekku\AppData\LocalLow\Ninja Kiwi 2023-05-06 14:46 - 2020-04-18 20:01 - 000000000 ___DC C:\Users\Tomekku\AppData\LocalLow\Unity 2023-05-06 13:13 - 2022-02-13 03:18 - 000003434 _____ C:\WINDOWS\system32\Tasks\ccleaner update ==================== Pliki w katalogu głównym wybranych folderów ======== 2018-10-28 19:10 - 2018-12-30 09:00 - 000208896 _____ (Igor Pavlov) C:\Users\Tomekku\7zxa.dll 2018-10-28 19:10 - 2019-03-01 14:29 - 000611032 _____ (Alexander Roshal) C:\Users\Tomekku\Rar.exe 2018-10-28 19:10 - 2019-03-01 14:29 - 000535768 _____ (Alexander Roshal) C:\Users\Tomekku\RarExt.dll 2018-10-28 19:10 - 2019-03-01 14:29 - 000463064 _____ (Alexander Roshal) C:\Users\Tomekku\RarExt32.dll 2018-10-28 19:10 - 2018-10-28 19:10 - 000000024 _____ () C:\Users\Tomekku\rarnew.dat 2018-10-28 19:10 - 2019-03-01 14:29 - 000392920 _____ (Alexander Roshal) C:\Users\Tomekku\Uninstall.exe 2018-10-28 19:10 - 2019-03-01 14:29 - 000406232 _____ (Alexander Roshal) C:\Users\Tomekku\UnRAR.exe 2018-10-28 19:10 - 2019-03-01 14:29 - 002284248 _____ (Alexander Roshal) C:\Users\Tomekku\WinRAR.exe 2018-10-28 19:10 - 2018-10-28 19:10 - 000000022 _____ () C:\Users\Tomekku\zipnew.dat 2023-04-06 20:24 - 2023-04-06 20:24 - 000000015 _____ () C:\Users\Tomekku\AppData\Roaming\obs-virtualcam.txt 2022-11-07 15:24 - 2022-11-10 16:27 - 000007369 _____ () C:\Users\Tomekku\AppData\Local\krita-sysinfo.log 2022-11-07 15:24 - 2022-11-10 16:28 - 000005702 _____ () C:\Users\Tomekku\AppData\Local\krita.log 2022-11-10 16:28 - 2022-11-10 16:28 - 000000158 _____ () C:\Users\Tomekku\AppData\Local\kritadisplayrc 2022-11-07 15:24 - 2022-11-10 16:28 - 000024903 _____ () C:\Users\Tomekku\AppData\Local\kritarc ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================