Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 18-07-2023 Uruchomiony przez Monika (administrator) DESKTOP-BED85OF (Dell Inc. Latitude E5470) (22-07-2023 13:44:14) Uruchomiony z C:\Users\Monika\Desktop\FRST64.exe Załadowane profile: Monika Platforma: Microsoft Windows 10 Pro Wersja 22H2 19045.3208 (X64) Język: Polski (Polska) Domyślna przeglądarka: Chrome Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (ALPS ALPINE CO., LTD. -> ALPSALPINE Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe (C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe (C:\Program Files\DellTPad\Apoint.exe ->) (ALPS ALPINE CO., LTD. -> ALPSALPINE Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe (C:\Program Files\DellTPad\Apoint.exe ->) (ALPS ELECTRIC CO., LTD. -> ALPSALPINE CO., LTD.) C:\Program Files\DellTPad\hidfind.exe (C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <4> (DriverStore\FileRepository\cui_dch.inf_amd64_e6d6f5a306002a89\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_e6d6f5a306002a89\igfxEM.exe (explorer.exe ->) (ADLICE -> ) C:\Program Files\UCheck\UCheck64.exe (explorer.exe ->) (ALPS ALPINE CO., LTD. -> ALPSALPINE Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <18> (explorer.exe ->) (Lyrha Software Technologies Inc. -> ) C:\Users\Monika\AppData\Roaming\SteamServerBrowser\SteamServerBrowser.exe (explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (explorer.exe ->) (Riot Games, Inc. -> Riot Games, Inc.) C:\Program Files\Riot Vanguard\vgtray.exe (explorer.exe ->) (Shenzhen Huion Animation Technology Co.,LTD -> ) C:\Huion Tablet\Huion Tablet\x64\TabletDriverCore.exe (explorer.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.272\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.272\GoogleCrashHandler64.exe (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel\DPTF\esif_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7> (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\23.137.0702.0001\Microsoft.SharePoint.exe (services.exe ->) ("STMicroelectronics Srl" -> ) C:\Windows\System32\drivers\DellFFDPWmiService.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe (services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe (services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (services.exe ->) (Arvato Digital Services Canada Inc -> arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe (services.exe ->) (Dell Inc -> ) C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe (services.exe ->) (FPT USA Corp. -> ) C:\Windows\System32\DellRctlService.exe (services.exe ->) (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe (services.exe ->) (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_e6d6f5a306002a89\igfxCUIService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_141eb88527011137\OneApp.IGCC.WinService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_d0b39b11619fd0c4\IntelCpHDCPSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_d0b39b11619fd0c4\IntelCpHeciSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe (services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe (services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe (services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> ) C:\Windows\System32\UshUpgradeService.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Broadcom Corporation) C:\Windows\System32\HostControlService.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Broadcom Corporation) C:\Windows\System32\HostStorageService.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\NisSrv.exe (services.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (services.exe ->) (Riot Games, Inc. -> Riot Games, Inc.) C:\Program Files\Riot Vanguard\vgc.exe (services.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe (svchost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5131.0_x64__8j3eq9eme6ctt\IGCC.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CastSrv.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [779152 2019-12-12] (ALPS ALPINE CO., LTD. -> ALPSALPINE Co., Ltd.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9230176 2018-10-08] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_MAXX6] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1489280 2018-10-08] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1489280 2018-10-08] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [WavesSvc] => C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [723928 2017-01-26] (Waves Inc -> Waves Audio Ltd.) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [320056 2019-08-13] (Intel(R) Rapid Storage Technology -> Intel Corporation) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3503584 2023-01-19] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3088752 2023-05-03] (Riot Games, Inc. -> Riot Games, Inc.) HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [1092576 2023-04-07] (Adobe Inc. -> Adobe Inc.) HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-04] (Adobe Inc. -> ) HKLM-x32\...\Run: [Intel Driver & Support Assistant] => C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe [292104 2023-05-10] (Intel Corporation -> Intel) HKLM-x32\...\Run: [Discord] => C:\ProgramData\SquirrelMachineInstalls\Discord.exe [95510296 2023-05-15] (Discord Inc. -> Discord Inc.) HKLM\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Program Files\Microsoft OneDrive\Update\OneDriveSetup.exe" HKLM\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Program Files\Microsoft OneDrive\StandaloneUpdater\OneDriveSetup.exe" HKU\S-1-5-21-3020137172-1804870369-863837663-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Monika\AppData\Local\Microsoft\Teams\Update.exe [2587320 2023-05-12] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKU\S-1-5-21-3020137172-1804870369-863837663-1001\...\Run: [TabletDriver] => C:\Huion Tablet\Huion Tablet\x64\TabletDriverCore.exe [333544 2020-10-24] (Shenzhen Huion Animation Technology Co.,LTD -> ) HKU\S-1-5-21-3020137172-1804870369-863837663-1001\...\Run: [Steam] => C:\Users\Monika\Steam\steam.exe [4371816 2023-06-22] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-3020137172-1804870369-863837663-1001\...\Run: [SteamServerBrowser] => C:\Users\Monika\AppData\Roaming\SteamServerBrowser\SteamServerBrowser.exe [289304 2023-01-31] (Lyrha Software Technologies Inc. -> ) HKU\S-1-5-21-3020137172-1804870369-863837663-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37134288 2023-05-28] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-3020137172-1804870369-863837663-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1785864 2023-07-05] (Overwolf Ltd -> Overwolf Ltd.) HKU\S-1-5-21-3020137172-1804870369-863837663-1001\...\Run: [UCheck] => C:\Program Files\UCheck\UCheck64.exe [31490992 2023-05-25] (ADLICE -> ) HKU\S-1-5-21-3020137172-1804870369-863837663-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2607536 2023-07-21] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-3020137172-1804870369-863837663-1001\...\Run: [MicrosoftEdgeAutoLaunch_C912C9CDE0175182D1A3053112C390AF] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4113856 2023-07-13] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-3020137172-1804870369-863837663-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\114.0.5735.199\Installer\chrmstp.exe [2023-06-29] (Google LLC -> Google LLC) ==================== Zaplanowane zadania (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {2A49F17A-B566-423B-BB54-B076B790A9D3} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3503584 2023-01-19] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {E0B6161F-9F74-4EE1-8014-CFD01CDC42FE} - System32\Tasks\copy_dlc_unlocker => C:\WINDOWS\system32\xcopy.exe [50688 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> /Y "C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\version.dll" "C:\Program Files\Electronic Arts\EA Desktop\StagedEADesktop\EA Desktop\*" Task: {D74C4A74-5C69-47F3-8C1F-382C820DB1F7} - System32\Tasks\GoogleUpdateTaskMachineCore{B15811BC-5ED2-446F-BDDB-6BA99090C967} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2022-11-03] (Google LLC -> Google LLC) Task: {D76688FF-374B-4B84-BE21-776551E3F636} - System32\Tasks\GoogleUpdateTaskMachineUA{867921C5-82DC-4798-B9C5-757C6BB61D9F} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2022-11-03] (Google LLC -> Google LLC) Task: {9C1EB354-ACAA-4F7D-994B-313DD07AA4BB} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [4850904 2023-05-24] (Intel Corporation -> Intel Corporation) Task: {8E2850F0-7315-4819-83DB-64F8C8ABE939} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [4850904 2023-05-24] (Intel Corporation -> Intel Corporation) Task: {A0DBEE74-B2F1-4817-8B54-07ABAC877AA6} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (Brak pliku) Task: {56D5C5A6-E5CD-4841-88AF-21DBD2DAA4B4} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21864968 2023-07-07] (Microsoft Corporation -> Microsoft Corporation) Task: {DDAF2894-E0B1-476D-BAAE-ED3B40E1A436} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21864968 2023-07-07] (Microsoft Corporation -> Microsoft Corporation) Task: {0D2305CA-1876-49B1-BC9E-EC92F1B3819E} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141280 2023-07-20] (Microsoft Corporation -> Microsoft Corporation) Task: {75644B39-7AB8-4078-A5D8-55BAC4B55FF9} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141280 2023-07-20] (Microsoft Corporation -> Microsoft Corporation) Task: {45FBD9DA-3FC8-4835-A32B-E8AF43E23477} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-14] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {DF5F39E5-10F8-440A-BC9C-318D02F2C7D0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-14] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {79A61113-0B87-478A-AF0E-516E52C0D66D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-14] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {654BE365-01C4-470D-A7E1-044B391B2C2B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-14] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {875910FD-9B2C-4E5F-A6D9-325604FCB1F9} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4125616 2023-07-21] (Microsoft Corporation -> Microsoft Corporation) Task: {FCE04D97-6B76-4E03-B005-51BE10F2FBEF} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3020137172-1804870369-863837663-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4125616 2023-07-21] (Microsoft Corporation -> Microsoft Corporation) Task: {E2FF257E-757A-45DB-A9EC-F69BE9719248} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2640904 2023-07-05] (Overwolf Ltd -> Overwolf LTD) Task: {440E9F3C-7908-4B77-9B87-78AF319D020D} - System32\Tasks\TR_AntiHijack => "C:\Program Files (x86)\Trojan Remover\TRAntiHJ.exe" (Brak pliku) Task: {8F5017CF-3D73-49C3-8BAE-2241315F7E5D} - System32\Tasks\TR_FastScan_AtLogon => C:\Program Files (x86)\Trojan Remover\Trjscan.exe [6683864 2022-10-20] (Simply Super Software -> Simply Super Software) Task: {9C1780A8-2A15-4921-AE6E-1D5312C9C423} - System32\Tasks\TR_FastScan_Daily_Monika => C:\Program Files (x86)\Trojan Remover\Trjscan.exe [6683864 2022-10-20] (Simply Super Software -> Simply Super Software) Task: {51D01FD8-6AA2-4866-81BA-123E41FF42FD} - System32\Tasks\TR_Updater => C:\Program Files (x86)\Trojan Remover\Trupd.exe [6803152 2023-05-16] (Simply Super Software -> Simply Super Software) Task: {7E31A157-F680-49BD-B417-A2D90D6BF865} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => C:\WINDOWS\System32\Wscript.exe [170496 2021-10-06] (Microsoft Windows -> Microsoft Corporation) -> //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs" Task: {27E1BE04-88F8-4444-9A5B-71C4C4308DEA} - System32\Tasks\WiseCleaner\WRCSkipUAC => C:\Program Files (x86)\Wise\Wise Registry Cleaner\WiseRegCleaner.exe [10737584 2023-07-20] (Lespeed Technology Co., Ltd -> WiseCleaner.com) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{2c911035-2446-4c29-866b-eda00e90597f}: [NameServer] 8.8.8.8,8.8.4.4 Tcpip\..\Interfaces\{60e3ace2-4bf6-4ede-9129-49c9b2b6574e}: [NameServer] 8.8.8.8,8.8.4.4,192.168.1.1 Tcpip\..\Interfaces\{60e3ace2-4bf6-4ede-9129-49c9b2b6574e}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{830c417e-be1d-4c68-946c-1a911d01248e}: [NameServer] 8.8.8.8,8.8.4.4 Tcpip\..\Interfaces\{8a2306e3-775e-42d4-b542-7c669f0208f2}: [NameServer] 8.8.8.8,8.8.4.4 Tcpip\..\Interfaces\{fee87e75-d0da-41ae-96ce-f4eb326279ed}: [NameServer] 8.8.8.8,8.8.4.4 Edge: ======= Edge DefaultProfile: Profile 1 Edge Profile: C:\Users\Monika\AppData\Local\Microsoft\Edge\User Data\Default [2023-05-14] Edge Profile: C:\Users\Monika\AppData\Local\Microsoft\Edge\User Data\Guest Profile [2023-05-14] Edge Profile: C:\Users\Monika\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2023-07-22] Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Monika\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\bojobppfploabceghnmlahpoonbcbacn [2023-07-20] Edge Extension: (alerabat.com | kupony i cashback) - C:\Users\Monika\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\dacdinoicboceafielngnmjjplncljhj [2023-07-17] Edge Extension: (VT4Browsers) - C:\Users\Monika\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\efbjojhplkelaegfbieplglfidafgoka [2023-04-14] Edge Extension: (Microsoft 365) - C:\Users\Monika\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\gggmmkjegpiggikcnhidnjjhmicpibll [2023-07-20] Edge Extension: (Absolute Enable Right Click & Copy) - C:\Users\Monika\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\jdocbkpgdakpekjlhemmfcncgdjeiika [2023-04-14] Edge Extension: (Edge relevant text changes) - C:\Users\Monika\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-05-20] Edge Extension: (Usługa zwrotu gotówki LetyShops) - C:\Users\Monika\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\lphicbbhfmllgmomkkhjfkpbdlncafbn [2023-07-16] Edge Extension: (SponsorBlock na YouTube - Pomiń fragmenty sponsorowane) - C:\Users\Monika\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\mbmgnelfcpoecdepckhlhegpcehmpmji [2023-07-20] Edge Extension: (alerabat.com | kupony i cashback) - C:\Users\Monika\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\pcajbjcmckcjacdpgmpadhmnpllndknb [2023-07-14] Edge Profile: C:\Users\Monika\AppData\Local\Microsoft\Edge\User Data\Profile 2 [2023-05-14] Edge HKLM\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn] Edge HKLM-x32\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn] FireFox: ======== FF Plugin: @java.com/DTPlugin,version=11.333.2 -> C:\Program Files\Java\jre1.8.0_333\bin\dtplugin\npDeployJava1.dll [2023-03-12] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.333.2 -> C:\Program Files\Java\jre1.8.0_333\bin\plugin2\npjp2.dll [2023-03-12] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-07-20] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2023-04-07] (Adobe Inc. -> Adobe Systems) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-05-14] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2023-04-07] (Adobe Inc. -> Adobe Systems) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default [2023-07-22] CHR Extension: (Tłumacz Google) - C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2023-05-03] CHR Extension: (uBlock Origin) - C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2023-06-13] CHR Extension: (VT4Browsers) - C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Extensions\efbjojhplkelaegfbieplglfidafgoka [2023-03-16] CHR Extension: (Dokumenty Google offline) - C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-07-20] CHR Extension: (Malwarebytes Browser Guard) - C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2023-07-19] CHR Extension: (Absolute Enable Right Click & Copy) - C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdocbkpgdakpekjlhemmfcncgdjeiika [2023-04-07] CHR Extension: (Usługa zwrotu gotówki LetyShops) - C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Extensions\lphicbbhfmllgmomkkhjfkpbdlncafbn [2023-07-16] CHR Extension: (SponsorBlock na YouTube - Pomiń fragmenty sponsorowane) - C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnjggcdmjocbbbhaepdhchncahnbgone [2023-07-20] CHR Extension: (Microsoft 365) - C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndjpnladcallmjemlbaebfadecfhkepb [2023-07-19] CHR Extension: (Wzmacniacz głośności - wzmocnienie dźwięku) - C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmigaijibiabddkkmjhlehchpmgbokfj [2023-07-19] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-31] CHR Extension: (SetupVPN - Lifetime Free VPN) - C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Default\Extensions\oofgbpoabipfcfjapgnbbjjaenockbdp [2023-07-21] CHR Profile: C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-05-14] CHR Profile: C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Profile 1 [2023-05-14] CHR Extension: (Google Docs Offline) - C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-11-11] CHR Extension: (Chrome Web Store Payments) - C:\Users\Monika\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-11-11] CHR Profile: C:\Users\Monika\AppData\Local\Google\Chrome\User Data\System Profile [2023-03-14] CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [928224 2023-04-07] (Adobe Inc. -> Adobe Inc.) R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3896288 2023-01-19] (Adobe Inc. -> Adobe Systems, Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3729888 2023-01-19] (Adobe Inc. -> Adobe Systems, Incorporated) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [15044872 2023-05-28] (BattlEye Innovations e.K. -> ) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9200552 2023-07-07] (Microsoft Corporation -> Microsoft Corporation) S3 dcpm-notify; C:\Program Files\Dell\CommandPowerManager\NotifyService.exe [86048 2017-08-16] (Dell Inc -> Dell Inc.) R2 Dell Digital Delivery Services; C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe [55712 2022-11-07] (Dell Inc -> ) S3 Dell.CommandPowerManager.Service; C:\WINDOWS\system32\dllhost.exe /Processid:{86330706-2323-418A-B0F3-8FC4C6504DA9} [21312 2021-10-06] (Microsoft Windows -> Microsoft Corporation) R2 DellFFDPWmiService; C:\WINDOWS\System32\drivers\DellFFDPWmiService.exe [41136 2020-08-28] ("STMicroelectronics Srl" -> ) R2 DellRctlService; C:\WINDOWS\system32\DellRctlService.exe [528968 2017-02-03] (FPT USA Corp. -> ) R2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [42760 2023-05-10] (Intel Corporation -> Intel) R3 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [213256 2023-05-10] (Intel Corporation -> Intel) S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [11504232 2023-07-11] (Electronic Arts, Inc. -> Electronic Arts) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [813032 2022-10-22] (EasyAntiCheat Oy -> Epic Games, Inc) S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [943528 2023-05-28] (EasyAntiCheat Oy -> Epic Games, Inc.) S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2022-07-11] (Epic Games Inc. -> Epic Games, Inc.) S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.137.0702.0001\FileSyncHelper.exe [3447712 2023-07-21] (Microsoft Corporation -> Microsoft Corporation) R2 hostcontrolsvc; C:\WINDOWS\System32\HostControlService.exe [815616 2019-12-20] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom Corporation) R2 hoststoragesvc; C:\WINDOWS\System32\HostStorageService.exe [161280 2019-12-20] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom Corporation) S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.137.0702.0001\OneDriveUpdaterService.exe [3783584 2023-07-21] (Microsoft Corporation -> Microsoft Corporation) S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2640904 2023-07-05] (Overwolf Ltd -> Overwolf LTD) R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [336824 2010-11-30] (Arvato Digital Services Canada Inc -> arvato digital services llc) S2 rkrtservice; C:\Program Files\RogueKiller\RogueKillerSvc.exe [15971760 2023-06-22] (ADLICE -> ) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [402216 2023-07-12] (Microsoft Windows Publisher -> Microsoft Corporation) R2 ushupgradesvc; C:\WINDOWS\System32\UshUpgradeService.exe [265728 2019-12-20] (Microsoft Windows Hardware Compatibility Publisher -> ) R2 vgc; C:\Program Files\Riot Vanguard\vgc.exe [11023152 2023-05-03] (Riot Games, Inc. -> Riot Games, Inc.) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\NisSrv.exe [3232576 2023-06-14] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe [133592 2023-06-14] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 bcmnfcusb; C:\WINDOWS\System32\drivers\bcmnfcusb.sys [50016 2019-12-20] (Broadcom Corporation -> Broadcom Corporation.) R3 DellRbtn; C:\WINDOWS\System32\drivers\DellRbtn.sys [22864 2016-10-27] (WDKTestCert Andy_Chen6,131219483243550933 -> OSR Open Systems Resources, Inc.) R3 DellRctl; C:\WINDOWS\System32\drivers\DellRctl.sys [42296 2017-02-28] (FPT USA Corp. -> ) S3 Hamachi; C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [45680 2022-05-18] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.) R3 MpKsl37be7370; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{A3AEC3BB-EFCF-49D9-B1E0-E59F93AD5A22}\MpKslDrv.sys [221480 2023-07-22] (Microsoft Windows -> Microsoft Corporation) S3 Revoflt; C:\WINDOWS\System32\DRIVERS\revoflt.sys [38400 2021-11-17] (Microsoft Windows Hardware Compatibility Publisher -> VS Revo Group) R1 steamxbox; C:\WINDOWS\System32\drivers\steamxbox.sys [278208 2023-02-21] (Valve Corp. -> Valve Corporation) S3 tapwindscribe0901; C:\WINDOWS\System32\drivers\tapwindscribe0901.sys [57768 2022-08-01] (Windscribe Limited -> The OpenVPN Project) R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [22676992 2023-05-03] (Riot Games, Inc. -> Riot Games, Inc.) S3 ViGEmBus; C:\WINDOWS\System32\drivers\ViGEmBus.sys [69168 2019-04-04] (Microsoft Windows Hardware Compatibility Publisher -> Benjamin Höglinger-Stelzer) R3 vmulti; C:\WINDOWS\System32\drivers\vmulti.sys [10752 2018-03-16] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) R3 wbfcvusbdrv; C:\WINDOWS\System32\Drivers\wbfcvusbdrv.sys [20320 2019-12-20] (Broadcom Corporation -> Broadcom Corporation) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2023-06-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [498944 2023-06-14] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99568 2023-06-14] (Microsoft Windows -> Microsoft Corporation) S3 windtun420; C:\WINDOWS\System32\drivers\windtun420.sys [47544 2022-08-01] (Windscribe Limited -> WireGuard LLC) S3 WireGuard; C:\WINDOWS\System32\drivers\wireguard.sys [489368 2023-07-07] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-07-22 13:44 - 2023-07-22 13:45 - 000032984 _____ C:\Users\Monika\Desktop\FRST.txt 2023-07-22 13:43 - 2023-07-22 13:44 - 000000000 ____D C:\FRST 2023-07-22 13:43 - 2023-07-22 13:43 - 008791352 _____ (Malwarebytes) C:\Users\Monika\Desktop\AdwCleaner.exe 2023-07-22 13:43 - 2023-07-22 13:43 - 002384384 _____ (Farbar) C:\Users\Monika\Desktop\FRST64.exe 2023-07-21 10:26 - 2023-07-21 10:26 - 000041920 _____ C:\WINDOWS\system32\Drivers\truesight.sys 2023-07-21 09:42 - 2023-07-21 09:42 - 000003670 _____ C:\WINDOWS\system32\Tasks\USER_ESRV_SVC_QUEENCREEK 2023-07-21 09:42 - 2023-06-28 15:27 - 000047240 _____ C:\WINDOWS\system32\Drivers\semav6msr64.sys 2023-07-20 17:08 - 2023-07-21 15:57 - 000000000 ____D C:\Program Files (x86)\Trojan Remover 2023-07-20 17:08 - 2023-07-20 17:08 - 012084552 _____ (Simply Super Software ) C:\Users\Monika\Downloads\trojan-remover-6.9.5-installer.exe 2023-07-20 17:08 - 2023-07-20 17:08 - 000004146 _____ C:\WINDOWS\system32\Tasks\TR_FastScan_Daily_Monika 2023-07-20 17:08 - 2023-07-20 17:08 - 000004004 _____ C:\WINDOWS\system32\Tasks\TR_FastScan_AtLogon 2023-07-20 17:08 - 2023-07-20 17:08 - 000003930 _____ C:\WINDOWS\system32\Tasks\TR_Updater 2023-07-20 17:08 - 2023-07-20 17:08 - 000003786 _____ C:\WINDOWS\system32\Tasks\TR_AntiHijack 2023-07-20 17:08 - 2023-07-20 17:08 - 000001227 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Trojan Remover Updater.lnk 2023-07-20 17:08 - 2023-07-20 17:08 - 000001157 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Trojan Remover FastScan.lnk 2023-07-20 17:08 - 2023-07-20 17:08 - 000000000 ____D C:\Users\Monika\Documents\Simply Super Software 2023-07-20 17:08 - 2023-07-20 17:08 - 000000000 ____D C:\ProgramData\Simply Super Software 2023-07-20 16:39 - 2023-07-20 16:39 - 000000000 ____D C:\Users\Monika\AppData\Local\VS Revo Group 2023-07-20 16:39 - 2023-07-20 16:39 - 000000000 ____D C:\ProgramData\VS Revo Group 2023-07-20 16:39 - 2023-07-20 16:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro 2023-07-20 16:39 - 2023-07-20 16:39 - 000000000 ____D C:\Program Files\VS Revo Group 2023-07-20 12:30 - 2023-07-20 13:27 - 000000000 ____D C:\ProgramData\Kaspersky Lab 2023-07-20 12:28 - 2023-07-20 12:28 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files 2023-07-20 11:00 - 2023-07-20 11:00 - 000000000 ____D C:\WINDOWS\pss 2023-07-20 09:15 - 2023-07-20 17:06 - 000000000 ____D C:\Program Files (x86)\InstallShield Installation Information 2023-07-14 15:40 - 2023-07-14 15:40 - 000000021 _____ C:\Users\Monika\AppData\Roaming\repocket-config.json 2023-07-14 15:39 - 2023-07-20 11:03 - 000000000 ____D C:\Users\Monika\AppData\Roaming\repocket-desktop 2023-07-14 15:39 - 2023-07-14 15:39 - 067803008 _____ (Repocket) C:\Users\Monika\Downloads\Repocket Setup 1.1.38.exe 2023-07-14 15:39 - 2023-07-14 15:39 - 000000000 ____D C:\Users\Monika\AppData\Local\repocket-desktop-updater 2023-07-13 21:14 - 2023-07-13 21:14 - 000002571 _____ C:\Users\Monika\Desktop\Camtasia Recorder 2022.lnk 2023-07-12 11:54 - 2023-07-12 11:54 - 000000000 ___HD C:\$WinREAgent 2023-07-07 13:56 - 2023-07-07 13:56 - 000000000 ____D C:\Users\Monika\AppData\Local\ToastNotificationManagerCompat 2023-07-04 18:34 - 2023-07-04 18:34 - 000001293 _____ C:\Users\Public\Desktop\Camtasia 2022.lnk 2023-07-04 18:34 - 2023-07-04 18:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechSmith 2023-07-04 18:34 - 2023-07-04 18:34 - 000000000 ____D C:\Program Files\TechSmith 2023-07-04 18:34 - 2023-07-04 18:34 - 000000000 ____D C:\Program Files\Common Files\TechSmith Shared 2023-07-04 18:06 - 2023-07-04 18:06 - 307368072 _____ (TechSmith Corporation) C:\Users\Monika\Downloads\camtasia-2023.0.2-installer.exe 2023-07-04 14:32 - 2023-07-04 14:32 - 000000000 ____D C:\Users\Monika\AppData\Local\__SHARED 2023-07-02 16:03 - 2023-07-02 16:14 - 000000000 ____D C:\Program Files (x86)\Peer2Profit 2023-07-02 16:03 - 2023-07-02 16:03 - 000000000 ____D C:\Users\Monika\AppData\Local\Peer2Profit 2023-07-01 14:50 - 2023-07-01 14:50 - 000000000 ____D C:\Users\Monika\AppData\Local\videocapture 2023-07-01 14:49 - 2023-07-01 14:49 - 000000000 ____D C:\Users\Monika\AppData\Local\VideoEditorPlus 2023-07-01 14:15 - 2023-07-07 14:10 - 000000000 ____D C:\ProgramData\BrightData 2023-07-01 13:58 - 2023-07-01 13:58 - 000005000 _____ C:\ProgramData\mklddvci.gqu 2023-07-01 13:58 - 2023-07-01 13:58 - 000000000 ____D C:\ProgramData\Movavi Video Editor 14 Plus 2023-07-01 13:49 - 2023-07-01 13:49 - 000000000 ____D C:\Users\Monika\AppData\Local\VideoEditor 2023-07-01 13:48 - 2023-07-01 13:49 - 000000000 ____D C:\Users\Monika\AppData\Local\Movavi 2023-07-01 11:57 - 2023-07-01 11:57 - 000049152 _____ C:\WINDOWS\system32\config\SECURITY.rhk 2023-07-01 11:53 - 2023-07-01 11:58 - 000000000 ____D C:\Users\Monika\AppData\Roaming\Wise Registry Cleaner 2023-07-01 11:52 - 2023-07-21 09:40 - 000000000 ____D C:\WINDOWS\system32\Tasks\WiseCleaner 2023-07-01 11:52 - 2023-07-21 09:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Registry Cleaner 2023-07-01 11:52 - 2023-07-01 11:52 - 000000000 ____D C:\Program Files (x86)\Wise 2023-06-24 15:42 - 2023-06-24 15:42 - 000000000 ____D C:\ProgramData\Origin ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-07-22 13:18 - 2021-12-19 23:21 - 000000000 ____D C:\WINDOWS\SystemTemp 2023-07-22 13:18 - 2021-01-31 12:01 - 000000000 ____D C:\Program Files (x86)\Google 2023-07-22 11:27 - 2023-05-08 18:12 - 000000000 ____D C:\Users\Monika\AppData\Local\Opera Software 2023-07-22 11:27 - 2020-12-09 08:55 - 000000000 ____D C:\Users\Monika\AppData\Roaming\Opera Software 2023-07-22 11:18 - 2020-12-05 16:53 - 000000000 ____D C:\Users\Monika\AppData\Local\D3DSCache 2023-07-22 10:43 - 2022-07-06 12:32 - 000000000 ____D C:\Program Files (x86)\Dell Digital Delivery Services 2023-07-22 10:41 - 2021-12-19 23:27 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2023-07-22 09:25 - 2021-12-19 23:36 - 000004226 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{09483896-A5C6-40CD-A20C-E4812424127F} 2023-07-21 21:18 - 2023-05-15 18:12 - 000002176 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2023-07-21 21:18 - 2023-05-15 18:11 - 000000000 ____D C:\Program Files\Microsoft OneDrive 2023-07-21 21:18 - 2023-05-14 15:29 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3020137172-1804870369-863837663-1001 2023-07-21 21:18 - 2023-05-14 15:28 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2023-07-21 14:22 - 2022-11-09 19:36 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData 2023-07-21 12:37 - 2020-12-04 17:06 - 000000000 ____D C:\WINDOWS\system32\MRT 2023-07-21 11:20 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2023-07-21 11:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2023-07-21 10:31 - 2023-04-06 11:35 - 000003834 _____ C:\WINDOWS\system32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 2023-07-21 10:30 - 2021-12-19 23:37 - 001772266 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2023-07-21 10:30 - 2019-12-07 17:09 - 000788292 _____ C:\WINDOWS\system32\perfh015.dat 2023-07-21 10:30 - 2019-12-07 17:09 - 000153634 _____ C:\WINDOWS\system32\perfc015.dat 2023-07-21 10:30 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2023-07-21 10:28 - 2023-03-21 14:07 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat 2023-07-21 10:26 - 2021-12-19 23:36 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2023-07-21 10:26 - 2020-12-04 17:21 - 000000000 __SHD C:\Users\Monika\IntelGraphicsProfiles 2023-07-21 10:26 - 2020-12-04 17:12 - 000000000 ____D C:\Intel 2023-07-21 10:26 - 2020-12-04 17:05 - 000398545 _____ C:\WINDOWS\system32\CVFirmwareUpgradeLog.txt 2023-07-21 10:26 - 2020-09-27 07:33 - 000008192 ___SH C:\DumpStack.log.tmp 2023-07-21 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState 2023-07-21 10:25 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2023-07-21 09:42 - 2022-01-07 13:37 - 000003762 _____ C:\WINDOWS\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 2023-07-21 09:42 - 2022-01-07 13:37 - 000003528 _____ C:\WINDOWS\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon 2023-07-21 09:40 - 2023-03-12 17:50 - 000000000 ____D C:\Users\Monika\Desktop\programy ratujące laptopa 2023-07-20 20:35 - 2023-05-14 15:14 - 000000000 ____D C:\Program Files\Microsoft Office 2023-07-20 17:58 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2023-07-20 17:10 - 2022-07-06 12:26 - 000000000 ____D C:\ProgramData\Temp 2023-07-20 16:49 - 2020-12-04 17:01 - 000000000 ____D C:\Users\Monika\AppData\Local\Packages 2023-07-20 13:18 - 2022-02-26 11:32 - 000000000 ____D C:\Users\Monika\Steam 2023-07-20 13:17 - 2021-07-28 12:54 - 000000000 ____D C:\Program Files\Common Files\AV 2023-07-20 13:17 - 2019-12-07 11:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2023-07-20 11:23 - 2021-08-26 16:14 - 000000000 ____D C:\Users\Monika\AppData\Local\Steam 2023-07-20 11:18 - 2021-12-24 16:07 - 000000000 ____D C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2023-07-20 11:02 - 2020-12-11 08:57 - 000000000 ____D C:\Users\Monika\AppData\Local\CrashDumps 2023-07-16 20:04 - 2021-03-17 16:43 - 000000000 ____D C:\Users\Monika\AppData\LocalLow\Temp 2023-07-15 11:02 - 2020-09-27 09:36 - 000002408 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-07-15 11:02 - 2020-09-27 09:36 - 000002246 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2023-07-14 10:38 - 2020-12-04 17:09 - 000914872 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe 2023-07-13 21:22 - 2023-06-01 15:40 - 000000000 ____D C:\Users\Monika\Documents\Camtasia 2023-07-13 10:50 - 2023-06-05 21:41 - 000000000 ____D C:\Users\Monika\AppData\Roaming\XuanZhi9 2023-07-13 10:50 - 2023-06-05 21:41 - 000000000 ____D C:\LDPlayer 2023-07-12 18:49 - 2023-06-05 21:43 - 000000000 ____D C:\Users\Monika\.Ld9VirtualBox 2023-07-12 12:39 - 2021-12-19 23:27 - 000696992 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2023-07-12 12:39 - 2020-12-04 17:07 - 000000000 ____D C:\Program Files\WinRAR 2023-07-12 12:38 - 2019-12-07 17:12 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2023-07-12 12:38 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2023-07-12 12:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2023-07-12 12:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources 2023-07-12 12:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup 2023-07-12 12:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates 2023-07-12 12:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2023-07-12 12:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2023-07-12 12:04 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2023-07-12 12:00 - 2021-12-19 23:30 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2023-07-12 11:49 - 2020-12-04 17:06 - 173351160 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2023-07-11 12:22 - 2021-12-19 23:36 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2023-07-11 12:22 - 2021-12-19 23:36 - 000003442 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2023-07-07 14:10 - 2023-01-29 12:23 - 000000000 ____D C:\Users\Monika\AppData\Local\BrightData 2023-07-06 17:20 - 2023-03-17 17:20 - 000000000 ____D C:\Program Files (x86)\Overwolf 2023-07-05 21:17 - 2022-08-25 15:13 - 000000515 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics 2023-07-04 18:34 - 2020-12-07 19:39 - 000000000 ____D C:\ProgramData\TechSmith 2023-07-04 18:33 - 2020-12-05 16:52 - 000000000 ____D C:\ProgramData\Package Cache 2023-07-04 18:04 - 2021-05-06 18:27 - 000000000 ____D C:\Users\Monika\AppData\Roaming\obs-studio 2023-07-04 14:54 - 2023-06-19 19:27 - 000000016 _____ C:\Users\Monika\AppData\Roaming\obs-virtualcam.txt 2023-07-04 14:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemApps 2023-07-02 12:27 - 2020-12-04 17:09 - 000000000 ____D C:\Users\Monika\AppData\Local\PlaceholderTileLogoFolder 2023-07-02 11:37 - 2023-05-14 15:28 - 000000000 ___RD C:\Users\Monika\OneDrive 2023-07-01 17:34 - 2023-03-17 17:21 - 000002319 _____ C:\Users\Monika\Desktop\CurseForge.lnk 2023-07-01 17:34 - 2022-12-29 13:37 - 000000000 ____D C:\Users\Monika\AppData\Local\Overwolf 2023-07-01 12:09 - 2023-04-23 19:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller 2023-07-01 12:09 - 2023-04-23 19:45 - 000000000 ____D C:\Program Files\RogueKiller 2023-07-01 12:07 - 2023-03-12 20:48 - 000000000 ____D C:\Users\Monika\.dbus-keyrings 2023-07-01 12:05 - 2023-05-09 17:18 - 000001052 _____ C:\Users\Public\Desktop\OBS Studio.lnk 2023-07-01 12:04 - 2023-03-11 11:13 - 000000000 ____D C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2023-07-01 12:04 - 2023-03-11 11:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2023-07-01 12:02 - 2023-03-12 17:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UCheck 2023-07-01 12:02 - 2023-03-12 17:44 - 000000000 ____D C:\Program Files\UCheck 2023-07-01 11:58 - 2023-03-11 10:36 - 129761280 _____ C:\WINDOWS\system32\config\SOFTWARE.bak 2023-07-01 11:58 - 2021-12-19 23:29 - 013631488 ____H C:\Users\Monika\NTUSER.bak 2023-07-01 11:58 - 2021-12-19 23:29 - 000000000 ____D C:\Users\Monika 2023-07-01 11:58 - 2019-12-07 11:03 - 003145728 _____ C:\WINDOWS\system32\config\DEFAULT.bak 2023-07-01 11:58 - 2019-12-07 11:03 - 000131072 _____ C:\WINDOWS\system32\config\SAM.bak 2023-06-29 10:13 - 2022-11-03 20:18 - 000002253 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2023-06-28 14:18 - 2023-06-13 11:53 - 000003622 _____ C:\WINDOWS\system32\Tasks\copy_dlc_unlocker 2023-06-26 19:15 - 2022-11-09 19:35 - 000000000 ____D C:\Program Files\Adobe 2023-06-26 19:15 - 2022-01-23 12:17 - 000000000 ___HD C:\adobeTemp 2023-06-26 19:14 - 2022-11-09 19:40 - 000000000 ___RD C:\Users\Monika\Creative Cloud Files 2023-06-23 13:37 - 2023-05-05 17:50 - 000000000 ____D C:\Users\Monika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox ==================== Pliki w katalogu głównym wybranych folderów ======== 2021-07-28 22:15 - 2021-07-28 22:15 - 000100352 _____ (Dell Inc.) C:\Users\Monika\DellInstaller_x64.exe 2021-08-07 11:58 - 2023-04-18 18:50 - 000000017 _____ () C:\Users\Monika\AppData\Roaming\.cache3678791056.dat 2021-01-16 11:49 - 2023-05-06 21:05 - 000000048 _____ () C:\Users\Monika\AppData\Roaming\.crystalinst 2023-06-05 21:43 - 2023-06-05 21:43 - 000000068 _____ () C:\Users\Monika\AppData\Roaming\changzhi_leidian.data 2023-06-19 19:27 - 2023-07-04 14:54 - 000000016 _____ () C:\Users\Monika\AppData\Roaming\obs-virtualcam.txt 2023-07-14 15:40 - 2023-07-14 15:40 - 000000021 _____ () C:\Users\Monika\AppData\Roaming\repocket-config.json 2021-03-21 18:33 - 2021-03-21 18:33 - 000000348 _____ () C:\Users\Monika\AppData\Local\karboncalligraphyrc 2021-07-26 12:09 - 2022-02-12 13:42 - 000000410 _____ () C:\Users\Monika\AppData\Local\oobelibMkey.log 2021-02-17 18:21 - 2021-02-17 18:21 - 000003377 _____ () C:\Users\Monika\AppData\Local\recently-used.xbel 2022-02-12 13:57 - 2023-03-29 18:45 - 000007599 _____ () C:\Users\Monika\AppData\Local\Resmon.ResmonCfg ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================