Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 15-08-2022 Uruchomiony przez 48518 (administrator) DESKTOP-EF2B9E8 (LENOVO 10A6S25000) (27-08-2022 17:26:23) Uruchomiony z C:\Users\48518\Downloads Załadowane profile: 48518 Platform: Microsoft Windows 10 Home Wersja 21H2 19044.1889 (X64) Język: Polski (Polska) Domyślna przeglądarka: FF Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe (explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe (explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) C:\Windows\System32\igfxEM.exe (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) C:\Windows\System32\igfxHK.exe (services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe (services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_e3f96af62737a898\RstMwService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Microsoft Windows -> ) C:\Windows\System32\OpenSSH\ssh-agent.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11910.1002.5.0_x64__8wekyb3d8bbwe\WinStore.App.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19677472 2020-03-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [194496 2022-08-27] (ESET, spol. s r.o. -> ESET) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\103.0.5060.134\Installer\chrmstp.exe [2022-07-22] (Google LLC -> Google LLC) HKLM\Software\Microsoft\Active Setup\Installed Components: [{9459C573-B17A-45AE-9F64-1857B5D58CEE}] -> "C:\Program Files (x86)\Microsoft\Edge\Application\104.0.1293.70\Installer\setup.exe" --configure-user-settings --verbose-logging --system-level --msedge --channel=stable ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0FBE8032-9955-4D73-9F63-083851B42E3B} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {53D7C108-1E20-465A-BD87-6027007A4891} - System32\Tasks\Opera scheduled Autoupdate 1658322091 => C:\Users\48518\AppData\Local\Programs\Opera\launcher.exe [2527216 2022-08-03] (Opera Norway AS -> Opera Software) Task: {655A5BD4-7868-4171-9D1F-7B82BC6E52A6} - System32\Tasks\Microsoft\Windows\Management\Autopilot\RemediateHardwareChange => {62B2DD2C-F129-42EE-BF59-55D3FD21C215} C:\Windows\System32\Autopilot.dll [192000 2022-08-09] (Microsoft Windows -> Microsoft Corporation) Task: {6A8D15D9-3DBE-4564-80A0-727F2BC3C73B} - System32\Tasks\GoogleUpdateTaskMachineCore{388FE84C-0A86-4CD7-9C53-16B40FF0F60B} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-07-22] (Google LLC -> Google LLC) Task: {6D234582-3512-4CDA-AB70-0E237FDD042F} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3266655915-1981900270-190188007-500 => C:\Users\48518\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe /reporting (Brak pliku) Task: {727F2664-9E05-476A-A2D3-C627FC941769} - \MicrosoftEdgeUpdateTaskMachineUA -> Brak pliku <==== UWAGA Task: {A1E315F0-8B8C-4FE9-8F44-75BD27D6AB2C} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB" Task: {B0EDB491-47B7-4ECE-8DD9-8A871B3CC328} - System32\Tasks\GoogleUpdateTaskMachineUA{627DF5C3-A2E8-462E-87F1-8FA110521596} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-07-22] (Google LLC -> Google LLC) Task: {D672D7B8-F94E-4880-8B22-431CFB2B87B4} - \MicrosoftEdgeUpdateTaskMachineCore -> Brak pliku <==== UWAGA Task: {DD0F9D03-1F4B-4DC5-8755-B8D07F0F7CE0} - System32\Tasks\Microsoft\Windows\Management\Autopilot\DetectHardwareChange => {62B2DD2C-F129-42EE-BF59-55D3FD21C215} C:\Windows\System32\Autopilot.dll [192000 2022-08-09] (Microsoft Windows -> Microsoft Corporation) Task: {E230E7AA-EB43-4617-AE8E-5A90190F533C} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3266655915-1981900270-190188007-500 => C:\Users\48518\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Brak pliku) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{abaf8c7d-4688-40b9-994d-e199f86178f2}: [DhcpNameServer] 192.168.1.1 Edge: ======= Edge Profile: C:\Users\48518\AppData\Local\Microsoft\Edge\User Data\Default [2022-08-27] FireFox: ======== FF DefaultProfile: huxr0oq7.default FF ProfilePath: C:\Users\48518\AppData\Roaming\Mozilla\Firefox\Profiles\w6yaojd8.default-release-1 [2022-08-21] FF Extension: (Polski Language Pack) - C:\Users\48518\AppData\Roaming\Mozilla\Firefox\Profiles\w6yaojd8.default-release-1\Extensions\langpack-pl@firefox.mozilla.org.xpi [2022-07-20] FF ProfilePath: C:\Users\48518\AppData\Roaming\Mozilla\Firefox\Profiles\huxr0oq7.default [2022-08-15] FF ProfilePath: C:\Users\48518\AppData\Roaming\Mozilla\Firefox\Profiles\g3eo4qhg.default-release [2022-08-27] FF Notifications: Mozilla\Firefox\Profiles\g3eo4qhg.default-release -> hxxps://www.instagram.com; hxxps://portal.tgmpanel.com; hxxps://ekspert.streetcom.pl FF Extension: (uBlock Origin) - C:\Users\48518\AppData\Roaming\Mozilla\Firefox\Profiles\g3eo4qhg.default-release\Extensions\uBlock0@raymondhill.net.xpi [2022-08-17] FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2022-08-27] Chrome: ======= CHR Profile: C:\Users\48518\AppData\Local\Google\Chrome\User Data\Default [2022-08-27] CHR Extension: (Dokumenty Google offline) - C:\Users\48518\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-07-22] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\48518\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-07-22] Opera: ======= OPR Profile: C:\Users\48518\AppData\Roaming\Opera Software\Opera Stable [2022-08-21] OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding} OPR Extension: (Rich Hints Agent) - C:\Users\48518\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2022-07-20] OPR Extension: (Opera Crypto Wallet) - C:\Users\48518\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2022-07-20] OPR Extension: (Amazon Assistant Promotion) - C:\Users\48518\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2022-07-20] StartMenuInternet: (HKU\S-1-5-21-3266655915-1981900270-190188007-1002) OperaStable - "C:\Users\48518\AppData\Local\Programs\Opera\Launcher.exe" ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4960120 2022-08-03] (AVB Disc Soft, SIA -> Disc Soft Ltd) R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [3342360 2022-08-27] (ESET, spol. s r.o. -> ESET) R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [3342360 2022-08-27] (ESET, spol. s r.o. -> ESET) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [42256 2022-08-03] (AVB Disc Soft, SIA -> Disc Soft Ltd) R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [63696 2022-08-03] (AVB Disc Soft, SIA -> Disc Soft Ltd) R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [194312 2022-08-27] (ESET, spol. s r.o. -> ESET) R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [116960 2022-06-21] (ESET, spol. s r.o. -> ESET) S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [16336 2022-08-23] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET) R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [234192 2022-06-21] (ESET, spol. s r.o. -> ESET) R2 ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [52880 2022-06-21] (ESET, spol. s r.o. -> ESET) R1 epfw; C:\Windows\system32\DRIVERS\epfw.sys [79216 2022-06-21] (ESET, spol. s r.o. -> ESET) R1 epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [119528 2022-06-21] (ESET, spol. s r.o. -> ESET) S0 iaStorVD; C:\Windows\System32\drivers\iaStorVD.sys [1421688 2020-08-17] (Intel(R) Rapid Storage Technology -> Intel Corporation) R3 LBAI; C:\Windows\System32\Drivers\LBAI.sys [23208 2017-11-13] (WDKTestCert Win10P64US,131547553407012624 -> Lenovo) S2 SecDrv; C:\Windows\SysWOW64\drivers\SECDRV.SYS [29392 2022-08-03] () [Brak podpisu cyfrowego] S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2022-08-27 17:26 - 2022-08-27 17:26 - 000011946 _____ C:\Users\48518\Downloads\FRST.txt 2022-08-27 17:26 - 2022-08-27 17:26 - 000000000 ____D C:\Users\48518\Downloads\FRST-OlderVersion 2022-08-27 17:26 - 2022-08-27 17:26 - 000000000 ____D C:\FRST 2022-08-27 17:25 - 2022-08-27 17:26 - 002371072 _____ (Farbar) C:\Users\48518\Downloads\FRST64.exe 2022-08-25 12:46 - 2022-08-27 17:24 - 000000000 ____D C:\Program Files\Mozilla Firefox 2022-08-25 00:21 - 2022-08-25 00:21 - 000000954 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FIFA 12.lnk 2022-08-25 00:21 - 2022-08-25 00:21 - 000000942 _____ C:\Users\Public\Desktop\FIFA 12.lnk 2022-08-22 23:02 - 2022-08-22 23:02 - 000000000 ____D C:\ProgramData\GOG.com 2022-08-21 16:34 - 2022-08-21 16:34 - 000000000 ____D C:\Windows\SysWOW64\Macromed 2022-08-21 15:20 - 2011-01-12 13:36 - 001054208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71u.dll 2022-08-21 15:20 - 2011-01-12 13:25 - 000065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71deu.dll 2022-08-21 15:20 - 2011-01-12 13:25 - 000061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71ita.dll 2022-08-21 15:20 - 2011-01-12 13:25 - 000061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71fra.dll 2022-08-21 15:20 - 2011-01-12 13:25 - 000061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71esp.dll 2022-08-21 15:20 - 2011-01-12 13:25 - 000057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71enu.dll 2022-08-21 15:20 - 2011-01-12 13:25 - 000049152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71kor.dll 2022-08-21 15:20 - 2011-01-12 13:25 - 000049152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71jpn.dll 2022-08-21 15:20 - 2011-01-12 13:25 - 000045056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71cht.dll 2022-08-21 15:20 - 2011-01-12 13:25 - 000040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71chs.dll 2022-08-21 15:20 - 2011-01-12 13:19 - 001060864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71.dll 2022-08-21 15:20 - 2011-01-12 12:53 - 000090112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\atl71.dll 2022-08-21 15:20 - 2007-02-01 22:13 - 000503808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp71.dll 2022-08-21 15:20 - 2007-02-01 19:11 - 000344064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll 2022-08-21 15:20 - 2007-01-30 22:04 - 000339968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr70.dll 2022-08-21 15:20 - 2006-08-26 00:28 - 001017344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70u.dll 2022-08-21 15:20 - 2006-08-26 00:15 - 000061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70ita.dll 2022-08-21 15:20 - 2006-08-26 00:15 - 000061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70fra.dll 2022-08-21 15:20 - 2006-08-26 00:15 - 000061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70esp.dll 2022-08-21 15:20 - 2006-08-26 00:15 - 000061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70deu.dll 2022-08-21 15:20 - 2006-08-26 00:15 - 000057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70enu.dll 2022-08-21 15:20 - 2006-08-26 00:15 - 000049152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70kor.dll 2022-08-21 15:20 - 2006-08-26 00:15 - 000049152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70jpn.dll 2022-08-21 15:20 - 2006-08-26 00:15 - 000045056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70cht.dll 2022-08-21 15:20 - 2006-08-26 00:15 - 000040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70chs.dll 2022-08-21 15:20 - 2006-08-26 00:07 - 001024000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70.dll 2022-08-21 15:20 - 2006-08-25 23:17 - 000086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\atl70.dll 2022-08-21 15:20 - 2005-01-20 19:25 - 000054784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvci70.dll 2022-08-21 15:20 - 2002-01-05 05:40 - 000487424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp70.dll 2022-08-21 15:20 - 2001-08-23 00:00 - 001355776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvbvm50.dll 2022-08-21 15:20 - 1996-01-12 03:00 - 000722192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vb40032.dll 2022-08-21 15:20 - 1993-07-23 19:31 - 000210944 _____ C:\Windows\SysWOW64\msvcrt10.dll 2022-08-21 13:23 - 2022-08-21 13:26 - 000000000 ____D C:\Program Files\CCleaner Professional Plus 5.82-FULL 2022-08-21 13:23 - 2022-08-21 13:23 - 000000000 ____D C:\Users\Public\Documents\Catch! 2022-08-18 01:45 - 2010-11-03 16:35 - 000782336 ____R (Creative Labs Inc.) C:\Windows\SysWOW64\tmpE448.tmp 2022-08-18 01:36 - 2010-11-03 16:35 - 000782336 ____R (Creative Labs Inc.) C:\Windows\SysWOW64\tmpCDCA.tmp 2022-08-18 01:36 - 2010-11-03 16:35 - 000782336 ____R (Creative Labs Inc.) C:\Windows\SysWOW64\tmpCDC9.tmp 2022-08-18 01:34 - 2010-11-03 16:35 - 000782336 ____R (Creative Labs Inc.) C:\Windows\SysWOW64\tmpB00B.tmp 2022-08-18 01:34 - 2010-11-03 16:35 - 000782336 ____R (Creative Labs Inc.) C:\Windows\SysWOW64\tmpAFFA.tmp 2022-08-17 20:41 - 2022-08-17 20:41 - 000000000 ____D C:\ProgramData\Intel 2022-08-14 10:23 - 2022-08-14 10:23 - 000001001 _____ C:\Users\48518\Desktop\Revo Uninstaller Pro.lnk 2022-08-14 10:23 - 2022-08-14 10:23 - 000000000 ____D C:\Users\48518\AppData\Local\VS Revo Group 2022-08-14 10:23 - 2022-08-14 10:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro 2022-08-14 10:23 - 2022-08-14 10:23 - 000000000 ____D C:\Program Files\Revo Uninstaller Pro 2022-08-14 10:23 - 2016-12-21 14:52 - 000040240 _____ (VS Revo Group) C:\Windows\system32\Drivers\revoflt.sys 2022-08-09 20:43 - 2022-08-09 20:43 - 000581120 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr 2022-08-09 20:43 - 2022-08-09 20:43 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr 2022-08-09 20:43 - 2022-08-09 20:43 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll 2022-08-09 20:43 - 2022-08-09 20:43 - 000162304 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe 2022-08-09 20:43 - 2022-08-09 20:43 - 000089088 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.proxystub.dll 2022-08-09 20:43 - 2022-08-09 20:43 - 000073216 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll 2022-08-09 20:43 - 2022-08-09 20:43 - 000060928 _____ C:\Windows\system32\runexehelper.exe 2022-08-09 20:43 - 2022-08-09 20:43 - 000011803 _____ C:\Windows\system32\DrtmAuthTxt.wim 2022-08-08 22:35 - 2022-08-08 22:39 - 000000000 ____D C:\Users\48518\AppData\LocalLow\DiamosDev 2022-08-08 22:35 - 2022-08-08 22:35 - 000000000 ____D C:\Users\48518\AppData\Roaming\DOGE 2022-08-07 13:10 - 2022-08-07 13:10 - 000000000 ____D C:\Users\48518\AppData\Roaming\Kalypso Media 2022-08-07 13:10 - 2022-08-07 13:10 - 000000000 ____D C:\Users\48518\AppData\LocalLow\Torus Games 2022-08-06 12:58 - 2022-08-06 12:58 - 000000000 ____D C:\Users\48518\AppData\Roaming\Goldberg SteamEmu Saves 2022-08-06 12:58 - 2022-08-06 12:58 - 000000000 ____D C:\Users\48518\AppData\LocalLow\CyberLab Studios 2022-08-04 14:02 - 2022-08-04 14:02 - 000000000 ____D C:\Users\48518\AppData\Roaming\Leadertech 2022-08-04 10:35 - 2022-08-12 15:59 - 000000000 ____D C:\Users\48518\Desktop\sosy 2022-08-03 12:51 - 2022-08-03 12:51 - 000029392 _____ C:\Windows\SysWOW64\Drivers\SECDRV.SYS 2022-08-03 12:49 - 2022-08-03 12:49 - 000000000 ____D C:\Users\48518\AppData\Roaming\DAEMON Tools Lite 2022-08-03 12:48 - 2022-08-03 12:48 - 000063696 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtliteusbbus.sys 2022-08-03 12:48 - 2022-08-03 12:48 - 000042256 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtlitescsibus.sys 2022-08-03 12:48 - 2022-08-03 12:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\DAEMON Tools Lite 2022-08-03 12:48 - 2022-08-03 12:48 - 000000000 ____D C:\Program Files\DAEMON Tools Lite 2022-08-02 02:46 - 2022-08-02 02:46 - 000000000 ____D C:\Users\48518\AppData\LocalLow\Bush League 2022-08-02 02:36 - 2022-08-02 02:36 - 000000000 ____D C:\ProgramData\Electronic Arts 2022-08-01 13:50 - 2022-08-01 13:50 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2022-07-31 03:37 - 2022-07-31 03:37 - 000000000 ____D C:\Users\48518\AppData\LocalLow\Red Dot Games 2022-07-29 23:46 - 2022-07-30 00:15 - 000000000 ____D C:\Users\48518\AppData\LocalLow\Microids 2022-07-29 23:46 - 2022-07-30 00:14 - 000000000 ____D C:\Users\48518\AppData\LocalLow\Anuman Interactive ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2022-08-27 17:25 - 2022-07-14 15:56 - 000000000 ____D C:\Users\48518\AppData\LocalLow\Mozilla 2022-08-27 17:25 - 2022-07-14 15:56 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2022-08-27 17:25 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-08-27 17:24 - 2022-07-20 18:25 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2022-08-27 17:24 - 2022-07-14 15:52 - 000000000 __SHD C:\Users\48518\IntelGraphicsProfiles 2022-08-27 17:24 - 2022-07-14 14:14 - 000000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2022-08-27 17:24 - 2022-07-12 12:21 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2022-08-27 17:24 - 2022-07-12 12:20 - 000008192 ___SH C:\DumpStack.log.tmp 2022-08-27 17:23 - 2019-12-07 11:03 - 000524288 _____ C:\Windows\system32\config\BBI 2022-08-27 15:14 - 2022-07-12 12:20 - 000000000 ____D C:\Windows\system32\SleepStudy 2022-08-27 14:03 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-08-27 14:03 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness 2022-08-27 12:45 - 2022-06-21 09:12 - 000194312 _____ (ESET) C:\Windows\system32\Drivers\eamonm.sys 2022-08-27 12:45 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF 2022-08-26 06:24 - 2022-07-20 18:25 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2022-08-26 06:24 - 2022-07-20 15:02 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla 2022-08-25 00:15 - 2022-07-14 17:23 - 000000000 ____D C:\GRY 2022-08-23 23:14 - 2022-07-14 15:26 - 001767980 _____ C:\Windows\system32\PerfStringBackup.INI 2022-08-23 23:14 - 2019-12-07 17:08 - 000784334 _____ C:\Windows\system32\perfh015.dat 2022-08-23 23:14 - 2019-12-07 17:08 - 000152230 _____ C:\Windows\system32\perfc015.dat 2022-08-23 23:02 - 2022-07-14 19:19 - 000000000 ____D C:\Users\48518\AppData\Local\D3DSCache 2022-08-23 12:28 - 2022-06-21 09:12 - 000016336 _____ (ESET) C:\Windows\system32\Drivers\eelam.sys 2022-08-21 15:30 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2022-08-21 15:12 - 2022-07-20 21:22 - 000000000 ____D C:\ProgramData\Package Cache 2022-08-17 20:47 - 2022-07-14 15:52 - 000000000 ____D C:\Users\48518\AppData\Local\Packages 2022-08-17 20:41 - 2022-07-14 15:54 - 000000000 ____D C:\Users\48518\AppData\Local\PlaceholderTileLogoFolder 2022-08-17 20:41 - 2022-07-14 15:52 - 000000000 ____D C:\Users\48518\AppData\Local\Publishers 2022-08-17 20:41 - 2022-07-12 12:23 - 000000000 ____D C:\ProgramData\Packages 2022-08-10 12:49 - 2022-07-12 12:20 - 000258584 _____ C:\Windows\system32\FNTCACHE.DAT 2022-08-10 12:48 - 2019-12-07 17:11 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2022-08-10 12:48 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2022-08-10 12:48 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata 2022-08-10 12:48 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism 2022-08-10 12:48 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources 2022-08-10 12:48 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinMetadata 2022-08-10 12:48 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns 2022-08-10 12:48 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe 2022-08-10 12:48 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism 2022-08-10 12:48 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellExperiences 2022-08-10 12:48 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr 2022-08-10 11:52 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp 2022-08-09 20:43 - 2022-07-12 12:21 - 003011072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll 2022-08-09 20:37 - 2022-07-14 18:34 - 000000000 ____D C:\Windows\system32\MRT 2022-08-09 20:37 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates 2022-08-09 20:35 - 2022-07-14 18:34 - 144534560 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2022-08-08 22:39 - 2022-07-20 15:01 - 000003614 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1658322091 2022-08-07 13:56 - 2022-07-14 15:48 - 000000000 ____D C:\Users\48518 2022-08-07 13:44 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\registration 2022-08-06 13:44 - 2022-07-17 11:57 - 000000000 ____D C:\ProgramData\KONAMI 2022-08-05 13:32 - 2022-07-20 15:01 - 000001412 _____ C:\Users\48518\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Przeglądarka Opera.lnk 2022-08-04 14:31 - 2019-12-07 11:03 - 000524288 _____ C:\Windows\system32\config\BBI(7) 2022-08-04 10:44 - 2022-07-14 19:16 - 000000000 ___HD C:\Windows\msdownld.tmp 2022-08-04 10:44 - 2022-07-14 19:16 - 000000000 ____D C:\Windows\SysWOW64\directx 2022-08-04 10:43 - 2019-12-07 11:10 - 000383488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll 2022-08-04 10:43 - 2019-12-07 11:10 - 000215552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplayx.dll 2022-08-04 10:43 - 2019-12-07 11:10 - 000060928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnathlp.dll 2022-08-04 10:43 - 2019-12-07 11:10 - 000045568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpwsockx.dll 2022-08-04 10:43 - 2019-12-07 11:10 - 000023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpmodemx.dll 2022-08-04 10:43 - 2019-12-07 11:10 - 000022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnsvr.exe 2022-08-04 10:43 - 2019-12-07 11:10 - 000020480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplaysvr.exe 2022-08-04 10:43 - 2019-12-07 11:10 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhupnp.dll 2022-08-04 10:43 - 2019-12-07 11:10 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhpast.dll 2022-08-04 10:43 - 2019-12-07 11:10 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnlobby.dll 2022-08-04 10:43 - 2019-12-07 11:10 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnaddr.dll 2022-08-04 10:43 - 2019-12-07 11:09 - 000494592 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll 2022-08-04 10:43 - 2019-12-07 11:09 - 000070656 _____ (Microsoft Corporation) C:\Windows\system32\dpnathlp.dll 2022-08-04 10:43 - 2019-12-07 11:09 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe 2022-08-04 10:43 - 2019-12-07 11:09 - 000010240 _____ (Microsoft Corporation) C:\Windows\system32\dpnhupnp.dll 2022-08-04 10:43 - 2019-12-07 11:09 - 000010240 _____ (Microsoft Corporation) C:\Windows\system32\dpnhpast.dll 2022-08-04 10:43 - 2019-12-07 11:09 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\dpnlobby.dll 2022-08-04 10:43 - 2019-12-07 11:09 - 000006144 _____ (Microsoft Corporation) C:\Windows\system32\dpnaddr.dll 2022-08-03 12:48 - 2022-07-15 14:27 - 000000000 ____D C:\Users\48518\AppData\Roaming\Disc-Soft 2022-08-03 12:47 - 2022-07-15 14:26 - 000000000 ____D C:\ProgramData\Disc-Soft 2022-08-02 02:14 - 2022-07-20 17:22 - 000000000 ____D C:\Program Files (x86)\Google 2022-07-30 04:41 - 2022-07-22 10:44 - 000003634 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA{627DF5C3-A2E8-462E-87F1-8FA110521596} 2022-07-30 04:41 - 2022-07-22 10:44 - 000003410 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore{388FE84C-0A86-4CD7-9C53-16B40FF0F60B} 2022-07-28 00:10 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\LiveKernelReports ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================