Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 10-04-2021 Uruchomiony przez Konrad Paluszek (administrator) DESKTOP-C3N1C6N (10-04-2021 19:26:53) Uruchomiony z F:\Instalki\Farbar Recovery Scan Tool Załadowane profile: Konrad Paluszek Platform: Windows 10 Pro Wersja 20H2 19042.906 (X64) Język: Polski (Polska) Domyślna przeglądarka: Chrome Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) () [Brak podpisu cyfrowego] C:\Program Files (x86)\ViewPowerMini1.00SP2\upsTray.exe (Acresso) [Brak podpisu cyfrowego] C:\Program Files (x86)\ViewPowerMini1.00SP2\ViewPowerMini.exe (Eion Robb -> The Pidgin developer community) C:\Program Files (x86)\Pidgin\pidgin.exe (Esumsoft -> Esumsoft) C:\Program Files (x86)\POP Peeper\POPPeeper.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <14> (Greatis Software LLC -> Greatis Software, LLC) C:\Windows\F1VPIJD6\SU10Guard.exe (HP) [Brak podpisu cyfrowego] C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe (hxxp://www.emule-project.net) [Brak podpisu cyfrowego] C:\Program Files (x86)\eMule\emule.exe (ICEpower a/s -> ICEpower) C:\Windows\System32\ICEsoundService64.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_c52b34f1b30918c5\RstMwService.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Users\Administrator\Downloads\MediaCreationTool20H2.exe (Microsoft Corporation) [Brak podpisu cyfrowego] [Plik w użyciu] C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.521.3093.0_x64__8wekyb3d8bbwe\GameBar.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.521.3093.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe (Microsoft Windows -> Microsoft Corporation) C:\$Windows.~WS\Sources\SetupHost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\NisSrv.exe (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2> (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_3784df9edffd3314\Display.NvContainer\NVDisplay.Container.exe <2> (O&O Software GmbH -> O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodag.exe (O&O Software GmbH -> O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodtray.exe (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe <6> (Sun Microsystems, Inc. -> Sun Microsystems, Inc.) C:\Program Files (x86)\ViewPowerMini1.00SP2\jre\bin\javaw.exe (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.231\WsAppService.exe (www.dvbdream.org) [Brak podpisu cyfrowego] C:\dvbdream\dvbdream.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [OODefragTray] => C:\Program Files\OO Software\Defrag\oodtray.exe [5128552 2020-10-23] (O&O Software GmbH -> O&O Software GmbH) HKLM-x32\...\Run: [] => [X] HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA HKU\S-1-5-21-1885980802-37223428-1519408807-500\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [109945728 2021-02-12] (Skype Software Sarl -> Skype Technologies S.A.) HKU\S-1-5-21-1885980802-37223428-1519408807-500\...\Run: [POP Peeper] => C:\Program Files (x86)\POP Peeper\POPPeeper.exe [3427200 2020-10-12] (Esumsoft -> Esumsoft) HKU\S-1-5-21-1885980802-37223428-1519408807-500\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [33169992 2021-03-18] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-1885980802-37223428-1519408807-500\...\Run: [eMuleAutoStart] => C:\Program Files (x86)\eMule\emule.exe [5758976 2010-04-07] (hxxp://www.emule-project.net) [Brak podpisu cyfrowego] HKU\S-1-5-21-1885980802-37223428-1519408807-500\...\Policies\Explorer: [NoRecentDocsNetHood] 1 HKU\S-1-5-21-1885980802-37223428-1519408807-500\...\Policies\Explorer: [NoRecentDocsHistory] 1 HKU\S-1-5-21-1885980802-37223428-1519408807-500\...\Policies\Explorer: [NoRecentDocsMenu] 1 HKU\S-1-5-21-1885980802-37223428-1519408807-500\...\Policies\Explorer: [NoSecurityTab] 1 HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [55432 2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc) HKLM\...\Print\Monitors\HP Standard TCP/IP Port: C:\Windows\system32\HpTcpMon.dll [331264 2009-09-16] (Hewlett Packard) [Brak podpisu cyfrowego] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\89.0.4389.114\Installer\chrmstp.exe [2021-03-31] (Google LLC -> Google LLC) IFEO\dismHost.exe: [Debugger] * IFEO\EOSNOTIFY.EXE: [Debugger] * IFEO\InstallAgent.exe: [Debugger] * IFEO\MusNotification.exe: [Debugger] * IFEO\MUSNOTIFICATIONUX.EXE: [Debugger] * IFEO\remsh.exe: [Debugger] * IFEO\SIHClient.exe: [Debugger] * IFEO\UpdateAssistant.exe: [Debugger] * IFEO\UPFC.EXE: [Debugger] * IFEO\UsoClient.exe: [Debugger] * IFEO\WaaSMedic.exe: [Debugger] * IFEO\WaasMedicAgent.exe: [Debugger] * IFEO\Windows10Upgrade.exe: [Debugger] * IFEO\WINDOWS10UPGRADERAPP.EXE: [Debugger] * Startup: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\pidgin.lnk [2021-02-24] ShortcutTarget: pidgin.lnk -> C:\Program Files (x86)\Pidgin\pidgin.exe (Eion Robb -> The Pidgin developer community) Startup: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sidebar832.lnk [2021-04-10] ShortcutTarget: Sidebar832.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation) [Brak podpisu cyfrowego] [Plik w użyciu] Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled [2020-10-21] () Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\O&O Defrag Tray.lnk [2020-11-30] ShortcutTarget: O&O Defrag Tray.lnk -> C:\Windows\Installer\{2CB92DA5-CD07-42D0-A588-A77CC2906821}\app_icon.exe () [Brak podpisu cyfrowego] Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ViewPowerMini.lnk [2019-05-21] ShortcutTarget: ViewPowerMini.lnk -> C:\Program Files (x86)\ViewPowerMini1.00SP2\ViewPowerMini.exe (Acresso) [Brak podpisu cyfrowego] GroupPolicy: Ograniczenia ? <==== UWAGA GroupPolicy\User: Ograniczenia ? <==== UWAGA Policies: C:\ProgramData\NTUSER.pol: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {08AFA2B1-999F-47E2-81BB-2033EFCD951C} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-03-26] (NVIDIA Corporation -> NVIDIA Corporation) Task: {0A0606E5-07B2-4B22-904E-4626C260EF8D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [27616328 2021-03-18] (Piriform Software Ltd -> Piriform Software Ltd) Task: {16C4A0A7-4894-462D-BC3E-8346E339D7A1} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5255104 2021-03-31] (Microsoft Corporation -> Microsoft Corporation) Task: {1F401F6C-E921-4A11-9C25-6BB591C63609} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\MpCmdRun.exe [566368 2021-03-16] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {38EF673D-3DDF-457F-BC76-65A2211F4E1C} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-03-26] (NVIDIA Corporation -> NVIDIA Corporation) Task: {3D28B182-45AA-4523-BDA0-B72AFBC906AE} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\8.4.0\Scheduler.exe [156696 2021-03-29] (IObit CO., LTD -> IObit) Task: {40E8982C-D6BE-43B6-A9BB-107CF7F3C2D6} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5255104 2021-03-31] (Microsoft Corporation -> Microsoft Corporation) Task: {46536B58-547C-48D4-A965-B5A6A2CD5960} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2021-03-26] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {4FBB5468-9D30-43A9-BE4F-1011DE1DA830} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-03-18] (Piriform Software Ltd -> Piriform) Task: {5C15B4F9-E4B9-4E60-9AA4-13BF28102D19} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23248760 2021-04-01] (Microsoft Corporation -> Microsoft Corporation) Task: {67C99161-E4AD-4B4D-B28C-377099E10A77} - System32\Tasks\SU_AutoUpdate => C:\Program Files (x86)\IObit\Software Updater\SoftwareUpdater.exe [4513224 2021-01-19] (IObit Information Technology -> IObit) Task: {75DF2684-FF6D-42EA-97A2-D5B6573A035B} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Nero\Nero Apps\NeroInfo\NeroInfo.exe [3873560 2021-01-09] (Nero AG -> Nero AG) "C:\Windows\System32\Tasks\Microsoft\Windows\Google\GoogleUpdateTaskMachineRO" został odblokowany. <==== UWAGA Task: {763C037E-B8F3-465E-BE56-4CEF15870843} - System32\Tasks\Microsoft\Windows\Google\GoogleUpdateTaskMachineRO => C:\WINDOWS\SysWOW64\XPSViewer\TasksG\G-1-96-44\TG_1.3.15.29.exe [67896 2019-12-07] () [Brak podpisu cyfrowego] <==== UWAGA Task: {7721FCA4-B2E2-402B-AA66-039FE7C97C3B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\MpCmdRun.exe [566368 2021-03-16] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {7D368C2C-D314-4DC7-B816-7724679E544B} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302128 2021-03-26] (NVIDIA Corporation -> NVIDIA Corporation) Task: {7FAEEBCC-E25D-4720-96EA-3F7E3BF84099} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\8.4.0\AutoUpdate.exe [2285592 2021-03-31] (IObit CO., LTD -> IObit) Task: {8CE20C22-8EBA-4C09-80C1-48EF4E5F9A95} - System32\Tasks\CCleanerClean => C:\Program Files\CCleaner\CCleaner.exe [27616328 2021-03-18] (Piriform Software Ltd -> Piriform Software Ltd) Task: {97AC5164-8587-4AF3-9CB3-FC0E093CF576} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-10-30] (Google Inc -> Google LLC) Task: {9DFA200F-6429-4193-A137-24C541578355} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-03-26] (NVIDIA Corporation -> NVIDIA Corporation) Task: {9FB8A6CE-7CAC-4F72-A901-167D97F24B09} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [569416 2016-02-23] (Apple Inc. -> Apple Inc.) Task: {A897FA42-E067-4DEA-A21E-0049B3398236} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-03-26] (NVIDIA Corporation -> NVIDIA Corporation) Task: {B1F7CD80-1641-437E-AB3A-7E8E15F8B5E9} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141168 2021-04-03] (Microsoft Corporation -> Microsoft Corporation) Task: {B519AD59-1800-44A8-8C34-C803BCEA8C0D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\MpCmdRun.exe [566368 2021-03-16] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {BBC7BF1B-A3C3-44FA-B144-43B91D45AF66} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-10-30] (Google Inc -> Google LLC) Task: {BCCC1D77-8655-4560-AE01-C0BA40BE4A11} - System32\Tasks\Software Updater SkipUAC(Konrad Paluszek) => C:\Program Files (x86)\IObit\Software Updater\SoftwareUpdater.exe [4513224 2021-01-19] (IObit Information Technology -> IObit) <==== UWAGA Task: {CC7A329E-0B5F-4AAE-A889-56D8BB700120} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2021-03-26] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log Task: {CF42D2BF-D6AA-4BF9-8B6A-9C2266D33C0C} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906480 2021-03-26] (NVIDIA Corporation -> NVIDIA Corporation) Task: {D15C259B-FB06-44E7-BEDB-B707A0F5DDF3} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141168 2021-04-03] (Microsoft Corporation -> Microsoft Corporation) Task: {D307B2B6-3007-4C03-892B-A38FD0BC2F5A} - System32\Tasks\Driver Booster SkipUAC (Konrad Paluszek) => C:\Program Files (x86)\IObit\Driver Booster\8.4.0\DriverBooster.exe [8242200 2021-04-02] (IObit CO., LTD -> IObit) [Brak podpisu cyfrowego] Task: {D58126C7-0B57-4E8E-B505-BFFC5C723437} - System32\Tasks\Software Updater Scheduler => C:\Program Files (x86)\IObit\Software Updater\SUInit.exe [1789200 2020-06-30] (IObit Information Technology -> IObit Software updater) <==== UWAGA Task: {D875F3FD-CF6A-43D6-8609-3CFF2D9025A4} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe [918288 2020-04-22] (Intel(R) Trust Services -> Intel(R) Corporation) Task: {DF290DED-F0B4-4DE1-B521-EDC53E29BA93} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646896 2021-03-26] (NVIDIA Corporation -> NVIDIA Corporation) Task: {E2699DE5-784B-4C5F-8314-F1DD456D6566} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906480 2021-03-26] (NVIDIA Corporation -> NVIDIA Corporation) Task: {EA7EFA79-3C09-423E-A109-FFF8720DECF7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\MpCmdRun.exe [566368 2021-03-16] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {F07DF7F3-88D0-43F7-A8A7-E2CAA1E5C4EC} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23248760 2021-04-01] (Microsoft Corporation -> Microsoft Corporation) Task: {FF08C86E-A9C1-4A55-9D52-04D4080FEC0F} - System32\Tasks\Odkurzacz => C:\Program Files (x86)\Odkurzacz\odkurzacz.exe [1069056 2019-05-21] (FranmoSoftware) [Brak podpisu cyfrowego] (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\CCleanerClean.job => C:\Program Files\CCleaner\CCleaner.exe Task: C:\WINDOWS\Tasks\Intel PTT EK Recertification.job => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{aabbd025-2153-4bab-84b5-034d1d2538df}: [NameServer] 194.204.152.34,194.204.159.1 Tcpip\..\Interfaces\{aabbd025-2153-4bab-84b5-034d1d2538df}: [DhcpNameServer] 192.168.1.1 Edge: ======= DownloadDir: C:\Users\Administrator\Downloads Edge Notifications: HKU\S-1-5-21-1885980802-37223428-1519408807-500 -> hxxps://www.dobreprogramy.pl Edge Extension: (Brak nazwy) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [nie znaleziono] Edge Extension: (Brak nazwy) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [nie znaleziono] Edge Extension: (Brak nazwy) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [nie znaleziono] Edge Extension: (Brak nazwy) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [nie znaleziono] Edge DefaultProfile: Default Edge Profile: C:\Users\Administrator\AppData\Local\Microsoft\Edge\User Data\Default [2021-04-10] Edge StartupUrls: Default -> "hxxp://www.o2.pl/" FireFox: ======== FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-03-02] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.281.2 -> C:\Program Files (x86)\Java\jre1.8.0_281\bin\dtplugin\npDeployJava1.dll [2021-02-04] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.281.2 -> C:\Program Files (x86)\Java\jre1.8.0_281\bin\plugin2\npjp2.dll [2021-02-04] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-03-02] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-03-02] (Microsoft Corporation -> Microsoft Corporation) FF Plugin HKU\S-1-5-21-1885980802-37223428-1519408807-500: @lightspark.github.com/Lightspark;version=1 -> C:\Program Files (x86)\Lightspark\nplightsparkplugin.dll [Brak pliku] Chrome: ======= CHR Profile: C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default [2021-04-10] CHR Notifications: Default -> hxxps://0.getclick100.biz; hxxps://0.klickmode.biz; hxxps://0.load05.biz; hxxps://0.load20.biz; hxxps://0.load28.biz; hxxps://0.luckymedia.website; hxxps://0.ro04.biz; hxxps://0.startvideo.life; hxxps://1.klickmode.biz; hxxps://1.load05.biz; hxxps://1.load20.biz; hxxps://1.load28.biz; hxxps://1.luckymedia.website; hxxps://1.ro04.biz; hxxps://1.startvideo.life; hxxps://2.luckymedia.website; hxxps://2.startvideo.life; hxxps://3.luckymedia.website; hxxps://3.startvideo.life; hxxps://365keys.ru; hxxps://8.torrenti.co.kr; hxxps://answear.com; hxxps://audio.com.pl; hxxps://beasthackerz.ru; hxxps://br.pinterest.com; hxxps://businessinsider.com.pl; hxxps://captchatopsource.com; hxxps://cryptotabbrowser.com; hxxps://dailyuploads.net; hxxps://discography111.rssing.com; hxxps://dropapk.to; hxxps://elektronikab2b.pl; hxxps://en.hwzone.co.il; hxxps://expressit.pl; hxxps://fastcaptcharesolve.com; hxxps://fastsolvecaptcha.com; hxxps://forum.dobreprogramy.pl; hxxps://genuine-lamps.com; hxxps://getclick100.biz; hxxps://gyktd.warehopi.online; hxxps://inpost.pl; hxxps://kcrack.com; hxxps://kickasstorrents.to; hxxps://klickmode.biz; hxxps://l1progsru16091759620081.thevtk.com; hxxps://l365keysru16101066429550.thevtk.com; hxxps://load05.biz; hxxps://load20.biz; hxxps://load28.biz; hxxps://lodz.naszemiasto.pl; hxxps://luckymedia.website; hxxps://mediamarkt.pl; hxxps://mojafirma.infor.pl; hxxps://natemat.push-ad.com; hxxps://orangepl.api.useinsider.com; hxxps://ouo.io; hxxps://patronite.pl; hxxps://pl.aliexpress.com; hxxps://pl.beogradionica.com; hxxps://pl.computersm.com; hxxps://pl.smartcity-telefonica.com; hxxps://pl.soringpcrepair.com; hxxps://pogoda.interia.pl; hxxps://polarize.ru; hxxps://postimg.cc; hxxps://procrackpc.com; hxxps://push-dbhfffc-665.pushails.com; hxxps://recontent.site; hxxps://ro04.biz; hxxps://soft98.ir; hxxps://soundartifacts.com; hxxps://startvideo.life; hxxps://suzana.pl; hxxps://thepiratebay.mx; hxxps://top-electrician.ru; hxxps://torlook.info; hxxps://torrentz2.uproxy2.biz; hxxps://turbobit.net; hxxps://tvn24.pl; hxxps://uploadrar.com; hxxps://usersdrive.com; hxxps://wiadomosci.onet.pl; hxxps://www-www-edziecko-pl.pushpushgo.com; hxxps://www.7torrents.cc; hxxps://www.aliexpress.com; hxxps://www.ask4pc.net; hxxps://www.conrad.pl; hxxps://www.decathlon.pl; hxxps://www.dobreprogramy.pl; hxxps://www.elektroda.pl; hxxps://www.esky.pl; hxxps://www.facebook.com; hxxps://www.filmweb.pl; hxxps://www.financeflick.com; hxxps://www.komputerswiat.pl; hxxps://www.komputronik.pl; hxxps://www.mediaexpert.pl; hxxps://www.medonet.pl; hxxps://www.morele.net; hxxps://www.nero.com; hxxps://www.o2.pl; hxxps://www.onet.pl; hxxps://www.philips.pl; hxxps://www.poradykomputerowe.pl; hxxps://www.reddit.com; hxxps://www.rmf.fm; hxxps://www.sat-universe.com; hxxps://www.siepomaga.pl; hxxps://www.telemagazyn.pl; hxxps://www.wish.com; hxxps://www.wprost.pl; hxxps://www.youtube.com; hxxps://www.zuketcreation.net; hxxps://www59.zippyshare.com; hxxps://www87.zippyshare.com; hxxps://yourcommonfeed.com; hxxps://zapytaj.onet.pl; hxxps://zrzutka.pl CHR StartupUrls: Default -> "hxxp://www.o2.pl/" CHR DefaultSearchURL: Default -> hxxps://search.videodownloaderpremium.com/query?q={searchTerms}&v=1.0.3.2 CHR DefaultSearchKeyword: Default -> Videodownloaderpremium CHR DefaultSuggestURL: Default -> hxxps://search.videodownloaderpremium.com/suggestion?q={searchTerms} CHR Extension: (Video Downloader professional) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2020-10-30] CHR Extension: (Tampermonkey BETA) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcalenpjmijncebpfijmoaglllgpjagf [2021-04-04] CHR Extension: (Stream Recorder - download HLS as MP4) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\iogidnfllpdhagebkblkgbfijkbkjdmm [2021-01-05] CHR Extension: (Video DownloadHelper) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2021-03-04] CHR Extension: (Web ) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbaoeggbhlhgjplonohefdehaoohmfdn [2021-02-16] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR Extension: (Chrome Media Router) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-03-03] CHR Profile: C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\System Profile [2021-04-10] CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb] CHR HKLM-x32\...\Chrome\Extension: [makcojoppodhcgmmchohadhpkicoafka] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82640 2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) S3 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3147344 2019-10-09] (Adobe Inc. -> Adobe Systems, Incorporated) S3 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2914896 2019-10-09] (Adobe Inc. -> Adobe Systems, Incorporated) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8788368 2021-03-29] (Microsoft Corporation -> Microsoft Corporation) S2 Crypkey License; C:\Windows\SysWOW64\crypserv.exe [50176 1997-04-09] () [Brak podpisu cyfrowego] S3 FvSvc; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [410864 2021-03-26] (NVIDIA Corporation -> NVIDIA) R2 HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [176128 2014-06-25] (HP) [Brak podpisu cyfrowego] S4 NeroBackItUpBackgroundService2022; C:\Program Files (x86)\Nero\Nero 2021\Nero BackItUp\NBService.exe [287000 2021-01-09] (Nero AG -> Nero AG) R2 OODefragAgent; C:\Program Files\OO Software\Defrag\oodag.exe [1701224 2020-10-15] (O&O Software GmbH -> O&O Software GmbH) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5361256 2021-03-30] (Microsoft Windows Publisher -> Microsoft Corporation) R2 SU10Guard; C:\Windows\F1VPIJD6\SU10Guard.exe [72776 2020-05-30] (Greatis Software LLC -> Greatis Software, LLC) S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [Brak podpisu cyfrowego] R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\NisSrv.exe [2483616 2021-03-16] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\MsMpEng.exe [128376 2021-03-16] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.231\WsAppService.exe [493792 2017-10-24] (Wondershare Technology Co.,Ltd -> Wondershare) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_3784df9edffd3314\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_3784df9edffd3314\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 AmUStor; C:\WINDOWS\system32\drivers\AmUStor.SYS [118088 2020-07-16] (Alcorlink Corp. -> ) S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.) R3 BSTPROSRV; C:\WINDOWS\system32\drivers\bstpro.sys [420936 2018-08-19] (Microsoft Windows Hardware Compatibility Publisher -> Bestunar Inc.) R3 cmudaxp; C:\WINDOWS\system32\drivers\cmudaxp.sys [2735616 2015-06-02] (C-MEDIA ELECTRONICS INC. -> C-Media Inc) S3 DFX11_1; C:\WINDOWS\system32\drivers\dfx11_1x64.sys [28008 2015-08-31] (Power Technology -> Windows (R) Win 7 DDK provider) S3 DFX12; C:\WINDOWS\system32\drivers\dfx12x64.sys [39048 2015-11-15] (Power Technology -> Windows (R) Win 7 DDK provider) R3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R1 ElbyCDIO; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [42616 2017-05-14] (Microsoft Windows Hardware Compatibility Publisher -> Elaborate Bytes AG) R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2019-05-21] (Martin Malik - REALiX -> REALiX(tm)) R2 npf; C:\WINDOWS\system32\drivers\npf.sys [36600 2019-07-16] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.) S3 Revoflt; C:\WINDOWS\System32\DRIVERS\revoflt.sys [38400 2020-10-14] (Microsoft Windows Hardware Compatibility Publisher -> VS Revo Group) R3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 tbhsd; C:\WINDOWS\system32\drivers\tbhsd.sys [57648 2019-09-16] (Audials AG -> RapidSolution Software AG) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2021-03-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [420072 2021-03-16] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [72952 2021-03-16] (Microsoft Windows -> Microsoft Corporation) S3 WsAudio_Device; C:\WINDOWS\system32\drivers\VirtualAudio.sys [48424 2018-06-08] (Wondershare Technology Co.,Ltd -> Wondershare) S3 libusb0; system32\drivers\libusb0.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-04-10 19:26 - 2021-04-10 19:27 - 000000000 ____D C:\FRST 2021-04-10 19:21 - 2021-04-10 19:21 - 000000548 _____ C:\Users\Administrator\Downloads\Naprawa Win10.txt 2021-04-10 19:11 - 2021-04-10 19:11 - 000000000 ____D C:\ESD 2021-04-10 19:10 - 2021-04-10 19:10 - 000000000 ___HD C:\$Windows.~WS 2021-04-10 19:10 - 2021-04-10 19:10 - 000000000 ____D C:\$WINDOWS.~BT 2021-04-10 18:04 - 2016-08-28 06:47 - 000006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauserv.dll 2021-04-10 16:02 - 2021-04-10 19:10 - 000000000 ____D C:\WINDOWS\Panther 2021-04-10 15:21 - 2021-04-10 15:21 - 000000008 __RSH C:\ProgramData\ntuser.pol 2021-04-10 14:34 - 2021-04-10 17:10 - 000000000 ____D C:\WINDOWS\F1VPIJD6 2021-04-10 13:34 - 2021-04-10 14:24 - 000000000 _____ C:\WINDOWS\SysWOW64\mp4norm.dll 2021-04-10 13:28 - 2021-04-10 14:19 - 000000000 ____D C:\Program Files (x86)\Mp4Gain 2017 2021-04-10 13:28 - 2021-04-10 13:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mp4Gain 2017 2021-04-10 12:38 - 2021-04-10 12:38 - 000000000 ____D C:\WINDOWS\Downloaded Installations 2021-04-10 06:23 - 2021-04-10 06:23 - 000000276 _____ C:\WINDOWS\WindowsUpdate.log.bak 2021-04-09 19:27 - 2021-04-09 19:27 - 000000000 ____D C:\Program Files (x86)\FFmpeg for Audacity 2021-04-08 11:11 - 2021-04-08 11:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pazera Free Audio Extractor (32-bit) 2021-04-08 11:11 - 2021-04-08 11:11 - 000000000 ____D C:\Program Files (x86)\pazera-software 2021-04-07 15:58 - 2021-04-07 15:58 - 000038730 _____ C:\Users\Administrator\Downloads\Pasek_20210301.zip 2021-04-03 08:05 - 2021-04-03 08:05 - 000000000 ____D C:\tmp 2021-04-02 19:08 - 2021-04-02 19:17 - 000000000 ____D C:\tmpMerge 2021-04-02 16:14 - 2021-04-02 16:15 - 000002278 _____ C:\Users\Administrator\Desktop\Driver Booster 8.lnk 2021-03-30 18:00 - 2021-03-30 18:00 - 000000000 ____D C:\WINDOWS\system32\lxss 2021-03-30 18:00 - 2021-03-30 18:00 - 000000000 ____D C:\WINDOWS\LastGood.Tmp 2021-03-30 17:59 - 2021-03-26 09:49 - 000626992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll 2021-03-30 17:58 - 2021-03-26 09:53 - 001435880 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2021-03-30 17:58 - 2021-03-26 09:53 - 001435880 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2021-03-30 17:58 - 2021-03-26 09:52 - 001855208 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2021-03-30 17:58 - 2021-03-26 09:52 - 001855208 _____ C:\WINDOWS\system32\vulkaninfo.exe 2021-03-30 17:58 - 2021-03-26 09:52 - 001452336 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2021-03-30 17:58 - 2021-03-26 09:52 - 001191728 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2021-03-30 17:58 - 2021-03-26 09:52 - 001094888 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2021-03-30 17:58 - 2021-03-26 09:52 - 001094888 _____ C:\WINDOWS\system32\vulkan-1.dll 2021-03-30 17:58 - 2021-03-26 09:52 - 000948968 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2021-03-30 17:58 - 2021-03-26 09:52 - 000948968 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2021-03-30 17:58 - 2021-03-26 09:49 - 001514256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2021-03-30 17:58 - 2021-03-26 09:49 - 001166104 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2021-03-30 17:58 - 2021-03-26 09:49 - 000715552 _____ C:\WINDOWS\system32\nvofapi64.dll 2021-03-30 17:58 - 2021-03-26 09:49 - 000675104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll 2021-03-30 17:58 - 2021-03-26 09:49 - 000575776 _____ C:\WINDOWS\SysWOW64\nvofapi.dll 2021-03-30 17:58 - 2021-03-26 09:49 - 000563984 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll 2021-03-30 17:58 - 2021-03-26 09:48 - 002105632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2021-03-30 17:58 - 2021-03-26 09:48 - 001590048 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2021-03-30 17:58 - 2021-03-26 09:48 - 000811800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll 2021-03-30 17:58 - 2021-03-26 09:48 - 000689936 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe 2021-03-30 17:58 - 2021-03-26 09:48 - 000656144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2021-03-30 17:58 - 2021-03-26 09:48 - 000445712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe 2021-03-30 17:58 - 2021-03-26 09:47 - 008316176 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2021-03-30 17:58 - 2021-03-26 09:47 - 007433488 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2021-03-30 17:58 - 2021-03-26 09:47 - 004795184 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2021-03-30 17:58 - 2021-03-26 09:47 - 002823440 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2021-03-30 17:58 - 2021-03-26 09:46 - 000848688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe 2021-03-30 17:58 - 2021-03-26 09:45 - 006154480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll 2021-03-30 17:58 - 2021-03-26 01:34 - 000087163 _____ C:\WINDOWS\system32\nvinfo.pb 2021-03-30 06:40 - 2021-03-30 06:40 - 000011353 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-03-23 20:57 - 2021-03-25 17:42 - 000000883 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++.lnk 2021-03-23 20:57 - 2021-03-25 17:42 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Notepad++ 2021-03-23 20:57 - 2021-03-23 20:57 - 000000000 ____D C:\Program Files\Notepad++ 2021-03-23 20:56 - 2021-03-26 16:43 - 000000000 ____D C:\Program Files (x86)\MonolingualAffirmativenessjozSetup 2021-03-23 20:56 - 2021-03-23 20:56 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\MonolingualAffirmativeness 2021-03-22 11:27 - 2021-03-22 11:27 - 000226162 _____ C:\Users\Administrator\Documents\Resized_20210321_223832.jpeg 2021-03-16 16:32 - 2021-03-16 16:32 - 000000948 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\4K Video Downloader.lnk 2021-03-16 16:32 - 2021-03-16 16:32 - 000000000 ____D C:\Program Files\4KDownload 2021-03-15 15:20 - 2021-03-15 15:20 - 000000000 ____D C:\Users\Administrator\AppData\Local\UT008 2021-03-12 08:12 - 2021-03-12 08:12 - 000025544 _____ C:\Users\Administrator\Downloads\U_17_44_0945004_0370321RW.pdf 2021-03-12 07:18 - 2021-03-12 07:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO 2021-03-11 20:06 - 2021-03-11 20:06 - 000251564 _____ C:\Users\Administrator\Downloads\pit.pdf 2021-03-11 20:05 - 2021-03-11 20:05 - 000076177 _____ C:\Users\Administrator\Downloads\upo.pdf 2021-03-11 19:46 - 2021-03-11 19:46 - 000587166 _____ C:\Users\Administrator\Downloads\290623_xqMwClQvdT02MhKo02TLWaKt.pdf ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-04-10 19:27 - 2019-05-21 15:03 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\.purple 2021-04-10 19:15 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-04-10 19:12 - 2019-05-21 12:42 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\POP Peeper 2021-04-10 19:10 - 2019-05-21 11:11 - 000000000 ____D C:\Users\Administrator\AppData\Local\Sidebar7 2021-04-10 17:40 - 2019-05-21 12:34 - 000000000 ____D C:\Program Files\CCleaner 2021-04-10 17:27 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\AppLocker 2021-04-10 17:16 - 2020-10-21 08:45 - 001930196 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-04-10 17:16 - 2019-12-07 17:09 - 000826636 _____ C:\WINDOWS\system32\perfh015.dat 2021-04-10 17:16 - 2019-12-07 17:09 - 000172680 _____ C:\WINDOWS\system32\perfc015.dat 2021-04-10 17:16 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2021-04-10 17:12 - 2019-05-21 10:57 - 000000000 ____D C:\ProgramData\NVIDIA 2021-04-10 17:10 - 2020-09-27 09:34 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-04-10 17:10 - 2020-05-28 12:32 - 000008192 ___SH C:\DumpStack.log.tmp 2021-04-10 17:10 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState 2021-04-10 17:10 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2021-04-10 16:13 - 2019-05-21 11:00 - 000000000 ____D C:\Users\Administrator\AppData\Local\D3DSCache 2021-04-10 15:30 - 2019-05-21 12:53 - 000000000 ____D C:\Users\Administrator\AppData\Local\ElevatedDiagnostics 2021-04-10 15:10 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Catroot2.bak 2021-04-10 14:52 - 2019-05-21 12:04 - 000000000 ____D C:\Temp 2021-04-10 14:18 - 2019-05-21 11:35 - 000000000 ____D C:\Users\Administrator\AppData\Local\CrashDumps 2021-04-10 13:01 - 2019-05-21 15:00 - 000000000 ____D C:\ProgramData\Apple Computer 2021-04-10 13:01 - 2019-05-21 11:09 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2021-04-10 12:13 - 2019-10-03 20:27 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\MPC-HC 2021-04-10 09:54 - 2019-05-21 12:04 - 000000000 ____D C:\Program Files (x86)\coolpro2 2021-04-10 06:33 - 2019-05-21 11:21 - 000000000 ____D C:\Program Files (x86)\AC3Filter 2021-04-10 06:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-04-09 22:00 - 2019-05-21 12:25 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\uTorrent 2021-04-09 20:14 - 2020-02-04 09:58 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\audacity 2021-04-09 19:15 - 2020-09-27 09:36 - 000002454 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-04-09 19:15 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-04-09 16:42 - 2019-05-21 13:44 - 000000000 ____D C:\ProgramData\ProductData 2021-04-09 15:48 - 2019-06-01 21:03 - 000000000 ____D C:\Users\Administrator\AppData\Local\BitTorrentHelper 2021-04-09 08:32 - 2019-05-21 12:28 - 000002208 _____ C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Complete Internet Repair.lnk 2021-04-08 10:27 - 2019-05-21 11:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AC3Filter 2021-04-08 06:01 - 2019-05-21 12:42 - 000000000 ____D C:\ProgramData\POP Peeper 2021-04-08 06:01 - 2019-05-21 12:42 - 000000000 ____D C:\Program Files (x86)\POP Peeper 2021-04-06 10:06 - 2020-10-21 08:41 - 000003490 _____ C:\WINDOWS\system32\Tasks\SU_AutoUpdate 2021-04-04 18:13 - 2020-10-21 08:37 - 000000000 ____D C:\Users\Administrator 2021-04-03 21:29 - 2020-09-27 07:33 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-04-03 13:36 - 2019-05-21 11:33 - 000000000 ____D C:\Program Files\Microsoft Office 2021-04-03 08:36 - 2021-01-15 08:36 - 000000000 ____D C:\output 2021-04-03 08:36 - 2019-05-21 12:28 - 000000000 ____D C:\Users\Administrator\AppData\Local\ChomikBox 2021-04-03 08:12 - 2019-05-21 12:28 - 000000000 ____D C:\Users\Administrator\.gstreamer-0.10 2021-04-02 16:13 - 2019-05-21 13:44 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\IObit 2021-04-02 16:12 - 2021-03-03 18:05 - 000003232 _____ C:\WINDOWS\system32\Tasks\Driver Booster Scheduler 2021-04-02 16:12 - 2021-03-03 07:20 - 000003012 _____ C:\WINDOWS\system32\Tasks\Driver Booster SkipUAC (Konrad Paluszek) 2021-04-02 16:12 - 2020-12-26 18:30 - 000003218 _____ C:\WINDOWS\system32\Tasks\Driver Booster Update 2021-04-02 16:12 - 2020-10-20 06:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 8 2021-04-02 16:12 - 2019-05-21 13:44 - 000000000 ____D C:\ProgramData\IObit 2021-03-31 06:12 - 2019-10-30 13:57 - 000002381 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2021-03-30 18:25 - 2020-10-21 08:41 - 000003044 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-03-30 18:25 - 2020-10-21 08:41 - 000002804 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-03-30 18:01 - 2020-10-21 08:41 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-03-30 18:01 - 2020-10-21 08:41 - 000004106 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-03-30 18:01 - 2020-10-21 08:41 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-03-30 18:01 - 2020-10-21 08:41 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-03-30 18:01 - 2020-10-21 08:41 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-03-30 18:01 - 2020-10-21 08:41 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-03-30 18:01 - 2020-10-21 08:41 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-03-30 18:01 - 2020-10-21 08:41 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-03-30 18:01 - 2019-05-21 10:57 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2021-03-30 18:01 - 2019-05-21 10:57 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2021-03-30 18:01 - 2019-05-21 10:57 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2021-03-30 07:40 - 2020-09-23 07:24 - 001148904 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys 2021-03-30 06:44 - 2019-11-07 18:03 - 000000000 ____D C:\Program Files\WinRAR 2021-03-30 06:43 - 2020-09-27 07:33 - 005201384 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-03-30 06:42 - 2019-12-07 17:12 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2021-03-30 06:42 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-03-30 06:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources 2021-03-30 06:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup 2021-03-30 06:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV 2021-03-30 06:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT 2021-03-30 06:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE 2021-03-30 06:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX 2021-03-30 06:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning 2021-03-30 06:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2021-03-30 06:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-03-30 06:41 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-03-30 06:39 - 2020-09-27 09:36 - 002877440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2021-03-29 08:25 - 2019-11-07 18:10 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2021-03-29 08:25 - 2019-11-07 18:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2021-03-28 07:08 - 2019-05-21 15:05 - 000000000 ____D C:\Users\Administrator\AppData\Local\gtk-2.0 2021-03-27 08:24 - 2019-05-21 11:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mp3tag 2021-03-27 08:24 - 2019-05-21 11:55 - 000000000 ____D C:\Program Files (x86)\Mp3tag 2021-03-26 09:45 - 2020-08-16 09:54 - 007207560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll 2021-03-26 08:22 - 2021-02-24 21:04 - 000000000 ____D C:\Program Files (x86)\Pidgin 2021-03-26 01:34 - 2020-09-18 10:07 - 000070896 _____ C:\WINDOWS\system32\FvSDK_x64.dll 2021-03-26 01:34 - 2020-09-18 10:07 - 000059632 _____ C:\WINDOWS\SysWOW64\FvSDK_x86.dll 2021-03-26 01:34 - 2020-01-07 11:12 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat 2021-03-26 01:34 - 2019-05-21 11:13 - 002797808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll 2021-03-26 01:34 - 2019-05-21 11:13 - 002154224 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll 2021-03-26 01:34 - 2019-05-21 11:13 - 001295088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll 2021-03-26 01:34 - 2019-05-21 11:13 - 000169272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll 2021-03-26 01:34 - 2019-05-21 11:13 - 000145208 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll 2021-03-25 17:40 - 2020-10-21 08:41 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2021-03-19 07:11 - 2020-02-04 09:58 - 000000000 ____D C:\Program Files (x86)\Audacity 2021-03-17 14:57 - 2020-02-04 09:58 - 000001090 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk 2021-03-16 16:38 - 2020-08-16 09:55 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation 2021-03-16 07:26 - 2020-09-27 09:34 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2021-03-15 15:30 - 2019-05-21 12:25 - 000000910 _____ C:\Users\Administrator\Desktop\µTorrent.lnk 2021-03-15 15:30 - 2019-05-21 12:25 - 000000890 _____ C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk 2021-03-12 09:00 - 2019-12-11 17:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro 2021-03-12 08:47 - 2020-07-09 07:45 - 000002183 _____ C:\Users\Administrator\Desktop\IObit Software Updater.lnk 2021-03-12 07:18 - 2019-05-21 12:29 - 000000000 ____D C:\Program Files\PowerISO 2021-03-11 16:30 - 2019-05-21 10:49 - 000000000 ____D C:\Users\Administrator\AppData\Local\Packages 2021-03-11 14:19 - 2019-05-21 11:29 - 000002105 _____ C:\Users\Administrator\Desktop\ViewPowerMini.lnk ==================== Pliki w katalogu głównym wybranych folderów ======== 2020-03-18 11:31 - 2020-03-18 11:32 - 001564784 _____ () C:\Users\Administrator\AppData\Roaming\AvidApplicationManager_Install.log 2019-05-21 12:14 - 2019-05-21 12:14 - 000230590 _____ () C:\Users\Administrator\AppData\Roaming\AvidLicenseControl_Install.log 2020-08-13 20:38 - 2020-08-18 08:23 - 000001042 _____ () C:\Users\Administrator\AppData\Roaming\coreavc.ini 2019-05-21 12:31 - 2019-05-21 12:31 - 000099384 _____ () C:\Users\Administrator\AppData\Roaming\inst.exe 2019-05-21 12:31 - 2019-05-21 12:31 - 000007859 _____ () C:\Users\Administrator\AppData\Roaming\pcouffin.cat 2019-05-21 12:31 - 2019-05-21 12:31 - 000001167 _____ () C:\Users\Administrator\AppData\Roaming\pcouffin.inf 2019-05-21 12:31 - 2019-05-21 12:31 - 000082816 _____ (VSO Software) C:\Users\Administrator\AppData\Roaming\pcouffin.sys 2020-02-24 19:09 - 2021-02-28 18:32 - 000003584 _____ () C:\Users\Administrator\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2019-05-23 19:23 - 2019-05-23 19:23 - 000000000 _____ () C:\Users\Administrator\AppData\Local\oobelibMkey.log 2019-10-02 08:43 - 2019-10-02 08:43 - 000000017 _____ () C:\Users\Administrator\AppData\Local\resmon.resmoncfg ==================== FCheck ================================ (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) FCheck: C:\WINDOWS\SysWOW64\mp4norm.dll [2021-04-10] <==== UWAGA (zerobajtowy plik/folder) ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================