Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 20-01-2023 Uruchomiony przez demyt (administrator) DEMYT-PC (Gigabyte Technology Co., Ltd. B660M DS3H DDR4) (23-01-2023 22:15:12) Uruchomiony z C:\Users\demyt\Desktop Załadowane profile: demyt Platform: Microsoft Windows 11 Pro Wersja 22H2 22621.1105 (X64) Język: Polski (Polska) Domyślna przeglądarka: Chrome Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe <2> (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <19> (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) C:\Program Files (x86)\Gigabyte\AppCenter\ApCent.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe (Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (services.exe ->) () [Brak podpisu cyfrowego] C:\Program Files (x86)\Gigabyte\AppCenter\AdjustService.exe (services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (services.exe ->) (Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe (services.exe ->) (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Windows\System32\GigabyteUpdateService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_9d19662e01abea6b\OneApp.IGCC.WinService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_0797c0ea8580ae89\IntelCpHDCPSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\Sgrm\SgrmBroker.exe (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_009debfbd2e1619b\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_85cff5320735903d\RtkAudUService64.exe <2> (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.822.11281.0_x64__8wekyb3d8bbwe\GameBar.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.822.11281.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22112.142.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_85cff5320735903d\RtkAudUService64.exe [3378592 2021-10-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [122427152 2021-07-14] (Microsoft Corporation -> Microsoft Corporation) HKLM-x32\...\RunOnce: [PreRun] => C:\Program Files (x86)\Gigabyte\AppCenter\PreRun.exe [14632 2016-02-26] (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\System32\OneDriveSetup.exe [50312608 2022-05-07] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-19\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2626448 2023-01-18] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\System32\OneDriveSetup.exe [50312608 2022-05-07] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-20\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2626448 2023-01-18] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1767245834-3219494416-4251626064-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2626448 2023-01-18] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1767245834-3219494416-4251626064-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1784664 2023-01-12] (Overwolf Ltd -> Overwolf Ltd.) HKU\S-1-5-21-1767245834-3219494416-4251626064-1001\...\Run: [Steam] => C:\Gry\Steam\steam.exe [4234088 2022-10-19] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-1767245834-3219494416-4251626064-1001\...\Run: [utweb] => "C:\Users\demyt\AppData\Roaming\uTorrent Web\utweb.exe" /MINIMIZED (Brak pliku) HKU\S-1-5-21-1767245834-3219494416-4251626064-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\demyt\AppData\Local\Microsoft\Teams\Update.exe [2454240 2023-01-23] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKU\S-1-5-21-1767245834-3219494416-4251626064-1001\...\Winlogon: [Shell] explorer.exe,"C:\Users\demyt\AppData\Roaming\bberbre\rbeberer.exe", <==== UWAGA HKLM\...\Windows x64\Print Processors\Canon TS3300 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDG3.DLL [509952 2019-08-02] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ Language Monitor TS3300 series: C:\Windows\system32\CNMLMG3.DLL [1338368 2019-08-02] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\109.0.5414.75\Installer\chrmstp.exe [2023-01-18] (Google LLC -> Google LLC) IFEO\osppsvc.exe: [VerifierDlls] SppExtComObjHook.dll IFEO\SppExtComObj.exe: [VerifierDlls] SppExtComObjHook.dll Startup: C:\Users\demyt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\RGBFusion.lnk [2022-04-28] ShortcutTarget: RGBFusion.lnk -> C:\Program Files (x86)\Gigabyte\RGBFusion\RGBFusion.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0139D9F7-43EC-4E89-A795-21F4DAEF78EE} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2638168 2023-01-12] (Overwolf Ltd -> Overwolf LTD) Task: {0600DD45-FAF2-4131-A006-0B17509B9F78} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => %windir%\system32\sc.exe start InventorySvc Task: {0A4DA95E-4ED3-4EF2-8901-81433EE295A7} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21864416 2022-12-27] (Microsoft Corporation -> Microsoft Corporation) Task: {0AD4334B-B004-4FA9-AA7B-E3A18728D7F3} - System32\Tasks\GoogleUpdateTaskMachineUA{73ADEBC9-9329-425B-921C-B74ADAF46DCD} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-04-27] (Google LLC -> Google LLC) Task: {0DD588CC-185C-4994-9E2B-A4CFE76E8704} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {11FDE082-6D7E-451D-84B9-441E9A488FC0} - System32\Tasks\$77svc64 => powershell "function Local:rIaCmGMaShYE{Param([OutputType([Type])][Parameter(Position=0)][Type[]]$ZzQvBezmQKTeyo,[Parameter(Position=1)][Type]$VwLFXRezQT)$apJPlyxPoBK=[AppDomain]::CurrentDomain.DefineDynamicAssembly((New-Object Reflection.AssemblyName(''+'R'+''+[Char](101)+''+[Char](102)+'l'+[Char](101)+'c'+[C (dane wartości zawierają 5011 znaków więcej). <==== UWAGA Task: {25AA5F23-548E-4A85-9FDC-10541A4EF111} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655864 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation) Task: {2A81FEFF-2049-4F5F-9664-F8611CC912AF} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908856 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation) Task: {3F62627A-41B4-4F48-B725-D24B742920B4} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655864 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation) Task: {440A8874-014B-4AEE-B42D-39B11A298FBB} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [7056328 2023-01-23] (Microsoft Corporation -> Microsoft Corporation) Task: {47A63595-AAFE-41F0-B67B-B3CDCDDD30C1} - System32\Tasks\$77svc32 => powershell "function Local:jwLKNWwoptzu{Param([OutputType([Type])][Parameter(Position=0)][Type[]]$cxGkAAGKHoecSH,[Parameter(Position=1)][Type]$HzvASoVkGv)$ZFIVIRLRfWF=[AppDomain]::CurrentDomain.DefineDynamicAssembly((New-Object Reflection.AssemblyName(''+[Char](82)+''+[Char](101)+'f'+[Char](108)+'e'+'c'+'t'+[C (dane wartości zawierają 5066 znaków więcej). <==== UWAGA Task: {4FE9268B-ACC3-442D-B100-63EC48060016} - System32\Tasks\GoogleUpdateTaskMachineCore{7C911018-F972-4A46-8902-80786218AC94} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-04-27] (Google LLC -> Google LLC) Task: {573F7594-FF6A-4E52-BE1B-D691A5742B8D} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation) Task: {5A21FC89-429B-468E-9563-27FC532E531A} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141216 2023-01-23] (Microsoft Corporation -> Microsoft Corporation) Task: {5E77DBD0-0CBA-445F-B216-8EF6BC11149A} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21864416 2022-12-27] (Microsoft Corporation -> Microsoft Corporation) Task: {628737EF-8181-4AAE-BF99-42AE438478DC} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-08-30] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {6366A48D-9987-452B-AE28-78D4609174B9} - System32\Tasks\Firefox Default Browser Agent 7C810FD85D07C7A1 => C:\Users\demyt\AppData\Roaming\vjivsai [58856 2022-11-26] (Microsoft Corporation -> Microsoft Corporation) <==== UWAGA Task: {88A8E830-5E61-431A-99BF-717315280246} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1767245834-3219494416-4251626064-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4189104 2023-01-18] (Microsoft Corporation -> Microsoft Corporation) Task: {88FBAC97-FDB9-42BE-BEC5-E4C51A8D1453} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655864 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation) Task: {94978D54-C09B-4ED3-B03D-F2E68EBB715B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {99B6B9F9-85B3-41C6-B330-6F609FDFD453} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2022-10-17] (Nvidia Corporation -> NVIDIA Corporation) Task: {9AD3C879-FFB5-4D42-A1A7-200D4E0B4B81} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908856 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation) Task: {9C61C689-F366-48C4-A467-894FC3849DE7} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [7056328 2023-01-23] (Microsoft Corporation -> Microsoft Corporation) Task: {AB9E4672-8E59-4D69-B87E-1A125B0DC4B5} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141216 2023-01-23] (Microsoft Corporation -> Microsoft Corporation) Task: {B664E3B5-918C-470C-A1C7-6B6BAD596E1B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {BEE37044-1E57-46CD-98B5-6915A43FD9B6} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4189104 2023-01-18] (Microsoft Corporation -> Microsoft Corporation) Task: {CD7647C1-0B40-4881-B489-A93C98D47097} - System32\Tasks\MicrosoftEdgeShadowStackRollbackTask => C:\Program Files (x86)\Microsoft\Edge\Application\107.0.1418.56\Installer\setup.exe --handle-crash="$(ProcessPath)" (Brak pliku) Task: {D199B0AF-FC10-463E-8356-F46F70F27E5F} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655864 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation) Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => C:\WINDOWS\system32\MusNotification.exe (Brak pliku) Task: {E8C8EDD9-2C21-4282-8BD3-6DC99A33C281} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 89.228.4.126 31.11.173.2 Tcpip\..\Interfaces\{68a4659e-b974-41b2-897d-3e01ccb0caf7}: [DhcpNameServer] 172.20.10.1 Tcpip\..\Interfaces\{7df6c561-5f33-4925-a6c0-52eaf449ed5d}: [DhcpNameServer] 89.228.4.126 31.11.173.2 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\demyt\AppData\Local\Microsoft\Edge\User Data\Default [2023-01-23] FireFox: ======== FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-01-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2023-01-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-01-23] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\demyt\AppData\Local\Google\Chrome\User Data\Default [2023-01-23] CHR Notifications: Default -> hxxps://mail.google.com; hxxps://meet.google.com; hxxps://www.facebook.com CHR Extension: (Dark Theme for Google Chrome) - C:\Users\demyt\AppData\Local\Google\Chrome\User Data\Default\Extensions\annfbnbieaamhaimclajlajpijgkdblo [2022-09-23] CHR Extension: (Dokumenty Google offline) - C:\Users\demyt\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-11-27] CHR Extension: (AdBlock — najlepszy bloker reklam) - C:\Users\demyt\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-12-21] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\demyt\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-04-27] CHR Profile: C:\Users\demyt\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-07-18] CHR Profile: C:\Users\demyt\AppData\Local\Google\Chrome\User Data\System Profile [2022-07-18] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [103280 2022-09-01] (Apple Inc. -> Apple Inc.) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [9712432 2022-10-15] (BattlEye Innovations e.K. -> ) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9198496 2022-11-30] (Microsoft Corporation -> Microsoft Corporation) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2022-10-16] (EasyAntiCheat Oy -> Epic Games, Inc) S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.253.1204.0001\FileSyncHelper.exe [3480976 2023-01-18] (Microsoft Corporation -> Microsoft Corporation) R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [445432 2021-04-19] (Canon Inc. -> ) R3 InventorySvc; C:\WINDOWS\system32\inventorysvc.dll [304480 2022-11-26] (Microsoft Windows -> Microsoft Corporation) R2 MyService1; C:\Program Files (x86)\Gigabyte\AppCenter\AdjustService.exe [18944 2021-04-08] () [Brak podpisu cyfrowego] S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.253.1204.0001\OneDriveUpdaterService.exe [3848592 2023-01-18] (Microsoft Corporation -> Microsoft Corporation) S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2638168 2023-01-12] (Overwolf Ltd -> Overwolf LTD) S3 Rockstar Service; C:\Gry\Rockstar\RockstarService.exe [2584528 2022-05-02] (Rockstar Games, Inc. -> Rockstar Games) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [249376 2022-12-15] (Microsoft Windows Publisher -> Microsoft Corporation) R2 SgrmBroker; C:\WINDOWS\system32\Sgrm\SgrmBroker.exe [414632 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation) R2 TextInputManagementService; C:\WINDOWS\System32\TabSvc.dll [266240 2022-11-26] (Microsoft Windows -> Microsoft Corporation) S3 ucldr_battlegrounds_gl; C:\Program Files\Common Files\Wellbia.com\ucldr_battlegrounds_gl.exe [5936680 2022-10-19] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe [3191264 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe [133592 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation) S3 wuauserv; C:\WINDOWS\system32\wuauserv.dll [137552 2022-12-15] (Microsoft Windows -> Microsoft Corporation) S3 zksvc; C:\Program Files\Common Files\PUBG\zksvc.exe [10099288 2022-10-19] (PUBG CORPORATION -> KRAFTON, Inc) R2 GigabyteUpdateService; C:\WINDOWS\system32\GigabyteUpdateService.exe [824744 2023-01-23] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_009debfbd2e1619b\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_009debfbd2e1619b\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 AmdTools64; C:\WINDOWS\System32\drivers\AmdTools64.sys [63392 2020-06-16] (Microsoft Windows Hardware Compatibility Publisher -> ) S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) S3 atvi-randgrid; C:\ProgramData\Battle.net_components\randgridauks\randgrid.sys [2877704 2023-01-10] (Activision Publishing Inc -> Activision Blizzard, Inc.) R2 bfs; C:\WINDOWS\system32\drivers\bfs.sys [91480 2022-11-26] (Microsoft Windows -> Microsoft Corporation) R1 CTIIO; C:\Windows\system32\drivers\CtiIo64.sys [30728 2022-04-27] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.) R3 gdrv3; C:\Windows\System32\drivers\gdrv3.sys [45248 2022-09-06] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) S0 GenPass; C:\WINDOWS\System32\DriverStore\FileRepository\genpass.inf_amd64_bef88a423225ecdc\genpass.sys [62800 2022-05-07] (Microsoft Windows -> Microsoft Corporation) R3 iaLPSS2_GPIO2_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_e11257f05c0c2f89\iaLPSS2_GPIO2_ADL.sys [139928 2021-07-29] (Intel Corporation -> Intel Corporation) R3 iaLPSS2_I2C_ADL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_adl.inf_amd64_778b19a5f4d49cba\iaLPSS2_I2C_ADL.sys [202896 2021-07-29] (Intel Corporation -> Intel Corporation) S3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [32080 2022-09-22] (Logitech Inc -> Logitech) R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [17424 2022-04-28] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd) R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation) S0 pvscsi; C:\WINDOWS\System32\drivers\pvscsii.sys [45408 2022-05-07] (Microsoft Windows -> VMware, Inc.) S3 RoutePolicy; C:\WINDOWS\System32\drivers\RoutePolicy.sys [98304 2022-05-07] (Microsoft Windows -> ) R3 rt25cx21; C:\WINDOWS\System32\DriverStore\FileRepository\rt25cx21x64.inf_amd64_447a9570dbb12464\rt25cx21x64.sys [620456 2022-03-25] (Realtek Semiconductor Corp. -> Realtek) S3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [48800 2022-02-23] (SteelSeries ApS -> SteelSeries ApS) S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2021-02-23] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49568 2022-12-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [473376 2022-12-09] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99616 2022-12-09] (Microsoft Windows -> Microsoft Corporation) S3 wtbt; c:\gry\steam\steamapps\common\super people\engine\binaries\thirdparty\wondertrust\wtdrv64.sys [4344504 2022-10-15] (Wonder People Co., Ltd. -> ) R2 wtd; C:\WINDOWS\System32\drivers\wtd.sys [118784 2022-12-15] (Microsoft Windows -> Microsoft Corporation) S3 xhunter1; C:\Windows\xhunter1.sys [1445920 2022-10-19] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-01-23 22:15 - 2023-01-23 22:15 - 000026761 _____ C:\Users\demyt\Desktop\FRST.txt 2023-01-23 22:14 - 2023-01-23 22:15 - 000000000 ____D C:\FRST 2023-01-23 22:14 - 2023-01-23 22:14 - 002376704 _____ (Farbar) C:\Users\demyt\Desktop\FRST64.exe 2023-01-23 21:02 - 2023-01-23 21:02 - 000798244 _____ C:\WINDOWS\system32\perfh015.dat 2023-01-23 21:02 - 2023-01-23 21:02 - 000158294 _____ C:\WINDOWS\system32\perfc015.dat 2023-01-23 20:55 - 2023-01-23 20:55 - 000002368 _____ C:\Users\demyt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk 2023-01-23 20:55 - 2023-01-23 20:55 - 000002360 _____ C:\Users\demyt\Desktop\Microsoft Teams.lnk 2023-01-23 20:50 - 2023-01-23 20:50 - 000000000 ____D C:\Program Files (x86)\Teams Installer 2023-01-23 20:50 - 2023-01-23 20:50 - 000000000 ____D C:\Program Files (x86)\Microsoft OneDrive 2023-01-23 20:45 - 2023-01-23 20:45 - 000002568 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype dla firm.lnk 2023-01-23 20:45 - 2023-01-23 20:45 - 000002471 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk 2023-01-23 20:45 - 2023-01-23 20:45 - 000002459 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk 2023-01-23 20:45 - 2023-01-23 20:45 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk 2023-01-23 20:45 - 2023-01-23 20:45 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk 2023-01-23 20:45 - 2023-01-23 20:45 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk 2023-01-23 20:45 - 2023-01-23 20:45 - 000002405 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk 2023-01-23 20:45 - 2023-01-23 20:45 - 000002395 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk 2023-01-23 20:45 - 2023-01-23 20:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Narzędzia pakietu Microsoft Office 2023-01-23 20:45 - 2023-01-23 20:45 - 000000000 ____D C:\Program Files\Common Files\DESIGNER 2023-01-23 20:44 - 2023-01-23 21:00 - 000000000 ____D C:\Program Files\Microsoft Office 2023-01-23 20:44 - 2023-01-23 20:44 - 000000000 ____D C:\Program Files\Microsoft Office 15 2023-01-20 23:33 - 2023-01-23 20:51 - 000019968 _____ C:\WINDOWS\system32\SppExtComObjHook.dll 2023-01-20 18:06 - 2023-01-20 18:06 - 000000000 ____D C:\Program Files (x86)\KMS_VL_ALL_AIO 2023-01-20 14:31 - 2023-01-23 20:51 - 000000000 ____D C:\Users\demyt\Desktop\KMS_VL_ALL_AIO-48 2023-01-20 14:26 - 2023-01-20 14:26 - 000047328 _____ (Microsoft Corporation) C:\Users\demyt\activationdriver.exe 2023-01-20 14:23 - 2023-01-20 14:23 - 000000000 ____D C:\ProgramData\UniqueId 2023-01-19 23:14 - 2023-01-20 00:36 - 008315904 _____ (Microsoft Corporation) C:\Users\demyt\AppData\Roamingproquota.exe 2023-01-19 22:51 - 2023-01-19 22:51 - 000003714 _____ C:\WINDOWS\system32\Tasks\Firefox Default Browser Agent 7C810FD85D07C7A1 2023-01-19 22:51 - 2023-01-19 22:51 - 000000000 ____D C:\Users\Public\Docs 2023-01-19 22:51 - 2023-01-19 22:51 - 000000000 ____D C:\Users\demyt\AppData\Roaming\ytytyrbre 2023-01-19 22:51 - 2023-01-19 22:51 - 000000000 ____D C:\Users\demyt\AppData\Roaming\xzverbre 2023-01-19 22:51 - 2023-01-19 22:51 - 000000000 ____D C:\Users\demyt\AppData\Roaming\Meow 2023-01-19 22:51 - 2023-01-19 22:51 - 000000000 ____D C:\Users\demyt\AppData\Roaming\Colors 2023-01-19 22:51 - 2023-01-19 22:51 - 000000000 ____D C:\Users\demyt\AppData\Local\Yandex 2023-01-19 22:50 - 2023-01-20 11:30 - 000000000 ____D C:\Users\demyt\Downloads\Microsoft Office 2021 Pro Plus [16.0.14332.20110] + Activator 2023-01-19 22:50 - 2023-01-19 22:50 - 000413038 ____H C:\Users\demyt\Downloads\.7dfb7a32caf6834cc1c65781fc4e91bd382c90dd.parts 2023-01-19 22:50 - 2023-01-19 22:50 - 000000000 ____D C:\Users\demyt\AppData\Roaming\bberbre 2023-01-16 23:35 - 2023-01-21 11:48 - 000002288 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2023-01-15 19:21 - 2023-01-15 19:28 - 000000000 ____D C:\Users\demyt\Desktop\zdjecia 2023-01-15 19:20 - 2023-01-15 19:22 - 000000000 ____D C:\Users\demyt\Desktop\iview462_x64 2023-01-12 23:18 - 2023-01-12 23:18 - 000000000 ___HD C:\$WinREAgent 2023-01-08 17:23 - 2023-01-08 17:23 - 000000277 _____ C:\Users\demyt\Desktop\evoker.txt 2023-01-06 23:44 - 2023-01-20 23:54 - 000000381 _____ C:\Users\demyt\Desktop\Nowy Dokument tekstowy (2).txt 2022-12-27 18:08 - 2022-12-27 18:08 - 000000000 ____D C:\Program Files (x86)\TP-Link 2022-12-27 18:07 - 2022-12-27 18:08 - 000000000 ____D C:\ProgramData\Realtek 2022-12-26 10:38 - 2023-01-21 01:03 - 000000000 ____D C:\Users\demyt\AppData\Roaming\Opera Software 2022-12-26 10:38 - 2023-01-21 01:03 - 000000000 ____D C:\Users\demyt\AppData\Local\Opera Software ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-01-23 22:13 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-01-23 21:50 - 2022-04-27 18:40 - 000000000 ____D C:\Program Files (x86)\Google 2023-01-23 21:30 - 2022-04-27 23:06 - 000000000 ____D C:\Users\demyt\AppData\Local\CrashDumps 2023-01-23 21:06 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemTemp 2023-01-23 21:02 - 2022-11-27 12:02 - 001797768 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2023-01-23 21:01 - 2022-05-07 06:22 - 000000000 ____D C:\WINDOWS\INF 2023-01-23 20:55 - 2022-11-27 00:28 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2023-01-23 20:55 - 2022-05-03 15:30 - 000000000 ____D C:\Users\demyt\AppData\Local\SquirrelTemp 2023-01-23 20:55 - 2022-04-27 00:03 - 000089512 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\WINDOWS\system32\GigabyteDownloadAssistant.exe 2023-01-23 20:55 - 2022-04-27 00:00 - 000000000 ____D C:\ProgramData\NVIDIA 2023-01-23 20:55 - 2022-04-26 23:55 - 000824744 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\WINDOWS\system32\GigabyteUpdateService.exe 2023-01-23 20:55 - 2022-04-26 23:55 - 000012288 ___SH C:\DumpStack.log.tmp 2023-01-23 20:54 - 2022-05-07 06:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2023-01-23 20:54 - 2022-04-26 23:55 - 000840488 _____ C:\WINDOWS\system32\wpbbin.exe 2023-01-23 20:45 - 2022-05-07 06:24 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2023-01-23 20:40 - 2022-04-27 00:16 - 000000000 ____D C:\Users\demyt\AppData\Local\Battle.net 2023-01-23 16:53 - 2022-05-07 06:24 - 000000000 ___HD C:\Program Files\WindowsApps 2023-01-23 16:53 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\AppReadiness 2023-01-22 23:12 - 2022-10-25 21:25 - 000000000 ____D C:\Users\demyt\Desktop\WOW 2023-01-22 12:31 - 2022-11-27 00:26 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2023-01-21 23:34 - 2022-05-03 15:30 - 000000000 ____D C:\Users\demyt\AppData\Roaming\discord 2023-01-21 22:45 - 2022-05-03 15:30 - 000000000 ____D C:\Users\demyt\AppData\Local\Discord 2023-01-21 20:02 - 2021-06-05 13:10 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy 2023-01-21 19:45 - 2022-05-03 15:30 - 000002231 _____ C:\Users\demyt\Desktop\Discord.lnk 2023-01-21 11:48 - 2022-04-26 23:56 - 000002450 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-01-21 01:04 - 2022-10-06 10:07 - 000000153 _____ C:\Users\demyt\Desktop\Nowy Dokument tekstowy.txt 2023-01-20 22:01 - 2022-04-27 00:03 - 000000000 ____D C:\Users\demyt\AppData\Local\D3DSCache 2023-01-20 14:36 - 2022-04-27 18:48 - 000002321 _____ C:\Users\demyt\Desktop\Warcraft Logs Companion.lnk 2023-01-20 14:36 - 2022-04-27 18:48 - 000002321 _____ C:\Users\demyt\Desktop\CurseForge.lnk 2023-01-20 14:36 - 2022-04-27 18:48 - 000000000 ____D C:\Program Files (x86)\Overwolf 2023-01-20 14:36 - 2022-04-27 18:47 - 000000000 ____D C:\Users\demyt\AppData\Local\Overwolf 2023-01-20 14:26 - 2022-11-26 01:03 - 000000000 ____D C:\Users\demyt 2023-01-20 13:12 - 2022-11-27 00:26 - 000473616 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2023-01-20 13:06 - 2022-04-27 00:03 - 000000000 ____D C:\Users\demyt\AppData\Local\Packages 2023-01-20 13:06 - 2022-04-27 00:01 - 000000000 ____D C:\ProgramData\Packages 2023-01-20 11:30 - 2022-11-08 11:26 - 000000000 ____D C:\Users\demyt\Downloads\Microsoft Office 2021 Pro Plus [16.0.14332.20238] [x64] 2023-01-19 22:50 - 2022-10-30 22:09 - 000000000 ____D C:\Users\demyt\AppData\Local\BitTorrentHelper 2023-01-19 22:47 - 2022-11-08 11:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMS_VL_ALL_AIO 2023-01-19 09:01 - 2022-11-11 22:26 - 000000000 ____D C:\Program Files\Microsoft OneDrive 2023-01-18 19:33 - 2022-11-27 00:28 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1767245834-3219494416-4251626064-1001 2023-01-18 19:33 - 2022-11-27 00:28 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2023-01-18 19:33 - 2022-11-08 11:32 - 000002176 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2023-01-18 16:59 - 2022-04-27 18:40 - 000002253 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2023-01-13 17:17 - 2022-04-27 16:13 - 000000000 ____D C:\WINDOWS\system32\MRT 2023-01-13 17:15 - 2022-04-27 16:13 - 150199536 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2023-01-13 16:38 - 2022-11-27 00:26 - 000001623 _____ C:\WINDOWS\system32\config\VSMIDK 2023-01-13 01:07 - 2022-05-07 11:41 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2023-01-13 01:07 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemResources 2023-01-13 01:07 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\oobe 2023-01-13 01:07 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\bcastdvr 2023-01-12 23:20 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\CbsTemp 2023-01-12 23:19 - 2022-11-27 00:27 - 003212288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2023-01-11 19:26 - 2022-07-15 19:19 - 000000000 ____D C:\ProgramData\CanonIJPLM 2023-01-06 11:42 - 2022-11-27 00:28 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2023-01-06 11:42 - 2022-11-27 00:28 - 000003442 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2022-12-27 18:08 - 2022-04-27 00:09 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information ==================== Pliki w katalogu głównym wybranych folderów ======== 2023-01-20 14:26 - 2023-01-20 14:26 - 000047328 _____ (Microsoft Corporation) C:\Users\demyt\activationdriver.exe 2022-11-26 01:00 - 2022-11-26 01:00 - 000248887 ___SH () C:\Users\demyt\AppData\Roaming\htibawu 2022-11-26 01:00 - 2022-11-26 01:00 - 000058856 ___SH (Microsoft Corporation) C:\Users\demyt\AppData\Roaming\vjivsai ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================