Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 05-01-2021 Uruchomiony przez 1 (administrator) DESKTOP-MBQD4AC (05-01-2021 13:32:46) Uruchomiony z E:\ Załadowane profile: 1 Platform: Windows 10 Home Wersja 1909 18363.1256 (X64) Język: Polski (Polska) Domyślna przeglądarka: Edge Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe (Electronic Arts, Inc. -> Electronic Arts) E:\Origin\OriginWebHelperService.exe (Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <11> (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler64.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\MKCHelper.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_a51067c0ac557884\Display.NvContainer\NVDisplay.Container.exe <2> (Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\UserProcess\Razer Synapse Service Process.exe (Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18381792 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM-x32\...\Run: [SE61T-UserTools] => C:\Program Files (x86)\Driver - RAVCORE Mistral 4000 dpi\Driver - RAVCORE Mistral 4000 dpi.exe [1956352 2015-11-22] (TODO: <公司名>) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [DFX] => C:\Program Files (x86)\DFX\DFX.exe [1596920 2016-10-13] (Power Technology -> ) HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [601784 2020-05-13] (Razer USA Ltd. -> Razer Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-09-16] (Oracle America, Inc. -> Oracle Corporation) HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA HKU\S-1-5-21-4167625086-3165384033-634236210-1002\...\Run: [HP ENVY 5640 series (NET)] => C:\Program Files\HP\HP ENVY 5640 series\Bin\ScanToPCActivationApp.exe [3769248 2019-03-19] (HP Inc -> HP Inc.) HKU\S-1-5-21-4167625086-3165384033-634236210-1002\...\Run: [uTorrent] => C:\Users\1\AppData\Roaming\uTorrent\uTorrent.exe [2113240 2020-08-28] (BitTorrent Inc -> BitTorrent Inc.) HKU\S-1-5-21-4167625086-3165384033-634236210-1002\...\Run: [SteamServerBrowser] => C:\Users\1\AppData\Roaming\SteamServerBrowser\SteamServerBrowser.exe [345616 2020-09-01] (Lyrha Software Technologies Inc. -> ) HKU\S-1-5-21-4167625086-3165384033-634236210-1002\...\Run: [ProductAuthenticationService] => C:\Users\1\AppData\Roaming\ProductAuthenticationService\pas.exe [1004072 2019-05-07] (ResolveDevOps Limited -> ResolveDevOps Limited) HKU\S-1-5-21-4167625086-3165384033-634236210-1002\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3514608 2020-12-10] (Razer USA Ltd. -> Razer Inc.) HKU\S-1-5-21-4167625086-3165384033-634236210-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32414392 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-4167625086-3165384033-634236210-1002\...\Run: [Discord] => C:\Users\1\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub) HKU\S-1-5-21-4167625086-3165384033-634236210-1002\...\RunOnce: [Application Restart #2] => C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe [372736 2020-08-29] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3514608 2020-12-10] (Razer USA Ltd. -> Razer Inc.) HKLM\...\Print\Monitors\HP CC11 Status Monitor: C:\Windows\system32\hpinkstsCC11LM.dll [391992 2019-03-15] (HP Inc -> HP Inc.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.88\Installer\chrmstp.exe [2020-12-08] (Google LLC -> Google LLC) Startup: C:\Users\1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2020-10-03] ShortcutTarget: MEGAsync.lnk -> C:\Users\1\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited -> Mega Limited) ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {00F4E0A5-17D7-47C4-8168-78C5AC9AE6B5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-06-12] (Google LLC -> Google LLC) Task: {224026FB-FA60-49D9-B1AF-AC381E622855} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd) Task: {2DAD7C8C-8C38-4D19-BFFA-55E142DACF16} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {3A90713A-E559-4D23-9CD3-EF6A22ED99F8} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1910128 2020-10-22] (Microsoft Corporation -> Microsoft Corporation) Task: {43AFA22E-2C12-411F-8D42-28CC284A0A61} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2434424 2020-10-22] (Microsoft Corporation -> Microsoft Corporation) Task: {4AD7BFC8-5CA5-43EF-9FD2-C93385840079} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {767FA83F-626B-48F4-9265-C583FA3A6F0B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26896568 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd) Task: {847C5894-6C0E-442D-94BA-DE6C6D5B1126} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {9C45B634-B4C8-466D-BB5D-2A8C015048C5} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2434424 2020-10-22] (Microsoft Corporation -> Microsoft Corporation) Task: {A962F764-3E26-4326-91F6-0176683A85FE} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-4167625086-3165384033-634236210-1002 => C:\Users\1\AppData\Local\MEGAsync\MEGAupdater.exe [1818360 2020-09-16] (Mega Limited -> Mega Limited) Task: {B0131DAA-E708-4218-B5C9-759389457C9C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {B7101955-9A4D-41AF-9DFF-2732C5D1B172} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2311536 2020-10-22] (Microsoft Corporation -> Microsoft) Task: {B74B279E-4ED2-4968-AB0A-B674F912A767} - System32\Tasks\Opera scheduled assistant Autoupdate 1595543232 => C:\Users\2\AppData\Local\Programs\Opera\launcher.exe [1776664 2020-12-16] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\2\AppData\Local\Programs\Opera\assistant" $(Arg0) Task: {CB532A34-9878-4E38-87CF-8AA8F75C9436} - System32\Tasks\Optimize Push Notification Data File-S-1-5-21-4167625086-3165384033-634236210-1002 => {201600D8-6EFF-48CE-B842-E14D37A0682D} C:\WINDOWS\System32\wpninprc.dll [24064 2019-03-19] (Microsoft Windows -> Microsoft Corporation) Task: {E33F6C46-A573-4C52-801A-46562735160C} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1910128 2020-10-22] (Microsoft Corporation -> Microsoft Corporation) Task: {E7A2A0CF-25F1-429F-AD4D-2DE3082640B3} - System32\Tasks\GridinSoft Anti-Malware => C:\Program Files\GridinSoft Anti-Malware\gsam.exe [23528624 2021-01-04] (GridinSoft, LLC -> Gridinsoft LLC) Task: {E8D14284-310F-422D-B77F-6869808120D8} - System32\Tasks\Microsoft_MKC_Logon_Task_ceip.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ceip.exe [32624 2020-10-22] (Microsoft Corporation -> Microsoft) Task: {F0654923-92C8-40F1-BA26-5810643ED770} - System32\Tasks\HPCustParticipation HP ENVY 5640 series => C:\Program Files\HP\HP ENVY 5640 series\Bin\HPCustPartic.exe [6437792 2019-03-19] (HP Inc -> HP Inc.) Task: {FAE919E9-9BEA-4E1D-BE8B-26EAF5287929} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-06-12] (Google LLC -> Google LLC) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{871dd103-63e1-418e-90d2-d1952ec86ce6}: [DhcpNameServer] 192.168.1.1 Edge: ====== Edge Profile: C:\Users\1\AppData\Local\Microsoft\Edge\User Data\Default [2021-01-05] FireFox: ======== FF Plugin: @java.com/DTPlugin,version=11.271.2 -> C:\Program Files\Java\jre1.8.0_271\bin\dtplugin\npDeployJava1.dll [2020-12-07] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.271.2 -> C:\Program Files\Java\jre1.8.0_271\bin\plugin2\npjp2.dll [2020-12-07] (Oracle America, Inc. -> Oracle Corporation) Chrome: ======= CHR Profile: C:\Users\1\AppData\Local\Google\Chrome\User Data\Default [2021-01-05] CHR DownloadDir: E:\ CHR Notifications: Default -> hxxps://forum.dobreprogramy.pl CHR Extension: (Prezentacje) - C:\Users\1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-06-12] CHR Extension: (BetterTTV) - C:\Users\1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2020-12-18] CHR Extension: (Dokumenty) - C:\Users\1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-06-12] CHR Extension: (Dysk Google) - C:\Users\1\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-23] CHR Extension: (YouTube) - C:\Users\1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-06-12] CHR Extension: (Social Blade) - C:\Users\1\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfidkbgamfhdgmedldkagjopnbobdmdn [2020-06-12] [UpdateUrl:hxxps://addon.socialblade.com/updates.json] <==== UWAGA CHR Extension: (uBlock Origin) - C:\Users\1\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2020-12-03] CHR Extension: (Steam Inventory Helper) - C:\Users\1\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2020-12-11] CHR Extension: (Arkusze) - C:\Users\1\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-06-12] CHR Extension: (Dokumenty Google offline) - C:\Users\1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-13] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-06-12] CHR Extension: (Gmail) - C:\Users\1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23] CHR Extension: (Chrome Media Router) - C:\Users\1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-12-08] CHR Profile: C:\Users\1\AppData\Local\Google\Chrome\User Data\System Profile [2021-01-05] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4582080 2020-07-02] (AVB Disc Soft, SIA -> Disc Soft Ltd) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [802432 2020-09-17] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) S2 MBAMIService; C:\ProgramData\MB3Install\MBAMIService.exe [231120 2019-06-26] (Malwarebytes Corporation -> Malwarebytes) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2021-01-05] (Malwarebytes Inc -> Malwarebytes) R2 Origin Web Helper Service; E:\Origin\OriginWebHelperService.exe [3478336 2020-12-02] (Electronic Arts, Inc. -> Electronic Arts) R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [75136 2020-12-03] (Even Balance, Inc. -> ) R2 Razer Chroma SDK Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe [447080 2019-07-24] (Razer USA Ltd. -> Razer Inc.) R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [943240 2019-07-24] (Razer USA Ltd. -> Razer Inc.) R2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [253776 2020-12-01] (Razer USA Ltd. -> Razer Inc) R2 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [294128 2020-12-10] (Razer USA Ltd. -> Razer Inc.) R2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [533376 2020-12-09] (Razer USA Ltd. -> Razer Inc.) R2 RzKLService; C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe [290864 2020-12-08] (Razer USA Ltd. -> Razer Inc.) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_a51067c0ac557884\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_a51067c0ac557884\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 DFX11_1; C:\WINDOWS\system32\drivers\dfx11_1x64.sys [28008 2015-08-31] (Power Technology -> Windows (R) Win 7 DDK provider) R3 DFX12; C:\WINDOWS\system32\drivers\dfx12x64.sys [39048 2015-11-15] (Power Technology -> Windows (R) Win 7 DDK provider) R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2020-07-02] (AVB Disc Soft, SIA -> Disc Soft Ltd) S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2020-07-02] (AVB Disc Soft, SIA -> Disc Soft Ltd) U5 ew_hwusbdev; C:\Windows\System32\Drivers\ew_hwusbdev.sys [109568 2013-01-25] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.) S3 GridinSoftInetSecurityDriver; C:\WINDOWS\system32\DRIVERS\gsInetSecurity.sys [107784 2020-12-19] (GridinSoft, LLC -> GridinSoft LLC) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220160 2021-01-05] (Malwarebytes Inc -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-01-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2021-01-05] (Malwarebytes Inc -> Malwarebytes) R3 rzendpt; C:\WINDOWS\System32\drivers\rzendpt.sys [52240 2016-10-30] (Razer USA Ltd. -> Razer Inc) R3 rzmpos; C:\WINDOWS\System32\drivers\rzmpos.sys [48144 2016-10-30] (Razer USA Ltd. -> Razer Inc) S3 Tdsshbecr; C:\WINDOWS\System32\drivers\shbecr.sys [38496 2017-08-02] (Microsoft Windows Hardware Compatibility Publisher -> Gemalto) S3 TrojanKillerDriver; C:\WINDOWS\System32\DRIVERS\gtkdrv.sys [38216 2020-12-19] (GridinSoft, LLC -> GridinSoft LLC) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2020-12-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [70896 2020-12-04] (Microsoft Windows -> Microsoft Corporation) S3 cpuz145; \??\C:\WINDOWS\temp\cpuz145\cpuz145_x64.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-01-05 13:12 - 2021-01-05 13:12 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2021-01-05 13:12 - 2021-01-05 13:12 - 000220160 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys 2021-01-05 13:12 - 2021-01-05 13:12 - 000002041 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2021-01-05 13:12 - 2021-01-05 13:12 - 000002029 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2021-01-05 13:12 - 2021-01-05 13:11 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys 2021-01-05 13:11 - 2021-01-05 13:11 - 000000000 ____D C:\ProgramData\Malwarebytes 2021-01-05 13:09 - 2021-01-05 13:09 - 000000000 ____D C:\ProgramData\MB3Install 2021-01-05 13:05 - 2021-01-05 13:05 - 000000000 ____D C:\ProgramData\MB3Migration 2021-01-05 13:05 - 2021-01-05 13:05 - 000000000 ____D C:\ProgramData\MB3CoreBackup 2021-01-05 12:56 - 2021-01-05 12:58 - 000000000 ____D C:\AdwCleaner 2021-01-05 12:46 - 2021-01-05 12:46 - 000003316 _____ C:\WINDOWS\system32\Tasks\GridinSoft Anti-Malware 2021-01-05 12:28 - 2021-01-05 12:43 - 000000000 ____D C:\Program Files\GridinSoft Anti-Malware 2021-01-05 12:28 - 2021-01-05 12:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GridinSoft Anti-Malware 2021-01-05 12:28 - 2021-01-05 12:28 - 000000000 ____D C:\ProgramData\GridinSoft 2021-01-05 12:13 - 2021-01-05 12:13 - 000038032 _____ C:\WINDOWS\system32\Drivers\truesight.sys 2021-01-05 11:55 - 2021-01-05 13:33 - 000000000 ____D C:\FRST 2021-01-05 11:36 - 2021-01-05 11:45 - 000000000 ____D C:\ProgramData\RogueKiller 2021-01-05 11:18 - 2021-01-05 11:26 - 000000000 ____D C:\Users\1\Desktop\bardzo ważne 2021-01-05 10:40 - 2021-01-05 10:40 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys 2021-01-05 10:40 - 2021-01-05 10:40 - 000000000 ____D C:\Program Files\Malwarebytes 2021-01-05 10:31 - 2021-01-05 10:31 - 000334288 _____ (Mozilla Foundation) C:\ProgramData\freebl3.dll 2021-01-05 10:31 - 2021-01-05 10:31 - 000144848 _____ (Mozilla Foundation) C:\ProgramData\softokn3.dll 2021-01-05 10:31 - 2021-01-05 10:31 - 000137168 _____ (Mozilla Foundation) C:\ProgramData\mozglue.dll 2021-01-05 10:31 - 2021-01-05 10:31 - 000000000 ____D C:\SystemID 2021-01-04 11:40 - 2021-01-05 10:32 - 000000000 ____D C:\Users\1\AppData\Roaming\PhotoScape 2021-01-04 11:39 - 2021-01-04 11:40 - 000000000 ____D C:\Program Files (x86)\PhotoScape 2021-01-04 11:39 - 2021-01-04 11:39 - 000001104 _____ C:\Users\1\Desktop\PhotoScape.lnk 2021-01-04 11:39 - 2021-01-04 11:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoScape 2021-01-02 00:41 - 2021-01-02 00:41 - 000000974 _____ C:\Users\Public\Desktop\Hearthstone.lnk 2021-01-02 00:41 - 2021-01-02 00:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hearthstone 2021-01-02 00:40 - 2021-01-05 10:28 - 000000000 ____D C:\Users\2\AppData\Roaming\discord 2021-01-02 00:40 - 2021-01-02 00:40 - 000002207 _____ C:\Users\2\Desktop\Discord.lnk 2021-01-02 00:40 - 2021-01-02 00:40 - 000000000 ____D C:\Users\2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc 2021-01-02 00:40 - 2021-01-02 00:40 - 000000000 ____D C:\Users\2\AppData\Local\SquirrelTemp 2021-01-02 00:40 - 2021-01-02 00:40 - 000000000 ____D C:\Users\2\AppData\Local\Discord 2021-01-02 00:39 - 2021-01-02 00:40 - 068822328 _____ (Discord Inc.) C:\Users\2\Downloads\DiscordSetup.exe 2021-01-02 00:37 - 2021-01-02 20:02 - 000000000 ____D C:\Program Files (x86)\Hearthstone 2020-12-30 16:57 - 2020-12-30 16:57 - 000000682 _____ C:\Users\1\Desktop\Uplay.lnk 2020-12-30 13:31 - 2021-01-05 10:47 - 000000000 ____D C:\Program Files (x86)\Htal Player 2020-12-30 13:31 - 2020-12-30 13:31 - 000000000 ____D C:\Users\1\AppData\Roaming\MetalPlayer 2020-12-30 13:31 - 2020-12-30 13:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Htal Player 2020-12-30 13:09 - 2020-12-30 13:09 - 000000000 ____D C:\WINDOWS\LastGood 2020-12-30 13:07 - 2020-12-30 13:07 - 001786584 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2020-12-30 13:07 - 2020-12-30 13:07 - 001786584 _____ C:\WINDOWS\system32\vulkaninfo.exe 2020-12-30 13:07 - 2020-12-30 13:07 - 001454488 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2020-12-30 13:07 - 2020-12-30 13:07 - 001382616 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2020-12-30 13:07 - 2020-12-30 13:07 - 001382616 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2020-12-30 13:07 - 2020-12-30 13:07 - 001193880 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2020-12-30 13:07 - 2020-12-30 13:07 - 001087704 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2020-12-30 13:07 - 2020-12-30 13:07 - 001087704 _____ C:\WINDOWS\system32\vulkan-1.dll 2020-12-30 13:07 - 2020-12-30 13:07 - 000940760 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2020-12-30 13:07 - 2020-12-30 13:07 - 000940760 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2020-12-30 13:07 - 2020-12-30 13:07 - 000849648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe 2020-12-30 13:07 - 2020-12-30 13:07 - 000685976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe 2020-12-30 13:07 - 2020-12-30 13:07 - 000609688 _____ C:\WINDOWS\system32\nvml.dll 2020-12-30 13:07 - 2020-12-30 13:07 - 000447384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe 2020-12-30 13:07 - 2020-12-30 13:07 - 000084008 _____ C:\WINDOWS\system32\nvinfo.pb 2020-12-30 13:06 - 2020-12-30 13:06 - 008261360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2020-12-30 13:06 - 2020-12-30 13:06 - 007391984 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2020-12-30 13:06 - 2020-12-30 13:06 - 007114256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll 2020-12-30 13:06 - 2020-12-30 13:06 - 006070008 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll 2020-12-30 13:06 - 2020-12-30 13:06 - 004612504 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2020-12-30 13:06 - 2020-12-30 13:06 - 002731928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2020-12-30 13:06 - 2020-12-30 13:06 - 002103024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2020-12-30 13:06 - 2020-12-30 13:06 - 001589144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2020-12-30 13:06 - 2020-12-30 13:06 - 001512856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2020-12-30 13:06 - 2020-12-30 13:06 - 001164528 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2020-12-30 13:06 - 2020-12-30 13:06 - 000812784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll 2020-12-30 13:06 - 2020-12-30 13:06 - 000680856 _____ C:\WINDOWS\system32\nvofapi64.dll 2020-12-30 13:06 - 2020-12-30 13:06 - 000672496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll 2020-12-30 13:06 - 2020-12-30 13:06 - 000657816 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2020-12-30 13:06 - 2020-12-30 13:06 - 000559000 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll 2020-12-30 13:06 - 2020-12-30 13:06 - 000547056 _____ C:\WINDOWS\SysWOW64\nvofapi.dll 2020-12-28 12:27 - 2020-12-30 13:05 - 000000000 ____D C:\Users\1\AppData\Roaming\audacity 2020-12-28 12:27 - 2020-12-28 12:27 - 000001088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk 2020-12-28 12:27 - 2020-12-28 12:27 - 000001076 _____ C:\Users\Public\Desktop\Audacity.lnk 2020-12-28 12:27 - 2020-12-28 12:27 - 000000000 ____D C:\Users\1\AppData\Local\Audacity 2020-12-28 12:27 - 2020-12-28 12:27 - 000000000 ____D C:\Program Files (x86)\Audacity 2020-12-26 11:38 - 2020-12-26 11:38 - 000000900 _____ C:\Users\1\Desktop\DSJ4.lnk 2020-12-26 11:38 - 2020-12-26 11:38 - 000000000 ____D C:\Program Files\Deluxe Ski Jump 4 2020-12-26 11:33 - 2020-12-26 11:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Deluxe Ski Jump 4 2020-12-26 11:33 - 2020-12-26 11:37 - 000000000 ____D C:\Program Files (x86)\Deluxe Ski Jump 4 2020-12-26 10:25 - 2021-01-02 17:13 - 000000000 ____D C:\Users\1\AppData\Roaming\discord 2020-12-26 10:25 - 2020-12-26 10:25 - 000000000 ____D C:\Users\1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc 2020-12-26 10:25 - 2020-12-26 10:25 - 000000000 ____D C:\Users\1\AppData\Local\SquirrelTemp 2020-12-26 10:25 - 2020-12-26 10:25 - 000000000 ____D C:\Users\1\AppData\Local\Discord 2020-12-25 17:16 - 2021-01-05 11:22 - 000000000 ____D C:\Users\1\AppData\Local\Battle.net 2020-12-25 17:16 - 2020-12-25 17:16 - 000000000 ____D C:\Users\1\AppData\Roaming\Battle.net 2020-12-25 17:09 - 2021-01-05 10:47 - 000000000 ____D C:\Program Files\Cheat Engine 7.2 2020-12-25 17:09 - 2020-12-25 17:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 7.2 2020-12-22 10:59 - 2020-12-24 10:44 - 000000741 _____ C:\Users\1\Desktop\ACRSP.lnk 2020-12-22 10:11 - 2020-12-22 10:11 - 001682376 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll 2020-12-22 10:11 - 2020-12-22 10:11 - 000135592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys 2020-12-22 10:11 - 2020-12-22 10:11 - 000038640 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll 2020-12-22 10:11 - 2020-12-22 10:11 - 000000000 ____D C:\WINDOWS\LastGood.Tmp 2020-12-22 09:52 - 2020-12-22 09:52 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2020-12-22 09:49 - 2020-12-22 09:49 - 000000000 ____D C:\Program Files (x86)\WinRAR 2020-12-22 09:41 - 2021-01-05 13:11 - 000000000 ____D C:\Program Files\CCleaner 2020-12-22 09:41 - 2020-12-22 09:41 - 000002880 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC 2020-12-22 09:41 - 2020-12-22 09:41 - 000000865 _____ C:\Users\Public\Desktop\CCleaner.lnk 2020-12-22 09:41 - 2020-12-22 09:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2020-12-22 09:17 - 2015-06-19 21:22 - 000000000 ____D C:\Users\1\Desktop\ACR 2020-12-22 09:13 - 2020-12-22 09:13 - 000001393 _____ C:\Users\2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Przeglądarka Opera.lnk 2020-12-19 21:29 - 2020-12-19 21:29 - 000107784 _____ (GridinSoft LLC) C:\WINDOWS\system32\Drivers\gsInetSecurity.sys 2020-12-19 21:29 - 2020-12-19 21:29 - 000038216 _____ (GridinSoft LLC) C:\WINDOWS\system32\Drivers\gtkdrv.sys 2020-12-19 17:17 - 2020-12-19 17:17 - 000190351 _____ C:\Users\2\Downloads\eic_106977665.pdf 2020-12-19 17:16 - 2020-12-19 17:16 - 000246869 _____ C:\Users\2\Downloads\boarding-pass-5326f.pdf 2020-12-17 08:38 - 2020-12-17 08:38 - 000003370 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4167625086-3165384033-634236210-1002 2020-12-17 08:38 - 2020-12-17 08:38 - 000002395 _____ C:\Users\1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2020-12-16 23:57 - 2020-12-16 23:57 - 000000926 _____ C:\Users\Public\Desktop\Overwatch Test.lnk 2020-12-16 23:57 - 2020-12-16 23:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Overwatch Test 2020-12-15 19:08 - 2020-12-15 19:08 - 000003370 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4167625086-3165384033-634236210-1003 2020-12-15 19:08 - 2020-12-15 19:08 - 000002395 _____ C:\Users\2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2020-12-10 00:04 - 2020-12-10 00:04 - 002045952 _____ C:\WINDOWS\system32\rdpnano.dll 2020-12-10 00:04 - 2020-12-10 00:04 - 001756600 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2020-12-10 00:04 - 2020-12-10 00:04 - 001366144 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2020-12-10 00:04 - 2020-12-10 00:04 - 000171008 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll 2020-12-10 00:04 - 2020-12-10 00:04 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncpa.cpl 2020-12-10 00:04 - 2020-12-10 00:04 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncpa.cpl 2020-12-10 00:04 - 2020-12-10 00:04 - 000059392 _____ C:\WINDOWS\system32\runexehelper.exe 2020-12-10 00:04 - 2020-12-10 00:04 - 000001370 _____ C:\WINDOWS\system32\ThirdPartyNoticesBySHS.txt 2020-12-10 00:04 - 2020-12-10 00:04 - 000000357 _____ C:\WINDOWS\system32\DrtmAuth14.bin 2020-12-10 00:04 - 2020-12-10 00:04 - 000000357 _____ C:\WINDOWS\system32\DrtmAuth13.bin 2020-12-10 00:04 - 2020-12-10 00:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin 2020-12-10 00:04 - 2020-12-10 00:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin 2020-12-10 00:04 - 2020-12-10 00:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin 2020-12-10 00:04 - 2020-12-10 00:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin 2020-12-10 00:04 - 2020-12-10 00:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin 2020-12-10 00:04 - 2020-12-10 00:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin 2020-12-10 00:04 - 2020-12-10 00:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin 2020-12-10 00:04 - 2020-12-10 00:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin 2020-12-10 00:04 - 2020-12-10 00:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth18.bin 2020-12-10 00:04 - 2020-12-10 00:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth17.bin 2020-12-10 00:04 - 2020-12-10 00:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth16.bin 2020-12-10 00:04 - 2020-12-10 00:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth15.bin 2020-12-10 00:04 - 2020-12-10 00:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin 2020-12-10 00:04 - 2020-12-10 00:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin 2020-12-10 00:04 - 2020-12-10 00:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin 2020-12-10 00:04 - 2020-12-10 00:04 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin 2020-12-07 18:17 - 2020-12-07 18:20 - 000935295 _____ C:\Users\2\Desktop\kwalifik.jpeg 2020-12-07 18:15 - 2020-12-07 18:15 - 000720931 _____ C:\Users\2\Desktop\swiadectwo 4.jpeg 2020-12-07 18:14 - 2020-12-07 18:14 - 000717500 _____ C:\Users\2\Desktop\świadectwo 4.jpeg 2020-12-07 18:13 - 2020-12-07 18:18 - 000793816 _____ C:\Users\2\Desktop\swiadecrtwo 2.jpeg 2020-12-07 18:12 - 2020-12-07 18:18 - 000802051 _____ C:\Users\2\Desktop\świadectwo 1.jpeg 2020-12-07 17:58 - 2020-12-07 17:58 - 000192168 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll 2020-12-07 17:58 - 2020-12-07 17:58 - 000000000 ____D C:\Users\2\AppData\Roaming\Sun 2020-12-07 17:58 - 2020-12-07 17:58 - 000000000 ____D C:\Users\2\AppData\LocalLow\Sun 2020-12-07 17:58 - 2020-12-07 17:58 - 000000000 ____D C:\ProgramData\Oracle 2020-12-07 17:58 - 2020-12-07 17:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2020-12-07 17:58 - 2020-12-07 17:58 - 000000000 ____D C:\Program Files\Java 2020-12-07 17:57 - 2020-12-07 17:57 - 083364488 _____ (Oracle Corporation) C:\Users\2\Downloads\jre-8u271-windows-x64.exe 2020-12-07 17:56 - 2020-12-07 17:56 - 000401408 _____ C:\Users\2\Downloads\szafirhost.msi ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-01-05 13:16 - 2020-08-29 14:16 - 001768484 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-01-05 13:16 - 2019-03-19 13:23 - 000784514 _____ C:\WINDOWS\system32\perfh015.dat 2021-01-05 13:16 - 2019-03-19 13:23 - 000152312 _____ C:\WINDOWS\system32\perfc015.dat 2021-01-05 13:16 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF 2021-01-05 13:11 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-01-05 13:09 - 2020-08-29 14:19 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-01-05 13:09 - 2020-06-12 11:10 - 000000000 ____D C:\ProgramData\NVIDIA 2021-01-05 13:09 - 2019-03-19 05:37 - 001048576 _____ C:\WINDOWS\system32\config\BBI 2021-01-05 12:58 - 2020-06-28 12:20 - 000000000 ____D C:\Users\1\AppData\Local\Lavasoft 2021-01-05 12:51 - 2020-08-29 14:08 - 000000000 ____D C:\Users\1 2021-01-05 12:51 - 2020-06-12 16:32 - 000000000 ____D C:\Users\1\AppData\LocalLow\Temp 2021-01-05 12:51 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\GroupPolicy 2021-01-05 12:46 - 2020-06-28 12:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft 2021-01-05 12:46 - 2020-06-28 12:19 - 000000000 ____D C:\ProgramData\Lavasoft 2021-01-05 12:46 - 2020-06-12 02:01 - 000000000 ____D C:\Program Files (x86)\Steam 2021-01-05 12:21 - 2020-06-28 12:20 - 000000000 ____D C:\Users\1\AppData\Roaming\Lavasoft 2021-01-05 12:21 - 2020-06-28 12:20 - 000000000 ____D C:\Program Files (x86)\Lavasoft 2021-01-05 11:20 - 2020-11-12 10:00 - 000000000 ____D C:\Users\1\AppData\Local\Ubisoft Game Launcher 2021-01-05 10:40 - 2019-03-19 05:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2021-01-05 10:33 - 2020-11-23 10:58 - 000000000 ____D C:\temp 2021-01-05 10:33 - 2020-06-12 02:41 - 000000000 ____D C:\Users\1\AppData\Local\VirtualStore 2021-01-05 10:32 - 2020-07-12 09:33 - 000000000 ____D C:\Users\1\AppData\Local\CrashDumps 2021-01-05 10:32 - 2020-07-02 01:24 - 000000000 ____D C:\Users\2\AppData\Roaming\Origin 2021-01-05 10:09 - 2020-06-12 09:40 - 000000000 ____D C:\ProgramData\ProductData 2021-01-05 09:57 - 2020-11-03 00:52 - 000000000 ____D C:\Program Files (x86)\Origin Games 2021-01-05 09:57 - 2020-07-02 01:24 - 000000000 ____D C:\Users\2\AppData\Local\Origin 2021-01-05 09:57 - 2020-07-02 01:22 - 000000000 ____D C:\ProgramData\Origin 2021-01-05 02:33 - 2020-11-14 14:07 - 000000000 ____D C:\Users\2\AppData\Local\Battle.net 2021-01-04 11:29 - 2020-08-29 14:05 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-01-04 11:29 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps 2021-01-04 11:29 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-01-03 23:27 - 2020-06-12 22:24 - 000000000 ____D C:\Users\2\AppData\Local\Paradox Interactive 2021-01-02 20:02 - 2020-11-21 23:21 - 000000000 ____D C:\Program Files (x86)\Overwatch 2021-01-02 20:02 - 2020-11-14 14:06 - 000000000 ____D C:\Program Files (x86)\Battle.net 2021-01-02 18:42 - 2020-08-12 01:55 - 000000000 ____D C:\Users\2\AppData\Local\CrashDumps 2021-01-02 18:22 - 2020-06-12 20:19 - 000000000 ____D C:\Users\2\AppData\Local\D3DSCache 2021-01-02 00:43 - 2020-06-12 18:56 - 000000000 ____D C:\Users\2\AppData\Local\VirtualStore 2021-01-02 00:36 - 2020-11-14 14:07 - 000000000 ____D C:\Users\2\AppData\Roaming\Battle.net 2020-12-31 17:48 - 2020-06-13 08:03 - 000000000 ____D C:\Users\1\AppData\Local\D3DSCache 2020-12-31 08:31 - 2020-07-21 14:51 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2020-12-31 00:28 - 2020-08-29 14:08 - 000000000 ____D C:\Users\2 2020-12-30 16:57 - 2020-10-04 09:41 - 000000000 ____D C:\Users\1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft 2020-12-30 16:56 - 2020-10-04 09:41 - 000000000 ____D C:\Program Files (x86)\Ubisoft 2020-12-30 14:24 - 2020-07-05 13:10 - 000000000 ____D C:\Users\1\Desktop\całe te 2020-12-29 13:48 - 2020-08-29 15:15 - 000000000 ____D C:\Users\1\Desktop\csgo 2020-12-25 17:16 - 2020-10-03 11:47 - 000000000 ____D C:\Users\1\AppData\Local\Blizzard Entertainment 2020-12-22 10:59 - 2020-11-02 12:59 - 000000000 ____D C:\ProgramData\Ubisoft 2020-12-22 09:57 - 2020-10-07 09:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer 2020-12-22 09:55 - 2020-06-12 09:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer Cortex 2020-12-22 09:52 - 2020-11-02 13:01 - 000000000 ____D C:\Users\1\AppData\Roaming\Ubisoft 2020-12-22 09:49 - 2020-06-27 10:46 - 000000000 ____D C:\Users\1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2020-12-22 09:49 - 2020-06-27 10:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2020-12-20 11:39 - 2020-06-16 09:52 - 000000833 _____ C:\Users\1\Desktop\gieryyy.txt 2020-12-19 10:12 - 2020-10-30 07:49 - 000002450 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2020-12-19 10:12 - 2020-10-30 07:49 - 000002288 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2020-12-17 08:38 - 2020-06-12 07:41 - 000000000 ___RD C:\Users\1\OneDrive 2020-12-15 19:08 - 2020-06-12 19:01 - 000000000 ___RD C:\Users\2\OneDrive 2020-12-10 08:45 - 2020-06-12 02:41 - 000000000 ___RD C:\Users\1\3D Objects 2020-12-10 08:45 - 2020-06-12 01:55 - 000000000 __RHD C:\Users\Public\AccountPictures 2020-12-10 08:39 - 2020-08-29 14:05 - 000267352 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2020-12-10 08:39 - 2020-06-12 18:56 - 000000000 ___RD C:\Users\2\3D Objects 2020-12-10 01:54 - 2019-03-19 05:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2020-12-10 01:54 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2020-12-10 01:54 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SystemResources 2020-12-10 01:54 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\oobe 2020-12-10 01:54 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Dism 2020-12-10 01:54 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ShellExperiences 2020-12-10 01:54 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\bcastdvr 2020-12-10 01:54 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files\Windows Defender 2020-12-10 01:54 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files (x86)\Windows Defender 2020-12-10 00:07 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\CbsTemp 2020-12-08 18:05 - 2020-12-01 23:34 - 000000704 _____ C:\Users\Public\Desktop\FIFA 21.lnk 2020-12-08 08:32 - 2020-06-12 02:01 - 000002307 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2020-12-08 08:32 - 2020-06-12 02:01 - 000002266 _____ C:\Users\Public\Desktop\Google Chrome.lnk ==================== Pliki w katalogu głównym wybranych folderów ======== 2021-01-05 10:31 - 2021-01-05 10:31 - 000334288 _____ (Mozilla Foundation) C:\ProgramData\freebl3.dll 2021-01-05 10:31 - 2021-01-05 10:31 - 000137168 _____ (Mozilla Foundation) C:\ProgramData\mozglue.dll 2021-01-05 10:31 - 2021-01-05 10:31 - 000440120 _____ (Microsoft Corporation) C:\ProgramData\msvcp140.dll 2021-01-05 10:31 - 2021-01-05 10:31 - 000144848 _____ (Mozilla Foundation) C:\ProgramData\softokn3.dll 2021-01-05 10:31 - 2021-01-05 10:31 - 000083784 _____ (Microsoft Corporation) C:\ProgramData\vcruntime140.dll 2020-08-29 14:49 - 2020-08-29 14:49 - 000320202 ___SH () C:\Users\1\AppData\Roaming\drubstu 2020-06-28 14:54 - 2020-07-21 09:56 - 000000081 _____ () C:\Users\1\AppData\Local\.bidstack.fault 2020-11-25 08:13 - 2020-11-25 08:13 - 000007602 _____ () C:\Users\1\AppData\Local\Resmon.ResmonCfg ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================