Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 28-12-2023 Uruchomiony przez SCAN (administrator) LAB-W10-PC (LENOVO 11DAS07D00) (28-12-2023 18:05:14) Uruchomiony z C:\Users\SCAN\Downloads\FRST64.exe Załadowane profile: SCAN Platforma: Microsoft Windows 10 Pro Wersja 22H2 19045.3803 (X64) Język: Angielski (Stany Zjednoczone) -> Polski (Polska) Domyślna przeglądarka: Chrome Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\1.3.817.1\DropboxCrashHandler.exe (C:\Program Files (x86)\Lenovo\VantageService\4.0.49.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.0.49.0\LenovoVantage-(GenericMessagingAddin).exe (C:\Program Files (x86)\Lenovo\VantageService\4.0.49.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.0.49.0\LenovoVantage-(LenovoBoostAddin).exe (C:\Program Files (x86)\Lenovo\VantageService\4.0.49.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.0.49.0\LenovoVantage-(LenovoBoostSystemAddin).exe (C:\Program Files (x86)\Lenovo\VantageService\4.0.49.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.0.49.0\LenovoVantage-(SmartDisplayAddin).exe (C:\Program Files (x86)\Lenovo\VantageService\4.0.49.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.0.49.0\LenovoVantage-(VantageCoreAddin).exe (DriverStore\FileRepository\cui_dch.inf_amd64_98728bfffafc23c2\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_98728bfffafc23c2\igfxEM.exe (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <34> (services.exe ->) (3Shape A/S -> 3Shape A/S) C:\Program Files (x86)\3Shape\Dongle Server Service\DongleServer.exe (services.exe ->) (3Shape A/S -> 3Shape A/S) C:\Program Files\3Shape\3Shape Data Service\ThreeShape.BlueWhale.DataService.exe (services.exe ->) (3Shape A/S -> 3Shape A/S) C:\Program Files\3Shape\BackupService\DentalBackupService.exe (services.exe ->) (3Shape A/S -> 3Shape A/S) C:\Program Files\3Shape\CommunicateService\DS3SComService.exe (services.exe ->) (3Shape A/S -> 3Shape A/S) C:\Program Files\3Shape\Dental Desktop\DentalDesktopServer.NTService.exe (services.exe ->) (3Shape A/S -> 3Shape A/S) C:\Program Files\3Shape\DentalManagerService\DentalManagerService.exe (services.exe ->) (3Shape A/S -> 3Shape A/S) C:\Program Files\3Shape\Updater\DentalUpdaterService.exe (services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_98728bfffafc23c2\igfxCUIService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_897ea327b3fe52f7\esif_uf.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_ec6acb81b9300f24\RstMwService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_22dff82e7da0099b\OneApp.IGCC.WinService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_f42d50ef4c9376ba\IntelCpHDCPSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_f42d50ef4c9376ba\IntelCpHeciSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_4d2307450428bed0\LMS.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe (services.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.0.49.0\LenovoVantageService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL11.THREESHAPEDENTAL\MSSQL\Binn\sqlservr.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL11.ORTHOSYSTEM\MSSQL\Binn\sqlservr.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL11.ORTHOSYSTEM1\MSSQL\Binn\sqlservr.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe (services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Locator.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispwi.inf_amd64_ca3ea3074bd296e4\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispwi.inf_amd64_ca3ea3074bd296e4\NVWMI\nvWmi64.exe <2> (services.exe ->) (philandro Software GmbH -> AnyDesk Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_e80fb7173daab733\RtkAudUService64.exe (services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe (svchost.exe ->) (3Shape A/S -> 3Shape A/S) C:\Program Files\3Shape\Dental Desktop\DentalDesktopServerAgent.exe (svchost.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2307.4.0_x64__8wekyb3d8bbwe\CalculatorApp.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.3745_none_7ded3f327ca60a41\TiWorker.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_e80fb7173daab733\RtkAudUService64.exe [3496296 2022-08-01] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [Lenovo Fundamental USB Keyboard] => C:\Program Files (x86)\Lenovo\Lenovo Calliope USB Keyboard\SklFundKb.exe [2644472 2017-04-10] (LITE-ON TECHNOLOGY CORP. -> Lenovo) HKLM\...\Run: [VirtualSetupExporterService] => C:\Program Files\3Shape\VirtualSetupExporterService_daemon\ThreeShape.VirtualSetupExporter.exe [33029024 2022-03-14] (3Shape A/S -> 3Shape A/S) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [11561184 2023-12-18] (Dropbox, Inc -> Dropbox, Inc.) HKLM\...\RunOnce: [!BingChatInstaller] => C:\Windows\Temp\MUBSTemp\BingChatInstaller.EXE [17685536 2023-12-16] (Microsoft Corporation -> Microsoft Corporation) <==== UWAGA HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Ograniczenia <==== UWAGA HKU\S-1-5-21-2726107733-1844472028-1858550922-1002\...\Run: [com.evernote.Evernote] => C:\Users\SCAN\AppData\Local\Programs\Evernote\Evernote.exe [166150224 2023-12-12] (Evernote Corporation -> Evernote Corporation) HKU\S-1-5-21-2726107733-1844472028-1858550922-1002\...\Run: [Gyazo] => [X] HKU\S-1-5-21-2726107733-1844472028-1858550922-1002\...\Run: [MicrosoftEdgeAutoLaunch_BC8DAAAB725F059E25D3584E8B7F670F] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3854280 2023-12-21] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-2726107733-1844472028-1858550922-1002\...\Policies\Explorer: [DisableThumbnails] 1 HKU\S-1-5-18\...\Policies\Explorer: [DisableThumbnails] 1 HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\120.0.6099.130\Installer\chrmstp.exe [2023-12-26] (Google LLC -> Google LLC) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2022-04-04] ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH) ==================== Zaplanowane zadania (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {50CEDF31-8538-48F0-ABD1-E73C3D7A3D49} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask -> Brak pliku <==== UWAGA Task: {861DC2C1-E5DD-4DA4-BB07-955B3E8012C1} - \Lenovo\ImController\TimeBasedEvents\5a8882e1-27c3-494c-b071-c438cdfd7b48 -> Brak pliku <==== UWAGA Task: {A02604B1-A876-436E-834C-256AABFFE4B2} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> Brak pliku <==== UWAGA Task: {AC67BF84-75EB-40B5-B8DA-D7F17407F5B4} - \Lenovo\ImController\TimeBasedEvents\2de436ab-b9eb-4586-b464-8097331d28a3 -> Brak pliku <==== UWAGA Task: {C039EBED-11E0-4252-9E9D-F2D2AFFEB3E0} - \Lenovo\ImController\Lenovo iM Controller Monitor -> Brak pliku <==== UWAGA Task: {F753F87F-5BC1-477B-AA60-2D116FAD9AF6} - \Lenovo\ImController\TimeBasedEvents\57281274-14d2-46f7-a2b9-1579a3046e2d -> Brak pliku <==== UWAGA Task: {2BF71451-9256-4FEC-9F39-CE8DF6C79F6A} - System32\Tasks\3Shape Dongle Update => C:\Program Files (x86)\3Shape\Dongle Server Service\UpdateLocalDongle.exe [29657472 2022-03-14] (3Shape A/S -> 3Shape A/S) Task: {F7A0150A-F739-4E50-9273-B6F605C10ADC} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5550856 2023-12-13] (Microsoft Windows -> Microsoft Corporation) Task: {7D9688CE-FEDF-4CC0-8F9C-B8A565341072} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2022-03-10] (Dropbox, Inc -> Dropbox, Inc.) Task: {3F3C514E-E9DD-4DFC-9984-A13287AE9BBC} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2022-03-10] (Dropbox, Inc -> Dropbox, Inc.) Task: {FCD65FF7-558E-4AA9-9296-D88B14005250} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-01-27] (Google LLC -> Google LLC) Task: {457DB05D-83F6-4476-8CD4-0867A6730207} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-01-27] (Google LLC -> Google LLC) Task: {50506A7B-7706-4875-99D8-B499C323224F} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [10514752 2023-12-06] (Helpfeel Inc -> Helpfeel Inc.) Task: {82328C08-C7AB-4061-B310-065A7717B70A} - System32\Tasks\GyazoUpdateTaskMachineDaily => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [10514752 2023-12-06] (Helpfeel Inc -> Helpfeel Inc.) Task: {98BE0941-7AB2-4ADB-8B7F-7FB7B6166E3A} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [60880 2023-11-14] (HP Inc. -> HP Inc.) Task: {8CA68A1A-DFFD-4965-8853-54383C9F5B5B} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [60880 2023-11-14] (HP Inc. -> HP Inc.) Task: {A609F0AC-1A0D-46EB-9B50-10DCE375177A} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => C:\Windows\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> start LenovoVantageService Task: {F409EF76-8147-4D2A-9E6F-7F1EBCCFE8A7} - System32\Tasks\Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.0.49.0\ScheduleEventAction.exe [30064 2023-11-16] (Lenovo -> Lenovo) Task: {B068388B-38DC-4FB6-B74A-1CE8C7AE2AE7} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\4.0.49.0\ScheduleEventAction.exe [30064 2023-11-16] (Lenovo -> Lenovo) Task: {DB6D8236-D94E-4DD1-AAEB-0119CF7F2EA2} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\4.0.49.0\ScheduleEventAction.exe [30064 2023-11-16] (Lenovo -> Lenovo) Task: {71B49921-54DC-41D6-A015-EC2F4ED4997B} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.0.49.0\ScheduleEventAction.exe [30064 2023-11-16] (Lenovo -> Lenovo) Task: {CC9543D1-17C6-4770-878F-F74971B3855C} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport => C:\Program Files (x86)\Lenovo\VantageService\4.0.49.0\ScheduleEventAction.exe [30064 2023-11-16] (Lenovo -> Lenovo) Task: {EEEC9F2A-2186-4B6D-80F2-FFEC480B8098} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.0.49.0\ScheduleEventAction.exe [30064 2023-11-16] (Lenovo -> Lenovo) Task: {0E6C1943-AD87-49AF-985D-768874173D98} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\4.0.49.0\ScheduleEventAction.exe [30064 2023-11-16] (Lenovo -> Lenovo) Task: {6905D1F1-2D5F-4EC8-A2CB-4C4D44C62A2D} - System32\Tasks\Lenovo\Vantage\Schedule\NotificationCenter => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe NotificationCenter (Brak pliku) Task: {1E42BCE7-918D-4AA2-9E27-5064AC0C81BE} - System32\Tasks\Lenovo\Vantage\Schedule\SmartPerformance.ExpireReminder => C:\Program Files (x86)\Lenovo\VantageService\4.0.49.0\ScheduleEventAction.exe [30064 2023-11-16] (Lenovo -> Lenovo) Task: {9E199CFB-5AA2-490C-8FC7-C80EE8AD0E07} - System32\Tasks\Lenovo\Vantage\Schedule\VantageCoreAddinWeekScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.0.49.0\ScheduleEventAction.exe [30064 2023-11-16] (Lenovo -> Lenovo) Task: {F39A7686-334F-4BC6-9743-E714AE1EB17D} - System32\Tasks\Lenovo\Vantage\StartupFixPlan => C:\Program Files (x86)\Lenovo\VantageService\4.0.49.0\uninstall.exe [311776 2023-11-16] (Lenovo -> Lenovo) Task: {BCA18851-A629-42B0-80E8-BBECAA914C07} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28175440 2023-12-15] (Microsoft Corporation -> Microsoft Corporation) Task: {03E5FA16-4FC2-4828-8165-006EA5995862} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28175440 2023-12-15] (Microsoft Corporation -> Microsoft Corporation) Task: {868B0ACB-7DFD-4EC8-806F-796D8617D841} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [306728 2023-12-15] (Microsoft Corporation -> Microsoft Corporation) Task: {8F153A62-BFC2-4638-BC16-8EA2252EDED7} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [306728 2023-12-15] (Microsoft Corporation -> Microsoft Corporation) Task: {C409FA39-DB6C-4276-B9FB-9AA27A893E49} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [169144 2023-12-07] (Microsoft Corporation -> Microsoft Corporation) Task: {DF8A4857-8385-4D82-BF9D-32D467D5154F} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [556744 2023-12-15] (Microsoft Corporation -> Microsoft Corporation) Task: {EA4D3923-A9AA-4CA1-88CE-043C3F65CD3E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {1966A188-A883-4374-BBCB-47F961A72F4F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {A4F59B2F-2E67-490C-9B6F-DE7A30A4D7B8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {4E44AC97-E2FA-45CB-8D84-3BE415B63F2C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {2F381EBE-4CEE-43DA-8B3E-DB7A57F230C0} - System32\Tasks\nWizard_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [974856 2023-07-14] (NVIDIA Corporation -> NVIDIA Corporation) Task: {7D08FF47-F104-4ED6-8DF2-5E7440628E2B} - System32\Tasks\RunServerAgentAsAdmin => C:\Program Files\3Shape\Dental Desktop\DentalDesktopServerAgent.exe [468256 2021-08-11] (3Shape A/S -> 3Shape A/S) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.10.1 Tcpip\..\Interfaces\{3abf6e03-f71e-433c-aa48-d0e1fb1c7cf8}: [DhcpNameServer] 192.168.10.1 HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Ograniczenia <==== UWAGA Edge: ======= Edge HomeButtonPage: HKU\.DEFAULT -> hxxps://www.3shape.com/ Edge DefaultProfile: Default Edge Profile: C:\Users\SCAN\AppData\Local\Microsoft\Edge\User Data\Default [2023-12-28] Edge Extension: (Ghostery Bloker Trackerów i Reklam - AdBlock) - C:\Users\SCAN\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fclbdkbhjlgkbpfldjodgjncejkkjcme [2023-12-16] Edge Extension: (Dokumenty Google offline) - C:\Users\SCAN\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-19] Edge Extension: (Chrome Remote Desktop) - C:\Users\SCAN\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2023-11-14] Edge Extension: (Edge relevant text changes) - C:\Users\SCAN\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-13] Edge Extension: (AdBlock — najlepszy bloker reklam) - C:\Users\SCAN\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2023-12-13] Edge Extension: (uBlock Origin) - C:\Users\SCAN\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\odfafepnkmbhccpbejgmiehpchacaeak [2023-11-22] FireFox: ======== FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-12-07] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-12-07] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\SCAN\AppData\Local\Google\Chrome\User Data\Default [2023-12-28] CHR StartupUrls: Default -> "hxxp://google.pl/" CHR DefaultSearchKeyword: Default -> google.pl__ CHR Extension: (uBlock Origin) - C:\Users\SCAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2023-12-05] CHR Extension: (Dokumenty Google offline) - C:\Users\SCAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-23] CHR Extension: (AdBlock — najlepszy bloker reklam) - C:\Users\SCAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-12-13] CHR Extension: (Chrome Remote Desktop) - C:\Users\SCAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2022-12-09] CHR Extension: (Ghostery Bloker Trackerów i Reklam - AdBlock) - C:\Users\SCAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2023-12-18] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\SCAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-01-27] CHR Profile: C:\Users\SCAN\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-05-10] CHR Profile: C:\Users\SCAN\AppData\Local\Google\Chrome\User Data\Profile 1 [2023-07-20] CHR Extension: (Dokumenty Google offline) - C:\Users\SCAN\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-07-20] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\SCAN\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-04-04] CHR Profile: C:\Users\SCAN\AppData\Local\Google\Chrome\User Data\System Profile [2023-12-18] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [3853384 2022-08-12] (philandro Software GmbH -> AnyDesk Software GmbH) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13233744 2023-12-07] (Microsoft Corporation -> Microsoft Corporation) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2022-03-10] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2022-03-10] (Dropbox, Inc -> Dropbox, Inc.) R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [46824 2023-12-18] (Dropbox, Inc -> Dropbox, Inc.) R2 DentalBackup; C:\Program Files\3Shape\BackupService\DentalBackupService.exe [5439928 2021-12-06] (3Shape A/S -> 3Shape A/S) R2 DentalDesktopServer; C:\Program Files\3Shape\Dental Desktop\DentalDesktopServer.NTService.exe [17176 2021-08-11] (3Shape A/S -> 3Shape A/S) R2 DentalUpdater; C:\Program Files\3Shape\Updater\DentalUpdaterService.exe [18952136 2021-12-06] (3Shape A/S -> 3Shape A/S) R2 DongleServerService; C:\Program Files (x86)\3Shape\Dongle Server Service\DongleServer.exe [5484336 2019-06-04] (3Shape A/S -> 3Shape A/S) R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [230360 2023-11-14] (HP Inc. -> HP Inc.) R2 ImControllerService; C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.) R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\4.0.49.0\LenovoVantageService.exe [34168 2023-11-16] (Lenovo -> Lenovo) R2 MSSQL$ORTHOSYSTEM; c:\Program Files\Microsoft SQL Server\MSSQL11.ORTHOSYSTEM\MSSQL\Binn\sqlservr.exe [192192 2015-05-05] (Microsoft Corporation -> Microsoft Corporation) R2 MSSQL$ORTHOSYSTEM1; C:\Program Files\Microsoft SQL Server\MSSQL11.ORTHOSYSTEM1\MSSQL\Binn\sqlservr.exe [192192 2015-05-05] (Microsoft Corporation -> Microsoft Corporation) R2 MSSQL$THREESHAPEDENTAL; c:\Program Files (x86)\Microsoft SQL Server\MSSQL11.THREESHAPEDENTAL\MSSQL\Binn\sqlservr.exe [156056 2020-11-01] (Microsoft Corporation -> Microsoft Corporation) R2 NVWMI; C:\Windows\System32\DriverStore\FileRepository\nv_dispwi.inf_amd64_ca3ea3074bd296e4\NVWMI\nvWmi64.exe [4513264 2023-07-14] (NVIDIA Corporation -> NVIDIA Corporation) S2 OrthoSystemService; C:\Program Files (x86)\3Shape\OrthoSystem 2021-1\Ortho System Service\OrthoSystemService.exe [48880 2022-03-14] (3Shape A/S -> 3Shape A/S) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [534472 2023-12-13] (Microsoft Windows Publisher -> Microsoft Corporation) S4 SQLAgent$ORTHOSYSTEM; c:\Program Files\Microsoft SQL Server\MSSQL11.ORTHOSYSTEM\MSSQL\Binn\SQLAGENT.EXE [613056 2015-05-05] (Microsoft Corporation -> Microsoft Corporation) S4 SQLAgent$ORTHOSYSTEM1; C:\Program Files\Microsoft SQL Server\MSSQL11.ORTHOSYSTEM1\MSSQL\Binn\SQLAGENT.EXE [613056 2015-05-05] (Microsoft Corporation -> Microsoft Corporation) S4 SQLAgent$THREESHAPEDENTAL; c:\Program Files (x86)\Microsoft SQL Server\MSSQL11.THREESHAPEDENTAL\MSSQL\Binn\SQLAGENT.EXE [445840 2020-11-01] (Microsoft Corporation -> Microsoft Corporation) R2 svcDS3SCom; C:\Program Files\3Shape\CommunicateService\DS3SComService.exe [21877216 2021-12-06] (3Shape A/S -> 3Shape A/S) R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [21055800 2023-12-04] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) R2 ThreeShape.DataService; C:\Program Files\3Shape\3Shape Data Service\ThreeShape.BlueWhale.DataService.exe [63624 2020-01-10] (3Shape A/S -> 3Shape A/S) R2 ThreeShapeDentalManagerService; C:\Program Files\3Shape\DentalManagerService\DentalManagerService.exe [19548608 2021-12-06] (3Shape A/S -> 3Shape A/S) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe [3174840 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe [133592 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispwi.inf_amd64_ca3ea3074bd296e4\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispwi.inf_amd64_ca3ea3074bd296e4\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego] S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego] R3 MpKsl55095ce1; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{17BC7ECD-0B4C-4E2D-8CD6-3F040958A0B6}\MpKslDrv.sys [263560 2023-12-28] (Microsoft Windows -> Microsoft Corporation) S4 RsFx0201; C:\Windows\System32\DRIVERS\RsFx0201.sys [336880 2012-10-20] (Microsoft Corporation -> Microsoft Corporation) S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [55856 2023-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [594304 2023-12-07] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105856 2023-12-07] (Microsoft Windows -> Microsoft Corporation) R3 WiManH; C:\Windows\System32\DriverStore\FileRepository\wiman.inf_amd64_f54d0a27ac206b8c\WiManH\WiManH.sys [175672 2021-07-28] (Intel Corporation -> Intel Corporation) S3 LenovoDiagnosticsDriver; \??\C:\ProgramData\Lenovo\Vantage\Addins\LenovoHardwareScanAddin\3.0.0.24\LenovoDiagnosticsDriver.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-12-28 18:05 - 2023-12-28 18:05 - 000030659 _____ C:\Users\SCAN\Downloads\FRST.txt 2023-12-28 18:05 - 2023-12-28 18:05 - 000000000 ____D C:\Users\SCAN\Downloads\FRST-OlderVersion 2023-12-28 18:04 - 2023-12-28 18:05 - 002387456 _____ (Farbar) C:\Users\SCAN\Downloads\FRST64.exe 2023-12-28 18:04 - 2023-12-28 18:05 - 000000000 ____D C:\FRST 2023-12-28 17:45 - 2023-12-28 17:45 - 000307746 _____ C:\Windows\ntbtlog.txt 2023-12-28 17:45 - 2023-12-28 17:45 - 000000214 _____ C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job 2023-12-28 17:24 - 2023-12-28 17:24 - 000000000 ____D C:\SWTOOLS 2023-12-28 17:19 - 2023-12-28 17:19 - 000000000 ____D C:\AdwCleaner 2023-12-28 17:18 - 2023-12-28 17:18 - 008791352 _____ (Malwarebytes) C:\Users\SCAN\Downloads\adwcleaner.exe 2023-12-28 17:08 - 2023-12-28 17:08 - 015274968 _____ (ESET) C:\Users\SCAN\Downloads\esetonlinescanner.exe 2023-12-28 17:08 - 2023-12-28 17:08 - 000001388 _____ C:\Users\SCAN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk 2023-12-28 17:08 - 2023-12-28 17:08 - 000001282 _____ C:\Users\SCAN\Desktop\ESET Online Scanner.lnk 2023-12-28 17:08 - 2023-12-28 17:08 - 000000000 ____D C:\Users\SCAN\AppData\Local\ESET 2023-12-20 15:08 - 2023-12-20 15:08 - 000308602 _____ C:\Users\SCAN\Downloads\bilet miejsce 45.pdf 2023-12-20 15:07 - 2023-12-20 15:07 - 000309596 _____ C:\Users\SCAN\Downloads\bilet miejsce 46.pdf 2023-12-20 15:05 - 2023-12-20 15:05 - 000313283 _____ C:\Users\SCAN\Downloads\bilet-3576307.pdf 2023-12-20 10:11 - 2023-12-20 10:11 - 000060075 _____ C:\Users\SCAN\Downloads\pko_trans_details_20231220_101118.pdf 2023-12-19 20:58 - 2023-12-19 20:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2023-12-19 16:41 - 2023-12-19 16:41 - 000087559 _____ C:\Users\SCAN\Desktop\fv koanrzewo pompa.pdf 2023-12-18 21:19 - 2023-12-18 21:19 - 000046824 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe 2023-12-16 20:26 - 2023-12-16 20:26 - 000003644 _____ C:\Windows\system32\Tasks\CreateExplorerShellUnelevatedTask 2023-12-14 14:04 - 2023-12-14 14:04 - 000059703 _____ C:\Users\SCAN\Downloads\pko_trans_details_20231214_140413.pdf 2023-12-14 08:30 - 2023-12-14 08:30 - 000234907 _____ C:\Users\SCAN\Downloads\FHEC-23-11-07855_838875.pdf 2023-12-13 17:03 - 2023-12-13 17:03 - 000000000 ____D C:\Windows\InboxApps 2023-12-13 12:20 - 2023-12-13 12:20 - 000016707 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json 2023-12-13 12:15 - 2023-12-13 12:15 - 000000000 ___HD C:\$WinREAgent 2023-12-11 11:28 - 2023-12-11 11:28 - 000060006 _____ C:\Users\SCAN\Downloads\pko_trans_details_20231211_112816.pdf 2023-12-11 11:28 - 2023-12-11 11:28 - 000059962 _____ C:\Users\SCAN\Downloads\pko_trans_details_20231211_112759.pdf 2023-12-11 11:28 - 2023-12-11 11:28 - 000059322 _____ C:\Users\SCAN\Downloads\pko_trans_details_20231211_112826.pdf 2023-12-08 11:22 - 2023-12-08 11:22 - 000034066 _____ C:\Users\SCAN\Downloads\transfer_20231208.pdf 2023-12-07 08:20 - 2023-12-07 08:20 - 000000000 ____D C:\Program Files\Common Files\DESIGNER 2023-12-06 21:32 - 2023-12-06 21:33 - 001045084 _____ C:\Users\SCAN\Downloads\204901075 faktura konarzewo.pdf 2023-12-06 16:17 - 2023-12-06 16:17 - 000059763 _____ C:\Users\SCAN\Downloads\pko_trans_details_20231206_161712.pdf 2023-12-06 15:28 - 2023-12-06 15:28 - 000059996 _____ C:\Users\SCAN\Downloads\pko_trans_details_20231206_152819.pdf 2023-12-06 15:28 - 2023-12-06 15:28 - 000059357 _____ C:\Users\SCAN\Downloads\pko_trans_details_20231206_152807.pdf 2023-12-05 15:20 - 2023-12-05 15:20 - 016739627 _____ C:\Users\SCAN\Downloads\_images of_LidiaKumecka_20231205_144044.zip 2023-12-05 09:50 - 2023-12-05 09:50 - 000059500 _____ C:\Users\SCAN\Downloads\pko_trans_details_20231205_095043.pdf 2023-12-04 19:12 - 2023-12-04 19:12 - 014574259 _____ C:\Users\SCAN\Downloads\_images of_JakubKumecki_20231204_184251.zip 2023-12-04 16:33 - 2023-12-04 16:33 - 000113262 _____ C:\Users\SCAN\Downloads\bilet_186131347.pdf 2023-12-04 16:33 - 2023-12-04 16:33 - 000112781 _____ C:\Users\SCAN\Downloads\bilet_186132259.pdf 2023-12-04 14:27 - 2023-12-04 14:27 - 014127664 _____ C:\Users\SCAN\Downloads\_images of_AnnaDranikowska_20231204_125325.zip 2023-12-04 08:33 - 2023-12-04 08:33 - 000059666 _____ C:\Users\SCAN\Downloads\pko_trans_details_20231204_083350.pdf 2023-12-04 08:33 - 2023-12-04 08:33 - 000059151 _____ C:\Users\SCAN\Downloads\pko_trans_details_20231204_083341.pdf 2023-12-04 08:33 - 2023-12-04 08:33 - 000059001 _____ C:\Users\SCAN\Downloads\pko_trans_details_20231204_083332.pdf 2023-12-03 19:55 - 2023-12-03 19:55 - 000000000 ____D C:\ProgramData\obs-studio 2023-11-30 11:38 - 2023-11-30 11:38 - 000060175 _____ C:\Users\SCAN\Downloads\pko_trans_details_20231130_113832.pdf 2023-11-30 11:38 - 2023-11-30 11:38 - 000060127 _____ C:\Users\SCAN\Downloads\pko_trans_details_20231130_113820.pdf ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-12-28 17:53 - 2022-03-01 16:13 - 001115352 _____ C:\Windows\system32\perfh015.dat 2023-12-28 17:53 - 2022-03-01 16:13 - 000287176 _____ C:\Windows\system32\perfc015.dat 2023-12-28 17:53 - 2022-01-27 11:45 - 002750706 _____ C:\Windows\system32\PerfStringBackup.INI 2023-12-28 17:53 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF 2023-12-28 17:51 - 2022-01-27 11:57 - 000000000 ____D C:\Program Files (x86)\Google 2023-12-28 17:51 - 2022-01-27 11:54 - 000000000 ____D C:\Windows\SystemTemp 2023-12-28 17:49 - 2022-03-10 14:17 - 000000000 ____D C:\Program Files\TeamViewer 2023-12-28 17:49 - 2022-01-27 20:35 - 000008192 ___SH C:\DumpStack.log.tmp 2023-12-28 17:49 - 2022-01-27 20:35 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2023-12-28 17:49 - 2022-01-27 12:29 - 000000000 __SHD C:\Users\SCAN\IntelGraphicsProfiles 2023-12-28 17:49 - 2022-01-27 11:59 - 000000000 ____D C:\ProgramData\NVIDIA 2023-12-28 17:49 - 2022-01-27 11:45 - 000000000 ____D C:\Intel 2023-12-28 17:49 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ServiceState 2023-12-28 17:49 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-12-28 17:48 - 2019-12-07 10:03 - 000524288 _____ C:\Windows\system32\config\BBI 2023-12-28 17:24 - 2022-03-09 14:02 - 000000000 ____D C:\Windows\TempInst 2023-12-28 17:21 - 2022-01-27 14:23 - 000000000 ____D C:\ProgramData\Lenovo 2023-12-28 17:19 - 2022-01-27 14:24 - 000000000 ____D C:\Users\SCAN\AppData\Local\Lenovo 2023-12-28 17:19 - 2022-01-27 14:23 - 000000000 ____D C:\Windows\system32\Tasks\Lenovo 2023-12-28 17:19 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness 2023-12-28 17:00 - 2022-01-27 20:35 - 000000000 ____D C:\Windows\system32\SleepStudy 2023-12-26 23:47 - 2022-01-27 11:58 - 000002214 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2023-12-23 18:11 - 2023-01-17 09:54 - 000002243 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2023-12-23 18:11 - 2022-01-27 20:35 - 000002405 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-12-23 18:11 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2023-12-20 15:07 - 2022-01-27 12:29 - 000000000 ____D C:\Users\SCAN\AppData\Local\Packages 2023-12-19 20:59 - 2022-03-10 16:38 - 000000000 ____D C:\Users\SCAN\AppData\Roaming\Dropbox 2023-12-19 20:59 - 2022-03-10 16:37 - 000000000 ____D C:\Users\SCAN\AppData\Local\Dropbox 2023-12-19 20:58 - 2022-03-10 16:38 - 000000000 ____D C:\Program Files (x86)\Dropbox 2023-12-16 19:08 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\LiveKernelReports 2023-12-16 09:29 - 2023-03-06 09:22 - 000000000 ____D C:\Users\SCAN\AppData\Roaming\Evernote 2023-12-16 09:21 - 2022-03-09 14:01 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2726107733-1844472028-1858550922-1002 2023-12-16 09:21 - 2022-01-27 12:29 - 000002431 _____ C:\Users\SCAN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2023-12-15 15:41 - 2023-01-16 16:57 - 000000000 ____D C:\Program Files\Microsoft Office 2023-12-14 08:29 - 2022-05-18 15:25 - 000000000 ____D C:\Users\SCAN\Desktop\skany 2023-12-13 17:04 - 2022-01-27 20:35 - 000509456 _____ C:\Windows\system32\FNTCACHE.DAT 2023-12-13 17:03 - 2019-12-07 10:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2023-12-13 17:03 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2023-12-13 17:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata 2023-12-13 17:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\lv-LV 2023-12-13 17:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\lt-LT 2023-12-13 17:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\et-EE 2023-12-13 17:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\es-MX 2023-12-13 17:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Dism 2023-12-13 17:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources 2023-12-13 17:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinMetadata 2023-12-13 17:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe 2023-12-13 17:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lv-LV 2023-12-13 17:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lt-LT 2023-12-13 17:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\et-EE 2023-12-13 17:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\es-MX 2023-12-13 17:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Dism 2023-12-13 17:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellExperiences 2023-12-13 17:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Provisioning 2023-12-13 17:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\PolicyDefinitions 2023-12-13 17:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr 2023-12-13 17:03 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\servicing 2023-12-13 12:22 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp 2023-12-13 12:21 - 2019-12-07 10:54 - 000023040 _____ (Microsoft Corporation) C:\Windows\system32\OEMDefaultAssociations.dll 2023-12-13 12:21 - 2019-12-07 10:54 - 000020827 _____ C:\Windows\system32\OEMDefaultAssociations.xml 2023-12-13 12:20 - 2022-01-27 11:37 - 003016192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll 2023-12-13 09:18 - 2023-03-03 11:32 - 000003520 _____ C:\Windows\system32\Tasks\GyazoUpdateTaskMachineDaily 2023-12-13 09:18 - 2023-03-03 11:32 - 000003384 _____ C:\Windows\system32\Tasks\GyazoUpdateTaskMachine 2023-12-13 09:18 - 2023-03-03 11:32 - 000000000 ____D C:\Program Files (x86)\Gyazo 2023-12-12 21:27 - 2022-09-27 16:16 - 000000000 ____D C:\Users\SCAN\AppData\Local\ElevatedDiagnostics 2023-12-08 08:40 - 2022-01-27 11:58 - 000003864 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA 2023-12-08 08:40 - 2022-01-27 11:58 - 000003740 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore 2023-12-07 10:09 - 2022-01-27 20:35 - 000000000 ____D C:\Windows\system32\Drivers\wd 2023-12-07 08:21 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2023-12-03 20:13 - 2022-03-11 13:35 - 000000000 ____D C:\Users\SCAN\AppData\Roaming\obs-studio ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================