Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 27-01-2021
Uruchomiony przez Przemysław (administrator)  DESKTOP-5HVFO0P (Gigabyte Technology Co., Ltd. Z97-D3H) (31-01-2021 16:42:18)
Uruchomiony z E:\Programy
Załadowane profile: Przemysław & SQLTELEMETRY & MSSQL$SQLEXPRESS & MSSQLSERVER & MSSQL$SQLEXPRESS2014
Platform: Windows 10 Pro Wersja 20H2 19042.746 (X64) Język: Polski (Polska)
Domyślna przeglądarka: FF
Tryb startu: Normal

==================== Procesy (filtrowane) =================

(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)

() [Brak podpisu cyfrowego] C:\Program Files (x86)\FAHClient\FAHClient.exe
() [Brak podpisu cyfrowego] C:\Program Files (x86)\Launchy\Launchy.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Aleksey Cherkasskiy -> ) [Brak podpisu cyfrowego] C:\Program Files (x86)\HDD Health\HDDHealthService.exe
(CHENGDU AOMEI Tech Co., Ltd. -> ) [Brak podpisu cyfrowego] C:\Program Files (x86)\AOMEI Backupper\ABNotify.exe
(CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\AOMEI Backupper\ABService.exe
(CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU Yiwo Tech Development Co., Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.9\bin\CleanUpUI.exe
(CloudBees, Inc.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Jenkins\jenkins.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.CpuIdRemote64.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.DisplayAdapter.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CueLLAccessService.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\iCUE.exe
(Docker Inc -> Docker Inc.) C:\Program Files\Docker\Docker\com.docker.service
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Google Inc -> Google) C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe
(Intel(R) Extreme Tuning Utility -> Intel(R) Corporation) C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe
(Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel(R) Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel(R) Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(JetBrains s.r.o. -> ) C:\Users\pklim\AppData\Local\JetBrains\Toolbox\bin\jetbrains-toolbox-helper.exe <3>
(JetBrains s.r.o. -> JetBrains s.r.o) C:\Program Files (x86)\JetBrains\ETW Host\JetBrains.Etw.Collector.Host.exe
(JetBrains s.r.o. -> JetBrains) C:\Users\pklim\AppData\Local\JetBrains\Toolbox\bin\jetbrains-toolbox.exe
(Logitech, Inc. -> ) C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
(Logitech, Inc. -> Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\OUTLOOK.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL12.SQLEXPRESS2014\MSSQL\Binn\sqlservr.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL14.MSSQLSERVER\MSSQL\Binn\sqlceip.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL14.MSSQLSERVER\MSSQL\Binn\sqlservr.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\pklim\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Sysinternals) E:\Programy\WinObj\Winobj.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SurfaceWirelessDisplayAdapter_4.227.139.0_x64__8wekyb3d8bbwe\Desktop\WDADesktopService.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\RelPost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) C:\Windows\System32\CorsairGamingAudioCfgService64.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <11>
(National Instruments Corp.) [Brak podpisu cyfrowego] C:\Windows\SysWOW64\nisvcloc.exe
(National Instruments, Inc.) [Brak podpisu cyfrowego] C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe
(National Instruments, Inc.) [Brak podpisu cyfrowego] C:\Windows\SysWOW64\lkads.exe
(National Instruments, Inc.) [Brak podpisu cyfrowego] C:\Windows\SysWOW64\lkcitdl.exe
(National Instruments, Inc.) [Brak podpisu cyfrowego] C:\Windows\SysWOW64\lktsrv.exe
(Node.js Foundation -> Node.js) C:\Windows\Prey\versions\1.9.9\bin\node.exe
(Nokia -> Nokia) C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe
(Nokia -> Nokia) C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
(Nokia -> Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclRSSrv.exe
(Nokia -> Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclUSBSrv64.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net) C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
(OpenVPN Technologies, Inc. -> The OpenVPN Project) C:\Program Files\OpenVPN\bin\openvpnserv.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Jenkins\jre\bin\java.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\XDM\jre\bin\javaw.exe
(PDFescape -> Red Software) C:\Program Files\PDFescape Desktop\creator-ws.exe
(pdfforge GmbH -> © pdfforge GmbH.) C:\Program Files (x86)\PDF Architect 5 Manager\PDF Architect 5\Architect Manager.exe
(pdfforge GmbH -> pdfforge GmbH) C:\Program Files\PDF Architect 5\creator\common\creator-ws.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Prey SpA -> Fork, Ltd.) [Brak podpisu cyfrowego] C:\Windows\Prey\versions\1.9.9\node_modules\os-triggers\bin\lightevt.exe
(Prey, Inc. -> Prey, Inc.) C:\Windows\Prey\wpxsvc.exe
(Realtek Semiconductor Corp -> ) C:\Windows\runSW.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor Corp -> Realtek) C:\Windows\SwUSB.exe
(Samsung Electronics CO., LTD. -> ) C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Shenzhen Huion Animation Technology Co.,LTD -> ) C:\Huion Tablet\Huion Tablet.exe
(Shenzhen Huion Animation Technology Co.,LTD -> ) C:\Huion Tablet\x64\TabletDriverCore.exe
(SIEMENS AG) [Brak podpisu cyfrowego] C:\Program Files (x86)\Common Files\Siemens\sws\almsrv\almsrvx.exe
(SOBER LEMUR SAS DI VACONDIO ANDREA -> Andrea Vacondio) C:\Program Files\PDFsam Enhanced 6\updater-ws.exe
(SOBER LEMUR SAS DI VACONDIO ANDREA -> Andrea Vacondio) C:\Program Files\PDFsam Enhanced 6\ws.exe
(SourceForge.net) [Brak podpisu cyfrowego] C:\Program Files\Password Safe\pwsafe.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Wacom Technology Corp. -> Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.233\WsAppService.exe
(Xamarin Inc. -> Apple Inc.) C:\Program Files (x86)\Xamarin\Bonjour\mDNSResponder.exe
(XOREAX LTD -> IncrediBuild Software Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\IncrediBuild\BuildService.exe
(XOREAX LTD -> IncrediBuild Software Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\IncrediBuild\CoordService.exe
(XOREAX LTD -> IncrediBuild Software Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\IncrediBuild\xgTrayIcon.exe

==================== Rejestr (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8844032 2016-01-27] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942864 2016-10-13] (Logitech -> Logitech, Inc.)
HKLM-x32\...\Run: [e-Kiosk] => C:\Program Files (x86)\e-Kiosk Reader\eGazetaST.exe [1690624 2011-09-21] (e-Kiosk S.A.) [Brak podpisu cyfrowego]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [EaseUS Cleanup] => C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.9\bin\CleanUpUI.exe [1243328 2016-09-20] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU Yiwo Tech Development Co., Ltd.) [Brak podpisu cyfrowego]
HKLM-x32\...\Run: [Google Desktop Search] => C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe [30192 2018-03-16] (Google Inc -> Google)
HKLM-x32\...\Run: [IncrediBuild Agent Monitor] => C:\Program Files (x86)\IncrediBuild\BuildTrayIcon.exe [189920 2018-08-01] (XOREAX LTD -> IncrediBuild Software Ltd.) [Brak podpisu cyfrowego]
HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-13] (Logitech, Inc. -> Logitech Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.) [Brak podpisu cyfrowego]
HKLM-x32\...\Run: [CORSAIR iCUE Software] => C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\iCUE Launcher.exe [410152 2020-10-29] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
HKLM-x32\...\Run: [ABNotify] => C:\Program Files (x86)\AOMEI Backupper\ABNotify.exe [80832 2016-09-26] (CHENGDU AOMEI Tech Co., Ltd. -> ) [Brak podpisu cyfrowego]
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-1978625630-1779754910-779616976-1001\...\Run: [GG] => C:\Users\pklim\AppData\Local\GG\Application\gghub.exe [4078144 2015-11-16] (GG Network S.A. -> GG Network S.A.)
HKU\S-1-5-21-1978625630-1779754910-779616976-1001\...\Run: [FlashGet 3] => C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe [3377256 2013-04-18] (Trend Media Corporation Limited -> Trend Media Corporation Limited)
HKU\S-1-5-21-1978625630-1779754910-779616976-1001\...\Run: [PC Suite Tray] => C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe [1516632 2012-06-26] (Nokia -> Nokia)
HKU\S-1-5-21-1978625630-1779754910-779616976-1001\...\Run: [Google Update] => C:\Users\pklim\AppData\Local\Google\Update\1.3.36.52\GoogleUpdateCore.exe [219592 2020-12-04] (Google LLC -> Google LLC)
HKU\S-1-5-21-1978625630-1779754910-779616976-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3377440 2020-07-31] (Valve -> Valve Corporation)
HKU\S-1-5-21-1978625630-1779754910-779616976-1001\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe [519168 2018-06-21] (BlueStack Systems, Inc.) [Brak podpisu cyfrowego]
HKU\S-1-5-21-1978625630-1779754910-779616976-1001\...\Run: [Spotify] => C:\Users\pklim\AppData\Roaming\Spotify\Spotify.exe [22899944 2020-04-24] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-1978625630-1779754910-779616976-1001\...\Run: [OPENVPN-GUI] => C:\Program Files\OpenVPN\bin\openvpn-gui.exe [643200 2017-09-26] (OpenVPN Technologies, Inc. -> )
HKU\S-1-5-21-1978625630-1779754910-779616976-1001\...\Run: [UIBCReceiverSetup] => C:\Program Files (x86)\TOSHIBA\screen mirroring\UIBC Receiver\UIBCReceiver.exe [180664 2016-11-02] (ApusOne Technology Inc. -> APUSONE Technology Inc.)
HKU\S-1-5-21-1978625630-1779754910-779616976-1001\...\Run: [AirDroid 3] => C:\Program Files (x86)\AirDroid\AirDroid.exe [14703448 2020-10-16] (SAND STUDIO CORPORATION LIMITED -> Sand Studio)
HKU\S-1-5-21-1978625630-1779754910-779616976-1001\...\Run: [Lync] => C:\Program Files\Microsoft Office\root\Office16\lync.exe [26327872 2021-01-23] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1978625630-1779754910-779616976-1001\...\Run: [Docker Desktop] => C:\Program Files\Docker\Docker\Docker for Windows.exe [1821184 2019-02-17] (Docker Inc -> Docker Inc.)
HKU\S-1-5-21-1978625630-1779754910-779616976-1001\...\Run: [Docker for Windows] => C:\Program Files\Docker\Docker\Docker for Windows.exe [1821184 2019-02-17] (Docker Inc -> Docker Inc.)
HKU\S-1-5-21-1978625630-1779754910-779616976-1001\...\Run: [SideSync] => C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe [12476064 2019-01-11] (Samsung Electronics CO., LTD. -> )
HKU\S-1-5-21-1978625630-1779754910-779616976-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1978625630-1779754910-779616976-1001\...\Run: [XDM] => "C:\Program Files (x86)\XDM\jre\bin\javaw.exe" -Xmx1024m -jar "C:\Program Files (x86)\XDM\xdman.jar" -m
HKU\S-1-5-21-1978625630-1779754910-779616976-1001\...\Run: [ProtonVPN] => C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.exe [7498984 2020-02-17] (ProtonVPN AG -> )
HKU\S-1-5-21-1978625630-1779754910-779616976-1001\...\Run: [JetBrains Toolbox] => C:\Users\pklim\AppData\Local\JetBrains\Toolbox\bin\jetbrains-toolbox.exe [7667648 2020-12-16] (JetBrains s.r.o. -> JetBrains)
HKU\S-1-5-21-1978625630-1779754910-779616976-1001\...\Run: [TabletDriver] => C:\Huion Tablet\x64\TabletDriverCore.exe [333544 2020-10-24] (Shenzhen Huion Animation Technology Co.,LTD -> )
HKU\S-1-5-80-2652535364-2169709536-2857650723-2622804123-1107741775\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-80-3880718306-3832830129-1677859214-2598158968-1052248003\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-80-74102703-195227291-2601699642-576852742-3294486561\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [117248 2018-01-28] (pdfforge GmbH) [Brak podpisu cyfrowego]
HKLM\...\Print\Monitors\PDFsam Enhanced 6 Monitor: C:\WINDOWS\system32\spool\DRIVERS\x64\pdfsam enhanced_pdfpmon_v.4.12.26.3.dll [932984 2020-09-25] (PDF Tools AG -> PDF Tools AG (hxxp://www.pdf-tools.com))
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\88.0.4324.104\Installer\chrmstp.exe [2021-01-26] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\88.1.19.88\Installer\chrmstp.exe [2021-01-28] (Brave Software, Inc. -> Brave Software, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HDDHealth.lnk [2018-04-26]
ShortcutTarget: HDDHealth.lnk -> C:\Program Files (x86)\HDD Health\hddhealth.exe (Aleksey Cherkasskiy -> PANTERASoft) [Brak podpisu cyfrowego]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Huion Tablet.lnk [2021-01-27]
ShortcutTarget: Huion Tablet.lnk -> C:\Huion Tablet\Huion Tablet.exe (Shenzhen Huion Animation Technology Co.,LTD -> )
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Launchy.lnk [2020-12-26]
ShortcutTarget: Launchy.lnk -> C:\Program Files (x86)\Launchy\Launchy.exe () [Brak podpisu cyfrowego]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TP-LINK Wireless Configuration Utility.lnk [2018-02-09]
ShortcutTarget: TP-LINK Wireless Configuration Utility.lnk -> C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe () [Brak podpisu cyfrowego]
Startup: C:\Users\pklim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Folding@home.lnk [2020-03-30]
ShortcutTarget: Folding@home.lnk -> C:\Program Files (x86)\FAHClient\HideConsole.exe () [Brak podpisu cyfrowego]
Startup: C:\Users\pklim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OUTLOOK.lnk [2020-06-26]
ShortcutTarget: OUTLOOK.lnk -> C:\Program Files\Microsoft Office\root\Office16\OUTLOOK.EXE (Microsoft Corporation -> Microsoft Corporation)
Startup: C:\Users\pklim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Password Safe.lnk [2017-10-03]
ShortcutTarget: Password Safe.lnk -> C:\Program Files\Password Safe\pwsafe.exe (SourceForge.net) [Brak podpisu cyfrowego]
Policies: C:\ProgramData\NTUSER.pol: Ograniczenia <==== UWAGA

==================== Zaplanowane zadania (filtrowane) ============

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

Task: {002A6E26-474C-4AFD-9524-18518D098437} - System32\Tasks\EasyTune 1 => C:\Program Files (x86)\GIGABYTE\EasyTune\etocfile.exe [18352 2019-02-21] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {007CB4C4-85E0-4AAD-BE43-DE1997048EA2} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1978625630-1779754910-779616976-1001Core1d25859a26818bf => C:\Users\pklim\AppData\Local\Google\Update\GoogleUpdate.exe [152216 2016-07-27] (Google Inc -> Google Inc.)
Task: {12C6118B-5398-4259-9A50-D462A3F78770} - System32\Tasks\WpsUpdateTask_pklim => C:\Users\pklim\AppData\Local\Kingsoft\WPS Office\11.2.0.9747\office6\wpsupdate.exe [158464 2020-11-18] (Zhuhai Kingsoft Office Software Co., Ltd. -> )
Task: {147411BD-0E97-4AA1-BBFC-63396A90BB6C} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2069952 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {17951D11-DFD5-41DD-A121-D48319D1274F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1DE5ADFD-9CCD-44C8-BEED-862224565DC4} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {20D89C47-F8A7-48D0-A54A-A27BD7CF3442} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {22C905A0-FB51-4131-89D8-9D3AECB07363} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {2401F798-D656-47B2-BD5B-6C6F2B5B7BAB} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23062920 2021-01-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {24C75A75-6FAC-499D-9EE7-30F698F5F01D} - System32\Tasks\EasyTune => C:\Program Files (x86)\GIGABYTE\EasyTune\etinit.exe [15792 2019-02-21] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {281E60D9-2064-48A6-9FAC-281E5325C09C} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [745480 2019-04-16] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {2923161E-A05E-46D6-A5D7-01A813A1271A} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23062920 2021-01-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {29997950-D47B-4846-AD5A-6142491D2C93} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [143720 2021-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {2DB913E2-38EA-47B1-B6E1-37859A8964C7} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [1328392 2016-03-17] (Intel(R) Software -> Intel Corporation)
Task: {31A698A1-9765-4E58-9BCA-4E2E98F48331} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1547160 2021-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {34695790-AA2B-44E9-A29D-92970DA27EC7} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [976832 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3F5BD3A9-5D8F-4ABC-8FF7-419747AF78F9} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1978625630-1779754910-779616976-1001Core => C:\Users\pklim\AppData\Local\Google\Update\GoogleUpdate.exe [152216 2016-07-27] (Google Inc -> Google Inc.)
Task: {44240E38-1547-4B63-BFCE-F7E6403A728A} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [757184 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4A8A48F7-FD04-41DC-830A-4B267D8D13AA} - System32\Tasks\iolo\ActiveReporter => C:\Program Files (x86)\Phoenix360\System Mechanic\ActiveBridge.exe [535640 2020-09-26] (RealDefense, LLC -> iolo technologies, LLC)
Task: {4DB4F516-0788-4A4A-84A1-78F1CEA88A45} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5332904 2021-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {4E2558BE-5499-496C-A9FC-666FF26B59A8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-18] (Google Inc -> Google Inc.)
Task: {5FBE6697-4766-4573-B378-DE1A08733A59} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {6733E668-852A-4019-AEE1-5C38E1D56AD0} - System32\Tasks\WpsUpdateTask_Przemysław => C:\Users\pklim\AppData\Local\Kingsoft\WPS Office\11.2.0.9967\office6\wpsupdate.exe [164536 2021-01-27] (Zhuhai Kingsoft Office Software Co., Ltd. -> )
Task: {6D67B638-85DE-4A5A-8DBD-5B7469C383A6} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [569416 2016-02-23] (Apple Inc. -> Apple Inc.)
Task: {75D43CED-84AE-4C94-86B4-9C3176FAEF8B} - System32\Tasks\iolo\ActiveMessenger => C:\Program Files (x86)\Phoenix360\System Mechanic\ActiveBridge.exe [535640 2020-09-26] (RealDefense, LLC -> iolo technologies, LLC)
Task: {77DD2479-5E98-4475-B2D3-71638D3E7C3A} - System32\Tasks\Driver Booster SkipUAC (Przemysław) => C:\Program Files (x86)\IObit\Driver Booster\6.0.2\DriverBooster.exe [7228176 2019-02-22] (IObit Information Technology -> IObit)
Task: {7AB20CAE-CF86-4664-AC89-14E2C91BE6B8} - System32\Tasks\WpsExternal_Przemysław_20210127142003 => C:\Users\pklim\AppData\Local\Kingsoft\WPS Office\11.2.0.9967\office6\wpscloudsvr.exe [1666232 2021-01-27] (Zhuhai Kingsoft Office Software Co., Ltd. -> Zhuhai Kingsoft Office Software Co.,Ltd)
Task: {7EEC4019-ECF9-420A-B482-8CED19D18A6B} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1978625630-1779754910-779616976-1001UA1d25859a26bd6cc => C:\Users\pklim\AppData\Local\Google\Update\GoogleUpdate.exe [152216 2016-07-27] (Google Inc -> Google Inc.)
Task: {882228BF-9BC7-409C-93B0-D4DF71F87A23} - System32\Tasks\Microsoft\VisualStudio\Updates\UpdateConfiguration_S-1-5-21-1978625630-1779754910-779616976-1001 => C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\VSIXConfigurationUpdater.exe [23464 2020-12-04] (Microsoft Corporation -> Microsoft)
Task: {8B815ED9-D2FA-48E9-890F-2190AB383441} - System32\Tasks\NCH Software\PixillionDowngrade => C:\Program Files (x86)\NCH Software\Pixillion\pixillion.exe [1529584 2017-05-03] (NCH Software -> NCH Software)
Task: {8BC1827B-FFDB-45A0-AF68-051F3A01AF12} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1978625630-1779754910-779616976-1001UA => C:\Users\pklim\AppData\Local\Google\Update\GoogleUpdate.exe [152216 2016-07-27] (Google Inc -> Google Inc.)
Task: {8CDEDF7E-B5DB-4CC2-B62A-A0FD22723B20} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\6.0.2\Scheduler.exe [149776 2018-12-28] (IObit Information Technology -> IObit)
Task: {8D8BC150-394C-4816-AE78-30C7B9E2BC91} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5332904 2021-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {95FCAC8D-2B49-4A70-B4D6-01411BE34D94} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9669A2CF-1EF3-4688-A34D-21BC31A9F94F} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157320 2020-02-20] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {98687EE1-8F7B-4EEF-A720-08262EF62762} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9FB289B4-C9A7-42CA-A77B-DEB6C211623C} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [510912 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A4FA9250-9776-4397-BDC4-06080003B0BC} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe [469952 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files (x86)\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {A7993531-50D1-44D4-ACDD-0D4F58A8D5BB} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [143720 2021-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {A972C812-AED8-4884-BC86-85704DFD85D1} - System32\Tasks\Microsoft\VisualStudio\VSIX Auto Update => C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\VSIXAutoUpdate.exe [210808 2020-12-04] (Microsoft Corporation -> )
Task: {ABC59BD3-7BD8-40F9-9E25-FB3F77887130} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26913848 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {AFBA490C-5671-4836-B637-F01F29466B8C} - System32\Tasks\WpsExternal_pklim_20201118120553 => C:\Users\pklim\AppData\Local\Kingsoft\WPS Office\11.2.0.9747\office6\wpscloudsvr.exe [1482496 2020-11-18] (Zhuhai Kingsoft Office Software Co., Ltd. -> Zhuhai Kingsoft Office Software Co.,Ltd)
Task: {B317623E-6B96-42E2-8F82-1570A92F03D4} - System32\Tasks\klcp_update => CodecTweakTool.exe
Task: {BA82B410-7C92-49C2-BE15-5C44225588FB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C82B78B3-FC18-4888-8821-2D1AC9151122} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D397D6E7-E799-4404-827F-116AB13F9A13} - System32\Tasks\GoogleUpdateTaskMachineCore1d3ece2f178ad8a => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-18] (Google Inc -> Google Inc.)
Task: {D831C4D5-576A-4336-9DC8-A27684D1FD30} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157320 2020-02-20] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {E3BD2243-D83A-4517-8023-A71B637A1020} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [677344 2021-01-18] (Mozilla Corporation -> Mozilla Foundation)
Task: {EB987961-710B-4A0C-BC94-D39BDE32C07E} - System32\Tasks\Microsoft\VisualStudio\VSIX Auto Update 14 => C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\VSIXAutoUpdate.exe
Task: {EE1645C7-7CA1-400B-A3C4-0B473E025BC2} - System32\Tasks\SIV-VGA => C:\Program Files (x86)\GIGABYTE\SIV\sensord.exe [253896 2019-08-26] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {FAD08039-BB86-4F3F-9637-69A4C5C83970} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-18] (Google Inc -> Google Inc.)
Task: {FF74D5B2-484F-4777-859F-88803539C5F0} - System32\Tasks\SIV => C:\Program Files (x86)\GIGABYTE\SIV\thermald.exe [426440 2019-08-26] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)

(Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.)

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1978625630-1779754910-779616976-1001Core.job => C:\Users\pklim\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1978625630-1779754910-779616976-1001UA.job => C:\Users\pklim\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\WpsExternal_Przemysław_20210127142003.job => C:\Users\pklim\AppData\Local\Kingsoft\WPS Office\11.2.0.9967\office6\wpscloudsvr.exe/wpscloudlaunch /run_plugin /plugin_name=ktaskschdtool /plugin_entry=ktaskschdtool.dll
Task: C:\WINDOWS\Tasks\WpsUpdateTask_Przemysław.job => C:\Users\pklim\AppData\Local\Kingsoft\WPS Office\11.2.0.9967\office6\wpsupdate.exe

==================== Internet (filtrowane) ====================

(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)

Tcpip\Parameters: [DhcpNameServer] 37.8.214.2 31.11.202.254
Tcpip\..\Interfaces\{d750855f-50cb-4fd9-98df-2d0745e7ece0}: [DhcpNameServer] 37.8.214.2 31.11.202.254

Edge: 
=======
DownloadDir: C:\Users\pklim\Downloads
Edge DefaultProfile: Default
Edge Profile: C:\Users\pklim\AppData\Local\Microsoft\Edge\User Data\Default [2021-01-31]
Edge DownloadDir: C:\Users\pklim\Downloads
Edge StartupUrls: Default -> "hxxps://duckduckgo.com/"
Edge DefaultSearchURL: Default -> hxxps://duckduckgo.com/?q={searchTerms}
Edge DefaultSearchKeyword: Default -> duckduckgo.com
Edge DefaultSuggestURL: Default -> hxxps://duckduckgo.com/ac/?q={searchTerms}&type=list
Edge Extension: (DuckDuckGo) - C:\Users\pklim\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bkdgflcldnnnapblkhphbgpggdiikppg [2021-01-12]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\pklim\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2020-12-20]
Edge Extension: (Adblock) - C:\Users\pklim\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kmiahfbflcnmlobepelpgkmolhodmiek [2020-11-01]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

FireFox:
========
FF DefaultProfile: 8ujp72p6.default-1489657581279-1611786957328
FF ProfilePath: C:\Users\pklim\AppData\Roaming\Mozilla\Firefox\Profiles\8ujp72p6.default-1489657581279-1611786957328 [2021-01-31]
FF Homepage: Mozilla\Firefox\Profiles\8ujp72p6.default-1489657581279-1611786957328 -> hxxps://duckduckgo.com/
FF Extension: (Grammarly for Firefox) - C:\Users\pklim\AppData\Roaming\Mozilla\Firefox\Profiles\8ujp72p6.default-1489657581279-1611786957328\Extensions\87677a2c52b84ad3a151a4a72f5bd3c4@jetpack.xpi [2021-01-27]
FF Extension: (Facebook Container) - C:\Users\pklim\AppData\Roaming\Mozilla\Firefox\Profiles\8ujp72p6.default-1489657581279-1611786957328\Extensions\@contain-facebook.xpi [2021-01-27]
FF Extension: (React Developer Tools) - C:\Users\pklim\AppData\Roaming\Mozilla\Firefox\Profiles\8ujp72p6.default-1489657581279-1611786957328\Extensions\@react-devtools.xpi [2021-01-27]
FF Extension: (Dark Reader) - C:\Users\pklim\AppData\Roaming\Mozilla\Firefox\Profiles\8ujp72p6.default-1489657581279-1611786957328\Extensions\addon@darkreader.org.xpi [2021-01-27]
FF Extension: (XDM Browser Monitor) - C:\Users\pklim\AppData\Roaming\Mozilla\Firefox\Profiles\8ujp72p6.default-1489657581279-1611786957328\Extensions\browser-mon@xdman.sourceforge.net.xpi [2021-01-27]
FF Extension: (Rozszerzenie Cisco Webex) - C:\Users\pklim\AppData\Roaming\Mozilla\Firefox\Profiles\8ujp72p6.default-1489657581279-1611786957328\Extensions\ciscowebexstart1@cisco.com.xpi [2021-01-27]
FF Extension: (Użyj Google Translate) - C:\Users\pklim\AppData\Roaming\Mozilla\Firefox\Profiles\8ujp72p6.default-1489657581279-1611786957328\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2021-01-27]
FF Extension: (AdBlocker for YouTube™) - C:\Users\pklim\AppData\Roaming\Mozilla\Firefox\Profiles\8ujp72p6.default-1489657581279-1611786957328\Extensions\jid1-q4sG8pYhq8KGHs@jetpack.xpi [2021-01-27]
FF Extension: (DuckDuckGo Privacy Essentials) - C:\Users\pklim\AppData\Roaming\Mozilla\Firefox\Profiles\8ujp72p6.default-1489657581279-1611786957328\Extensions\jid1-ZAdIEUB7XOzOJw@jetpack.xpi [2021-01-27]
FF Extension: (LastPass: Free Password Manager) - C:\Users\pklim\AppData\Roaming\Mozilla\Firefox\Profiles\8ujp72p6.default-1489657581279-1611786957328\Extensions\support@lastpass.com.xpi [2021-01-27]
FF Extension: (Malwarebytes Browser Guard) - C:\Users\pklim\AppData\Roaming\Mozilla\Firefox\Profiles\8ujp72p6.default-1489657581279-1611786957328\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2021-01-27]
FF Extension: (HTML Validator) - C:\Users\pklim\AppData\Roaming\Mozilla\Firefox\Profiles\8ujp72p6.default-1489657581279-1611786957328\Extensions\{3b56bcc7-54e5-44a2-9b44-66c3ef58c13e}.xpi [2021-01-27]
FF Extension: (Stylish - Custom themes for any website) - C:\Users\pklim\AppData\Roaming\Mozilla\Firefox\Profiles\8ujp72p6.default-1489657581279-1611786957328\Extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi [2021-01-27]
FF Extension: (Feedbro) - C:\Users\pklim\AppData\Roaming\Mozilla\Firefox\Profiles\8ujp72p6.default-1489657581279-1611786957328\Extensions\{a9c2ad37-e940-4892-8dce-cd73c6cbbc0c}.xpi [2021-01-27]
FF Extension: (Greasemonkey) - C:\Users\pklim\AppData\Roaming\Mozilla\Firefox\Profiles\8ujp72p6.default-1489657581279-1611786957328\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2021-01-29]
FF ProfilePath: C:\Users\pklim\AppData\Roaming\kompozer.net\KompoZer\Profiles\dttjkj5v.default [2016-06-19]
FF ProfilePath: C:\Users\pklim\AppData\Roaming\KompoZer\Profiles\tdbpu2j8.default [2016-10-07]
FF HKLM\...\Firefox\Extensions: [pdfsam_enhanced6_conv@pdfsam.com] - C:\Program Files\PDFsam Enhanced 6\creator\plugins\FirefoxAddin\pdfsam_enhanced6_conv@pdfsam.com.xpi
FF Extension: (PDFsam Enhanced 6 Creator) - C:\Program Files\PDFsam Enhanced 6\creator\plugins\FirefoxAddin\pdfsam_enhanced6_conv@pdfsam.com.xpi [2019-10-17]
FF HKLM-x32\...\Firefox\Extensions: [pdfsam_enhanced6_conv@pdfsam.com] - C:\Program Files\PDFsam Enhanced 6\creator\plugins\FirefoxAddin\pdfsam_enhanced6_conv@pdfsam.com.xpi
FF Plugin: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-10-20] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-10-20] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-09-15] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: PDF Architect 5 -> C:\Program Files\PDF Architect 5\np-previewer.dll [2017-11-29] (pdfforge GmbH -> pdfforge GmbH)
FF Plugin: PDFescape Desktop -> C:\Program Files\PDFescape Desktop\np-previewer.dll [2017-07-13] (PDFescape -> Red Software)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-01-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-09-15] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Brak podpisu cyfrowego]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Brak podpisu cyfrowego]
FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=3 -> C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2020-02-20] (Brave Software, Inc. -> BraveSoftware Inc.)
FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=9 -> C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2020-02-20] (Brave Software, Inc. -> BraveSoftware Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)
FF Plugin-x32: @webex.com/npatgpc -> C:\ProgramData\WebEx\npatgpc.dll [2016-05-30] (Cisco WebEx LLC -> Cisco WebEx LLC)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1978625630-1779754910-779616976-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\pklim\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2019-09-25] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FF Plugin HKU\S-1-5-21-1978625630-1779754910-779616976-1001: SkypeForBusinessPlugin-16.2 -> C:\Users\pklim\AppData\Local\Microsoft\SkypeForBusinessPlugin\16.2.0.496\npGatewayNpapi.dll [2019-05-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin HKU\S-1-5-21-1978625630-1779754910-779616976-1001: SkypeForBusinessPlugin64-16.2 -> C:\Users\pklim\AppData\Local\Microsoft\SkypeForBusinessPlugin\16.2.0.496\npGatewayNpapi-x64.dll [2019-05-23] (Microsoft Corporation -> Microsoft Corporation)

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default [2021-01-28]
CHR Notifications: Default -> hxxps://codility.com; hxxps://forum.dobreprogramy.pl; hxxps://tegol.slack.com; hxxps://www.facebook.com
CHR StartupUrls: Default -> "hxxps://duckduckgo.com/"
CHR DefaultSearchURL: Default -> hxxps://duckduckgo.com/?q={searchTerms}
CHR DefaultSearchKeyword: Default -> duckduckgo.com
CHR DefaultNewTabURL: Default -> hxxps://duckduckgo.com/chrome_newtab
CHR DefaultSuggestURL: Default -> hxxps://duckduckgo.com/ac/?q={searchTerms}&type=list
CHR Extension: (Tłumacz Google) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2020-03-20]
CHR Extension: (Prezentacje) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-27]
CHR Extension: (Safari Books Download) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\anlpljppoinmpaedoilhjibjehpjhcob [2019-01-01]
CHR Extension: (Dokumenty) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-27]
CHR Extension: (Dysk Google) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-02]
CHR Extension: (HoverReader) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgchppjofckmmlfpegeinpegcjmejnlk [2016-11-26]
CHR Extension: (Angular Inspector) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\binbopkfgmcbckdejoocgogfjjpkhcho [2016-12-14]
CHR Extension: (DuckDuckGo) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkdgflcldnnnapblkhphbgpggdiikppg [2021-01-24]
CHR Extension: (YouTube) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-18]
CHR Extension: (uBlock Origin) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2021-01-27]
CHR Extension: (Google Search) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-18]
CHR Extension: (Arkusze) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-27]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2021-01-27]
CHR Extension: (Word Online) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\fiombgjlkfpdpkbhfioofeeinbehmajg [2016-06-30]
CHR Extension: (Reload with proxy) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjhcpnpblahnhdmalehachcdlnlggehd [2018-11-01]
CHR Extension: (Dokumenty Google offline) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-12-27]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2020-12-27]
CHR Extension: (Skype) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2017-12-02]
CHR Extension: (AVG SafePrice | Porównania, promocje, kupony) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbckjcfnjmoiinpgddefodcighgikkgn [2020-07-27]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-16]
CHR Extension: (Auto Refresh Plus) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohfjpkccecpdfkpmfocndhepolhljfhg [2019-04-10]
CHR Extension: (Proxy Switcher and Manager) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\onnfghpihccifgojkpnnncpagjcdbjod [2021-01-24]
CHR Extension: (Gmail) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-02]
CHR Extension: (Chrome Media Router) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-01-27]
CHR Extension: (RSS Feed Reader) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp [2020-09-10]
CHR Profile: C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-01-28]
CHR Profile: C:\Users\pklim\AppData\Local\Google\Chrome\User Data\System Profile [2021-01-28]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKU\S-1-5-21-1978625630-1779754910-779616976-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl]

Brave: 
=======
BRA Profile: C:\Users\pklim\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2021-01-28]
BRA DefaultSearchURL: Default -> hxxps://duckduckgo.com/?q={searchTerms}&t=brave
BRA DefaultSearchKeyword: Default -> :d
BRA DefaultSuggestURL: Default -> hxxps://ac.duckduckgo.com/ac/?q={searchTerms}&type=list
BRA Extension: (DuckDuckGo) - C:\Users\pklim\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\bkdgflcldnnnapblkhphbgpggdiikppg [2020-06-03]
BRA Extension: (Skype) - C:\Users\pklim\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2020-02-20]
BRA Extension: (AVG SafePrice | Comparison, deals, coupons) - C:\Users\pklim\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\mbckjcfnjmoiinpgddefodcighgikkgn [2020-02-20]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\pklim\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2020-02-20]
BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\pklim\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2020-06-03]
BRA Extension: (Brave Tor Client Updater (Windows)) - C:\Users\pklim\AppData\Local\BraveSoftware\Brave-Browser\User Data\cpoalefficncklhjfpglfiplenlpccdb [2020-05-14]
BRA Extension: (Crowd Deny) - C:\Users\pklim\AppData\Local\BraveSoftware\Brave-Browser\User Data\Crowd Deny [2020-02-20]
BRA Extension: (Brave NTP sponsored images) - C:\Users\pklim\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodhafecfemgejckecbnmpobnhmoaoag [2020-06-03]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\pklim\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2020-05-14]
StartMenuInternet: Brave - C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe

==================== Usługi (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

"AdobeFlashPlayerUpdateSvc" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\AdobeFlashPlayerUpdateSvc => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe <==== UWAGA (Rootkit!/Zablokowana usługa)
"adp94xx" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\adp94xx => \SystemRoot\system32\DRIVERS\adp94xx.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"adpahci" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\adpahci => \SystemRoot\system32\DRIVERS\adpahci.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"adpu320" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\adpu320 => \SystemRoot\system32\DRIVERS\adpu320.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"AeLookupSvc" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\AeLookupSvc => %SystemRoot%\System32\aelupsvc.dll <==== UWAGA (Rootkit!/Zablokowana usługa)
"agp440" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\agp440 => \SystemRoot\system32\drivers\agp440.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"aliide" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\aliide => \SystemRoot\system32\drivers\aliide.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"amdide" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\amdide => \SystemRoot\system32\drivers\amdide.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"arc" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\arc => \SystemRoot\system32\DRIVERS\arc.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"b57nd60a" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\b57nd60a => system32\DRIVERS\b57nd60a.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"BITCOMET_HELPER_SERVICE" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\BITCOMET_HELPER_SERVICE => C:\Program Files\BitComet\tools\BitCometService.exe -service <==== UWAGA (Rootkit!/Zablokowana usługa)
"blbdrive" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\blbdrive => system32\DRIVERS\blbdrive.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"BrFiltLo" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\BrFiltLo => \SystemRoot\system32\DRIVERS\BrFiltLo.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"BrFiltUp" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\BrFiltUp => \SystemRoot\system32\DRIVERS\BrFiltUp.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"Browser" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\Browser => %SystemRoot%\System32\browser.dll <==== UWAGA (Rootkit!/Zablokowana usługa)
"Brserid" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\Brserid => \SystemRoot\System32\Drivers\Brserid.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"BrSerWdm" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\BrSerWdm => \SystemRoot\System32\Drivers\BrSerWdm.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"BrUsbMdm" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\BrUsbMdm => \SystemRoot\System32\Drivers\BrUsbMdm.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"BrUsbSer" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\BrUsbSer => \SystemRoot\System32\Drivers\BrUsbSer.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"cmdide" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\cmdide => \SystemRoot\system32\drivers\cmdide.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"Compbatt" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\Compbatt => \SystemRoot\system32\DRIVERS\compbatt.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"crcdisk" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\crcdisk => \SystemRoot\system32\DRIVERS\crcdisk.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"discache" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\discache => System32\drivers\discache.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"dtsoftbus01" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\dtsoftbus01 => system32\DRIVERS\dtsoftbus01.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"DTSPipeline110" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\DTSPipeline110 =>  <==== UWAGA (Rootkit!/Zablokowana usługa)
"ehRecvr" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\ehRecvr => C:\WINDOWS\ehome\ehRecvr.exe [713728 2015-09-02] (Microsoft Corporation) [Brak podpisu cyfrowego] <==== UWAGA (Rootkit!/Zablokowana usługa)
"ehSched" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\ehSched => C:\WINDOWS\ehome\ehsched.exe [177152 2015-09-02] (Microsoft Corporation) [Brak podpisu cyfrowego] <==== UWAGA (Rootkit!/Zablokowana usługa)
"elxstor" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\elxstor => \SystemRoot\system32\DRIVERS\elxstor.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"fussvc" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\fussvc => "C:\Program Files (x86)\Windows Kits\8.0\App Certification Kit\fussvc.exe" <==== UWAGA (Rootkit!/Zablokowana usługa)
"gagp30kx" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\gagp30kx => \SystemRoot\system32\DRIVERS\gagp30kx.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"hcw85cir" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\hcw85cir => \SystemRoot\system32\drivers\hcw85cir.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"hkmsvc" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\hkmsvc => %SystemRoot%\system32\kmsvc.dll <==== UWAGA (Rootkit!/Zablokowana usługa)
"idsvc" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\idsvc => "%systemroot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe" <==== UWAGA (Rootkit!/Zablokowana usługa)
"iirsp" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\iirsp => \SystemRoot\system32\DRIVERS\iirsp.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"IPBusEnum" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\IPBusEnum => %SystemRoot%\system32\ipbusenum.dll <==== UWAGA (Rootkit!/Zablokowana usługa)
"IRENUM" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\IRENUM => system32\drivers\irenum.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"ISODrive" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\ISODrive => \??\C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"LSI_FC" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\LSI_FC => \SystemRoot\system32\DRIVERS\lsi_fc.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"LSI_SAS2" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\LSI_SAS2 => \SystemRoot\system32\DRIVERS\lsi_sas2.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"LSI_SCSI" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\LSI_SCSI => \SystemRoot\system32\DRIVERS\lsi_scsi.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"MBAMProtector" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\MBAMProtector => \??\C:\Windows\system32\drivers\mbam.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"MBAMScheduler" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\MBAMScheduler => "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe" <==== UWAGA (Rootkit!/Zablokowana usługa)
"MBAMService" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\MBAMService => "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe" <==== UWAGA (Rootkit!/Zablokowana usługa)
"McComponentHostService" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\McComponentHostService => "C:\Program Files (x86)\McAfee Security Scan\3.0.207\McCHSvc.exe" <==== UWAGA (Rootkit!/Zablokowana usługa)
"Mcx2Svc" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\Mcx2Svc => C:\WINDOWS\system32\Mcx2Svc.dll [83968 2015-09-05] (Microsoft Corporation) [Brak podpisu cyfrowego] <==== UWAGA (Rootkit!/Zablokowana usługa)
"MpFilter" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\MpFilter => system32\DRIVERS\MpFilter.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"mpio" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\mpio => \SystemRoot\system32\drivers\mpio.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"mrxsmb10" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\mrxsmb10 => system32\DRIVERS\mrxsmb10.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"msahci" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\msahci => \SystemRoot\system32\drivers\msahci.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"msdsm" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\msdsm => \SystemRoot\system32\drivers\msdsm.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"MsDtsServer110" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\MsDtsServer110 => "C:\Program Files\Microsoft SQL Server\110\DTS\Binn\MsDtsSrvr.exe" <==== UWAGA (Rootkit!/Zablokowana usługa)
"MsMpSvc" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\MsMpSvc => "C:\Program Files\Microsoft Security Client\MsMpEng.exe" <==== UWAGA (Rootkit!/Zablokowana usługa)
"MSRS 2011 Web Service" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\MSRS 2011 Web Service =>  <==== UWAGA (Rootkit!/Zablokowana usługa)
"MSRS 2011 Web Service SharePoint Mode" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\MSRS 2011 Web Service SharePoint Mode =>  <==== UWAGA (Rootkit!/Zablokowana usługa)
"MSRS 2011 Windows Service" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\MSRS 2011 Windows Service =>  <==== UWAGA (Rootkit!/Zablokowana usługa)
"MSRS 2011 Windows Service SharePoint Mode" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\MSRS 2011 Windows Service SharePoint Mode =>  <==== UWAGA (Rootkit!/Zablokowana usługa)
"MSSQLFDLauncher" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\MSSQLFDLauncher => "C:\Program Files\Microsoft SQL Server\MSSQL11.MSSQLSERVER2012\MSSQL\Binn\fdlauncher.exe" -s MSSQL11.MSSQLSERVER2012 <==== UWAGA (Rootkit!/Zablokowana usługa)
"NetMsmqActivator" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\NetMsmqActivator => C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [139256 2019-12-07] (Microsoft Corporation -> Microsoft Corporation) <==== UWAGA (Rootkit!/Zablokowana usługa)
"NetPipeActivator" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\NetPipeActivator => C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [139256 2019-12-07] (Microsoft Corporation -> Microsoft Corporation) <==== UWAGA (Rootkit!/Zablokowana usługa)
"NetTcpActivator" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\NetTcpActivator => C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [139256 2019-12-07] (Microsoft Corporation -> Microsoft Corporation) <==== UWAGA (Rootkit!/Zablokowana usługa)
"nfrd960" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\nfrd960 => \SystemRoot\system32\DRIVERS\nfrd960.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"NisDrv" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\NisDrv => system32\DRIVERS\NisDrvWFP.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"NisSrv" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\NisSrv => "C:\Program Files\Microsoft Security Client\NisSrv.exe" <==== UWAGA (Rootkit!/Zablokowana usługa)
"NVSvc" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\NVSvc => %SystemRoot%\system32\nvvsvc.exe <==== UWAGA (Rootkit!/Zablokowana usługa)
"nv_agp" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\nv_agp => \SystemRoot\system32\drivers\nv_agp.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"ohci1394" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\ohci1394 => \SystemRoot\system32\drivers\ohci1394.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"ProtectedStorage" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\ProtectedStorage => C:\WINDOWS\system32\lsass.exe [59464 2020-12-11] (Microsoft Windows Publisher -> Microsoft Corporation) <==== UWAGA (Rootkit!/Zablokowana usługa)
"ql2300" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\ql2300 => \SystemRoot\system32\DRIVERS\ql2300.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"ql40xx" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\ql40xx => \SystemRoot\system32\DRIVERS\ql40xx.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"RDPCDD" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\RDPCDD => System32\DRIVERS\RDPCDD.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"RDPDD" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\RDPDD =>  <==== UWAGA (Rootkit!/Zablokowana usługa)
"RDPENCDD" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\RDPENCDD => system32\drivers\rdpencdd.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"RDPREFMP" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\RDPREFMP => system32\drivers\rdprefmp.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"RDPWD" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\RDPWD =>  <==== UWAGA (Rootkit!/Zablokowana usługa)
"ReportServer" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\ReportServer => "C:\Program Files\Microsoft SQL Server\MSRS11.MSSQLSERVER2012\Reporting Services\ReportServer\bin\ReportingServicesService.exe" <==== UWAGA (Rootkit!/Zablokowana usługa)
"ReportServerSharePoint:Service" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\ReportServerSharePoint:Service =>  <==== UWAGA (Rootkit!/Zablokowana usługa)
"secdrv" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\secdrv =>  <==== UWAGA (Rootkit!/Zablokowana usługa)
"sffdisk" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\sffdisk => \SystemRoot\system32\drivers\sffdisk.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"sffp_mmc" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\sffp_mmc => \SystemRoot\system32\drivers\sffp_mmc.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"sffp_sd" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\sffp_sd => \SystemRoot\system32\drivers\sffp_sd.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"Skype C2C Service" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\Skype C2C Service => "C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe" <==== UWAGA (Rootkit!/Zablokowana usługa)
"SkypeUpdate" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\SkypeUpdate => "C:\Program Files (x86)\Skype\Updater\Updater.exe" <==== UWAGA (Rootkit!/Zablokowana usługa)
"Smb" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\Smb => system32\DRIVERS\smb.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"spldr" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\spldr =>  <==== UWAGA (Rootkit!/Zablokowana usługa)
"sppuinotify" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\sppuinotify => %SystemRoot%\system32\sppuinotify.dll <==== UWAGA (Rootkit!/Zablokowana usługa)
"SQL Server Distributed Replay Client" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\SQL Server Distributed Replay Client => "C:\Program Files (x86)\Microsoft SQL Server\110\Tools\DReplayClient\DReplayClient.exe" <==== UWAGA (Rootkit!/Zablokowana usługa)
"SQL Server Distributed Replay Controller" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\SQL Server Distributed Replay Controller => "C:\Program Files (x86)\Microsoft SQL Server\110\Tools\DReplayController\DReplayController.exe" <==== UWAGA (Rootkit!/Zablokowana usługa)
"srv" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\srv => System32\DRIVERS\srv.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"Stereo Service" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\Stereo Service => C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe <==== UWAGA (Rootkit!/Zablokowana usługa)
"TBPanel" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\TBPanel =>  <==== UWAGA (Rootkit!/Zablokowana usługa)
"TBS" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\TBS => %SystemRoot%\System32\tbssvc.dll <==== UWAGA (Rootkit!/Zablokowana usługa)
"TDPIPE" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\TDPIPE => system32\drivers\tdpipe.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"TDTCP" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\TDTCP => system32\drivers\tdtcp.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"Te.Service" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\Te.Service => "C:\Program Files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe" <==== UWAGA (Rootkit!/Zablokowana usługa)
"TermDD" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\TermDD => \SystemRoot\system32\drivers\termdd.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"THREADORDER" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\THREADORDER => %SystemRoot%\system32\mmcss.dll <==== UWAGA (Rootkit!/Zablokowana usługa)
"tssecsrv" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\tssecsrv => System32\DRIVERS\tssecsrv.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"uagp35" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\uagp35 => \SystemRoot\system32\DRIVERS\uagp35.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"UI0Detect" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\UI0Detect => %SystemRoot%\system32\UI0Detect.exe <==== UWAGA (Rootkit!/Zablokowana usługa)
"uliagpkx" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\uliagpkx => \SystemRoot\system32\drivers\uliagpkx.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"UxSms" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\UxSms => %SystemRoot%\System32\uxsms.dll <==== UWAGA (Rootkit!/Zablokowana usługa)
"vga" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\vga => system32\DRIVERS\vgapnp.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"VgaSave" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\VgaSave => \SystemRoot\System32\drivers\vga.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"viaide" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\viaide => \SystemRoot\system32\drivers\viaide.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"VSPerfDrv110" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\VSPerfDrv110 => \??\C:\Program Files (x86)\Microsoft Visual Studio 11.0\Team Tools\Performance Tools\x64\VSPerfDrv110.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"WatAdminSvc" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\WatAdminSvc => %SystemRoot%\system32\Wat\WatAdminSvc.exe <==== UWAGA (Rootkit!/Zablokowana usługa)
"WcsPlugInService" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\WcsPlugInService => %SystemRoot%\System32\WcsPlugInService.dll <==== UWAGA (Rootkit!/Zablokowana usługa)
"Wd" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\Wd => \SystemRoot\system32\DRIVERS\wd.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"WfpLwf" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\WfpLwf => system32\DRIVERS\wfplwf.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"WPCSvc" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\WPCSvc => %SystemRoot%\System32\wpcsvc.dll <==== UWAGA (Rootkit!/Zablokowana usługa)
"wudfsvc" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\wudfsvc => %SystemRoot%\System32\WUDFSvc.dll <==== UWAGA (Rootkit!/Zablokowana usługa)
"yukonw7" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\yukonw7 => system32\DRIVERS\yk62x64.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
"{2D088747-FC57-473E-B500-355B8C2CC218}" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\{2D088747-FC57-473E-B500-355B8C2CC218} =>  <==== UWAGA (Rootkit!/Zablokowana usługa)
"{3B7EA4D2-F3D0-488B-A9F7-78903C8168C2}" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\{3B7EA4D2-F3D0-488B-A9F7-78903C8168C2} =>  <==== UWAGA (Rootkit!/Zablokowana usługa)
"{CAF6B3A3-A121-4D8C-AB46-83AE98F5D167}" => serwis nie został odblokowany. <==== UWAGA
HKLM\SYSTEM\ControlSet001\Services\{CAF6B3A3-A121-4D8C-AB46-83AE98F5D167} =>  <==== UWAGA (Rootkit!/Zablokowana usługa)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
R2 almservice; C:\Program Files (x86)\Common Files\Siemens\sws\almsrv\almsrvx.exe [1200128 2009-04-23] (SIEMENS AG) [Brak podpisu cyfrowego]
R2 Backupper Service; C:\Program Files (x86)\AOMEI Backupper\ABService.exe [56256 2016-09-26] (CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.) [Brak podpisu cyfrowego]
R2 Bonjour Service; C:\Program Files (x86)\Xamarin\Bonjour\mDNSResponder.exe [401456 2017-03-19] (Xamarin Inc. -> Apple Inc.)
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157320 2020-02-20] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157320 2020-02-20] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\88.0.4324.33\remoting_host.exe [73200 2020-12-03] (Google LLC -> Google Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8960384 2021-01-19] (Microsoft Corporation -> Microsoft Corporation)
R2 com.docker.service; C:\Program Files\Docker\Docker\com.docker.service [15912 2019-02-17] (Docker Inc -> Docker Inc.)
S3 Connectify; C:\Program Files (x86)\Connectify\ConnectifyService.exe [487936 2014-03-04] (Connectify) [Brak podpisu cyfrowego]
R2 CorsairGamingAudioConfig; C:\WINDOWS\system32\CorsairGamingAudioCfgService64.exe [616344 2020-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAService; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CueLLAccessService.exe [421928 2020-10-29] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 CorsairService; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe [56872 2020-10-29] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 CronService; C:\Windows\Prey\wpxsvc.exe [5493968 2020-12-22] (Prey, Inc. -> Prey, Inc.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [774272 2018-06-13] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342456 2017-05-19] (FUTUREMARK INC -> Futuremark)
S3 GoogleDesktopManager-051210-111108; C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe [30192 2018-03-16] (Google Inc -> Google)
R2 HDDHealth; C:\Program Files (x86)\HDD Health\HDDHealthService.exe [17760 2013-03-08] (Aleksey Cherkasskiy -> ) [Brak podpisu cyfrowego]
S3 HwmRecordService; C:\Program Files (x86)\GIGABYTE\SIV\HwmRecordService.exe [128968 2019-08-26] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Brak podpisu cyfrowego]
R2 IncrediBuild_Agent; C:\Program Files (x86)\IncrediBuild\BuildService.exe [1352672 2018-08-01] (XOREAX LTD -> IncrediBuild Software Ltd.) [Brak podpisu cyfrowego]
R2 IncrediBuild_Coordinator; C:\Program Files (x86)\IncrediBuild\CoordService.exe [3468256 2018-08-01] (XOREAX LTD -> IncrediBuild Software Ltd.) [Brak podpisu cyfrowego]
R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [21304 2017-09-28] (Microsoft Corporation -> Microsoft Corporation)
R2 Jenkins; C:\Program Files (x86)\Jenkins\jenkins.exe [360448 2018-08-15] (CloudBees, Inc.) [Brak podpisu cyfrowego]
R2 JetBrainsEtwHost; C:\Program Files (x86)\JetBrains\ETW Host\JetBrains.Etw.Collector.Host.exe [1480656 2020-12-01] (JetBrains s.r.o. -> JetBrains s.r.o)
R2 LkCitadelServer; C:\WINDOWS\SysWOW64\lkcitdl.exe [688190 2006-06-19] (National Instruments, Inc.) [Brak podpisu cyfrowego]
R2 lkClassAds; C:\WINDOWS\SysWOW64\lkads.exe [45056 2006-07-25] (National Instruments, Inc.) [Brak podpisu cyfrowego]
R2 lkTimeSync; C:\WINDOWS\SysWOW64\lktsrv.exe [57344 2006-07-25] (National Instruments, Inc.) [Brak podpisu cyfrowego]
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [958216 2021-01-29] (McAfee, LLC -> McAfee, LLC)
S3 MsMpiLaunchSvc; C:\Program Files\Microsoft MPI\Bin\msmpilaunchsvc.exe [27760 2015-11-06] (AzureEngBuildCodeSign -> ) [Brak podpisu cyfrowego]
R2 MSSQL$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [191064 2012-02-11] (Microsoft Corporation -> Microsoft Corporation)
R2 MSSQL$SQLEXPRESS2014; C:\Program Files\Microsoft SQL Server\MSSQL12.SQLEXPRESS2014\MSSQL\Binn\sqlservr.exe [370368 2015-06-10] (Microsoft Corporation -> Microsoft Corporation)
R2 MSSQLSERVER; C:\Program Files\Microsoft SQL Server\MSSQL14.MSSQLSERVER\MSSQL\Binn\sqlservr.exe [478096 2020-11-03] (Microsoft Corporation -> Microsoft Corporation)
R2 NIDomainService; C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe [200704 2006-07-25] (National Instruments, Inc.) [Brak podpisu cyfrowego]
S3 NILM License Manager; C:\Program Files (x86)\National Instruments\Shared\License Manager\Bin\lmgrd.exe [1007616 2006-06-27] (Macrovision Corporation) [Brak podpisu cyfrowego]
R2 niSvcLoc; C:\WINDOWS\SysWOW64\nisvcloc.exe [49152 2006-02-06] (National Instruments Corp.) [Brak podpisu cyfrowego]
S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv2.exe [15872 2016-11-25] () [Brak podpisu cyfrowego]
R2 OpenVPNServiceInteractive; C:\Program Files\OpenVPN\bin\openvpnserv.exe [73856 2017-09-26] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 OpenVPNServiceLegacy; C:\Program Files\OpenVPN\bin\openvpnserv.exe [73856 2017-09-26] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2533952 2021-01-21] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3479624 2021-01-21] (Electronic Arts, Inc. -> Electronic Arts)
S3 ose; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [203296 2016-03-19] (Microsoft Corporation -> Microsoft Corporation) [Brak podpisu cyfrowego]
S3 PDF Architect 5; C:\Program Files\PDF Architect 5\ws.exe [2832560 2017-11-29] (pdfforge GmbH -> pdfforge GmbH)
R2 PDF Architect 5 Creator; C:\Program Files\PDF Architect 5\creator\common\creator-ws.exe [874680 2017-11-29] (pdfforge GmbH -> pdfforge GmbH)
R2 PDF Architect 5 Manager; C:\Program Files (x86)\PDF Architect 5 Manager\PDF Architect 5\Architect Manager.exe [985848 2017-05-16] (pdfforge GmbH -> © pdfforge GmbH.)
S3 PDFescape Desktop; C:\Program Files\PDFescape Desktop\ws.exe [2343728 2017-07-13] (PDFescape -> Red Software)
R2 PDFescape Desktop Creator; C:\Program Files\PDFescape Desktop\creator-ws.exe [757552 2017-07-13] (PDFescape -> Red Software)
R3 PDFsam Enhanced 6; C:\Program Files\PDFsam Enhanced 6\ws.exe [2464464 2019-10-23] (SOBER LEMUR SAS DI VACONDIO ANDREA -> Andrea Vacondio)
S3 PDFsam Enhanced 6 Creator; C:\Program Files\PDFsam Enhanced 6\creator\common\creator-ws.exe [577232 2019-10-23] (SOBER LEMUR SAS DI VACONDIO ANDREA -> Andrea Vacondio)
R2 PDFsam Enhanced 6 Update Service; C:\Program Files\PDFsam Enhanced 6\updater-ws.exe [1716944 2019-10-23] (SOBER LEMUR SAS DI VACONDIO ANDREA -> Andrea Vacondio)
S3 ProtonVPN Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPNService.exe [101096 2020-02-17] (ProtonVPN AG -> )
S3 ProtonVPN Update Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.UpdateService.exe [60136 2020-02-17] (ProtonVPN AG -> )
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
R2 RunSwUSB; C:\Windows\runSW.exe [48856 2015-11-05] (Realtek Semiconductor Corp -> )
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5198064 2021-01-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 SQLAgent$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [597080 2012-02-11] (Microsoft Corporation -> Microsoft Corporation)
S4 SQLAgent$SQLEXPRESS2014; C:\Program Files\Microsoft SQL Server\MSSQL12.SQLEXPRESS2014\MSSQL\Binn\SQLAGENT.EXE [613056 2015-06-10] (Microsoft Corporation -> Microsoft Corporation)
S3 SQLSERVERAGENT; C:\Program Files\Microsoft SQL Server\MSSQL14.MSSQLSERVER\MSSQL\Binn\SQLAGENT.EXE [571792 2020-11-03] (Microsoft Corporation -> Microsoft Corporation)
R2 SQLTELEMETRY; C:\Program Files\Microsoft SQL Server\MSSQL14.MSSQLSERVER\MSSQL\Binn\sqlceip.exe [245648 2020-11-03] (Microsoft Corporation -> Microsoft Corporation)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2018-12-12] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11644656 2018-08-13] (TeamViewer GmbH -> TeamViewer GmbH)
S3 VSStandardCollectorService150; C:\Program Files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe [147392 2019-04-30] (Microsoft Corporation -> Microsoft Corporation)
S3 wampapache64; C:\wamp64\bin\apache\apache2.4.17\bin\httpd.exe [29184 2015-10-11] (Apache Software Foundation) [Brak podpisu cyfrowego]
S3 wampmysqld64; C:\wamp64\bin\mysql\mysql5.7.9\bin\mysqld.exe [38587904 2015-10-12] () [Brak podpisu cyfrowego]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.233\WsAppService.exe [493792 2017-11-07] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 WsDrvInst; C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe [120096 2017-11-08] (Wondershare Technology Co.,Ltd -> Wondershare)

===================== Sterowniki (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

R0 ambakdrv; C:\WINDOWS\System32\ambakdrv.sys [36024 2016-09-26] (CHENGDU AOMEI Tech Co., Ltd. -> ) [Brak podpisu cyfrowego]
R3 AmdTools64; C:\WINDOWS\System32\drivers\AmdTools64.sys [58216 2018-03-23] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R2 ammntdrv; C:\WINDOWS\system32\ammntdrv.sys [156856 2016-09-26] (CHENGDU AOMEI Tech Co., Ltd. -> ) [Brak podpisu cyfrowego]
S3 ampa; C:\WINDOWS\system32\ampa.sys [19568 2015-11-10] (ChengDu AoMei Tech Co., Ltd -> ) [Brak podpisu cyfrowego]
R1 amsdk; C:\WINDOWS\system32\drivers\amsdk.sys [232792 2020-09-26] (Zemana D.O.O. Sarajevo -> Copyright 2018.)
R3 AmUStor; C:\WINDOWS\system32\drivers\AmUStorU.sys [136760 2019-05-07] (Alcorlink Corp. -> )
R2 amwrtdrv; C:\WINDOWS\system32\amwrtdrv.sys [23224 2016-09-26] (CHENGDU AOMEI Tech Co., Ltd. -> ) [Brak podpisu cyfrowego]
S3 athur; C:\WINDOWS\System32\drivers\athuw8x.sys [2919936 2013-06-02] (Microsoft Windows Hardware Compatibility Publisher -> Qualcomm Atheros Communications, Inc.)
S3 BstkDrv; C:\Program Files (x86)\BlueStacks\BstkDrv.sys [269408 2018-06-21] (Bluestack Systems, Inc. -> Bluestack System Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego]
R1 cnnctfy3; C:\WINDOWS\system32\DRIVERS\cnnctfy3.sys [35352 2018-03-17] (Connectify -> Connectify)
R3 CorsairGamingAudioService; C:\WINDOWS\system32\DRIVERS\CorsairGamingAudio64.sys [60312 2020-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAccess3B84E98236B28D4E075D5737DF9F567A1FB76E8A; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CorsairLLAccess64.sys [21752 2020-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R3 CorsairVBusDriver; C:\WINDOWS\System32\drivers\CorsairVBusDriver.sys [45984 2020-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 CorsairVHidDriver; C:\WINDOWS\System32\drivers\CorsairVHidDriver.sys [21920 2020-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 cpuz149; C:\WINDOWS\temp\cpuz149\cpuz149_x64.sys [44320 2021-01-31] (CPUID S.A.R.L.U. -> CPUID)
R1 EneIo; C:\WINDOWS\system32\drivers\ene.sys [17624 2019-05-22] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 epmntdrv; C:\WINDOWS\system32\epmntdrv.sys [24056 2016-01-14] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Brak podpisu cyfrowego]
S3 EuGdiDrv; C:\WINDOWS\system32\EuGdiDrv.sys [10848 2016-07-11] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Brak podpisu cyfrowego]
R3 gdrv2; C:\WINDOWS\gdrv2.sys [32600 2019-12-16] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R0 hotcore3; C:\WINDOWS\System32\DRIVERS\hotcore3.sys [33968 2015-08-21] (Paragon Software GmbH -> Paragon Software Group)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2019-12-27] (Martin Malik - REALiX -> REALiX(tm))
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220160 2021-01-28] (Malwarebytes Inc -> Malwarebytes)
S3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [197792 2021-01-28] (Malwarebytes Inc -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-12-21] (Malwarebytes Inc -> Malwarebytes)
R2 NPF; C:\WINDOWS\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
S3 pccsmcfd; C:\WINDOWS\system32\DRIVERS\pccsmcfdx64.sys [26112 2012-06-11] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
R1 pgfilter; C:\WINDOWS\System32\drivers\pgfilter.sys [96280 2020-09-26] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S3 ProtonVPNSplitTunnel; C:\Program Files (x86)\Proton Technologies\ProtonVPN\x64\Win10\ProtonVPN.SplitTunnelDriver.sys [31584 2020-01-15] (Microsoft Windows Hardware Compatibility Publisher -> Proton Technologies AG)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2013-09-30] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\windows\system32\pwdspio.sys [12504 2013-09-30] (MiniTool Solution Ltd -> )
S4 RsFx0200; C:\WINDOWS\System32\DRIVERS\RsFx0200.sys [334936 2012-02-11] (Microsoft Corporation -> Microsoft Corporation)
S4 RsFx0300; C:\WINDOWS\System32\DRIVERS\RsFx0300.sys [247488 2014-02-21] (Microsoft Corporation -> Microsoft Corporation)
S4 RsFx0501; C:\WINDOWS\System32\DRIVERS\RsFx0501.sys [261784 2020-11-03] (Microsoft Corporation -> Microsoft Corporation)
R3 RTL8023x64; C:\WINDOWS\System32\drivers\Rtnic64.sys [51712 2019-12-07] (Microsoft Windows -> Realtek Semiconductor Corporation)
R3 SensorsSimulatorDriver; C:\WINDOWS\System32\drivers\WUDFRd.sys [315392 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 tap0901cn; C:\WINDOWS\System32\drivers\tap0901cn.sys [39616 2014-12-29] (Connectify -> Connectify)
R3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [44976 2020-01-15] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R1 UimBus; C:\WINDOWS\System32\drivers\UimBus.sys [102576 2015-08-21] (Paragon Software GmbH -> )
R1 Uim_DEVIM; C:\WINDOWS\System32\drivers\uim_devim.sys [25904 2015-08-21] (Paragon Software GmbH -> )
R1 Uim_IM; C:\WINDOWS\System32\drivers\uim_im.sys [701232 2015-08-21] (Paragon Software GmbH -> )
R3 USBPcap; C:\WINDOWS\system32\DRIVERS\USBPcap.sys [50224 2017-08-21] (Tomasz Moń -> USBPcap)
S3 VBoxNetAdp; C:\WINDOWS\System32\drivers\VBoxNetAdp6.sys [200832 2018-01-15] (Oracle Corporation -> Oracle Corporation)
S3 VBoxUSB; C:\WINDOWS\System32\Drivers\VBoxUSB.sys [135824 2016-09-12] (Oracle Corporation -> Oracle Corporation)
R3 vmulti; C:\WINDOWS\System32\drivers\vmulti.sys [10752 2018-03-16] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2020-12-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [429296 2020-12-04] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [70896 2020-12-04] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)


==================== Jeden miesiąc (utworzone) (filtrowane) =========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2021-01-31 14:46 - 2021-01-31 14:46 - 000000000 ___HD C:\$SysReset
2021-01-29 13:42 - 2021-01-29 13:42 - 000000008 __RSH C:\ProgramData\ntuser.pol
2021-01-29 12:55 - 2021-01-29 12:55 - 000003208 _____ C:\WINDOWS\system32\Tasks\Driver Booster Scheduler
2021-01-29 12:55 - 2021-01-29 12:55 - 000002978 _____ C:\WINDOWS\system32\Tasks\Driver Booster SkipUAC (Przemysław)
2021-01-28 11:43 - 2021-01-28 11:43 - 000197792 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2021-01-28 11:13 - 2021-01-28 11:13 - 000220160 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-01-27 23:35 - 2021-01-27 23:35 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-01-27 23:35 - 2021-01-27 23:35 - 000000993 _____ C:\Users\Public\Desktop\Firefox.lnk
2021-01-27 23:35 - 2021-01-27 23:35 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-01-27 23:35 - 2021-01-27 23:35 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-01-27 23:35 - 2021-01-27 23:35 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-01-27 19:45 - 2021-01-27 19:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Huion Tablet
2021-01-27 19:30 - 2021-01-27 19:35 - 012346127 _____ C:\Users\pklim\Downloads\HuionTablet_WinDriver_v14.8.166.1482_HID(1).zip
2021-01-27 16:43 - 2021-01-27 19:49 - 000000728 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Huion Tablet Uninstall .lnk
2021-01-27 16:43 - 2021-01-27 19:45 - 000000691 _____ C:\Users\Public\Desktop\Huion Tablet.lnk
2021-01-27 16:43 - 2018-03-16 10:55 - 000010752 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\vmulti.sys
2021-01-27 16:43 - 2018-03-16 10:55 - 000007680 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\hidkmdf.sys
2021-01-27 16:42 - 2021-01-27 19:45 - 000000000 ____D C:\Huion Tablet
2021-01-27 14:20 - 2021-01-27 14:58 - 000000722 _____ C:\WINDOWS\Tasks\WpsExternal_Przemysław_20210127142003.job
2021-01-27 14:20 - 2021-01-27 14:20 - 000003786 _____ C:\WINDOWS\system32\Tasks\WpsExternal_Przemysław_20210127142003
2021-01-27 14:12 - 2021-01-27 14:12 - 000000000 ____D C:\Program Files\McAfee
2021-01-27 14:11 - 2021-01-27 14:11 - 000000000 ____D C:\ProgramData\McAfee
2021-01-22 20:37 - 2021-01-22 20:37 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-01-16 19:19 - 2020-12-21 00:16 - 000000120 ____R C:\Users\pklim\OneDrive\Dokumenty\Osobisty 2.url
2021-01-16 19:19 - 2020-12-20 21:31 - 000000120 ____R C:\Users\pklim\OneDrive\Dokumenty\Notes użytkownika Przemysław.url
2021-01-15 12:41 - 2021-01-15 12:41 - 000729600 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2021-01-15 12:41 - 2021-01-15 12:41 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2021-01-15 12:41 - 2021-01-15 12:41 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2021-01-15 12:41 - 2021-01-15 12:41 - 000575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2021-01-15 12:41 - 2021-01-15 12:41 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2021-01-15 12:41 - 2021-01-15 12:41 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2021-01-15 12:41 - 2021-01-15 12:41 - 000467968 _____ C:\WINDOWS\system32\AssignedAccessCsp.dll
2021-01-15 12:41 - 2021-01-15 12:41 - 000374072 _____ C:\WINDOWS\system32\vp9fs.dll
2021-01-15 12:41 - 2021-01-15 12:41 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2021-01-15 12:41 - 2021-01-15 12:41 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2021-01-15 12:41 - 2021-01-15 12:41 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl
2021-01-15 12:41 - 2021-01-15 12:41 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\VBICodec.ax
2021-01-15 12:41 - 2021-01-15 12:41 - 000157184 _____ C:\WINDOWS\system32\uwfcsp.dll
2021-01-15 12:41 - 2021-01-15 12:41 - 000138056 _____ C:\WINDOWS\system32\HvsiManagementApi.dll
2021-01-15 12:41 - 2021-01-15 12:41 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VBICodec.ax
2021-01-15 12:41 - 2021-01-15 12:41 - 000101704 _____ C:\WINDOWS\SysWOW64\HvsiManagementApi.dll
2021-01-15 12:41 - 2021-01-15 12:41 - 000095744 _____ C:\WINDOWS\system32\VirtualMonitorManager.dll
2021-01-15 12:41 - 2021-01-15 12:41 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2021-01-15 12:41 - 2021-01-15 12:41 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2021-01-15 12:41 - 2021-01-15 12:41 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2021-01-15 12:41 - 2021-01-15 12:41 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2021-01-15 12:41 - 2021-01-15 12:41 - 000067072 _____ C:\WINDOWS\system32\BWContextHandler.dll
2021-01-15 12:41 - 2021-01-15 12:41 - 000053760 _____ C:\WINDOWS\SysWOW64\BWContextHandler.dll
2021-01-15 12:41 - 2021-01-15 12:41 - 000010894 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-01-15 12:40 - 2021-01-15 12:40 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-01-15 12:40 - 2021-01-15 12:40 - 002254336 _____ C:\WINDOWS\system32\dwmscene.dll
2021-01-15 12:40 - 2021-01-15 12:40 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-01-15 12:40 - 2021-01-15 12:40 - 001162240 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-01-15 12:40 - 2021-01-15 12:40 - 000643072 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2021-01-15 12:40 - 2021-01-15 12:40 - 000544768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl
2021-01-15 12:40 - 2021-01-15 12:40 - 000455680 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2021-01-15 12:40 - 2021-01-15 12:40 - 000446976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl
2021-01-15 12:40 - 2021-01-15 12:40 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-01-15 12:40 - 2021-01-15 12:40 - 000330752 _____ C:\WINDOWS\SysWOW64\ssdm.dll
2021-01-15 12:40 - 2021-01-15 12:40 - 000306688 _____ C:\WINDOWS\system32\HeatCore.dll
2021-01-15 12:40 - 2021-01-15 12:40 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
2021-01-15 12:40 - 2021-01-15 12:40 - 000235520 _____ C:\WINDOWS\SysWOW64\HeatCore.dll
2021-01-15 12:40 - 2021-01-15 12:40 - 000190976 _____ C:\WINDOWS\system32\BthpanContextHandler.dll
2021-01-15 12:40 - 2021-01-15 12:40 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\timedate.cpl
2021-01-15 12:40 - 2021-01-15 12:40 - 000152064 _____ C:\WINDOWS\system32\EoAExperiences.exe
2021-01-15 12:39 - 2021-01-15 12:39 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-01-15 12:39 - 2021-01-15 12:39 - 000455168 _____ C:\WINDOWS\system32\ssdm.dll
2021-01-15 12:39 - 2021-01-15 12:39 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2021-01-15 12:39 - 2021-01-15 12:39 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-01-15 12:39 - 2021-01-15 12:39 - 000074240 _____ C:\WINDOWS\system32\rdsxvmaudio.dll
2021-01-13 16:53 - 2021-01-13 16:54 - 000000019 _____ C:\Users\pklim\Desktop\Vectra.txt
2021-01-13 14:32 - 2021-01-13 14:32 - 000000000 ____D C:\Users\pklim\AppData\Local\IdentityNexusIntegration
2021-01-11 18:46 - 2021-01-12 12:51 - 000002969 _____ C:\Users\pklim\Desktop\schizofrenia.txt
2021-01-10 18:40 - 2021-01-10 18:40 - 000000008 _____ C:\Users\pklim\Desktop\Dogville.txt
2021-01-08 18:54 - 2021-01-08 18:54 - 000003584 _____ C:\Users\pklim\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2021-01-08 18:11 - 2021-01-08 18:11 - 000000000 ____D C:\WINDOWS\Minidump
2021-01-07 16:15 - 2021-01-17 11:23 - 000000000 ____D C:\Users\Default\.dotnet
2021-01-07 16:15 - 2021-01-17 11:23 - 000000000 ____D C:\Users\Default User\.dotnet
2021-01-05 16:59 - 2021-01-29 18:31 - 000000000 ____D C:\Users\pklim\AppData\Roaming\Signal
2021-01-05 16:58 - 2021-01-05 17:01 - 000002436 _____ C:\Users\pklim\Desktop\Signal.lnk
2021-01-05 16:58 - 2021-01-05 16:58 - 000002444 _____ C:\Users\pklim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Signal.lnk
2021-01-04 23:03 - 2021-01-31 18:05 - 000000000 ____D C:\WINDOWS\Prey

==================== Jeden miesiąc (zmodyfikowane) ==================

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2021-01-31 18:47 - 2020-09-26 07:29 - 000196329 _____ C:\WINDOWS\ZAM.krnl.trace
2021-01-31 18:46 - 2020-02-11 01:02 - 000000000 ____D C:\FRST
2021-01-31 18:46 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-01-31 18:42 - 2016-11-17 19:41 - 000000000 ____D C:\Users\pklim\AppData\LocalLow\Mozilla
2021-01-31 18:09 - 2015-12-09 19:30 - 000000000 ____D C:\Users\pklim\AppData\Local\CrashDumps
2021-01-31 17:20 - 2016-12-19 12:10 - 000000000 ____D C:\Users\pklim\AppData\Local\TortoiseGit
2021-01-31 16:24 - 2015-12-03 13:10 - 000000000 ___RD C:\Users\pklim\OneDrive
2021-01-31 16:20 - 2019-02-06 08:11 - 000000000 ____D C:\ProgramData\Mozilla
2021-01-31 16:11 - 2020-08-16 20:45 - 002345660 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-01-31 16:11 - 2019-12-07 16:09 - 000975746 _____ C:\WINDOWS\system32\perfh015.dat
2021-01-31 16:11 - 2019-12-07 16:09 - 000230716 _____ C:\WINDOWS\system32\perfc015.dat
2021-01-31 16:11 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-01-31 16:09 - 2020-03-30 15:23 - 000000000 ____D C:\Users\pklim\AppData\Roaming\FAHClient
2021-01-31 16:09 - 2016-08-05 09:43 - 000000000 ____D C:\ProgramData\NVIDIA
2021-01-31 16:08 - 2017-10-03 11:01 - 000000000 ____D C:\Users\pklim\AppData\Local\PasswordSafe
2021-01-31 16:08 - 2016-10-10 13:35 - 000000000 ____D C:\Program Files\CCleaner
2021-01-31 16:07 - 2016-01-16 12:23 - 000000000 ____D C:\Users\pklim\AppData\Local\TSVNCache
2021-01-31 16:06 - 2018-01-05 20:27 - 000000000 ____D C:\Users\pklim\AppData\Roaming\WTablet
2021-01-31 16:06 - 2017-05-01 12:53 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2021-01-31 16:05 - 2018-09-16 13:27 - 000000000 ____D C:\Program Files (x86)\Jenkins
2021-01-31 16:05 - 2016-01-15 16:30 - 000000512 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2021-01-31 16:04 - 2020-08-16 20:57 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-01-31 16:04 - 2020-08-16 19:27 - 000000000 ____D C:\Users\SQLTELEMETRY
2021-01-31 16:04 - 2020-08-16 19:27 - 000000000 ____D C:\Users\MSSQLSERVER
2021-01-31 16:04 - 2020-08-16 19:27 - 000000000 ____D C:\Users\MSSQL$SQLEXPRESS2014
2021-01-31 16:04 - 2020-08-16 19:27 - 000000000 ____D C:\Users\MSSQL$SQLEXPRESS
2021-01-31 16:04 - 2018-11-20 07:11 - 000000000 ____D C:\ProgramData\DockerDesktop
2021-01-31 16:04 - 2016-12-03 18:05 - 000000000 ____D C:\Program Files (x86)\AOMEI Backupper
2021-01-31 16:04 - 2016-02-11 14:27 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-01-31 15:58 - 2020-08-16 20:38 - 000001134 _____ C:\WINDOWS\system32\config\VSMIDK
2021-01-31 13:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-01-31 12:17 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-01-31 11:50 - 2020-08-16 19:27 - 000000000 ____D C:\Users\pklim
2021-01-31 11:16 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-01-31 11:16 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-01-31 10:42 - 2020-02-15 20:16 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-01-31 10:42 - 2020-02-15 20:16 - 000002286 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-01-31 10:34 - 2020-08-16 20:38 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-01-29 13:41 - 2020-12-25 15:46 - 000000432 _____ C:\WINDOWS\Tasks\WpsUpdateTask_Przemysław.job
2021-01-29 13:07 - 2020-11-20 11:10 - 000003470 _____ C:\WINDOWS\system32\Tasks\WpsUpdateTask_Przemysław
2021-01-28 20:33 - 2015-12-04 09:43 - 000000000 ____D C:\Users\pklim\AppData\LocalLow\Temp
2021-01-28 20:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2021-01-28 20:31 - 2015-12-03 12:36 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2021-01-28 19:02 - 2020-02-20 19:54 - 000002424 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2021-01-28 19:02 - 2020-02-20 19:54 - 000002383 _____ C:\Users\Public\Desktop\Brave.lnk
2021-01-28 14:07 - 2020-08-16 20:57 - 000003388 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1978625630-1779754910-779616976-1001
2021-01-28 14:07 - 2020-08-16 19:27 - 000002452 _____ C:\Users\pklim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-01-28 13:06 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-01-28 13:05 - 2019-12-13 15:21 - 000000000 ____D C:\Users\pklim\AppData\LocalLow\IGDump
2021-01-28 11:30 - 2015-12-18 22:51 - 000002307 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-01-28 11:00 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-01-28 00:00 - 2016-08-02 18:10 - 000007668 _____ C:\Users\pklim\AppData\Local\Resmon.ResmonCfg
2021-01-27 23:36 - 2019-02-18 19:21 - 000000000 ____D C:\Users\pklim\Desktop\Stare dane programu Firefox
2021-01-27 19:20 - 2020-02-27 18:23 - 000000000 ____D C:\Users\pklim\AppData\Local\babl-0.1
2021-01-27 16:43 - 2016-05-31 17:52 - 000000000 ____D C:\Program Files\DIFX
2021-01-27 10:48 - 2016-02-07 13:15 - 000000000 ____D C:\Program Files (x86)\Origin
2021-01-24 15:35 - 2016-12-10 22:01 - 000799104 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2021-01-24 15:34 - 2020-08-16 20:38 - 000008192 ___SH C:\DumpStack.log.tmp
2021-01-24 14:42 - 2016-04-04 19:22 - 000000000 ____D C:\Program Files\Microsoft Office
2021-01-19 16:14 - 2015-12-06 15:00 - 000000000 ____D C:\Users\pklim\OneDrive\Dokumenty\Biblioteka calibre - Kupione
2021-01-17 11:24 - 2020-12-04 16:13 - 000000000 ____D C:\Program Files (x86)\dotnet
2021-01-17 11:23 - 2015-12-03 15:21 - 000000000 ____D C:\ProgramData\Package Cache
2021-01-17 11:22 - 2016-06-12 09:20 - 000000000 ____D C:\Program Files\dotnet
2021-01-17 11:18 - 2015-12-03 15:29 - 000000000 ____D C:\WINDOWS\SysWOW64\1033
2021-01-17 11:18 - 2015-12-03 15:25 - 000000000 ____D C:\WINDOWS\system32\1033
2021-01-17 11:16 - 2015-12-03 15:29 - 000000000 ____D C:\Program Files\Microsoft SQL Server
2021-01-17 11:16 - 2015-12-03 15:29 - 000000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2021-01-16 12:50 - 2017-10-20 18:59 - 000000000 ____D C:\Users\pklim\AppData\Local\Packages
2021-01-15 19:19 - 2020-08-16 20:57 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-01-15 19:19 - 2020-08-16 20:57 - 000003386 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-01-15 13:34 - 2020-08-16 20:38 - 000550352 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-01-15 13:32 - 2020-08-16 19:03 - 000000000 ____D C:\Program Files\Hyper-V
2021-01-15 13:32 - 2019-12-07 16:12 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-01-15 13:32 - 2019-12-07 16:12 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-01-15 13:32 - 2019-12-07 16:12 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-01-15 13:32 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2021-01-15 13:32 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2021-01-15 13:32 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-01-15 13:32 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2021-01-15 13:32 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-01-15 13:32 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-01-15 13:32 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-01-15 13:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-01-15 13:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2021-01-15 13:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-01-15 13:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2021-01-15 13:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-01-15 13:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2021-01-15 13:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2021-01-15 13:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-01-15 13:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-01-15 13:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-01-15 13:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2021-01-15 13:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-01-15 13:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2021-01-15 13:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-01-15 13:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2021-01-15 13:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-01-15 13:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Com
2021-01-15 13:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2021-01-15 13:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-01-15 13:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-01-15 13:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-01-15 13:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-01-15 13:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\IME
2021-01-15 13:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-01-15 13:32 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2021-01-15 12:39 - 2020-08-16 20:40 - 002877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2021-01-15 12:32 - 2020-08-16 16:05 - 000000000 ___HD C:\$WinREAgent
2021-01-15 08:36 - 2020-08-16 20:57 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-01-13 17:10 - 2016-11-27 09:28 - 000000000 ____D C:\Users\pklim\AppData\Local\.IdentityService
2021-01-13 16:09 - 2015-12-04 12:21 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-01-13 15:59 - 2015-12-04 12:21 - 135062968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-01-13 14:39 - 2015-12-09 14:16 - 000000000 ____D C:\Users\pklim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JetBrains
2021-01-11 21:19 - 2020-09-15 19:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2021-01-10 16:23 - 2020-12-30 22:19 - 000000026 _____ C:\Users\pklim\Desktop\babyt.txt
2021-01-08 18:11 - 2020-12-11 19:31 - 001172539 ____N C:\WINDOWS\Minidump\010821-16515-01.dmp
2021-01-06 13:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-01-06 13:51 - 2016-01-15 15:40 - 000000000 ____D C:\Users\pklim\AppData\Local\ElevatedDiagnostics
2021-01-05 21:03 - 2020-09-13 12:46 - 000000097 _____ C:\WINDOWS\system32\reset_network.bat

==================== Pliki w katalogu głównym wybranych folderów ========

2018-05-16 07:55 - 2018-05-16 07:55 - 007649280 _____ () C:\Program Files (x86)\GUTCF8E.tmp
2018-02-21 00:07 - 2018-02-21 01:27 - 000000600 _____ () C:\Users\pklim\AppData\Roaming\winscp.rnd
2021-01-08 18:54 - 2021-01-08 18:54 - 000003584 _____ () C:\Users\pklim\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-02-21 01:27 - 2018-08-28 16:13 - 000000600 _____ () C:\Users\pklim\AppData\Local\PUTTY.RND
2020-11-20 12:36 - 2020-11-20 12:36 - 000003569 _____ () C:\Users\pklim\AppData\Local\recently-used.xbel
2016-08-02 18:10 - 2021-01-28 00:00 - 000007668 _____ () C:\Users\pklim\AppData\Local\Resmon.ResmonCfg
2017-03-20 18:35 - 2017-03-20 18:35 - 000000552 _____ () C:\Users\pklim\AppData\Local\TroubleshooterConfig.json

==================== SigCheck ============================

(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)

==================== Koniec  FRST.txt ========================