Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 18-07-2022 Uruchomiony przez 48518 (administrator) DESKTOP-EF2B9E8 (LENOVO 10A6S25000) (20-07-2022 16:43:57) Uruchomiony z C:\Users\48518\Downloads Załadowane profile: 48518 Platform: Microsoft Windows 10 Home Wersja 21H2 19044.1826 (X64) Język: Polski (Polska) Domyślna przeglądarka: Opera Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7> (explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe (Microsoft Windows Hardware Compatibility Publisher -> ) C:\Windows\System32\igfxTray.exe (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) C:\Windows\System32\igfxEM.exe (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) C:\Windows\System32\igfxHK.exe (services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe (services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorvd.inf_amd64_5691d7468d2b65ae\RstMwService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxTsr.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11910.1002.5.0_x64__8wekyb3d8bbwe\WinStore.App.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19677472 2020-03-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [194736 2022-06-21] (ESET, spol. s r.o. -> ESET) HKU\S-1-5-21-3266655915-1981900270-190188007-1002\...\Run: [MicrosoftEdgeAutoLaunch_18FB3402CD1E96E194BBEA0A1CE4BB8F] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3601824 2022-07-14] (Microsoft Corporation -> Microsoft Corporation) ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {9D594BF4-0384-4B71-BA65-287A594D42C7} - System32\Tasks\Opera scheduled Autoupdate 1658322091 => C:\Users\48518\AppData\Local\Programs\Opera\launcher.exe [2527224 2022-07-19] (Opera Norway AS -> Opera Software) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{abaf8c7d-4688-40b9-994d-e199f86178f2}: [DhcpNameServer] 192.168.1.1 Edge: ======= Edge Profile: C:\Users\48518\AppData\Local\Microsoft\Edge\User Data\Default [2022-07-20] FireFox: ======== FF DefaultProfile: huxr0oq7.default FF ProfilePath: C:\Users\48518\AppData\Roaming\Mozilla\Firefox\Profiles\w6yaojd8.default-release-1 [2022-07-20] FF Extension: (Polski Language Pack) - C:\Users\48518\AppData\Roaming\Mozilla\Firefox\Profiles\w6yaojd8.default-release-1\Extensions\langpack-pl@firefox.mozilla.org.xpi [2022-07-20] FF ProfilePath: C:\Users\48518\AppData\Roaming\Mozilla\Firefox\Profiles\huxr0oq7.default [2022-07-20] FF ProfilePath: C:\Users\48518\AppData\Roaming\Mozilla\Firefox\Profiles\g3eo4qhg.default-release [2022-07-20] FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2022-07-20] Opera: ======= OPR Profile: C:\Users\48518\AppData\Roaming\Opera Software\Opera Stable [2022-07-20] OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding} OPR Extension: (Rich Hints Agent) - C:\Users\48518\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2022-07-20] OPR Extension: (Opera Crypto Wallet) - C:\Users\48518\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2022-07-20] OPR Extension: (Amazon Assistant Promotion) - C:\Users\48518\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2022-07-20] StartMenuInternet: (HKU\S-1-5-21-3266655915-1981900270-190188007-1002) OperaStable - "C:\Users\48518\AppData\Local\Programs\Opera\Launcher.exe" ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [3342536 2022-06-21] (ESET, spol. s r.o. -> ESET) R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [3342536 2022-06-21] (ESET, spol. s r.o. -> ESET) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [192880 2022-06-21] (ESET, spol. s r.o. -> ESET) R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [116960 2022-06-21] (ESET, spol. s r.o. -> ESET) S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [15824 2022-07-14] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET) R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [234192 2022-06-21] (ESET, spol. s r.o. -> ESET) R2 ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [52880 2022-06-21] (ESET, spol. s r.o. -> ESET) R1 epfw; C:\Windows\system32\DRIVERS\epfw.sys [79216 2022-06-21] (ESET, spol. s r.o. -> ESET) R1 epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [119528 2022-06-21] (ESET, spol. s r.o. -> ESET) S0 iaStorVD; C:\Windows\System32\drivers\iaStorVD.sys [1421688 2020-08-17] (Intel(R) Rapid Storage Technology -> Intel Corporation) R3 LBAI; C:\Windows\System32\Drivers\LBAI.sys [30432 2017-04-29] (Lenovo -> Lenovo) S3 Revoflt; C:\Windows\System32\DRIVERS\revoflt.sys [38400 2021-11-17] (Microsoft Windows Hardware Compatibility Publisher -> VS Revo Group) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2022-07-20 16:43 - 2022-07-20 16:44 - 000009031 _____ C:\Users\48518\Downloads\FRST.txt 2022-07-20 16:43 - 2022-07-20 16:44 - 000000000 ____D C:\FRST 2022-07-20 16:43 - 2022-07-20 16:43 - 002369536 _____ (Farbar) C:\Users\48518\Downloads\FRST64.exe 2022-07-20 16:43 - 2022-07-20 16:43 - 000000000 ____D C:\Users\48518\Downloads\FRST-OlderVersion 2022-07-20 16:37 - 2022-07-20 16:37 - 056762888 _____ (Mozilla) C:\Users\48518\Downloads\Firefox Installer.exe 2022-07-20 15:21 - 2022-07-20 15:21 - 000000000 ____D C:\Users\48518\AppData\Local\Mozilla 2022-07-20 15:19 - 2022-07-20 16:39 - 000000000 ____D C:\Program Files\Mozilla Firefox 2022-07-20 15:02 - 2022-07-20 16:39 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla 2022-07-20 15:01 - 2022-07-20 15:01 - 000004248 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1658322091 2022-07-20 15:01 - 2022-07-20 15:01 - 000001416 _____ C:\Users\48518\Desktop\Przeglądarka Opera.lnk 2022-07-20 15:01 - 2022-07-20 15:01 - 000001406 _____ C:\Users\48518\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Przeglądarka Opera.lnk 2022-07-20 15:01 - 2022-07-20 15:01 - 000000000 ____D C:\Users\48518\AppData\Local\Opera Software 2022-07-19 23:33 - 2022-07-19 23:33 - 000000000 ___HD C:\$SysReset 2022-07-19 07:32 - 2022-07-19 07:32 - 000001129 _____ C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk 2022-07-19 07:32 - 2022-07-19 07:32 - 000000000 ____D C:\Users\48518\AppData\Local\VS Revo Group 2022-07-19 07:32 - 2022-07-19 07:32 - 000000000 ____D C:\ProgramData\VS Revo Group 2022-07-19 07:32 - 2022-07-19 07:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro 2022-07-19 07:32 - 2021-11-17 14:50 - 000038400 _____ (VS Revo Group) C:\Windows\system32\Drivers\revoflt.sys 2022-07-18 11:29 - 2022-07-18 11:29 - 000000000 ___HD C:\Users\48518\AppData\Roaming\twt2.nacon.anzu 2022-07-18 09:21 - 2022-07-20 15:01 - 000000000 ____D C:\Users\48518\AppData\Roaming\Opera Software 2022-07-17 23:43 - 2022-07-17 23:43 - 000000000 ____D C:\Users\48518\AppData\Roaming\WinRAR 2022-07-17 23:43 - 2022-07-17 23:43 - 000000000 ____D C:\Users\48518\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2022-07-17 23:43 - 2022-07-17 23:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2022-07-17 23:43 - 2022-07-17 23:43 - 000000000 ____D C:\Program Files\WinRAR 2022-07-17 20:07 - 2022-07-19 07:35 - 000000000 ____D C:\Program Files\VS Revo Group 2022-07-17 17:11 - 2022-07-17 17:11 - 000000000 ____D C:\Windows\system32\Tasks\Agent Activation Runtime 2022-07-17 11:57 - 2022-07-17 11:57 - 000000000 ____D C:\Users\48518\AppData\Roaming\CPY_SAVES 2022-07-17 11:57 - 2022-07-17 11:57 - 000000000 ____D C:\ProgramData\KONAMI 2022-07-17 07:13 - 2022-07-17 07:13 - 000000000 ____D C:\Users\Public\Documents\Steam 2022-07-16 06:26 - 2022-07-17 17:35 - 000000000 ____D C:\ProgramData\Piriform 2022-07-15 21:00 - 2022-07-15 21:00 - 000000000 ____D C:\Windows\SysWOW64\XPSViewer 2022-07-15 21:00 - 2022-07-15 21:00 - 000000000 ____D C:\Program Files\Reference Assemblies 2022-07-15 21:00 - 2022-07-15 21:00 - 000000000 ____D C:\Program Files\MSBuild 2022-07-15 21:00 - 2022-07-15 21:00 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies 2022-07-15 21:00 - 2022-07-15 21:00 - 000000000 ____D C:\Program Files (x86)\MSBuild 2022-07-15 19:14 - 2022-07-15 19:14 - 000000000 ___HD C:\Program Files\Common Files\EAInstaller 2022-07-15 14:32 - 2022-07-15 14:32 - 000000000 ____D C:\ProgramData\Origin 2022-07-15 14:27 - 2022-07-17 17:36 - 000000000 ____D C:\Users\48518\AppData\Roaming\Disc-Soft 2022-07-15 14:27 - 2022-07-15 14:27 - 000000000 ____D C:\Users\Public\Documents\Daemon Tools Images 2022-07-15 14:27 - 2022-07-15 14:27 - 000000000 ____D C:\Users\Public\Documents\Catch! 2022-07-15 14:27 - 2022-07-15 14:27 - 000000000 ____D C:\Users\48518\AppData\Local\Disc_Soft_Ltd 2022-07-15 14:26 - 2022-07-17 17:36 - 000000000 ____D C:\ProgramData\Disc-Soft 2022-07-15 10:02 - 2022-07-15 10:27 - 000000000 ____D C:\Users\48518\AppData\LocalLow\Game Labs 2022-07-15 07:44 - 2022-07-15 07:44 - 000000000 ___HD C:\$WinREAgent 2022-07-15 00:18 - 2022-07-20 14:33 - 000000000 ____D C:\Users\48518\AppData\Local\UnrealEngine 2022-07-14 21:53 - 2022-07-15 19:38 - 000000000 ____D C:\Users\48518\AppData\LocalLow\BKOM Studios 2022-07-14 20:32 - 2022-07-14 20:32 - 000000000 ____D C:\Users\48518\AppData\Local\ESET 2022-07-14 19:39 - 2022-07-14 19:39 - 000000000 ____D C:\Users\48518\AppData\Roaming\Adobe 2022-07-14 19:36 - 2022-07-14 19:36 - 000000000 ____D C:\Windows\SystemTemp 2022-07-14 19:30 - 2022-07-20 14:41 - 000003554 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-07-14 19:30 - 2022-07-20 14:41 - 000003330 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2022-07-14 19:28 - 2022-07-14 19:28 - 000000000 ____D C:\Windows\system32\Drivers\DriverData 2022-07-14 19:19 - 2022-07-20 15:22 - 000000000 ____D C:\Users\48518\AppData\Local\D3DSCache 2022-07-14 19:16 - 2022-07-20 14:38 - 000000000 ___HD C:\Windows\msdownld.tmp 2022-07-14 19:16 - 2022-07-20 14:38 - 000000000 ____D C:\Windows\SysWOW64\directx 2022-07-14 19:09 - 2022-07-14 19:14 - 000000000 ____D C:\Users\48518\AppData\LocalLow\BLOODIOUS GAMES LLC 2022-07-14 18:44 - 2022-07-14 18:44 - 001687040 _____ C:\Windows\system32\libcrypto.dll 2022-07-14 18:43 - 2022-07-14 18:43 - 002371072 _____ C:\Windows\system32\rdpnano.dll 2022-07-14 18:43 - 2022-07-14 18:43 - 001864192 _____ (The ICU Project) C:\Windows\SysWOW64\icu.dll 2022-07-14 18:43 - 2022-07-14 18:43 - 000693248 _____ C:\Windows\system32\FsNVSDeviceSource.dll 2022-07-14 18:43 - 2022-07-14 18:43 - 000530944 _____ (curl, hxxps://curl.se/) C:\Windows\system32\curl.exe 2022-07-14 18:43 - 2022-07-14 18:43 - 000470528 _____ (curl, hxxps://curl.se/) C:\Windows\SysWOW64\curl.exe 2022-07-14 18:43 - 2022-07-14 18:43 - 000270848 _____ C:\Windows\system32\EsclScan.dll 2022-07-14 18:43 - 2022-07-14 18:43 - 000152064 _____ C:\Windows\system32\EsclProtocol.dll 2022-07-14 18:43 - 2022-07-14 18:43 - 000104448 _____ C:\Windows\system32\nettraceex.dll 2022-07-14 18:43 - 2022-07-14 18:43 - 000039936 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll 2022-07-14 18:43 - 2022-07-14 18:43 - 000033280 _____ (Microsoft Corporation) C:\Windows\system32\mode.com 2022-07-14 18:43 - 2022-07-14 18:43 - 000026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mode.com 2022-07-14 18:43 - 2022-07-14 18:43 - 000020992 _____ (Microsoft Corporation) C:\Windows\system32\tree.com 2022-07-14 18:43 - 2022-07-14 18:43 - 000018944 _____ C:\Windows\SysWOW64\WsdProviderUtil.dll 2022-07-14 18:43 - 2022-07-14 18:43 - 000017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tree.com 2022-07-14 18:43 - 2022-07-14 18:43 - 000014848 _____ (Microsoft Corporation) C:\Windows\system32\chcp.com 2022-07-14 18:43 - 2022-07-14 18:43 - 000012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\chcp.com 2022-07-14 18:43 - 2022-07-14 18:43 - 000011811 _____ C:\Windows\system32\DrtmAuthTxt.wim 2022-07-14 18:42 - 2022-07-14 18:42 - 002295296 _____ (Digimarc) C:\Windows\system32\DMRCDecoder.dll 2022-07-14 18:42 - 2022-07-14 18:42 - 002260480 _____ C:\Windows\system32\TextInputMethodFormatter.dll 2022-07-14 18:42 - 2022-07-14 18:42 - 002260480 _____ (The ICU Project) C:\Windows\system32\icu.dll 2022-07-14 18:42 - 2022-07-14 18:42 - 002254336 _____ C:\Windows\system32\dwmscene.dll 2022-07-14 18:42 - 2022-07-14 18:42 - 002111488 _____ (Digimarc) C:\Windows\SysWOW64\DMRCDecoder.dll 2022-07-14 18:42 - 2022-07-14 18:42 - 001333760 _____ C:\Windows\SysWOW64\TextInputMethodFormatter.dll 2022-07-14 18:42 - 2022-07-14 18:42 - 001164288 _____ C:\Windows\system32\MBR2GPT.EXE 2022-07-14 18:42 - 2022-07-14 18:42 - 000706536 _____ C:\Windows\system32\TextShaping.dll 2022-07-14 18:42 - 2022-07-14 18:42 - 000657464 _____ C:\Windows\system32\WindowManagementAPI.dll 2022-07-14 18:42 - 2022-07-14 18:42 - 000611960 _____ C:\Windows\SysWOW64\TextShaping.dll 2022-07-14 18:42 - 2022-07-14 18:42 - 000468440 _____ C:\Windows\SysWOW64\WindowManagementAPI.dll 2022-07-14 18:42 - 2022-07-14 18:42 - 000232288 _____ C:\Windows\system32\containerdevicemanagement.dll 2022-07-14 18:42 - 2022-07-14 18:42 - 000223744 _____ C:\Windows\SysWOW64\TpmTool.exe 2022-07-14 18:42 - 2022-07-14 18:42 - 000093696 _____ C:\Windows\system32\Drivers\cimfs.sys 2022-07-14 18:42 - 2022-07-14 18:42 - 000061952 _____ C:\Windows\system32\printticketvalidation.dll 2022-07-14 18:42 - 2022-07-14 18:42 - 000060928 _____ C:\Windows\system32\runexehelper.exe 2022-07-14 18:42 - 2022-07-14 18:42 - 000057344 _____ C:\Windows\system32\APMonUI.dll 2022-07-14 18:42 - 2022-07-14 18:42 - 000048640 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2022-07-14 18:42 - 2022-07-14 18:42 - 000024576 _____ C:\Windows\system32\WsdProviderUtil.dll 2022-07-14 18:41 - 2022-07-14 18:41 - 000640512 _____ C:\Windows\system32\SettingSyncDownloadHelper.dll 2022-07-14 18:41 - 2022-07-14 18:41 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll 2022-07-14 18:41 - 2022-07-14 18:41 - 000287232 _____ C:\Windows\system32\CoreMas.dll 2022-07-14 18:41 - 2022-07-14 18:41 - 000272896 _____ C:\Windows\system32\TpmTool.exe 2022-07-14 18:41 - 2022-07-14 18:41 - 000162816 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe 2022-07-14 18:41 - 2022-07-14 18:41 - 000013312 _____ C:\Windows\system32\agentactivationruntimestarter.exe 2022-07-14 18:35 - 2022-07-14 18:35 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2022-07-14 18:34 - 2022-07-14 18:35 - 000000000 ____D C:\Windows\system32\MRT 2022-07-14 18:33 - 2022-07-14 18:33 - 000001153 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk 2022-07-14 18:33 - 2022-07-14 18:33 - 000000000 ____D C:\Program Files\PCHealthCheck 2022-07-14 17:51 - 2022-07-14 17:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET 2022-07-14 17:51 - 2022-07-14 17:51 - 000000000 ____D C:\ProgramData\ESET 2022-07-14 17:51 - 2022-07-14 17:51 - 000000000 ____D C:\Program Files\ESET 2022-07-14 17:47 - 2022-07-14 17:47 - 005504960 _____ (ESET) C:\Users\48518\Downloads\eset_internet_security_live_installer.exe 2022-07-14 17:23 - 2022-07-20 15:06 - 000000000 ____D C:\GRY 2022-07-14 16:08 - 2022-07-14 16:08 - 000000000 ____D C:\Users\48518\AppData\Local\Comms 2022-07-14 16:00 - 2022-07-14 16:00 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf 2022-07-14 15:59 - 2022-07-14 15:59 - 000000000 ____D C:\Users\48518\AppData\Local\OneDrive 2022-07-14 15:56 - 2022-07-20 16:39 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2022-07-14 15:56 - 2022-07-20 16:38 - 000000000 ____D C:\Users\48518\AppData\LocalLow\Mozilla 2022-07-14 15:56 - 2022-07-20 15:21 - 000000000 ____D C:\Users\48518\AppData\Roaming\Mozilla 2022-07-14 15:54 - 2022-07-20 14:55 - 000000000 ____D C:\Users\48518\AppData\Local\PlaceholderTileLogoFolder 2022-07-14 15:54 - 2022-07-19 14:00 - 000003122 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3266655915-1981900270-190188007-1002 2022-07-14 15:53 - 2022-07-19 14:00 - 000002918 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3266655915-1981900270-190188007-1002 2022-07-14 15:53 - 2022-07-15 18:04 - 000002430 _____ C:\Users\48518\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-07-14 15:53 - 2022-07-14 15:53 - 000000000 ___RD C:\Users\48518\OneDrive 2022-07-14 15:52 - 2022-07-20 16:39 - 000000000 ____D C:\Users\48518\AppData\Local\Packages 2022-07-14 15:52 - 2022-07-20 15:24 - 000000000 __SHD C:\Users\48518\IntelGraphicsProfiles 2022-07-14 15:52 - 2022-07-18 22:46 - 000000000 ____D C:\Users\48518\AppData\Local\Publishers 2022-07-14 15:52 - 2022-07-14 16:21 - 000000000 ____D C:\Users\48518\AppData\Local\ConnectedDevicesPlatform 2022-07-14 15:52 - 2022-07-14 15:52 - 000000000 ___RD C:\Users\48518\3D Objects 2022-07-14 15:52 - 2022-07-14 15:52 - 000000000 ____D C:\Users\48518\AppData\Local\VirtualStore 2022-07-14 15:48 - 2022-07-14 15:53 - 000000000 ____D C:\Users\48518 2022-07-14 15:48 - 2022-07-14 15:48 - 000000020 ___SH C:\Users\48518\ntuser.ini 2022-07-14 15:48 - 2022-07-14 15:48 - 000000000 _SHDL C:\Users\48518\Ustawienia lokalne 2022-07-14 15:48 - 2022-07-14 15:48 - 000000000 _SHDL C:\Users\48518\Szablony 2022-07-14 15:48 - 2022-07-14 15:48 - 000000000 _SHDL C:\Users\48518\Moje dokumenty 2022-07-14 15:48 - 2022-07-14 15:48 - 000000000 _SHDL C:\Users\48518\Menu Start 2022-07-14 15:48 - 2022-07-14 15:48 - 000000000 _SHDL C:\Users\48518\Documents\Moje wideo 2022-07-14 15:48 - 2022-07-14 15:48 - 000000000 _SHDL C:\Users\48518\Documents\Moje obrazy 2022-07-14 15:48 - 2022-07-14 15:48 - 000000000 _SHDL C:\Users\48518\Documents\Moja muzyka 2022-07-14 15:48 - 2022-07-14 15:48 - 000000000 _SHDL C:\Users\48518\Dane aplikacji 2022-07-14 15:48 - 2022-07-14 15:48 - 000000000 _SHDL C:\Users\48518\AppData\Local\Tymczasowe pliki internetowe 2022-07-14 15:48 - 2022-07-14 15:48 - 000000000 _SHDL C:\Users\48518\AppData\Local\Historia 2022-07-14 15:48 - 2022-07-14 15:48 - 000000000 _SHDL C:\Users\48518\AppData\Local\Dane aplikacji 2022-07-14 15:26 - 2022-07-20 15:29 - 001767980 _____ C:\Windows\system32\PerfStringBackup.INI 2022-07-14 14:14 - 2022-07-20 15:24 - 000000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2022-07-12 12:27 - 2022-07-12 12:27 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_GDKBFlt64_01007.Wdf 2022-07-12 12:27 - 2022-07-12 12:27 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_GDKBB64_01009.Wdf 2022-07-12 12:26 - 2022-07-14 18:17 - 000000000 ____D C:\Program Files\Common Files\AV 2022-07-12 12:25 - 2022-07-19 14:00 - 000003118 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3266655915-1981900270-190188007-500 2022-07-12 12:25 - 2022-07-19 14:00 - 000002914 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3266655915-1981900270-190188007-500 2022-07-12 12:24 - 2022-07-12 12:24 - 000000000 ____D C:\ScratchDir 2022-07-12 12:24 - 2022-07-12 12:24 - 000000000 ____D C:\ProgramData\Microsoft OneDrive 2022-07-12 12:23 - 2022-07-20 14:55 - 000000000 ____D C:\ProgramData\Packages 2022-07-12 12:23 - 2022-07-14 15:53 - 000000000 __RHD C:\Users\Public\AccountPictures 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\Users\Public\Documents\Moje wideo 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\Users\Public\Documents\Moje obrazy 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\Users\Public\Documents\Moja muzyka 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\Users\Default\Ustawienia lokalne 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\Users\Default\Szablony 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\Users\Default\Moje dokumenty 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\Users\Default\Menu Start 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\Users\Default\Documents\Moje wideo 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\Users\Default\Documents\Moje obrazy 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\Users\Default\Documents\Moja muzyka 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\Users\Default\Dane aplikacji 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\Users\Default\AppData\Local\Tymczasowe pliki internetowe 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\Users\Default\AppData\Local\Historia 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\Users\Default\AppData\Local\Dane aplikacji 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\ProgramData\Szablony 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\ProgramData\Pulpit 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programy 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\ProgramData\Menu Start 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\ProgramData\Dokumenty 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\ProgramData\Dane aplikacji 2022-07-12 12:23 - 2022-07-12 12:23 - 000000000 _SHDL C:\Documents and Settings 2022-07-12 12:21 - 2022-07-20 15:24 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2022-07-12 12:21 - 2022-07-14 16:21 - 000676341 _____ C:\Windows\system32\Drivers\rtkhdasetting.zip 2022-07-12 12:21 - 2022-07-14 16:20 - 000000000 ____D C:\Windows\SysWOW64\RTCOM 2022-07-12 12:21 - 2022-07-12 12:23 - 000000000 ____D C:\Intel 2022-07-12 12:21 - 2022-07-12 12:21 - 000000200 _____ C:\Windows\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat 2022-07-12 12:21 - 2022-07-12 12:21 - 000000000 ____H C:\ProgramData\DP45977C.lfl 2022-07-12 12:21 - 2022-07-12 12:21 - 000000000 ____D C:\Windows\system32\Tasks\Intel 2022-07-12 12:21 - 2022-07-12 12:21 - 000000000 ____D C:\Windows\system32\DAX3 2022-07-12 12:21 - 2022-07-12 12:21 - 000000000 ____D C:\Windows\system32\DAX2 2022-07-12 12:21 - 2022-07-12 12:21 - 000000000 ____D C:\Program Files\Realtek 2022-07-12 12:21 - 2022-07-12 12:21 - 000000000 ____D C:\Program Files\Intel 2022-07-12 12:21 - 2022-07-12 12:21 - 000000000 _____ C:\Windows\system32\GfxValDisplayLog.bin 2022-07-12 12:21 - 2018-07-16 23:47 - 000102184 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.DLL 2022-07-12 12:21 - 2018-07-16 23:47 - 000098080 _____ (Khronos Group) C:\Windows\system32\OpenCL.DLL 2022-07-12 12:20 - 2022-07-20 16:37 - 000000000 ____D C:\Windows\system32\SleepStudy 2022-07-12 12:20 - 2022-07-20 15:24 - 000008192 ___SH C:\DumpStack.log.tmp 2022-07-12 12:20 - 2022-07-16 06:23 - 000000000 ____D C:\Windows\Panther 2022-07-12 12:20 - 2022-07-14 19:37 - 000258584 _____ C:\Windows\system32\FNTCACHE.DAT 2022-07-12 12:20 - 2022-07-12 12:21 - 000000000 ____D C:\Windows\ServiceProfiles 2022-06-21 09:12 - 2022-07-14 17:52 - 000015824 _____ (ESET) C:\Windows\system32\Drivers\eelam.sys 2022-06-21 09:12 - 2022-06-21 09:12 - 000234192 _____ (ESET) C:\Windows\system32\Drivers\ehdrv.sys 2022-06-21 09:12 - 2022-06-21 09:12 - 000192880 _____ (ESET) C:\Windows\system32\Drivers\eamonm.sys 2022-06-21 09:12 - 2022-06-21 09:12 - 000119528 _____ (ESET) C:\Windows\system32\Drivers\epfwwfp.sys 2022-06-21 09:12 - 2022-06-21 09:12 - 000116960 _____ (ESET) C:\Windows\system32\Drivers\edevmon.sys 2022-06-21 09:12 - 2022-06-21 09:12 - 000079216 _____ (ESET) C:\Windows\system32\Drivers\epfw.sys 2022-06-21 09:12 - 2022-06-21 09:12 - 000052880 _____ (ESET) C:\Windows\system32\Drivers\ekbdflt.sys ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2022-07-20 16:39 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-07-20 16:39 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness 2022-07-20 16:39 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-07-20 15:29 - 2019-12-07 17:08 - 000784334 _____ C:\Windows\system32\perfh015.dat 2022-07-20 15:29 - 2019-12-07 17:08 - 000152230 _____ C:\Windows\system32\perfc015.dat 2022-07-20 15:29 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF 2022-07-20 15:24 - 2019-12-07 11:03 - 000524288 _____ C:\Windows\system32\config\BBI 2022-07-18 12:15 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\LiveKernelReports 2022-07-17 14:16 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2022-07-15 21:00 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\MUI 2022-07-15 21:00 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\MUI 2022-07-15 21:00 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp 2022-07-15 08:52 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\servicing 2022-07-15 05:13 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\appcompat 2022-07-14 19:39 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2022-07-14 19:36 - 2019-12-07 17:09 - 000000000 ____D C:\Windows\system32\OpenSSH 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ___SD C:\Windows\system32\UNP 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ___SD C:\Windows\system32\DiagSvcs 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\PrintDialog 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\setup 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\oobe 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\lv-LV 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\lt-LT 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\et-EE 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\es-MX 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinMetadata 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SystemResetPlatform 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\ShellExperiences 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\setup 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\migwiz 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\lv-LV 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\lt-LT 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\et-EE 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\es-MX 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\DDFs 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\appraiser 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellExperiences 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellComponents 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\Provisioning 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\PolicyDefinitions 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\DiagTrack 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr 2022-07-14 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System 2022-07-14 18:46 - 2019-12-07 17:11 - 000023552 _____ (Microsoft Corporation) C:\Windows\system32\OEMDefaultAssociations.dll 2022-07-14 18:17 - 2019-12-07 11:14 - 000000000 ___SD C:\Windows\SysWOW64\DiagSvcs 2022-07-14 18:17 - 2019-12-07 11:14 - 000000000 ___SD C:\Windows\SysWOW64\Configuration 2022-07-14 18:17 - 2019-12-07 11:14 - 000000000 ___HD C:\Windows\ELAMBKUP 2022-07-14 18:17 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Com 2022-07-14 15:26 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\USOPrivate 2022-07-14 14:17 - 2019-12-07 11:03 - 000032768 _____ C:\Windows\system32\config\ELAM 2022-07-14 14:16 - 2019-12-07 17:10 - 000000000 ____D C:\Windows\system32\FxsTmp 2022-07-12 13:19 - 2019-12-07 11:14 - 000028672 _____ C:\Windows\system32\config\BCD-Template 2022-07-12 12:27 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Sysprep 2022-07-12 12:24 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinBioDatabase 2022-07-12 12:24 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\spool 2022-07-12 12:24 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ServiceState 2022-07-12 12:23 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows NT ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================