Untitled

Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 01-04-2022
Uruchomiony przez dms (administrator)  DESKTOP-2G94NDO (Micro-Star International Co., Ltd. MS-7C81) (04-04-2022 00:32:14)
Uruchomiony z C:\Users\dms\Downloads
Załadowane profile: dms
Platform: Microsoft Windows 10 Pro Wersja 21H2 19044.1586 (X64) Język: Polski (Polska)
Domyślna przeglądarka: Edge
Tryb startu: Normal

==================== Procesy (filtrowane) =================

(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)

() [Brak podpisu cyfrowego] C:\Program Files\Loaris Trojan Remover\RussianWarShip_9475666.exe
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\SteelSeriesEngine.exe
(Cisco Systems, Inc. -> Immunet) C:\Program Files\Immunet\7.5.0.20795\iptray.exe
(cmd.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
(Emsisoft Ltd -> Emsisoft Ltd) C:\EEK1\bin64\a2emergencykit.exe
(explorer.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(explorer.exe ->) (Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Program Files\Vivaldi\Application\vivaldi.exe <18>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <13>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe <4>
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Blizzard\Bonjour Service\mDNSResponder.exe
(services.exe ->) (CISCO SYSTEMS CANADA CO -> Cisco Systems, Inc.) C:\Program Files\Immunet\7.5.0.20795\cscm.exe
(services.exe ->) (CISCO SYSTEMS CANADA CO -> Cisco Systems, Inc.) C:\Program Files\Immunet\7.5.0.20795\sfc.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(services.exe ->) (Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(services.exe ->) (Glarysoft LTD -> Glarysoft Ltd) C:\Program Files (x86)\Common Files\Glarysoft\StartupManager\1.0\GUBootService.exe
(services.exe ->) (Glarysoft LTD -> Glarysoft Ltd) C:\Program Files (x86)\Glary Utilities 5\GUPMService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Logitech Inc -> Logitech) C:\Program Files\Logitech\LogiCapture\bin\Service\LogiFacecamService.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.63.22003.0_x64__8wekyb3d8bbwe\gamingservices.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.63.22003.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_c0e159863e7afdde\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.721.12013.0_x64__8wekyb3d8bbwe\GameBar.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.721.12013.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Rejestr (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)

HKLM\...\Run: [SteelSeriesGG] => C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe [12690768 2022-03-28] (SteelSeries ApS -> SteelSeries ApS)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2022-04-02] (Adobe Inc. -> )
HKLM-x32\...\Run: [Trend Micro RUBotted V2.0 Beta] => C:\Program Files (x86)\Trend Micro\RUBotted\RUBottedGUI.exe [1102872 2013-07-25] (Trend Micro, Inc. -> Trend Micro Inc.)
HKLM-x32\...\Run: [Immunet Protect Iptray] => C:\Program Files\Immunet\7.5.0.20795\iptray.exe [787808 2022-04-03] (Cisco Systems, Inc. -> Immunet)
HKLM\...\RunOnce: [RealProtect] => C:\Program Files\McAfee\Real Protect\RealProtect.exe [7999408 2022-04-03] (McAfee, LLC -> McAfee, LLC.)
HKU\S-1-5-21-2445553601-2003578789-1068936188-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4279208 2022-03-14] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2445553601-2003578789-1068936188-1001\...\Run: [FACEIT] => C:\Users\dms\AppData\Local\FACEIT\update.exe [2277496 2021-07-30] (FACE IT LIMITED -> )
HKU\S-1-5-21-2445553601-2003578789-1068936188-1001\...\Run: [MicrosoftEdgeAutoLaunch_80EF84D33BF504BB6E9BB21D5CD34EA9] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
HKU\S-1-5-21-2445553601-2003578789-1068936188-1001\...\Run: [Discord] => C:\Users\dms\AppData\Local\Discord\Update.exe [1512616 2022-02-17] (Discord Inc. -> GitHub)
HKLM\...\Windows x64\Print Processors\Canon MG4200 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDB9.DLL [30208 2012-03-26] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG4200 series: C:\Windows\system32\CNMLMB9.DLL [389120 2012-03-26] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\...\AppCompatFlags\Custom\ctp2.exe: [{1d565035-1520-439a-9f68-c928cfc4a27a}.sdb] -> GOG.com Call to Power 2
HKLM\Software\...\AppCompatFlags\Custom\fifartwc.exe: [{f6476ad0-bb68-44e8-9380-6b69e2253eab}.sdb] -> Fifa98 Patch
HKLM\Software\...\AppCompatFlags\InstalledSDB\{1d565035-1520-439a-9f68-c928cfc4a27a}: [DatabasePath] -> C:\Windows\AppPatch\CustomSDB\{1d565035-1520-439a-9f68-c928cfc4a27a}.sdb [2013-11-20]
HKLM\Software\...\AppCompatFlags\InstalledSDB\{f6476ad0-bb68-44e8-9380-6b69e2253eab}: [DatabasePath] -> C:\Windows\AppPatch\CustomSDB\{f6476ad0-bb68-44e8-9380-6b69e2253eab}.sdb [2011-05-12]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{9C142C0C-124C-4467-B117-EBCC62801D7B}] -> C:\Program Files\Vivaldi\Application\5.1.2567.73\Installer\chrmstp.exe [2022-03-27] (Vivaldi Technologies AS -> Vivaldi Technologies AS)
BootExecute: autocheck autochk *
GroupPolicy: Ograniczenia ? <==== UWAGA
Policies: C:\ProgramData\NTUSER.pol: Ograniczenia <==== UWAGA

==================== Zaplanowane zadania (filtrowane) ============

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

Task: {2B48BC2C-F403-42E6-BF7E-E7667B760666} - System32\Tasks\TinyTask => C:\Users\Default\Links\plugins.js [85012 2022-04-03] () [Brak podpisu cyfrowego]
Task: {DC7D15D3-B049-45B0-9F42-4E809B9D8280} - System32\Tasks\TiniTask => C:\Users\Default\Links\pluginsd.js [99134 2022-04-03] () [Brak podpisu cyfrowego]

(Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.)


==================== Internet (filtrowane) ====================

(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)

Tcpip\..\Interfaces\{5d705523-71cf-48f2-961b-d51d53aa486a}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{a1ea076f-1af6-44b0-9efe-219f4c0487da}: [DhcpNameServer] 192.168.1.1

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\dms\AppData\Local\Microsoft\Edge\User Data\Default [2022-04-04]
Edge Notifications: Default -> hxxps://track.dpd.co.uk
Edge Extension: (uBlock Origin) - C:\Users\dms\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2022-04-03]

FireFox:
========
FF DefaultProfile: et9ws6a1.default
FF ProfilePath: C:\Users\dms\AppData\Roaming\Mozilla\Firefox\Profiles\1xuwpvwk.default-beta [2022-02-07]
FF ProfilePath: C:\Users\dms\AppData\Roaming\Mozilla\Firefox\Profiles\et9ws6a1.default [2021-09-25]
FF ProfilePath: C:\Users\dms\AppData\Roaming\Mozilla\Firefox\Profiles\9x09e0eo.default-release-1646762130588 [2022-03-28]
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.14 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-03-02] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\dms\AppData\Local\Google\Chrome\User Data\Default [2022-02-07]
CHR Extension: (Prezentacje) - C:\Users\dms\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-06-28]
CHR Extension: (Kaspersky Protection) - C:\Users\dms\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2021-09-03]
CHR Extension: (Arkusze) - C:\Users\dms\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-06-28]
CHR Extension: (Dokumenty Google offline) - C:\Users\dms\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-06-28]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\dms\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-06-28]

Vivaldi:
=======
VIV DefaultProfile: Default
VIV Profile: C:\Users\dms\AppData\Local\Vivaldi\User Data\Default [2022-04-04]
VIV Notifications: Default -> hxxps://www.facebook.com; hxxps://www.netflix.com
VIV HomePage: Default -> hxxp://google.pl/
VIV Extension: (uBlock Origin) - C:\Users\dms\AppData\Local\Vivaldi\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2022-04-03]

==================== Usługi (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [6076936 2021-07-14] (BattlEye Innovations e.K. -> )
R2 Bonjour Service; C:\Program Files\Blizzard\Bonjour Service\mDNSResponder.exe [390504 2021-08-07] (Apple Inc. -> Apple Inc.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [812976 2021-07-05] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 FACEITService; C:\Program Files\FACEIT AC\faceitservice.exe [23235528 2021-12-16] (FACE IT LIMITED -> )
R2 GUBootService; C:\Program Files (x86)\Common Files\Glarysoft\StartupManager\1.0\GUBootService.exe [878464 2022-03-25] (Glarysoft LTD -> Glarysoft Ltd)
R2 GUPMService; C:\Program Files (x86)\Glary Utilities 5\GUPMService.exe [68992 2022-03-25] (Glarysoft LTD -> Glarysoft Ltd)
R2 ImmunetProtect; C:\Program Files\Immunet\7.5.0.20795\sfc.exe [2707976 2022-04-03] (CISCO SYSTEMS CANADA CO -> Cisco Systems, Inc.)
R2 ImmunetSCMS; C:\Program Files\Immunet\7.5.0.20795\cscm.exe [164432 2022-04-03] (CISCO SYSTEMS CANADA CO -> Cisco Systems, Inc.)
R2 LogiFacecamService; C:\Program Files\Logitech\LogiCapture\bin\Service\LogiFacecamService.exe [497568 2021-04-08] (Logitech Inc -> Logitech)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8348856 2022-04-03] (Malwarebytes Inc -> Malwarebytes)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2563288 2022-02-22] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3481824 2022-02-22] (Electronic Arts, Inc. -> Electronic Arts)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2021-07-01] (Even Balance, Inc. -> )
S2 RUBotSrv; C:\Program Files (x86)\Trend Micro\RUBotted\RUBotSrv.exe [443416 2013-07-25] (Trend Micro, Inc. -> Trend Micro Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6228008 2022-03-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SteelSeriesUpdateService; C:\Program Files\SteelSeries\GG\SteelSeriesUpdateService.exe [31568 2022-03-28] (SteelSeries ApS -> )
S3 ucldr_battlegrounds_gl; C:\Program Files\Common Files\UNCHEATER\ucldr_battlegrounds_gl.exe [7374576 2021-08-12] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\NisSrv.exe [3046608 2022-03-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MsMpEng.exe [132504 2022-03-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 zksvc; C:\Program Files\Common Files\PUBG\zksvc.exe [7550152 2021-08-12] (PUBG CORPORATION -> PUBG Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_c0e159863e7afdde\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_c0e159863e7afdde\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Sterowniki (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

S3 ACE-BASE; C:\Windows\system32\drivers\ACE-BASE.sys [1459384 2022-01-26] (Tencent Technology(Shenzhen) Company Limited -> ANTICHEATEXPERT.COM)
S3 ACE-GAME; C:\Windows\system32\drivers\ACE-GAME.sys [387752 2022-01-26] (Tencent Technology(Shenzhen) Company Limited -> ANTICHEATEXPERT.COM)
R2 bddci; C:\Windows\System32\Drivers\bddci.sys [153224 2022-04-03] (Bitdefender SRL -> Bitdefender)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego]
R1 CiscoAMPCEFWDriver; C:\Windows\System32\Drivers\CiscoAMPCEFWDriver.sys [48648 2022-04-03] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
S0 CiscoAMPELAMDriver; C:\Windows\System32\Drivers\CiscoAMPELAMDriver.sys [17848 2022-04-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Cisco Systems, Inc.)
R1 CiscoAMPHeurDriver; C:\Windows\System32\Drivers\CiscoAMPHeurDriver.sys [77736 2022-04-03] (Microsoft Windows Hardware Compatibility Publisher -> Cisco Systems, Inc.)
R1 CiscoSAM; C:\Windows\system32\Drivers\CiscoSAM.sys [105912 2022-04-03] (Microsoft Windows Hardware Compatibility Publisher -> Cisco Systems, Inc.)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 epp; C:\EEK\bin64\epp.sys [155112 2021-03-03] (Microsoft Windows Hardware Compatibility Publisher -> Emsisoft Ltd)
R1 EspoDriver; C:\Windows\system32\drivers\EspoDriver.sys [6169592 2022-03-08] (Esportal AB -> )
R0 FACEIT; C:\Windows\System32\Drivers\FACEIT.sys [12846128 2021-12-16] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [30720 2022-04-02] (Microsoft Windows Hardware Compatibility Publisher -> Glarysoft Ltd)
R2 ImmunetNetworkMonitorDriver; C:\Windows\System32\Drivers\ImmunetNetworkMonitor.sys [132848 2022-04-03] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
R1 ImmunetProtectDriver; C:\Windows\System32\Drivers\immunetprotect.sys [174512 2022-04-03] (Microsoft Windows Hardware Compatibility Publisher -> Cisco Systems, Inc.)
R1 ImmunetSelfProtectDriver; C:\Windows\System32\Drivers\immunetselfprotect.sys [94632 2022-04-03] (Microsoft Windows Hardware Compatibility Publisher -> Cisco Systems, Inc.)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [19912 2022-04-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2022-04-03] (Malwarebytes Inc -> Malwarebytes)
R3 ssdevfactory; C:\Windows\System32\drivers\ssdevfactory.sys [48848 2021-04-14] (SteelSeries ApS -> SteelSeries ApS)
R3 sshid; C:\Windows\system32\DRIVERS\sshid.sys [48800 2022-02-28] (SteelSeries ApS -> SteelSeries ApS)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 SteelSeries_Sonar_VAD; C:\Windows\System32\DriverStore\FileRepository\steelseries-sonar-vad.inf_amd64_6f6e907eca1efa31\SteelSeries-Sonar-VAD.sys [89568 2022-03-23] (SteelSeries ApS -> Windows (R) Win 7 DDK provider)
S3 tapprotonvpn; C:\Windows\System32\drivers\tapprotonvpn.sys [49024 2021-05-28] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R3 Trufos; C:\Windows\System32\Drivers\trufos.sys [641736 2022-04-03] (Bitdefender SRL -> Bitdefender)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [49600 2022-03-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [439544 2022-03-15] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [90360 2022-03-15] (Microsoft Windows -> Microsoft Corporation)
S3 WireGuard; C:\Windows\System32\drivers\wireguard.sys [489368 2022-02-26] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 xhunter1; C:\Windows\xhunter1.sys [2729456 2021-08-12] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)

==================== NetSvcs (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)


==================== Jeden miesiąc (utworzone) (filtrowane) =========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2022-04-04 00:32 - 2022-04-04 00:32 - 000019416 _____ C:\Users\dms\Downloads\FRST.txt
2022-04-04 00:31 - 2022-04-04 00:32 - 000000000 ____D C:\FRST
2022-04-04 00:24 - 2022-04-04 00:24 - 002365440 _____ (Farbar) C:\Users\dms\Downloads\FRST64.exe
2022-04-03 21:46 - 2022-04-03 21:46 - 000000218 _____ C:\Users\dms\AppData\Local\recently-used.xbel
2022-04-03 20:02 - 2022-04-03 20:02 - 000001085 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Lightroom Classic.lnk
2022-04-03 20:02 - 2022-04-03 20:02 - 000000000 ____D C:\Users\dms\Downloads\Adobe Illustrator 2022
2022-04-03 19:59 - 2022-04-03 19:59 - 000003542 _____ C:\Windows\system32\Tasks\TiniTask
2022-04-03 19:59 - 2022-04-03 19:59 - 000003540 _____ C:\Windows\system32\Tasks\TinyTask
2022-04-03 15:53 - 2022-04-03 15:53 - 000000994 _____ C:\Users\Public\Desktop\Immunet.lnk
2022-04-03 15:52 - 2022-04-04 00:32 - 000000000 ____D C:\Program Files\Immunet
2022-04-03 15:52 - 2022-04-03 15:53 - 000000000 ____D C:\ProgramData\Immunet
2022-04-03 15:52 - 2022-04-03 15:52 - 000641736 _____ (Bitdefender) C:\Windows\system32\Drivers\trufos.sys
2022-04-03 15:52 - 2022-04-03 15:52 - 000174512 _____ (Cisco Systems, Inc.) C:\Windows\system32\Drivers\immunetprotect.sys
2022-04-03 15:52 - 2022-04-03 15:52 - 000153224 _____ (Bitdefender) C:\Windows\system32\Drivers\bddci.sys
2022-04-03 15:52 - 2022-04-03 15:52 - 000132848 _____ (Cisco Systems, Inc.) C:\Windows\system32\Drivers\ImmunetNetworkMonitor.sys
2022-04-03 15:52 - 2022-04-03 15:52 - 000105912 _____ (Cisco Systems, Inc.) C:\Windows\system32\Drivers\CiscoSAM.sys
2022-04-03 15:52 - 2022-04-03 15:52 - 000094632 _____ (Cisco Systems, Inc.) C:\Windows\system32\Drivers\immunetselfprotect.sys
2022-04-03 15:52 - 2022-04-03 15:52 - 000077736 _____ (Cisco Systems, Inc.) C:\Windows\system32\Drivers\CiscoAMPHeurDriver.sys
2022-04-03 15:52 - 2022-04-03 15:52 - 000069528 _____ (Cisco Systems, Inc.) C:\Windows\system32\Drivers\ImmunetUtilDriver.sys
2022-04-03 15:52 - 2022-04-03 15:52 - 000048648 _____ (Cisco Systems, Inc.) C:\Windows\system32\Drivers\CiscoAMPCEFWDriver.sys
2022-04-03 15:52 - 2022-04-03 15:52 - 000017848 _____ (Cisco Systems, Inc.) C:\Windows\system32\Drivers\CiscoAMPELAMDriver.sys
2022-04-03 15:52 - 2022-04-03 15:52 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_ImmunetNetworkMonitor_01009.Wdf
2022-04-03 15:52 - 2022-04-03 15:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Immunet
2022-04-03 15:21 - 2022-04-03 15:21 - 000000000 _____ C:\Windows\WMSysPp1020
2022-04-03 13:32 - 2022-04-03 13:32 - 000000000 ____D C:\Users\dms\AppData\LocalLow\Merge Games
2022-04-03 13:30 - 2022-04-03 13:30 - 000000000 ____D C:\Users\dms\Documents\Meteorbyte Studios
2022-04-03 13:29 - 2022-04-03 13:29 - 000000000 ____D C:\Users\dms\AppData\LocalLow\Meteorbyte Studios
2022-04-03 11:44 - 2022-04-03 11:44 - 000000110 ___RH C:\Users\dms\Downloads\Stinger.opt
2022-04-03 11:33 - 2022-04-03 11:33 - 000000074 ___RH C:\Users\dms\Downloads\GetSusp.opt
2022-04-03 10:34 - 2022-04-03 11:44 - 000000000 ____D C:\Program Files\stinger
2022-04-03 10:34 - 2022-04-03 11:33 - 000000000 ____D C:\Program Files\McAfee
2022-04-03 10:19 - 2022-04-03 15:21 - 000248992 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2022-04-03 10:19 - 2022-04-03 10:19 - 000160176 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2022-04-03 10:19 - 2022-04-03 10:19 - 000019912 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamElam.sys
2022-04-03 10:19 - 2022-04-03 10:19 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2022-04-03 10:19 - 2022-04-03 10:19 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2022-04-03 10:18 - 2022-04-03 10:18 - 000000000 ____D C:\ProgramData\Malwarebytes
2022-04-03 10:18 - 2022-04-03 10:18 - 000000000 ____D C:\Program Files\Malwarebytes
2022-04-03 10:02 - 2022-04-03 10:02 - 000000955 _____ C:\Users\dms\Desktop\Arcabit Skaner Online.lnk
2022-04-03 10:02 - 2022-04-03 10:02 - 000000000 ____D C:\ProgramData\Arcabit
2022-04-03 09:12 - 2022-04-03 09:12 - 000000010 _____ C:\Users\dms\AppData\Local\sponge.last.runtime.cache
2022-04-03 09:08 - 2022-04-03 15:22 - 000000000 ____D C:\ProgramData\Trend Micro
2022-04-03 09:08 - 2022-04-03 09:08 - 000000000 ____D C:\Windows\Trend Micro
2022-04-03 09:07 - 2022-04-03 09:07 - 000000036 _____ C:\Users\dms\AppData\Local\housecall.guid.cache
2022-04-03 09:06 - 2022-04-03 09:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trend Micro RUBotted
2022-04-03 09:06 - 2022-04-03 09:06 - 000000000 ____D C:\Program Files (x86)\Trend Micro
2022-04-02 22:11 - 2022-04-02 22:11 - 000000913 _____ C:\Users\dms\Desktop\Loaris Trojan Remover.lnk
2022-04-02 22:11 - 2022-04-02 22:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Loaris Trojan Remover
2022-04-02 21:53 - 2022-04-04 00:26 - 000003780 _____ C:\Users\dms\Desktop\eset.txt
2022-04-02 17:25 - 2022-04-02 17:28 - 000000000 ____D C:\ProgramData\F-Secure
2022-04-02 17:24 - 2022-04-02 21:59 - 000000000 ____D C:\Users\dms\AppData\Local\FSDART
2022-04-02 17:24 - 2022-04-02 17:24 - 000000000 ____D C:\Users\dms\AppData\Local\F-Secure
2022-04-02 17:22 - 2022-04-02 17:22 - 000332270 _____ C:\TDSSKiller.3.1.0.28_02.04.2022_17.22.25_log.txt
2022-04-02 16:50 - 2022-04-02 16:50 - 000000000 ____D C:\TDSSKiller_Quarantine
2022-04-02 16:49 - 2022-04-02 17:21 - 000336664 _____ C:\TDSSKiller.3.1.0.28_02.04.2022_16.49.31_log.txt
2022-04-02 16:44 - 2022-04-03 13:28 - 000001274 _____ C:\Users\dms\Desktop\ESET Online Scanner.lnk
2022-04-02 15:07 - 2022-04-02 15:07 - 000000000 ____D C:\Windows\LastGood.Tmp
2022-04-02 15:06 - 2022-03-17 17:33 - 000047792 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhdap64.dll
2022-04-02 15:03 - 2022-03-18 04:10 - 001905912 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2022-04-02 15:03 - 2022-03-18 04:10 - 001905912 _____ C:\Windows\system32\vulkaninfo.exe
2022-04-02 15:03 - 2022-03-18 04:10 - 001478392 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2022-04-02 15:03 - 2022-03-18 04:10 - 001478392 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2022-04-02 15:03 - 2022-03-18 04:10 - 001432328 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2022-04-02 15:03 - 2022-03-18 04:10 - 001432328 _____ C:\Windows\system32\vulkan-1.dll
2022-04-02 15:03 - 2022-03-18 04:10 - 001209432 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2022-04-02 15:03 - 2022-03-18 04:10 - 001145616 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2022-04-02 15:03 - 2022-03-18 04:10 - 001145616 _____ C:\Windows\SysWOW64\vulkan-1.dll
2022-04-02 15:03 - 2022-03-18 04:07 - 000795728 _____ C:\Windows\system32\nvofapi64.dll
2022-04-02 15:03 - 2022-03-18 04:07 - 000715920 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2022-04-02 15:03 - 2022-03-18 04:07 - 000636504 _____ C:\Windows\SysWOW64\nvofapi.dll
2022-04-02 15:03 - 2022-03-18 04:06 - 002121664 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2022-04-02 15:03 - 2022-03-18 04:06 - 001600680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2022-04-02 15:03 - 2022-03-18 04:06 - 001529920 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2022-04-02 15:03 - 2022-03-18 04:06 - 001175696 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2022-04-02 15:03 - 2022-03-18 04:06 - 000981672 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2022-04-02 15:03 - 2022-03-18 04:06 - 000712640 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2022-04-02 15:03 - 2022-03-18 04:05 - 008610472 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2022-04-02 15:03 - 2022-03-18 04:05 - 007713856 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2022-04-02 15:03 - 2022-03-18 04:05 - 005101536 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2022-04-02 15:03 - 2022-03-18 04:05 - 000792232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2022-04-02 15:03 - 2022-03-18 04:05 - 000456848 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2022-04-02 15:03 - 2022-03-18 04:04 - 005729728 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2022-04-02 15:03 - 2022-03-18 04:03 - 000850064 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2022-04-02 15:03 - 2022-03-18 04:02 - 006458864 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2022-04-02 15:03 - 2022-03-17 17:33 - 000089337 _____ C:\Windows\system32\nvinfo.pb
2022-04-02 14:20 - 2022-04-02 15:12 - 000000000 ____D C:\Program Files (x86)\Glary Utilities 5
2022-04-02 14:20 - 2022-04-02 14:20 - 000030720 _____ (Glarysoft Ltd) C:\Windows\system32\Drivers\GUBootStartup.sys
2022-04-02 14:20 - 2022-04-02 14:20 - 000001165 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
2022-04-02 14:20 - 2022-04-02 14:20 - 000001153 _____ C:\Users\Public\Desktop\Glary Utilities 5.lnk
2022-04-02 14:20 - 2022-04-02 14:20 - 000000000 ____D C:\Users\dms\AppData\Roaming\DiskDefrag
2022-04-02 14:20 - 2022-04-02 14:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5
2022-04-02 10:29 - 2022-04-03 20:43 - 000000000 ____D C:\Users\dms\Documents\Adobe
2022-04-02 10:28 - 2022-04-02 22:28 - 000000000 ____D C:\Users\Public\Documents\Adobe
2022-03-28 13:20 - 2022-03-28 13:20 - 000000000 ____D C:\Users\dms\AppData\Local\Rufus
2022-03-26 12:29 - 2022-03-26 12:30 - 000000000 ____D C:\Users\dms\Downloads\Adobe Lightroom Cl_ic 2022
2022-03-23 22:29 - 2022-03-23 22:29 - 000000000 ____D C:\Users\dms\AppData\LocalLow\NVIDIA
2022-03-21 08:46 - 2022-03-21 08:46 - 000000000 ____D C:\Users\dms\AppData\Roaming\StreamUpdate
2022-03-20 16:55 - 2022-03-20 16:55 - 000000000 ____D C:\Users\dms\AppData\Roaming\Plcore
2022-03-20 16:55 - 2022-03-20 16:55 - 000000000 ____D C:\Users\dms\AppData\Roaming\LiveUpdate
2022-03-20 16:55 - 2022-03-20 16:55 - 000000000 ____D C:\Users\dms\AppData\Roaming\DVDFabDownloader
2022-03-20 16:54 - 2022-04-02 22:31 - 000000000 ____D C:\Program Files\DVDFab
2022-03-20 16:54 - 2022-04-02 22:30 - 000000000 ____D C:\Users\dms\AppData\Roaming\DVDFab
2022-03-20 16:54 - 2022-03-20 16:55 - 000000000 ____D C:\Users\dms\Documents\LiveUpdate
2022-03-20 16:53 - 2022-04-02 22:30 - 000000000 ____D C:\Users\dms\Documents\DVDFab
2022-03-17 16:16 - 2022-03-17 16:16 - 000002257 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Digital Editions 4.5.lnk
2022-03-17 16:16 - 2022-03-17 16:16 - 000002245 _____ C:\Users\Public\Desktop\Adobe Digital Editions 4.5.lnk
2022-03-17 16:16 - 2022-03-17 16:16 - 000000000 ____D C:\Users\dms\Documents\My Digital Editions
2022-03-17 16:16 - 2022-03-17 16:16 - 000000000 ____D C:\Users\dms\AppData\Local\Adobe_Systems_Incorporate
2022-03-17 16:16 - 2022-03-17 16:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe
2022-03-16 20:27 - 2022-04-02 14:03 - 000000000 ____D C:\Users\dms\AppData\Local\Discord
2022-03-16 20:27 - 2022-03-16 20:27 - 000002221 _____ C:\Users\dms\Desktop\Discord.lnk
2022-03-14 14:20 - 2022-03-14 14:20 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat DC.lnk
2022-03-12 15:33 - 2022-03-12 15:33 - 000000222 _____ C:\Users\dms\Desktop\Titan Quest Anniversary Edition.url
2022-03-12 12:48 - 2022-04-02 22:31 - 000000000 ____D C:\Program Files (x86)\Capcom
2022-03-11 20:31 - 2022-03-11 20:31 - 000000000 ____D C:\Users\dms\AppData\Local\Media
2022-03-11 19:13 - 2022-03-11 19:13 - 000000000 ____D C:\Users\dms\AppData\Roaming\Blizzard Entertainment
2022-03-11 19:06 - 2022-03-11 19:06 - 000000000 ____D C:\Users\dms\AppData\Local\GameAnalytics
2022-03-11 19:05 - 2022-03-11 19:05 - 000000000 ____D C:\Users\dms\Documents\SKIDROW
2022-03-11 03:45 - 2022-03-11 03:45 - 002260992 _____ C:\Windows\system32\TextInputMethodFormatter.dll
2022-03-11 03:45 - 2022-03-11 03:45 - 002254336 _____ C:\Windows\system32\dwmscene.dll
2022-03-11 03:45 - 2022-03-11 03:45 - 000272896 _____ C:\Windows\system32\TpmTool.exe
2022-03-11 03:45 - 2022-03-11 03:45 - 000223744 _____ C:\Windows\SysWOW64\TpmTool.exe
2022-03-11 03:45 - 2022-03-11 03:45 - 000195584 _____ C:\Windows\system32\uwfcfgmgmt.dll
2022-03-11 03:45 - 2022-03-11 03:45 - 000011911 _____ C:\Windows\system32\DrtmAuthTxt.wim
2022-03-11 03:42 - 2022-03-11 03:42 - 000000000 ___HD C:\$WinREAgent
2022-03-10 22:57 - 2022-03-10 22:57 - 000000000 ____D C:\Users\dms\AppData\LocalLow\Unity
2022-03-10 22:54 - 2022-03-10 22:54 - 000000000 ____D C:\Users\dms\AppData\LocalLow\Everguild
2022-03-09 19:30 - 2022-03-09 19:30 - 000000000 ____D C:\Users\dms\AppData\LocalLow\PlayFusion
2022-03-09 16:38 - 2022-03-09 16:38 - 000000000 ____D C:\Users\dms\AppData\Local\UrbanTrialTricky
2022-03-09 01:20 - 2022-03-09 01:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StarCraft II
2022-03-09 00:50 - 2022-03-20 15:07 - 000000000 ____D C:\Program Files (x86)\StarCraft II
2022-03-09 00:50 - 2022-03-11 19:18 - 000000000 ____D C:\Users\dms\Documents\StarCraft II
2022-03-08 19:01 - 2022-03-08 19:01 - 006169592 ____S C:\Windows\system32\Drivers\EspoDriver.sys
2022-03-08 19:00 - 2022-03-08 19:01 - 000000000 ____D C:\Program Files\esportal-client
2022-03-08 01:01 - 2022-03-08 01:01 - 000000000 ____D C:\Users\dms\AppData\Roaming\air.com.fs.wwiitcg
2022-03-05 17:40 - 2022-03-05 17:40 - 000000000 ____D C:\Users\dms\AppData\Local\TheAscent
2022-03-05 12:41 - 2022-04-02 22:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Ascent

==================== Jeden miesiąc (zmodyfikowane) ==================

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2022-04-04 00:31 - 2021-04-27 19:56 - 000000000 ____D C:\Program Files (x86)\Steam
2022-04-04 00:29 - 2022-01-27 17:55 - 000000000 ____D C:\Program Files\Loaris Trojan Remover
2022-04-04 00:24 - 2022-01-24 10:50 - 000000000 ____D C:\EEK1
2022-04-04 00:05 - 2021-05-08 15:31 - 000000000 ____D C:\Users\dms\AppData\Local\Battle.net
2022-04-04 00:02 - 2020-11-18 23:38 - 000000000 ____D C:\Windows\system32\SleepStudy
2022-04-03 20:50 - 2021-04-29 10:48 - 000000000 ____D C:\Users\dms\AppData\Roaming\deluge
2022-04-03 20:43 - 2021-04-28 20:29 - 000000000 ____D C:\Users\dms\AppData\Local\D3DSCache
2022-04-03 20:43 - 2021-04-27 12:09 - 000000000 ____D C:\ProgramData\Adobe
2022-04-03 20:43 - 2021-04-27 12:08 - 000000000 ____D C:\Users\dms\AppData\Local\Adobe
2022-04-03 20:43 - 2021-04-27 11:45 - 000000000 ____D C:\Users\dms\AppData\Roaming\Adobe
2022-04-03 20:02 - 2021-06-28 11:33 - 000000000 ____D C:\Program Files\Adobe
2022-04-03 19:59 - 2019-12-07 10:14 - 000000000 __SHD C:\Users\Public\Libraries
2022-04-03 19:55 - 2021-08-22 15:05 - 000000000 ____D C:\Users\dms\Documents\Fightcade
2022-04-03 18:27 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-04-03 18:15 - 2021-05-08 15:28 - 000000000 ____D C:\Program Files (x86)\Battle.net
2022-04-03 16:38 - 2021-04-27 12:09 - 000000000 ____D C:\Program Files (x86)\AIMP
2022-04-03 15:52 - 2019-12-07 10:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2022-04-03 15:29 - 2021-04-27 11:49 - 001768984 _____ C:\Windows\system32\PerfStringBackup.INI
2022-04-03 15:29 - 2019-12-07 16:09 - 000784578 _____ C:\Windows\system32\perfh015.dat
2022-04-03 15:29 - 2019-12-07 16:09 - 000152474 _____ C:\Windows\system32\perfc015.dat
2022-04-03 15:29 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2022-04-03 15:23 - 2022-01-22 17:13 - 000000445 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2022-04-03 15:21 - 2022-01-22 17:08 - 000001607 _____ C:\Windows\system32\config\VSMIDK
2022-04-03 15:21 - 2021-04-27 11:57 - 000000000 ____D C:\ProgramData\NVIDIA
2022-04-03 15:21 - 2021-04-27 11:42 - 000008192 ___SH C:\DumpStack.log.tmp
2022-04-03 15:21 - 2020-11-19 00:39 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-04-03 15:21 - 2019-12-07 10:03 - 000524288 _____ C:\Windows\system32\config\BBI
2022-04-03 13:28 - 2022-01-19 22:12 - 000001380 _____ C:\Users\dms\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2022-04-03 11:45 - 2021-05-14 12:51 - 000000000 ____D C:\Users\dms\AppData\Local\CrashDumps
2022-04-03 08:20 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2022-04-03 08:19 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-04-03 07:20 - 2020-11-19 00:41 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-04-02 22:33 - 2021-05-12 15:28 - 000000000 ____D C:\GOG Games
2022-04-02 22:32 - 2021-05-26 23:44 - 000000000 ____D C:\Program Files (x86)\Epic Games
2022-04-02 22:31 - 2022-02-26 19:13 - 000000000 ____D C:\Users\dms\AppData\Roaming\Proton Technologies AG
2022-04-02 22:31 - 2022-02-26 19:13 - 000000000 ____D C:\Program Files (x86)\Proton Technologies
2022-04-02 22:30 - 2021-11-25 13:53 - 000000000 ____D C:\Program Files (x86)\ROKA1969
2022-04-02 22:29 - 2022-01-15 23:24 - 000000000 ____D C:\Program Files\Blackmagic Design
2022-04-02 22:29 - 2021-09-30 22:37 - 000000000 ____D C:\Games
2022-04-02 22:29 - 2021-06-21 16:12 - 000000000 ____D C:\Users\dms\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EVGA
2022-04-02 22:29 - 2021-06-21 16:12 - 000000000 ____D C:\Users\dms\AppData\Roaming\EVGA
2022-04-02 22:29 - 2021-06-21 16:12 - 000000000 ____D C:\Program Files\EVGA
2022-04-02 22:29 - 2021-04-27 11:45 - 000000000 ____D C:\Users\dms\AppData\Local\Packages
2022-04-02 22:28 - 2021-06-28 11:33 - 000000000 ____D C:\Program Files\Common Files\Adobe
2022-04-02 22:25 - 2022-03-03 11:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The King of Fighters XV
2022-04-02 22:25 - 2022-01-22 13:45 - 000000000 ____D C:\Program Files (x86)\Kult Królestwa Heretyków
2022-04-02 22:25 - 2021-12-22 18:15 - 000000000 ____D C:\Users\dms\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Carom3D
2022-04-02 22:25 - 2021-06-14 19:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Midnight Commander
2022-04-02 22:25 - 2021-06-14 19:55 - 000000000 ____D C:\Program Files (x86)\Midnight Commander
2022-04-02 22:25 - 2021-04-27 11:44 - 000000000 ____D C:\Users\dms
2022-04-02 17:24 - 2021-12-11 00:13 - 000000000 ____D C:\Users\dms\AppData\Roaming\MPC-HC
2022-04-02 15:15 - 2021-04-30 21:47 - 000000000 ____D C:\Users\dms\AppData\Local\NVIDIA
2022-04-02 15:06 - 2021-04-27 11:52 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2022-04-02 14:24 - 2021-06-11 20:10 - 000000000 ____D C:\Users\dms\AppData\Roaming\Kodi
2022-04-02 14:20 - 2021-08-02 17:36 - 000000000 ____D C:\Users\dms\AppData\Roaming\GlarySoft
2022-04-02 14:04 - 2021-04-27 20:02 - 000000000 ____D C:\Users\dms\AppData\Roaming\discord
2022-04-02 10:28 - 2021-04-27 12:10 - 000000000 ____D C:\Program Files (x86)\Adobe
2022-04-02 08:51 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\LiveKernelReports
2022-03-29 19:24 - 2021-08-27 06:28 - 000000000 ____D C:\Users\dms\AppData\Roaming\steelseries-gg-client
2022-03-29 19:23 - 2021-04-27 12:05 - 000000000 ____D C:\ProgramData\SteelSeries
2022-03-29 18:47 - 2022-02-07 11:13 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-03-29 18:47 - 2022-01-21 19:41 - 000000000 ____D C:\Program Files (x86)\Ashampoo
2022-03-29 17:27 - 2021-04-27 12:00 - 000000000 ____D C:\Users\dms\AppData\LocalLow\Mozilla
2022-03-29 13:05 - 2021-05-20 12:54 - 000000000 ____D C:\EEK
2022-03-29 11:02 - 2021-04-27 12:09 - 000000000 ____D C:\Users\dms\AppData\Roaming\AIMP
2022-03-28 13:39 - 2021-09-02 11:13 - 000000844 __RSH C:\ProgramData\ntuser.pol
2022-03-28 13:08 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\GroupPolicy
2022-03-27 20:08 - 2021-04-27 12:07 - 000002212 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vivaldi.lnk
2022-03-27 20:08 - 2021-04-27 12:07 - 000002171 _____ C:\Users\Public\Desktop\Vivaldi.lnk
2022-03-27 20:08 - 2021-04-27 12:07 - 000000000 ____D C:\Program Files\Vivaldi
2022-03-26 09:45 - 2021-11-18 17:25 - 000120296 _____ (Microsoft Corporation) C:\Windows\system32\gamelaunchhelper.dll
2022-03-26 09:45 - 2021-05-08 00:27 - 002258408 _____ (Microsoft Corporation) C:\Windows\system32\xgameruntime.dll
2022-03-26 09:45 - 2021-05-08 00:27 - 000337384 _____ (Microsoft Corporation) C:\Windows\system32\gameplatformservices.dll
2022-03-26 09:45 - 2021-05-08 00:27 - 000218600 _____ (Microsoft Corporation) C:\Windows\system32\gamingservicesproxy.dll
2022-03-26 09:45 - 2021-05-08 00:27 - 000198120 _____ (Microsoft Corporation) C:\Windows\system32\gameconfighelper.dll
2022-03-26 09:45 - 2021-05-08 00:27 - 000131072 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcuihelpers.dll
2022-03-26 09:45 - 2021-05-08 00:27 - 000062952 _____ (Microsoft Corporation) C:\Windows\system32\gamemodcontrol.exe
2022-03-24 18:45 - 2021-05-08 15:38 - 000000000 ____D C:\Program Files (x86)\Hearthstone
2022-03-18 04:10 - 2021-10-09 15:59 - 001467864 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2022-03-18 04:05 - 2021-10-09 15:59 - 002931880 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2022-03-18 04:02 - 2021-04-27 11:51 - 007611808 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2022-03-17 17:33 - 2021-04-27 11:51 - 000134832 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2022-03-17 17:17 - 2021-06-27 18:59 - 000000000 ____D C:\Users\dms\Documents\My Games
2022-03-17 17:15 - 2021-10-10 12:54 - 000000000 ____D C:\Users\dms\AppData\LocalLow\THQNordic
2022-03-16 20:27 - 2021-04-27 20:02 - 000000000 ____D C:\Users\dms\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2022-03-16 20:27 - 2021-04-27 20:01 - 000000000 ____D C:\Users\dms\AppData\Local\SquirrelTemp
2022-03-15 10:36 - 2020-11-19 00:39 - 000000000 ____D C:\Windows\system32\Drivers\wd
2022-03-14 14:20 - 2021-09-25 14:48 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2022-03-12 15:33 - 2021-04-28 17:38 - 000000000 ____D C:\Users\dms\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2022-03-12 12:52 - 2021-06-21 16:12 - 000000000 ____D C:\Windows\SysWOW64\directx
2022-03-11 20:31 - 2021-06-28 22:00 - 000000000 ____D C:\Users\dms\AppData\Local\Google
2022-03-11 20:31 - 2021-04-27 12:00 - 000000000 ____D C:\Users\dms\AppData\Local\Mozilla
2022-03-11 20:13 - 2021-05-18 22:59 - 000000000 ____D C:\Users\dms\Documents\DuckStation
2022-03-11 19:14 - 2021-05-08 15:28 - 000000000 ____D C:\Users\dms\AppData\Local\Blizzard Entertainment
2022-03-11 19:13 - 2021-05-08 15:37 - 000000000 ____D C:\ProgramData\Blizzard Entertainment
2022-03-11 10:20 - 2020-11-18 23:38 - 000459176 _____ C:\Windows\system32\FNTCACHE.DAT
2022-03-11 03:47 - 2022-01-22 17:07 - 000000000 ____D C:\Program Files\Hyper-V
2022-03-11 03:47 - 2021-04-27 11:58 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2022-03-11 03:47 - 2019-12-07 16:12 - 000000000 ___SD C:\Windows\system32\AppV
2022-03-11 03:47 - 2019-12-07 16:12 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-03-11 03:47 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2022-03-11 03:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2022-03-11 03:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2022-03-11 03:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2022-03-11 03:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\migwiz
2022-03-11 03:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2022-03-11 03:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2022-03-11 03:47 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\servicing
2022-03-11 03:47 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2022-03-11 03:45 - 2020-11-19 00:41 - 002877952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2022-03-11 03:42 - 2021-04-27 11:59 - 000000000 ____D C:\Windows\system32\MRT
2022-03-11 03:40 - 2021-04-27 11:59 - 145666720 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2022-03-10 22:12 - 2021-07-03 17:37 - 000000000 ___RD C:\Users\dms\Documents\Scanned Documents
2022-03-07 20:16 - 2022-02-20 15:26 - 000000000 ____D C:\Program Files (x86)\Origin

==================== Pliki w katalogu głównym wybranych folderów ========

2021-10-20 15:59 - 2021-10-20 16:00 - 000001185 _____ () C:\Users\dms\AppData\Roaming\CascView.ini
2022-01-21 19:43 - 2022-01-21 19:43 - 000013824 _____ () C:\Users\dms\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2022-04-03 09:07 - 2022-04-03 09:07 - 000000036 _____ () C:\Users\dms\AppData\Local\housecall.guid.cache
2022-04-03 21:46 - 2022-04-03 21:46 - 000000218 _____ () C:\Users\dms\AppData\Local\recently-used.xbel
2022-02-04 12:22 - 2022-02-04 12:22 - 000007605 _____ () C:\Users\dms\AppData\Local\Resmon.ResmonCfg
2022-04-03 09:12 - 2022-04-03 09:12 - 000000010 _____ () C:\Users\dms\AppData\Local\sponge.last.runtime.cache

==================== SigCheck ============================

(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)

==================== Koniec  FRST.txt ========================