Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 22-09-2021 02 Uruchomiony przez Rostov (administrator) ROSTOV (Dell Inc. Inspiron N5050) (29-09-2021 21:23:10) Uruchomiony z C:\Users\Rostov\Desktop\FRST Załadowane profile: Rostov Platform: Windows 7 Home Premium Service Pack 1 (X64) Język: Polski (Polska) Domyślna przeglądarka: Chrome Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) () [Brak podpisu cyfrowego] C:\Program Files (x86)\PopTrayU\PopTrayU.exe () [Brak podpisu cyfrowego] C:\Program Files\AutoHotkey\AutoHotkey.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AdminService.exe (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AthBtTray.exe (Atheros Communications Inc. -> Atheros Communications) [Brak podpisu cyfrowego] C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe (Atheros Communications Inc. -> Atheros) [Brak podpisu cyfrowego] C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\Ath_CoexAgent.exe (CHENGDU YIWO Tech Development Co., Ltd. -> ) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe (Dell Inc -> Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler64.exe (Google LLC -> Google LLC) C:\Users\Rostov\AppData\Local\Google\Update\1.3.36.102\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Users\Rostov\AppData\Local\Google\Update\1.3.36.102\GoogleCrashHandler64.exe (GZ Systems Limited -> ) C:\Program Files (x86)\Atom\AtomService\Atom.SDK.WindowsService.exe (Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation -> Intel Corporation) C:\WINDOWS\System32\hkcmd.exe (Intel Corporation -> Intel Corporation) C:\WINDOWS\System32\igfxpers.exe (Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe (Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\vds.exe (Microsoft Windows Hardware Compatibility Publisher -> Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe (Noriyuki Miyazaki -> Crystal Dew World) C:\Users\Rostov\D\reinstal\CrystalDiskInfo\DiskInfo64.exe (Open Source Developer, Dominik Reichl -> Dominik Reichl) C:\Users\Rostov\D\reinstal\KeePass\KeePass.exe (SOFTPERFECT PTY. LTD. -> SoftPerfect) C:\Program Files\NetWorx\networx.exe (Symantec Corporation -> Dell, Inc.) C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [608112 2011-03-29] (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) HKLM\...\Run: [QuickSet] => C:\Program Files\Dell\QuickSet\QuickSet.exe [3668336 2011-03-24] (Dell Inc -> Dell Inc.) HKLM\...\Run: [IntelTBRunOnce] => wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs" HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe [627360 2011-05-20] (Atheros Communications Inc. -> Atheros Communications) [Brak podpisu cyfrowego] HKLM\...\Run: [AthBtTray] => C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AthBtTray.exe [379552 2011-05-20] (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1353680 2016-11-14] (Microsoft Corporation -> Microsoft Corporation) HKLM\...\Run: [NetWorx] => C:\Program Files\NetWorx\networx.exe [7710024 2016-09-20] (SOFTPERFECT PTY. LTD. -> SoftPerfect) HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1424896 2011-09-08] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) HKLM-x32\...\Run: [Dell DataSafe Online] => C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe [1117528 2010-08-26] (Symantec Corporation -> Dell, Inc.) HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard) HKU\S-1-5-21-764258043-3443933537-1065429426-1000\...\Run: [Google Update] => C:\Users\Rostov\AppData\Local\Google\Update\1.3.36.102\GoogleUpdateCore.exe [223816 2021-08-04] (Google LLC -> Google LLC) HKU\S-1-5-21-764258043-3443933537-1065429426-1000\...\Policies\system: [DisableLockWorkstation] 0 HKLM\...\Print\Monitors\HP 8911 Status Monitor: C:\windows\system32\hpinksts8911LM.dll [332176 2012-09-12] (Hewlett Packard -> Hewlett-Packard Co.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\windows\system32\cmd.exe /D /C start C:\windows\system32\ie4uinit.exe -ClearIconCache HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\94.0.4606.61\Installer\chrmstp.exe [2021-09-28] (Google LLC -> Google LLC) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\windows\system32\cmd.exe /D /C start C:\windows\system32\ie4uinit.exe -ClearIconCache HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2010-09-21] (Microsoft Corporation -> Microsoft Corp.) Startup: C:\Users\Rostov\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DiskInfo64.lnk [2020-03-29] ShortcutTarget: DiskInfo64.lnk -> C:\Users\Rostov\D\reinstal\CrystalDiskInfo\DiskInfo64.exe (Noriyuki Miyazaki -> Crystal Dew World) Startup: C:\Users\Rostov\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\hotkeys.lnk [2020-05-06] ShortcutTarget: hotkeys.lnk -> C:\Users\Rostov\D\reinstal\Klawiatura\AutoHotkey\hotkeys.ahk () [Brak podpisu cyfrowego] Startup: C:\Users\Rostov\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PopTrayU.lnk [2020-03-20] ShortcutTarget: PopTrayU.lnk -> C:\Program Files (x86)\PopTrayU\PopTrayU.exe () [Brak podpisu cyfrowego] Startup: C:\Users\Rostov\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Powiadomienia monitorowania tuszu - HP Deskjet 1050 J410 series.lnk [2021-09-29] ShortcutAndArgument: Powiadomienia monitorowania tuszu - HP Deskjet 1050 J410 series.lnk -> C:\windows\system32\RunDll32.exe => "C:\Program Files\HP\HP Deskjet 1050 J410 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN11Q3J58T05HW;CONNECTION=USB;MONITOR=1; Policies: C:\ProgramData\NTUSER.pol: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0DC0F503-D9CC-4C35-9C02-919D6B33BF26} - System32\Tasks\Games\UpdateCheck_S-1-5-21-764258043-3443933537-1065429426-1000 => {CA22F5B1-E06F-4A2B-94FC-21E87FE53781} C:\Windows\System32\gameux.dll [2746368 2012-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {1F2AC86A-FE1C-4DE9-A27F-7822731B1C31} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-03-18] (Google LLC -> Google LLC) Task: {2D20F35F-E4EE-4B98-A401-59EDE2029B01} - System32\Tasks\Opera scheduled Autoupdate 1584483206 => C:\Users\Rostov\AppData\Local\Programs\Opera\launcher.exe [42731216 2021-09-21] (Opera Software AS -> Opera Software) Task: {3D3B69EB-B11C-48B3-9436-4FD77CAEB2CB} - System32\Tasks\HPCustParticipation HP Deskjet 1050 J410 series => C:\Program Files\HP\HP Deskjet 1050 J410 series\Bin\HPCustPartic.exe [4119656 2012-10-02] (Hewlett Packard -> Hewlett-Packard Co.) Task: {45AE3C49-E3B4-44A2-9CAD-546369490172} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\Dell Support Center\uaclauncher.exe [1242440 2011-03-22] (Dell Inc -> PC-Doctor, Inc.) Task: {45DB1423-C2FB-4010-8A20-78146BF83E18} - System32\Tasks\Opera scheduled assistant Autoupdate 1584483210 => C:\Users\Rostov\AppData\Local\Programs\Opera\launcher.exe [42731216 2021-09-21] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Rostov\AppData\Local\Programs\Opera\assistant" $(Arg0) Task: {4DFCF7E6-7E51-4FFB-973A-10124AD76A96} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-03-18] (Google LLC -> Google LLC) Task: {4EAADECD-91F8-48F1-8185-954CBC74B209} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.) Task: {5366BEB2-0E24-4E0C-B349-1A6B81064674} - System32\Tasks\TrackerAutoUpdate => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe [4475136 2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.) Task: {53E7E09F-C66E-46C1-ACB2-F9849745A798} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-764258043-3443933537-1065429426-1000Core => C:\Users\Rostov\AppData\Local\Google\Update\GoogleUpdate.exe [156104 2020-10-02] (Google LLC -> Google LLC) Task: {549922C1-F882-495B-94C1-CB1012DB18D3} - System32\Tasks\PCDEventLauncher => c:\Program Files\Dell Support Center\sessionchecker.exe [362312 2011-03-22] (Dell Inc -> PC-Doctor, Inc.) Task: {6E663AD1-0FFC-4A15-95C2-5CC234A48108} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [664784 2020-09-30] (Mozilla Corporation -> Mozilla Foundation) Task: {6E9E5828-64A9-4F20-9CF6-83A816E9F545} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-764258043-3443933537-1065429426-1000UA => C:\Users\Rostov\AppData\Local\Google\Update\GoogleUpdate.exe [156104 2020-10-02] (Google LLC -> Google LLC) Task: {75F7B530-1B1C-492C-BDEC-E0FE4D8FF1B1} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1} Task: {B2464EBD-A998-4A55-BB2C-6F23AC7685AA} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-09-10] (Piriform Software Ltd -> Piriform) Task: {D5DB3827-705B-486A-945D-37A9C6BED3E6} - System32\Tasks\SystemToolsDailyTest => c:\Program Files\Dell Support Center\pcdrcui.exe [1206088 2011-03-22] (Dell Inc -> PC-Doctor, Inc.) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\windows\Tasks\PCDoctorBackgroundMonitorTask.job => C:\Program Files\Dell Support Center\uaclauncher.exeo-backgroundmon scripts\defaultscan.xml Task: C:\windows\Tasks\SystemToolsDailyTest.job => c:\Program Files\Dell Support Center\pcdrcui.exe Task: C:\windows\Tasks\TrackerAutoUpdate.job => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe-CheckUpdate(Tracker Software Products (Canada) Ltd.Kee ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Winsock: Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280 2010-09-21] (Microsoft Corporation -> Microsoft Corp.) Winsock: Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280 2010-09-21] (Microsoft Corporation -> Microsoft Corp.) Winsock: Catalog5-x64 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880 2010-09-21] (Microsoft Corporation -> Microsoft Corp.) Winsock: Catalog5-x64 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880 2010-09-21] (Microsoft Corporation -> Microsoft Corp.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{3DF360CD-9F0B-4714-A6A3-B7B708F9FDE6}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{A568E9A6-601E-4C5F-A7E4-A0E340146302}: [DhcpNameServer] 192.168.1.1 FireFox: ======== FF DefaultProfile: 2r9bi9r8.default FF ProfilePath: C:\Users\Rostov\AppData\Roaming\Mozilla\Firefox\Profiles\e57elixx.dev-edition-default-1629064265069 [2021-09-15] FF ProfilePath: C:\Users\Rostov\AppData\Roaming\Mozilla\Firefox\Profiles\2r9bi9r8.default [2020-10-02] FF ProfilePath: C:\Users\Rostov\AppData\Roaming\Mozilla\Firefox\Profiles\go8gcs2x.default-release-1629917076381 [2021-09-15] FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.) FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll [2011-12-16] (Sun Microsystems, Inc.) [Brak podpisu cyfrowego] FF Plugin: @microsoft.com/GENUINE -> disabled [Brak pliku] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.14 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.) FF Plugin-x32: @java.com/JavaPlugin -> C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll [2011-12-16] (Sun Microsystems, Inc.) [Brak podpisu cyfrowego] FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Brak pliku] FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-09-09] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-764258043-3443933537-1065429426-1000: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.) StartMenuInternet: Firefox-CA9422711AE1A81C - C:\Program Files\Firefox Developer Edition\firefox.exe Chrome: ======= CHR DefaultProfile: Profile 1 CHR Profile: C:\Users\Rostov\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-09-29] CHR Profile: C:\Users\Rostov\AppData\Local\Google\Chrome\User Data\Profile 1 [2021-09-29] CHR DownloadDir: C:\Users\Rostov\Desktop CHR Notifications: Profile 1 -> hxxps://chaturbate.com; hxxps://do.centrum24.pl; hxxps://messages.google.com; hxxps://push-degbfhf-1355.pushails.com CHR HomePage: Profile 1 -> hxxps://wyborcza.pl/ CHR StartupUrls: Profile 1 -> "hxxps://wyborcza.pl/" CHR Extension: (Tłumacz Google) - C:\Users\Rostov\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2021-08-14] CHR Extension: (Dysk Google) - C:\Users\Rostov\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-25] CHR Extension: (Web Developer) - C:\Users\Rostov\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bfbameneiokkgbdmiekhjnmfkcnldhhm [2020-10-02] CHR Extension: (ColorZilla) - C:\Users\Rostov\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bhlhnicpbhignbdhedgjhgdocnmhomnp [2020-08-06] CHR Extension: (Auto Copy) - C:\Users\Rostov\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bijpdibkloghppkbmhcklkogpjaenfkg [2020-05-26] CHR Extension: (YouTube) - C:\Users\Rostov\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-03-29] CHR Extension: (uBlock Origin) - C:\Users\Rostov\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2021-09-28] CHR Extension: (Go Back With Backspace) - C:\Users\Rostov\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\eekailopagacbcdloonjhbiecobagjci [2020-04-09] CHR Extension: (WebRTC Control) - C:\Users\Rostov\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fjkmabmdepjfammlpliljpnbhleegehm [2021-07-11] CHR Extension: (GetThetPic!) - C:\Users\Rostov\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fkdmnfbeaepmildaolaoicjbfkghpcco [2020-03-30] CHR Extension: (Web Scrobbler) - C:\Users\Rostov\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\hhinaapppaileiechjoiifaancjggfjm [2021-09-29] CHR Extension: (Switch To New Tab) - C:\Users\Rostov\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lfpdoeknpnclenhlmblmenpafkbcgdbg [2020-03-30] CHR Extension: (Video DownloadHelper) - C:\Users\Rostov\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2021-07-01] CHR Extension: (Chrome Notes) - C:\Users\Rostov\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lnfempckkegmaeleniojhjplemmebgfi [2021-01-26] CHR Extension: (Disable Ctrl + Scroll Wheel Zoom) - C:\Users\Rostov\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mdpfkohgfpidohkakdbpmnngaocglmhl [2021-02-05] CHR Extension: (Don't Fuck With Paste) - C:\Users\Rostov\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nkgllhigpcljnhoakjkgaieabnkmgdkb [2021-07-30] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Rostov\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR Extension: (Unseen Message) - C:\Users\Rostov\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\oapcfkclledjbalilncpoimgjgcndhdo [2021-04-09] CHR Extension: (SetupVPN - Lifetime Free VPN) - C:\Users\Rostov\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\oofgbpoabipfcfjapgnbbjjaenockbdp [2021-04-28] CHR Extension: (Gmail) - C:\Users\Rostov\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23] CHR Profile: C:\Users\Rostov\AppData\Local\Google\Chrome\User Data\Profile 2 [2021-09-29] CHR StartupUrls: Profile 2 -> "hxxp://google.pl/" CHR Extension: (Prezentacje) - C:\Users\Rostov\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-03-29] CHR Extension: (Dokumenty) - C:\Users\Rostov\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2020-03-29] CHR Extension: (Dysk Google) - C:\Users\Rostov\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-25] CHR Extension: (YouTube) - C:\Users\Rostov\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-03-29] CHR Extension: (uBlock Origin) - C:\Users\Rostov\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2021-08-02] CHR Extension: (Arkusze) - C:\Users\Rostov\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-03-29] CHR Extension: (Dokumenty Google offline) - C:\Users\Rostov\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-09-29] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Rostov\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR Extension: (Gmail) - C:\Users\Rostov\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-25] CHR Profile: C:\Users\Rostov\AppData\Local\Google\Chrome\User Data\Profile 5 [2021-09-29] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Rostov\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-09-26] CHR Profile: C:\Users\Rostov\AppData\Local\Google\Chrome\User Data\System Profile [2021-09-29] StartMenuInternet: Google Chrome Canary.W3XCPIN7QPEZWY5EFDW7NDDRWM - C:\Users\Rostov\AppData\Local\Google\Chrome SxS\Application\chrome.exe Opera: ======= OPR Profile: C:\Users\Rostov\AppData\Roaming\Opera Software\Opera Stable [2021-09-28] OPR DownloadDir: C:\Users\Rostov\Desktop OPR StartupUrls: Opera Stable -> "view-source:hxxps://html.spec.whatwg.org/multipage/syntax.html" OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding} OPR Extension: (Tłumacz Google) - C:\Users\Rostov\AppData\Roaming\Opera Software\Opera Stable\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2021-08-16] OPR Extension: (uBlock Origin) - C:\Users\Rostov\AppData\Roaming\Opera Software\Opera Stable\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2021-09-28] OPR Extension: (No Playlist Autoplay For YouTube) - C:\Users\Rostov\AppData\Roaming\Opera Software\Opera Stable\Extensions\dkokllldoffaconpbmbaofjbadhjggil [2021-07-11] OPR Extension: (Rich Hints Agent) - C:\Users\Rostov\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-09-28] OPR Extension: (GetThetPic!) - C:\Users\Rostov\AppData\Roaming\Opera Software\Opera Stable\Extensions\fkdmnfbeaepmildaolaoicjbfkghpcco [2020-03-20] OPR Extension: (Seen Blocker) - C:\Users\Rostov\AppData\Roaming\Opera Software\Opera Stable\Extensions\gchmppebfedehcmemdmhojamlnanmafn [2020-03-21] OPR Extension: (Web Scrobbler) - C:\Users\Rostov\AppData\Roaming\Opera Software\Opera Stable\Extensions\hhinaapppaileiechjoiifaancjggfjm [2021-09-28] OPR Extension: (Amazon Assistant Promotion) - C:\Users\Rostov\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-08-15] OPR Extension: (Zainstaluj rozszerzenia Chrome) - C:\Users\Rostov\AppData\Roaming\Opera Software\Opera Stable\Extensions\kipjbhgniklcnglfaldilecjomjaddfi [2020-03-19] OPR Extension: (MeddleMonkey) - C:\Users\Rostov\AppData\Roaming\Opera Software\Opera Stable\Extensions\moihledlmchhofenpacbhphnbnpakgmo [2021-01-09] StartMenuInternet: (HKLM) OperaStable - C:\Users\Rostov\AppData\Local\Programs\Opera\Launcher.exe ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.) R2 AESTFilters; C:\Program Files\IDT\WDM\AESTSr64.exe [89600 2009-03-03] (Microsoft Windows Hardware Compatibility Publisher -> Andrea Electronics Corporation) R2 Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\Ath_CoexAgent.exe [146592 2011-05-20] (Atheros Communications Inc. -> Atheros) [Brak podpisu cyfrowego] R2 AtherosSvc; C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\adminservice.exe [80032 2011-05-20] (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] R2 AtomService; C:\Program Files (x86)\Atom\AtomService\Atom.SDK.WindowsService.exe [153048 2020-08-12] (GZ Systems Limited -> ) R2 EaseUS Agent; C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe [40104 2019-11-15] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) S2 IvacyService; C:\Program Files (x86)\Ivacy\IvacyService.exe [55400 2021-06-04] (PMG PTE. LTD. -> ) R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation -> Microsoft Corporation) R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation -> Microsoft Corporation) R2 NOBU; C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe [2823000 2010-08-26] (Symantec Corporation -> Dell, Inc.) R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [305152 2011-09-08] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation) R2 wlidsvc; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2286976 2010-09-21] (Microsoft Corporation -> Microsoft Corp.) ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 athr; C:\windows\System32\DRIVERS\athrx.sys [2727424 2011-04-22] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.) R1 avpndriver; C:\windows\System32\drivers\avpndriver.sys [77064 2020-01-11] (GZ Systems Limited -> Windows (R) Win 7 DDK provider) R0 EUBKMON; C:\windows\System32\drivers\EUBKMON.sys [54144 2019-11-15] (CHENGDU YIWO Tech Development Co., Ltd. -> ) R3 int0800; C:\windows\System32\DRIVERS\flashud.sys [51712 2009-09-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) R0 MpFilter; C:\windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation -> Microsoft Corporation) R3 MpKsld24f1869; c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{549D0217-D640-497C-93B0-63B19C8375FD}\MpKslDrv.sys [47352 2021-09-29] (Microsoft Windows -> Microsoft Corporation) S3 Neo_VPN; C:\windows\System32\DRIVERS\Neo_0071.sys [38088 2020-06-21] (SoftEther Corporation -> SoftEther Corporation) R1 networx; C:\windows\System32\drivers\networx.sys [72632 2016-09-20] (SOFTPERFECT PTY. LTD. -> NetFilterSDK.com) R3 NisDrv; C:\windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation -> Microsoft Corporation) S3 nlwt; C:\windows\System32\DRIVERS\nlwt.sys [29888 2020-06-10] (TEFINCOM S.A. -> WireGuard LLC) S3 qcusbnet; C:\windows\System32\DRIVERS\qcusbnet.sys [428600 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated) R3 STHDA; C:\windows\System32\DRIVERS\stwrt64.sys [535040 2011-09-08] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) R3 tap0901; C:\windows\System32\DRIVERS\tap0901.sys [39384 2020-05-30] (GZ Systems Limited -> The OpenVPN Project) S3 tapnordvpn; C:\windows\System32\DRIVERS\tapnordvpn.sys [35592 2020-06-09] (TEFINCOM S.A. -> The OpenVPN Project) R3 VBAudioVACMME; C:\windows\System32\DRIVERS\vbaudio_cable64_win7.sys [41192 2014-09-02] (Vincent Burel -> Windows (R) Win 7 DDK provider) S3 wintun; C:\windows\System32\DRIVERS\wintun.sys [29576 2021-06-05] (WireGuard LLC -> WireGuard LLC) U3 aswbdisk; Brak ImagePath ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (Wszystkie) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-09-29 21:20 - 2021-09-29 21:23 - 000000000 ____D C:\Users\Rostov\Desktop\FRST 2021-09-29 13:00 - 2021-09-29 13:00 - 000000000 ___RD C:\Users\Rostov\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices 2021-09-29 03:42 - 2021-09-29 03:43 - 000266632 _____ C:\windows\Minidump\092921-22354-01.dmp 2021-09-28 23:06 - 2021-09-28 23:06 - 000000045 _____ C:\windows\SysWOW64\initdebug.nfo 2021-09-24 21:14 - 2021-09-24 21:14 - 000000000 ____D C:\Users\Rostov\Intel 2021-09-21 23:59 - 2021-09-29 07:19 - 000000000 ____D C:\Users\Rostov\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Solar-PuTTY 2021-09-16 23:16 - 2021-09-27 20:17 - 000000000 ____D C:\Users\Rostov\Desktop\A 2021-09-12 14:40 - 2021-09-12 14:40 - 000000000 ____D C:\Users\Rostov\AppData\Roaming\SolarWinds 2021-09-12 14:39 - 2021-09-12 14:39 - 000000000 ____D C:\Users\Rostov\AppData\Roaming\Solar-PuTTY-v4 2021-09-12 14:39 - 2021-09-12 14:39 - 000000000 ____D C:\Users\Rostov\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SolarWinds 2021-09-12 14:39 - 2021-09-12 14:39 - 000000000 ____D C:\ProgramData\Solarwinds 2021-09-09 21:18 - 2021-09-09 23:05 - 000000000 ____D C:\Program Files\Mozilla Thunderbird 2021-09-08 21:24 - 2021-09-18 22:44 - 000001289 _____ C:\Users\Rostov\Desktop\A.lnk ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-09-29 21:23 - 2020-03-17 14:47 - 000000000 ____D C:\FRST 2021-09-29 21:13 - 2020-04-05 20:13 - 000007639 _____ C:\Users\Rostov\AppData\Local\Resmon.ResmonCfg 2021-09-29 20:47 - 2020-03-17 14:48 - 000000000 ____D C:\Program Files (x86)\Google 2021-09-29 20:45 - 2020-03-20 21:40 - 000000000 ____D C:\Users\Rostov\AppData\LocalLow\Mozilla 2021-09-29 18:45 - 2009-07-14 06:45 - 000032112 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2021-09-29 18:45 - 2009-07-14 06:45 - 000032112 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2021-09-29 13:43 - 2020-04-05 14:34 - 000000000 ____D C:\Program Files\CCleaner 2021-09-29 13:17 - 2015-09-15 15:05 - 000000000 ___RD C:\Users\Rostov\D 2021-09-29 13:11 - 2020-10-02 14:59 - 000002480 _____ C:\Users\Rostov\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome Canary.lnk 2021-09-29 12:59 - 2009-07-14 07:08 - 000000006 ____H C:\windows\Tasks\SA.DAT 2021-09-29 07:19 - 2020-05-18 15:31 - 000000000 ____D C:\ProgramData\Package Cache 2021-09-29 07:19 - 2020-03-20 22:57 - 000000000 ____D C:\Users\Rostov\AppData\Roaming\PopTrayU 2021-09-29 07:19 - 2020-03-20 14:54 - 000000000 ____D C:\Program Files (x86)\AIMP 2021-09-29 07:19 - 2011-12-16 16:05 - 000000000 ____D C:\ProgramData\Atheros 2021-09-29 07:19 - 2011-12-16 15:13 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel 2021-09-29 07:19 - 2009-07-14 05:20 - 000000000 ____D C:\windows\inf 2021-09-29 07:18 - 2020-05-06 15:10 - 000000000 ____D C:\Users\Rostov\AppData\Roaming\Code 2021-09-29 07:18 - 2020-04-13 19:46 - 000000000 ____D C:\Users\Rostov\AppData\Local\Techweb 2021-09-29 07:18 - 2009-07-14 05:20 - 000000000 ____D C:\windows\registration 2021-09-29 07:17 - 2011-12-16 15:25 - 000000000 ____D C:\ProgramData\Intel 2021-09-29 03:43 - 2020-03-17 11:54 - 000000000 ____D C:\Users\Rostov 2021-09-29 03:42 - 2020-03-23 00:01 - 113975696 _____ C:\windows\MEMORY.DMP 2021-09-29 03:42 - 2020-03-23 00:01 - 000000000 ____D C:\windows\Minidump 2021-09-28 22:49 - 2020-09-11 18:51 - 000000000 ____D C:\Users\Rostov\AppData\Roaming\FileZilla 2021-09-28 22:36 - 2020-03-20 15:28 - 000000000 ____D C:\Users\Rostov\AppData\Roaming\vlc 2021-09-28 22:20 - 2020-03-20 14:54 - 000000000 ____D C:\Users\Rostov\AppData\Roaming\AIMP 2021-09-28 21:55 - 2020-03-20 14:32 - 000000000 ____D C:\Users\Rostov\AppData\Local\Spotify 2021-09-28 21:38 - 2020-03-20 14:31 - 000000000 ____D C:\Users\Rostov\AppData\Roaming\Spotify 2021-09-28 21:00 - 2020-03-18 00:13 - 000003916 _____ C:\windows\system32\Tasks\Opera scheduled Autoupdate 1584483206 2021-09-28 20:59 - 2021-06-24 13:51 - 000004110 _____ C:\windows\system32\Tasks\Opera scheduled assistant Autoupdate 1584483210 2021-09-28 20:52 - 2020-03-18 18:14 - 000002232 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2021-09-25 22:50 - 2020-03-17 14:50 - 000000000 ____D C:\Users\Rostov\AppData\Roaming\avidemux 2021-09-23 20:02 - 2021-04-30 16:41 - 000000128 _____ C:\Users\Rostov\AppData\Local\PUTTY.RND 2021-09-22 18:54 - 2011-12-16 16:58 - 000740672 _____ C:\windows\system32\perfh015.dat 2021-09-22 18:54 - 2011-12-16 16:58 - 000156214 _____ C:\windows\system32\perfc015.dat 2021-09-22 18:54 - 2009-07-14 07:13 - 001670518 _____ C:\windows\system32\PerfStringBackup.INI 2021-09-21 22:57 - 2020-03-17 16:21 - 000000000 ____D C:\Users\Rostov\AppData\Local\CrashDumps 2021-09-20 15:39 - 2021-06-05 21:22 - 000000000 ____D C:\Program Files (x86)\Ivacy 2021-09-18 20:36 - 2015-09-15 15:11 - 000000000 ____D C:\Users\Rostov\E 2021-09-17 16:40 - 2020-05-06 15:10 - 000000000 ____D C:\Users\Rostov\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Visual Studio Code 2021-09-16 19:39 - 2020-11-06 19:23 - 000004476 _____ C:\windows\system32\Tasks\Adobe Acrobat Update Task 2021-09-16 19:37 - 2020-11-29 16:36 - 000002061 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2021-09-15 16:38 - 2020-03-18 01:36 - 000000000 ____D C:\Users\Rostov\AppData\Local\Microsoft Games 2021-09-15 15:07 - 2020-03-18 22:37 - 000622898 ____H C:\Users\Rostov\sync.ffs_db 2021-09-15 15:07 - 2020-03-18 21:32 - 000000000 ____D C:\Users\Rostov\AppData\Roaming\FreeFileSync 2021-09-15 14:04 - 2020-03-17 23:12 - 000000000 ____D C:\windows\system32\MRT 2021-09-15 13:57 - 2020-03-17 23:12 - 135637312 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe 2021-09-15 13:43 - 2020-04-05 14:35 - 000003870 _____ C:\windows\system32\Tasks\CCleaner Update 2021-09-15 13:43 - 2020-03-17 14:49 - 000000000 ____D C:\Program Files\FreeFileSync 2021-09-14 20:31 - 2021-08-13 22:03 - 000000128 _____ C:\Users\Rostov\AppData\Roaming\PUTTY.RND 2021-09-09 23:45 - 2020-07-22 19:07 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2021-09-08 13:04 - 2011-12-16 15:33 - 000000000 ____D C:\ProgramData\Sonic 2021-08-30 22:45 - 2010-11-21 05:27 - 000803176 ____N (Microsoft Corporation) C:\windows\system32\MpSigStub.exe ==================== Pliki w katalogu głównym wybranych folderów ======== 2021-08-13 22:03 - 2021-09-14 20:31 - 000000128 _____ () C:\Users\Rostov\AppData\Roaming\PUTTY.RND 2020-09-11 15:07 - 2020-12-13 00:07 - 000004608 _____ () C:\Users\Rostov\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2021-04-30 16:41 - 2021-09-23 20:02 - 000000128 _____ () C:\Users\Rostov\AppData\Local\PUTTY.RND 2020-04-05 20:13 - 2021-09-29 21:13 - 000007639 _____ () C:\Users\Rostov\AppData\Local\Resmon.ResmonCfg ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) LastRegBack: 2021-09-29 19:00 ==================== Koniec FRST.txt ========================