Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 31-07-2022 Uruchomiony przez Mateusz (administrator) DESKTOP-PBAM048 (02-08-2022 15:55:58) Uruchomiony z C:\Users\Mateusz\Desktop Załadowane profile: Mateusz Platform: Microsoft Windows 10 Home Wersja 21H2 19044.1826 (X64) Język: Polski (Polska) Domyślna przeglądarka: FF Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe (C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe ->) (Node.js Foundation -> Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe (C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe (C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\QtWebEngineProcess.exe (DriverStore\FileRepository\u0379219.inf_amd64_3649648678001de4\B378972\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0379219.inf_amd64_3649648678001de4\B378972\atieclxx.exe (explorer.exe ->) (Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe (explorer.exe ->) (F.lux Software LLC -> f.lux Software LLC) C:\Users\Mateusz\AppData\Local\FluxSoftware\Flux\flux.exe (explorer.exe ->) (Thesycon Software Solutions GmbH & Co. KG -> Audient) C:\Program Files\Audient\USBAudioDriver\W10_x64\iD.exe (Kilonova LLC -> Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.5.0.7\Lightshot.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <18> (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe (services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (services.exe ->) (Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe (services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Program Files\AMD\Performance Profile Client\AUEPDU.exe (services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0379219.inf_amd64_3649648678001de4\B378972\atiesrxx.exe (services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (services.exe ->) (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe <2> (services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe (services.exe ->) (Logitech Inc -> Logitech) C:\Program Files\Logitech\LogiCapture\bin\Service\LogiFacecamService.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe (services.exe ->) (NATIVE INSTRUMENTS GmbH -> Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe (services.exe ->) (PACE Anti-Piracy, Inc. -> PACE Anti-Piracy, Inc.) C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe (services.exe ->) (Protexis Inc. -> ) [Brak podpisu cyfrowego] C:\Windows\SysWOW64\PSIService.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek) C:\Program Files\Tenda\WifiAutoInstall\WifiAutoInstallSrv.exe (services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe (svchost.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe (svchost.exe ->) (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe (svchost.exe ->) (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe <2> (svchost.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3427104 2022-04-13] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3951968 2019-07-09] (Logitech -> Logitech, Inc.) HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226728 2019-07-22] (Kilonova LLC -> ) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [11186440 2022-07-17] (Dropbox, Inc -> Dropbox, Inc.) HKLM\...\Policies\Explorer: [HideSCAHealth] 1 HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Ograniczenia <==== UWAGA HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Ograniczenia <==== UWAGA HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Ograniczenia <==== UWAGA HKU\S-1-5-21-4011949360-4238493729-2261919253-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [37054552 2022-07-18] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-4011949360-4238493729-2261919253-1001\...\Run: [f.lux] => C:\Users\Mateusz\AppData\Local\FluxSoftware\Flux\flux.exe [1515848 2021-06-18] (F.lux Software LLC -> f.lux Software LLC) HKU\S-1-5-21-4011949360-4238493729-2261919253-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4230544 2022-07-26] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-4011949360-4238493729-2261919253-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe [148672 2016-10-12] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKU\S-1-5-21-4011949360-4238493729-2261919253-1001\...\Run: [Discord] => C:\Users\Mateusz\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub) HKU\S-1-5-21-4011949360-4238493729-2261919253-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Mateusz\AppData\Local\Microsoft\Teams\Update.exe [2453704 2021-03-28] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKU\S-1-5-21-4011949360-4238493729-2261919253-1001\...\MountPoints2: {6940eb7b-b071-11ec-a145-50465d76931b} - "F:\HiSuiteDownLoader.exe" HKLM\...\Print\Monitors\HP C211 Status Monitor: C:\WINDOWS\system32\hpinkstsC211LM.dll [333496 2012-12-16] (Hewlett Packard -> Hewlett-Packard Co.) HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Deskjet 2540 series): C:\WINDOWS\system32\HPDiscoPMC211.dll [763912 2014-03-06] (Hewlett Packard -> Hewlett-Packard Co.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\103.0.5060.134\Installer\chrmstp.exe [2022-07-20] (Google LLC -> Google LLC) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\iD Autostart.lnk [2020-09-08] ShortcutTarget: iD Autostart.lnk -> C:\Program Files\Audient\USBAudioDriver\W10_x64\iD.exe (Thesycon Software Solutions GmbH & Co. KG -> Audient) Startup: C:\Users\Mateusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Powiadomienia monitorowania tuszu - HP Deskjet 2540 series.lnk [2021-04-03] ShortcutAndArgument: Powiadomienia monitorowania tuszu - HP Deskjet 2540 series.lnk -> C:\Windows\system32\RunDll32.exe => "C:\Program Files\HP\HP Deskjet 2540 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN3AG2FM7C05XK;CONNECTION=USB;MONITOR=1; BootExecute: autocheck autochk * bootdelete ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {058CD1C0-8DE9-46A6-83A7-D7A4BA02083A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-04-13] (Google LLC -> Google LLC) Task: {059B3ECA-4FE3-44DC-BDA4-BD085FB48FBC} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.) Task: {0AD06211-C3CF-4BBF-8637-B086622AD313} - System32\Tasks\COMODO\COMODO Maintenance {947247B5-026A-4437-9371-770782BE839D} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO) Task: {2ADA811F-7D55-4FB6-A9BB-7A4D3E24CC78} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1147440 2022-04-28] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) Task: {2E5DFF40-7BC8-4BEF-92E9-48CF0598F000} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13190952 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO) Task: {3538E2E7-AB6C-466C-A7C3-DAB7BF3F9D82} - System32\Tasks\COMODO\COMODO Telemetry {18AD3DFA-30C0-4B5F-84F7-F1870B1A4921} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13190952 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO) Task: {41BCCCBC-D1BE-4632-BAAA-D21DD0B56C2D} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO) Task: {4D43050B-DEA6-47E3-93F1-B0609699CB79} - System32\Tasks\update-S-1-5-21-4011949360-4238493729-2261919253-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: ) Task: {5F09A0DE-06FE-4D9E-9954-D7138297F95C} - System32\Tasks\{31DDBD37-5DB7-4030-8064-10B0CAA806C3} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13190952 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO) Task: {657AADAD-DE09-4446-A8E0-2A7BC4B96DD9} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: ) Task: {68723C60-FF7B-42AB-A896-DEAE9F18FB1D} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2250576 2022-05-25] (Avast Software s.r.o. -> Avast Software) Task: {6ADD8DC0-CA97-4E11-9F88-1170F678F7C7} - System32\Tasks\StartCNBM => C:\Program Files\AMD\CNext\CNext\cncmd.exe [56368 2022-04-28] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) Task: {6BF9F536-9C95-48B2-A10B-5C692005A936} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2113024 2022-06-26] () [Brak podpisu cyfrowego] Task: {6F44D547-1E18-424C-A279-584AC87DFE18} - System32\Tasks\CCleanerSkipUAC - Mateusz => C:\Program Files\CCleaner\CCleaner.exe [31101528 2022-07-18] (Piriform Software Ltd -> Piriform Software Ltd) Task: {72D3CC0D-709F-4B3B-895D-E9FD95076BD6} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO) Task: {74179BD4-7D5B-40EE-ABDB-83CE7921FBDD} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3427104 2022-04-13] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {750D7061-944F-4032-BCF9-878EEF98BDFB} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB" Task: {92252C76-A1A4-4EF5-9720-408F2A388861} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [56368 2022-04-28] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) Task: {9962DBBD-5364-4B63-A36A-7486505C4DB3} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-13] (Dropbox, Inc -> Dropbox, Inc.) Task: {9F3D6566-9C27-4214-81DF-6DE79C740BA4} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-13] (Dropbox, Inc -> Dropbox, Inc.) Task: {A26622D3-32EA-4E8D-91C1-581D00FE79F3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-04-13] (Google LLC -> Google LLC) Task: {B947A638-AFC5-4C3F-9F4F-C1D039C4446F} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-07-18] (Piriform Software Ltd -> Piriform) Task: {C92B45B8-D077-46E2-A1C3-B99711D01455} - System32\Tasks\COMODO\COMODO CMC {06A09C0F-DD9C-4191-A670-71115CD78627} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO) Task: {EA0CF8E2-F8BE-40B8-BB94-913CE4A77DFD} - System32\Tasks\StartAUEP => C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe [660016 2022-04-28] (Advanced Micro Devices Inc. -> AMD) Task: {F34EBE1A-6C89-403C-8301-A5C66F7A5250} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {F85FA55F-A01E-43B0-8E14-7926DE923F57} - System32\Tasks\HPCustParticipation HP Deskjet 2540 series => C:\Program Files\HP\HP Deskjet 2540 series\Bin\HPCustPartic.exe [5745672 2014-03-06] (Hewlett Packard -> Hewlett-Packard Co.) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\update-S-1-5-21-4011949360-4238493729-2261919253-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{487a7896-9433-4399-9196-fe8f2042efbe}: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{59e8a6c3-11c0-445c-be18-dd8acd19e45b}: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{ae94f04a-15ba-4094-8f33-47d39418e3a1}: [DhcpNameServer] 192.168.0.1 Edge: ======= DownloadDir: C:\Users\Mateusz\Downloads Edge Extension: (Brak nazwy) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [nie znaleziono] Edge Extension: (Brak nazwy) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [nie znaleziono] Edge Extension: (Brak nazwy) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [nie znaleziono] Edge Extension: (Brak nazwy) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [nie znaleziono] Edge Profile: C:\Users\Mateusz\AppData\Local\Microsoft\Edge\User Data\Default [2022-07-31] FireFox: ======== FF DefaultProfile: xn1uvhyn.default FF ProfilePath: C:\Users\Mateusz\AppData\Roaming\Mozilla\Firefox\Profiles\xn1uvhyn.default [2020-01-24] FF ProfilePath: C:\Users\Mateusz\AppData\Roaming\Mozilla\Firefox\Profiles\e55jlwv3.default-release [2022-08-02] FF Extension: (uBlock Origin) - C:\Users\Mateusz\AppData\Roaming\Mozilla\Firefox\Profiles\e55jlwv3.default-release\Extensions\uBlock0@raymondhill.net.xpi [2022-06-14] FF Extension: (Gamer TIme) - C:\Users\Mateusz\AppData\Roaming\Mozilla\Firefox\Profiles\e55jlwv3.default-release\Extensions\{3afd3680-7dda-4412-be2c-1494d8162531}.xpi [2021-12-23] FF Extension: (Dark Fox) - C:\Users\Mateusz\AppData\Roaming\Mozilla\Firefox\Profiles\e55jlwv3.default-release\Extensions\{e7fe4ffe-f256-4f85-906d-072fdd698585}.xpi [2021-06-08] FF Extension: (Northern Lake FT by MaDonna) - C:\Users\Mateusz\AppData\Roaming\Mozilla\Firefox\Profiles\e55jlwv3.default-release\Extensions\{fcebb804-5eb9-43d9-a12a-30f6ca1b9b1b}.xpi [2021-06-08] FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-07-05] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-10-12] (Adobe Systems Incorporated -> Adobe Systems) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-10-12] (Adobe Systems Incorporated -> Adobe Systems) FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2020-03-04] <==== UWAGA (Linkuje do pliku *.cfg) FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2020-03-04] <==== UWAGA Chrome: ======= CHR Profile: C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default [2022-07-30] CHR Extension: (Kaspersky Protection 20.0) - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\elhpdacimkjpccooodognopfhbdgnpbk [2021-10-09] CHR Extension: (Avast SafePrice | Porównania, promocje, kupony) - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2022-07-14] CHR Extension: (Dokumenty Google offline) - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-04-20] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-10-09] CHR HKLM\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk CHR HKLM-x32\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.) R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [744640 2016-10-12] (Adobe Systems Incorporated -> Adobe Systems Incorporated) R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3815712 2022-04-13] (Adobe Inc. -> Adobe Systems, Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3580200 2022-04-13] (Adobe Inc. -> Adobe Systems, Incorporated) R2 AUEPLauncher; C:\Program Files\AMD\CIM\..\Performance Profile Client\AUEPDU.exe [506416 2022-04-28] (Advanced Micro Devices Inc. -> AMD) R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [11334144 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO) R2 CmdAgentProt; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [11334144 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO) S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2675504 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-13] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-13] (Dropbox, Inc -> Dropbox, Inc.) R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [46864 2022-07-17] (Dropbox, Inc -> Dropbox, Inc.) R2 LogiFacecamService; C:\Program Files\Logitech\LogiCapture\bin\Service\LogiFacecamService.exe [497568 2021-04-08] (Logitech Inc -> Logitech) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2575624 2022-05-27] (Electronic Arts, Inc. -> Electronic Arts) R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3494672 2022-05-27] (Electronic Arts, Inc. -> Electronic Arts) R2 ProtexisLicensing; C:\Windows\SysWOW64\PSIService.exe [174656 2006-11-02] (Protexis Inc. -> ) [Brak podpisu cyfrowego] R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [14610864 2022-01-24] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-07-11] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WifiAutoInstallSrv; C:\Program Files\Tenda\WifiAutoInstall\WifiAutoInstallSrv.exe [118720 2018-08-02] (Realtek Semiconductor Corp. -> Realtek) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-07-11] (Microsoft Windows Publisher -> Microsoft Corporation) S2 HitmanPro38CrusaderBoot; "C:\Users\Mateusz\Desktop\HitmanPro_x64.exe" /crusader:boot [X] R2 PaceLicenseDServices; "C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe" -u hxxps://activation.paceap.com/InitiateActivation ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [33728 2021-12-13] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_edd3335a4253bf6d\amdsafd.sys [109520 2021-11-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices) R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0379219.inf_amd64_3649648678001de4\B378972\amdkmdag.sys [90165704 2022-05-22] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) R3 audientusbaudio; C:\WINDOWS\System32\drivers\audientusbaudio.sys [366800 2018-09-26] (Microsoft Windows Hardware Compatibility Publisher -> ) R3 audientusbaudioks; C:\WINDOWS\System32\drivers\audientusbaudioks.sys [53456 2018-09-26] (Microsoft Windows Hardware Compatibility Publisher -> ) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego] S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego] S0 cmdboot; C:\WINDOWS\System32\DRIVERS\cmdboot.sys [17576 2020-01-27] (Microsoft Windows Early Launch Anti-malware Publisher -> COMODO) R1 cmderd; C:\WINDOWS\System32\DRIVERS\cmderd.sys [38880 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO) R1 cmdGuard; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [844000 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO) R1 cmdhlp; C:\WINDOWS\system32\DRIVERS\cmdhlp.sys [47104 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO) S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2021-11-08] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.) S3 fwdrv; C:\WINDOWS\System32\drivers\fwdrv.sys [27840 2014-03-22] (Web Solution Mart -> Web Solution Mart) R4 hitmanpro37; C:\WINDOWS\system32\drivers\hitmanpro37.sys [42000 2022-08-02] (Microsoft Windows Hardware Compatibility Publisher -> ) U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2021-11-08] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.) R1 inspect; C:\WINDOWS\system32\DRIVERS\inspect.sys [130256 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO) R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [48592 2018-03-16] (AnchorFree Inc -> The OpenVPN Project) S3 ManyCam; C:\WINDOWS\system32\DRIVERS\mcvidrv.sys [49272 2014-12-29] (ManyCam -> Visicom Media Inc.) S3 mcaudrv_simple; C:\WINDOWS\system32\drivers\mcaudrv_x64.sys [35960 2014-12-29] (ManyCam -> Visicom Media Inc.) R3 VBAudioVACMME; C:\WINDOWS\System32\drivers\vbaudio_cable64_win7.sys [41192 2014-09-02] (Vincent Burel -> Windows (R) Win 7 DDK provider) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49576 2022-07-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [452856 2022-07-11] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [91384 2022-07-11] (Microsoft Windows -> Microsoft Corporation) U3 aswbdisk; Brak ImagePath ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2022-08-02 15:55 - 2022-08-02 15:56 - 000027120 _____ C:\Users\Mateusz\Desktop\FRST.txt 2022-08-02 15:55 - 2022-08-02 15:56 - 000000000 ____D C:\FRST 2022-08-02 15:55 - 2022-08-02 15:55 - 002370048 _____ (Farbar) C:\Users\Mateusz\Desktop\FRST64.exe 2022-08-02 15:31 - 2022-08-02 15:31 - 000012872 _____ (SurfRight B.V.) C:\WINDOWS\system32\bootdelete.exe 2022-08-02 15:31 - 2022-08-02 15:31 - 000002034 _____ C:\WINDOWS\system32\.crusader 2022-08-02 15:31 - 2022-08-02 15:31 - 000001358 _____ C:\WINDOWS\system32\bootdelete.lst 2022-08-02 15:24 - 2022-08-02 15:31 - 000000000 ____D C:\ProgramData\HitmanPro 2022-08-02 15:24 - 2022-08-02 15:24 - 000042000 _____ C:\WINDOWS\system32\Drivers\hitmanpro37.sys 2022-08-02 15:21 - 2022-08-02 15:22 - 000000000 ____D C:\AdwCleaner 2022-08-01 23:39 - 2022-08-02 00:41 - 053321878 _____ C:\Users\Mateusz\Desktop\Lo fi bębny wav.wav 2022-08-01 23:09 - 2022-08-01 23:09 - 001633986 _____ C:\Users\Mateusz\Desktop\birds-19624.mp3.reapeaks 2022-08-01 23:09 - 2022-08-01 23:09 - 000106076 _____ C:\Users\Mateusz\Desktop\birds-19624.mp3.reapindex 2022-08-01 22:19 - 2022-08-01 22:19 - 004558597 _____ C:\Users\Mateusz\Desktop\Sub Bass Drop.zip 2022-08-01 20:53 - 2022-08-02 15:13 - 000000000 ____D C:\Program Files\Mozilla Firefox 2022-07-31 23:50 - 2022-07-31 23:50 - 000000000 ____D C:\Users\Mateusz\AppData\Roaming\Cymatics 2022-07-31 23:45 - 2022-07-31 23:45 - 000000000 ____D C:\ProgramData\Cymatics 2022-07-31 23:45 - 2022-07-31 23:45 - 000000000 ____D C:\Program Files\Cymatics 2022-07-31 20:36 - 2022-07-31 20:46 - 000000000 ____D C:\Users\Mateusz\.openshot_qt 2022-07-31 19:32 - 2022-07-31 19:32 - 000000000 ____D C:\Users\Mateusz\Documents\Toontrack 2022-07-31 19:32 - 2022-07-31 19:32 - 000000000 ____D C:\Users\Mateusz\AppData\Roaming\Toontrack 2022-07-31 19:31 - 2022-07-31 19:31 - 000000000 ____D C:\ProgramData\Toontrack 2022-07-31 19:31 - 2022-07-31 19:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Toontrack 2022-07-31 19:31 - 2022-07-31 19:31 - 000000000 ____D C:\Program Files\Toontrack 2022-07-31 19:31 - 2022-07-31 19:31 - 000000000 ____D C:\Program Files\Common Files\Avid 2022-07-31 18:42 - 2022-07-31 18:56 - 000000480 _____ C:\Users\Mateusz\Documents\mtpdk.mid 2022-07-31 18:40 - 2022-07-31 18:40 - 000000000 ____D C:\Users\Mateusz\Documents\MANDA_AUDIO 2022-07-30 23:41 - 2022-07-30 23:41 - 000000000 ____D C:\Users\Mateusz\AppData\Roaming\SitalaStandalone 2022-07-30 23:40 - 2022-08-01 22:15 - 000000000 ____D C:\Users\Mateusz\AppData\Roaming\Sitala 2022-07-30 23:40 - 2022-07-30 23:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sitala 2022-07-30 23:40 - 2022-07-30 23:40 - 000000000 ____D C:\Program Files\Sitala 2022-07-30 22:38 - 2022-07-30 22:52 - 000000000 ____D C:\Program Files\HWiNFO64 2022-07-30 22:38 - 2022-07-30 22:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HWiNFO64 2022-07-25 14:14 - 2022-07-25 14:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2022-07-17 03:10 - 2022-07-17 03:10 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys 2022-07-17 03:10 - 2022-07-17 03:10 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys 2022-07-17 03:10 - 2022-07-17 03:10 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys 2022-07-17 03:10 - 2022-07-17 03:10 - 000046864 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe 2022-07-14 21:01 - 2022-07-14 21:01 - 000693248 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll 2022-07-14 21:01 - 2022-07-14 21:01 - 000470528 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe 2022-07-14 21:01 - 2022-07-14 21:01 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mode.com 2022-07-14 21:01 - 2022-07-14 21:01 - 000018944 _____ C:\WINDOWS\SysWOW64\WsdProviderUtil.dll 2022-07-14 21:01 - 2022-07-14 21:01 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tree.com 2022-07-14 21:01 - 2022-07-14 21:01 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\chcp.com 2022-07-14 21:00 - 2022-07-14 21:00 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll 2022-07-14 21:00 - 2022-07-14 21:00 - 000640512 _____ C:\WINDOWS\system32\SettingSyncDownloadHelper.dll 2022-07-14 21:00 - 2022-07-14 21:00 - 000530944 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe 2022-07-14 21:00 - 2022-07-14 21:00 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll 2022-07-14 21:00 - 2022-07-14 21:00 - 000270848 _____ C:\WINDOWS\system32\EsclScan.dll 2022-07-14 21:00 - 2022-07-14 21:00 - 000152064 _____ C:\WINDOWS\system32\EsclProtocol.dll 2022-07-14 21:00 - 2022-07-14 21:00 - 000061952 _____ C:\WINDOWS\system32\printticketvalidation.dll 2022-07-14 21:00 - 2022-07-14 21:00 - 000057344 _____ C:\WINDOWS\system32\APMonUI.dll 2022-07-14 21:00 - 2022-07-14 21:00 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mode.com 2022-07-14 21:00 - 2022-07-14 21:00 - 000024576 _____ C:\WINDOWS\system32\WsdProviderUtil.dll 2022-07-14 21:00 - 2022-07-14 21:00 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tree.com 2022-07-14 21:00 - 2022-07-14 21:00 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\chcp.com 2022-07-14 21:00 - 2022-07-14 21:00 - 000011811 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2022-07-14 20:49 - 2022-07-14 20:49 - 000000000 ___HD C:\$WinREAgent 2022-07-05 15:59 - 2022-07-06 20:54 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird 2022-07-03 16:05 - 2022-07-03 16:05 - 000000000 ____D C:\Program Files (x86)\Fake Webcam 7.4 2022-07-03 16:05 - 2014-03-22 15:14 - 000027840 _____ (Web Solution Mart) C:\WINDOWS\system32\Drivers\fwdrv.sys 2022-07-03 16:05 - 2012-05-18 09:53 - 000148992 _____ ( ) C:\WINDOWS\system32\LAGARITH.DLL ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2022-08-02 15:53 - 2021-04-03 19:17 - 000000000 ____D C:\WINDOWS\system32\Tasks\COMODO 2022-08-02 15:53 - 2020-05-08 15:39 - 001474832 _____ C:\WINDOWS\system32\Drivers\sfi.dat 2022-08-02 15:48 - 2020-01-24 18:55 - 000000000 ____D C:\Users\Mateusz\AppData\LocalLow\Mozilla 2022-08-02 15:43 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-08-02 15:37 - 2020-01-23 17:31 - 000000000 ____D C:\ProgramData\Mozilla 2022-08-02 15:33 - 2020-03-16 12:15 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData 2022-08-02 15:32 - 2022-02-09 23:35 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2022-08-02 15:32 - 2020-01-23 17:25 - 000000000 ____D C:\Program Files (x86)\Google 2022-08-02 15:31 - 2020-07-03 00:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Arturia 2022-08-02 15:31 - 2020-06-11 23:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iZotope 2022-08-02 15:31 - 2020-02-01 02:10 - 000000000 ____D C:\Users\Mateusz\AppData\Roaming\uTorrent Web 2022-08-02 15:22 - 2021-04-03 19:19 - 001767980 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2022-08-02 15:22 - 2019-12-07 17:08 - 000784172 _____ C:\WINDOWS\system32\perfh015.dat 2022-08-02 15:22 - 2019-12-07 17:08 - 000152068 _____ C:\WINDOWS\system32\perfc015.dat 2022-08-02 15:22 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2022-08-02 15:16 - 2021-04-03 19:17 - 000004230 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{28C6638A-E728-4AA0-89E6-F5AE2383B96E} 2022-08-02 15:16 - 2020-01-27 00:10 - 000000000 ____D C:\Program Files\CCleaner 2022-08-02 15:13 - 2022-01-30 23:31 - 000000000 ____D C:\Program Files\TeamViewer 2022-08-02 15:13 - 2021-04-03 19:10 - 000008192 ___SH C:\DumpStack.log.tmp 2022-08-02 15:13 - 2020-11-19 01:29 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-08-02 15:13 - 2020-05-04 12:12 - 000000000 ____D C:\ProgramData\PACE 2022-08-02 15:13 - 2020-01-23 17:32 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2022-08-02 15:13 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState 2022-08-02 00:46 - 2020-01-23 17:49 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin 2022-08-02 00:46 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2022-08-01 23:44 - 2020-01-23 17:25 - 000000000 ____D C:\Users\Mateusz\AppData\Local\PlaceholderTileLogoFolder 2022-08-01 22:04 - 2021-10-09 11:01 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2022-08-01 22:04 - 2020-01-23 17:32 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2022-08-01 22:03 - 2020-11-19 00:29 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-08-01 21:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2022-08-01 21:15 - 2019-03-19 06:02 - 000000000 ____D C:\Users\Mateusz\AppData\Local\Packages 2022-08-01 00:59 - 2020-05-08 16:51 - 020631932 _____ C:\WINDOWS\system32\Drivers\fvstore.dat 2022-07-31 23:45 - 2020-01-27 00:53 - 000000000 ____D C:\Program Files\Common Files\VST3 2022-07-31 21:51 - 2020-01-24 19:17 - 000000000 ____D C:\Users\Mateusz\AppData\Roaming\REAPER 2022-07-31 21:46 - 2020-04-10 14:10 - 000000000 ____D C:\Users\Mateusz\AppData\Local\CrashDumps 2022-07-31 21:42 - 2020-01-24 19:37 - 000000000 ____D C:\Users\Mateusz\Desktop\Programy 2022-07-31 20:36 - 2021-04-03 18:16 - 000000000 ____D C:\Users\Mateusz 2022-07-31 19:30 - 2020-07-03 18:18 - 000000000 ____D C:\Users\Mateusz\AppData\Local\BitTorrentHelper 2022-07-30 21:48 - 2020-01-23 17:57 - 000000000 ____D C:\Users\Mateusz\AppData\Local\D3DSCache 2022-07-30 21:36 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2022-07-30 21:29 - 2020-02-01 00:46 - 000000000 ____D C:\Program Files (x86)\Steam 2022-07-30 20:48 - 2021-10-05 01:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Applied Acoustics Systems 2022-07-30 20:48 - 2021-10-05 01:39 - 000000000 ____D C:\Program Files (x86)\Applied Acoustics Systems 2022-07-30 20:47 - 2020-05-24 14:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Corel Paint Shop Pro Photo XI 2022-07-30 20:45 - 2020-05-29 01:26 - 000000000 ____D C:\Users\Mateusz\AppData\Local\Rockstar Games 2022-07-30 20:45 - 2020-05-29 01:23 - 000000000 ____D C:\Users\Mateusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rockstar Games 2022-07-30 20:45 - 2020-05-29 01:23 - 000000000 ____D C:\ProgramData\Rockstar Games 2022-07-30 20:45 - 2020-05-29 01:08 - 000000000 ____D C:\Program Files\Rockstar Games 2022-07-30 20:45 - 2020-05-29 01:08 - 000000000 ____D C:\Program Files (x86)\Rockstar Games 2022-07-30 20:30 - 2020-01-24 19:36 - 000000000 ____D C:\Users\Mateusz\Desktop\Emisja głosu materiały + cennik + robota 2022-07-30 11:08 - 2020-11-19 01:31 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-07-30 11:08 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-07-28 23:02 - 2020-01-27 00:38 - 000000000 ____D C:\Users\Mateusz\AppData\Roaming\Celemony Software GmbH 2022-07-27 23:51 - 2021-12-14 02:22 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-4011949360-4238493729-2261919253-1001 2022-07-27 23:51 - 2021-04-03 19:17 - 000003384 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4011949360-4238493729-2261919253-1001 2022-07-27 23:51 - 2021-04-03 18:16 - 000002433 _____ C:\Users\Mateusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-07-27 10:41 - 2020-11-19 01:31 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-07-25 14:28 - 2021-04-03 19:17 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2022-07-25 14:18 - 2021-09-11 00:10 - 000000000 ____D C:\Users\Mateusz\AppData\Local\AMD_Common 2022-07-25 14:14 - 2020-03-22 14:11 - 000000000 ____D C:\Program Files (x86)\Dropbox 2022-07-20 01:26 - 2020-04-13 22:11 - 000002307 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-07-15 02:22 - 2020-11-19 00:29 - 000298072 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2022-07-15 02:21 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog 2022-07-15 02:21 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2022-07-15 02:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2022-07-15 02:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources 2022-07-15 02:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2022-07-15 02:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup 2022-07-15 02:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2022-07-15 02:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX 2022-07-15 02:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs 2022-07-15 02:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences 2022-07-15 02:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents 2022-07-15 02:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2022-07-14 20:59 - 2020-11-19 01:31 - 003010560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2022-07-14 20:48 - 2020-01-24 18:51 - 000000000 ____D C:\WINDOWS\system32\MRT 2022-07-14 20:45 - 2020-01-24 18:51 - 146546848 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2022-07-14 15:11 - 2021-04-03 19:17 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2022-07-14 15:10 - 2022-01-18 18:27 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk 2022-07-11 12:28 - 2020-11-19 01:29 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2022-07-07 15:42 - 2020-02-11 21:35 - 000000000 ____D C:\Users\Mateusz\Desktop\Gry ==================== Pliki w katalogu głównym wybranych folderów ======== 2021-09-17 23:58 - 2021-09-18 00:01 - 000000016 _____ () C:\Users\Mateusz\AppData\Roaming\msregsvv.dll 2020-05-10 22:04 - 2020-05-10 22:04 - 000001024 _____ () C:\Users\Mateusz\AppData\Roaming\VinKayData.txt 2020-02-10 11:53 - 2020-02-10 11:53 - 000000044 _____ () C:\Users\Mateusz\AppData\Roaming\~SiMPLEX.ini 2020-03-16 17:11 - 2020-03-16 17:11 - 000000000 _____ () C:\Users\Mateusz\AppData\Local\oobelibMkey.log 2020-05-24 13:50 - 2020-05-24 13:50 - 000000878 _____ () C:\Users\Mateusz\AppData\Local\recently-used.xbel 2020-05-08 15:51 - 2020-05-08 15:51 - 000000017 _____ () C:\Users\Mateusz\AppData\Local\resmon.resmoncfg 2020-02-13 15:16 - 2020-02-13 15:16 - 000000003 _____ () C:\Users\Mateusz\AppData\Local\updater.log 2020-02-13 15:16 - 2022-03-06 15:20 - 000000424 _____ () C:\Users\Mateusz\AppData\Local\UserProducts.xml ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================