Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 01-08-2023 Uruchomiony przez ziete (administrator) NORBERT (Microsoft Corporation Surface Book 3) (03-08-2023 14:19:20) Uruchomiony z C:\Users\ziete\OneDrive\Pulpit\FRST64.exe Załadowane profile: ziete Platforma: Microsoft Windows 11 Home Wersja 22H2 22621.2070 (X64) Język: Polski (Polska) Domyślna przeglądarka: Edge Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe <2> (C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logi_crashpad_handler.exe <2> (C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_appbroker.exe (C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe (C:\Program Files\McAfee\WebAdvisor\servicehost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe (C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_1910.4.130.0_x64__8xx8rvfyw5nnt\app\Messenger.exe ->) (6E08453F-9BA7-4311-999C-D22FBA2FB1B8 -> ) C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_1910.4.130.0_x64__8xx8rvfyw5nnt\app\CrashpadHandlerWindows.exe (C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.13900.0.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\115.0.1901.188\msedgewebview2.exe <7> (C:\Users\ziete\AppData\Local\SynologyDrive\SynologyDrive.app\bin\cloud-drive-ui.exe ->) (Synology Inc. -> Synology Inc.) C:\Users\ziete\AppData\Local\SynologyDrive\SynologyDrive.app\bin\cloud-drive-connect.exe (C:\Users\ziete\AppData\Local\SynologyDrive\SynologyDrive.app\bin\cloud-drive-ui.exe ->) (Synology Inc. -> Synology Inc.) C:\Users\ziete\AppData\Local\SynologyDrive\SynologyDrive.app\bin\cloud-drive-daemon.exe (cmd.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\browserhost.exe (cmd.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WPS\1.10.252.1\extnhost\mc-extn-browserhost.exe (DriverStore\FileRepository\cui_dch.inf_amd64_60c238a4ddc866b7\igfxCUIServiceN.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_60c238a4ddc866b7\igfxEMN.exe (DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_943df24ce165050e\DAX3API.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\DAX3_S~3.INF\DAX3API.exe (dwm.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\ISM.exe (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <28> (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe (services.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_943df24ce165050e\DAX3API.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe (services.exe ->) (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe (services.exe ->) (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_60c238a4ddc866b7\igfxCUIServiceN.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_22dff82e7da0099b\OneApp.IGCC.WinService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_884878e25316eb06\IntelCpHDCPSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe (services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe (services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe (services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_943ac983dea9b81b\AS\IAS\IntelAudioService.exe (services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe (services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe (services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WPS\1.10.252.1\mc-fw-host.exe <2> (services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WPS\mok\mc-wps-secdashboardservice.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\23.147.0716.0001\FileSyncHelper.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\SurfaceUsbHubFwUpdateV2Service.exe (services.exe ->) (Microsoft Corporation -> Microsoft) C:\Program Files\WindowsApps\Microsoft.SurfaceAppProxy_5.98.139.0_x64__8wekyb3d8bbwe\Services\SurfaceBroker.exe (services.exe ->) (Microsoft Corporation -> Microsoft) C:\Program Files\WindowsApps\Microsoft.SurfaceHub_61.23060.599.0_x64__8wekyb3d8bbwe\Services\SurfaceBroker.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.9-0\MsMpEng.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmso.inf_amd64_3ebf513f1d7122db\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\hdxsstmd3a.inf_amd64_f91909e580af72a1\RtkAudUService64.exe <2> (services.exe ->) (Synology Inc. -> ) C:\Program Files (x86)\Synology\SynologyDrive\bin\vss-service-x64.exe (sihost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsCommandCenterBeta_1.100.1300.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe (svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2329.4.0_x64__cv1g1gvanyjgm\WhatsApp.exe (svchost.exe ->) (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> ) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0\SpotifyWidgetProvider.exe (svchost.exe ->) (6E08453F-9BA7-4311-999C-D22FBA2FB1B8 -> Meta Platforms, Inc.) C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_1910.4.130.0_x64__8xx8rvfyw5nnt\app\Messenger.exe (svchost.exe ->) (A968A3C5-4041-4AE5-BD55-D3C9142B72A7 -> CsConsoleWidgetProvider) C:\Program Files\WindowsApps\28944Stefanvd.BatteryDeck_1.0.3.0_x64__pe3vc7q6mjj3e\CsConsoleWidgetProvider\CsConsoleWidgetProvider.exe (svchost.exe ->) (A968A3C5-4041-4AE5-BD55-D3C9142B72A7 -> CsConsoleWidgetProvider) C:\Program Files\WindowsApps\28944Stefanvd.CPUCheck_1.1.5.0_x64__pe3vc7q6mjj3e\CsConsoleWidgetProvider\CsConsoleWidgetProvider.exe (svchost.exe ->) (A968A3C5-4041-4AE5-BD55-D3C9142B72A7 -> CsConsoleWidgetProvider) C:\Program Files\WindowsApps\28944Stefanvd.MyPersonalNotes_1.0.4.0_x64__pe3vc7q6mjj3e\CsConsoleWidgetProvider\CsConsoleWidgetProvider.exe (svchost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsCommandCenterBeta_1.100.1300.0_x64__8j3eq9eme6ctt\IGCC.exe (svchost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WPS\1.10.252.1\neo\core\mc-neo-host.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\23.147.0716.0001\FileCoAuth.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Singleton_3000.934.1904.0_x64__8wekyb3d8bbwe\PushNotificationsLongRunningTask.exe (svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.13900.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (Synology Inc. -> Synology Inc.) C:\Users\ziete\AppData\Local\SynologyDrive\SynologyDrive.app\bin\cloud-drive-ui.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [SurfaceDTX.exe] => C:\WINDOWS\System32\SurfaceDTX.exe [822744 2020-10-22] (Microsoft Corporation -> ) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\hdxsstmd3a.inf_amd64_f91909e580af72a1\RtkAudUService64.exe [835680 2021-10-12] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [MFNetworkScannerSelector] => C:\Program Files\Canon\Canon MF Network Scanner Selector\CMFNSS6.EXE [425512 2015-01-22] (CANON INC. -> CANON INC.) HKLM-x32\...\Run: [Intel Driver & Support Assistant] => C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe [292104 2023-05-10] (Intel Corporation -> Intel) HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Ograniczenia <==== UWAGA HKU\S-1-5-21-3301289381-3666867928-3763125640-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2607544 2023-08-03] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-3301289381-3666867928-3763125640-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [41572768 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) HKLM\...\Print\Monitors\Canon MFNP Port: C:\WINDOWS\system32\CNCENPM6.dll [153088 2016-06-06] (CANON INC.) [Brak podpisu cyfrowego] HKLM\...\Print\Monitors\CPCA Language Monitor3b: C:\WINDOWS\system32\CNAS0MOK.DLL [1282048 2017-10-20] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> Startup: C:\Users\ziete\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Synology Drive Client.lnk [2023-08-03] ShortcutTarget: Synology Drive Client.lnk -> C:\Program Files (x86)\Synology\SynologyDrive\bin\launcher.exe (Synology Inc. -> Synology Inc.) ==================== Zaplanowane zadania (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {2645879A-0ED4-472F-BC21-552D2BF93815} - System32\Tasks\Canon\OIPPESP\Canon OIP Product Extended Survey Program => C:\Program Files\Canon\OIPPESP\Cnpspcnt.exe [1826264 2020-07-29] (CANON INC. -> CANON INC.) -> /Config:"C:\Program Files\Canon\OIPPESP\CnpspCfg.xml" Task: {96C1699D-2FFF-4EC4-8D27-EA9AF982561A} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {BCFE2499-E9E4-41AA-A31C-43B697D76B26} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "5e93ad99-bbae-494e-86c6-f285d3cacc19" --version "6.14.10584" --silent Task: {5230327B-0C42-46EF-AF61-0E03B92EF698} - System32\Tasks\CCleanerSkipUAC - ziete => C:\Program Files\CCleaner\CCleaner.exe [34677664 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {666C9B7F-436E-4079-AF9C-58DC0602973E} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe [5158128 2023-07-27] (Microsoft Windows -> Microsoft Corporation) Task: {0DB5AC7C-97B4-49F4-B4FB-219D617419F6} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [4850904 2023-05-24] (Intel Corporation -> Intel Corporation) Task: {ACD47FB0-5180-4E47-97F1-3004470568ED} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [4850904 2023-05-24] (Intel Corporation -> Intel Corporation) Task: {00D32640-18CE-42FB-9645-00EFC99B10D1} - System32\Tasks\McAfee\McPcoScanner => C:\Program Files\McAfee\WPS\1.10.252.1\pcoscanner\mc-pco-scanner.exe [741816 2023-07-20] (McAfee, LLC -> McAfee, LLC) Task: {E89C83FE-451C-4FEA-BCD3-B8EF7E5288B9} - System32\Tasks\McAfee\WPS\amwebapitriggertask => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D Task: {F0C3B7A3-76A2-43AD-8ABD-5D5AF0E13B88} - System32\Tasks\McAfee\WPS\DAD.WPS.Execute.Updates => C:\Program Files\McAfee\WPS\1.10.252.1\dad\mc-dad.exe [4380040 2023-07-20] (McAfee, LLC -> McAfee, LLC) Task: {F1760375-3347-47DC-8DE7-510640C4C7F1} - System32\Tasks\McAfee\WPS\datupdatetask => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D Task: {3452B9CD-8535-44CF-806F-08A9E1BE7AEE} - System32\Tasks\McAfee\WPS\McAfee Sustainability => C:\Program Files\McAfee\WPS\1.10.252.1\sustainability\mc-sustainability.exe [782472 2023-07-20] (McAfee, LLC -> McAfee, LLC) Task: {75BA0D58-E927-4273-8169-D72CDEA84956} - System32\Tasks\McAfee\WPS\NGMCadence => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D Task: {1F380682-A97E-4A37-84CC-84E671D6A1F4} - System32\Tasks\McAfee\WPS\odsscheduledtask => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D Task: {F3B58A4B-E056-4435-AA23-59AB8566EB5F} - System32\Tasks\McAfee\WPS\systemrebootedtask => 1A62D23B-93C2-468A-B6B0-FFB2A23C1C0D Task: {2987B26C-77CD-45E6-95C8-38A3736BB7B1} - System32\Tasks\McAfee\WPS\Update => {81A7CB63-BB07-4DAD-8E72-07B3A9BB08E2} Task: {DF55DCD5-ED47-4B75-90C2-D63BE43BB336} - System32\Tasks\McAfee\WPS\WPSPush => \\?\C:\Program Files\McAfee\WPS\1.10.252.1\mc-wns-client\mc-wns-client.exe [828248 2023-07-20] (McAfee, LLC -> ) Task: {9AC96725-513E-497B-ADB4-FA89FF5D6C78} - System32\Tasks\Meta\Messenger-WSP-Helper-S-1-5-21-3301289381-3666867928-3763125640-1001 => C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_1910.4.130.0_x64__8xx8rvfyw5nnt\app\MessengerHelper.exe [2170616 2023-07-20] (6E08453F-9BA7-4311-999C-D22FBA2FB1B8 -> Meta Platforms, Inc.) Task: {062772B5-5F21-4989-BAE4-A131DD216B4F} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26656184 2023-08-03] (Microsoft Corporation -> Microsoft Corporation) Task: {1C52CBF5-B976-46D4-AB89-59738CBD9AD4} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26656184 2023-08-03] (Microsoft Corporation -> Microsoft Corporation) Task: {C85AB483-D194-48E3-AD4C-701535EDFF12} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [124312 2023-08-03] (Microsoft Corporation -> Microsoft Corporation) Task: {D9D64F34-EFC1-4A28-AC79-6B284CB5AC3A} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [124312 2023-08-03] (Microsoft Corporation -> Microsoft Corporation) Task: {2DA7D541-B346-4025-8F56-85AE6712AB7D} - System32\Tasks\Microsoft\Windows\Application Experience\MareBackup => Command(1): %windir%\system32\compattelrunner.exe -> -m:aeinv.dll -f:UpdateSoftwareInventoryW invsvc Task: {2DA7D541-B346-4025-8F56-85AE6712AB7D} - System32\Tasks\Microsoft\Windows\Application Experience\MareBackup => Command(2): %windir%\system32\compattelrunner.exe -> -m:appraiser.dll -f:DoScheduledTelemetryRun Task: {2DA7D541-B346-4025-8F56-85AE6712AB7D} - System32\Tasks\Microsoft\Windows\Application Experience\MareBackup => Command(3): %windir%\system32\compattelrunner.exe -> -m:aemarebackup.dll -f:BackupMareData Task: {E0BF25CC-45E1-4F89-9E02-4BAE2F009DCF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.9-0\MpCmdRun.exe [1649976 2023-07-25] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {707B8848-A8FC-4A1F-B25D-741F32C08783} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.9-0\MpCmdRun.exe [1649976 2023-07-25] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {588C0D42-CA0E-4C9C-BC00-E214F8F309D5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.9-0\MpCmdRun.exe [1649976 2023-07-25] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {E7C380ED-1B96-455A-B61F-FFD318A44CDD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.9-0\MpCmdRun.exe [1649976 2023-07-25] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {0B8022B3-2BDD-4264-A4EB-1E60F0AC5F32} - System32\Tasks\npcapwatchdog => C:\Program Files\Npcap\CheckStatus.bat [815 2022-08-18] () [Brak podpisu cyfrowego] Task: {3A5424B0-4583-4861-824A-44824C801805} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4125600 2023-08-03] (Microsoft Corporation -> Microsoft Corporation) Task: {3ED404D9-012D-4E49-A06B-BD8503FB1ED4} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3301289381-3666867928-3763125640-1000 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4125600 2023-08-03] (Microsoft Corporation -> Microsoft Corporation) Task: {5CD9EEA6-A5E1-4738-9AA7-DB1BD466FE33} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3301289381-3666867928-3763125640-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4125600 2023-08-03] (Microsoft Corporation -> Microsoft Corporation) Task: {18E75BF6-9EDA-42B6-8AF3-D127DC4EA4D1} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => C:\WINDOWS\System32\Wscript.exe [200704 2023-05-08] (Microsoft Windows -> Microsoft Corporation) -> //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs" Task: {5E5BD365-08CD-4255-A24A-2B017370F2E8} - System32\Tasks\WiseCleaner\WDCSkipUAC => C:\Program Files (x86)\Wise\Wise Disk Cleaner\WiseDiskCleaner.exe [10963448 2023-07-06] (Lespeed Technology Co., Ltd -> WiseCleaner.com) Task: {73892D54-53EA-4376-8DE0-5CF720ECA517} - System32\Tasks\WiseCleaner\WRCSkipUAC => C:\Program Files (x86)\Wise\Wise Registry Cleaner\WiseRegCleaner.exe [10737584 2023-07-20] (Lespeed Technology Co., Ltd -> WiseCleaner.com) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 78.31.90.58 Tcpip\..\Interfaces\{8a80cd2c-ede1-4f26-b614-77ce01060e61}: [DhcpNameServer] 172.22.255.68 172.22.255.86 172.22.255.206 172.22.255.204 Tcpip\..\Interfaces\{a59ac0e0-9dcf-46ff-8b65-d9b10f616aff}: [DhcpNameServer] 192.168.178.1 Tcpip\..\Interfaces\{ad030496-63fb-4da5-928e-66772f9e34ca}: [DhcpNameServer] 78.31.90.58 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\ziete\AppData\Local\Microsoft\Edge\User Data\Default [2023-08-03] Edge Notifications: Default -> hxxps://drive.google.com; hxxps://messages.google.com; hxxps://tech.wp.pl; hxxps://www.facebook.com; hxxps://www.youtube.com Edge Extension: (McAfee® WebAdvisor) - C:\Users\ziete\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fdhgeoginicibhagdmblfikbgbkahibd [2023-08-03] Edge Extension: (Szafir SDK Web) - C:\Users\ziete\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gjalhnomhafafofonpdihihjnbafkipc [2023-01-31] Edge Extension: (Chrome Remote Desktop) - C:\Users\ziete\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2023-01-31] Edge Extension: (Edge relevant text changes) - C:\Users\ziete\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-07-25] Edge Extension: (AdBlock — najlepszy bloker reklam) - C:\Users\ziete\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2023-08-03] FireFox: ======== FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-08-03] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-09-25] (Adobe Inc. -> Adobe Systems Inc.) ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11867104 2023-08-03] (Microsoft Corporation -> Microsoft Corporation) S3 DialComService; C:\Program Files (x86)\DIAL GmbH\DIAL Communication Framework\DialComService.exe [1891096 2023-01-16] (DIAL GmbH -> DIAL GmbH) R2 DolbyDAXAPI; C:\WINDOWS\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_943df24ce165050e\DAX3API.exe [2298952 2022-08-10] (Dolby Laboratories, Inc. -> Dolby Laboratories) R2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [42760 2023-05-10] (Intel Corporation -> Intel) R3 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [213256 2023-05-10] (Intel Corporation -> Intel) R3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.147.0716.0001\FileSyncHelper.exe [3447712 2023-08-03] (Microsoft Corporation -> Microsoft Corporation) R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [230352 2023-07-13] (HP Inc. -> HP Inc.) R2 IntelAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\intcoed.inf_amd64_943ac983dea9b81b\\AS\\IAS\\IntelAudioService.exe [402488 ] (Intel Corporation -> Intel) R2 mc-fw-host; C:\Program Files\McAfee\WPS\1.10.252.1\mc-fw-host.exe [2325944 2023-07-20] (McAfee, LLC -> McAfee, LLC) R2 mc-wps-secdashboardservice; C:\Program Files\McAfee\WPS\mok\mc-wps-secdashboardservice.exe [1196712 2023-05-15] (McAfee, LLC -> McAfee, LLC) S3 mc-wps-update; C:\Program Files\McAfee\WPS\1.10.252.1\mc-update.exe [5075888 2023-07-20] (McAfee, LLC -> McAfee, LLC) R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [871752 2023-07-28] (McAfee, LLC -> McAfee, LLC) S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.147.0716.0001\OneDriveUpdaterService.exe [3783600 2023-08-03] (Microsoft Corporation -> Microsoft Corporation) R2 OptionsPlusUpdaterService; C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe [17874688 2023-07-28] (Logitech Inc -> Logitech, Inc.) R2 SurfaceExperienceService-5.98; C:\Program Files\WindowsApps\Microsoft.SurfaceAppProxy_5.98.139.0_x64__8wekyb3d8bbwe\Services\SurfaceBroker.exe [8741256 2023-05-19] (Microsoft Corporation -> Microsoft) R2 SurfaceExperienceService-61.23060.599; C:\Program Files\WindowsApps\Microsoft.SurfaceHub_61.23060.599.0_x64__8wekyb3d8bbwe\Services\SurfaceBroker.exe [8741256 2023-06-20] (Microsoft Corporation -> Microsoft) R2 SurfaceUsbHubFwUpdateV2Service; C:\WINDOWS\System32\SurfaceUsbHubFwUpdateV2Service.exe [1484088 2020-02-27] (Microsoft Corporation -> Microsoft Corporation) R2 Synology Drive VSS Service x64; C:\Program Files (x86)\Synology\SynologyDrive\bin\vss-service-x64.exe [372368 2022-01-06] (Synology Inc. -> ) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.9-0\NisSrv.exe [3244928 2023-07-25] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.9-0\MsMpEng.exe [133576 2023-07-25] (Microsoft Windows Publisher -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmso.inf_amd64_3ebf513f1d7122db\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmso.inf_amd64_3ebf513f1d7122db\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 CH341SER_A64; C:\WINDOWS\System32\Drivers\CH341S64.SYS [78328 2021-08-25] (Microsoft Windows Hardware Compatibility Publisher -> www.winchiphead.com) S0 mfeelam; C:\WINDOWS\System32\DRIVERS\mfeelam.sys [18424 2023-07-20] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, LLC) R0 mfesec; C:\WINDOWS\System32\DRIVERS\mfesec.sys [82672 2023-07-20] (McAfee, LLC -> McAfee, LLC) R3 msu53cx22x64; C:\WINDOWS\System32\DriverStore\FileRepository\msu53cx22x64sta.inf_amd64_479f27199989ea2b\msu53cx22x64.sys [998264 2022-09-27] (Realtek Semiconductor Corp. -> Realtek Corporation) S3 msux64w10; C:\WINDOWS\System32\DriverStore\FileRepository\msux64w10.inf_amd64_749854ac3f28f846\msux64w10.sys [684544 2022-05-07] (Microsoft Windows -> Microsoft) R1 npcap; C:\WINDOWS\system32\DRIVERS\npcap.sys [77336 2022-08-19] (Insecure.Com LLC -> Insecure.Com LLC.) S3 npcap_wifi; C:\WINDOWS\system32\DRIVERS\npcap.sys [77336 2022-08-19] (Insecure.Com LLC -> Insecure.Com LLC.) S3 rtu52cx22x64; C:\WINDOWS\System32\DriverStore\FileRepository\rtu52cx22x64sta.inf_amd64_fd47fd9b90156e7b\rtu52cx22x64.sys [869776 2023-05-04] (Realtek Semiconductor Corp. -> Realtek Corporation) S3 rtucx22x64; C:\WINDOWS\System32\DriverStore\FileRepository\rtucx22x64.inf_amd64_a19e472f32bd1e8d\rtucx22x64.sys [1385296 2022-02-25] (Realtek Semiconductor Corp. -> Realtek Corporation) S3 rtux64w10; C:\WINDOWS\System32\DriverStore\FileRepository\rtux64w10.inf_amd64_03831aeaaa2c730e\rtux64w10.sys [683520 2022-05-07] (Microsoft Windows -> Realtek Corporation) R3 SurfaceHpmi; C:\WINDOWS\System32\drivers\SurfaceHpmi.sys [226552 2020-02-20] (Microsoft Corporation -> Microsoft Corporation) R3 SurfaceIhvCpuSmfClient; C:\WINDOWS\System32\drivers\SurfaceIhvCpuSmfClient.sys [235336 2020-02-21] (Windows OEM Test Cert 2017 (TEST ONLY) -> Microsoft Corporation) R3 SurfaceIhvGpuPowerControllerDriver; C:\WINDOWS\System32\drivers\SurfaceIhvGpuPowerControllerDriver.sys [277328 2020-02-19] (Microsoft Corporation -> Microsoft Corporation) R3 SurfaceSerialHubDriver; C:\WINDOWS\System32\DriverStore\FileRepository\surfaceserialhubdriver.inf_amd64_f531483c52451822\SurfaceSerialHubDriver.sys [366056 2021-03-08] (Microsoft Corporation -> Microsoft Corporation) R3 SurfaceSmfBaseThermalClient; C:\WINDOWS\System32\drivers\SurfaceSmfBaseThermalClient.sys [283976 2020-02-19] (Windows OEM Test Cert 2017 (TEST ONLY) -> Microsoft Corporation) R3 SurfaceSmfClient; C:\WINDOWS\System32\DriverStore\FileRepository\surfacesmfclient.inf_amd64_1fe844d8e782afe5\SurfaceSmfClient.sys [341488 2021-08-17] (Microsoft Corporation -> Microsoft Corporation) R3 SurfaceSmfDisplayClient; C:\WINDOWS\System32\DriverStore\FileRepository\surfacesmfdisplayclient.inf_amd64_a3bd5dcd17bf04fa\SurfaceSmfDisplayClient.sys [261464 2021-09-25] (Microsoft Corporation -> Microsoft Corporation) R3 SurfaceStorageFwUpdate; C:\WINDOWS\System32\DriverStore\FileRepository\surfacestoragefwupdate.inf_amd64_eb571fbd99760c85\SurfaceStorageFwUpdate.sys [10340256 2022-03-17] (Microsoft Corporation -> Microsoft Corporation) R3 SurfaceSystemManagementFrameworkDriver; C:\WINDOWS\System32\DriverStore\FileRepository\surfacesystemmanagementframeworkdriver.inf_amd64_0ef1c9363e5e5493\SurfaceSystemManagementFrameworkDriver.sys [579480 2021-07-15] (Microsoft Corporation -> Microsoft Corporation) R3 SurfaceSystemTelemetry; C:\WINDOWS\System32\DriverStore\FileRepository\surfacesystemtelemetrydriver.inf_amd64_f7c34e29476c5957\SurfaceSystemTelemetryDriver.sys [236792 2020-09-18] (Windows OEM Test Cert 2017 (TEST ONLY) -> Microsoft Corporation) R3 SurfaceThermalPolicy; C:\WINDOWS\System32\drivers\SurfaceThermalPolicy.sys [274472 2020-02-19] (Microsoft Corporation -> Microsoft Corporation) R3 SurfaceTimeAlarmAcpiFilter; C:\WINDOWS\System32\DriverStore\FileRepository\surfacetimealarmacpifilter.inf_amd64_ee1670ce010f327d\SurfaceTimeAlarmAcpiFilter.sys [230008 2020-02-21] (Windows OEM Test Cert 2017 (TEST ONLY) -> Microsoft Corporation) R3 SurfaceUsbHubFwUpdateV2; C:\WINDOWS\System32\drivers\SurfaceUsbHubFwUpdateV2.sys [52024 2020-02-27] (Microsoft Corporation -> Microsoft Corporation) R3 USBPcap; C:\WINDOWS\system32\DRIVERS\USBPcap.sys [52872 2020-05-22] (Tomasz Moń -> USBPcap) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49600 2023-07-25] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [498944 2023-07-25] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99608 2023-07-25] (Microsoft Windows -> Microsoft Corporation) S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-08-03 14:19 - 2023-08-03 14:19 - 000000000 ____D C:\FRST 2023-08-03 14:17 - 2023-08-03 14:17 - 000762630 _____ C:\WINDOWS\system32\perfh015.dat 2023-08-03 14:17 - 2023-08-03 14:17 - 000709722 _____ C:\WINDOWS\system32\perfh007.dat 2023-08-03 14:17 - 2023-08-03 14:17 - 000150494 _____ C:\WINDOWS\system32\perfc015.dat 2023-08-03 14:17 - 2023-08-03 14:17 - 000148792 _____ C:\WINDOWS\system32\perfc007.dat 2023-08-01 11:51 - 2023-08-01 11:51 - 000049666 _____ C:\Users\ziete\AppData\Local\recently-used.xbel 2023-07-29 00:09 - 2023-07-29 00:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi 2023-07-29 00:09 - 2023-07-29 00:09 - 000000000 ____D C:\Program Files\LogiOptionsPlus 2023-07-28 17:28 - 2023-07-28 17:28 - 000000000 ____D C:\Users\ziete\AppData\Roaming\Thunderbird 2023-07-28 17:28 - 2023-07-28 17:28 - 000000000 ____D C:\Users\ziete\AppData\Roaming\Mozilla 2023-07-28 17:14 - 2023-07-28 17:14 - 000001065 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thunderbird.lnk 2023-07-28 17:14 - 2023-07-28 17:14 - 000000000 ____D C:\Program Files\Mozilla Thunderbird 2023-07-28 17:14 - 2023-07-28 17:14 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2023-07-28 12:38 - 2023-07-28 12:38 - 001080160 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2023-07-28 12:38 - 2023-07-28 12:38 - 000000000 ____D C:\WINDOWS\Panther 2023-07-26 19:53 - 2023-07-26 19:53 - 001699028 _____ C:\Users\ziete\Downloads\Niepotwierdzony 257127.crdownload 2023-07-26 19:53 - 2023-07-26 19:53 - 001699028 _____ C:\Users\ziete\Downloads\Niepotwierdzony 254467.crdownload 2023-07-21 11:51 - 2023-07-21 11:51 - 000003670 _____ C:\WINDOWS\system32\Tasks\USER_ESRV_SVC_QUEENCREEK 2023-07-21 11:51 - 2023-06-28 15:27 - 000047240 _____ C:\WINDOWS\system32\Drivers\semav6msr64.sys 2023-07-18 13:11 - 2023-07-18 10:48 - 000008638 _____ C:\Users\ziete\OneDrive\Dokumenty\Zeszyt.xlsx ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-08-03 14:17 - 2023-01-30 23:15 - 002565062 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2023-08-03 14:17 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps 2023-08-03 14:17 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness 2023-08-03 14:17 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF 2023-08-03 14:13 - 2023-01-31 17:27 - 000000000 ____D C:\Users\ziete\AppData\Local\LogiOptionsPlus 2023-08-03 14:13 - 2023-01-31 11:44 - 000000000 ____D C:\Users\ziete\AppData\Local\SynologyDrive 2023-08-03 14:13 - 2023-01-30 21:02 - 000000000 ___RD C:\Users\ziete\OneDrive 2023-08-03 14:13 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp 2023-08-03 14:13 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-08-03 14:12 - 2023-01-30 23:11 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2023-08-03 14:12 - 2023-01-30 23:07 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2023-08-03 14:12 - 2023-01-30 21:06 - 000000000 __SHD C:\Users\ziete\IntelGraphicsProfiles 2023-08-03 14:12 - 2022-09-14 09:55 - 000012288 ___SH C:\DumpStack.log.tmp 2023-08-03 14:12 - 2022-09-14 09:55 - 000000000 ____D C:\Intel 2023-08-03 14:12 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase 2023-08-03 14:12 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState 2023-08-03 13:52 - 2023-01-31 12:27 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2023-08-03 13:51 - 2023-01-30 23:08 - 000000000 ____D C:\Users\ziete 2023-08-03 13:49 - 2023-03-30 14:33 - 000000000 ____D C:\Users\ziete\AppData\Local\CrashDumps 2023-08-03 13:47 - 2023-01-30 21:07 - 000000000 ____D C:\Program Files\Microsoft OneDrive 2023-08-03 13:47 - 2022-05-07 07:17 - 001048576 _____ C:\WINDOWS\system32\config\BBI 2023-08-03 13:45 - 2023-01-30 21:09 - 000000000 ____D C:\Users\ziete\AppData\Local\D3DSCache 2023-08-03 13:38 - 2023-01-31 04:06 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2023-08-03 13:36 - 2023-01-30 23:11 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3301289381-3666867928-3763125640-1001 2023-08-03 13:36 - 2023-01-30 23:11 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2023-08-03 13:36 - 2022-05-30 14:54 - 000002186 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2023-08-01 11:51 - 2023-02-02 15:53 - 000000000 ____D C:\Users\ziete\AppData\Local\babl-0.1 2023-07-31 13:39 - 2023-02-02 13:26 - 000000000 ____D C:\Users\ziete\AppData\Roaming\Microsoft\Excel 2023-07-31 13:39 - 2023-01-31 04:09 - 000000000 ____D C:\Users\ziete\AppData\Roaming\Microsoft\Word 2023-07-30 02:20 - 2022-05-30 14:06 - 000002458 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-07-29 00:09 - 2023-01-31 00:11 - 000000000 ____D C:\Users\ziete\AppData\Local\Deployment 2023-07-28 23:17 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2023-07-28 17:10 - 2023-01-31 02:10 - 000002314 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - ziete 2023-07-28 17:08 - 2023-01-31 02:10 - 000000000 ____D C:\Program Files\CCleaner 2023-07-28 16:20 - 2023-01-31 21:36 - 000000000 ____D C:\Users\ziete\AppData\Roaming\inkscape 2023-07-28 16:06 - 2023-01-31 21:36 - 000000000 ____D C:\Users\ziete\.dbus-keyrings 2023-07-28 13:18 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp 2023-07-28 12:38 - 2023-01-31 02:10 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job 2023-07-28 12:37 - 2023-01-31 13:10 - 114819072 _____ C:\WINDOWS\system32\config\SOFTWARE.bak 2023-07-28 12:37 - 2023-01-31 02:23 - 000036864 _____ C:\WINDOWS\system32\config\SECURITY.rhk 2023-07-28 12:37 - 2023-01-30 23:08 - 009961472 _____ C:\Users\ziete\NTUSER.bak 2023-07-28 12:37 - 2022-05-07 07:17 - 000946176 _____ C:\WINDOWS\system32\config\DEFAULT.bak 2023-07-28 12:37 - 2022-05-07 07:17 - 000065536 _____ C:\WINDOWS\system32\config\SAM.bak 2023-07-28 12:25 - 2023-01-31 02:18 - 000000000 ____D C:\Users\ziete\AppData\Roaming\Wise Disk Cleaner 2023-07-28 12:24 - 2023-01-31 02:10 - 000003108 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting 2023-07-28 02:42 - 2023-01-30 21:06 - 000000000 ____D C:\Users\ziete\AppData\Local\Packages 2023-07-28 02:20 - 2023-01-30 23:07 - 000001623 _____ C:\WINDOWS\system32\config\VSMIDK 2023-07-28 02:03 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate 2023-07-27 18:46 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\PrintDialog 2023-07-27 18:46 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2023-07-27 18:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\UUS 2023-07-27 18:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2023-07-27 18:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN 2023-07-27 18:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation 2023-07-27 18:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV 2023-07-27 18:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT 2023-07-27 18:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID 2023-07-27 18:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES 2023-07-27 18:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES 2023-07-27 18:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE 2023-07-27 18:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX 2023-07-27 18:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2023-07-27 18:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES 2023-07-27 18:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources 2023-07-27 18:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemApps 2023-07-27 18:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2023-07-27 18:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2023-07-27 18:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\vi-VN 2023-07-27 18:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm 2023-07-27 18:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation 2023-07-27 18:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe 2023-07-27 18:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\migwiz 2023-07-27 18:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\lv-LV 2023-07-27 18:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\lt-LT 2023-07-27 18:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\id-ID 2023-07-27 18:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient 2023-07-27 18:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\gl-ES 2023-07-27 18:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\eu-ES 2023-07-27 18:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\et-EE 2023-07-27 18:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\es-MX 2023-07-27 18:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Dism 2023-07-27 18:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\ca-ES 2023-07-27 18:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\appraiser 2023-07-27 18:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences 2023-07-27 18:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents 2023-07-27 18:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr 2023-07-27 18:46 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\appcompat 2023-07-27 18:40 - 2023-01-30 21:12 - 000918960 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe 2023-07-27 14:36 - 2023-01-30 23:11 - 003210752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2023-07-27 13:49 - 2023-02-02 15:55 - 000000000 ____D C:\Users\ziete\AppData\Local\gtk-2.0 2023-07-27 03:16 - 2023-01-30 21:07 - 000002418 _____ C:\Users\ziete\OneDrive\Dokumenty\Default.rdp 2023-07-27 03:11 - 2023-01-30 22:52 - 000000000 ____D C:\WINDOWS\system32\FxsTmp 2023-07-25 13:33 - 2023-01-31 02:10 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2023-07-25 09:59 - 2022-05-30 14:06 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2023-07-24 15:59 - 2023-01-31 04:09 - 000000000 ____D C:\Users\ziete\AppData\Roaming\Microsoft\Office 2023-07-24 11:52 - 2023-01-31 02:17 - 000000000 ____D C:\WINDOWS\system32\Tasks\WiseCleaner 2023-07-24 11:52 - 2023-01-31 02:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Registry Cleaner 2023-07-24 11:51 - 2023-01-31 02:17 - 000001303 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Disk Cleaner.lnk 2023-07-24 11:38 - 2023-06-29 16:03 - 000000000 ____D C:\WINDOWS\Minidump 2023-07-21 11:51 - 2023-01-31 17:02 - 000003762 _____ C:\WINDOWS\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 2023-07-21 11:51 - 2023-01-31 17:02 - 000003528 _____ C:\WINDOWS\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon 2023-07-20 13:33 - 2023-01-31 02:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\McAfee 2023-07-20 13:33 - 2022-05-07 07:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2023-07-20 13:32 - 2023-03-30 09:17 - 000082672 _____ (McAfee, LLC) C:\WINDOWS\system32\Drivers\mfesec.sys 2023-07-20 13:32 - 2023-03-30 09:17 - 000018424 _____ (McAfee, LLC) C:\WINDOWS\system32\Drivers\mfeelam.sys 2023-07-20 13:32 - 2023-01-30 21:06 - 000000000 ____D C:\ProgramData\Packages 2023-07-13 18:32 - 2023-02-28 02:55 - 000000000 ____D C:\Program Files\HPPrintScanDoctor 2023-07-13 18:31 - 2023-02-28 02:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP 2023-07-13 14:39 - 2023-01-30 21:15 - 000000000 ____D C:\WINDOWS\system32\MRT 2023-07-13 14:33 - 2023-01-30 21:15 - 173351160 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2023-07-13 14:29 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2023-07-13 14:29 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\setup 2023-07-13 14:29 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates 2023-07-12 12:10 - 2023-01-30 23:11 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2023-07-12 12:10 - 2023-01-30 23:11 - 000003442 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2023-07-11 14:30 - 2023-01-30 23:37 - 000000000 ____D C:\Users\ziete\AppData\Local\ElevatedDiagnostics 2023-07-07 01:01 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth 2023-07-04 18:24 - 2023-06-30 22:17 - 000000437 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics ==================== Pliki w katalogu głównym wybranych folderów ======== 2023-08-01 11:51 - 2023-08-01 11:51 - 000049666 _____ () C:\Users\ziete\AppData\Local\recently-used.xbel 2023-03-10 23:34 - 2023-06-30 02:31 - 000007606 _____ () C:\Users\ziete\AppData\Local\Resmon.ResmonCfg ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================