Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 18-11-2022 Uruchomiony przez User (administrator) DEVANGELIS (Acer Aspire E5-772G) (19-11-2022 15:41:46) Uruchomiony z C:\Users\User\Desktop Załadowane profile: User Platform: Microsoft Windows 10 Home Wersja 22H2 19045.2311 (X64) Język: Polski (Polska) Domyślna przeglądarka: Chrome Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCopyAccelerator.exe (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <12> (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <6> (explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe (Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe (services.exe ->) (ICEpower a/s -> ICEpower a/s) C:\Windows\System32\ICEsoundService64.exe (services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\NisSrv.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18388928 2018-05-23] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKU\S-1-5-21-1659238798-1047672378-217683653-1001\...\Run: [HP DeskJet 5000 (NET)] => "C:\Program Files\HP\HP DeskJet 5000 series\Bin\ScanToPCActivationApp.exe" -deviceID "TH91C8C00F:NW" -scfn "HP DeskJet 5000 (NET)" -AutoStart 1 (Brak pliku) HKU\S-1-5-21-1659238798-1047672378-217683653-1001\...\Run: [MicrosoftEdgeAutoLaunch_C46CFC0629905CC775E70B50EA8A519C] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3892128 2022-11-10] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1659238798-1047672378-217683653-1001\...\MountPoints2: {4f53eda0-a660-11e9-8a65-3065eca764e1} - "D:\HiSuiteDownLoader.exe" HKU\S-1-5-21-1659238798-1047672378-217683653-1001\...\MountPoints2: {4f53ee04-a660-11e9-8a65-3065eca764e1} - "D:\HiSuiteDownLoader.exe" HKLM\...\Print\Monitors\stkMonitor: C:\Windows\system32\stkMonitor.dll [65680 2021-11-25] (Amazon.com Services LLC -> ) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\107.0.5304.107\Installer\chrmstp.exe [2022-11-11] (Google LLC -> Google LLC) ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {2533564D-AA9B-4B6E-839A-534CF13DBF56} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [857024 2018-06-01] (NVIDIA Corporation -> NVIDIA Corporation) Task: {3230B94C-585A-40FB-B5CD-C30C7A48D961} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [654784 2018-06-01] (NVIDIA Corporation -> NVIDIA Corporation) Task: {37920BA7-BE8C-4FA2-B63C-4512957B3E1D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2018-12-21] (Google Inc -> Google Inc.) Task: {61FAB749-46E6-4DE5-AAA2-D3C115C42799} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [934848 2018-06-01] (NVIDIA Corporation -> NVIDIA Corporation) Task: {77FE084A-7B69-4961-951F-EF382038EA1B} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [934848 2018-06-01] (NVIDIA Corporation -> NVIDIA Corporation) Task: {8217B69E-0341-4623-B9CA-CEBD4EA98C03} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [857024 2018-06-01] (NVIDIA Corporation -> NVIDIA Corporation) Task: {9911097E-775D-422E-8962-68FED8840484} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-14] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {A6A4377F-7118-43AC-8BB8-CB6A1CE880AB} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [934848 2018-06-01] (NVIDIA Corporation -> NVIDIA Corporation) Task: {B69A51AC-27D6-4FA1-8FA6-77DEE90BB8BF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-14] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {C4EECB9D-9564-4234-91D3-0F967B2E3DED} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-14] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {F21473AB-3E0C-4559-AAD1-348FC9BDBD8E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2018-12-21] (Google Inc -> Google Inc.) Task: {FE2C0E53-10CF-4E46-9DE7-5CED258055F6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-14] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {FEC356C3-891A-4AB3-9DAF-9B0E0926B8AE} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [934848 2018-06-01] (NVIDIA Corporation -> NVIDIA Corporation) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.209.209 Tcpip\..\Interfaces\{24163977-1c8f-4601-980c-424d8e25d736}: [DhcpNameServer] 192.168.151.75 Tcpip\..\Interfaces\{a984a2e3-d5fc-452c-9f34-770de8b0ff90}: [DhcpNameServer] 192.168.42.129 Tcpip\..\Interfaces\{b3a16f2e-c193-438e-a09c-e88061e92e0f}: [NameServer] 8.8.8.8,8.8.4.4 Tcpip\..\Interfaces\{b3a16f2e-c193-438e-a09c-e88061e92e0f}: [DhcpNameServer] 192.168.0.1 0.0.0.0 Tcpip\..\Interfaces\{f6b3642c-18e3-4cee-920e-4a481bc79f8b}: [DhcpNameServer] 192.168.209.209 Edge: ======= Edge Extension: (Brak nazwy) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [nie znaleziono] Edge Extension: (Brak nazwy) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [nie znaleziono] Edge Extension: (Brak nazwy) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [nie znaleziono] Edge Extension: (Brak nazwy) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [nie znaleziono] Edge DefaultProfile: Default Edge Profile: C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default [2022-11-19] Edge DownloadDir: Default -> C:\Users\User\Downloads Edge Notifications: Default -> hxxps://app.chime.aws; hxxps://tinder.com; hxxps://www.lento.pl Edge Extension: (LeechBlock NG) - C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\blaaajhemilngeeffpbfkdjjoefldkok [2022-09-25] Edge Extension: (Chrono menadżer pobierania) - C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\mciiogijehkdemklbdcbfkefimifhecn [2021-03-17] Edge Extension: (Privacy Badger) - C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pkehgijcmpdhfbdbbnkijodmdjhbjlgp [2022-10-05] FireFox: ======== FF DefaultProfile: ve22ho24.default-1668863796739 FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\ve22ho24.default-1668863796739 [2022-11-19] FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.14 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN) Chrome: ======= CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default [2022-11-19] CHR DownloadDir: C:\Users\User\Desktop CHR Notifications: Default -> hxxps://app.chime.aws; hxxps://badoo.com; hxxps://bancovo.pl; hxxps://cjdropshipping.com; hxxps://mieszkania.trovit.pl; hxxps://pl.aliexpress.com; hxxps://uwodzenie.pushcrew.com; hxxps://www.bancovo.pl; hxxps://www.erodate.pl; hxxps://www.eska.pl; hxxps://www.mediaexpert.pl; hxxps://www.netflix.com; hxxps://www.rmf.fm; hxxps://www.totalcasino.pl; hxxps://www.youtube.com CHR Extension: (uBlock Origin) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2022-11-19] CHR Extension: (Word Online) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\fiombgjlkfpdpkbhfioofeeinbehmajg [2018-12-21] CHR Extension: (Dokumenty Google offline) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-11-13] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\System Profile [2022-01-22] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8885112 2022-10-10] (BattlEye Innovations e.K. -> ) R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [228848 2022-11-13] (HP Inc. -> HP Inc.) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\NisSrv.exe [3191272 2022-11-14] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe [133544 2022-11-14] (Microsoft Windows Publisher -> Microsoft Corporation) S2 HuaweiHiSuiteService64.exe; "C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe" -/service [X] ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2019-07-03] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49616 2022-11-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [469288 2022-11-14] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [95520 2022-11-14] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2022-11-19 15:41 - 2022-11-19 15:44 - 000014968 _____ C:\Users\User\Desktop\FRST.txt 2022-11-19 15:37 - 2022-11-19 15:43 - 000000000 ____D C:\FRST 2022-11-19 15:34 - 2022-11-19 15:34 - 002375680 _____ (Farbar) C:\Users\User\Desktop\FRST64.exe 2022-11-18 13:29 - 2022-11-18 13:29 - 000012261 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2022-11-18 13:27 - 2022-11-18 13:27 - 000297472 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll 2022-11-18 12:33 - 2022-11-18 12:33 - 000000000 ___HD C:\$WinREAgent 2022-11-17 17:36 - 2022-11-17 18:43 - 000000000 ____D C:\Users\User\Desktop\Dropshipping Brunet 2022-11-17 14:54 - 2022-11-17 14:54 - 000688128 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll 2022-11-17 14:54 - 2022-11-17 14:54 - 000073216 _____ C:\WINDOWS\system32\nettraceex.dll 2022-11-14 15:21 - 2022-11-14 15:36 - 000000000 ____D C:\Users\User\AppData\Roaming\vlc 2022-11-14 15:20 - 2022-11-14 15:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2022-11-14 15:19 - 2022-11-14 15:19 - 000000000 ____D C:\Program Files\VideoLAN 2022-11-13 13:59 - 2022-11-13 13:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 7.4 2022-11-13 13:57 - 2022-11-13 13:58 - 000000000 ____D C:\Program Files\LibreOffice 2022-11-13 13:52 - 2022-11-13 13:52 - 000082349 _____ C:\Users\User\Downloads\Dokument 3.pdf 2022-11-13 13:46 - 2022-11-13 13:47 - 355192832 _____ C:\Users\User\Downloads\LibreOffice_7.4.2_Win_x64.msi 2022-11-01 03:12 - 2022-11-01 03:12 - 002632256 _____ (Malwarebytes) C:\Users\User\Downloads\MBSetup-44FEA52B-37335.37335.exe 2022-10-31 19:09 - 2022-10-31 19:09 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe 2022-10-31 17:06 - 2022-10-31 17:06 - 000001938 _____ C:\ProgramData\Microsoft\Windows\Start Menu\SumatraPDF.lnk 2022-10-31 17:06 - 2022-10-31 17:06 - 000000000 ____D C:\Program Files\SumatraPDF ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2022-11-19 15:51 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-11-19 15:47 - 2018-12-21 18:54 - 000000000 ____D C:\Program Files (x86)\Google 2022-11-19 14:58 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-11-19 14:58 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2022-11-19 14:58 - 2018-12-20 15:54 - 000000000 ____D C:\Users\User\AppData\Local\Packages 2022-11-19 14:57 - 2022-02-09 16:01 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2022-11-19 14:55 - 2018-12-21 16:31 - 000000000 ____D C:\Users\User\AppData\LocalLow\Mozilla 2022-11-19 14:52 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2022-11-19 14:46 - 2020-09-27 18:39 - 000000000 ____D C:\ProgramData\HP 2022-11-19 14:46 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF 2022-11-19 11:11 - 2020-06-11 11:47 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-11-19 03:08 - 2020-06-11 11:55 - 001767984 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2022-11-19 03:08 - 2019-12-07 16:08 - 000785594 _____ C:\WINDOWS\system32\perfh015.dat 2022-11-19 03:08 - 2019-12-07 16:08 - 000152454 _____ C:\WINDOWS\system32\perfc015.dat 2022-11-19 03:05 - 2018-12-20 15:54 - 000000000 __SHD C:\Users\User\IntelGraphicsProfiles 2022-11-19 03:05 - 2018-12-20 15:11 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2022-11-19 03:04 - 2018-12-20 15:16 - 000000000 ____D C:\ProgramData\NVIDIA 2022-11-19 03:01 - 2020-06-11 11:47 - 000462800 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2022-11-19 03:00 - 2020-06-11 12:13 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-11-19 03:00 - 2020-06-11 11:46 - 000008192 ___SH C:\DumpStack.log.tmp 2022-11-19 02:59 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2022-11-19 02:57 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP 2022-11-19 02:57 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2022-11-19 02:57 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV 2022-11-19 02:57 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT 2022-11-19 02:57 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE 2022-11-19 02:57 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX 2022-11-19 02:57 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2022-11-19 02:57 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources 2022-11-19 02:57 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemApps 2022-11-19 02:57 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2022-11-19 02:57 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV 2022-11-19 02:57 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT 2022-11-19 02:57 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE 2022-11-19 02:57 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX 2022-11-19 02:57 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2022-11-19 02:57 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning 2022-11-19 02:57 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2022-11-18 13:42 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2022-11-18 13:27 - 2020-06-11 11:52 - 003014656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2022-11-18 12:15 - 2021-07-09 11:47 - 000000505 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics 2022-11-18 11:00 - 2020-05-22 12:29 - 000000000 ____D C:\Users\User\AppData\Local\ElevatedDiagnostics 2022-11-17 17:37 - 2022-10-04 15:50 - 000000000 ____D C:\Users\User\Desktop\Jacek 2022-11-17 16:44 - 2022-10-04 15:51 - 000000000 ____D C:\Users\User\Desktop\Kurs Allegro + wyzwanie Allegro 2022-11-17 15:43 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2022-11-17 15:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2022-11-17 11:16 - 2021-12-19 23:50 - 000000000 ____D C:\Users\User\Desktop\CHECK123 2022-11-17 11:06 - 2018-12-21 17:43 - 000000000 ____D C:\WINDOWS\system32\MRT 2022-11-17 11:00 - 2018-12-21 17:43 - 146960040 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2022-11-15 13:56 - 2020-06-04 00:31 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-11-15 13:33 - 2020-06-11 12:13 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-11-15 13:33 - 2020-06-11 12:13 - 000003442 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2022-11-14 15:48 - 2018-12-20 14:46 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2022-11-13 14:11 - 2022-03-23 13:31 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP 2022-11-13 14:11 - 2021-09-02 16:36 - 000000000 ____D C:\Program Files\HPPrintScanDoctor 2022-11-13 13:50 - 2022-10-04 14:33 - 000000000 ____D C:\Users\User\Desktop\4GC 2022-11-11 18:44 - 2018-12-21 18:55 - 000002307 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-11-08 16:16 - 2022-10-04 15:58 - 000000000 ____D C:\Users\User\Desktop\PPS 2022-11-05 17:53 - 2022-10-04 15:52 - 000000000 ____D C:\Users\User\Desktop\NLS + Marcin 2022-11-03 19:09 - 2022-10-04 16:04 - 000000000 ____D C:\Users\User\Desktop\SSA3 - trening 2022-11-03 19:03 - 2022-10-04 15:55 - 000000000 ____D C:\Users\User\Desktop\SSA1 2022-11-03 18:49 - 2022-06-30 18:36 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon Games 2022-11-01 11:33 - 2021-02-20 18:24 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2022-11-01 02:58 - 2022-10-11 22:58 - 000000000 ____D C:\Users\User\Desktop\Dropshipping Mastery 2022-10-31 20:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF 2022-10-31 19:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation 2022-10-31 17:04 - 2021-08-09 14:27 - 000000000 ____D C:\Users\User\AppData\Local\SumatraPDF 2022-10-31 15:49 - 2019-01-24 15:55 - 000000000 ____D C:\Users\User\AppData\Local\Tibia ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================