Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 24-01-2021 01
- Uruchomiony przez Diana (administrator) DIANA-KOMPUTER (Gigabyte Technology Co., Ltd. B85M-D3H) (26-01-2021 17:47:45)
- Uruchomiony z C:\Users\Diana\Downloads
- Załadowane profile: Diana
- Platform: Windows 10 Home Wersja 1909 18363.1316 (X64) Język: Polski (Polska)
- Domyślna przeglądarka: FF
- Tryb startu: Normal
- ==================== Procesy (filtrowane) =================
- (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)
- (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
- (Adobe Inc. -> Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe
- (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
- (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
- (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswEngSrv.exe
- (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe
- (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
- (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\avgToolsSvc.exe
- (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe <3>
- (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe
- (Electronic Arts, Inc. -> ) D:\origin\QtWebEngineProcess.exe <2>
- (Electronic Arts, Inc. -> Electronic Arts) D:\origin\Origin.exe
- (Electronic Arts, Inc. -> Electronic Arts) D:\origin\OriginWebHelperService.exe
- (GG Network S.A. -> GG Network S.A.) C:\Users\Diana\AppData\Local\GG\Application\gghub.exe
- (Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
- (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
- (Intel(R) Corporation) [Brak podpisu cyfrowego] C:\Program Files\Intel\iCLS Client\HeciServer.exe
- (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
- (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
- (LogMeIn, Inc. -> LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
- (LogMeIn, Inc. -> LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
- (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
- (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
- (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <8>
- (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
- (Microsoft Corporation -> Microsoft Corporation) C:\Users\Diana\AppData\Local\Microsoft\OneDrive\OneDrive.exe
- (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
- (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2>
- (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20368.0_x64__8wekyb3d8bbwe\HxAccounts.exe
- (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20368.0_x64__8wekyb3d8bbwe\HxOutlook.exe
- (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20368.0_x64__8wekyb3d8bbwe\HxTsr.exe
- (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.20122.11121.0_x64__8wekyb3d8bbwe\Music.UI.exe
- (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
- (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
- (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.1310_none_16f941c72a2d5db6\TiWorker.exe
- (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <13>
- (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_90685a092bcf58c7\Display.NvContainer\NVDisplay.Container.exe <2>
- (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe <2>
- (Parsec Cloud, Inc. -> Parsec) C:\Program Files\Parsec\parsecd.exe
- (Parsec Cloud, Inc. -> Parsec) C:\Program Files\Parsec\pservice.exe
- (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
- (Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
- (Valve -> Valve Corporation) D:\steam\bin\cef\cef.win7x64\steamwebhelper.exe <8>
- (Valve -> Valve Corporation) D:\steam\steam.exe
- (Xevin Consulting -> GG Network S.A.) C:\Users\Diana\AppData\Local\GG\Application\ggapp.exe
- ==================== Rejestr (filtrowane) ===================
- (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)
- HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13423688 2013-02-26] (Realtek Semiconductor Corp -> Realtek Semiconductor)
- HKLM\...\Run: [HotKeysCmds] => C:\Windows\system32\hkcmd.exe
- HKLM\...\Run: [Persistence] => C:\Windows\system32\igfxpers.exe
- HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [165000 2020-12-17] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
- HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
- HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
- HKLM-x32\...\Run: [USB3MON] => "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
- HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [134616 2013-03-12] (Intel Corporation - Software and Firmware Products -> Intel Corporation)
- HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard Company -> Hewlett-Packard)
- HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [5866032 2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)
- HKLM-x32\...\Run: [] => [X]
- HKU\S-1-5-21-4268242269-3103951796-2047070185-1000\...\Run: [EADM] => D:\origin\Origin.exe [3144744 2021-01-20] (Electronic Arts, Inc. -> Electronic Arts)
- HKU\S-1-5-21-4268242269-3103951796-2047070185-1000\...\Run: [Parsec.App.0] => C:\Program Files\Parsec\parsecd.exe [431120 2020-09-10] (Parsec Cloud, Inc. -> Parsec)
- HKU\S-1-5-21-4268242269-3103951796-2047070185-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [29271224 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
- HKU\S-1-5-21-4268242269-3103951796-2047070185-1000\...\Run: [Adaware Protect] => C:\Program Files\Adaware Protect\AdawareProtect.exe
- HKU\S-1-5-18\...\RunOnce: [Application Restart #1] => C:\Windows\System32\osk.exe [642560 2020-09-26] (Microsoft Windows -> Microsoft Corporation)
- HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [65496 2020-10-22] (Adobe Inc. -> Adobe Systems Inc)
- HKLM\...\Print\Monitors\HP B511 Status Monitor: C:\WINDOWS\system32\hpinkstsB511LM.dll [333496 2013-02-10] (Hewlett Packard -> Hewlett-Packard Co.)
- HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.141\Installer\chrmstp.exe [2021-01-12] (Google LLC -> Google LLC)
- HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{AC76BA86-0000-0000-7760-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat DC\Esl\Aiod.dll [2020-09-11] (Adobe Inc. -> Adobe Systems, Inc.)
- HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
- AppInit_DLLs: C:\Windows\system32\nvinitx.dll => Brak pliku
- Startup: C:\Users\Diana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Powiadomienia monitorowania tuszu - HP Deskjet 1010 series.lnk [2020-09-23]
- ShortcutAndArgument: Powiadomienia monitorowania tuszu - HP Deskjet 1010 series.lnk -> C:\Windows\system32\RunDll32.exe => "C:\Program Files\HP\HP Deskjet 1010 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN37H19Q1H05XH;CONNECTION=USB;MONITOR=1;
- HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA
- HKLM\SOFTWARE\Policies\Google: Ograniczenia <==== UWAGA
- ==================== Zaplanowane zadania (filtrowane) ============
- (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
- Task: {004E5D89-63B8-472B-A728-329C0B9790F9} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
- Task: {010E602D-7FF8-4A18-A8A2-1724CCB231EF} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
- Task: {01A7D491-F30B-4E19-BBD5-563BEC57A289} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
- Task: {02B1B377-6CAC-4B24-B738-E8EB817F1DC2} - System32\Tasks\HPCustParticipation HP Deskjet 1010 series => C:\Program Files\HP\HP Deskjet 1010 series\Bin\HPCustPartic.exe [5422112 2013-02-08] (Hewlett Packard -> Hewlett-Packard Co.)
- Task: {0F2F1433-9865-40FE-93AB-2632CF632E93} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [4669576 2020-12-17] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
- Task: {1F51A6A6-75E2-41B8-936C-D303D05D2852} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-03-19] (Google Inc -> Google Inc.)
- Task: {233F22BF-3337-432E-AA2B-7112914A71C3} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
- Task: {25955D4B-43A2-4682-B865-3C46843FBEE3} - System32\Tasks\Opera scheduled assistant Autoupdate 1553016887 => C:\Users\Diana\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Diana\AppData\Local\Programs\Opera\assistant" $(Arg0)
- Task: {286E1600-7F8C-47A6-87E4-666D2E3508C7} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
- Task: {28ED99D6-675D-43C1-8907-08094DBC4CD7} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
- Task: {398B8134-D10E-47BF-8D50-FD315D42D5CA} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
- Task: {3F141169-4DE4-441B-A284-E5B9ED007936} - System32\Tasks\AVGUpdateTaskMachineUA => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe
- Task: {484657FA-8C12-4572-BF42-B895FA8F791D} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDfE067B1}
- Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47c2-B62A-B7C4CED925CB}
- Task: {495C0ECA-957D-4D8A-B470-D67DE381BB02} - System32\Tasks\Tomb Raider - Anniversary => C:\Program Files (x86)\Tomb Raider - Anniversary\TRA.exe
- Task: {5156D6A9-3172-4C61-88FE-A46FBDDD2CBC} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4f47-879B-29A80C355D61}
- Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
- Task: {61E3E287-2511-4437-ACEE-28D49AD06947} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
- Task: {6AE81488-860E-42D9-AF5E-9BA6EBF92D85} - System32\Tasks\{CC2D8536-CDDB-400C-AE02-089C26CE6241} => C:\Windows\system32\pcalua.exe -a "E:\gry\the sims 3\The Sims 3\Sims3Setup.exe" -d "E:\gry\the sims 3\The Sims 3"
- Task: {6BD79660-8825-472D-9146-77A83CC3B897} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
- Task: {768532C6-61C4-4494-8718-C018353E58D8} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
- Task: {76FD26AC-B428-449A-89D6-39F9E4C326DF} - System32\Tasks\Opera scheduled Autoupdate 1553016886 => C:\Users\Diana\AppData\Local\Programs\Opera\launcher.exe
- Task: {7B9AEA0D-539A-4194-986B-730982E4267C} - System32\Tasks\Microsoft\Windows\End Of Support\Notify2 => C:\WINDOWS\system32\sipnotify.exe
- Task: {7DB62797-2574-4DA0-A101-E948AF8E8990} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe [1504312 2020-12-09] (Adobe Inc. -> Adobe)
- Task: {8523369E-5E34-44E7-9554-F2BD23F9E1CF} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
- Task: {8C629CE9-0014-4F33-A8D6-88D8B65BFD3B} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
- Task: {8D1D041B-6FFF-4AD7-8EE9-5640FB370240} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
- Task: {908069B2-7CD1-41BD-A87C-75AAF747894C} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
- Task: {9456F06A-27BA-44D7-97A6-D07D29F73DB8} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
- Task: {9A2108FF-E0BD-4DD9-8F72-7297E3FBF6F0} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
- Task: {9D922B8E-54D3-4A37-B8F1-B0D950551530} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
- Task: {A74734FA-3065-4345-BE30-BD67EC2605F2} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [24770744 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
- Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40b4-8963-D3C761B18371}
- Task: {BE779B8B-2355-42DD-B7B2-0F8B0062A5D0} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
- Task: {BF1A1537-D77D-4274-82EE-8B454B5213CF} - \Microsoft\Windows\Setup\EOSNotify -> Brak pliku <==== UWAGA
- Task: {C7A89938-1A95-47A4-8CF7-817FB45F52A1} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
- Task: {CC7DD4DC-40BE-4FAE-9993-CBB22BE1B04E} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
- Task: {CF4C6270-9BF1-49D5-A44A-45B0EF3F77CD} - System32\Tasks\{C5C860C6-8A49-4306-8EFF-D66A86500FC7} => C:\Windows\system32\pcalua.exe -a G:\setup.exe -d G:\
- Task: {CF64CD3B-4A26-46E4-9D36-FCE850F082C0} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
- Task: {D105E4B9-0AA0-4A50-A811-78D407A0456A} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
- Task: {D28272E6-E2E3-4BA3-8F5D-140C4B0C8949} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43da-BFD7-FBEEA2180A1E}
- Task: {DA1A57F8-561D-4E02-9101-D82A15ACA308} - System32\Tasks\AVGUpdateTaskMachineCore => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe
- Task: {DEDA17B3-B0F8-4FCC-9B0C-A506429A1FE4} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1773192 2020-09-18] (AVG Technologies USA, LLC -> AVG Technologies)
- Task: {E1E86FC8-8263-49FD-AA4A-5170E61989C9} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
- Task: {E9C513C3-A1EC-4D4A-B135-A207BE43A411} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-03-19] (Google Inc -> Google Inc.)
- Task: {EA3F7487-450B-40B1-8AC2-7AB57EA25CD6} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
- Task: {EED80B54-58B5-44E4-921F-8E7C7947601C} - System32\Tasks\Microsoft\Windows\End Of Support\Notify1 => C:\WINDOWS\system32\sipnotify.exe
- Task: {F0760368-2C8C-475A-99C5-DB8613DE71C9} - \Microsoft\Windows\Setup\EOSNotify2 -> Brak pliku <==== UWAGA
- Task: {F370E0A1-D96B-49D8-996D-713745F6BFC0} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\Adobe Acrobat Update Task" /ENABLE
- Task: {F370E0A1-D96B-49D8-996D-713745F6BFC0} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\Adobe Flash Player NPAPI Notifier" /ENABLE
- Task: {F370E0A1-D96B-49D8-996D-713745F6BFC0} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\Adobe Flash Player Updater" /ENABLE
- Task: {F370E0A1-D96B-49D8-996D-713745F6BFC0} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\AdobeGCInvoker-1.0" /ENABLE
- Task: {F370E0A1-D96B-49D8-996D-713745F6BFC0} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\Antivirus Emergency Update" /ENABLE
- Task: {F370E0A1-D96B-49D8-996D-713745F6BFC0} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(6): schtasks.exe -> /Change /TN "\CCleaner Update" /ENABLE
- Task: {F370E0A1-D96B-49D8-996D-713745F6BFC0} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(7): schtasks.exe -> /Change /TN "\CCleanerSkipUAC" /ENABLE
- Task: {F370E0A1-D96B-49D8-996D-713745F6BFC0} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(8): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineCore" /ENABLE
- Task: {F370E0A1-D96B-49D8-996D-713745F6BFC0} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(9): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineUA" /ENABLE
- Task: {F370E0A1-D96B-49D8-996D-713745F6BFC0} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(10): schtasks.exe -> /Change /TN "\HPCustParticipation HP Deskjet 1010 series" /ENABLE
- Task: {F370E0A1-D96B-49D8-996D-713745F6BFC0} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(11): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineCore" /ENABLE
- Task: {F370E0A1-D96B-49D8-996D-713745F6BFC0} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(12): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineUA" /ENABLE
- Task: {F370E0A1-D96B-49D8-996D-713745F6BFC0} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(13): schtasks.exe -> /Change /TN "\OneDrive Standalone Update Task-S-1-5-21-4268242269-3103951796-2047070185-1000" /ENABLE
- Task: {F370E0A1-D96B-49D8-996D-713745F6BFC0} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(14): schtasks.exe -> /Change /TN "\Opera scheduled assistant Autoupdate 1553016887" /ENABLE
- Task: {F370E0A1-D96B-49D8-996D-713745F6BFC0} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(15): schtasks.exe -> /Change /TN "\Opera scheduled Autoupdate 1553016886" /ENABLE
- Task: {F370E0A1-D96B-49D8-996D-713745F6BFC0} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(16): schtasks.exe -> /Change /TN "\Tomb Raider - Anniversary" /ENABLE
- Task: {F370E0A1-D96B-49D8-996D-713745F6BFC0} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(17): schtasks.exe -> /Change /TN "\{C5C860C6-8A49-4306-8EFF-D66A86500FC7}" /ENABLE
- Task: {F370E0A1-D96B-49D8-996D-713745F6BFC0} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(18): schtasks.exe -> /Change /TN "\{CC2D8536-CDDB-400C-AE02-089C26CE6241}" /ENABLE
- Task: {F370E0A1-D96B-49D8-996D-713745F6BFC0} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(19): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE
- Task: {F458BA00-17E9-4068-8A6A-BEB0DF76F375} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
- Task: {F4B1862B-3D31-42E1-854C-BF0E8BB4D80F} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-09] (Adobe Inc. -> Adobe)
- Task: {F7F87765-681F-4F2D-A975-0B772C8B12B9} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
- Task: {FBF34ACA-FA00-425A-94CF-473323A88A37} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [693216 2021-01-06] (Mozilla Corporation -> Mozilla Foundation)
- (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.)
- ==================== Internet (filtrowane) ====================
- (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)
- Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
- Tcpip\..\Interfaces\{3410EF49-D476-4BA6-83DC-4EE6CF2DA77B}: [DhcpNameServer] 192.168.0.1
- Edge:
- =======
- Edge Profile: C:\Users\Diana\AppData\Local\Microsoft\Edge\User Data\Default [2021-01-26]
- FireFox:
- ========
- FF DefaultProfile: flmj7vls.default
- FF ProfilePath: C:\Users\Diana\AppData\Roaming\Mozilla\Firefox\Profiles\flmj7vls.default [2021-01-26]
- FF Session Restore: Mozilla\Firefox\Profiles\flmj7vls.default -> [funkcja włączona]
- FF HomepageOverride: Mozilla\Firefox\Profiles\flmj7vls.default -> Enabled: _8eMembers_@download.howtosimplified.com
- FF NewTabOverride: Mozilla\Firefox\Profiles\flmj7vls.default -> Enabled: _8eMembers_@download.howtosimplified.com
- FF NewTabOverride: Mozilla\Firefox\Profiles\flmj7vls.default -> Enabled: uBlock0@raymondhill.net
- FF Extension: (Song id) - C:\Users\Diana\AppData\Roaming\Mozilla\Firefox\Profiles\flmj7vls.default\Extensions\song-id@losnappas.xpi [2020-05-28]
- FF Extension: (Tab Counter) - C:\Users\Diana\AppData\Roaming\Mozilla\Firefox\Profiles\flmj7vls.default\Extensions\tab-counter@daawesomep.addons.mozilla.org.xpi [2019-03-19]
- FF Extension: (uBlock Origin) - C:\Users\Diana\AppData\Roaming\Mozilla\Firefox\Profiles\flmj7vls.default\Extensions\uBlock0@raymondhill.net.xpi [2021-01-04]
- FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
- FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2020-09-11]
- FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
- FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll [2020-12-09] (Adobe Inc. -> )
- FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
- FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
- FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
- FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll [2020-12-09] (Adobe Inc. -> )
- FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-03-12] (Intel® Identity Protection Technology Software -> Intel Corporation)
- FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-03-12] (Intel® Identity Protection Technology Software -> Intel Corporation)
- FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)
- FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)
- Chrome:
- =======
- CHR DefaultProfile: Default
- CHR Profile: C:\Users\Diana\AppData\Local\Google\Chrome\User Data\Default [2021-01-25]
- CHR Notifications: Default -> hxxps://www.instagram.com
- CHR Session Restore: Default -> [funkcja włączona]
- CHR Extension: (YouTube) - C:\Users\Diana\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-03-21]
- CHR Extension: (Adobe Acrobat) - C:\Users\Diana\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-12-18]
- CHR Extension: (AVG SafePrice | Porównania, promocje, kupony) - C:\Users\Diana\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbckjcfnjmoiinpgddefodcighgikkgn [2020-08-12]
- CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Diana\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-09-30]
- CHR Extension: (Gmail) - C:\Users\Diana\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-22]
- CHR Extension: (Chrome Media Router) - C:\Users\Diana\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-12-11]
- CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
- CHR HKLM-x32\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn]
- Opera:
- =======
- OPR Profile: C:\Users\Diana\AppData\Roaming\Opera Software\Opera Stable [2019-03-19]
- ==================== Usługi (filtrowane) ===================
- (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
- R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
- S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-09] (Adobe Inc. -> Adobe)
- R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3739728 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
- R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3511376 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
- R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [622312 2020-12-17] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
- R2 AVG Tools; C:\Program Files\AVG\Antivirus\avgToolsSvc.exe [352392 2020-12-17] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
- R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [8524736 2020-12-17] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
- R2 AvgWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [110608 2020-12-17] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
- R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3361736 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.)
- R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [731648 2013-02-13] (Intel(R) Corporation) [Brak podpisu cyfrowego]
- R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc. -> LogMeIn, Inc.)
- R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2021-01-25] (Malwarebytes Inc -> Malwarebytes)
- S3 Origin Client Service; D:\origin\OriginClientService.exe [2533952 2021-01-20] (Electronic Arts, Inc. -> Electronic Arts)
- R2 Origin Web Helper Service; D:\origin\OriginWebHelperService.exe [3479112 2021-01-20] (Electronic Arts, Inc. -> Electronic Arts)
- R2 Parsec; C:\Program Files\Parsec\pservice.exe [394256 2020-09-10] (Parsec Cloud, Inc. -> Parsec)
- S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
- S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
- R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_90685a092bcf58c7\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_90685a092bcf58c7\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
- ===================== Sterowniki (filtrowane) ===================
- (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
- R0 avgArDisk; C:\WINDOWS\System32\drivers\avgArDisk.sys [36936 2020-12-17] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
- R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [208808 2020-12-17] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
- R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [332944 2020-12-17] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
- R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [247952 2020-12-17] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
- R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [97424 2020-12-17] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
- R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [16832 2020-12-17] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.)
- R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [42568 2020-12-17] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
- R1 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [176528 2020-12-17] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
- R1 avgNetHub; C:\WINDOWS\System32\drivers\avgNetHub.sys [522616 2020-12-17] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
- S3 avgNetNd6; C:\WINDOWS\system32\DRIVERS\avgNetNd6.sys [29944 2020-06-16] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
- R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [109064 2020-12-17] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
- R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [84640 2020-12-17] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
- R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [851392 2020-12-17] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
- R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [469040 2021-01-09] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
- R2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [214936 2021-01-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
- R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [325056 2021-01-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
- S3 hamachi; C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [45680 2019-04-02] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.)
- R3 keyboard; C:\Windows\System32\Drivers\keyboard.sys [18536 2019-10-20] (Francisco Lopes da Silva -> Oblita)
- R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220160 2021-01-25] (Malwarebytes Inc -> Malwarebytes)
- S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-01-25] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
- R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-01-25] (Malwarebytes Inc -> Malwarebytes)
- R3 mouse; C:\Windows\System32\Drivers\mouse.sys [18536 2019-10-20] (Francisco Lopes da Silva -> Oblita)
- S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
- S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
- S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
- S3 cpuz148; \??\C:\WINDOWS\temp\cpuz148\cpuz148_x64.sys [X]
- U3 idsvc; Brak ImagePath
- ==================== NetSvcs (filtrowane) ===================
- (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
- ==================== Trzy miesiące (utworzone) (filtrowane) =========
- (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
- 2021-01-26 17:47 - 2021-01-26 17:49 - 000033757 _____ C:\Users\Diana\Downloads\FRST.txt
- 2021-01-26 17:47 - 2021-01-26 17:48 - 000000000 ____D C:\FRST
- 2021-01-26 17:46 - 2021-01-26 17:46 - 002297344 _____ (Farbar) C:\Users\Diana\Downloads\FRST64.exe
- 2021-01-25 17:38 - 2017-03-26 13:06 - 733612032 _____ C:\Users\Diana\Downloads\Vaiana Skarb oceanu Moana (2016) Dubbing PL.avi
- 2021-01-25 17:20 - 2021-01-25 17:27 - 733612224 _____ C:\Users\Diana\Downloads\Vaiana Skarb oceanu Moana (2016) Dubbing PL.zip
- 2021-01-25 13:13 - 2021-01-25 13:13 - 002493920 _____ C:\Users\Diana\Downloads\video-1611574470.mp4
- 2021-01-25 13:13 - 2021-01-25 13:13 - 000882427 _____ C:\Users\Diana\Downloads\video-1611574483.mp4
- 2021-01-25 13:13 - 2021-01-25 13:13 - 000769282 _____ C:\Users\Diana\Downloads\video-1611574783.mp4
- 2021-01-25 01:31 - 2021-01-25 01:31 - 000158910 _____ C:\Users\Diana\Desktop\Voice 005.m4a
- 2021-01-25 01:13 - 2021-01-25 01:13 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
- 2021-01-25 01:13 - 2021-01-25 01:13 - 000220160 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
- 2021-01-25 01:13 - 2021-01-25 01:13 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
- 2021-01-25 01:13 - 2021-01-25 01:12 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
- 2021-01-25 01:13 - 2021-01-25 01:12 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
- 2021-01-25 01:11 - 2021-01-25 01:11 - 198434592 _____ (Malwarebytes) C:\Users\Diana\Downloads\mb4-setup-consumer-4.3.0.206-1.0.1146-1.0.35789.exe
- 2021-01-25 01:06 - 2021-01-25 01:09 - 000000000 ____D C:\Users\Diana\AppData\Roaming\Adaware Protect
- 2021-01-25 01:04 - 2021-01-25 01:04 - 015559016 _____ (adaware) C:\Users\Diana\Downloads\adawareprotect.exe
- 2021-01-24 21:03 - 2021-01-25 10:12 - 000000000 ____D C:\Users\Diana\Desktop\Ginta Lapina 1,5h robione
- 2021-01-24 18:17 - 2021-01-24 18:19 - 000000000 ____D C:\Users\Diana\Desktop\jedzonko
- 2021-01-24 12:36 - 2021-01-24 18:28 - 000000000 ____D C:\Users\Diana\Desktop\Afrykańska modelka 2h rysowania bdez 7min
- 2021-01-18 02:58 - 2021-01-18 02:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Sims 4 Snowy Escape
- 2021-01-17 21:53 - 2021-01-17 22:59 - 000000000 ____D C:\Users\Diana\Downloads\The.Sims.4.Snowy.Escape-CODEX
- 2021-01-17 21:49 - 2021-01-17 21:49 - 059020911 _____ C:\Users\Diana\Downloads\sc10708-TS4SEUpd1681561020.rar
- 2021-01-17 21:47 - 2021-01-17 21:47 - 000121448 _____ C:\Users\Diana\Downloads\The.Sims.4.Snowy.Escape-CODEX.torrent
- 2021-01-16 08:35 - 2021-01-16 08:35 - 000124457 _____ C:\Users\Diana\Desktop\Voice 003.m4a
- 2021-01-14 18:15 - 2021-01-14 18:15 - 000576512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
- 2021-01-14 18:15 - 2021-01-14 18:15 - 000568320 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
- 2021-01-14 18:15 - 2021-01-14 18:15 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
- 2021-01-14 18:15 - 2021-01-14 18:15 - 000455680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
- 2021-01-14 18:15 - 2021-01-14 18:15 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
- 2021-01-14 18:15 - 2021-01-14 18:15 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VBICodec.ax
- 2021-01-14 18:15 - 2021-01-14 18:15 - 000094720 _____ C:\WINDOWS\system32\VirtualMonitorManager.dll
- 2021-01-14 18:15 - 2021-01-14 18:15 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
- 2021-01-14 18:15 - 2021-01-14 18:15 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
- 2021-01-14 18:15 - 2021-01-14 18:15 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
- 2021-01-14 18:15 - 2021-01-14 18:15 - 000053248 _____ C:\WINDOWS\SysWOW64\BWContextHandler.dll
- 2021-01-14 18:14 - 2021-01-14 18:14 - 000696832 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
- 2021-01-14 18:14 - 2021-01-14 18:14 - 000555008 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
- 2021-01-14 18:14 - 2021-01-14 18:14 - 000294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
- 2021-01-14 18:14 - 2021-01-14 18:14 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\VBICodec.ax
- 2021-01-14 18:14 - 2021-01-14 18:14 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
- 2021-01-14 18:14 - 2021-01-14 18:14 - 000067072 _____ C:\WINDOWS\system32\BWContextHandler.dll
- 2021-01-14 18:14 - 2021-01-14 18:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
- 2021-01-14 18:14 - 2021-01-14 18:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
- 2021-01-14 18:14 - 2021-01-14 18:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
- 2021-01-14 18:14 - 2021-01-14 18:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
- 2021-01-14 18:14 - 2021-01-14 18:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
- 2021-01-14 18:14 - 2021-01-14 18:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
- 2021-01-14 18:14 - 2021-01-14 18:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
- 2021-01-14 18:14 - 2021-01-14 18:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
- 2021-01-14 18:14 - 2021-01-14 18:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth18.bin
- 2021-01-14 18:14 - 2021-01-14 18:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth17.bin
- 2021-01-14 18:14 - 2021-01-14 18:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth16.bin
- 2021-01-14 18:14 - 2021-01-14 18:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth15.bin
- 2021-01-14 18:14 - 2021-01-14 18:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
- 2021-01-14 18:14 - 2021-01-14 18:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
- 2021-01-14 18:14 - 2021-01-14 18:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
- 2021-01-14 18:14 - 2021-01-14 18:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
- 2021-01-14 18:13 - 2021-01-14 18:13 - 000458240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl
- 2021-01-14 18:13 - 2021-01-14 18:13 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl
- 2021-01-14 18:12 - 2021-01-14 18:12 - 001101312 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
- 2021-01-14 18:12 - 2021-01-14 18:12 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
- 2021-01-14 18:12 - 2021-01-14 18:12 - 000331264 _____ C:\WINDOWS\SysWOW64\ssdm.dll
- 2021-01-14 18:12 - 2021-01-14 18:12 - 000208384 _____ C:\WINDOWS\SysWOW64\HeatCore.dll
- 2021-01-14 18:12 - 2021-01-14 18:12 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\timedate.cpl
- 2021-01-14 18:11 - 2021-01-14 18:11 - 002590720 _____ C:\WINDOWS\system32\dwmscene.dll
- 2021-01-14 18:11 - 2021-01-14 18:11 - 000549888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl
- 2021-01-14 18:11 - 2021-01-14 18:11 - 000208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
- 2021-01-14 18:11 - 2021-01-14 18:11 - 000186368 _____ C:\WINDOWS\system32\BthpanContextHandler.dll
- 2021-01-14 18:10 - 2021-01-14 18:10 - 001841152 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
- 2021-01-14 18:10 - 2021-01-14 18:10 - 000266752 _____ C:\WINDOWS\system32\HeatCore.dll
- 2021-01-14 18:09 - 2021-01-14 18:09 - 000540672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
- 2021-01-14 18:09 - 2021-01-14 18:09 - 000453632 _____ C:\WINDOWS\system32\ssdm.dll
- 2021-01-14 18:09 - 2021-01-14 18:09 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
- 2021-01-14 18:09 - 2021-01-14 18:09 - 000164864 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
- 2021-01-14 18:09 - 2021-01-14 18:09 - 000061440 _____ C:\WINDOWS\system32\rdsxvmaudio.dll
- 2021-01-14 16:25 - 2021-01-14 16:47 - 390755511 _____ C:\Users\Diana\Downloads\Skip Beat Ep10 (1024 x 672).mp4
- 2021-01-14 16:20 - 2021-01-14 16:20 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
- 2021-01-11 08:01 - 2021-01-12 03:06 - 000006076 _____ C:\ProgramData\DisplaySessionContainer30.log_backup1
- 2021-01-10 22:50 - 2021-01-13 00:28 - 000007503 _____ C:\ProgramData\DisplaySessionContainer29.log_backup1
- 2021-01-10 03:21 - 2021-01-10 08:22 - 000007192 _____ C:\ProgramData\DisplaySessionContainer28.log_backup1
- 2021-01-07 09:57 - 2021-01-07 09:57 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
- 2021-01-06 21:11 - 2021-01-13 12:45 - 000000000 ____D C:\Program Files\Mozilla Firefox
- 2021-01-02 20:57 - 2021-01-02 20:57 - 000000000 ____D C:\Users\Diana\Documents\Amnesia
- 2020-12-25 22:39 - 2020-12-25 22:39 - 000093716 _____ C:\Users\Diana\Downloads\[BAKA] Skip Beat 09(1).ass
- 2020-12-25 22:39 - 2020-12-25 22:39 - 000089036 _____ C:\Users\Diana\Downloads\[BAKA] Skip Beat 10(1).ass
- 2020-12-25 22:38 - 2020-12-25 22:38 - 000093716 _____ C:\Users\Diana\Downloads\[BAKA] Skip Beat 09.ass
- 2020-12-25 22:38 - 2020-12-25 22:38 - 000089036 _____ C:\Users\Diana\Downloads\[BAKA] Skip Beat 10.ass
- 2020-12-17 11:40 - 2021-01-07 19:40 - 000214936 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgStm.sys
- 2020-12-17 11:40 - 2020-12-17 11:40 - 000341128 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe
- 2020-12-15 12:04 - 2020-12-15 12:04 - 000000000 ____D C:\Users\Diana\Documents\prezenty
- 2020-12-13 08:47 - 2020-12-13 08:47 - 000000000 ____D C:\ProgramData\Malwarebytes
- 2020-12-13 08:47 - 2020-12-13 08:47 - 000000000 ____D C:\Program Files\Malwarebytes
- 2020-12-13 08:46 - 2020-12-13 08:46 - 194256440 _____ (Malwarebytes) C:\Users\Diana\Downloads\mb4-setup-consumer-4.3.0.206-1.0.1130-1.0.34127.exe
- 2020-12-13 08:43 - 2020-12-13 08:43 - 035279450 _____ C:\Users\Diana\Downloads\gramblr-installer.exe
- 2020-12-09 00:02 - 2020-12-09 00:02 - 002045952 _____ C:\WINDOWS\system32\rdpnano.dll
- 2020-12-09 00:02 - 2020-12-09 00:02 - 000171008 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
- 2020-12-09 00:02 - 2020-12-09 00:02 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncpa.cpl
- 2020-12-09 00:02 - 2020-12-09 00:02 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncpa.cpl
- 2020-12-09 00:02 - 2020-12-09 00:02 - 000000357 _____ C:\WINDOWS\system32\DrtmAuth14.bin
- 2020-12-09 00:02 - 2020-12-09 00:02 - 000000357 _____ C:\WINDOWS\system32\DrtmAuth13.bin
- 2020-12-09 00:01 - 2020-12-09 00:01 - 001756600 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
- 2020-12-09 00:01 - 2020-12-09 00:01 - 001366144 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
- 2020-12-09 00:01 - 2020-12-09 00:01 - 000059392 _____ C:\WINDOWS\system32\runexehelper.exe
- 2020-12-09 00:01 - 2020-12-09 00:01 - 000001370 _____ C:\WINDOWS\system32\ThirdPartyNoticesBySHS.txt
- 2020-11-16 10:30 - 2021-01-19 22:11 - 000000000 ____D C:\Users\Diana\Desktop\rzeczy w pulpitu
- 2020-11-12 11:56 - 2020-11-12 11:57 - 000000000 ____D C:\Users\Diana\Documents\Nagrania dźwiękowe
- 2020-11-11 18:55 - 2020-11-11 18:55 - 000200704 _____ C:\WINDOWS\system32\IHDS.dll
- 2020-11-11 07:32 - 2021-01-10 03:21 - 000007435 _____ C:\ProgramData\DisplaySessionContainer27.log_backup1
- 2020-11-11 01:36 - 2021-01-08 23:40 - 000007327 _____ C:\ProgramData\DisplaySessionContainer26.log_backup1
- 2020-11-10 11:51 - 2021-01-08 02:52 - 000001265 _____ C:\ProgramData\DisplaySessionContainer25.log_backup1
- 2020-11-09 23:52 - 2021-01-07 01:24 - 000007564 _____ C:\ProgramData\DisplaySessionContainer24.log_backup1
- 2020-11-09 01:15 - 2021-01-06 01:19 - 000007508 _____ C:\ProgramData\DisplaySessionContainer23.log_backup1
- 2020-11-07 20:08 - 2020-11-07 20:08 - 000000000 ____D C:\Users\Diana\Documents\sport
- 2020-11-07 08:14 - 2021-01-05 03:11 - 000007504 _____ C:\ProgramData\DisplaySessionContainer22.log_backup1
- 2020-11-07 03:29 - 2021-01-04 02:05 - 000007431 _____ C:\ProgramData\DisplaySessionContainer21.log_backup1
- 2020-11-06 02:11 - 2021-01-03 03:09 - 000006267 _____ C:\ProgramData\DisplaySessionContainer20.log_backup1
- 2020-11-05 02:10 - 2021-01-02 01:39 - 000006496 _____ C:\ProgramData\DisplaySessionContainer19.log_backup1
- 2020-11-03 07:31 - 2021-01-01 10:46 - 000006797 _____ C:\ProgramData\DisplaySessionContainer18.log_backup1
- 2020-11-03 01:31 - 2021-01-01 03:59 - 000006494 _____ C:\ProgramData\DisplaySessionContainer17.log_backup1
- 2020-11-02 02:16 - 2020-12-31 02:18 - 000007117 _____ C:\ProgramData\DisplaySessionContainer16.log_backup1
- 2020-11-01 17:10 - 2020-11-01 17:10 - 000000000 ____D C:\Users\Diana\Documents\polityka
- 2020-11-01 04:22 - 2020-12-30 03:00 - 000007127 _____ C:\ProgramData\DisplaySessionContainer15.log_backup1
- 2020-10-30 15:49 - 2020-12-19 12:28 - 000000000 ____D C:\Users\Diana\Desktop\ja
- ==================== Trzy miesiące (zmodyfikowane) ==================
- (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
- 2021-01-26 17:56 - 2019-05-24 16:26 - 000000000 ____D C:\Users\Diana\AppData\Roaming\Origin
- 2021-01-26 17:51 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
- 2021-01-26 17:28 - 2020-09-23 16:38 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
- 2021-01-26 13:37 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps
- 2021-01-26 13:37 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\AppReadiness
- 2021-01-26 10:54 - 2020-09-23 16:53 - 000000000 ____D C:\Users\Diana\AppData\Local\Packages
- 2021-01-26 07:30 - 2020-10-23 16:44 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
- 2021-01-26 07:22 - 2019-05-25 07:15 - 000000000 ____D C:\Program Files (x86)\Origin Games
- 2021-01-26 07:22 - 2019-05-24 16:26 - 000000000 ____D C:\ProgramData\Origin
- 2021-01-26 07:21 - 2019-03-19 17:34 - 000000000 ____D C:\ProgramData\Mozilla
- 2021-01-26 07:20 - 2019-03-19 17:34 - 000000000 ____D C:\Users\Diana\AppData\LocalLow\Mozilla
- 2021-01-26 07:19 - 2019-05-24 16:26 - 000000000 ____D C:\Users\Diana\AppData\Local\Origin
- 2021-01-26 07:19 - 2019-03-19 17:32 - 000000000 ____D C:\Users\Diana\AppData\Roaming\GG
- 2021-01-26 07:18 - 2020-09-24 10:31 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
- 2021-01-26 07:18 - 2020-09-24 10:31 - 000000000 __SHD C:\Users\Diana\IntelGraphicsProfiles
- 2021-01-26 07:18 - 2019-10-13 08:14 - 000000000 ____D C:\Users\Diana\AppData\Roaming\Parsec
- 2021-01-26 01:41 - 2020-09-24 10:28 - 000007532 _____ C:\ProgramData\DisplaySessionContainer2.log_backup1
- 2021-01-26 01:40 - 2019-03-24 12:18 - 000000000 ____D C:\Users\Diana\AppData\Roaming\vlc
- 2021-01-25 08:43 - 2020-09-23 17:06 - 000000000 ____D C:\Users\Diana\AppData\Local\D3DSCache
- 2021-01-25 02:06 - 2020-09-23 16:44 - 000000000 ____D C:\Users\Diana
- 2021-01-25 01:54 - 2020-10-08 22:56 - 000000000 ____D C:\Users\Diana\Desktop\do narysowania nał
- 2021-01-25 01:30 - 2019-03-19 17:41 - 000000000 ____D C:\Users\Diana\Desktop\programy z pulpitu
- 2021-01-25 01:13 - 2019-03-19 05:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
- 2021-01-25 00:53 - 2020-10-23 16:45 - 000002612 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
- 2021-01-25 00:53 - 2020-10-23 16:35 - 000003810 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player NPAPI Notifier
- 2021-01-25 00:53 - 2020-10-23 16:35 - 000003504 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player Updater
- 2021-01-25 00:53 - 2020-09-24 10:16 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4268242269-3103951796-2047070185-1000
- 2021-01-25 00:53 - 2020-09-23 16:52 - 000003836 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1553016887
- 2021-01-25 00:53 - 2020-09-23 16:52 - 000003644 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1553016886
- 2021-01-25 00:53 - 2020-09-23 16:52 - 000003496 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
- 2021-01-25 00:53 - 2020-09-23 16:52 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
- 2021-01-25 00:53 - 2020-09-23 16:52 - 000003450 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
- 2021-01-25 00:53 - 2020-09-23 16:52 - 000003272 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
- 2021-01-25 00:53 - 2020-09-23 16:52 - 000003250 _____ C:\WINDOWS\system32\Tasks\Antivirus Emergency Update
- 2021-01-25 00:53 - 2020-09-23 16:52 - 000003222 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
- 2021-01-25 00:53 - 2020-09-23 16:52 - 000003194 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
- 2021-01-25 00:53 - 2020-09-23 16:52 - 000002668 _____ C:\WINDOWS\system32\Tasks\HPCustParticipation HP Deskjet 1010 series
- 2021-01-25 00:53 - 2020-09-23 16:52 - 000002312 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
- 2021-01-25 00:53 - 2020-09-23 16:52 - 000002304 _____ C:\WINDOWS\system32\Tasks\{CC2D8536-CDDB-400C-AE02-089C26CE6241}
- 2021-01-25 00:53 - 2020-09-23 16:52 - 000002184 _____ C:\WINDOWS\system32\Tasks\{C5C860C6-8A49-4306-8EFF-D66A86500FC7}
- 2021-01-25 00:53 - 2020-09-23 16:52 - 000002156 _____ C:\WINDOWS\system32\Tasks\Tomb Raider - Anniversary
- 2021-01-25 00:53 - 2020-09-23 16:52 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
- 2021-01-24 23:52 - 2020-09-23 16:52 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
- 2021-01-24 16:24 - 2019-03-19 18:19 - 000000000 ____D C:\ProgramData\AVG
- 2021-01-24 16:20 - 2020-09-23 16:43 - 001971962 _____ C:\WINDOWS\system32\PerfStringBackup.INI
- 2021-01-24 16:20 - 2019-03-19 13:23 - 000856354 _____ C:\WINDOWS\system32\perfh015.dat
- 2021-01-24 16:20 - 2019-03-19 13:23 - 000188098 _____ C:\WINDOWS\system32\perfc015.dat
- 2021-01-24 16:20 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF
- 2021-01-24 16:13 - 2020-09-24 10:44 - 000005720 _____ C:\ProgramData\DisplaySessionContainer1.log_backup1
- 2021-01-24 16:13 - 2020-09-24 10:28 - 000009645 _____ C:\ProgramData\NVDisplayContainerWatchdog.log_backup1
- 2021-01-24 16:13 - 2020-09-24 10:28 - 000008643 _____ C:\ProgramData\NVDisplay.ContainerLocalSystem.log_backup1
- 2021-01-24 16:13 - 2019-03-19 05:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI
- 2021-01-23 15:58 - 2015-12-04 21:40 - 000000000 ____D C:\Users\Diana\Documents\ebook
- 2021-01-23 03:30 - 2020-10-10 01:15 - 000006493 _____ C:\ProgramData\DisplaySessionContainer10.log_backup1
- 2021-01-19 11:48 - 2020-10-01 03:47 - 000007820 _____ C:\ProgramData\DisplaySessionContainer6.log_backup1
- 2021-01-19 02:45 - 2019-03-19 20:52 - 000000000 ____D C:\Users\Diana\Documents\muzyka
- 2021-01-18 07:50 - 2019-03-19 18:34 - 000000000 ____D C:\Users\Diana\AppData\Roaming\uTorrent
- 2021-01-18 07:43 - 2019-03-19 18:36 - 000000000 ____D C:\Users\Diana\AppData\Local\BitTorrentHelper
- 2021-01-18 07:41 - 2020-09-29 23:59 - 000006799 _____ C:\ProgramData\DisplaySessionContainer5.log_backup1
- 2021-01-18 04:06 - 2020-09-29 10:50 - 000006738 _____ C:\ProgramData\DisplaySessionContainer4.log_backup1
- 2021-01-17 01:33 - 2020-09-24 12:07 - 000005726 _____ C:\ProgramData\DisplaySessionContainer3.log_backup1
- 2021-01-15 00:32 - 2020-09-23 16:53 - 000000000 __RHD C:\Users\Public\AccountPictures
- 2021-01-15 00:32 - 2020-09-23 16:53 - 000000000 ___RD C:\Users\Diana\3D Objects
- 2021-01-15 00:31 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
- 2021-01-15 00:29 - 2020-09-23 16:38 - 000312712 _____ C:\WINDOWS\system32\FNTCACHE.DAT
- 2021-01-15 00:25 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
- 2021-01-15 00:25 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
- 2021-01-15 00:25 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\system32\UNP
- 2021-01-15 00:25 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\system32\F12
- 2021-01-15 00:25 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
- 2021-01-15 00:25 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
- 2021-01-15 00:25 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
- 2021-01-15 00:25 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
- 2021-01-15 00:25 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
- 2021-01-15 00:25 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
- 2021-01-15 00:25 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SystemResources
- 2021-01-15 00:25 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
- 2021-01-15 00:25 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
- 2021-01-15 00:25 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\setup
- 2021-01-15 00:25 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
- 2021-01-15 00:25 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\oobe
- 2021-01-15 00:25 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\migwiz
- 2021-01-15 00:25 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\inetsrv
- 2021-01-15 00:25 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Dism
- 2021-01-15 00:25 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Com
- 2021-01-15 00:25 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
- 2021-01-15 00:24 - 2019-03-19 13:25 - 000000000 ____D C:\Program Files\Windows Photo Viewer
- 2021-01-15 00:24 - 2019-03-19 13:25 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
- 2021-01-15 00:24 - 2019-03-19 05:52 - 000000000 ___RD C:\WINDOWS\PrintDialog
- 2021-01-15 00:24 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
- 2021-01-15 00:24 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ShellComponents
- 2021-01-15 00:24 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\Provisioning
- 2021-01-15 00:24 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\IME
- 2021-01-15 00:24 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\bcastdvr
- 2021-01-15 00:24 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files\Windows Defender
- 2021-01-14 21:11 - 2020-09-01 12:34 - 000000000 ____D C:\Users\Diana\AppData\Local\CrashDumps
- 2021-01-14 18:27 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\CbsTemp
- 2021-01-14 18:25 - 2019-03-20 08:35 - 000000000 ____D C:\WINDOWS\system32\MRT
- 2021-01-14 18:22 - 2019-03-20 08:35 - 135062968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
- 2021-01-14 18:09 - 2020-09-23 16:41 - 002877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
- 2021-01-13 12:45 - 2019-03-19 17:34 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
- 2021-01-12 08:20 - 2019-03-19 17:31 - 000002307 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
- 2021-01-09 16:02 - 2020-09-24 10:16 - 000000000 ___RD C:\Users\Diana\OneDrive
- 2021-01-09 16:02 - 2020-09-23 16:44 - 000002455 _____ C:\Users\Diana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
- 2021-01-09 09:10 - 2019-03-19 18:20 - 000469040 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSP.sys
- 2021-01-07 11:40 - 2019-03-19 18:20 - 000325056 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgVmm.sys
- 2021-01-07 09:57 - 2019-03-19 17:34 - 000000936 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
- 2021-01-05 03:10 - 2019-03-19 20:46 - 000000000 ____D C:\Users\Diana\Documents\języki
- 2020-12-29 08:25 - 2020-10-14 00:33 - 000007715 _____ C:\ProgramData\DisplaySessionContainer14.log_backup1
- 2020-12-29 03:45 - 2020-10-12 07:22 - 000007119 _____ C:\ProgramData\DisplaySessionContainer13.log_backup1
- 2020-12-28 02:39 - 2020-10-12 03:31 - 000005754 _____ C:\ProgramData\DisplaySessionContainer12.log_backup1
- 2020-12-27 05:26 - 2020-10-11 00:47 - 000007645 _____ C:\ProgramData\DisplaySessionContainer11.log_backup1
- ==================== Pliki w katalogu głównym wybranych folderów ========
- 2020-10-23 16:42 - 2020-10-23 16:42 - 000000410 _____ () C:\Users\Diana\AppData\Local\oobelibMkey.log
- 2019-10-13 18:56 - 2019-10-13 18:56 - 000000743 _____ () C:\Users\Diana\AppData\Local\recently-used.xbel
- ==================== SigCheckExt =========================
- 2015-03-17 00:34 - 2015-03-17 00:34 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atl71.dll
- 2019-03-19 17:38 - 2013-02-27 15:37 - 000053248 _____ (Windows XP Bundled build C-Centric Single User) C:\WINDOWS\SysWOW64\CSVer.dll
- 2013-02-13 12:27 - 2013-02-13 12:27 - 000001536 _____ C:\WINDOWS\SysWOW64\IusEventLog.dll
- 2015-03-17 00:34 - 2015-03-17 00:34 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71.dll
- 2015-03-17 00:34 - 2015-03-17 00:34 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71CHS.DLL
- 2015-03-17 00:34 - 2015-03-17 00:34 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71CHT.DLL
- 2015-03-17 00:34 - 2015-03-17 00:34 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71DEU.DLL
- 2015-03-17 00:34 - 2015-03-17 00:34 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ENU.DLL
- 2015-03-17 00:34 - 2015-03-17 00:34 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ESP.DLL
- 2015-03-17 00:34 - 2015-03-17 00:34 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71FRA.DLL
- 2015-03-17 00:34 - 2015-03-17 00:34 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ITA.DLL
- 2015-03-17 00:34 - 2015-03-17 00:34 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71JPN.DLL
- 2015-03-17 00:34 - 2015-03-17 00:34 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71KOR.DLL
- 2015-03-17 00:34 - 2015-03-17 00:34 - 001047552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71u.dll
- 2015-03-17 00:34 - 2015-03-17 00:34 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp71.dll
- 2015-03-17 00:34 - 2015-03-17 00:34 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll
- 2012-12-21 15:43 - 2012-12-21 15:43 - 000041984 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\USB3Ver.dll
- 2019-03-19 19:25 - 2019-03-19 19:26 - 132014978 _____ C:\Users\Diana\Downloads\Apache_OpenOffice_4.1.6_Win_x86_install_pl.exe
- 2021-01-26 17:46 - 2021-01-26 17:46 - 002297344 _____ (Farbar) C:\Users\Diana\Downloads\FRST64.exe
- 2020-12-13 08:43 - 2020-12-13 08:43 - 035279450 _____ C:\Users\Diana\Downloads\gramblr-installer.exe
- 2019-10-12 14:12 - 2019-10-12 14:12 - 066983821 _____ (Inkscape project) C:\Users\Diana\Downloads\inkscape-0.92.4-x64.exe
- ==================== SigCheck ============================
- (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)
- ==================== BCD ================================
- Firmware Boot Manager
- ---------------------
- identifier {fwbootmgr}
- displayorder {bootmgr}
- {f932627c-4a5c-11e9-95de-a862c0b52141}
- {f932627d-4a5c-11e9-95de-a862c0b52141}
- timeout 1
- Windows Boot Manager
- --------------------
- identifier {bootmgr}
- device partition=\Device\HarddiskVolume2
- path \EFI\Microsoft\Boot\bootmgfw.efi
- description Windows Boot Manager
- locale pl-PL
- inherit {globalsettings}
- default {current}
- resumeobject {102fd4a5-fdbb-11ea-9c89-f273bf7f94f4}
- displayorder {current}
- toolsdisplayorder {memdiag}
- timeout 30
- Firmware Application (101fffff)
- -------------------------------
- identifier {f932627c-4a5c-11e9-95de-a862c0b52141}
- description CD/DVD Drive
- Firmware Application (101fffff)
- -------------------------------
- identifier {f932627d-4a5c-11e9-95de-a862c0b52141}
- description Hard Drive
- Windows Boot Loader
- -------------------
- identifier {current}
- device partition=C:
- path \WINDOWS\system32\winload.efi
- description Windows 10
- locale pl-PL
- inherit {bootloadersettings}
- recoverysequence {102fd4a7-fdbb-11ea-9c89-f273bf7f94f4}
- displaymessageoverride Recovery
- recoveryenabled Yes
- isolatedcontext Yes
- allowedinmemorysettings 0x15000075
- osdevice partition=C:
- systemroot \WINDOWS
- resumeobject {102fd4a5-fdbb-11ea-9c89-f273bf7f94f4}
- nx OptIn
- bootmenupolicy Standard
- Windows Boot Loader
- -------------------
- identifier {102fd4a7-fdbb-11ea-9c89-f273bf7f94f4}
- device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{102fd4a8-fdbb-11ea-9c89-f273bf7f94f4}
- path \windows\system32\winload.efi
- description Windows Recovery Environment
- locale pl-PL
- inherit {bootloadersettings}
- displaymessage Recovery
- osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{102fd4a8-fdbb-11ea-9c89-f273bf7f94f4}
- systemroot \windows
- nx OptIn
- bootmenupolicy Standard
- winpe Yes
- Windows Boot Loader
- -------------------
- identifier {f9326281-4a5c-11e9-95de-a862c0b52141}
- device ramdisk=[C:]\Recovery\f9326281-4a5c-11e9-95de-a862c0b52141\Winre.wim,{f9326282-4a5c-11e9-95de-a862c0b52141}
- path \windows\system32\winload.efi
- description Windows Recovery Environment
- inherit {bootloadersettings}
- osdevice ramdisk=[C:]\Recovery\f9326281-4a5c-11e9-95de-a862c0b52141\Winre.wim,{f9326282-4a5c-11e9-95de-a862c0b52141}
- systemroot \windows
- nx OptIn
- winpe Yes
- Resume from Hibernate
- ---------------------
- identifier {102fd4a5-fdbb-11ea-9c89-f273bf7f94f4}
- device partition=C:
- path \WINDOWS\system32\winresume.efi
- description Windows Resume Application
- locale pl-PL
- inherit {resumeloadersettings}
- recoverysequence {102fd4a7-fdbb-11ea-9c89-f273bf7f94f4}
- recoveryenabled Yes
- isolatedcontext Yes
- allowedinmemorysettings 0x15000075
- filedevice partition=C:
- filepath \hiberfil.sys
- bootmenupolicy Standard
- debugoptionenabled No
- Windows Memory Tester
- ---------------------
- identifier {memdiag}
- device partition=\Device\HarddiskVolume2
- path \EFI\Microsoft\Boot\memtest.efi
- description Diagnostyka pami�ci systemu Windows
- locale pl-PL
- inherit {globalsettings}
- badmemoryaccess Yes
- EMS Settings
- ------------
- identifier {emssettings}
- bootems No
- Debugger Settings
- -----------------
- identifier {dbgsettings}
- debugtype Serial
- debugport 1
- baudrate 115200
- RAM Defects
- -----------
- identifier {badmemory}
- Global Settings
- ---------------
- identifier {globalsettings}
- inherit {dbgsettings}
- {emssettings}
- {badmemory}
- Boot Loader Settings
- --------------------
- identifier {bootloadersettings}
- inherit {globalsettings}
- {hypervisorsettings}
- Hypervisor Settings
- -------------------
- identifier {hypervisorsettings}
- hypervisordebugtype Serial
- hypervisordebugport 1
- hypervisorbaudrate 115200
- Resume Loader Settings
- ----------------------
- identifier {resumeloadersettings}
- inherit {globalsettings}
- Device options
- --------------
- identifier {102fd4a8-fdbb-11ea-9c89-f273bf7f94f4}
- description Windows Recovery
- ramdisksdidevice partition=\Device\HarddiskVolume4
- ramdisksdipath \Recovery\WindowsRE\boot.sdi
- Device options
- --------------
- identifier {f9326282-4a5c-11e9-95de-a862c0b52141}
- description Ramdisk Options
- ramdisksdidevice partition=C:
- ramdisksdipath \Recovery\f9326281-4a5c-11e9-95de-a862c0b52141\boot.sdi
- ==================== Koniec FRST.txt ========================
Add Comment
Please, Sign In to add comment