Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 11.03.2024 Uruchomiony przez Tomasz Leski (administrator) DESKTOP-C1PENMR (Acer Nitro N50-600) (13-03-2024 14:15:14) Uruchomiony z C:\Users\Tomasz Leski\OneDrive\Pulpit\FRST64.exe Załadowane profile: Tomasz Leski Platforma: Microsoft Windows 11 Home Wersja 23H2 22631.3296 (X64) Język: Polski (Polska) Domyślna przeglądarka: Opera Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <4> (C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.1301.310.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\114.0.1823.67\msedgewebview2.exe <7> (C:\ProgramData\Wargaming.net\GameCenter\wgc.exe ->) (Wargaming Group Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\dlls\wgc_renderer_host.exe <5> (C:\ProgramData\Wargaming.net\GameCenter\wgc.exe ->) (Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\wargamingerrormonitor.exe (C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\SearchHost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\Microsoft-Edge-WebView\msedgewebview2.exe <7> (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5> (explorer.exe ->) (Wargaming Group Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\wgc.exe (FunPlus International AG -> FunPlus, Inc.) C:\Program Files (x86)\FunPlus\State of Survival\1.2.0.187\PC-Launcher.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler64.exe (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (Reason Cybersecurity Inc. -> Reason Cybersecurity Ltd.) C:\Program Files\ReasonLabs\Common\Client\v1.1.0\rsAppUI.exe <5> (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_3de4831720bb2934\RstMwService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd) C:\Windows\SysWOW64\Creative.UWPRPCService.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvaei.inf_amd64_aa4f5d44aabaa1bc\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe (services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\ReasonLabs\VPN\rsVPNClientSvc.exe (services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\ReasonLabs\VPN\rsVPNSvc.exe (services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe (svchost.exe ->) (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> ) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.232.997.0_x64__zpdnekdrzrea0\SpotifyWidgetProvider.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2402.1001.26.0_x64__8wekyb3d8bbwe\XboxGameBarWidgets.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2402.1001.26.0_x64__8wekyb3d8bbwe\XboxPcAppFT.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_7.124.2141.0_x64__8wekyb3d8bbwe\GameBar.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_7.124.2141.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe (svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.1301.310.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [833824 2019-01-31] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [418200 2024-02-19] (Avast Software s.r.o. -> AVAST Software) HKLM-x32\...\Run: [WDDiscovery] => C:\Program Files (x86)\Western Digital\Discovery\Current\WD Discovery.exe [81379600 2021-12-16] (Western Digital Technologies, Inc. -> Western Digital Corporation) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Ograniczenia <==== UWAGA HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Ograniczenia <==== UWAGA HKU\S-1-5-21-347953600-4214422186-2247969583-1001\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2189080 2024-02-29] (Wargaming Group Limited -> Wargaming.net) HKU\S-1-5-21-347953600-4214422186-2247969583-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4362600 2023-03-24] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-347953600-4214422186-2247969583-1001\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [13734376 2023-02-28] (GOG Sp. z o.o. -> GOG.com) HKU\S-1-5-21-347953600-4214422186-2247969583-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [479632 2021-12-16] (AVB Disc Soft, SIA -> Disc Soft Ltd) HKU\S-1-5-21-347953600-4214422186-2247969583-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37397480 2024-03-06] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-347953600-4214422186-2247969583-1001\...\Run: [Opera GX Browser Assistant] => C:\Users\Tomasz Leski\AppData\Local\Programs\Opera GX\assistant\browser_assistant.exe [3291288 2021-02-01] (Opera Software AS -> Opera Software) HKU\S-1-5-21-347953600-4214422186-2247969583-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [42614688 2023-09-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) HKU\S-1-5-21-347953600-4214422186-2247969583-1001\...\Run: [GalaxyClient] => [X] HKU\S-1-5-21-347953600-4214422186-2247969583-1001\...\Run: [Taskbarify] => C:\Users\Tomasz Leski\AppData\Local\Programs\Taskbarify\Taskbarify.exe [911344 2023-02-03] (Cleversort FZ-LLC -> ) <==== UWAGA HKU\S-1-5-21-347953600-4214422186-2247969583-1001\...\Run: [MicrosoftEdgeAutoLaunch_5554B0C9B2ABF88074940CE2A6E48DDB] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4210216 2023-09-19] (Microsoft Corporation -> Microsoft Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\122.0.6261.128\Installer\chrmstp.exe [2024-03-13] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2023-01-18] ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH) HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {A7150DF9-F39F-443F-B983-75961A88345A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564152 2023-04-03] (Adobe Inc. -> Adobe Inc.) Task: {44FD35FC-FF49-4FB2-9F18-3D5D8D6F93AD} - System32\Tasks\ASC_PerformanceMonitor => "C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe" /Task (Brak pliku) Task: {766AEFE2-4B37-4997-A7DB-AF27E698CA6A} - System32\Tasks\ASC_SkipUac_Tomasz Leski => "C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe" /SkipUac (Brak pliku) Task: {F0793D4B-C1F1-45F3-8335-A5828BE8A023} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [5154200 2024-02-19] (Avast Software s.r.o. -> AVAST Software) Task: {6BCE4ECB-19B0-4684-BE75-5C8A59F98406} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2144664 2023-08-01] (Avast Software s.r.o. -> Avast Software) Task: {2D403CCA-A74F-469A-AB68-82A7FCA409E1} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe /c (Brak pliku) Task: {C4324512-F2BC-41CC-9C53-B5E41693801D} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe /ua /installsource scheduler (Brak pliku) Task: {3CCAA285-11D1-460C-A513-7A54BB44B6EE} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-09-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {FCD0CDC1-E203-4255-8AFB-855CAEF7F993} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-09-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "495b8686-22ac-4d5f-8d5a-a389124fa93f" --version "6.16.10662" --silent Task: {CC9E72DF-E42D-49A9-9B01-DB958CE14350} - System32\Tasks\CCleanerSkipUAC - Tomasz Leski => C:\Program Files\CCleaner\CCleaner.exe [35675552 2023-09-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {3C4ED355-5073-4AA5-9CB0-752FD5882DCB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-06] (Google LLC -> Google LLC) Task: {66C6A496-E52B-4F45-8643-ECA225DA5D16} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-06] (Google LLC -> Google LLC) Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (Brak pliku) Task: {99D9C4F9-596B-4A6D-A29C-B78B0C36BC5E} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC RebootDialog (Brak pliku) Task: {3F1B46FE-9634-4B1B-B327-0EA4F03D93BC} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery RebootDialog (Brak pliku) Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Brak pliku) Task: {F6A82764-8852-4EA7-9191-ED4BB51E9AFC} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [605624 2022-09-29] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {84090312-2004-4580-9C52-1F8FEBB4E35B} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [803768 2022-09-29] (Mozilla Corporation -> Mozilla Foundation) Task: {61C11CC3-0916-4485-AAD0-94271C68BF8D} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1005096 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {B82EE5A8-CC37-441A-BF63-FEABCE11FDF7} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3345448 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {10196770-47FC-480C-8751-0EF583C39821} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {9A55DA71-DEB0-4147-9DA2-7486000FE60E} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {C2DA83D7-FF37-4DC8-9E67-8F2A7F809724} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {6C1EC9AA-2CB3-4D09-83B6-1758F50C0BFF} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {58CA5339-3F0E-4898-9044-790FA594FDB1} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {94730EB8-5090-4729-B917-3B49D658A651} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {F1009886-B53A-4C35-9E0C-D98A52952104} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {ADB57331-04D9-4D41-AC21-47E646E5B239} - System32\Tasks\Odkurzacz => C:\Program Files (x86)\Odkurzacz\odkurzacz.exe [1069056 2021-12-01] (FranmoSoftware) [Brak podpisu cyfrowego] Task: {E778AAE7-F356-4CD4-B874-E901DC1D57AA} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4158856 2022-02-27] (Microsoft Corporation -> Microsoft Corporation) Task: {9F68BCE7-F4D0-4956-9AF1-BD5CCEC8CF1D} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-347953600-4214422186-2247969583-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4158856 2022-02-27] (Microsoft Corporation -> Microsoft Corporation) Task: {F9BF1A95-7FF9-416B-B61F-D400E98F97A0} - System32\Tasks\Opera GX scheduled assistant Autoupdate 1645436659 => C:\Users\Tomasz Leski\AppData\Local\Programs\Opera GX\launcher.exe [2303904 2024-03-05] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Tomasz Leski\AppData\Local\Programs\Opera GX\assistant" $(Arg0) Task: {A0DB5342-DC79-410D-BD61-5989BE80AEAB} - System32\Tasks\Opera GX scheduled Autoupdate 1644077067 => C:\Users\Tomasz Leski\AppData\Local\Programs\Opera GX\launcher.exe [2303904 2024-03-05] (Opera Norway AS -> Opera Software) Task: {ABDDE131-2836-48A2-88AD-7C67D9F5F6B8} - System32\Tasks\Opera scheduled assistant Autoupdate 1633510859 => C:\Users\Tomasz Leski\AppData\Local\Programs\Opera\launcher.exe [2358688 2024-02-22] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Tomasz Leski\AppData\Local\Programs\Opera\assistant" $(Arg0) Task: {23431215-F112-4D01-81DF-C15F325D740D} - System32\Tasks\Opera scheduled Autoupdate 1633510856 => C:\Users\Tomasz Leski\AppData\Local\Programs\Opera\launcher.exe [2358688 2024-02-22] (Opera Norway AS -> Opera Software) Task: {F28FCD6C-5702-4465-B7FB-0CC9E25EAF0A} - System32\Tasks\WD Device Agent Task tomasz leski => C:\Program Files (x86)\Western Digital\Discovery\Current\WD Device Agent.exe [723728 2021-12-16] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) Task: {A0484993-A381-4CA7-9A6D-5B13A71B9E4F} - System32\Tasks\WD Discovery Service Task tomasz leski => C:\Program Files (x86)\Western Digital\Discovery\Current\Service\WDDiscoveryService.exe [78608 2021-12-16] (Western Digital Technologies, Inc. -> ) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 178.235.153.33 178.235.153.32 Tcpip\..\Interfaces\{b49443a8-2133-475f-912f-d4fd3857f475}: [DhcpNameServer] 178.235.153.33 178.235.153.32 Tcpip\..\Interfaces\{b49443a8-2133-475f-912f-d4fd3857f475}: [DhcpDomain] NAT.belchatow.vectranet.pl Tcpip\..\Interfaces\{c740e98f-e7ce-41a9-bb86-2dacb908ff16}: [DhcpNameServer] 178.235.153.33 178.235.153.32 Tcpip\..\Interfaces\{c740e98f-e7ce-41a9-bb86-2dacb908ff16}: [DhcpDomain] NAT.belchatow.vectranet.pl Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\Tomasz Leski\AppData\Local\Microsoft\Edge\User Data\Default [2024-03-13] Edge Extension: (Dokumenty Google offline) - C:\Users\Tomasz Leski\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-02-29] Edge Extension: (Edge relevant text changes) - C:\Users\Tomasz Leski\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-02] FireFox: ======== FF DefaultProfile: ech6mq1j.default FF ProfilePath: C:\Users\Tomasz Leski\AppData\Roaming\Mozilla\Firefox\Profiles\ech6mq1j.default [2023-09-08] FF user.js: detected! => C:\Users\Tomasz Leski\AppData\Roaming\Mozilla\Firefox\Profiles\ech6mq1j.default\user.js [2023-09-08] FF ProfilePath: C:\Users\Tomasz Leski\AppData\Roaming\Mozilla\Firefox\Profiles\fvwqxha9.default-release [2024-02-19] FF user.js: detected! => C:\Users\Tomasz Leski\AppData\Roaming\Mozilla\Firefox\Profiles\fvwqxha9.default-release\user.js [2023-09-08] FF Extension: (Tampermonkey) - C:\Users\Tomasz Leski\AppData\Roaming\Mozilla\Firefox\Profiles\fvwqxha9.default-release\Extensions\firefox@tampermonkey.net.xpi [2022-09-29] FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-11-14] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: @java.com/DTPlugin,version=11.381.2 -> C:\Program Files (x86)\Java\jre-1.8\bin\dtplugin\npDeployJava1.dll [2023-06-14] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.381.2 -> C:\Program Files (x86)\Java\jre-1.8\bin\plugin2\npjp2.dll [2023-06-14] (Oracle America, Inc. -> Oracle Corporation) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\Tomasz Leski\AppData\Local\Google\Chrome\User Data\Default [2024-03-13] CHR DownloadDir: C:\Users\Tomasz Leski\OneDrive\Pulpit CHR Notifications: Default -> hxxps://pl.railstoolkit.com CHR StartupUrls: Default -> "hxxps://www.thesettlersonline.pl/pl/strona-g%C5%82%C3%B3wna" CHR DefaultSearchURL: Default -> hxxps://pl.search.yahoo.com/search?fr=mcafee_uninternational&type=E210PL91213G0&p={searchTerms} CHR DefaultSearchKeyword: Default -> mcafee CHR Extension: (uBlock Origin) - C:\Users\Tomasz Leski\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2024-02-22] CHR Extension: (Tampermonkey) - C:\Users\Tomasz Leski\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2024-01-10] CHR Extension: (Pinky) - C:\Users\Tomasz Leski\AppData\Local\Google\Chrome\User Data\Default\Extensions\eijmklfnehnnkbfcoabieogaomookbna [2021-10-20] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Tomasz Leski\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-10-06] CHR Profile: C:\Users\Tomasz Leski\AppData\Local\Google\Chrome\User Data\Guest Profile [2024-01-26] CHR Profile: C:\Users\Tomasz Leski\AppData\Local\Google\Chrome\User Data\System Profile [2024-01-26] Opera: ======= OPR DefaultProfile: Default StartMenuInternet: (HKU\S-1-5-21-347953600-4214422186-2247969583-1001) Opera GXStable - "C:\Users\Tomasz Leski\AppData\Local\Programs\Opera GX\Launcher.exe" ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-04-03] (Adobe Inc. -> Adobe Inc.) S4 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [4021320 2023-01-18] (philandro Software GmbH -> AnyDesk Software GmbH) R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [9124248 2024-02-19] (Avast Software s.r.o. -> AVAST Software) R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [761752 2024-02-19] (Avast Software s.r.o. -> AVAST Software) R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [1176472 2024-02-19] (Avast Software s.r.o. -> AVAST Software) R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-10-06] (Avast Software s.r.o. -> AVAST Software) S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1074080 2023-09-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4958096 2021-12-16] (AVB Disc Soft, SIA -> Disc Soft Ltd) S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [584680 2022-12-09] (EasyAntiCheat Oy -> Epic Games, Inc.) S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934368 2021-10-01] (Epic Games Inc. -> Epic Games, Inc.) S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.022.0130.0001\FileSyncHelper.exe [3380616 2022-02-27] (Microsoft Corporation -> Microsoft Corporation) S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [2317800 2023-02-28] (GOG Sp. z o.o. -> GOG.com) S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7178728 2023-02-28] (GOG Sp. z o.o. -> GOG.com) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvaei.inf_amd64_aa4f5d44aabaa1bc\Display.NvContainer\NVDisplay.Container.exe [1275528 2024-01-19] (NVIDIA Corporation -> NVIDIA Corporation) S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.022.0130.0001\OneDriveUpdaterService.exe [3851128 2022-02-27] (Microsoft Corporation -> Microsoft Corporation) R2 rsVPNClientSvc; C:\Program Files\ReasonLabs\VPN\rsVPNClientSvc.exe [639344 2023-11-30] (Reason Cybersecurity Inc. -> Reason Software Company Inc.) R2 rsVPNSvc; C:\Program Files\ReasonLabs\VPN\rsVPNSvc.exe [214896 2023-11-30] (Reason Cybersecurity Inc. -> Reason Software Company Inc.) R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [20802872 2023-09-08] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) R2 UWPService; C:\WINDOWS\SysWOW64\Creative.UWPRPCService.exe [363968 2019-05-06] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [2909208 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [128376 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [20536 2024-02-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [230456 2024-02-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [380360 2024-02-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [292816 2024-02-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [84424 2024-02-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [27760 2024-02-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.) R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [28616 2024-02-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [263632 2024-02-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [548296 2024-02-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [93752 2024-02-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [69176 2024-02-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [934968 2024-02-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [692280 2024-02-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [201784 2024-02-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [306232 2024-02-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Brak podpisu cyfrowego] R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2021-12-16] (AVB Disc Soft, SIA -> Disc Soft Ltd) R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [63696 2021-12-16] (AVB Disc Soft, SIA -> Disc Soft Ltd) R2 LdVBoxDrv; C:\Program Files\ldplayerbox\LdVBoxDrv.sys [315232 2022-10-06] (MyTestCertificate -> Oracle Corporation) R3 MBfilt; C:\WINDOWS\system32\drivers\MBfilt64.sys [43456 2019-05-06] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd.) R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation) R3 rt68cx21; C:\WINDOWS\System32\DriverStore\FileRepository\rt68cx21x64.inf_amd64_0f3a2b5f72186666\rt68cx21x64.sys [717160 2023-09-23] (Realtek Semiconductor Corp. -> Realtek) S3 rtcx21; C:\WINDOWS\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek) S3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [49744 2021-06-13] (nordvpn s.a. -> The OpenVPN Project) S3 tapwindscribe0901; C:\WINDOWS\System32\drivers\tapwindscribe0901.sys [57768 2021-10-29] (Windscribe Limited -> The OpenVPN Project) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [48536 2022-05-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [26880 2018-06-04] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [438544 2022-05-07] (Microsoft Windows -> Microsoft Corporation) R1 wdfsconnect2017; C:\WINDOWS\system32\drivers\wdfsconnect2017.sys [468112 2017-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies, Inc.) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [90384 2022-05-07] (Microsoft Windows -> Microsoft Corporation) R3 wdvpnpbus; C:\WINDOWS\System32\drivers\wdvpnpbus.sys [20624 2017-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies, Inc.) S3 windtun420; C:\WINDOWS\System32\drivers\windtun420.sys [47544 2021-10-29] (Windscribe Limited -> WireGuard LLC) S3 cpuz154; \??\C:\WINDOWS\temp\cpuz154\cpuz154_x64.sys [X] <==== UWAGA S3 iobit_monitor_server2021; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\Monitor_win10_x64.sys [X] S3 rsDwf; \SystemRoot\system32\DRIVERS\rsDwf.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2024-03-13 14:15 - 2024-03-13 14:15 - 000032046 _____ C:\Users\Tomasz Leski\OneDrive\Pulpit\FRST.txt 2024-03-13 14:14 - 2024-03-13 14:15 - 000000000 ____D C:\FRST 2024-03-13 14:13 - 2024-03-13 14:14 - 002390528 _____ (Farbar) C:\Users\Tomasz Leski\OneDrive\Pulpit\FRST64.exe 2024-03-13 12:30 - 2024-03-13 12:30 - 000000000 ____D C:\Users\Tomasz Leski\AppData\Roaming\TSO-VXHID 2024-03-13 09:26 - 2024-03-13 09:26 - 000798244 _____ C:\WINDOWS\system32\perfh015.dat 2024-03-13 09:26 - 2024-03-13 09:26 - 000158294 _____ C:\WINDOWS\system32\perfc015.dat 2024-03-13 09:18 - 2024-03-13 09:19 - 000012288 ___SH C:\DumpStack.log.tmp 2024-03-13 06:15 - 2024-03-13 06:15 - 000000000 ___HD C:\$WinREAgent 2024-03-11 06:30 - 2024-03-13 09:18 - 002591948 ____N C:\WINDOWS\Minidump\031324-11625-01.dmp 2024-03-10 06:51 - 2024-03-11 06:30 - 004959471 ____N C:\WINDOWS\Minidump\031124-9609-01.dmp 2024-03-09 03:29 - 2024-03-10 06:51 - 002549251 ____N C:\WINDOWS\Minidump\031024-9125-01.dmp 2024-03-08 04:48 - 2024-03-09 03:29 - 002538966 ____N C:\WINDOWS\Minidump\030924-9171-01.dmp 2024-03-07 14:49 - 2024-03-07 14:49 - 000004316 _____ C:\WINDOWS\system32\Tasks\Opera GX scheduled Autoupdate 1644077067 2024-03-07 14:49 - 2024-03-07 14:49 - 000001527 _____ C:\Users\Tomasz Leski\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Przeglądarka Opera GX.lnk 2024-03-07 06:29 - 2024-03-08 04:48 - 002755624 ____N C:\WINDOWS\Minidump\030824-9281-01.dmp 2024-03-01 04:50 - 2024-03-01 04:50 - 000020023 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json 2024-03-01 04:50 - 2024-03-01 04:50 - 000020023 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json 2024-02-29 08:28 - 2024-02-29 08:28 - 000004304 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1633510856 2024-02-29 08:28 - 2024-02-29 08:28 - 000001498 _____ C:\Users\Tomasz Leski\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Przeglądarka Opera.lnk 2024-02-19 06:05 - 2024-03-13 03:48 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update 2024-02-19 06:05 - 2024-02-19 06:05 - 000313752 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2024-03-13 13:53 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemTemp 2024-03-13 13:53 - 2021-10-06 10:12 - 000000000 ____D C:\Program Files (x86)\Google 2024-03-13 12:29 - 2022-09-21 16:28 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2024-03-13 12:25 - 2021-10-06 09:41 - 000000000 ____D C:\ProgramData\NVIDIA 2024-03-13 09:50 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2024-03-13 09:34 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\USOPrivate 2024-03-13 09:26 - 2022-09-21 16:37 - 001797768 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2024-03-13 09:26 - 2022-05-07 06:22 - 000000000 ____D C:\WINDOWS\INF 2024-03-13 09:19 - 2023-09-27 19:44 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView 2024-03-13 09:19 - 2022-09-21 16:33 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2024-03-13 09:19 - 2022-09-21 16:29 - 000000000 ____D C:\Users\Tomasz Leski 2024-03-13 09:19 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2024-03-13 09:19 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemResources 2024-03-13 09:19 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\bcastdvr 2024-03-13 09:19 - 2022-05-07 06:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2024-03-13 09:19 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\servicing 2024-03-13 09:19 - 2021-10-23 15:18 - 000000000 ____D C:\Program Files\TeamViewer 2024-03-13 09:18 - 2022-09-25 08:23 - 000000000 ____D C:\WINDOWS\Minidump 2024-03-13 09:17 - 2023-02-24 11:33 - 000000000 ____D C:\Users\Tomasz Leski\AppData\LocalLow\Kingsgroup 2024-03-13 09:07 - 2021-10-21 10:58 - 000000000 ____D C:\Users\Tomasz Leski\AppData\LocalLow\Mozilla 2024-03-13 08:58 - 2022-05-07 06:24 - 000000000 ___HD C:\Program Files\WindowsApps 2024-03-13 08:58 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\AppReadiness 2024-03-13 07:24 - 2022-01-08 19:08 - 000000000 ____D C:\Program Files\dotnet 2024-03-13 07:24 - 2021-10-07 15:53 - 000000000 ____D C:\ProgramData\Package Cache 2024-03-13 06:34 - 2021-10-06 09:43 - 000000000 ____D C:\Users\Tomasz Leski\AppData\Local\Packages 2024-03-13 06:20 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\CbsTemp 2024-03-13 06:19 - 2022-09-21 16:30 - 003213824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2024-03-13 04:48 - 2021-10-06 09:58 - 000000000 ____D C:\WINDOWS\system32\MRT 2024-03-13 04:46 - 2021-10-06 09:58 - 190470136 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2024-03-13 04:18 - 2021-10-06 15:26 - 000000000 ____D C:\Users\Tomasz Leski\AppData\Local\Avast Software 2024-03-13 03:53 - 2021-10-06 10:12 - 000002253 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2024-03-12 05:47 - 2022-09-21 16:33 - 000003864 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2024-03-12 05:47 - 2022-09-21 16:33 - 000003740 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2024-03-09 17:37 - 2021-10-07 02:54 - 000000000 ____D C:\Users\Tomasz Leski\AppData\Local\CrashDumps 2024-03-02 05:07 - 2021-10-06 15:25 - 000000000 ____D C:\ProgramData\Avast Software 2024-03-01 19:47 - 2022-09-21 16:28 - 000504288 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2024-03-01 19:47 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2024-03-01 19:47 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\oobe 2024-03-01 19:47 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\appraiser 2024-03-01 19:47 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellExperiences 2024-03-01 19:47 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellComponents 2024-02-25 12:23 - 2022-12-01 02:37 - 000001817 _____ C:\Users\Tomasz Leski\OneDrive\Pulpit\Graj w The Settlers Online.lnk 2024-02-25 12:23 - 2022-12-01 02:37 - 000001816 _____ C:\Users\Tomasz Leski\OneDrive\Pulpit\Aktualizuj Client od SirriS.lnk 2024-02-21 14:13 - 2022-12-01 02:36 - 000000000 ____D C:\Users\Tomasz Leski\OneDrive\Pulpit\TSO_Aktualizacja_do_SirriS 2024-02-19 19:46 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm 2024-02-19 06:05 - 2022-05-07 06:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP ==================== Pliki w katalogu głównym wybranych folderów ======== 2022-02-22 14:06 - 2022-02-22 14:06 - 005118672 _____ (BitTorrent Inc.) C:\Users\Tomasz Leski\BitTorrent.exe 2022-10-06 14:43 - 2022-10-06 14:43 - 000000068 _____ () C:\Users\Tomasz Leski\AppData\Roaming\changzhi_leidian.data 2022-10-06 14:43 - 2022-10-06 14:43 - 000000128 _____ () C:\Users\Tomasz Leski\AppData\Roaming\changzhi_leidianmac.data 2023-05-16 11:23 - 2023-05-16 11:23 - 000001049 _____ () C:\Users\Tomasz Leski\AppData\Local\recently-used.xbel ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================