Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 29-05-2023 Uruchomiony przez User (administrator) DESKTOP-OLIVIER (Gigabyte Technology Co., Ltd. H310M S2H 2.0) (11-06-2023 13:02:10) Uruchomiony z C:\Users\User\Downloads\FRST64.exe Załadowane profile: User Platforma: Microsoft Windows 11 Home Wersja 22H2 22621.1702 (X64) Język: Polski (Polska) Domyślna przeglądarka: FF Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe ->) (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe (C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\iCloudServices.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc) C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\iCloudCKKS.exe (C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\iCloudServices.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Microsoft Corporation) C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\WebView2\msedgewebview2.exe <6> (C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.11600.0.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\114.0.1823.43\msedgewebview2.exe <6> (C:\Users\User\AppData\Local\Wondershare\Wondershare NativePush\WsNativePushService.exe ->) (Wondershare Technology Group Co.,Ltd -> Wondershare) C:\Users\User\AppData\Local\Wondershare\Wondershare NativePush\WsToastNotification.exe (C:\Users\User\Downloads\FRST64.exe ->) (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <15> (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5> (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.242\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.242\GoogleCrashHandler64.exe (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd.) C:\Windows\V0770Mon.exe (Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) F:\Origin\OriginWebHelperService.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2> (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\NisSrv.exe (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2> (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_009debfbd2e1619b\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe (services.exe ->) (Wondershare Technology Co.,Ltd -> Wondershare) C:\ProgramData\Wondershare\Service\InstallAssistService.exe (services.exe ->) (Wondershare Technology Group Co.,Ltd -> Wondershare) C:\Users\User\AppData\Local\Wondershare\Wondershare NativePush\WsNativePushService.exe (sihost.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\iCloudServices.exe (sihost.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.SurfaceWirelessDisplayAdapter_4.232.137.0_x64__8wekyb3d8bbwe\Desktop\WDADesktopService.exe (svchost.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\APSDaemon.exe (svchost.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple, Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\secd.exe (svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.11600.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [C:\WINDOWS\system32\V0770Ext.ax] => C:\WINDOWS\system32\RegSvr32.exe /s C:\WINDOWS\system32\V0770Ext.ax (Brak pliku) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646776 2020-03-12] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [V0770Mon.exe] => C:\WINDOWS\V0770Mon.exe [43120 2015-08-20] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd.) HKLM-x32\...\Run: [C:\WINDOWS\System32\V0770Ext.ax] => C:\WINDOWS\system32\RegSvr32.exe /s C:\WINDOWS\System32\V0770Ext.ax (Brak pliku) HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare) HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Ograniczenia <==== UWAGA HKU\S-1-5-21-3113468020-2706788723-4000158430-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4362600 2023-04-28] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-3113468020-2706788723-4000158430-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32696784 2022-11-11] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-3113468020-2706788723-4000158430-1001\...\Run: [Discord] => C:\Users\User\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub) HKU\S-1-5-21-3113468020-2706788723-4000158430-1001\...\Run: [Gaijin.Net Updater] => C:\Users\User\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2374376 2021-01-15] (Gaijin Network LTD -> Gaijin) HKU\S-1-5-21-3113468020-2706788723-4000158430-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [40454048 2023-05-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) HKU\S-1-5-21-3113468020-2706788723-4000158430-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1785864 2023-05-24] (Overwolf Ltd -> Overwolf Ltd.) HKU\S-1-5-21-3113468020-2706788723-4000158430-1001\...\Run: [movavi_videoconverter_agent] => C:\Users\User\AppData\Roaming\Movavi Video Converter 22 Premium\ConverterAgent.exe [1275000 2022-10-01] (Movavi Software Limited -> Movavi) HKU\S-1-5-21-3113468020-2706788723-4000158430-1001\...\Run: [Battle.net] => F:\Battle.net\Battle.net.exe [1090168 2022-12-26] (Blizzard Entertainment, Inc. -> Blizzard Entertainment) HKU\S-1-5-21-3113468020-2706788723-4000158430-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\User\AppData\Local\Microsoft\Teams\Update.exe [2587432 2023-03-26] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKU\S-1-5-21-3113468020-2706788723-4000158430-1001\...\Run: [btweb] => "C:\Users\User\AppData\Roaming\BitTorrent Web\btweb.exe" /MINIMIZED (Brak pliku) HKU\S-1-5-21-3113468020-2706788723-4000158430-1001\...\Run: [MicrosoftEdgeAutoLaunch_C46CFC0629905CC775E70B50EA8A519C] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4113872 2023-06-08] (Microsoft Corporation -> Microsoft Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\114.0.5735.110\Installer\chrmstp.exe [2023-06-05] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\nvidia.lnk [2020-09-27] ShortcutTarget: nvidia.lnk -> C:\Users\User\AppData\Roaming\nvidia.vbs () [Brak podpisu cyfrowego] HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA HKLM\SOFTWARE\Policies\Google: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {09082104-D683-4954-8010-F1A6F0254F6D} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval => %systemroot%\system32\MusNotification.exe Display (Brak pliku) Task: {15136E1A-C9A9-4BA4-A112-DF85655A16D0} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation) Task: {29F0D302-4BE9-496B-8885-5C3CF768654A} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-18] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {3C82F458-DEEF-49AD-A889-72E14E559450} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\MpCmdRun.exe [1649976 2023-06-01] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {3D7F28AF-3813-4F60-80AB-A56AEC5404E8} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation) Task: {41414D80-4B05-4E60-A9F6-CC052A5685BE} - System32\Tasks\CCleanerSkipUAC - User => C:\Program Files\CCleaner\CCleaner.exe [34264480 2023-05-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {41CD02C3-A84E-4DB1-AB99-A2BCBF7D532B} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC RebootDialog (Brak pliku) Task: {4EAA7DA5-E888-41F8-B097-975F64F24824} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-05-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {56DED215-A7FC-4B9E-9EF8-782DFDC0BB16} - System32\Tasks\S-1-5-21-3113468020-2706788723-4000158430-1001\DataSenseLiveTileTask => %SystemRoot%\System32\DataUsageLiveTileTask.exe (Brak pliku) Task: {5A13A023-9C1C-4BAE-9DE7-4788A0FF6BDB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-08-23] (Google Inc -> Google LLC) Task: {6B94DF47-F6CD-44B0-8148-EC30F6AF8344} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-05-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "ee6ffa0b-bae0-40e5-9b72-86ad288b1f86" --version "6.12.10490" --silent Task: {73899A78-9827-46F4-AA6B-2A01899B7C9A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564152 2023-04-03] (Adobe Inc. -> Adobe Inc.) Task: {86473D37-3A50-4B15-830C-102C8AB233BE} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [732064 2023-06-10] (Mozilla Corporation -> Mozilla Foundation) Task: {891B2DBD-7C70-4CE3-BFBF-CEC21444D7A6} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: ) Task: {8DD524F0-23FD-401E-BB63-BB595E4B95D4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\MpCmdRun.exe [1649976 2023-06-01] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {8FB6B1A6-EA99-495E-B905-142A18B8B3B8} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation) Task: {9A4300D9-1186-4317-A3A6-D824AB669314} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery RebootDialog (Brak pliku) Task: {A1A64BCB-CE0C-4080-A1CD-6FB8E28F7C7C} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation) Task: {A683E5D5-9CC0-4F7B-85C9-29F4839D339B} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation) Task: {B14D6C15-C5D8-4C05-ABCE-9DE07249D6B3} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2639880 2023-05-24] (Overwolf Ltd -> Overwolf LTD) Task: {B19FA3A4-7DD6-4B4E-AA05-0B2FD9029D85} - System32\Tasks\update-S-1-5-21-3113468020-2706788723-4000158430-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: ) Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (Brak pliku) Task: {D109ECD8-D278-4FB4-9F3D-19726F6EE391} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-08-23] (Google Inc -> Google LLC) Task: {D4FAF0EA-6073-4A19-8280-CBFB42BEDCE2} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation) Task: {D60CD7D7-4A5D-4A44-B2C2-903415D190FF} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation) Task: {DCB0BFDC-88F7-453B-B40B-51C078BDE39F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\MpCmdRun.exe [1649976 2023-06-01] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Brak pliku) Task: {E389B400-8220-4D34-AFA0-280793F1F005} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [680352 2023-06-10] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {E3FFD2EB-5476-4EDE-B26D-668D56C9CFC1} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation) Task: {EA306D8B-8BBD-4924-A069-DAC53B9C79E6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\MpCmdRun.exe [1649976 2023-06-01] (Microsoft Windows Publisher -> Microsoft Corporation) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe Task: C:\WINDOWS\Tasks\update-S-1-5-21-3113468020-2706788723-4000158430-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt Tcpip\Parameters: [DhcpNameServer] 89.228.4.126 31.11.173.2 Tcpip\..\Interfaces\{c71b96c7-4c9f-450d-a861-668a10443b90}: [DhcpNameServer] 89.228.4.126 31.11.173.2 Edge: ======= DownloadDir: C:\Users\User\Downloads Edge Extension: (Brak nazwy) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [nie znaleziono] Edge Extension: (Brak nazwy) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [nie znaleziono] Edge Extension: (Brak nazwy) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [nie znaleziono] Edge Extension: (Brak nazwy) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [nie znaleziono] Edge DefaultProfile: Default Edge Profile: C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default [2023-06-11] Edge DownloadDir: Default -> C:\Users\User\Downloads Edge Extension: (Edge relevant text changes) - C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-05-03] FireFox: ======== FF DefaultProfile: ewxublq2.default FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\ewxublq2.default [2020-05-23] FF NewTab: Mozilla\Firefox\Profiles\ewxublq2.default -> hxxp://securedsearch.lavasoft.com/?pr=vmn&id=webcompa&ent=hp_WCYID10427__190829 FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\a43fisu1.default-release-1621410020199 [2023-06-11] FF Notifications: Mozilla\Firefox\Profiles\a43fisu1.default-release-1621410020199 -> hxxps://www.filmweb.pl; hxxps://pl.shein.com; hxxps://worldbox.pl; hxxps://aternos.org; hxxps://pl.aliexpress.com; hxxps://www.helios.pl; hxxps://bluemediafiles.com; hxxps://filmora.wondershare.net FF Extension: (Usługa zwrotu gotówki LetyShops) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\a43fisu1.default-release-1621410020199\Extensions\cashback_letyshops@LetyShops.xpi [2023-06-06] FF Extension: (Dreamer – Bold) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\a43fisu1.default-release-1621410020199\Extensions\dreamer-bold-colorway@mozilla.org.xpi [2023-03-15] FF Extension: (BetterTTV) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\a43fisu1.default-release-1621410020199\Extensions\firefox@betterttv.net.xpi [2023-04-26] FF Extension: (Graffiti – Bold) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\a43fisu1.default-release-1621410020199\Extensions\graffiti-bold-colorway@mozilla.org.xpi [2023-03-15] FF Extension: (Dark Knight Joker) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\a43fisu1.default-release-1621410020199\Extensions\{173daadc-3cdb-41e9-a0a9-4de2d1ce7a16}.xpi [2022-06-17] FF Extension: (alerabat.com | kupony i cashback) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\a43fisu1.default-release-1621410020199\Extensions\{6c0839b6-2697-49ca-ac8c-8c65a8d9b7b9}.xpi [2023-04-14] FF Extension: (Matte Black (Red)) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\a43fisu1.default-release-1621410020199\Extensions\{a7589411-c5f6-41cf-8bdc-f66527d9d930}.xpi [2022-02-24] FF Extension: (Violentmonkey) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\a43fisu1.default-release-1621410020199\Extensions\{aecec67f-0d10-4fa7-b7c7-609a2db280cf}.xpi [2023-03-06] FF Extension: (Unofficial Netflix Party for Firefox) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\a43fisu1.default-release-1621410020199\Extensions\{c483f092-3621-4fc1-8d75-c953b754b3bc}.xpi [2021-05-19] FF Extension: (Adblock Plus - darmowy adblocker) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\a43fisu1.default-release-1621410020199\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2023-05-04] FF Extension: (Add-ons Restricted Domains) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\a43fisu1.default-release-1621410020199\features\{953f0ca2-ffcd-44e6-b14c-78ed4b1c1192}\addons-restricted-domains@mozilla.com.xpi [2023-06-07] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-05-04] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll [2020-04-28] (Adobe Systems Incorporated -> ) FF Plugin-x32: @java.com/DTPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\dtplugin\npDeployJava1.dll [2020-05-23] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\plugin2\npjp2.dll [2020-05-23] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default [2023-06-07] CHR Notifications: Default -> hxxps://indexforcaptchas.top; hxxps://www.facebook.com; hxxps://www.gazetkowo.pl; hxxps://www.messenger.com; hxxps://www.netflix.com; hxxps://www.tui.pl; hxxps://www1p.normabass.pro CHR Extension: (HBO Max Watch Party) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkdjiiihnadmgmmfobidmmegidmmjobi [2022-02-09] CHR Extension: (EasyPDFCombine for Chrome) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ekamneaohnpkfjaffmimdhgbpdablhbn [2020-06-14] CHR Extension: (Watch Netflix Together) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdjglnlhapkoahdmanogpccpmmpnakje [2022-12-27] CHR Extension: (Dokumenty Google offline) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-05-30] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR Extension: (Netflix Party is now Teleparty) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\oocalimimngaihdkbihfgmpkcpnmlaoa [2023-05-30] CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\System Profile [2023-06-06] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-04-03] (Adobe Inc. -> Adobe Inc.) S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1063840 2023-05-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2022-09-18] (EasyAntiCheat Oy -> Epic Games, Inc) R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [230352 2023-06-10] (HP Inc. -> HP Inc.) R2 NativePushService; C:\Users\User\AppData\Local\Wondershare\Wondershare NativePush\WsNativePushService.exe [755600 2022-09-17] (Wondershare Technology Group Co.,Ltd -> Wondershare) S3 Origin Client Service; F:\Origin\OriginClientService.exe [2572096 2023-03-13] (Electronic Arts, Inc. -> Electronic Arts) R2 Origin Web Helper Service; F:\Origin\OriginWebHelperService.exe [3491144 2023-03-13] (Electronic Arts, Inc. -> Electronic Arts) S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2639880 2023-05-24] (Overwolf Ltd -> Overwolf LTD) S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [2199024 2023-06-05] (Rockstar Games, Inc. -> Rockstar Games) S3 uncheater_bgl; C:\Program Files\Common Files\Uncheater\uncheater_bgl.exe [2097008 2019-10-14] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\NisSrv.exe [3228464 2023-06-01] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\MsMpEng.exe [133592 2023-06-01] (Microsoft Windows Publisher -> Microsoft Corporation) R2 Wondershare InstallAssist; C:\ProgramData\Wondershare\Service\InstallAssistService.exe [230800 2020-03-18] (Wondershare Technology Co.,Ltd -> Wondershare) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_009debfbd2e1619b\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_009debfbd2e1619b\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) S3 aswTap; C:\WINDOWS\System32\drivers\aswTap.sys [53904 2018-09-07] (AVAST Software s.r.o. -> The OpenVPN Project) S3 avgTap; C:\WINDOWS\System32\drivers\avgTap.sys [54888 2018-09-05] (AVG Technologies CZ, s.r.o. -> The OpenVPN Project) S3 CMUSBDAC; C:\WINDOWS\system32\DRIVERS\CMUSBDAC.sys [3819744 2018-07-24] (WDKTestCert cm359,131641702659254692 -> C-MEDIA) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159864 2021-06-29] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R3 DroidCam; C:\WINDOWS\System32\drivers\droidcam.sys [32240 2020-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Dev47Apps) R3 DroidCamVideo; C:\WINDOWS\System32\DriverStore\FileRepository\droidcamvideo.inf_amd64_47e18363cbf3dfe0\droidcamvideo.sys [33784 2021-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) S3 FairplayKD; C:\ProgramData\MTA San Andreas All\Common\temp\FairplayKD.sys [102920 2020-04-08] (Hans Roes -> Multi Theft Auto) R3 MpKsl2194bc03; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{FD28DF55-7B10-41C2-BFB2-816D65FB07A3}\MpKslDrv.sys [213288 2023-06-11] (Microsoft Windows -> Microsoft Corporation) R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation) R3 rtcx21; C:\WINDOWS\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek) R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2019-10-23] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project) S3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [49008 2020-04-06] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project) S3 V0770Vid; C:\WINDOWS\system32\DRIVERS\V0770Vid.sys [390136 2015-08-20] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd.) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49616 2023-06-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [498984 2023-06-01] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99608 2023-06-01] (Microsoft Windows -> Microsoft Corporation) S3 xhunter1; C:\Windows\xhunter1.sys [74552 2019-10-14] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-06-11 12:41 - 2023-06-11 13:02 - 000000000 ____D C:\FRST 2023-06-11 12:41 - 2023-06-11 12:41 - 000064631 _____ C:\Users\User\Downloads\FRST(2).txt 2023-06-11 12:41 - 2023-06-11 12:41 - 000006997 _____ C:\Users\User\Downloads\Fixlog.txt 2023-06-11 12:40 - 2023-06-11 12:40 - 002383360 _____ (Farbar) C:\Users\User\Downloads\FRST64.exe 2023-06-11 12:40 - 2023-06-11 12:40 - 002383360 _____ (Farbar) C:\Users\User\Downloads\FRST64(1).exe 2023-06-11 12:32 - 2023-06-11 12:32 - 000064631 _____ C:\Users\User\Downloads\FRST(1).txt 2023-06-10 18:52 - 2023-06-11 12:28 - 000000000 ____D C:\Program Files\Mozilla Firefox 2023-06-09 00:09 - 2023-06-09 00:09 - 000798244 _____ C:\WINDOWS\system32\perfh015.dat 2023-06-09 00:09 - 2023-06-09 00:09 - 000158294 _____ C:\WINDOWS\system32\perfc015.dat 2023-06-08 00:47 - 2023-06-08 00:47 - 003313524 _____ C:\Users\User\Desktop\2022-11-24-232607823.mp4 2023-06-08 00:17 - 2023-06-08 00:39 - 000000138 _____ C:\Users\User\Desktop\Destroy lonely.txt 2023-06-04 12:47 - 2023-06-04 12:47 - 000103493 _____ C:\Users\User\Downloads\fa9186fb87c4b732e780cf9365e97ae90c221ab16ec1cffe694240dfaba5c4d7.pdf 2023-05-31 12:25 - 2023-05-31 12:25 - 000524378 _____ C:\Users\User\Downloads\X2Download.app - (FREE) 90s Old School Freestyle Boom Bap Dirty Hip Hop Type Beat [2023] - Nightfall (256 kbps).mp3.reapeaks 2023-05-30 18:18 - 2023-05-30 18:18 - 000256386 _____ C:\Users\User\Downloads\rusina_test_1(1).wav.reapeaks 2023-05-30 18:13 - 2023-05-30 18:13 - 019165274 _____ C:\Users\User\Downloads\rusina_test_1(1).wav 2023-05-27 15:04 - 2023-05-27 15:04 - 000686532 _____ C:\Users\User\Downloads\BoardingCard_313279342_KRK_OSL.pdf 2023-05-26 16:31 - 2023-05-26 16:31 - 005439800 _____ C:\Users\User\Downloads\X2Download.app-BonBon reacts to the bite of 87 Voice @markiplier duh #fnaf #fivenightsatfreddys #engineering-(480p).mp4 2023-05-25 22:41 - 2023-05-25 22:41 - 000256386 _____ C:\Users\User\Downloads\rusina_test_1.wav.reapeaks 2023-05-25 22:37 - 2023-05-25 22:37 - 019165274 _____ C:\Users\User\Downloads\rusina_test_1.wav 2023-05-24 20:40 - 2023-05-24 20:40 - 000081736 _____ C:\Users\User\AppData\Local\recently-used.xbel 2023-05-23 14:29 - 2023-05-24 20:25 - 000000000 ____D C:\Users\User\Desktop\MAY 2023-05-19 22:44 - 2023-05-19 22:44 - 000102974 _____ C:\Users\User\Downloads\ad56691ad85541cf455b90fcbdc4aef340f8ada3b65dbb69b90515d55a06824f.pdf 2023-05-19 19:28 - 2023-05-20 09:19 - 000000026 _____ C:\Users\User\Desktop\KODY GLOBKURIER.txt 2023-05-15 06:49 - 2023-05-15 06:49 - 000335270 _____ C:\Users\User\Downloads\Potwierdzenie-zapisu-na-egzamin-prawa-jazdy-a52a54e8-de61-430c-b8d0-8d70da526929.pdf 2023-05-13 17:59 - 2023-05-13 17:59 - 004860492 _____ C:\Users\User\Downloads\Tablice maturalne po gimnazjum.pdf ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-06-11 13:02 - 2023-05-01 20:54 - 000030760 _____ C:\Users\User\Downloads\FRST.txt 2023-06-11 12:50 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-06-11 12:49 - 2019-08-23 18:10 - 000000000 ____D C:\Program Files (x86)\Google 2023-06-11 12:45 - 2023-05-01 20:54 - 000091022 _____ C:\Users\User\Downloads\Addition.txt 2023-06-11 12:34 - 2022-06-16 22:26 - 000000000 ____D C:\Program Files\CCleaner 2023-06-11 12:30 - 2022-02-09 18:07 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2023-06-11 12:29 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp 2023-06-11 12:28 - 2022-09-29 09:41 - 000000000 ____D C:\Users\User\AppData\Local\D3DSCache 2023-06-11 12:28 - 2022-09-29 01:27 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP 2023-06-11 12:28 - 2021-05-19 09:37 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2023-06-11 12:28 - 2021-05-19 09:37 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2023-06-11 12:28 - 2021-05-13 16:35 - 000000000 ____D C:\Program Files\HPPrintScanDoctor 2023-06-11 12:28 - 2019-08-23 13:53 - 000000000 ____D C:\ProgramData\NVIDIA 2023-06-10 16:59 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps 2023-06-10 16:59 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness 2023-06-10 16:13 - 2022-09-29 01:20 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2023-06-10 16:06 - 2022-09-29 01:27 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3113468020-2706788723-4000158430-1001 2023-06-10 16:06 - 2022-09-29 01:27 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3113468020-2706788723-4000158430-1001 2023-06-10 16:06 - 2020-08-22 03:37 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-06-10 16:06 - 2020-08-22 03:37 - 000002286 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2023-06-10 16:06 - 2020-06-02 20:59 - 000002424 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2023-06-09 20:39 - 2022-09-29 01:27 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2023-06-09 20:39 - 2022-09-29 01:27 - 000003442 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2023-06-09 00:32 - 2019-09-28 19:19 - 000000000 ____D C:\Users\User\AppData\Roaming\Discord 2023-06-09 00:09 - 2022-09-29 09:19 - 001797768 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2023-06-09 00:09 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF 2023-06-09 00:01 - 2019-09-28 19:19 - 000000000 ____D C:\Users\User\AppData\Local\Discord 2023-06-08 12:05 - 2019-08-23 13:46 - 000000000 ____D C:\Users\User\AppData\Local\Packages 2023-06-08 11:56 - 2022-09-29 01:27 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2023-06-08 11:56 - 2022-05-07 07:17 - 001048576 _____ C:\WINDOWS\system32\config\BBI 2023-06-08 11:56 - 2020-06-02 20:56 - 000012288 ___SH C:\DumpStack.log.tmp 2023-06-06 23:41 - 2023-02-19 23:23 - 000001895 _____ C:\Users\User\Desktop\Crystal Launcher.lnk 2023-06-06 23:40 - 2022-09-29 22:27 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job 2023-06-06 23:40 - 2019-08-25 19:06 - 000000000 ____D C:\Program Files (x86)\Steam 2023-06-06 21:49 - 2020-10-25 20:23 - 000000000 ____D C:\Users\User\AppData\Local\BattlEye 2023-06-06 21:49 - 2019-08-25 20:18 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2023-06-06 10:00 - 2019-12-21 16:55 - 000000000 ____D C:\Users\User\AppData\Local\CrashDumps 2023-06-05 23:50 - 2019-08-23 18:10 - 000002307 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2023-06-05 23:50 - 2019-08-23 18:10 - 000002266 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2023-06-05 19:11 - 2019-09-17 20:31 - 000000000 ____D C:\Program Files (x86)\Rockstar Games 2023-06-05 19:11 - 2019-09-17 20:30 - 000000000 ____D C:\ProgramData\Rockstar Games 2023-06-05 19:11 - 2019-09-17 20:30 - 000000000 ____D C:\Program Files\Rockstar Games 2023-06-05 19:08 - 2020-06-09 00:46 - 000000000 ____D C:\Users\User\AppData\Local\FiveM 2023-06-04 22:00 - 2019-08-30 17:03 - 000000000 ____D C:\Users\User\AppData\Roaming\audacity 2023-06-03 21:38 - 2022-09-29 22:27 - 000003476 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting 2023-06-03 21:38 - 2022-09-29 01:27 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2023-06-01 20:55 - 2022-07-08 00:55 - 000000000 ____D C:\Program Files (x86)\Overwolf 2023-06-01 13:33 - 2019-08-25 23:01 - 000000000 ____D C:\Users\User\AppData\Roaming\.minecraft 2023-06-01 12:54 - 2022-05-27 21:01 - 000000000 ____D C:\Users\User\AppData\Roaming\.tlauncher 2023-06-01 10:04 - 2019-08-23 12:32 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2023-05-31 13:22 - 2020-08-04 21:09 - 000000000 ___RD C:\Users\User\Documents\REAPER Media 2023-05-30 18:43 - 2023-05-03 20:01 - 000000000 ____D C:\Users\User\Desktop\ghsfghfgh 2023-05-30 00:05 - 2020-05-07 08:58 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Teams 2023-05-24 20:44 - 2019-09-21 20:51 - 000000000 ____D C:\Users\User\AppData\Local\babl-0.1 2023-05-24 20:40 - 2022-12-26 22:14 - 000000000 ____D C:\Users\User\Desktop\projekt 2023-05-24 20:38 - 2020-02-02 21:06 - 000000000 ____D C:\Users\User\AppData\Local\gtk-2.0 2023-05-19 15:44 - 2022-09-29 01:27 - 000003864 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2023-05-19 15:44 - 2022-09-29 01:27 - 000003740 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2023-05-16 14:54 - 2021-03-02 16:44 - 000000000 ____D C:\Users\User\AppData\Local\BitTorrentHelper 2023-05-12 21:39 - 2022-10-22 11:13 - 000079312 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe 2023-05-12 21:39 - 2022-10-22 11:13 - 000062968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe 2023-05-12 21:39 - 2021-11-20 10:37 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll 2023-05-12 21:39 - 2020-11-26 16:05 - 002794960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll 2023-05-12 21:39 - 2020-11-26 16:05 - 000488912 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll 2023-05-12 21:39 - 2020-11-26 16:05 - 000247248 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll 2023-05-12 21:39 - 2020-11-26 16:05 - 000202192 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll 2023-05-12 21:39 - 2020-11-26 16:05 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll ==================== Pliki w katalogu głównym wybranych folderów ======== 2021-02-02 01:51 - 2022-02-06 21:12 - 000000017 _____ () C:\Users\User\AppData\Roaming\.cache3678791056.dat 2023-02-19 23:23 - 2023-02-19 23:23 - 000000046 _____ () C:\Users\User\AppData\Roaming\.crystalinst 2021-05-18 10:22 - 2022-07-08 11:23 - 000000032 _____ () C:\Users\User\AppData\Roaming\.machineId 2020-06-27 22:44 - 2020-06-29 16:33 - 000000172 ___SH () C:\Users\User\AppData\Roaming\bim.bat 2021-06-08 15:01 - 2021-06-08 15:01 - 000012288 _____ () C:\Users\User\AppData\Roaming\emp.bin 2020-06-29 00:06 - 2020-06-29 00:06 - 000000115 ___SH () C:\Users\User\AppData\Roaming\nvidia.vbs 2023-05-24 20:40 - 2023-05-24 20:40 - 000081736 _____ () C:\Users\User\AppData\Local\recently-used.xbel 2020-03-28 20:33 - 2021-04-22 17:14 - 000007604 _____ () C:\Users\User\AppData\Local\Resmon.ResmonCfg 2020-06-25 22:46 - 2020-06-25 22:46 - 000000003 _____ () C:\Users\User\AppData\Local\updater.log 2020-06-25 22:46 - 2021-05-18 20:47 - 000000059 _____ () C:\Users\User\AppData\Local\UserProducts.xml 2020-05-26 11:02 - 2020-05-26 11:02 - 000000056 _____ () C:\Users\User\AppData\Local\X-Plane 11 Preferences.prf 2020-05-26 11:05 - 2020-06-22 00:38 - 000000015 _____ () C:\Users\User\AppData\Local\X-Plane_drm_11.prf 2020-05-26 11:02 - 2020-05-26 11:02 - 000000046 _____ () C:\Users\User\AppData\Local\x-plane_install_11.txt ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================