Uzyj AdwCleaner oraz Mbam i usun to co wykryja. Nastepnie zamiesc w zalaczniku logi z FRST, ze skanowania (addition.txt oraz frst.txt). Czy o to chodziło?
Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 17-04-2021
Uruchomiony przez aleks (administrator) LAP-VELLY-JELLY (Acer Aspire F5-573G) (26-04-2021 17:01:32)
Uruchomiony z C:\Users\aleks\Downloads
Załadowane profile: aleks
Platform: Windows 10 Home Wersja 2004 19041.928 (X64) Język: Polski (Polska)
Domyślna przeglądarka: Chrome
Tryb startu: Normal
==================== Procesy (filtrowane) =================
(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)
() C:\Program Files (x86)\Google\Temp\GUMB165.tmp\GoogleUpdate.exe
() C:\Users\aleks\AppData\Local\Temp\GUM9C95.tmp\GoogleUpdate.exe
() C:\Users\aleks\AppData\Local\Temp\GUM9C95.tmp\GoogleUpdateSetup.exe
(Acer Incorporated - & gt; ) C:\OEM\Preload\FubTool\FubTool.exe
(Acer Incorporated - & gt; Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
(Adobe Inc. - & gt; Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. - & gt; Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Arvato Digital Services Canada Inc - & gt; arvato digital services llc) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(Arvato Digital Services Canada Inc - & gt; arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(Facebook, Inc. - & gt; Facebook, Inc.) C:\Users\aleks\AppData\Local\Programs\Messenger\Messenger.exe
(Google LLC - & gt; Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe & lt; 25 & gt;
(Google LLC - & gt; Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler.exe
(Google LLC - & gt; Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler64.exe
(Google LLC - & gt; Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe & lt; 2 & gt;
(Google LLC - & gt; Google LLC) C:\Users\aleks\Downloads\ChromeSetup.exe
(ICEpower a/s - & gt; ICEpower) C:\Windows\System32\ICEsoundService64.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group - & gt; Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group - & gt; Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) CN - & gt; Intel Corporation) C:\Windows\System32\IntelSSTAPO\ParameterService\ParameterService.exe
(Intel(R) pGFX - & gt; Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ceddadac8a2b489e\igfxCUIService.exe
(Intel(R) pGFX - & gt; Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_ceddadac8a2b489e\igfxEM.exe
(Intel(R) Rapid Storage Technology - & gt; Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Malwarebytes Inc - & gt; Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc - & gt; Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(McAfee, LLC - & gt; McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(McAfee, LLC - & gt; McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(Microsoft Corporation - & gt; Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20688.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.621.4142.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\System32\dllhost.exe & lt; 2 & gt;
(Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(NVIDIA Corporation - & gt; NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe & lt; 2 & gt;
(Opera Software AS - & gt; Opera Software) C:\Users\aleks\AppData\Local\Programs\Opera\assistant\browser_assistant.exe & lt; 2 & gt;
(Piriform Software Ltd - & gt; Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Qualcomm Atheros - & gt; Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Spotify AB - & gt; Spotify Ltd) C:\Users\aleks\AppData\Roaming\Spotify\Spotify.exe & lt; 6 & gt;
(Wacom Technology Corp. - & gt; Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(Wacom Technology Corporation - & gt; Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(Wacom Technology Corporation - & gt; Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(Wacom Technology Corporation - & gt; Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(Wacom Technology Corporation - & gt; Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
==================== Rejestr (filtrowane) ===================
(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)
HKLM\...\Run: [RTHDVCPL] = & gt; C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18390912 2018-11-08] (Realtek Semiconductor Corp. - & gt; Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_TrueHarmony] = & gt; C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506176 2018-11-08] (Realtek Semiconductor Corp. - & gt; Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] = & gt; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [320568 2016-09-20] (Intel(R) Rapid Storage Technology - & gt; Intel Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] = & gt; C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated - & gt; Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] = & gt; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412680 2021-02-17] (Adobe Inc. - & gt; Adobe Systems, Incorporated)
HKLM-x32\...\Run: [HP Software Update] = & gt; C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company - & gt; Hewlett-Packard)
HKLM-x32\...\Run: [Adobe Creative Cloud] = & gt; " C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe " --showwindow=false --onOSstartup=true
HKLM-x32\...\Run: [SunJavaUpdateSched] = & gt; C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-09-17] (Oracle America, Inc. - & gt; Oracle Corporation)
HKLM-x32\...\Run: [Genshin Impact_Launcher] = & gt; C:\Program Files\Genshin Impact\launcher.exe [3498176 2021-04-13] (miHoYo Co.,Ltd. - & gt; miHoYo)
HKU\S-1-5-21-1044933911-3268953268-1544549098-1002\...\Run: [Discord] = & gt; C:\Users\aleks\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. - & gt; GitHub)
HKU\S-1-5-21-1044933911-3268953268-1544549098-1002\...\Run: [com.squirrel.Teams.Teams] = & gt; C:\Users\aleks\AppData\Local\Microsoft\Teams\Update.exe [2453728 2021-04-18] (Microsoft 3rd Party Application Component - & gt; Microsoft Corporation)
HKU\S-1-5-21-1044933911-3268953268-1544549098-1002\...\Run: [Steam] = & gt; C:\Program Files (x86)\Steam\steam.exe [4087528 2021-03-23] (Valve - & gt; Valve Corporation)
HKU\S-1-5-21-1044933911-3268953268-1544549098-1002\...\Run: [Chromium] = & gt; " c:\users\aleks\appdata\local\chromium\application\chrome.exe " --auto-launch-at-startup --profile-directory= " Default " --restore-last-session
HKU\S-1-5-21-1044933911-3268953268-1544549098-1002\...\Run: [Facebook.MessengerDesktop] = & gt; C:\Users\aleks\AppData\Local\Programs\Messenger\Messenger.exe [110793448 2021-04-06] (Facebook, Inc. - & gt; Facebook, Inc.)
HKU\S-1-5-21-1044933911-3268953268-1544549098-1002\...\Run: [Opera Browser Assistant] = & gt; C:\Users\aleks\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3154456 2020-11-25] (Opera Software AS - & gt; Opera Software)
HKU\S-1-5-21-1044933911-3268953268-1544549098-1002\...\Run: [CCleaner Smart Cleaning] = & gt; C:\Program Files\CCleaner\CCleaner64.exe [33169992 2021-03-18] (Piriform Software Ltd - & gt; Piriform Software Ltd)
HKU\S-1-5-21-1044933911-3268953268-1544549098-1002\...\Run: [Spotify] = & gt; C:\Users\aleks\AppData\Roaming\Spotify\Spotify.exe [23839816 2021-04-19] (Spotify AB - & gt; Spotify Ltd)
HKLM\...\Print\Monitors\HP C211 Status Monitor: C:\Windows\system32\hpinkstsC211LM.dll [333496 2013-01-08] (Hewlett Packard - & gt; Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Deskjet 2540 series): C:\Windows\system32\HPDiscoPMC211.dll [763912 2014-03-06] (Hewlett Packard - & gt; Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP E111 Status Monitor: C:\Windows\system32\hpinkstsE111LM.dll [393352 2017-04-14] (Hewlett Packard - & gt; HP Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] - & gt; C:\Program Files (x86)\Google\Chrome\Application\90.0.4430.85\Installer\chrmstp.exe [2021-04-26] (Google LLC - & gt; Google LLC)
HKLM\SOFTWARE\Policies\Google: Ograniczenia & lt; ==== UWAGA
==================== Zaplanowane zadania (filtrowane) ============
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
Task: {02BCB759-6FF7-49F8-8681-BBB18C1D6F27} - System32\Tasks\AdobeGCInvoker-1.0 = & gt; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412680 2021-02-17] (Adobe Inc. - & gt; Adobe Systems, Incorporated)
Task: {19341E85-96C3-49A2-8FC4-C82849579816} - System32\Tasks\ACC = & gt; C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe
Task: {20F08AD8-1DC5-475F-956D-E922FD3B16AA} - System32\Tasks\Oem\AcerJumpstartTask = & gt; C:\Program Files (x86)\Acer\Acer Jumpstart\hermes.exe
Task: {226C6B26-A697-47C4-8CA4-41069EC5CCE9} - System32\Tasks\Optimize Push Notification Data File-S-1-5-21-1044933911-3268953268-1544549098-1003 = & gt; {201600D8-6EFF-48CE-B842-E14D37A0682D} C:\WINDOWS\System32\wpninprc.dll [24064 2019-12-07] (Microsoft Windows - & gt; Microsoft Corporation)
Task: {2A1512B8-2F90-48BB-947F-10C9297F51CC} - System32\Tasks\BacKGroundAgent = & gt; C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [65752 2017-03-20] (Acer Incorporated - & gt; Acer Incorporated)
Task: {338891AB-1AC5-4BDF-93F3-61DF653E34E3} - System32\Tasks\Software Update Application = & gt; C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [472992 2016-06-25] (Acer Incorporated - & gt; Acer Incorporated)
Task: {338B14DC-7FDE-4533-8803-C8B9F1C98251} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 = & gt; C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation - & gt; Microsoft Corporation)
Task: {3698713B-CB35-442E-B4B0-0AA00AE2225E} - System32\Tasks\Opera scheduled Autoupdate 1517333574 = & gt; C:\Users\aleks\AppData\Local\Programs\Opera\launcher.exe [1886872 2021-04-20] (Opera Software AS - & gt; Opera Software)
Task: {37AD2600-76F2-482D-B652-2B6EA1B4E42E} - System32\Tasks\GoogleUpdateTaskMachineUA = & gt; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-04-26] (Google LLC - & gt; Google LLC)
Task: {4655BEB5-00DB-4243-AD16-1ADCCAE3BEF2} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-alekskania@hotmail.com = & gt; C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated - & gt; Adobe Systems Incorporated)
Task: {4B582E02-B39B-4B99-94BA-D25213C84205} - System32\Tasks\HPCustParticipation HP Deskjet 2540 series = & gt; C:\Program Files\HP\HP Deskjet 2540 series\Bin\HPCustPartic.exe [5745672 2014-03-06] (Hewlett Packard - & gt; Hewlett-Packard Co.)
Task: {583F934B-1A35-44A9-BFC0-491421FE9196} - System32\Tasks\CCleaner Update = & gt; C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-03-18] (Piriform Software Ltd - & gt; Piriform)
Task: {6B9E111D-AFB6-46B7-BFA9-283F0C7C8DC2} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 = & gt; C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation - & gt; Microsoft Corporation)
Task: {704FAB31-9F4D-4C9F-9B8F-634609685B10} - System32\Tasks\DashlaneUpgradeCheck = & gt; net [Argument = start " Dashlane Upgrade Service " ]
Task: {71AE5B65-0751-415F-9C71-FCE374456487} - \Microsoft\Windows\UNP\RunCampaignManager - & gt; Brak pliku & lt; ==== UWAGA
Task: {7572CF2B-B008-4CAA-8D45-4BAEF266B20E} - System32\Tasks\Opera scheduled assistant Autoupdate 1605180307 = & gt; C:\Users\aleks\AppData\Local\Programs\Opera\launcher.exe [1886872 2021-04-20] (Opera Software AS - & gt; Opera Software) - & gt; --scheduledautoupdate --component-name=assistant --component-path= " C:\Users\aleks\AppData\Local\Programs\Opera\assistant " $(Arg0)
Task: {8AFB1F72-519A-4784-AAB3-10EB4C0E0905} - System32\Tasks\FubToolByPLD = & gt; C:\OEM\Preload\FubTool\FubTool.exe [30976 2015-05-14] (Acer Incorporated - & gt; )
Task: {96C62C63-67EB-4EFC-B980-F9D83339BE10} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat = & gt; C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation - & gt; Microsoft Corporation)
Task: {C2123FC3-9AA1-49C2-92D1-28919DE32DFE} - System32\Tasks\GoogleUpdateTaskMachineCore = & gt; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-04-26] (Google LLC - & gt; Google LLC)
Task: {CCE4E753-A80E-4003-B7B7-BF249D09E9CB} - System32\Tasks\Nvbackend_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} = & gt; C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
Task: {CECB4A55-5734-463A-9C18-CBB260121EED} - System32\Tasks\CCleanerSkipUAC = & gt; C:\Program Files\CCleaner\CCleaner.exe [27616328 2021-03-18] (Piriform Software Ltd - & gt; Piriform Software Ltd)
Task: {D4FD6B17-FAE5-4A9C-B899-BBAF307916B2} - System32\Tasks\Opera scheduled Autoupdate 1605180268 = & gt; C:\Users\aleks\AppData\Local\Programs\Opera\launcher.exe [1886872 2021-04-20] (Opera Software AS - & gt; Opera Software)
Task: {F50599D4-21E4-4E8E-ABC5-AE5C702FE914} - System32\Tasks\Intel PTT EK Recertification = & gt; C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [909112 2016-07-27] (Intel(R) Trusted Connect Service - & gt; Intel(R) Corporation)
(Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.)
==================== Internet (filtrowane) ====================
(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)
Tcpip\Parameters: [DhcpNameServer] 192.168.8.1
Tcpip\..\Interfaces\{524d0576-5d56-44df-bb4e-cf5c2e380d0e}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{b5736623-3860-411c-bf10-8fa8fa5b44ac}: [DhcpNameServer] 192.168.8.1
Edge:
=======
Edge Extension: (Brak nazwy) - & gt; AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 = & gt; C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [nie znaleziono]
Edge Extension: (Brak nazwy) - & gt; BookReader_B171F20233094AC88D05A8EF7B9763E8 = & gt; C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [nie znaleziono]
Edge Extension: (Brak nazwy) - & gt; LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 = & gt; C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [nie znaleziono]
Edge Extension: (Brak nazwy) - & gt; PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 = & gt; C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [nie znaleziono]
Edge DefaultProfile: Default
Edge Profile: C:\Users\aleks\AppData\Local\Microsoft\Edge\User Data\Default [2021-04-26]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: nmksou43.default
FF ProfilePath: C:\Users\aleks\AppData\Roaming\Mozilla\Firefox\Profiles\nmksou43.default [2021-04-26]
FF Notifications: Mozilla\Firefox\Profiles\nmksou43.default - & gt; hxxps://www.facebook.com
FF Extension: (Polski Language Pack) - C:\Users\aleks\AppData\Roaming\Mozilla\Firefox\Profiles\nmksou43.default\Extensions\langpack-pl@firefox.mozilla.org.xpi [2019-09-01]
FF Extension: (Telemetry coverage) - C:\Users\aleks\AppData\Roaming\Mozilla\Firefox\Profiles\nmksou43.default\features\{457aceab-86b5-4f65-b3c1-54cfe18e0f31}\telemetry-coverage-bug1487578@mozilla.org.xpi [2019-04-01] [Przestarzałe]
FF Extension: (Brak nazwy) - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi [nie znaleziono]
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2021-04-15] [UpdateUrl:hxxps://sadownload.mcafee.com/products/SA/Win/xpi/webadvisor/update.json]
FF Plugin: @java.com/DTPlugin,version=11.271.2 - & gt; C:\Program Files\Java\jre1.8.0_271\bin\dtplugin\npDeployJava1.dll [2020-10-22] (Oracle America, Inc. - & gt; Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.271.2 - & gt; C:\Program Files\Java\jre1.8.0_271\bin\plugin2\npjp2.dll [2020-10-22] (Oracle America, Inc. - & gt; Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 - & gt; C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation - & gt; Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 - & gt; C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-07-31] (Microsoft Corporation - & gt; Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - & gt; C:\PROGRA~2\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation - & gt; Microsoft Corporation)
FF Plugin HKU\S-1-5-21-1044933911-3268953268-1544549098-1002: @zoom.us/ZoomVideoPlugin - & gt; C:\Users\aleks\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-05-12] (Zoom Video Communications, Inc. - & gt; Zoom Video Communications, Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\aleks\AppData\Local\Google\Chrome\User Data\Default [2021-04-26]
CHR Notifications: Default - & gt; hxxps://aternos.org
CHR HomePage: Default - & gt; hxxp://%66%65%65%64.%68%65%6C%70%65%72%62%61%72.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBPxn5dJ8gs0DGDT3GOWsi_8CTz4dOLBIUUklSClsy6dOSI0lDxCndU6ZqiBcpNxjOA0z9j2eaWvo2Hs_KTogsf9pzjLtQ57v_YxzBNpzD09vixRnzFuEN7xsppENuzEZptsoW5w85T_inPlcz1LkZHEI8ARL6-gVP2T0vQUdO4Ek7lP3fIyPbnr6gg
CHR Extension: (Prezentacje) - C:\Users\aleks\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-01-27]
CHR Extension: (Dokumenty) - C:\Users\aleks\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-01-27]
CHR Extension: (Dysk Google) - C:\Users\aleks\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-25]
CHR Extension: (YouTube) - C:\Users\aleks\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-01-27]
CHR Extension: (Photo Zoom for Facebook) - C:\Users\aleks\AppData\Local\Google\Chrome\User Data\Default\Extensions\elioihkkcdgakfbahdoddophfngopipi [2019-01-27]
CHR Extension: (Arkusze) - C:\Users\aleks\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-01-27]
CHR Extension: (Word Online) - C:\Users\aleks\AppData\Local\Google\Chrome\User Data\Default\Extensions\fiombgjlkfpdpkbhfioofeeinbehmajg [2018-04-14]
CHR Extension: (Stylish - Custom themes for any website) - C:\Users\aleks\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjnbnpbmkenffdnngjfgmeleoegfcffe [2019-01-06]
CHR Extension: (Dokumenty Google offline) - C:\Users\aleks\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-04-24]
CHR Extension: (AdBlock — najlepszy bloker reklam) - C:\Users\aleks\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-04-18]
CHR Extension: (Hola Free VPN Proxy Unblocker - Best VPN) - C:\Users\aleks\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2021-04-24]
CHR Extension: (Dark Space) - C:\Users\aleks\AppData\Local\Google\Chrome\User Data\Default\Extensions\idmnciiknelklflhdlnkokcoihkidkln [2019-01-27]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\aleks\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-04-26]
CHR Extension: (Excel Online) - C:\Users\aleks\AppData\Local\Google\Chrome\User Data\Default\Extensions\iljnkagajgfdmfnnidjijobijlfjfgnb [2018-04-14]
CHR Extension: (Last.fm Scrobbler for YouTube™) - C:\Users\aleks\AppData\Local\Google\Chrome\User Data\Default\Extensions\kjhnjfldmodoikafpfhfehngokaiegok [2021-04-19]
CHR Extension: (PowerPoint Online) - C:\Users\aleks\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdafamggmaaaginooondinjgkgcbpnhp [2018-04-14]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\aleks\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-31]
CHR Extension: (Gmail) - C:\Users\aleks\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\aleks\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-23]
CHR Profile: C:\Users\aleks\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-03-07]
CHR Profile: C:\Users\aleks\AppData\Local\Google\Chrome\User Data\System Profile [2021-03-07]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [pbjikboenpfhbbejgkoklgkhjpfogcam]
Opera:
=======
OPR Profile: C:\Users\aleks\AppData\Roaming\Opera Software\Opera Stable [2021-04-26]
OPR DefaultSuggestURL: Opera Stable - & gt; hxxps://www.google.com/complete/search?client=opera & q={searchTerms} & ie={inputEncoding} & oe={outputEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\aleks\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2020-12-30]
==================== Usługi (filtrowane) ===================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3780296 2021-02-17] (Adobe Inc. - & gt; Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3548360 2021-02-17] (Adobe Inc. - & gt; Adobe Systems, Incorporated)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [338312 2016-08-31] (Qualcomm Atheros - & gt; Windows (R) Win 7 DDK provider)
S3 FvSvc; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [287720 2020-12-31] (NVIDIA Corporation - & gt; NVIDIA)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2021-04-26] (Malwarebytes Inc - & gt; Malwarebytes)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [952992 2021-04-15] (McAfee, LLC - & gt; McAfee, LLC)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2535000 2021-03-30] (Electronic Arts, Inc. - & gt; Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3479640 2021-03-30] (Electronic Arts, Inc. - & gt; Electronic Arts)
R2 PSI_SVC_2; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2014-04-30] (Arvato Digital Services Canada Inc - & gt; arvato digital services llc)
R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [337776 2014-04-30] (Arvato Digital Services Canada Inc - & gt; arvato digital services llc)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\NisSrv.exe [2624104 2021-04-11] (Microsoft Windows Publisher - & gt; Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MsMpEng.exe [128376 2021-04-11] (Microsoft Windows Publisher - & gt; Microsoft Corporation)
S3 QALSvc; " C:\Program Files\Acer\Acer Quick Access\QALSvc.exe " [X]
S3 QASvc; " C:\Program Files\Acer\Acer Quick Access\QASvc.exe " [X]
S3 UEIPSvc; " C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe " [X]
===================== Sterowniki (filtrowane) ===================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
R1 ccSet_NGC; C:\WINDOWS\system32\drivers\NGCx64\160C000.068\ccSetx64.sys [187544 2018-01-25] (Symantec Corporation - & gt; Symantec Corporation)
S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2018-04-10] (Disc Soft Ltd - & gt; Disc Soft Ltd)
S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2018-04-10] (Disc Soft Ltd - & gt; Disc Soft Ltd)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [199128 2021-04-26] (Malwarebytes Inc - & gt; Malwarebytes)
R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [31000 2018-05-15] (Acer Incorporated - & gt; Acer Incorporated)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220752 2021-04-26] (Malwarebytes Inc - & gt; Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-04-26] (Microsoft Windows Early Launch Anti-malware Publisher - & gt; Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [198888 2021-04-26] (Malwarebytes Inc - & gt; Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [77496 2021-04-26] (Malwarebytes Inc - & gt; Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-04-26] (Malwarebytes Inc - & gt; Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [157944 2021-04-26] (Malwarebytes Inc - & gt; Malwarebytes)
R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [25368 2018-05-15] (Acer Incorporated - & gt; Acer Incorporated)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49560 2021-04-11] (Microsoft Windows Early Launch Anti-malware Publisher - & gt; Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [421088 2021-04-11] (Microsoft Windows - & gt; Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [72928 2021-04-11] (Microsoft Windows - & gt; Microsoft Corporation)
==================== NetSvcs (filtrowane) ===================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
==================== Jeden miesiąc (utworzone) (filtrowane) =========
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
2021-04-26 16:59 - 2021-04-26 16:59 - 001310832 _____ (Google LLC) C:\Users\aleks\Downloads\ChromeSetup.exe
2021-04-26 16:55 - 2021-04-26 17:01 - 000066223 _____ C:\Users\aleks\Downloads\Addition.txt
2021-04-26 16:47 - 2021-04-26 17:03 - 000000000 ____D C:\FRST
2021-04-26 16:46 - 2021-04-26 16:46 - 002298368 _____ (Farbar) C:\Users\aleks\Downloads\FRST64.exe
2021-04-26 16:46 - 2021-04-26 16:46 - 002010624 _____ (Farbar) C:\Users\aleks\Downloads\FRST (1).exe
2021-04-26 16:42 - 2021-04-26 16:43 - 002010624 _____ (Farbar) C:\Users\aleks\Downloads\FRST.exe
2021-04-26 16:32 - 2021-04-26 16:32 - 000077496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2021-04-26 16:31 - 2021-04-26 16:31 - 000198888 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2021-04-26 16:31 - 2021-04-26 16:31 - 000157944 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2021-04-26 16:20 - 2021-04-26 16:20 - 000013374 _____ C:\Users\aleks\Desktop\mbam.txt
2021-04-26 16:19 - 2021-04-26 16:20 - 000003568 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-04-26 16:19 - 2021-04-26 16:20 - 000003444 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-04-26 15:50 - 2021-04-26 16:23 - 000000000 ____D C:\AdwCleaner
2021-04-26 15:48 - 2021-04-26 15:48 - 008534696 _____ (Malwarebytes) C:\Users\aleks\Downloads\adwcleaner_8.2.exe
2021-04-26 15:43 - 2021-04-26 15:43 - 000000000 ____D C:\Users\aleks\AppData\Local\mbam
2021-04-26 15:42 - 2021-04-26 15:42 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-04-26 15:42 - 2021-04-26 15:42 - 000220752 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-04-26 15:42 - 2021-04-26 15:42 - 000002037 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-04-26 15:42 - 2021-04-26 15:42 - 000002025 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-04-26 15:41 - 2021-04-26 15:41 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-04-26 15:41 - 2021-04-26 15:40 - 000199128 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2021-04-26 15:41 - 2021-04-26 15:40 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2021-04-26 15:40 - 2021-04-26 15:40 - 002078632 _____ (Malwarebytes) C:\Users\aleks\Downloads\MBSetup (1).exe
2021-04-26 15:40 - 2021-04-26 15:40 - 000000000 ____D C:\Program Files\Malwarebytes
2021-04-26 15:39 - 2021-04-26 15:39 - 002078632 _____ (Malwarebytes) C:\Users\aleks\Downloads\MBSetup.exe
2021-04-26 14:29 - 2021-04-26 17:04 - 000026765 _____ C:\Users\aleks\Downloads\FRST.txt
2021-04-26 14:29 - 2021-04-26 14:29 - 000017993 _____ C:\Users\aleks\Downloads\FRST (2).txt
2021-04-26 14:29 - 2021-04-26 14:29 - 000017993 _____ C:\Users\aleks\Downloads\FRST (1).txt
2021-04-26 13:59 - 2021-04-26 16:28 - 000000000 ____D C:\Users\aleks\AppData\Local\FSDART
2021-04-26 13:59 - 2021-04-26 14:25 - 000000000 ____D C:\ProgramData\F-Secure
2021-04-26 13:59 - 2021-04-26 13:59 - 010618960 _____ (F-Secure Corporation) C:\Users\aleks\Downloads\F-SecureOnlineScanner.exe
2021-04-26 13:59 - 2021-04-26 13:59 - 000000000 ____D C:\Users\aleks\AppData\Local\F-Secure
2021-04-24 18:08 - 2021-04-24 18:08 - 000068671 _____ C:\Users\aleks\Desktop\Potwierdzenie_zgloszenia_w_Loterii (1).pdf
2021-04-24 18:03 - 2021-04-24 18:03 - 000068623 _____ C:\Users\aleks\Desktop\Potwierdzenie_zgloszenia_w_Loterii.pdf
2021-04-17 22:17 - 2021-04-17 22:17 - 000011357 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-04-17 22:10 - 2021-04-17 22:10 - 001823304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-04-17 22:06 - 2021-04-17 22:06 - 000231248 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2021-04-11 22:31 - 2021-04-11 22:31 - 000230191 _____ C:\Users\aleks\Desktop\esotiq-formularz-zwrtotu_n_t_correct_5.pdf
2021-04-03 11:13 - 2021-04-03 11:57 - 000000000 ____D C:\Users\aleks\Desktop\lanzarote
2021-04-02 10:25 - 2021-04-02 10:42 - 003516436 _____ C:\WINDOWS\Minidump\040221-55625-01.dmp
2021-04-02 10:25 - 2021-04-02 10:25 - 2798854591 _____ C:\WINDOWS\MEMORY.DMP
2021-04-01 16:54 - 2021-04-01 16:54 - 000024722 _____ C:\Users\aleks\AppData\Local\recently-used.xbel
==================== Jeden miesiąc (zmodyfikowane) ==================
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
2021-04-26 17:01 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-04-26 17:00 - 2017-09-03 13:38 - 000002387 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-04-26 16:50 - 2019-10-05 17:55 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2021-04-26 16:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-04-26 16:41 - 2021-02-05 20:23 - 000000000 ____D C:\Users\aleks\AppData\Roaming\Spotify
2021-04-26 16:41 - 2020-11-16 14:57 - 000000000 ____D C:\Users\aleks\AppData\Roaming\Messenger
2021-04-26 16:41 - 2020-11-16 14:57 - 000000000 ____D C:\Users\aleks\AppData\Local\Messenger
2021-04-26 16:37 - 2020-10-25 00:32 - 001769800 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-04-26 16:37 - 2019-12-07 17:08 - 000785594 _____ C:\WINDOWS\system32\perfh015.dat
2021-04-26 16:37 - 2019-12-07 17:08 - 000152454 _____ C:\WINDOWS\system32\perfc015.dat
2021-04-26 16:37 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-04-26 16:36 - 2021-02-02 20:51 - 000000000 ____D C:\Program Files\CCleaner
2021-04-26 16:32 - 2017-09-03 12:43 - 000000000 __SHD C:\Users\aleks\IntelGraphicsProfiles
2021-04-26 16:31 - 2019-05-19 21:25 - 000000000 ____D C:\Users\aleks\AppData\Roaming\WTablet
2021-04-26 16:29 - 2020-10-25 00:56 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-04-26 16:29 - 2017-02-26 08:01 - 000000000 ____D C:\ProgramData\NVIDIA
2021-04-26 16:28 - 2020-10-25 00:00 - 000008192 ___SH C:\DumpStack.log.tmp
2021-04-26 16:28 - 2019-12-07 11:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2021-04-26 16:25 - 2017-02-26 08:20 - 000000000 ____D C:\Program Files (x86)\Acer
2021-04-26 16:24 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2021-04-26 16:24 - 2017-02-26 08:20 - 000000000 ____D C:\ProgramData\Acer
2021-04-26 16:24 - 2017-02-26 08:19 - 000000000 ____D C:\Program Files\Acer
2021-04-26 16:23 - 2018-05-04 13:16 - 000000000 ____D C:\Users\aleks\AppData\Roaming\discord
2021-04-26 15:41 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-04-26 15:11 - 2020-10-25 00:00 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-04-26 10:56 - 2020-12-26 19:18 - 000000000 ____D C:\Program Files\Genshin Impact
2021-04-26 09:58 - 2020-11-19 00:43 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-04-26 09:58 - 2020-11-19 00:43 - 000003386 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-04-25 20:54 - 2021-02-05 20:24 - 000000000 ____D C:\Users\aleks\AppData\Local\Spotify
2021-04-25 19:12 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-04-25 11:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-04-23 12:35 - 2020-11-19 00:44 - 000002452 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-04-22 18:34 - 2020-11-12 13:25 - 000004252 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1605180268
2021-04-22 18:34 - 2020-11-12 13:24 - 000001413 _____ C:\Users\aleks\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Przeglądarka Opera.lnk
2021-04-18 22:52 - 2020-03-26 09:33 - 000002372 _____ C:\Users\aleks\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk
2021-04-18 16:31 - 2020-12-13 16:16 - 000002333 _____ C:\Users\aleks\Desktop\Messenger.lnk
2021-04-17 23:18 - 2020-10-25 00:00 - 000482200 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-04-17 23:12 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-04-17 23:12 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-04-17 23:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-04-17 23:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-04-17 23:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-04-17 23:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-04-17 23:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-04-17 23:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-04-17 23:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-04-17 23:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-04-17 23:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-04-17 23:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-04-17 23:08 - 2020-10-25 00:11 - 000000000 ____D C:\Users\aleks
2021-04-17 22:52 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-04-17 22:00 - 2020-10-25 00:06 - 002877440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2021-04-14 19:50 - 2017-09-03 16:11 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-04-14 19:37 - 2017-09-03 16:11 - 131963968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-04-12 16:36 - 2020-10-25 00:56 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1044933911-3268953268-1544549098-1002
2021-04-12 16:36 - 2020-10-25 00:11 - 000002415 _____ C:\Users\aleks\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-04-12 16:36 - 2017-09-03 12:49 - 000000000 ___RD C:\Users\aleks\OneDrive
2021-04-11 11:54 - 2018-03-07 21:45 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-04-09 13:01 - 2017-11-22 16:19 - 000000000 ____D C:\Users\aleks\AppData\Local\Packages
2021-04-04 16:10 - 2021-02-02 20:54 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-04-02 10:43 - 2020-12-02 15:12 - 000000000 ____D C:\WINDOWS\Minidump
2021-04-02 00:34 - 2017-09-03 13:59 - 000000000 ____D C:\Users\aleks\AppData\Roaming\Origin
2021-04-01 16:54 - 2017-10-17 17:59 - 000000000 ____D C:\Users\aleks\AppData\Local\gtk-2.0
2021-04-01 12:45 - 2017-10-16 20:37 - 000000000 ____D C:\Users\aleks\.gimp-2.8
2021-03-30 19:06 - 2021-01-27 12:47 - 000001451 _____ C:\Users\Public\Desktop\The Sims 4.lnk
2021-03-30 18:35 - 2017-09-03 14:03 - 000000000 ____D C:\Program Files (x86)\Origin Games
2021-03-30 18:35 - 2017-09-03 13:52 - 000000000 ____D C:\ProgramData\Origin
2021-03-30 18:16 - 2017-09-03 13:58 - 000000000 ____D C:\Program Files (x86)\Origin
2021-03-30 18:16 - 2017-09-03 13:52 - 000000000 ____D C:\Users\aleks\AppData\Local\Origin
2021-03-29 19:44 - 2020-09-21 14:25 - 000000000 ____D C:\Program Files (x86)\Steam
2021-03-29 19:30 - 2018-01-30 19:44 - 000000000 ____D C:\Users\aleks\AppData\Roaming\.minecraft
2021-03-27 20:25 - 2020-10-22 21:20 - 000000000 ____D C:\Program Files (x86)\Minecraft Launcher
==================== Pliki w katalogu głównym wybranych folderów ========
2020-11-12 15:00 - 2020-11-16 11:43 - 000000004 _____ () C:\ProgramData\lock.dat
2020-11-12 15:01 - 2020-11-16 11:43 - 000000004 _____ () C:\ProgramData\rc.dat
2020-11-12 15:00 - 2020-11-12 15:00 - 000000008 _____ () C:\ProgramData\ts.dat
2019-09-16 22:37 - 2021-01-27 12:00 - 000000017 _____ () C:\Users\aleks\AppData\Roaming\.cache3678791056.dat
2020-11-12 10:38 - 2020-12-03 10:04 - 000000236 _____ () C:\Users\aleks\AppData\Roaming\debug.log
2018-10-06 19:42 - 2018-10-06 19:42 - 000000410 _____ () C:\Users\aleks\AppData\Local\oobelibMkey.log
2021-04-01 16:54 - 2021-04-01 16:54 - 000024722 _____ () C:\Users\aleks\AppData\Local\recently-used.xbel
==================== SigCheck ============================
(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)
==================== Koniec FRST.txt ========================