wklejto.pl

Dodane przez: ~Anonim (2021-01-17 09:18) -> text
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.
14.
15.
16.
17.
18.
19.
20.
21.
22.
23.
24.
25.
26.
27.
28.
29.
30.
31.
32.
33.
34.
35.
36.
37.
38.
39.
40.
41.
42.
43.
44.
45.
46.
47.
48.
49.
50.
51.
52.
53.
54.
55.
56.
57.
58.
59.
60.
61.
62.
63.
64.
65.
66.
67.
68.
69.
70.
71.
72.
73.
74.
75.
76.
77.
78.
79.
80.
81.
82.
83.
84.
85.
86.
87.
88.
89.
90.
91.
92.
93.
94.
95.
96.
97.
98.
99.
100.
101.
102.
103.
104.
105.
106.
107.
108.
109.
110.
111.
112.
113.
114.
115.
116.
117.
118.
119.
120.
121.
122.
123.
124.
125.
126.
127.
128.
129.
130.
131.
132.
133.
134.
135.
136.
137.
138.
139.
140.
141.
142.
143.
144.
145.
146.
147.
148.
149.
150.
151.
152.
153.
154.
155.
156.
157.
158.
159.
160.
161.
162.
163.
164.
165.
166.
167.
168.
169.
170.
171.
172.
173.
174.
175.
176.
177.
178.
179.
180.
181.
182.
183.
184.
185.
186.
187.
188.
189.
190.
191.
192.
193.
194.
195.
196.
197.
198.
199.
200.
201.
202.
203.
204.
205.
206.
207.
208.
209.
210.
211.
212.
213.
214.
215.
216.
217.
218.
219.
220.
221.
222.
223.
224.
225.
226.
227.
228.
229.
230.
231.
232.
233.
234.
235.
236.
237.
238.
239.
240.
241.
242.
243.
244.
245.
246.
247.
248.
249.
250.
251.
252.
253.
254.
255.
256.
257.
258.
259.
260.
261.
262.
263.
264.
265.
266.
267.
268.
269.
270.
271.
272.
273.
274.
275.
276.
277.
278.
279.
280.
281.
282.
283.
Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 16-01-2021
Uruchomiony przez User (administrator)  DESKTOP-HAT3ICQ (Hewlett-Packard HP Pavilion g6 Notebook PC) (17-01-2021 09:54:02)
Uruchomiony z C:\Users\User\Downloads
Załadowane profile: User
Platform: Windows 10 Home Wersja 20H2 19042.746 (X64) Język: Polski (Polska)
Domyślna przeglądarka: Edge
Tryb startu: Normal
 
==================== Procesy (filtrowane) =================
 
(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)
 
(Advanced Micro Devices, Inc.) [Brak podpisu cyfrowego] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe <20>
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2012.16655.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <9>
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe
 
==================== Rejestr (filtrowane) ===================
 
(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)
 
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [175504 2020-11-06] (ESET, spol. s r.o. -> ESET)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-3786689644-2799894985-2815594758-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\...\Print\Monitors\HP 8911 Status Monitor: C:\WINDOWS\system32\hpinksts8911LM.dll [332176 2012-09-12] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.141\Installer\chrmstp.exe [2021-01-12] (Google LLC -> Google LLC)
 
==================== Zaplanowane zadania (filtrowane) ============
 
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
 
Task: {1D7A2618-C2BA-47DF-B43B-C565DFC7D7B0} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {315456EE-879B-401E-839B-5C9AF144E2EC} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26913848 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {3CC2D77B-0826-4599-BFA6-CFE315CDF2C6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-09-02] (Google Inc -> Google LLC)
Task: {53396B62-4D10-437F-B9C9-C57F01E90748} - System32\Tasks\Agent Activation Runtime\S-1-5-21-3786689644-2799894985-2815594758-1001 => C:\WINDOWS\System32\AgentActivationRuntimeStarter.exe [13312 2020-12-11] (Microsoft Windows -> )
Task: {CF5241CB-F2B2-439D-B6C2-2715FF014453} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-09-02] (Google Inc -> Google LLC)
Task: {F983C1DB-258C-4881-8F5A-BB995EA7CD77} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [693216 2021-01-05] (Mozilla Corporation -> Mozilla Foundation)
 
(Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.)
 
 
==================== Internet (filtrowane) ====================
 
(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)
 
Tcpip\Parameters: [DhcpNameServer] 37.8.214.2 31.11.202.254
Tcpip\..\Interfaces\{31a6fe27-5a34-42b9-b7b8-25a57475f237}: [DhcpNameServer] 37.8.214.2 31.11.202.254
Tcpip\..\Interfaces\{48c4ea66-a559-46eb-8144-b6973959ff5c}: [DhcpNameServer] 37.8.214.2 31.11.202.254
Tcpip\..\Interfaces\{8e4f2cb2-ef87-4987-bc2c-c7fbb8d90166}: [DhcpNameServer] 37.8.214.2 31.11.202.254
Tcpip\..\Interfaces\{a42c9960-82ab-4499-8df8-033b4a9d4452}: [DhcpNameServer] 37.8.214.2 31.11.202.254
 
Edge: 
=======
DownloadDir: 
Edge HomeButtonPage: HKU\S-1-5-21-3786689644-2799894985-2815594758-1001 -> about:tabs
Edge Extension: (uBlock Origin) -> EdgeExtension_37833NikRollsuBlockOrigin_f8jsg5mm64m62 => C:\Program Files\WindowsApps\37833NikRolls.uBlockOrigin_1.15.24.0_neutral__f8jsg5mm64m62 [2020-05-22]
Edge DefaultProfile: Default
Edge Profile: C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default [2021-01-17]
Edge DownloadDir: C:\Users\User\Downloads
Edge HomePage: Default -> edge://newtab/
Edge Extension: (uBlock Origin) - C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\odfafepnkmbhccpbejgmiehpchacaeak [2021-01-14]
 
FireFox:
========
FF DefaultProfile: vgxzhc6k.default
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\2bb92ljz.default-release-1-1598094949927 [2021-01-16]
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\vgxzhc6k.default [2020-12-15]
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\xsoc7lc3.default-release-1598093790712 [2021-01-16]
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\djdd8e2t.dev-edition-default [2021-01-16]
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\y65nmmp2.default-release-2 [2021-01-16]
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\x0h09w4w.default-release-3-1609239571341 [2021-01-17]
FF Extension: (uBlock Origin) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\x0h09w4w.default-release-3-1609239571341\Extensions\uBlock0@raymondhill.net.xpi [2021-01-05]
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google Inc -> Google, Inc.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2021-01-17]
 
Chrome: 
=======
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default [2021-01-17]
CHR Notifications: Default -> hxxps://poczta.gazeta.pl
CHR Extension: (Prezentacje) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-09-02]
CHR Extension: (Dokumenty) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-09-02]
CHR Extension: (Dysk Google) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-24]
CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-09-02]
CHR Extension: (uBlock Origin) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2021-01-12]
CHR Extension: (Arkusze) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-09-02]
CHR Extension: (Dokumenty Google offline) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-19]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Gmail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-24]
CHR Extension: (Chrome Media Router) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-11-21]
CHR HKLM-x32\...\Chrome\Extension: [ofoeigeaodhbjogdigckajfhjbonaofg]
 
Opera: 
=======
OPR Profile: C:\Users\User\AppData\Roaming\Opera Software\Opera Stable [2020-02-14]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.pl/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
 
==================== Usługi (filtrowane) ===================
 
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
 
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2015-08-21] (Advanced Micro Devices, Inc.) [Brak podpisu cyfrowego]
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2595360 2020-11-06] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2595360 2020-11-06] (ESET, spol. s r.o. -> ESET)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2020-12-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2020-12-12] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe [495720 2018-07-04] (Wondershare Technology Co.,Ltd -> Wondershare)
 
===================== Sterowniki (filtrowane) ===================
 
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
 
R2 AODDriver4.3; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [160992 2020-10-23] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [109360 2020-10-23] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15288 2020-09-10] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [190464 2020-10-23] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [107784 2020-10-23] (ESET, spol. s r.o. -> ESET)
R3 rtwlane_13; C:\WINDOWS\System32\drivers\rtwlane_13.sys [3717120 2019-12-07] (Microsoft Windows -> Realtek Semiconductor Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 tap640$T; C:\WINDOWS\System32\drivers\tap640$T.sys [49920 2020-06-17] (Ghostery, Inc. -> The OpenVPN Project)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2020-12-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [429296 2020-12-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [70896 2020-12-12] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [34944 2018-05-11] (HP Inc. -> HP)
 
==================== NetSvcs (filtrowane) ===================
 
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
 
 
==================== Jeden miesiąc (utworzone) (filtrowane) =========
 
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
 
2021-01-17 09:54 - 2021-01-17 09:56 - 000013135 _____ C:\Users\User\Downloads\FRST.txt
2021-01-17 09:52 - 2021-01-17 09:55 - 000000000 ____D C:\FRST
2021-01-17 09:43 - 2021-01-17 09:44 - 002294784 _____ (Farbar) C:\Users\User\Downloads\FRST64.exe
2021-01-17 09:39 - 2021-01-17 09:39 - 000781312 _____ C:\Users\User\Downloads\delfix_1.010.exe
2021-01-17 08:27 - 2021-01-17 08:27 - 000000000 ____D C:\WINDOWS\LastGood
2021-01-16 11:14 - 2021-01-16 11:21 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-01-16 11:14 - 2021-01-16 11:14 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-01-16 11:14 - 2021-01-16 11:14 - 000000993 _____ C:\Users\Public\Desktop\Firefox.lnk
2021-01-16 11:14 - 2021-01-16 11:14 - 000000000 ____D C:\Users\User\AppData\Local\Mozilla
2021-01-13 10:55 - 2021-01-13 10:55 - 000095744 _____ C:\WINDOWS\system32\VirtualMonitorManager.dll
2021-01-13 10:54 - 2021-01-13 10:54 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2021-01-13 10:54 - 2021-01-13 10:54 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2021-01-13 10:54 - 2021-01-13 10:54 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2021-01-13 10:54 - 2021-01-13 10:54 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VBICodec.ax
2021-01-13 10:54 - 2021-01-13 10:54 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2021-01-13 10:53 - 2021-01-13 10:53 - 000575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2021-01-13 10:53 - 2021-01-13 10:53 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2021-01-13 10:53 - 2021-01-13 10:53 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2021-01-13 10:53 - 2021-01-13 10:53 - 000053760 _____ C:\WINDOWS\SysWOW64\BWContextHandler.dll
2021-01-13 10:52 - 2021-01-13 10:52 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2021-01-13 10:51 - 2021-01-13 10:51 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\VBICodec.ax
2021-01-13 10:50 - 2021-01-13 10:50 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2021-01-13 10:49 - 2021-01-13 10:49 - 000729600 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2021-01-13 10:49 - 2021-01-13 10:49 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2021-01-13 10:49 - 2021-01-13 10:49 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2021-01-13 10:49 - 2021-01-13 10:49 - 000067072 _____ C:\WINDOWS\system32\BWContextHandler.dll
2021-01-13 10:49 - 2021-01-13 10:49 - 000010894 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-01-13 10:48 - 2021-01-13 10:48 - 000446976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl
2021-01-13 10:48 - 2021-01-13 10:48 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl
2021-01-13 10:47 - 2021-01-13 10:47 - 000455680 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2021-01-13 10:46 - 2021-01-13 10:46 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-01-13 10:46 - 2021-01-13 10:46 - 000235520 _____ C:\WINDOWS\SysWOW64\HeatCore.dll
2021-01-13 10:45 - 2021-01-13 10:45 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-01-13 10:45 - 2021-01-13 10:45 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\timedate.cpl
2021-01-13 10:44 - 2021-01-13 10:44 - 001162240 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-01-13 10:44 - 2021-01-13 10:44 - 000330752 _____ C:\WINDOWS\SysWOW64\ssdm.dll
2021-01-13 10:42 - 2021-01-13 10:42 - 002254336 _____ C:\WINDOWS\system32\dwmscene.dll
2021-01-13 10:42 - 2021-01-13 10:42 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
2021-01-13 10:41 - 2021-01-13 10:41 - 000544768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl
2021-01-13 10:41 - 2021-01-13 10:41 - 000190976 _____ C:\WINDOWS\system32\BthpanContextHandler.dll
2021-01-13 10:41 - 2021-01-13 10:41 - 000152064 _____ C:\WINDOWS\system32\EoAExperiences.exe
2021-01-13 10:39 - 2021-01-13 10:39 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-01-13 10:39 - 2021-01-13 10:39 - 000643072 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2021-01-13 10:39 - 2021-01-13 10:39 - 000306688 _____ C:\WINDOWS\system32\HeatCore.dll
2021-01-13 10:37 - 2021-01-13 10:37 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-01-13 10:36 - 2021-01-13 10:36 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-01-13 10:36 - 2021-01-13 10:36 - 000455168 _____ C:\WINDOWS\system32\ssdm.dll
2021-01-13 10:36 - 2021-01-13 10:36 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2021-01-13 10:36 - 2021-01-13 10:36 - 000074240 _____ C:\WINDOWS\system32\rdsxvmaudio.dll
2021-01-07 14:39 - 2021-01-16 10:46 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-01-02 10:59 - 2021-01-02 11:00 - 000000000 ____D C:\Users\User\Documents\zdjecia rury 2 stycznia 21
2020-12-29 11:59 - 2021-01-16 11:14 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-12-18 14:08 - 2020-11-11 03:54 - 000167280 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudmdm.sys
 
==================== Jeden miesiąc (zmodyfikowane) ==================
 
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
 
2021-01-17 09:11 - 2019-09-02 15:53 - 000000000 ____D C:\ProgramData\Mozilla
2021-01-17 09:10 - 2019-09-02 15:54 - 000000000 ____D C:\Users\User\AppData\LocalLow\Mozilla
2021-01-17 08:38 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-01-17 08:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-01-17 08:22 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-01-17 07:49 - 2020-09-18 16:18 - 000000000 ____D C:\Program Files\CCleaner
2021-01-17 07:49 - 2020-05-28 18:21 - 000004224 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{9FCCAE3F-65F1-4DD7-AE22-C872DA0E297E}
2021-01-16 11:14 - 2019-09-02 15:54 - 000000000 ____D C:\Users\User\AppData\Roaming\Mozilla
2021-01-16 11:06 - 2020-05-28 17:56 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-01-15 12:07 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-01-14 09:43 - 2020-05-28 18:21 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-01-14 09:43 - 2020-05-28 17:56 - 000008192 ___SH C:\DumpStack.log.tmp
2021-01-14 09:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-01-14 09:42 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-01-14 09:39 - 2019-09-06 14:46 - 000000000 ____D C:\ProgramData\GlarySoft
2021-01-14 09:39 - 2019-09-06 14:39 - 000000000 ____D C:\Users\User\AppData\Roaming\GlarySoft
2021-01-14 08:50 - 2020-09-18 16:18 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-01-13 11:50 - 2020-05-28 18:13 - 001678298 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-01-13 11:50 - 2019-12-07 16:08 - 000748784 _____ C:\WINDOWS\system32\perfh015.dat
2021-01-13 11:50 - 2019-12-07 16:08 - 000144494 _____ C:\WINDOWS\system32\perfc015.dat
2021-01-13 11:42 - 2020-08-09 15:14 - 000299416 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-01-13 11:36 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2021-01-13 11:36 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2021-01-13 11:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-01-13 11:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2021-01-13 11:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-01-13 11:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-01-13 11:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2021-01-13 11:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2021-01-13 11:35 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-01-13 11:35 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2021-01-13 11:35 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-01-13 11:35 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-01-13 11:35 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-01-13 11:35 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2021-01-13 11:35 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-01-13 11:35 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2021-01-13 11:35 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-01-13 11:35 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-01-13 11:34 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-01-13 11:34 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Com
2021-01-13 11:34 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2021-01-13 11:33 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-01-13 11:33 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-01-13 11:32 - 2019-12-07 16:11 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-01-13 11:32 - 2019-12-07 16:11 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-01-13 11:32 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-01-13 11:32 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-01-13 11:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-01-13 11:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\IME
2021-01-13 11:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-01-13 11:32 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2021-01-13 11:25 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-01-13 10:35 - 2020-05-28 18:02 - 002877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2021-01-13 09:44 - 2020-05-28 13:53 - 000000000 ___HD C:\$WinREAgent
2021-01-13 09:31 - 2019-09-02 18:25 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-01-13 09:25 - 2019-09-02 18:24 - 135062968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-01-12 11:26 - 2020-07-07 11:26 - 000002307 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-01-12 11:26 - 2019-09-02 17:55 - 000002266 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-01-09 08:26 - 2020-08-06 07:19 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-01-09 08:26 - 2020-08-06 07:19 - 000002286 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-01-06 09:50 - 2020-03-25 08:09 - 000009930 _____ C:\WINDOWS\Control.KTL
2020-12-28 14:50 - 2019-09-03 11:17 - 000000000 ____D C:\Users\User\Documents\zdjęcia ze smartfona
2020-12-19 18:16 - 2019-09-02 17:21 - 000000000 ____D C:\Users\User\AppData\Local\CrashDumps
2020-12-19 18:15 - 2020-09-08 09:50 - 000000000 ____D C:\Users\User\AppData\Local\TP-Link
 
==================== Pliki w katalogu głównym wybranych folderów ========
 
2019-09-07 17:22 - 2019-09-07 17:22 - 051655520 _____ (Sony) C:\Users\User\AppData\Local\pcc.exe
 
==================== SigCheck ============================
 
(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)
 
==================== Koniec  FRST.txt ========================
Wygenerowano w 0.005s, przy pomocy GeSHi 1.0.8
'
Podziel się na Facebook Podziel się na BLIP Podziel się na Twitter Podziel się na Buzz Podziel się na Flaker Dodaj zakładkę Google Podziel się na Delicious Wykop to!

Nowy Komentarz:

Komentarze:

Brak Komentarzy!