Witam Mam problem z plikiem dismhost.exe, który znajduję się w Folderze TEMP. Nie mogę go usunąć, w trakcie próby pojawia się info o braku prawa do pliku pomimo że jestem na zalogowany na koncie administratora. Czy ktoś może mi pomóc, doradzić co mam z tym zrobić. Dołączam Log z FRST.
Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 26-01-2022
Uruchomiony przez BO (administrator) K1 (Dell Inc. OptiPlex 3020) (28-01-2022 10:45:13)
Uruchomiony z C:\Users\BO\Downloads
Załadowane profile: BO
Platform: Microsoft Windows 10 Pro Wersja 21H1 19043.1466 (X64) Język: Polski (Polska)
Domyślna przeglądarka: Brave
Tryb startu: Normal
==================== Procesy (filtrowane) =================
(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)
(Arcabit Sp. z o.o. - & gt; ) C:\Program Files\Arcabit\bin\scanenginecon.exe
(Arcabit Sp. z o.o. - & gt; Arcabit) C:\Program Files\Arcabit\bin\arcamenu.exe
(Arcabit Sp. z o.o. - & gt; Arcabit) C:\Program Files\Arcabit\bin\arcamon.exe
(Arcabit Sp. z o.o. - & gt; Arcabit) C:\Program Files\Arcabit\bin\arcasv.exe
(Brave Software, Inc. - & gt; BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.111\BraveCrashHandler.exe
(Brave Software, Inc. - & gt; BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.111\BraveCrashHandler64.exe
(Brave Software, Inc. - & gt; BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe
(Malwarebytes Inc - & gt; Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc - & gt; Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation - & gt; Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Corporation - & gt; Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2111.12605.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2111.12605.0_x64__8wekyb3d8bbwe\Win32Bridge.Server.exe
(Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe & lt; 2 & gt;
(Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher - & gt; Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe
(Oracle America, Inc. - & gt; Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp - & gt; Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe & lt; 4 & gt;
(Realtek Semiconductor Corp - & gt; Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp - & gt; Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Riot Games, Inc. - & gt; Riot Games, Inc.) C:\Program Files\Riot Vanguard\vgtray.exe
==================== Rejestr (filtrowane) ===================
(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)
HKLM\...\Run: [RtHDVCpl] = & gt; C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8538872 2016-01-12] (Realtek Semiconductor Corp - & gt; Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] = & gt; C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1415928 2016-01-12] (Realtek Semiconductor Corp - & gt; Realtek Semiconductor)
HKLM\...\Run: [arcamenu] = & gt; C:\Program Files\Arcabit\bin\arcamenu.exe [410680 2021-03-17] (Arcabit Sp. z o.o. - & gt; Arcabit)
HKLM\...\Run: [Riot Vanguard] = & gt; C:\Program Files\Riot Vanguard\vgtray.exe [353400 2021-01-22] (Riot Games, Inc. - & gt; Riot Games, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] = & gt; C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [707256 2021-12-15] (Oracle America, Inc. - & gt; Oracle Corporation)
HKU\S-1-5-21-128860811-2758293725-1614210951-1001\...\Run: [Gaijin.Net Updater] = & gt; " C:\Users\BO\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe " (Brak pliku)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] - & gt; C:\Program Files\BraveSoftware\Brave-Browser\Application\97.1.34.81\Installer\chrmstp.exe [2022-01-21] (Brave Software, Inc. - & gt; Brave Software, Inc.)
==================== Zaplanowane zadania (filtrowane) ============
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join = & gt; C:\WINDOWS\System32\AutoWorkplace.exe join (Brak pliku)
Task: {3C6F983E-75DF-48E4-A21A-9B20048B0C7F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification = & gt; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher - & gt; Microsoft Corporation)
Task: {69DFBED2-C56B-47D3-81C5-264AD7CC8C65} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore = & gt; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162456 2021-09-12] (Brave Software, Inc. - & gt; BraveSoftware Inc.)
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task = & gt; {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {72720E4C-8893-412A-A43F-2A7D6946F6AE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup = & gt; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher - & gt; Microsoft Corporation)
Task: {7C60AFDE-BDDB-4D62-865D-AABE86EDBA39} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan = & gt; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher - & gt; Microsoft Corporation)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task = & gt; {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {9DDD3272-B880-4973-BF20-4FE17E82B585} - System32\Tasks\EOSv3 Scheduler onLogOn = & gt; C:\Users\BO\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe LOGON (Brak pliku)
Task: {AED93586-43B9-455D-951A-CF9B5AD072CF} - System32\Tasks\EOSv3 Scheduler onTime = & gt; C:\Users\BO\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe SCHED (Brak pliku)
Task: {C49CE17E-E06F-4CF6-AD4D-6623799767A2} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA = & gt; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162456 2021-09-12] (Brave Software, Inc. - & gt; BraveSoftware Inc.)
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor = & gt; {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {D9BF3C3F-5349-4C28-8AA6-8DA72287D0A5} - System32\Tasks\RtHDVBg_PushButton = & gt; C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1415928 2016-01-12] (Realtek Semiconductor Corp - & gt; Realtek Semiconductor)
Task: {EB8E14BE-80B5-45AC-8EFB-33951CE9DCFD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance = & gt; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher - & gt; Microsoft Corporation)
(Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.)
==================== Internet (filtrowane) ====================
(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)
Tcpip\Parameters: [DhcpNameServer] 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{f023348e-fdf5-4fe9-bc7b-7eadc89420e1}: [DhcpNameServer] 8.8.8.8 8.8.4.4
Edge:
=======
Edge DefaultProfile: Profile 1
Edge Profile: C:\Users\BO\AppData\Local\Microsoft\Edge\User Data\Default [2022-01-09]
Edge Profile: C:\Users\BO\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2022-01-14]
Edge Extension: (Adblock Plus - darmowy adblocker) - C:\Users\BO\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2021-12-13]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.321.2 - & gt; C:\Program Files\Java\jre1.8.0_321\bin\dtplugin\npDeployJava1.dll [2022-01-22] (Oracle America, Inc. - & gt; Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.321.2 - & gt; C:\Program Files\Java\jre1.8.0_321\bin\plugin2\npjp2.dll [2022-01-22] (Oracle America, Inc. - & gt; Oracle Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf - & gt; C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2021-09-27] (FOXIT SOFTWARE INC. - & gt; Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf - & gt; C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2021-09-27] (FOXIT SOFTWARE INC. - & gt; Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf - & gt; C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2021-09-27] (FOXIT SOFTWARE INC. - & gt; Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp - & gt; C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2021-09-27] (FOXIT SOFTWARE INC. - & gt; Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf - & gt; C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2021-09-27] (FOXIT SOFTWARE INC. - & gt; Foxit Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.321.2 - & gt; C:\Program Files (x86)\Java\jre1.8.0_321\bin\dtplugin\npDeployJava1.dll [2022-01-22] (Oracle America, Inc. - & gt; Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.321.2 - & gt; C:\Program Files (x86)\Java\jre1.8.0_321\bin\plugin2\npjp2.dll [2022-01-22] (Oracle America, Inc. - & gt; Oracle Corporation)
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
Brave:
=======
BRA Profile: C:\Users\BO\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2022-01-27]
BRA Extension: (Tłumacz Google) - C:\Users\BO\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2022-01-27]
BRA Extension: (Przelicznik walut) - C:\Users\BO\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\bnpalipgomknhgbmgelaplknnmckljaf [2022-01-23]
BRA Extension: (Smartr Job Search) - C:\Users\BO\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\eipjgljlinemofjildgfjnpohegjhefk [2022-01-23]
BRA Extension: (PDF Mage) - C:\Users\BO\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\gknphemhpcknkhegndlihchfonpdcben [2022-01-17]
BRA Extension: (AutoFill Job Application Forms) - C:\Users\BO\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\kbgfilncepjeoodogmebahnloidgaibg [2022-01-23]
BRA Extension: (Save as PDF) - C:\Users\BO\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\kpdjmbiefanbdgnkcikhllpmjnnllbbc [2021-12-23]
BRA Extension: (Asystent Marinara: Pomodoro®) - C:\Users\BO\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\lojgmehidjdhhbmpjfamhpkpodfcodef [2022-01-23]
BRA Extension: (Simplify – Autofill your job applications) - C:\Users\BO\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\pbanhockgagggenencehbnadejlgchfc [2022-01-23]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\BO\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2022-01-26]
BRA Extension: (Brave NTP background images) - C:\Users\BO\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2021-12-15]
BRA Extension: (Wallet Data Files Updater) - C:\Users\BO\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2021-11-30]
BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\BO\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2022-01-27]
BRA Extension: (Brave Tor Client Updater (Windows)) - C:\Users\BO\AppData\Local\BraveSoftware\Brave-Browser\User Data\cpoalefficncklhjfpglfiplenlpccdb [2022-01-03]
BRA Extension: (Brave Ads Resources) - C:\Users\BO\AppData\Local\BraveSoftware\Brave-Browser\User Data\fojhemdeemkcacelmecilmibcjallejo [2022-01-25]
BRA Extension: (Brave NTP sponsored images) - C:\Users\BO\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodhafecfemgejckecbnmpobnhmoaoag [2022-01-27]
BRA Extension: (Brave SpeedReader Updater) - C:\Users\BO\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2021-10-18]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\BO\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2022-01-26]
BRA Extension: (Brave Ad Block Updater (Oficjalne Polskie Filtry do AdBlocka, uBlocka Origin i AdGuarda)) - C:\Users\BO\AppData\Local\BraveSoftware\Brave-Browser\User Data\paoecjnjjbclkgbempaeemcbeldldlbo [2022-01-27]
==================== Usługi (filtrowane) ===================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
R2 arcabitsv; C:\Program Files\Arcabit\bin\arcasv.exe [4258912 2020-10-05] (Arcabit Sp. z o.o. - & gt; Arcabit)
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162456 2021-09-12] (Brave Software, Inc. - & gt; BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162456 2021-09-12] (Brave Software, Inc. - & gt; BraveSoftware Inc.)
S2 FoxitReaderUpdateService; C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe [2363000 2021-09-24] (FOXIT SOFTWARE INC. - & gt; Foxit Software Inc.)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1959776 2022-01-04] (GOG Sp. z o.o. - & gt; GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6484832 2021-09-30] (GOG Sp. z o.o. - & gt; GOG.com)
S2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [351824 2014-01-15] (Huawei Technologies Co., Ltd. - & gt; )
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7972536 2022-01-26] (Malwarebytes Inc - & gt; Malwarebytes)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2557656 2021-11-02] (Electronic Arts, Inc. - & gt; Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3476184 2021-11-02] (Electronic Arts, Inc. - & gt; Electronic Arts)
S2 PLAY INTERNET. RunOuc; C:\Program Files (x86)\PLAY INTERNET\UpdateDog\ouc.exe [651856 2013-10-26] (Huawei Technologies Co., Ltd. - & gt; )
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6137040 2022-01-13] (Microsoft Windows Publisher - & gt; Microsoft Corporation)
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [10091440 2021-01-22] (Riot Games, Inc. - & gt; Riot Games, Inc.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe [2876152 2021-12-16] (Microsoft Windows Publisher - & gt; Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe [128360 2021-12-16] (Microsoft Windows Publisher - & gt; Microsoft Corporation)
S3 EasyAntiCheat_EOS; " C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe " [X]
===================== Sterowniki (filtrowane) ===================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
S0 arcael; C:\WINDOWS\System32\drivers\arcael.sys [16312 2020-10-05] (Microsoft Windows Early Launch Anti-malware Publisher - & gt; Arcabit/mks_vir)
R3 ArcaFsAv; C:\WINDOWS\System32\DRIVERS\arcafsav.sys [44880 2022-01-27] (Arcabit Sp. z o.o. - & gt; )
R1 arcawfp; C:\WINDOWS\System32\drivers\arcawfp.sys [111560 2020-04-01] (Arcabit Sp. z o.o. - & gt; Windows (R) Win 7 DDK provider)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego]
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [160176 2021-08-28] (Microsoft Windows Hardware Compatibility Publisher - & gt; Malwarebytes)
R3 huawei_enumerator; C:\WINDOWS\System32\drivers\ew_jubusenum.sys [91648 2013-11-30] (Microsoft Windows Hardware Compatibility Publisher - & gt; Huawei Technologies Co., Ltd.)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220568 2022-01-26] (Microsoft Windows Hardware Compatibility Publisher - & gt; Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-06-25] (Microsoft Windows Early Launch Anti-malware Publisher - & gt; Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [194480 2022-01-26] (Microsoft Windows Hardware Compatibility Publisher - & gt; Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [69040 2022-01-26] (Microsoft Windows Hardware Compatibility Publisher - & gt; Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-11-27] (Malwarebytes Inc - & gt; Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [156792 2022-01-26] (Malwarebytes Inc - & gt; Malwarebytes)
S1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [5782360 2021-01-22] (Riot Games, Inc. - & gt; Riot Games, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2021-12-16] (Microsoft Windows Early Launch Anti-malware Publisher - & gt; Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [435432 2021-12-16] (Microsoft Windows - & gt; Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86248 2021-12-16] (Microsoft Windows - & gt; Microsoft Corporation)
U0 Partizan; system32\drivers\Partizan.sys [X]
==================== NetSvcs (filtrowane) ===================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
==================== Trzy miesiące (utworzone) (filtrowane) =========
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
2022-01-28 10:44 - 2022-01-28 10:44 - 000000000 ____D C:\Users\BO\Downloads\FRST-OlderVersion
2022-01-27 22:48 - 2022-01-27 22:49 - 000265754 _____ C:\TDSSKiller.3.1.0.28_27.01.2022_22.48.16_log.txt
2022-01-27 22:38 - 2022-01-27 22:47 - 000001870 _____ C:\Users\BO\Desktop\Rkill.txt
2022-01-27 01:54 - 2022-01-27 01:55 - 000136218 _____ C:\TDSSKiller.3.1.0.28_27.01.2022_01.54.26_log.txt
2022-01-27 01:07 - 2022-01-27 01:07 - 000044880 _____ C:\WINDOWS\system32\Drivers\arcafsav.sys
2022-01-26 20:08 - 2022-01-26 20:08 - 000000000 ____D C:\Users\BO\AppData\Roaming\com.whitemoon.brokenranks.game
2022-01-26 17:49 - 2022-01-26 17:49 - 000000000 ____D C:\Users\BO\AppData\Roaming\com.whitemoon.brokenranks.launcher
2022-01-26 17:48 - 2022-01-26 17:48 - 000000819 _____ C:\Users\Public\Desktop\BrokenRanks.lnk
2022-01-26 17:48 - 2022-01-26 17:48 - 000000000 ____D C:\Whitemoon
2022-01-26 17:48 - 2022-01-26 17:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BrokenRanks
2022-01-26 17:46 - 2022-01-26 17:46 - 000000000 ____D C:\Users\BO\AppData\Roaming\Whitemoon
2022-01-26 10:18 - 2022-01-26 10:18 - 000194480 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2022-01-26 10:18 - 2022-01-26 10:18 - 000156792 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2022-01-26 10:18 - 2022-01-26 10:18 - 000069040 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2022-01-25 23:15 - 2022-01-25 23:16 - 000134108 _____ C:\TDSSKiller.3.1.0.28_25.01.2022_23.15.09_log.txt
2022-01-24 23:37 - 2022-01-24 23:38 - 000134108 _____ C:\TDSSKiller.3.1.0.28_24.01.2022_23.37.19_log.txt
2022-01-24 13:01 - 2022-01-24 13:01 - 000000000 ____D C:\Users\BO\AppData\Roaming\com.lightbringergames.learntofly3
2022-01-24 12:56 - 2022-01-24 12:56 - 000000000 ____D C:\Users\BO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Crossout
2022-01-24 12:56 - 2022-01-24 12:56 - 000000000 ____D C:\ProgramData\Gaijin
2022-01-23 22:43 - 2022-01-23 22:44 - 000134014 _____ C:\TDSSKiller.3.1.0.28_23.01.2022_22.43.04_log.txt
2022-01-22 22:39 - 2022-01-22 22:40 - 000134014 _____ C:\TDSSKiller.3.1.0.28_22.01.2022_22.39.18_log.txt
2022-01-22 15:41 - 2022-01-22 15:41 - 000000000 ____D C:\Users\BO\AppData\Roaming\languagetool.org
2022-01-22 15:06 - 2022-01-22 15:06 - 000000000 ____D C:\Users\Public\Documents\sun
2022-01-22 13:29 - 2022-01-22 13:29 - 000001213 _____ C:\Users\Public\Desktop\LibreOffice 7.1.lnk
2022-01-22 13:29 - 2022-01-22 13:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 7.1
2022-01-22 13:27 - 2022-01-22 13:29 - 000000000 ____D C:\Program Files (x86)\LibreOffice
2022-01-22 13:16 - 2022-01-22 13:16 - 000000969 _____ C:\Users\BO\Desktop\Sweet Home 3D.lnk
2022-01-22 13:16 - 2022-01-22 13:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eTeks Sweet Home 3D
2022-01-22 13:03 - 2022-01-22 13:03 - 000000000 ____D C:\Users\BO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eTeks Sweet Home 3D
2022-01-22 13:01 - 2022-01-22 12:59 - 000192736 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-64.dll
2022-01-22 02:03 - 2022-01-22 02:04 - 000133536 _____ C:\TDSSKiller.3.1.0.28_22.01.2022_02.03.04_log.txt
2022-01-20 23:35 - 2022-01-20 23:36 - 000133536 _____ C:\TDSSKiller.3.1.0.28_20.01.2022_23.35.47_log.txt
2022-01-20 00:02 - 2022-01-20 00:03 - 000133536 _____ C:\TDSSKiller.3.1.0.28_20.01.2022_00.02.52_log.txt
2022-01-19 15:23 - 2022-01-19 15:23 - 000000000 ____D C:\Users\BO\AppData\LocalLow\Soccer Manager Ltd
2022-01-19 00:32 - 2022-01-19 00:33 - 000133536 _____ C:\TDSSKiller.3.1.0.28_19.01.2022_00.32.33_log.txt
2022-01-18 01:26 - 2022-01-18 01:27 - 000133536 _____ C:\TDSSKiller.3.1.0.28_18.01.2022_01.26.18_log.txt
2022-01-17 02:17 - 2022-01-17 02:18 - 000133536 _____ C:\TDSSKiller.3.1.0.28_17.01.2022_02.17.42_log.txt
2022-01-16 01:44 - 2022-01-16 01:45 - 000133892 _____ C:\TDSSKiller.3.1.0.28_16.01.2022_01.44.17_log.txt
2022-01-15 01:48 - 2022-01-15 01:49 - 000133532 _____ C:\TDSSKiller.3.1.0.28_15.01.2022_01.48.55_log.txt
2022-01-14 18:01 - 2022-01-14 18:01 - 000000000 ____D C:\Users\BO\AppData\LocalLow\Team Wood
2022-01-14 02:33 - 2022-01-28 10:37 - 000044880 _____ C:\WINDOWS\system32\Drivers\arcafsav.sys.temp
2022-01-14 02:23 - 2022-01-14 02:24 - 000134968 _____ C:\TDSSKiller.3.1.0.28_14.01.2022_02.23.48_log.txt
2022-01-14 02:04 - 2022-01-14 02:05 - 000134966 _____ C:\TDSSKiller.3.1.0.28_14.01.2022_02.04.02_log.txt
2022-01-13 21:29 - 2022-01-13 21:29 - 000523776 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe
2022-01-13 21:29 - 2022-01-13 21:29 - 000464384 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe
2022-01-13 21:28 - 2022-01-13 21:28 - 000011797 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-01-13 20:38 - 2022-01-13 20:38 - 000000000 ___HD C:\$WinREAgent
2022-01-13 02:13 - 2022-01-13 02:14 - 000134968 _____ C:\TDSSKiller.3.1.0.28_13.01.2022_02.13.15_log.txt
2022-01-11 23:28 - 2022-01-11 23:29 - 000134968 _____ C:\TDSSKiller.3.1.0.28_11.01.2022_23.28.07_log.txt
2022-01-11 02:02 - 2022-01-11 02:03 - 000134966 _____ C:\TDSSKiller.3.1.0.28_11.01.2022_02.02.21_log.txt
2022-01-11 01:54 - 2022-01-11 01:55 - 000134966 _____ C:\TDSSKiller.3.1.0.28_11.01.2022_01.54.04_log.txt
2022-01-10 01:01 - 2022-01-10 01:03 - 000134962 _____ C:\TDSSKiller.3.1.0.28_10.01.2022_01.01.57_log.txt
2022-01-09 01:47 - 2022-01-09 01:48 - 000135278 _____ C:\TDSSKiller.3.1.0.28_09.01.2022_01.47.55_log.txt
2022-01-09 01:32 - 2022-01-09 01:33 - 000134816 _____ C:\TDSSKiller.3.1.0.28_09.01.2022_01.32.56_log.txt
2022-01-09 01:31 - 2022-01-09 01:31 - 000008938 _____ C:\TDSSKiller.3.1.0.28_09.01.2022_01.31.08_log.txt
2021-12-23 23:10 - 2022-01-27 22:54 - 000000000 ____D C:\Users\BO\Desktop\Nowy folder
2021-12-17 22:05 - 2021-12-17 22:05 - 000000000 ____D C:\WINDOWS\SystemTemp
2021-12-17 12:11 - 2021-12-17 12:11 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-12-17 12:11 - 2021-12-17 12:11 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-12-16 22:57 - 2021-12-16 22:57 - 000000000 ____D C:\Users\BO\AppData\LocalLow\Foxit
2021-12-16 10:45 - 2022-01-27 13:54 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-128860811-2758293725-1614210951-1001
2021-12-16 10:45 - 2022-01-27 13:54 - 000002414 _____ C:\Users\BO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-12-14 13:02 - 2022-01-24 12:59 - 000000000 ____D C:\Users\BO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2021-12-14 12:51 - 2021-12-21 00:52 - 000001593 _____ C:\Users\BO\Desktop\Pobrane.lnk
2021-12-13 11:25 - 2021-12-13 11:25 - 000006130 _____ C:\WINDOWS\SysWOW64\PARTIZAN.TXT
2021-12-13 05:20 - 2021-12-13 05:20 - 000003820 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onLogOn
2021-12-13 05:20 - 2021-12-13 05:20 - 000003378 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onTime
2021-12-13 01:30 - 2021-12-05 12:16 - 000000852 _____ C:\WINDOWS\system32\Drivers\etc\hosts.old
2021-12-13 01:22 - 2021-12-13 01:23 - 013311448 _____ (ESET) C:\Users\BO\Downloads\esetonlinescanner.exe
2021-12-13 01:07 - 2021-12-13 11:29 - 000000000 ____D C:\Program Files (x86)\UnHackMe
2021-12-13 01:07 - 2021-12-13 01:25 - 000000000 ____D C:\Users\Public\Documents\RegRunInfo
2021-12-13 01:05 - 2021-12-13 01:06 - 045116154 _____ C:\Users\BO\Downloads\unhackme-13-20.zip
2021-12-12 11:27 - 2021-12-12 11:27 - 002101944 _____ (Malwarebytes) C:\Users\BO\Downloads\MBSetup.exe
2021-12-11 15:03 - 2021-12-11 15:03 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-12-11 11:51 - 2021-12-16 23:25 - 000000000 ____D C:\Users\BO\Desktop\Nowy folder (4)
2021-12-09 14:40 - 2021-12-09 14:40 - 000000000 ____D C:\ProgramData\Ubisoft
2021-12-09 14:39 - 2021-12-09 23:11 - 000000000 ____D C:\Program Files (x86)\Ubisoft
2021-12-06 23:18 - 2021-12-06 23:20 - 000000000 ____D C:\AdwCleaner
2021-12-06 18:00 - 2021-12-06 18:01 - 118907760 _____ (Ubisoft) C:\Users\BO\Downloads\UplayInstaller.exe
2021-12-05 14:36 - 2021-12-05 14:36 - 000008232 _____ C:\Users\BO\Documents\CrystalDiskInfo_20211205143655.txt
2021-12-05 14:36 - 2021-12-05 14:36 - 000001828 _____ C:\Users\BO\Desktop\CrystalDiskInfo.lnk
2021-12-05 14:36 - 2021-12-05 14:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2021-12-05 14:36 - 2021-12-05 14:36 - 000000000 ____D C:\Program Files\CrystalDiskInfo
2021-12-05 14:33 - 2021-12-05 14:35 - 004741896 _____ (Crystal Dew World ) C:\Users\BO\Downloads\CrystalDiskInfo8_13_0.exe
2021-12-05 13:31 - 2021-12-05 13:32 - 002650810 _____ C:\Users\BO\Downloads\ProcessExplorer.zip
2021-12-05 13:24 - 2021-12-05 14:42 - 000000353 _____ C:\Users\BO\Downloads\Fixlog.txt
2021-12-05 13:22 - 2021-12-05 13:24 - 002277365 _____ C:\Users\BO\Downloads\Niepotwierdzony 583069.crdownload
2021-12-04 21:56 - 2021-12-04 21:58 - 000003182 _____ C:\Users\BO\Documents\Nowy dokument tekstowy.txt
2021-11-30 16:41 - 2021-11-30 16:41 - 001770744 _____ C:\Users\BO\Downloads\SteamSetup (1).exe
2021-11-29 11:12 - 2021-11-29 11:12 - 008540344 _____ (Malwarebytes) C:\Users\BO\Downloads\adwcleaner_8.3.1.exe
2021-11-27 12:13 - 2022-01-26 10:17 - 000220568 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-11-27 12:13 - 2021-11-27 12:13 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-11-26 12:55 - 2021-11-26 12:55 - 000000000 ____D C:\Users\BO\AppData\Local\UnrealEngine
2021-11-19 13:13 - 2021-11-19 13:13 - 000000000 ____D C:\Users\BO\AppData\Roaming\dungeoneering
2021-11-15 14:31 - 2021-11-15 14:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Witcher Enhanced Edition [GOG.com]
2021-11-12 16:55 - 2021-11-12 17:05 - 000000000 ____D C:\Users\BO\Documents\The Witcher
2021-11-12 16:38 - 2021-11-15 14:31 - 000001845 _____ C:\Users\Public\Desktop\The Witcher Enhanced Edition Director's Cut.lnk
2021-11-12 16:38 - 2021-11-12 16:38 - 000000000 ____D C:\Users\Public\Documents\The Witcher
2021-11-12 16:14 - 2021-11-12 16:14 - 000000000 ____D C:\GOG Games
2021-11-12 09:58 - 2021-11-12 09:58 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-11-11 10:04 - 2021-11-11 10:04 - 000001146 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2021-11-11 10:04 - 2021-11-11 10:04 - 000000000 ____D C:\Program Files\PCHealthCheck
2021-11-10 19:24 - 2021-11-10 19:27 - 000000000 ____D C:\Users\BO\Documents\Sweet Home 3D
2021-11-06 18:03 - 2021-11-06 18:03 - 000000000 ____D C:\ProgramData\Caphyon
2021-11-06 17:54 - 2021-11-06 17:54 - 000000000 ____D C:\Users\BO\AppData\Roaming\CD Projekt RED
2021-11-05 12:41 - 2021-11-05 12:41 - 000000000 ____D C:\Users\BO\AppData\Local\NVIDIA Corporation
2021-11-05 12:35 - 2021-11-05 12:35 - 000000000 ____D C:\Users\BO\AppData\Local\UnrealEngineLauncher
2021-11-05 12:32 - 2021-11-05 12:41 - 000000000 ____D C:\ProgramData\Epic
2021-11-05 12:29 - 2021-11-05 12:31 - 157548544 _____ C:\Users\BO\Downloads\EpicInstaller-13.0.0.msi
2021-11-03 10:38 - 2021-11-03 10:38 - 000035458 _____ C:\Users\BO\Desktop\CV Ang.pdf
2021-11-02 19:34 - 2021-11-28 15:37 - 000000031 _____ C:\WINDOWS\progress
==================== Trzy miesiące (zmodyfikowane) ==================
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
2022-01-28 10:51 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-01-28 10:48 - 2021-10-12 11:03 - 000018563 _____ C:\Users\BO\Downloads\FRST.txt
2022-01-28 10:47 - 2021-06-25 13:52 - 000000000 ____D C:\FRST
2022-01-28 10:44 - 2021-06-25 13:51 - 002311680 _____ (Farbar) C:\Users\BO\Downloads\FRST64.exe
2022-01-27 22:56 - 2018-07-26 16:06 - 145765912 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-01-27 20:06 - 2020-12-22 23:55 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-01-27 13:54 - 2020-12-23 00:31 - 000003346 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-128860811-2758293725-1614210951-1001
2022-01-27 01:08 - 2018-07-26 16:02 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2022-01-27 01:08 - 2018-07-26 16:02 - 000000000 __SHD C:\Users\BO\IntelGraphicsProfiles
2022-01-27 01:07 - 2020-12-23 00:03 - 000000000 ____D C:\Users\BO
2022-01-27 01:06 - 2020-12-23 00:31 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-01-27 01:06 - 2020-12-22 23:55 - 000488736 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-01-27 01:05 - 2020-12-22 23:54 - 000008192 ___SH C:\DumpStack.log.tmp
2022-01-26 13:09 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-01-26 13:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-01-26 10:17 - 2021-06-25 18:04 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2022-01-26 10:17 - 2021-06-25 18:04 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2022-01-26 10:15 - 2021-06-25 18:03 - 000000000 ____D C:\ProgramData\Malwarebytes
2022-01-26 10:15 - 2021-06-25 18:01 - 000000000 ____D C:\Program Files\Malwarebytes
2022-01-26 10:11 - 2021-01-11 20:42 - 000003414 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6d8b82fb2703
2022-01-26 10:11 - 2020-12-23 00:31 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-01-22 20:12 - 2020-06-14 17:32 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-01-22 20:12 - 2020-06-14 17:32 - 000002286 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-01-22 13:16 - 2021-05-18 17:10 - 000000000 ____D C:\Program Files\Sweet Home 3D
2022-01-22 13:01 - 2019-06-06 19:32 - 000000000 ____D C:\Program Files (x86)\Java
2022-01-22 13:01 - 2019-06-06 19:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2022-01-22 13:01 - 2019-06-06 19:19 - 000000000 ____D C:\Program Files\Java
2022-01-22 12:59 - 2019-06-06 19:20 - 000192736 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2022-01-22 12:58 - 2019-06-06 19:33 - 000165600 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2022-01-21 20:55 - 2021-09-12 07:38 - 000002370 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2022-01-21 20:55 - 2021-09-12 07:38 - 000002329 _____ C:\Users\Public\Desktop\Brave.lnk
2022-01-15 09:20 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2022-01-14 10:01 - 2020-12-23 00:15 - 002388756 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-01-14 10:01 - 2020-12-22 23:12 - 000487840 _____ C:\WINDOWS\system32\perfh012.dat
2022-01-14 10:01 - 2020-12-22 23:12 - 000132698 _____ C:\WINDOWS\system32\perfc012.dat
2022-01-14 10:01 - 2019-12-07 16:09 - 000784340 _____ C:\WINDOWS\system32\perfh015.dat
2022-01-14 10:01 - 2019-12-07 16:09 - 000152236 _____ C:\WINDOWS\system32\perfc015.dat
2022-01-14 02:31 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-01-14 02:26 - 2019-12-07 16:12 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-01-14 02:26 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2022-01-14 02:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-01-14 02:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-01-14 02:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2022-01-14 02:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-01-14 02:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-01-14 02:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-01-13 21:39 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-01-13 20:32 - 2018-07-26 16:07 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-01-10 00:50 - 2019-05-28 20:24 - 000000000 ____D C:\Users\BO\Desktop\Tomek
2022-01-04 22:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2022-01-04 13:01 - 2021-10-25 17:37 - 000000000 ____D C:\Program Files (x86)\GOG Galaxy
2022-01-03 16:39 - 2021-10-25 17:13 - 000000000 ____D C:\ProgramData\GOG.com
2021-12-29 18:14 - 2021-06-25 07:21 - 000000000 ____D C:\WINDOWS\Minidump
2021-12-29 18:14 - 2020-12-18 15:00 - 000000000 ___DC C:\WINDOWS\Panther
2021-12-29 18:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
==================== SigCheckExt =========================
2021-03-18 05:13 - 2021-03-18 05:13 - 000176128 _____ C:\WINDOWS\system32\FCStdThumbnail.dll
2019-12-14 20:42 - 2019-12-14 20:42 - 000956928 _____ (Derpy Muffins Factory) C:\Users\BO\Desktop\MyLittleKaraoke_WebInstall.exe
2019-05-21 19:29 - 2019-05-21 19:39 - 132014978 _____ C:\Users\BO\Downloads\Apache_OpenOffice_4.1.6_Win_x86_install_pl (1).exe
2019-06-06 18:10 - 2019-06-06 18:11 - 012515841 _____ C:\Users\BO\Downloads\Apache_OpenOffice_4.1.6_Win_x86_langpack_pl.exe
2021-06-13 13:57 - 2021-06-13 13:58 - 017261045 _____ C:\Users\BO\Downloads\CorsixTHInstaller.exe
2019-04-13 11:30 - 2019-04-13 11:31 - 007336200 _____ (SVitLAB ) C:\Users\BO\Downloads\E-Global.exe
2021-06-25 13:51 - 2022-01-28 10:44 - 002311680 _____ (Farbar) C:\Users\BO\Downloads\FRST64.exe
2020-08-17 13:53 - 2020-08-17 13:53 - 013811088 _____ ( ) C:\Users\BO\Downloads\HoMM3_HD_Latest_setup.exe
2018-12-01 14:06 - 2018-12-01 14:13 - 088920040 _____ (Riot Games, Inc) C:\Users\BO\Downloads\League of Legends installer EUNE.exe
==================== SigCheck ============================
(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)
==================== BCD ================================
Firmware Boot Manager
---------------------
identifier {fwbootmgr}
displayorder {bootmgr}
timeout 0
Windows Boot Manager
--------------------
identifier {bootmgr}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
locale pl-PL
inherit {globalsettings}
default {current}
resumeobject {952d079f-44a8-11eb-a910-87c3820c28ec}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Windows Boot Loader
-------------------
identifier {current}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 10
locale pl-PL
inherit {bootloadersettings}
recoverysequence {952d07a1-44a8-11eb-a910-87c3820c28ec}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {952d079f-44a8-11eb-a910-87c3820c28ec}
nx OptIn
bootmenupolicy Standard
Windows Boot Loader
-------------------
identifier {952d07a1-44a8-11eb-a910-87c3820c28ec}
device ramdisk=[\Device\HarddiskVolume6]\Recovery\WindowsRE\Winre.wim,{952d07a2-44a8-11eb-a910-87c3820c28ec}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale pl-PL
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume6]\Recovery\WindowsRE\Winre.wim,{952d07a2-44a8-11eb-a910-87c3820c28ec}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Resume from Hibernate
---------------------
identifier {952d079f-44a8-11eb-a910-87c3820c28ec}
device partition=C:
path \WINDOWS\system32\winresume.efi
description Windows Resume Application
locale pl-PL
inherit {resumeloadersettings}
recoverysequence {952d07a1-44a8-11eb-a910-87c3820c28ec}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Windows Memory Tester
---------------------
identifier {memdiag}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\memtest.efi
description Diagnostyka pami©ci systemu Windows
locale pl-PL
inherit {globalsettings}
badmemoryaccess Yes
EMS Settings
------------
identifier {emssettings}
bootems No
Debugger Settings
-----------------
identifier {dbgsettings}
debugtype Serial
debugport 1
baudrate 115200
badmemoryaccess Yes
RAM Defects
-----------
identifier {badmemory}
Global Settings
---------------
identifier {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
Boot Loader Settings
--------------------
identifier {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
Hypervisor Settings
-------------------
identifier {hypervisorsettings}
badmemoryaccess Yes
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Resume Loader Settings
----------------------
identifier {resumeloadersettings}
inherit {globalsettings}
Device options
--------------
identifier {952d07a2-44a8-11eb-a910-87c3820c28ec}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume6
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Koniec FRST.txt ========================