Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 11-12-2021 Uruchomiony przez mail9 (administrator) DESKTOP-OJO7S4A (LENOVO 20193) (18-12-2021 22:52:58) Uruchomiony z C:\Users\mail9\Downloads Załadowane profile: mail9 Platform: Microsoft Windows 10 Pro N Wersja 20H2 19042.1415 (X64) Język: Polski (Polska) Domyślna przeglądarka: Chrome Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Adobe Systems Incorporated) C:\Program Files\WindowsApps\AdobeNotificationClient_2.0.1.8_x86__enpm4xejd91yc\AdobeNotificationClient.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <14> (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation) [Brak podpisu cyfrowego] [Plik w użyciu] C:\Users\mail9\AppData\Roaming\.dllbackups\dllservices.exe (Microsoft Corporation) [Brak podpisu cyfrowego] C:\Users\mail9\AppData\Local\Temp\1y6QaG1dVqmqkzRvawVNVxn3bhE\dllservices.exe <4> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <3> ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13886208 2015-05-21] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-05-21] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-05-21] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-05-21] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [RtsFT] => C:\WINDOWS\RTFTrack.exe [5060864 2015-09-02] (Realtek Semiconductor Corp -> Realtek semiconductor) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3426560 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-04] (Adobe Inc. -> ) HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [781552 2021-12-01] (Adobe Inc. -> Adobe Inc.) HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA HKU\S-1-5-21-840272515-1571022307-3406065632-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\53.0.8.0\GoogleDriveFS.exe [54402392 2021-11-19] (Google LLC -> Google, Inc.) HKU\S-1-5-21-840272515-1571022307-3406065632-1001\...\Run: [electron.app.dllservices] => C:\Users\mail9\AppData\Roaming\.dllbackups\dllservices.exe [63924677 2021-12-01] (Microsoft Corporation) [Brak podpisu cyfrowego] [Plik w użyciu] HKU\S-1-5-21-840272515-1571022307-3406065632-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [6849760 2021-10-05] (Adobe Inc. -> Adobe Systems Incorporated) HKU\S-1-5-21-840272515-1571022307-3406065632-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35373696 2021-12-07] (Piriform Software Ltd -> Piriform Software Ltd) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\96.0.4664.110\Installer\chrmstp.exe [2021-12-16] (Google LLC -> Google LLC) ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0B76E15C-032F-4B63-ADEC-2E706A028EFE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-11-15] (Google LLC -> Google LLC) Task: {1F2FE424-D311-4EC8-AE71-CD89CAA53571} - System32\Tasks\Microsoft\Windows\termsrv\RemoteFX\RemoteFXWarningTask => C:\WINDOWS\System32\RemoteFXvGPUDisablement.exe Warning (Brak pliku) Task: {2A75B898-E587-462D-A4F6-22D1CBA89E7A} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3426560 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {445A13B3-35DA-4D24-86F5-442F983F54C5} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\RUXIMDisplay => C:\Program Files\ruxim\ruximics.exe [477512 2021-05-19] (Microsoft Windows -> Microsoft Corporation) Task: {4C0E4890-4AD9-4D24-AC61-627774EE6B0F} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe /CM -search R -action INSTALL -includerebootpackages 1,3,4,5 -noicon -noreboot -nolicense -defaultupdate -schtask (Brak pliku) Task: {5BACAC2A-10AD-4E4B-B1B4-3F64A4371801} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.) Task: {613DFDC2-E5B7-4776-9AE4-35D62B015650} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-840272515-1571022307-3406065632-1001 => C:\Users\mail9\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe (Brak pliku) Task: {716925DE-F7A1-48A2-B4B7-239E794227A0} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-12-07] (Piriform Software Ltd -> Piriform) Task: {7A1D5039-9909-44E0-9F92-438DC46500EA} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe PendingTask (Brak pliku) Task: {A89889CD-9679-42B4-8A54-3C516E8D6F7A} - System32\Tasks\Microsoft\Windows\termsrv\RemoteFX\RemoteFXvGPUDisableTask => C:\WINDOWS\System32\RemoteFXvGPUDisablement.exe Disable (Brak pliku) Task: {BD928633-C559-413D-9FD3-1BFFF5A54644} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\RUXIMSync => C:\Program Files\ruxim\ruximics.exe [477512 2021-05-19] (Microsoft Windows -> Microsoft Corporation) Task: {C348FC6F-40C8-43E8-9210-5937B4C7A1DF} - System32\Tasks\CCleanerSkipUAC - mail9 => C:\Program Files\CCleaner\CCleaner.exe [29442688 2021-12-07] (Piriform Software Ltd -> Piriform Software Ltd) Task: {CECB10B5-EE53-45DC-9420-20D9F63D0879} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-11-15] (Google LLC -> Google LLC) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.18.1 Tcpip\..\Interfaces\{68b1a31c-6dc1-4433-961a-6dfa192e1a1b}: [DhcpNameServer] 192.168.18.1 Edge: ======= Edge Extension: (Brak nazwy) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [nie znaleziono] Edge Extension: (Brak nazwy) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [nie znaleziono] Edge Extension: (Brak nazwy) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [nie znaleziono] Edge Extension: (Brak nazwy) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [nie znaleziono] Edge Profile: C:\Users\mail9\AppData\Local\Microsoft\Edge\User Data\Default [2021-12-18] Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee] FireFox: ======== FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-10-05] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2021-12-01] (Adobe Inc. -> Adobe Systems) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-12-29] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Brak podpisu cyfrowego] FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-12-29] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Brak podpisu cyfrowego] FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2021-12-01] (Adobe Inc. -> Adobe Systems) Chrome: ======= CHR Profile: C:\Users\mail9\AppData\Local\Google\Chrome\User Data\Default [2021-12-18] CHR Notifications: Default -> hxxps://www.pyszne.pl CHR HomePage: Default -> hxxp://www.gazeta.pl/0,0.html?p=137 CHR StartupUrls: Default -> "hxxp://google.pl/" CHR DefaultSearchKeyword: Default -> google.pl_ CHR Extension: (Prezentacje) - C:\Users\mail9\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-11-15] CHR Extension: (Material Incognito Dark Theme) - C:\Users\mail9\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahifcnpnjgbadkjdhagpfjfkmlapfoel [2021-11-15] CHR Extension: (Dokumenty) - C:\Users\mail9\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-11-15] CHR Extension: (Dysk Google) - C:\Users\mail9\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-11-15] CHR Extension: (YouTube) - C:\Users\mail9\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-11-15] CHR Extension: (Adblock Plus - darmowy adblocker) - C:\Users\mail9\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-11-24] CHR Extension: (Adobe Acrobat) - C:\Users\mail9\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-12-06] CHR Extension: (GoFullPage - Full Page Screen Capture) - C:\Users\mail9\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdpohaocaechififmbbbbbknoalclacl [2021-11-15] CHR Extension: (Arkusze) - C:\Users\mail9\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-11-15] CHR Extension: (Zakładki iCloud) - C:\Users\mail9\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2021-11-15] CHR Extension: (Dokumenty Google offline) - C:\Users\mail9\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-12-05] CHR Extension: (Program uruchamiający aplikacje dla plików z Dysku (od Google)) - C:\Users\mail9\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-11-16] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\mail9\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-15] CHR Extension: (Gmail) - C:\Users\mail9\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-11-15] CHR HKU\S-1-5-21-840272515-1571022307-3406065632-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.) S2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [844528 2021-12-01] (Adobe Inc. -> Adobe Inc.) S2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3849472 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated) S2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3617024 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated) R3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7848632 2021-12-18] (Malwarebytes Inc -> Malwarebytes) S2 PSI_SVC_2; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6138112 2021-12-18] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2110.6-0\NisSrv.exe [2872024 2021-11-16] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2110.6-0\MsMpEng.exe [128376 2021-11-16] (Microsoft Windows Publisher -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" S3 SUService; "C:\Program Files (x86)\Lenovo\System Update\SUService.exe" [X] ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [160176 2021-12-18] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R1 googledrivefs3525; C:\WINDOWS\System32\DRIVERS\googledrivefs3525.sys [389640 2021-10-18] (Google LLC -> Google, Inc.) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [210352 2021-12-18] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-12-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [193448 2021-12-18] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [69040 2021-12-18] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-12-18] (Malwarebytes Inc -> Malwarebytes) R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [149424 2021-12-18] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48520 2021-11-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [435424 2021-11-16] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86240 2021-11-16] (Microsoft Windows -> Microsoft Corporation) S3 WinRing0_1_2_0; \??\C:\Users\mail9\AppData\Roaming\.dllbackups\data\modules\dll-host\res\openhardwaremonitor\OpenHardwareMonitorLib.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-12-18 22:52 - 2021-12-18 22:53 - 000017053 _____ C:\Users\mail9\Downloads\FRST.txt 2021-12-18 22:36 - 2021-12-18 22:36 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2021-12-18 22:36 - 2021-12-18 22:36 - 000002904 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - mail9 2021-12-18 22:36 - 2021-12-18 22:36 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk 2021-12-18 22:36 - 2021-12-18 22:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2021-12-18 22:36 - 2021-12-18 22:36 - 000000000 ____D C:\Program Files\CCleaner 2021-12-18 22:33 - 2021-12-18 22:33 - 013311448 _____ (ESET) C:\Users\mail9\Downloads\esetonlinescanner.exe 2021-12-18 22:32 - 2021-12-18 22:32 - 000000000 ____D C:\Users\mail9\AppData\LocalLow\IGDump 2021-12-18 22:11 - 2021-12-18 22:53 - 000000000 ____D C:\FRST 2021-12-18 22:10 - 2021-12-18 22:10 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2021-12-18 22:10 - 2021-12-18 22:10 - 000210352 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys 2021-12-18 22:10 - 2021-12-18 22:10 - 000193448 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys 2021-12-18 22:10 - 2021-12-18 22:10 - 000160176 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys 2021-12-18 22:10 - 2021-12-18 22:10 - 000149424 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys 2021-12-18 22:10 - 2021-12-18 22:10 - 000069040 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys 2021-12-18 22:10 - 2021-12-18 22:10 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys 2021-12-18 22:10 - 2021-12-18 22:10 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2021-12-18 22:10 - 2021-12-18 22:10 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2021-12-18 22:10 - 2021-12-18 22:10 - 000000000 ____D C:\ProgramData\Malwarebytes 2021-12-18 22:09 - 2021-12-18 22:09 - 204896952 _____ (Malwarebytes) C:\Users\mail9\Downloads\MBSetup-0076911.0076911-4.4.10.144.exe 2021-12-18 22:08 - 2021-12-18 22:52 - 002311168 _____ (Farbar) C:\Users\mail9\Downloads\FRST64.exe 2021-12-18 21:54 - 2021-12-18 21:54 - 000000000 ____D C:\Users\mail9\AppData\Local\mbam 2021-12-18 21:51 - 2021-12-18 22:10 - 000000000 ____D C:\Program Files\Malwarebytes 2021-12-18 21:46 - 2021-12-18 21:46 - 000001085 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Lightroom Classic.lnk 2021-12-18 21:43 - 2021-12-18 21:43 - 000001064 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2022.lnk 2021-12-18 21:35 - 2021-12-18 21:35 - 000000000 ____D C:\WINDOWS\SystemTemp 2021-12-18 19:19 - 2021-12-18 19:19 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe 2021-12-18 19:19 - 2021-12-18 19:19 - 000011979 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-12-18 19:18 - 2021-12-18 19:18 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe 2021-12-18 19:18 - 2021-12-18 19:18 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe 2021-12-18 19:11 - 2021-12-18 19:11 - 000000000 ___HD C:\$WinREAgent 2021-12-15 12:46 - 2021-12-15 12:52 - 000000000 ____D C:\Users\mail9\Desktop\Mateo 2021-12-13 10:54 - 2021-12-13 10:54 - 000000000 ____D C:\Program Files (x86)\VulkanRT 2021-12-13 10:54 - 2016-12-29 13:28 - 000133056 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe 2021-12-13 10:54 - 2016-09-09 19:25 - 000269600 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2021-12-13 10:54 - 2016-09-09 19:25 - 000261920 _____ C:\WINDOWS\system32\vulkan-1.dll 2021-12-13 10:54 - 2016-09-09 19:25 - 000110880 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2021-12-13 10:54 - 2016-09-09 19:24 - 000125216 _____ C:\WINDOWS\system32\vulkaninfo.exe 2021-12-08 09:26 - 2021-12-08 09:26 - 000000112 ___SH C:\bootTel.dat 2021-12-07 19:34 - 2021-12-07 19:42 - 000000000 ____D C:\Users\mail9\AppData\Roaming\NVIDIA 2021-12-07 19:34 - 2021-12-07 19:34 - 000000000 ____D C:\Users\mail9\Documents\Adobe 2021-12-06 17:41 - 2021-12-06 17:41 - 000000000 ____D C:\Users\mail9\AppData\LocalLow\Adobe 2021-12-06 17:41 - 2021-12-06 17:41 - 000000000 ____D C:\Users\mail9\AppData\Local\SolidDocuments 2021-12-06 16:57 - 2021-12-06 17:44 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2021-12-06 16:57 - 2021-12-06 17:44 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk 2021-12-05 17:59 - 2021-12-18 22:41 - 000000000 ____D C:\Users\mail9\AppData\Local\CrashDumps 2021-12-03 12:36 - 2021-12-03 12:36 - 000000000 ____D C:\Users\mail9\AppData\Roaming\Ookla 2021-12-02 11:17 - 2021-12-02 11:17 - 071572841 _____ C:\Users\mail9\Downloads\strona_wydepilujsie-całość.pdf 2021-12-02 04:29 - 2021-12-02 04:29 - 000001146 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk 2021-12-02 04:29 - 2021-12-02 04:29 - 000000000 ____D C:\Program Files\PCHealthCheck 2021-12-02 04:25 - 2021-12-18 22:41 - 000000000 ____D C:\WINDOWS\Minidump 2021-12-01 13:24 - 2021-12-01 13:24 - 000000000 ____D C:\Users\mail9\Documents\Corel 2021-12-01 13:24 - 2021-12-01 13:24 - 000000000 ____D C:\Users\mail9\AppData\Roaming\Corel 2021-12-01 13:22 - 2021-12-01 13:22 - 000000000 ____D C:\Program Files\Common Files\Corel 2021-12-01 13:22 - 2021-12-01 13:22 - 000000000 ____D C:\Program Files (x86)\gs 2021-12-01 13:22 - 2021-12-01 13:22 - 000000000 ____D C:\Program Files (x86)\Corel 2021-12-01 13:21 - 2021-12-01 13:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite 2020 (64-bit) 2021-12-01 13:20 - 2021-12-01 13:22 - 000000000 ____D C:\Program Files\Corel 2021-12-01 13:16 - 2021-12-01 13:21 - 000000000 ____D C:\ProgramData\Corel 2021-12-01 12:36 - 2021-12-18 21:59 - 000000000 ____D C:\Users\mail9\AppData\Roaming\dll-propagation 2021-12-01 12:36 - 2021-12-18 21:37 - 000000000 ____D C:\Users\mail9\AppData\Roaming\dllservices 2021-12-01 12:36 - 2021-12-01 12:36 - 000000000 ___HD C:\Users\mail9\AppData\Roaming\.dllbackups 2021-12-01 08:37 - 2021-12-01 21:43 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-12-01 08:37 - 2021-12-01 21:43 - 000003416 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d7e64664aa7885 2021-12-01 01:03 - 2021-12-01 01:03 - 000001382 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk 2021-12-01 01:02 - 2021-12-18 21:43 - 001678234 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-12-01 01:02 - 2021-12-01 01:02 - 000000000 ____D C:\ProgramData\Microsoft OneDrive 2021-12-01 01:00 - 2021-12-18 21:36 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-12-01 01:00 - 2021-12-18 19:27 - 000003522 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0 2021-12-01 01:00 - 2021-12-01 01:00 - 000007623 _____ C:\WINDOWS\diagwrn.xml 2021-12-01 01:00 - 2021-12-01 01:00 - 000007623 _____ C:\WINDOWS\diagerr.xml 2021-12-01 01:00 - 2021-12-01 01:00 - 000003498 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2021-12-01 01:00 - 2021-12-01 01:00 - 000003274 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2021-12-01 01:00 - 2021-12-01 01:00 - 000000020 ___SH C:\Users\mail9\ntuser.ini 2021-12-01 01:00 - 2021-12-01 01:00 - 000000000 _SHDL C:\Users\Default\AppData\Local\Tymczasowe pliki internetowe 2021-12-01 01:00 - 2021-12-01 01:00 - 000000000 ____D C:\WINDOWS\system32\Tasks\TVT 2021-12-01 01:00 - 2021-12-01 01:00 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo 2021-12-01 00:51 - 2017-01-17 05:57 - 000222648 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2021-12-01 00:50 - 2021-12-16 14:49 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-12-01 00:49 - 2021-12-18 21:36 - 000342816 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-12-01 00:49 - 2021-12-15 20:43 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-12-01 00:44 - 2021-12-18 21:36 - 000008192 ___SH C:\DumpStack.log.tmp 2021-11-30 03:14 - 2021-12-01 00:44 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate 2021-11-30 03:13 - 2021-12-13 11:15 - 000000000 ____D C:\Users\mail9 2021-11-30 03:13 - 2021-11-30 03:13 - 000000000 _SHDL C:\Users\mail9\Ustawienia lokalne 2021-11-30 03:13 - 2021-11-30 03:13 - 000000000 _SHDL C:\Users\mail9\Szablony 2021-11-30 03:13 - 2021-11-30 03:13 - 000000000 _SHDL C:\Users\mail9\Moje dokumenty 2021-11-30 03:13 - 2021-11-30 03:13 - 000000000 _SHDL C:\Users\mail9\Menu Start 2021-11-30 03:13 - 2021-11-30 03:13 - 000000000 _SHDL C:\Users\mail9\Documents\Moje wideo 2021-11-30 03:13 - 2021-11-30 03:13 - 000000000 _SHDL C:\Users\mail9\Documents\Moje obrazy 2021-11-30 03:13 - 2021-11-30 03:13 - 000000000 _SHDL C:\Users\mail9\Documents\Moja muzyka 2021-11-30 03:13 - 2021-11-30 03:13 - 000000000 _SHDL C:\Users\mail9\Dane aplikacji 2021-11-30 03:13 - 2021-11-30 03:13 - 000000000 _SHDL C:\Users\mail9\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2021-11-30 03:13 - 2021-11-30 03:13 - 000000000 _SHDL C:\Users\mail9\AppData\Local\Tymczasowe pliki internetowe 2021-11-30 03:13 - 2021-11-30 03:13 - 000000000 _SHDL C:\Users\mail9\AppData\Local\Historia 2021-11-30 03:13 - 2021-11-30 03:13 - 000000000 _SHDL C:\Users\mail9\AppData\Local\Dane aplikacji 2021-11-30 03:11 - 2021-11-30 03:14 - 000000000 ____D C:\WINDOWS\ServiceProfiles 2021-11-30 03:08 - 2021-11-30 03:08 - 000000000 ____D C:\ProgramData\ssh 2021-11-30 03:03 - 2021-11-30 03:03 - 002371072 _____ C:\WINDOWS\system32\rdpnano.dll 2021-11-30 03:03 - 2021-11-30 03:03 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll 2021-11-30 03:03 - 2021-11-30 03:03 - 000672768 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll 2021-11-30 03:03 - 2021-11-30 03:03 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr 2021-11-30 03:03 - 2021-11-30 03:03 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr 2021-11-30 03:03 - 2021-11-30 03:03 - 000480256 _____ C:\WINDOWS\system32\AssignedAccessCsp.dll 2021-11-30 03:03 - 2021-11-30 03:03 - 000203264 _____ C:\WINDOWS\system32\uwfcfgmgmt.dll 2021-11-30 03:03 - 2021-11-30 03:03 - 000170496 _____ C:\WINDOWS\system32\DeviceUpdateCenterCsp.dll 2021-11-30 03:03 - 2021-11-30 03:03 - 000158208 _____ C:\WINDOWS\system32\uwfcsp.dll 2021-11-30 03:03 - 2021-11-30 03:03 - 000138056 _____ C:\WINDOWS\system32\HvsiManagementApi.dll 2021-11-30 03:03 - 2021-11-30 03:03 - 000101704 _____ C:\WINDOWS\SysWOW64\HvsiManagementApi.dll 2021-11-30 03:03 - 2021-11-30 03:03 - 000053760 _____ C:\WINDOWS\SysWOW64\BWContextHandler.dll 2021-11-30 03:03 - 2021-11-30 03:03 - 000045880 _____ C:\WINDOWS\system32\HvSocket.dll 2021-11-30 03:03 - 2021-11-30 03:03 - 000040960 _____ C:\WINDOWS\system32\uwfservicingapi.dll 2021-11-30 03:02 - 2021-11-30 03:02 - 004898144 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpltfm.dll 2021-11-30 03:02 - 2021-11-30 03:02 - 003860832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpltfm.dll 2021-11-30 03:02 - 2021-11-30 03:02 - 002111488 _____ (Digimarc) C:\WINDOWS\SysWOW64\DMRCDecoder.dll 2021-11-30 03:02 - 2021-11-30 03:02 - 001864192 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll 2021-11-30 03:02 - 2021-11-30 03:02 - 001354080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpal.dll 2021-11-30 03:02 - 2021-11-30 03:02 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll 2021-11-30 03:02 - 2021-11-30 03:02 - 001164288 _____ C:\WINDOWS\system32\MBR2GPT.EXE 2021-11-30 03:02 - 2021-11-30 03:02 - 001091936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmcodecs.dll 2021-11-30 03:02 - 2021-11-30 03:02 - 001032544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ortcengine.dll 2021-11-30 03:02 - 2021-11-30 03:02 - 000980320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpal.dll 2021-11-30 03:02 - 2021-11-30 03:02 - 000915296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmcodecs.dll 2021-11-30 03:02 - 2021-11-30 03:02 - 000732000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ortcengine.dll 2021-11-30 03:02 - 2021-11-30 03:02 - 000611960 _____ C:\WINDOWS\SysWOW64\TextShaping.dll 2021-11-30 03:02 - 2021-11-30 03:02 - 000468440 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll 2021-11-30 03:02 - 2021-11-30 03:02 - 000330752 _____ C:\WINDOWS\SysWOW64\ssdm.dll 2021-11-30 03:02 - 2021-11-30 03:02 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll 2021-11-30 03:02 - 2021-11-30 03:02 - 000240640 _____ C:\WINDOWS\SysWOW64\CoreMas.dll 2021-11-30 03:02 - 2021-11-30 03:02 - 000235520 _____ C:\WINDOWS\SysWOW64\HeatCore.dll 2021-11-30 03:02 - 2021-11-30 03:02 - 000067072 _____ C:\WINDOWS\system32\BWContextHandler.dll 2021-11-30 03:02 - 2021-11-30 03:02 - 000056672 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmmvrortc.dll 2021-11-30 03:02 - 2021-11-30 03:02 - 000055376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmmvrortc.dll 2021-11-30 03:02 - 2021-11-30 03:02 - 000047472 _____ C:\WINDOWS\SysWOW64\umpdc.dll 2021-11-30 03:02 - 2021-11-30 03:02 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll 2021-11-30 03:02 - 2021-11-30 03:02 - 000010752 _____ C:\WINDOWS\SysWOW64\agentactivationruntimestarter.exe 2021-11-30 03:01 - 2021-11-30 03:01 - 002295296 _____ (Digimarc) C:\WINDOWS\system32\DMRCDecoder.dll 2021-11-30 03:01 - 2021-11-30 03:01 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll 2021-11-30 03:01 - 2021-11-30 03:01 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll 2021-11-30 03:01 - 2021-11-30 03:01 - 002254336 _____ C:\WINDOWS\system32\dwmscene.dll 2021-11-30 03:01 - 2021-11-30 03:01 - 000706536 _____ C:\WINDOWS\system32\TextShaping.dll 2021-11-30 03:01 - 2021-11-30 03:01 - 000657464 _____ C:\WINDOWS\system32\WindowManagementAPI.dll 2021-11-30 03:01 - 2021-11-30 03:01 - 000306688 _____ C:\WINDOWS\system32\HeatCore.dll 2021-11-30 03:01 - 2021-11-30 03:01 - 000231248 _____ C:\WINDOWS\system32\containerdevicemanagement.dll 2021-11-30 03:01 - 2021-11-30 03:01 - 000190976 _____ C:\WINDOWS\system32\BthpanContextHandler.dll 2021-11-30 03:01 - 2021-11-30 03:01 - 000152064 _____ C:\WINDOWS\system32\EoAExperiences.exe 2021-11-30 03:01 - 2021-11-30 03:01 - 000098304 _____ C:\WINDOWS\system32\Drivers\cimfs.sys 2021-11-30 03:01 - 2021-11-30 03:01 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe 2021-11-30 03:01 - 2021-11-30 03:01 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll 2021-11-30 03:01 - 2021-11-30 03:01 - 000029696 _____ (The ICU Project) C:\WINDOWS\system32\icuuc.dll 2021-11-30 03:01 - 2021-11-30 03:01 - 000025088 _____ (The ICU Project) C:\WINDOWS\system32\icuin.dll 2021-11-30 03:01 - 2021-11-30 03:01 - 000001370 _____ C:\WINDOWS\system32\ThirdPartyNoticesBySHS.txt 2021-11-30 03:00 - 2021-11-30 03:00 - 004227116 _____ C:\WINDOWS\system32\DefaultHrtfs.bin 2021-11-30 03:00 - 2021-11-30 03:00 - 000455168 _____ C:\WINDOWS\system32\ssdm.dll 2021-11-30 03:00 - 2021-11-30 03:00 - 000363520 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll 2021-11-30 03:00 - 2021-11-30 03:00 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll 2021-11-30 03:00 - 2021-11-30 03:00 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll 2021-11-30 03:00 - 2021-11-30 03:00 - 000197632 _____ C:\WINDOWS\system32\IHDS.dll 2021-11-30 03:00 - 2021-11-30 03:00 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll 2021-11-30 03:00 - 2021-11-30 03:00 - 000074240 _____ C:\WINDOWS\system32\rdsxvmaudio.dll 2021-11-30 03:00 - 2021-11-30 03:00 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll 2021-11-30 03:00 - 2021-11-30 03:00 - 000064552 _____ C:\WINDOWS\system32\umpdc.dll 2021-11-30 03:00 - 2021-11-30 03:00 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe 2021-11-30 02:38 - 2021-11-30 02:38 - 000008192 _____ C:\WINDOWS\system32\config\userdiff 2021-11-30 02:08 - 2021-12-18 22:41 - 000000000 ___DC C:\WINDOWS\Panther 2021-11-28 21:59 - 2021-12-01 00:44 - 000000000 ____D C:\WINDOWS\SysWOW64\SDA 2021-11-28 21:59 - 2021-11-28 21:59 - 000000000 ____D C:\Program Files (x86)\JMicron 2021-11-28 21:59 - 2012-06-22 14:22 - 000174176 _____ (JMicron Technology Corporation) C:\WINDOWS\system32\Drivers\jmcr.sys 2021-11-28 21:59 - 2010-07-27 10:08 - 000203352 _____ (JMicron Technology Corporation) C:\WINDOWS\SysWOW64\jmcricon.dll 2021-11-28 21:59 - 2010-07-27 10:08 - 000203352 _____ (JMicron Technology Corporation) C:\WINDOWS\system32\jmcricon.dll 2021-11-28 21:57 - 2021-12-18 22:00 - 000000000 ____D C:\Program Files (x86)\Lenovo 2021-11-28 21:57 - 2021-12-01 00:44 - 000000000 ____D C:\Users\mail9\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo 2021-11-28 21:57 - 2021-12-01 00:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\lenovo 2021-11-28 21:57 - 2021-11-28 21:57 - 000000000 ____D C:\WINDOWS\TempInst 2021-11-28 21:57 - 2021-11-28 21:57 - 000000000 ____D C:\Users\mail9\AppData\Local\LenovoServiceBridge 2021-11-28 21:57 - 2021-11-28 21:57 - 000000000 ____D C:\ProgramData\Lenovo 2021-11-28 21:51 - 2021-12-10 15:18 - 000000000 ____D C:\Users\mail9\Downloads\PROGRAMY 2021-11-28 21:38 - 2021-12-02 17:09 - 000000000 ____D C:\Users\mail9\Downloads\YTD 2021-11-28 21:36 - 2021-12-01 00:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YouTube Downloader 2021-11-28 21:36 - 2021-11-28 21:36 - 000001251 _____ C:\Users\mail9\Desktop\MediaHuman YouTube Downloader.lnk 2021-11-28 21:36 - 2021-11-28 21:36 - 000000000 ____D C:\Users\mail9\AppData\Local\MediaHuman 2021-11-28 21:36 - 2021-11-28 21:36 - 000000000 ____D C:\Program Files (x86)\YouTube Downloader 2021-11-28 21:35 - 2021-11-28 21:35 - 000000000 ____D C:\Users\mail9\AppData\Roaming\WinRAR 2021-11-28 21:34 - 2021-12-01 00:44 - 000000000 ____D C:\Users\mail9\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2021-11-28 21:34 - 2021-12-01 00:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2021-11-28 21:34 - 2021-11-28 21:34 - 000000000 ____D C:\Program Files\WinRAR 2021-11-28 17:37 - 2021-12-13 11:09 - 000000000 ____D C:\Users\mail9\Downloads\torrent 2021-11-28 17:36 - 2021-12-18 22:41 - 000000000 ____D C:\Users\mail9\AppData\Roaming\BitTorrent 2021-11-28 17:36 - 2021-12-13 11:22 - 000000000 ____D C:\Users\mail9\AppData\Local\BitTorrentHelper 2021-11-28 17:36 - 2021-11-28 17:36 - 000000896 _____ C:\Users\mail9\AppData\Roaming\Microsoft\Windows\Start Menu\BitTorrent.lnk 2021-11-28 17:35 - 2021-11-28 17:35 - 000000000 ____D C:\Users\mail9\AppData\Local\Adaware 2021-11-23 18:02 - 2021-12-18 21:37 - 000000000 ___RD C:\Users\mail9\Creative Cloud Files 2021-11-23 17:59 - 2021-12-18 21:48 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData 2021-11-23 17:59 - 2021-12-18 21:43 - 000000000 ____D C:\ProgramData\Adobe 2021-11-23 17:59 - 2021-12-01 13:22 - 000000000 ____D C:\ProgramData\Package Cache 2021-11-23 17:58 - 2021-12-18 21:46 - 000000000 ____D C:\Program Files\Adobe 2021-11-23 17:58 - 2021-12-18 21:43 - 000000000 ____D C:\Program Files\Common Files\Adobe 2021-11-23 17:58 - 2021-12-01 01:03 - 000000000 ____D C:\Program Files (x86)\Adobe 2021-11-23 17:58 - 2021-11-23 17:58 - 000000000 ____D C:\Users\Public\Documents\AdobeGCInfo 2021-11-23 17:56 - 2021-12-07 19:34 - 000000000 ____D C:\Users\mail9\AppData\Local\Adobe ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-12-18 22:45 - 2021-11-15 18:57 - 000000000 ____D C:\Users\mail9\AppData\Local\Packages 2021-12-18 22:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-12-18 22:43 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-12-18 22:41 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2021-12-18 22:41 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2021-12-18 22:41 - 2019-12-07 10:12 - 000000000 ____D C:\WINDOWS\INF 2021-12-18 22:11 - 2021-11-15 19:06 - 000000000 ____D C:\Program Files (x86)\Google 2021-12-18 22:00 - 2021-11-15 19:01 - 000000000 ____D C:\ProgramData\NVIDIA 2021-12-18 21:43 - 2019-12-07 16:09 - 000748784 _____ C:\WINDOWS\system32\perfh015.dat 2021-12-18 21:43 - 2019-12-07 16:09 - 000144494 _____ C:\WINDOWS\system32\perfc015.dat 2021-12-18 21:35 - 2019-12-07 16:12 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2021-12-18 21:35 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-12-18 21:35 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources 2021-12-18 21:35 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup 2021-12-18 21:35 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-12-18 21:35 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV 2021-12-18 21:35 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT 2021-12-18 21:35 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE 2021-12-18 21:35 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX 2021-12-18 21:35 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning 2021-12-18 21:35 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2021-12-18 21:35 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-12-18 21:35 - 2019-12-07 10:03 - 000262144 _____ C:\WINDOWS\system32\config\BBI 2021-12-18 19:21 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing 2021-12-18 19:21 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-12-18 19:11 - 2021-11-15 21:05 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-12-18 19:08 - 2021-11-15 21:05 - 137938848 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-12-16 15:11 - 2021-11-15 19:06 - 000002253 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2021-12-16 14:49 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-12-13 10:55 - 2021-11-15 19:00 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2021-12-10 14:49 - 2021-11-15 19:01 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2021-12-09 23:45 - 2021-11-15 19:08 - 000000000 ____D C:\Users\mail9\AppData\Local\D3DSCache 2021-12-07 19:34 - 2021-11-15 18:57 - 000000000 ____D C:\Users\mail9\AppData\Roaming\Adobe 2021-12-02 17:50 - 2021-11-15 19:14 - 000000000 ____D C:\ProgramData\Packages 2021-12-02 04:30 - 2021-11-15 21:06 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2021-12-02 04:25 - 2018-09-15 08:33 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy 2021-12-01 13:22 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2021-12-01 04:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\appcompat 2021-12-01 01:16 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog 2021-12-01 01:00 - 2021-11-15 18:57 - 000000000 __RHD C:\Users\Public\AccountPictures 2021-12-01 01:00 - 2021-11-15 18:57 - 000000000 ___RD C:\Users\mail9\3D Objects 2021-12-01 01:00 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\USOPrivate 2021-12-01 01:00 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows NT 2021-12-01 01:00 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender 2021-12-01 01:00 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2021-12-01 00:57 - 2019-12-07 10:14 - 000000000 __RHD C:\Users\Public\Libraries 2021-12-01 00:56 - 2021-11-15 18:57 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM 2021-12-01 00:50 - 2021-11-15 19:00 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2021-12-01 00:44 - 2021-11-16 15:42 - 000000000 ____D C:\Program Files\UNP 2021-12-01 00:44 - 2019-12-07 10:14 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template 2021-12-01 00:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\spool 2021-12-01 00:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState 2021-12-01 00:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Help 2021-12-01 00:44 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated 2021-12-01 00:44 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\MsDtc 2021-12-01 00:39 - 2019-12-07 10:16 - 000000000 ____D C:\WINDOWS\Setup 2021-11-30 03:14 - 2021-11-15 19:06 - 000000000 ____D C:\Program Files\Synaptics 2021-11-30 03:14 - 2021-11-15 18:57 - 000000000 ____D C:\Program Files\Realtek 2021-11-30 03:14 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed 2021-11-30 03:14 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\Macromed 2021-11-30 03:08 - 2019-12-07 16:12 - 000000000 ___SD C:\WINDOWS\system32\AppV 2021-11-30 03:08 - 2019-12-07 16:12 - 000000000 ____D C:\Program Files\Windows Photo Viewer 2021-11-30 03:08 - 2019-12-07 16:12 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2021-11-30 03:08 - 2019-12-07 16:09 - 000000000 ____D C:\WINDOWS\system32\OpenSSH 2021-11-30 03:08 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12 2021-11-30 03:08 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs 2021-11-30 03:08 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP 2021-11-30 03:08 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\F12 2021-11-30 03:08 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2021-11-30 03:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2021-11-30 03:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2021-11-30 03:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation 2021-11-30 03:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2021-11-30 03:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz 2021-11-30 03:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV 2021-11-30 03:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT 2021-11-30 03:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords 2021-11-30 03:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE 2021-11-30 03:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2021-11-30 03:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com 2021-11-30 03:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers 2021-11-30 03:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2021-11-30 03:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2021-11-30 03:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2021-11-30 03:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep 2021-11-30 03:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences 2021-11-30 03:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation 2021-11-30 03:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz 2021-11-30 03:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Keywords 2021-11-30 03:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2021-11-30 03:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\DDFs 2021-11-30 03:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Com 2021-11-30 03:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser 2021-11-30 03:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers 2021-11-30 03:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences 2021-11-30 03:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellComponents 2021-11-30 03:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\IME 2021-11-30 03:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\DiagTrack 2021-11-30 03:08 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System 2021-11-30 03:08 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender 2021-11-30 03:07 - 2019-12-07 16:12 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll 2021-11-30 03:07 - 2019-12-07 16:12 - 000020908 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml 2021-11-29 05:06 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\TextInput 2021-11-28 21:33 - 2021-11-15 20:57 - 000000000 ____D C:\Users\mail9\AppData\Local\PlaceholderTileLogoFolder 2021-11-20 06:14 - 2021-11-15 18:57 - 000000000 ____D C:\Users\mail9\AppData\Local\ConnectedDevicesPlatform 2021-11-19 22:12 - 2021-11-16 18:55 - 000002057 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk ==================== Pliki w katalogu głównym wybranych folderów ======== 2021-11-24 16:24 - 2021-11-24 16:24 - 000000000 _____ () C:\Users\mail9\AppData\Local\oobelibMkey.log ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================