Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 02-02-2020 02 Uruchomiony przez pklim (administrator) DESKTOP-5HVFO0P (Gigabyte Technology Co., Ltd. Z97-D3H) (11-02-2020 01:03:22) Uruchomiony z E:\Programy Załadowane profile: pklim & SQLTELEMETRY & MSSQL$SQLEXPRESS & MSSQLSERVER & MSSQL$SQLEXPRESS2014 (Dostępne profile: pklim & SQLTELEMETRY & MSSQL$SQLEXPRESS & MSSQLSERVER & MSSQL$SQLEXPRESS2014 & Classic .NET AppPool & .NET v4.5 & DefaultAppPool & .NET v2.0 & .NET v4.5 Classic & .NET v2.0 Classic & dnndev.me) Platform: Windows 10 Pro Wersja 1909 18363.592 (X64) Język: Polski (Polska) Domyślna przeglądarka: FF Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Aleksey Cherkasskiy -> ) [Brak podpisu cyfrowego] C:\Program Files (x86)\HDD Health\HDDHealthService.exe (CHENGDU AOMEI Tech Co., Ltd. -> ) [Brak podpisu cyfrowego] C:\Program Files (x86)\AOMEI Backupper\ABNotify.exe (CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\AOMEI Backupper\ABService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU Yiwo Tech Development Co., Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.9\bin\CleanUpUI.exe (CloudBees, Inc.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Jenkins\jenkins.exe (Connectify -> Connectify) C:\Program Files (x86)\Connectify\Connectifyd.exe (Connectify -> Connectify) C:\Program Files (x86)\Connectify\DispatchUI.exe (Connectify) [Brak podpisu cyfrowego] C:\Program Files (x86)\Connectify\ConnectifyService.exe (Docker Inc -> Docker Inc.) C:\Program Files\Docker\Docker\com.docker.service (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe (Google Inc -> Google) C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe (Intel(R) Extreme Tuning Utility -> Intel(R) Corporation) C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe (Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe (Intel(R) Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (Intel(R) Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Intel(R) Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe (IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\Driver Booster\6.0.2\Scheduler.exe (JetBrains s.r.o. -> JetBrains s.r.o) C:\Program Files (x86)\JetBrains\ETW Host\JetBrains.Etw.Collector.Host.exe (Logitech, Inc. -> ) C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe (Logitech, Inc. -> Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\sqlservr.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL12.SQLEXPRESS2014\MSSQL\Binn\sqlservr.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL14.MSSQLSERVER\MSSQL\Binn\sqlceip.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL14.MSSQLSERVER\MSSQL\Binn\sqlservr.exe (Microsoft Corporation -> Microsoft Corporation) C:\Users\pklim\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12001.1001.5.0_x64__8wekyb3d8bbwe\WinStore.App.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LsaIso.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\usocoreworker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\vmcompute.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\vmms.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (National Instruments Corp.) [Brak podpisu cyfrowego] C:\Windows\SysWOW64\nisvcloc.exe (National Instruments, Inc.) [Brak podpisu cyfrowego] C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe (National Instruments, Inc.) [Brak podpisu cyfrowego] C:\Windows\SysWOW64\lkads.exe (National Instruments, Inc.) [Brak podpisu cyfrowego] C:\Windows\SysWOW64\lkcitdl.exe (National Instruments, Inc.) [Brak podpisu cyfrowego] C:\Windows\SysWOW64\lktsrv.exe (Nokia -> Nokia) C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe (Nokia -> Nokia) C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe (Nokia -> Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclRSSrv.exe (Nokia -> Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclUSBSrv64.exe (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Open Source Developer, Stefan KUENG -> hxxp://tortoisesvn.net) C:\Program Files\TortoiseSVN\bin\TSVNCache.exe (OpenVPN Technologies, Inc. -> The OpenVPN Project) C:\Program Files\OpenVPN\bin\openvpnserv.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Jenkins\jre\bin\java.exe (PDFescape -> Red Software) C:\Program Files\PDFescape Desktop\creator-ws.exe (pdfforge GmbH -> © pdfforge GmbH.) C:\Program Files (x86)\PDF Architect 5 Manager\PDF Architect 5\Architect Manager.exe (pdfforge GmbH -> pdfforge GmbH) C:\Program Files\PDF Architect 5\creator\common\creator-ws.exe (Realtek Semiconductor Corp -> ) C:\Windows\runSW.exe (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Realtek Semiconductor Corp -> Realtek) C:\Windows\SwUSB.exe (Samsung Electronics CO., LTD. -> ) C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe (SAND STUDIO CORPORATION LIMITED -> Sand Studio) C:\Program Files (x86)\AirDroid\AirDroid.exe (SIEMENS AG) [Brak podpisu cyfrowego] C:\Program Files (x86)\Common Files\Siemens\sws\almsrv\almsrvx.exe (SourceForge.net) [Brak podpisu cyfrowego] C:\Program Files\Password Safe\pwsafe.exe (TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (Wacom Technology Corp. -> Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe (Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe (Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe (Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe (Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.233\WsAppService.exe (Xamarin Inc. -> Apple Inc.) C:\Program Files (x86)\Xamarin\Bonjour\mDNSResponder.exe (XOREAX LTD -> IncrediBuild Software Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\IncrediBuild\BuildService.exe (XOREAX LTD -> IncrediBuild Software Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\IncrediBuild\CoordService.exe (XOREAX LTD -> IncrediBuild Software Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\IncrediBuild\xgTrayIcon.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [Connectify Dispatch] => C:\Program Files (x86)\Connectify\DispatchUI.exe [1672992 2014-03-04] (Connectify -> Connectify) HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942864 2016-10-13] (Logitech -> Logitech, Inc.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8844032 2016-01-27] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM-x32\...\Run: [e-Kiosk] => C:\Program Files (x86)\e-Kiosk Reader\eGazetaST.exe [1690624 2011-09-21] (e-Kiosk S.A.) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [EaseUS Cleanup] => C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.9\bin\CleanUpUI.exe [1243328 2016-09-20] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU Yiwo Tech Development Co., Ltd.) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [Google Desktop Search] => C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe [30192 2018-03-16] (Google Inc -> Google) HKLM-x32\...\Run: [IncrediBuild Agent Monitor] => C:\Program Files (x86)\IncrediBuild\BuildTrayIcon.exe [189920 2018-08-01] (XOREAX LTD -> IncrediBuild Software Ltd.) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-13] (Logitech, Inc. -> Logitech Inc.) HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc. -> Apple Inc.) HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [ABNotify] => C:\Program Files (x86)\AOMEI Backupper\ABNotify.exe [80832 2016-09-26] (CHENGDU AOMEI Tech Co., Ltd. -> ) [Brak podpisu cyfrowego] HKU\S-1-5-21-1978625630-1779754910-779616976-1001\...\Run: [GG] => C:\Users\pklim\AppData\Local\GG\Application\gghub.exe [4078144 2015-11-16] (GG Network S.A. -> GG Network S.A.) HKU\S-1-5-21-1978625630-1779754910-779616976-1001\...\Run: [FlashGet 3] => C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe [3377256 2013-04-18] (Trend Media Corporation Limited -> Trend Media Corporation Limited) HKU\S-1-5-21-1978625630-1779754910-779616976-1001\...\Run: [PC Suite Tray] => C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe [1516632 2012-06-26] (Nokia -> Nokia) HKU\S-1-5-21-1978625630-1779754910-779616976-1001\...\Run: [Google Update] => C:\Users\pklim\AppData\Local\Google\Update\1.3.35.442\GoogleUpdateCore.exe [217544 2020-02-04] (Google LLC -> Google LLC) HKU\S-1-5-21-1978625630-1779754910-779616976-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3148576 2019-06-18] (Valve -> Valve Corporation) HKU\S-1-5-21-1978625630-1779754910-779616976-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8912088 2016-08-26] (Piriform Ltd -> Piriform Ltd) HKU\S-1-5-21-1978625630-1779754910-779616976-1001\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe [519168 2018-06-21] (BlueStack Systems, Inc.) [Brak podpisu cyfrowego] HKU\S-1-5-21-1978625630-1779754910-779616976-1001\...\Run: [Spotify] => C:\Users\pklim\AppData\Roaming\Spotify\Spotify.exe [26118888 2019-02-13] (Spotify AB -> Spotify Ltd) HKU\S-1-5-21-1978625630-1779754910-779616976-1001\...\Run: [OPENVPN-GUI] => C:\Program Files\OpenVPN\bin\openvpn-gui.exe [643200 2017-09-26] (OpenVPN Technologies, Inc. -> ) HKU\S-1-5-21-1978625630-1779754910-779616976-1001\...\Run: [UIBCReceiverSetup] => C:\Program Files (x86)\TOSHIBA\screen mirroring\UIBC Receiver\UIBCReceiver.exe [180664 2016-11-02] (ApusOne Technology Inc. -> APUSONE Technology Inc.) HKU\S-1-5-21-1978625630-1779754910-779616976-1001\...\Run: [AirDroid 3] => C:\Program Files (x86)\AirDroid\AirDroid.exe [14811240 2019-12-16] (SAND STUDIO CORPORATION LIMITED -> Sand Studio) HKU\S-1-5-21-1978625630-1779754910-779616976-1001\...\Run: [Lync] => C:\Program Files\Microsoft Office\root\Office16\lync.exe [26837720 2020-02-06] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1978625630-1779754910-779616976-1001\...\Run: [Docker Desktop] => C:\Program Files\Docker\Docker\Docker for Windows.exe [1821184 2019-02-17] (Docker Inc -> Docker Inc.) HKU\S-1-5-21-1978625630-1779754910-779616976-1001\...\Run: [Docker for Windows] => C:\Program Files\Docker\Docker\Docker for Windows.exe [1821184 2019-02-17] (Docker Inc -> Docker Inc.) HKU\S-1-5-21-1978625630-1779754910-779616976-1001\...\Run: [SideSync] => C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe [12476064 2019-01-11] (Samsung Electronics CO., LTD. -> ) HKU\S-1-5-21-1978625630-1779754910-779616976-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-02112020005643758\...\Run: [GG] => C:\Users\pklim\AppData\Local\GG\Application\gghub.exe [4078144 2015-11-16] (GG Network S.A. -> GG Network S.A.) HKU\S-1-5-21-1978625630-1779754910-779616976-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-02112020005643758\...\Run: [FlashGet 3] => C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe [3377256 2013-04-18] (Trend Media Corporation Limited -> Trend Media Corporation Limited) HKU\S-1-5-21-1978625630-1779754910-779616976-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-02112020005643758\...\Run: [PC Suite Tray] => C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe [1516632 2012-06-26] (Nokia -> Nokia) HKU\S-1-5-21-1978625630-1779754910-779616976-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-02112020005643758\...\Run: [Google Update] => C:\Users\pklim\AppData\Local\Google\Update\1.3.35.442\GoogleUpdateCore.exe [217544 2020-02-04] (Google LLC -> Google LLC) HKU\S-1-5-21-1978625630-1779754910-779616976-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-02112020005643758\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3148576 2019-06-18] (Valve -> Valve Corporation) HKU\S-1-5-21-1978625630-1779754910-779616976-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-02112020005643758\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8912088 2016-08-26] (Piriform Ltd -> Piriform Ltd) HKU\S-1-5-21-1978625630-1779754910-779616976-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-02112020005643758\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe [519168 2018-06-21] (BlueStack Systems, Inc.) [Brak podpisu cyfrowego] HKU\S-1-5-21-1978625630-1779754910-779616976-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-02112020005643758\...\Run: [Spotify] => C:\Users\pklim\AppData\Roaming\Spotify\Spotify.exe [26118888 2019-02-13] (Spotify AB -> Spotify Ltd) HKU\S-1-5-21-1978625630-1779754910-779616976-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-02112020005643758\...\Run: [OPENVPN-GUI] => C:\Program Files\OpenVPN\bin\openvpn-gui.exe [643200 2017-09-26] (OpenVPN Technologies, Inc. -> ) HKU\S-1-5-21-1978625630-1779754910-779616976-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-02112020005643758\...\Run: [UIBCReceiverSetup] => C:\Program Files (x86)\TOSHIBA\screen mirroring\UIBC Receiver\UIBCReceiver.exe [180664 2016-11-02] (ApusOne Technology Inc. -> APUSONE Technology Inc.) HKU\S-1-5-21-1978625630-1779754910-779616976-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-02112020005643758\...\Run: [AirDroid 3] => C:\Program Files (x86)\AirDroid\AirDroid.exe [14811240 2019-12-16] (SAND STUDIO CORPORATION LIMITED -> Sand Studio) HKU\S-1-5-21-1978625630-1779754910-779616976-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-02112020005643758\...\Run: [Lync] => C:\Program Files\Microsoft Office\root\Office16\lync.exe [26837720 2020-02-06] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1978625630-1779754910-779616976-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-02112020005643758\...\Run: [Docker Desktop] => C:\Program Files\Docker\Docker\Docker for Windows.exe [1821184 2019-02-17] (Docker Inc -> Docker Inc.) HKU\S-1-5-21-1978625630-1779754910-779616976-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-02112020005643758\...\Run: [Docker for Windows] => C:\Program Files\Docker\Docker\Docker for Windows.exe [1821184 2019-02-17] (Docker Inc -> Docker Inc.) HKU\S-1-5-21-1978625630-1779754910-779616976-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-02112020005643758\...\Run: [SideSync] => C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe [12476064 2019-01-11] (Samsung Electronics CO., LTD. -> ) HKU\S-1-5-21-1978625630-1779754910-779616976-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-02112020005643758\...\RunOnce: [Application Restart #0] => C:\Program Files\Mozilla Firefox\firefox.exe -os-restarted HKU\S-1-5-80-2652535364-2169709536-2857650723-2622804123-1107741775\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-80-3880718306-3832830129-1677859214-2598158968-1052248003\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-80-74102703-195227291-2601699642-576852742-3294486561\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.130\Installer\chrmstp.exe [2020-01-23] (Google LLC -> Google LLC) Lsa: [Authentication Packages] msv1_0 SshdPinAuthLsa Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HDDHealth.lnk [2018-04-26] ShortcutTarget: HDDHealth.lnk -> C:\Program Files (x86)\HDD Health\hddhealth.exe (Aleksey Cherkasskiy -> PANTERASoft) [Brak podpisu cyfrowego] Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TP-LINK Wireless Configuration Utility.lnk [2018-02-09] ShortcutTarget: TP-LINK Wireless Configuration Utility.lnk -> C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe () [Brak podpisu cyfrowego] Startup: C:\Users\pklim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Password Safe.lnk [2017-10-03] ShortcutTarget: Password Safe.lnk -> C:\Program Files\Password Safe\pwsafe.exe (SourceForge.net) [Brak podpisu cyfrowego] Startup: C:\Users\pklim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Wysyłanie do programu OneNote.lnk [2019-09-17] ShortcutTarget: Wysyłanie do programu OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation) GroupPolicy: Ograniczenia ? <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {002A6E26-474C-4AFD-9524-18518D098437} - System32\Tasks\EasyTune 1 => C:\Program Files (x86)\GIGABYTE\EasyTune\etocfile.exe [18352 2019-02-21] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) Task: {007CB4C4-85E0-4AAD-BE43-DE1997048EA2} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1978625630-1779754910-779616976-1001Core1d25859a26818bf => C:\Users\pklim\AppData\Local\Google\Update\GoogleUpdate.exe [152216 2016-07-27] (Google Inc -> Google Inc.) Task: {0670272D-660C-4D4D-86D7-934D8FE36B5D} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe [271360 2015-09-05] (Microsoft Corporation) [Brak podpisu cyfrowego] Task: {147411BD-0E97-4AA1-BBFC-63396A90BB6C} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2069952 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation) Task: {16675452-2480-4DA7-9081-2B9978191574} - System32\Tasks\Driver Booster SkipUAC (pklim) => C:\Program Files (x86)\IObit\Driver Booster\6.0.2\DriverBooster.exe [7228176 2019-02-22] (IObit Information Technology -> IObit) Task: {18BD09FD-0C9D-467F-BBD1-A315349A5319} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe [271360 2015-09-05] (Microsoft Corporation) [Brak podpisu cyfrowego] Task: {20D89C47-F8A7-48D0-A54A-A27BD7CF3442} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation) Task: {2212CECB-C351-488D-AC81-2DD8F99B11EE} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe [271360 2015-09-05] (Microsoft Corporation) [Brak podpisu cyfrowego] Task: {24C75A75-6FAC-499D-9EE7-30F698F5F01D} - System32\Tasks\EasyTune => C:\Program Files (x86)\GIGABYTE\EasyTune\etinit.exe [15792 2019-02-21] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) Task: {281E60D9-2064-48A6-9FAC-281E5325C09C} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [745480 2019-04-16] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.) Task: {29BAEC77-F56D-4A8E-98D3-637B05BCF26F} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe [271360 2015-09-05] (Microsoft Corporation) [Brak podpisu cyfrowego] Task: {2DABA7DF-1573-4A81-85BB-1E4ED800AF16} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe Task: {2DB913E2-38EA-47B1-B6E1-37859A8964C7} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [1328392 2016-03-17] (Intel(R) Software -> Intel Corporation) Task: {31A698A1-9765-4E58-9BCA-4E2E98F48331} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2046256 2020-02-06] (Microsoft Corporation -> Microsoft Corporation) Task: {31E02476-C646-4D8C-B4A6-552C2914DF4E} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {33FE78DF-E1F2-4FB8-9C97-68E707225C85} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018192 2020-02-06] (Microsoft Corporation -> Microsoft Corporation) Task: {34695790-AA2B-44E9-A29D-92970DA27EC7} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [976832 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation) Task: {3AE62618-0817-4DCD-A679-A4E425B8BEB5} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe Task: {3F5BD3A9-5D8F-4ABC-8FF7-419747AF78F9} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1978625630-1779754910-779616976-1001Core => C:\Users\pklim\AppData\Local\Google\Update\GoogleUpdate.exe [152216 2016-07-27] (Google Inc -> Google Inc.) Task: {3F9750A1-8EFB-44D6-A27B-ECB0930B8EAB} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-01-21] (Adobe Inc. -> Adobe) Task: {40C8778B-13BC-4426-9DC3-4E1D517D69E4} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe Task: {43238E24-3668-4D4B-9605-C278C2DD06EE} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe [271360 2015-09-05] (Microsoft Corporation) [Brak podpisu cyfrowego] Task: {44240E38-1547-4B63-BFCE-F7E6403A728A} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [757184 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation) Task: {4A0CE33E-689C-45EE-A04D-AC469004682A} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe [271360 2015-09-05] (Microsoft Corporation) [Brak podpisu cyfrowego] Task: {4E2558BE-5499-496C-A9FC-666FF26B59A8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-18] (Google Inc -> Google Inc.) Task: {51EAA5A7-D1F7-4A38-B463-671CCC14DE87} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6128024 2020-02-06] (Microsoft Corporation -> Microsoft Corporation) Task: {587D91BA-24B9-40ED-B245-064F40CB3629} - System32\Tasks\Phoenix360\ActiveMessenger-SystemMechanic => C:\Program Files (x86)\Common Files\Phoenix360\ActiveCore\ActiveBridge.exe [524080 2019-02-08] (iolo technologies, LLC -> iolo technologies, LLC) Task: {5FBE6697-4766-4573-B378-DE1A08733A59} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation) Task: {6201357E-DE66-42B7-82E2-B6EAB1F854F2} - System32\Tasks\Microsoft\VisualStudio\Updates\BackgroundDownload => C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\BackgroundDownload.exe [72848 2019-06-24] (Microsoft Corporation -> Microsoft Corporation) Task: {63A11AA1-BC2F-45CE-90A1-33D4648ACA87} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems) Task: {64364B6A-02F7-4A95-B271-448DABCFF83B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6128024 2020-02-06] (Microsoft Corporation -> Microsoft Corporation) Task: {6D67B638-85DE-4A5A-8DBD-5B7469C383A6} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [569416 2016-02-23] (Apple Inc. -> Apple Inc.) Task: {6E1D8894-4023-4F40-85CE-57CED082E0E9} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe [271360 2015-09-05] (Microsoft Corporation) [Brak podpisu cyfrowego] Task: {75BD41CB-DE90-4042-B477-D76813421D9C} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe [271360 2015-09-05] (Microsoft Corporation) [Brak podpisu cyfrowego] Task: {78B02FD3-52AE-49B0-9B70-83B2779C810E} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {78BCD116-9303-421A-A940-9A8E2A40FE50} - System32\Tasks\WpsExternal_pklim_20200120105423 => C:\Users\pklim\AppData\Local\Kingsoft\WPS Office\11.2.0.9144\office6\wps.exe [1073832 2020-01-20] (Zhuhai Kingsoft Office Software Co., Ltd. -> Zhuhai Kingsoft Office Software Co.,Ltd) Task: {7EEC4019-ECF9-420A-B482-8CED19D18A6B} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1978625630-1779754910-779616976-1001UA1d25859a26bd6cc => C:\Users\pklim\AppData\Local\Google\Update\GoogleUpdate.exe [152216 2016-07-27] (Google Inc -> Google Inc.) Task: {852CA464-7BA3-4F59-A486-E056A849D480} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe [271360 2015-09-05] (Microsoft Corporation) [Brak podpisu cyfrowego] Task: {882228BF-9BC7-409C-93B0-D4DF71F87A23} - System32\Tasks\Microsoft\VisualStudio\Updates\UpdateConfiguration_S-1-5-21-1978625630-1779754910-779616976-1001 => C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\VSIXConfigurationUpdater.exe [30872 2019-06-24] (Microsoft Corporation -> Microsoft Corporation) Task: {8A0ED08A-972A-486F-8D54-B5B4D90570A4} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe [79360 2015-09-05] (Microsoft Corporation) [Brak podpisu cyfrowego] Task: {8A21185D-45DC-4758-81AF-4FF0E2EB52F9} - System32\Tasks\Phoenix360\ActiveSync-SystemMechanic => C:\Program Files (x86)\Common Files\Phoenix360\ActiveCore\activebridge.exe [524080 2019-02-08] (iolo technologies, LLC -> iolo technologies, LLC) Task: {8B815ED9-D2FA-48E9-890F-2190AB383441} - System32\Tasks\NCH Software\PixillionDowngrade => C:\Program Files (x86)\NCH Software\Pixillion\pixillion.exe [1529584 2017-05-03] (NCH Software -> NCH Software) Task: {8BC1827B-FFDB-45A0-AF68-051F3A01AF12} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1978625630-1779754910-779616976-1001UA => C:\Users\pklim\AppData\Local\Google\Update\GoogleUpdate.exe [152216 2016-07-27] (Google Inc -> Google Inc.) Task: {91D90850-FFD6-4987-B47E-124DBC22D848} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {956CD04C-3957-4888-8AF5-57841419CEAD} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {98687EE1-8F7B-4EEF-A720-08262EF62762} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation) Task: {9FB289B4-C9A7-42CA-A77B-DEB6C211623C} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [510912 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation) Task: {A4FA9250-9776-4397-BDC4-06080003B0BC} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe [469952 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation) Task: {A972C812-AED8-4884-BC86-85704DFD85D1} - System32\Tasks\Microsoft\VisualStudio\VSIX Auto Update => C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\VSIXAutoUpdate.exe [206400 2019-06-24] (Microsoft Corporation -> ) Task: {ABC59BD3-7BD8-40F9-9E25-FB3F77887130} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [6868696 2016-08-26] (Piriform Ltd -> Piriform Ltd) Task: {B0D20B3D-FE40-44D3-A271-CC5C22C05C09} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe [271360 2015-09-05] (Microsoft Corporation) [Brak podpisu cyfrowego] Task: {B317623E-6B96-42E2-8F82-1570A92F03D4} - System32\Tasks\klcp_update => CodecTweakTool.exe Task: {B91B0128-C996-46D6-A626-C3C0A28D4552} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\6.0.2\Scheduler.exe [149776 2018-12-28] (IObit Information Technology -> IObit) Task: {B98B516B-2EE7-4B2C-98D2-CF92EFD09BF6} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_321_Plugin.exe [1458232 2020-01-21] (Adobe Inc. -> Adobe) Task: {C282F938-5828-4DFB-AD79-21BC794A8DD4} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe [271360 2015-09-05] (Microsoft Corporation) [Brak podpisu cyfrowego] Task: {C48E9EE8-A1D0-4202-B17E-691E250A232A} - \Microsoft\Windows\UNP\RunCampaignManager -> Brak pliku <==== UWAGA Task: {C7FF8AD4-F63D-4C8C-9CD5-600DB7BDA7DC} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24607520 2020-01-28] (Microsoft Corporation -> Microsoft Corporation) Task: {CB804399-9BB9-4809-987A-ED4736551549} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158544 2020-02-06] (Microsoft Corporation -> Microsoft Corporation) Task: {D397D6E7-E799-4404-827F-116AB13F9A13} - System32\Tasks\GoogleUpdateTaskMachineCore1d3ece2f178ad8a => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-18] (Google Inc -> Google Inc.) Task: {D9712963-3BB7-4153-8A70-FF1182D063B1} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe [271360 2015-09-05] (Microsoft Corporation) [Brak podpisu cyfrowego] Task: {DE43447A-D760-4505-9FA1-ED9F6DB98C46} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158544 2020-02-06] (Microsoft Corporation -> Microsoft Corporation) Task: {EACBED64-E063-456B-A2C2-A40339E136F7} - System32\Tasks\WpsUpdateTask_pklim => C:\Users\pklim\AppData\Local\Kingsoft\WPS Office\11.2.0.9144\office6\wpsupdate.exe [157864 2020-01-20] (Zhuhai Kingsoft Office Software Co., Ltd. -> ) Task: {EB698D8A-662B-4C26-90A6-EB69C3A79FE5} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018192 2020-02-06] (Microsoft Corporation -> Microsoft Corporation) Task: {EB987961-710B-4A0C-BC94-D39BDE32C07E} - System32\Tasks\Microsoft\VisualStudio\VSIX Auto Update 14 => C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\VSIXAutoUpdate.exe Task: {EC120064-08F5-45A4-AD83-964F488463FA} - System32\Tasks\{43497522-DD41-47AC-A60E-B3EBDDA9AAB9} => C:\windows\system32\pcalua.exe -a E:\Nokia_Care_Suite_eng_web.exe -d E:\ Task: {EE1645C7-7CA1-400B-A3C4-0B473E025BC2} - System32\Tasks\SIV-VGA => C:\Program Files (x86)\GIGABYTE\SIV\sensord.exe [253896 2019-08-26] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) Task: {F2226F4E-68F7-4520-9219-080C33E4281E} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe [271360 2015-09-05] (Microsoft Corporation) [Brak podpisu cyfrowego] Task: {F58ADDF9-B7C6-40B5-BD78-D3B071E6F595} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe Task: {FAD08039-BB86-4F3F-9637-69A4C5C83970} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-18] (Google Inc -> Google Inc.) Task: {FD534260-91C4-4C9E-BA50-948AF2B49957} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24607520 2020-01-28] (Microsoft Corporation -> Microsoft Corporation) Task: {FF74D5B2-484F-4777-859F-88803539C5F0} - System32\Tasks\SIV => C:\Program Files (x86)\GIGABYTE\SIV\thermald.exe [426440 2019-08-26] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1978625630-1779754910-779616976-1001Core.job => C:\Users\pklim\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1978625630-1779754910-779616976-1001UA.job => C:\Users\pklim\AppData\Local\Google\Update\GoogleUpdate.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) ProxyServer: [S-1-5-21-1978625630-1779754910-779616976-1001] => 192.168.49.1:8282 ProxyServer: [S-1-5-21-1978625630-1779754910-779616976-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-02112020005643758] => 192.168.49.1:8282 Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 0.0.0.0 Tcpip\..\Interfaces\{2627c348-e0b4-4d43-8692-21ac72179c61}: [DhcpNameServer] 192.168.42.129 Tcpip\..\Interfaces\{32c57917-fa21-4e38-8f81-7601be69b4cb}: [DhcpNameServer] 192.168.1.1 0.0.0.0 Tcpip\..\Interfaces\{3342ee1d-7488-4531-89d5-e1315b3c350e}: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{38436788-5466-4b0e-80dd-2a39631ac52c}: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{3d18ad1c-3cb3-4dd2-9eee-44e36cb87cff}: [DhcpNameServer] 192.168.1.1 0.0.0.0 Tcpip\..\Interfaces\{919d209e-54b8-484a-9f00-030fc46bb62b}: [DhcpNameServer] 192.168.1.1 0.0.0.0 Tcpip\..\Interfaces\{e102d410-0e69-42a0-9c48-598a1750109b}: [DhcpNameServer] 192.168.1.1 0.0.0.0 Tcpip\..\Interfaces\{f3e44325-2945-47ff-929e-be3b5b43802e}: [DhcpNameServer] 192.168.1.1 0.0.0.0 Internet Explorer: ================== SearchScopes: HKU\S-1-5-21-1978625630-1779754910-779616976-1001 -> {70D46D94-BF1E-45ED-B567-48701376298E} URL = hxxp://127.0.0.1:4664/search&s=RfgZpW1wbK1YYCZFK7Z5vfTQh4I?q={searchTerms} SearchScopes: HKU\S-1-5-21-1978625630-1779754910-779616976-1001 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={BD496446-F5AA-4717-864F-7EC4FC3E40AB}&mid=7c9393364cf747cc8d9d2d0d2a13658e-faa664b0eceb007708849ac5c01c450f974bc5df&lang=pl&ds=AVG&coid=avgtbavg&cmpid=ZenTest_B_0&pr=fr&d=2016-12-11 09:21:02&v=4.3.6.255&pid=wtu&sg=&sap=dsp&q={searchTerms} SearchScopes: HKU\S-1-5-21-1978625630-1779754910-779616976-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-02112020005643758 -> {70D46D94-BF1E-45ED-B567-48701376298E} URL = hxxp://127.0.0.1:4664/search&s=RfgZpW1wbK1YYCZFK7Z5vfTQh4I?q={searchTerms} SearchScopes: HKU\S-1-5-21-1978625630-1779754910-779616976-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-02112020005643758 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={BD496446-F5AA-4717-864F-7EC4FC3E40AB}&mid=7c9393364cf747cc8d9d2d0d2a13658e-faa664b0eceb007708849ac5c01c450f974bc5df&lang=pl&ds=AVG&coid=avgtbavg&cmpid=ZenTest_B_0&pr=fr&d=2016-12-11 09:21:02&v=4.3.6.255&pid=wtu&sg=&sap=dsp&q={searchTerms} BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2020-01-12] (Microsoft Corporation -> Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_111\bin\ssv.dll [2016-10-20] (Oracle America, Inc. -> Oracle Corporation) BHO: Brak nazwy -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> Brak pliku BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-10-20] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-01-12] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: PDFescape Desktop Helper -> {9AF15867-1D90-423B-9853-E99761714165} -> C:\Program Files (x86)\PDFescape Desktop\creator-ie-helper.dll [2017-07-13] (PDFescape -> Red Software) BHO-x32: PDF Architect 5 Helper -> {AEA429F3-D2D4-4BD7-A03E-5357DA017733} -> C:\Program Files (x86)\PDF Architect 5\creator\plugins\IEAddin\creator-ie-helper.dll [2017-11-29] (pdfforge GmbH -> pdfforge GmbH) BHO-x32: FlashGetBHO -> {b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0} -> C:\Users\pklim\AppData\Roaming\FlashGetBHO\FlashGetBHO.dll [2012-11-01] (Trend Media Corporation Limited -> Trend Media Group) Toolbar: HKLM-x32 - PDFescape Desktop Toolbar - {A6D4ADF0-4C82-4712-B9B8-69EE9CF06462} - C:\Program Files (x86)\PDFescape Desktop\creator-ie-plugin.dll [2017-07-13] (PDFescape -> Red Software) Toolbar: HKLM-x32 - PDF Architect 5 Toolbar - {84F23192-A475-4038-B5C0-8584777F2DF4} - C:\Program Files (x86)\PDF Architect 5\creator\plugins\IEAddin\creator-ie-plugin.dll [2017-11-29] (pdfforge GmbH -> pdfforge GmbH) DPF: HKLM-x32 {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-06] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-02-06] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-06] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-02-06] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-06] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-02-06] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-06] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-02-06] (Microsoft Corporation -> Microsoft Corporation) Edge: ====== DownloadDir: C:\Users\pklim\Downloads FireFox: ======== FF DefaultProfile: u8gdxoyt.default-1489657581279-1554917434699 FF ProfilePath: C:\Users\pklim\AppData\Roaming\Mozilla\Firefox\Profiles\u8gdxoyt.default-1489657581279-1554917434699 [2020-02-11] FF Homepage: Mozilla\Firefox\Profiles\u8gdxoyt.default-1489657581279-1554917434699 -> google.pl FF Extension: (React Developer Tools) - C:\Users\pklim\AppData\Roaming\Mozilla\Firefox\Profiles\u8gdxoyt.default-1489657581279-1554917434699\Extensions\@react-devtools.xpi [2019-12-21] FF Extension: (Dark Reader) - C:\Users\pklim\AppData\Roaming\Mozilla\Firefox\Profiles\u8gdxoyt.default-1489657581279-1554917434699\Extensions\addon@darkreader.org.xpi [2020-02-06] FF Extension: (Cisco Webex Extension) - C:\Users\pklim\AppData\Roaming\Mozilla\Firefox\Profiles\u8gdxoyt.default-1489657581279-1554917434699\Extensions\ciscowebexstart1@cisco.com.xpi [2019-07-12] FF Extension: (Użyj Google Translate) - C:\Users\pklim\AppData\Roaming\Mozilla\Firefox\Profiles\u8gdxoyt.default-1489657581279-1554917434699\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2019-07-11] FF Extension: (Firefox Lightbeam) - C:\Users\pklim\AppData\Roaming\Mozilla\Firefox\Profiles\u8gdxoyt.default-1489657581279-1554917434699\Extensions\jid1-F9UJ2thwoAm5gQ@jetpack.xpi [2019-04-11] FF Extension: (AdBlock) - C:\Users\pklim\AppData\Roaming\Mozilla\Firefox\Profiles\u8gdxoyt.default-1489657581279-1554917434699\Extensions\jid1-NIfFY2CA8fy1tg@jetpack.xpi [2020-02-05] FF Extension: (DuckDuckGo Privacy Essentials) - C:\Users\pklim\AppData\Roaming\Mozilla\Firefox\Profiles\u8gdxoyt.default-1489657581279-1554917434699\Extensions\jid1-ZAdIEUB7XOzOJw@jetpack.xpi [2019-12-13] FF Extension: (LastPass: Free Password Manager) - C:\Users\pklim\AppData\Roaming\Mozilla\Firefox\Profiles\u8gdxoyt.default-1489657581279-1554917434699\Extensions\support@lastpass.com.xpi [2020-01-28] FF Extension: (Malwarebytes Browser Guard) - C:\Users\pklim\AppData\Roaming\Mozilla\Firefox\Profiles\u8gdxoyt.default-1489657581279-1554917434699\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2020-02-07] FF Extension: (HTML Validator) - C:\Users\pklim\AppData\Roaming\Mozilla\Firefox\Profiles\u8gdxoyt.default-1489657581279-1554917434699\Extensions\{3b56bcc7-54e5-44a2-9b44-66c3ef58c13e}.xpi [2019-04-11] FF Extension: (Stylish - Custom themes for any website) - C:\Users\pklim\AppData\Roaming\Mozilla\Firefox\Profiles\u8gdxoyt.default-1489657581279-1554917434699\Extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi [2019-04-11] FF Extension: (YouTube Classic) - C:\Users\pklim\AppData\Roaming\Mozilla\Firefox\Profiles\u8gdxoyt.default-1489657581279-1554917434699\Extensions\{6acd0f4d-ab79-4b79-9b28-8bde65ae355c}.xpi [2019-06-11] FF Extension: (Feedbro) - C:\Users\pklim\AppData\Roaming\Mozilla\Firefox\Profiles\u8gdxoyt.default-1489657581279-1554917434699\Extensions\{a9c2ad37-e940-4892-8dce-cd73c6cbbc0c}.xpi [2020-01-21] FF Extension: (Greasemonkey) - C:\Users\pklim\AppData\Roaming\Mozilla\Firefox\Profiles\u8gdxoyt.default-1489657581279-1554917434699\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2019-06-13] FF ProfilePath: C:\Users\pklim\AppData\Roaming\kompozer.net\KompoZer\Profiles\dttjkj5v.default [2016-06-19] FF ProfilePath: C:\Users\pklim\AppData\Roaming\KompoZer\Profiles\tdbpu2j8.default [2016-10-07] FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_321.dll [2020-01-21] (Adobe Inc. -> ) FF Plugin: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-10-20] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-10-20] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-12] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: PDF Architect 5 -> C:\Program Files\PDF Architect 5\np-previewer.dll [2017-11-29] (pdfforge GmbH -> pdfforge GmbH) FF Plugin: PDFescape Desktop -> C:\Program Files\PDFescape Desktop\np-previewer.dll [2017-07-13] (PDFescape -> Red Software) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_321.dll [2020-01-21] (Adobe Inc. -> ) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-12-06] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-01-12] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Brak podpisu cyfrowego] FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Brak podpisu cyfrowego] FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN) FF Plugin-x32: @webex.com/npatgpc -> C:\ProgramData\WebEx\npatgpc.dll [2016-05-30] (Cisco WebEx LLC -> Cisco WebEx LLC) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-12-02] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-1978625630-1779754910-779616976-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\pklim\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2019-09-25] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FF Plugin HKU\S-1-5-21-1978625630-1779754910-779616976-1001: SkypeForBusinessPlugin-16.2 -> C:\Users\pklim\AppData\Local\Microsoft\SkypeForBusinessPlugin\16.2.0.496\npGatewayNpapi.dll [2019-05-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin HKU\S-1-5-21-1978625630-1779754910-779616976-1001: SkypeForBusinessPlugin64-16.2 -> C:\Users\pklim\AppData\Local\Microsoft\SkypeForBusinessPlugin\16.2.0.496\npGatewayNpapi-x64.dll [2019-05-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin HKU\S-1-5-21-1978625630-1779754910-779616976-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-02112020005643758: @zoom.us/ZoomVideoPlugin -> C:\Users\pklim\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2019-09-25] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FF Plugin HKU\S-1-5-21-1978625630-1779754910-779616976-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-02112020005643758: SkypeForBusinessPlugin-16.2 -> C:\Users\pklim\AppData\Local\Microsoft\SkypeForBusinessPlugin\16.2.0.496\npGatewayNpapi.dll [2019-05-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin HKU\S-1-5-21-1978625630-1779754910-779616976-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-02112020005643758: SkypeForBusinessPlugin64-16.2 -> C:\Users\pklim\AppData\Local\Microsoft\SkypeForBusinessPlugin\16.2.0.496\npGatewayNpapi-x64.dll [2019-05-23] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default [2020-02-07] CHR Notifications: Default -> hxxps://codility.com; hxxps://forum.dobreprogramy.pl; hxxps://tegol.slack.com; hxxps://www.facebook.com CHR Extension: (Tłumacz Google) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2020-01-26] CHR Extension: (Prezentacje) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-27] CHR Extension: (Safari Books Download) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\anlpljppoinmpaedoilhjibjehpjhcob [2019-01-01] CHR Extension: (Dokumenty) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-27] CHR Extension: (Dysk Google) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-18] CHR Extension: (HoverReader) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgchppjofckmmlfpegeinpegcjmejnlk [2016-11-26] CHR Extension: (Angular Inspector) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\binbopkfgmcbckdejoocgogfjjpkhcho [2016-12-14] CHR Extension: (YouTube) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-18] CHR Extension: (uBlock Origin) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2020-02-07] CHR Extension: (Google Search) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-18] CHR Extension: (Arkusze) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-27] CHR Extension: (Word Online) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\fiombgjlkfpdpkbhfioofeeinbehmajg [2016-06-30] CHR Extension: (Reload with proxy) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjhcpnpblahnhdmalehachcdlnlggehd [2018-11-01] CHR Extension: (Dokumenty Google offline) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-01-22] CHR Extension: (Skype) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2017-12-02] CHR Extension: (AVG SafePrice | Porównania, promocje, kupony) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbckjcfnjmoiinpgddefodcighgikkgn [2020-01-22] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-16] CHR Extension: (Auto Refresh Plus) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohfjpkccecpdfkpmfocndhepolhljfhg [2019-04-10] CHR Extension: (Proxy Switcher and Manager) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\onnfghpihccifgojkpnnncpagjcdbjod [2019-04-29] CHR Extension: (Gmail) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-29] CHR Extension: (Chrome Media Router) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-01-26] CHR Extension: (RSS Feed Reader) - C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp [2020-01-26] CHR Profile: C:\Users\pklim\AppData\Local\Google\Chrome\User Data\Guest Profile [2018-11-01] CHR Profile: C:\Users\pklim\AppData\Local\Google\Chrome\User Data\System Profile [2018-11-01] CHR HKU\S-1-5-21-1978625630-1779754910-779616976-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn] CHR HKU\S-1-5-21-1978625630-1779754910-779616976-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-02112020005643758\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn] CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 almservice; C:\Program Files (x86)\Common Files\Siemens\sws\almsrv\almsrvx.exe [1200128 2009-04-23] (SIEMENS AG) [Brak podpisu cyfrowego] R2 Backupper Service; C:\Program Files (x86)\AOMEI Backupper\ABService.exe [56256 2016-09-26] (CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.) [Brak podpisu cyfrowego] R2 Bonjour Service; C:\Program Files (x86)\Xamarin\Bonjour\mDNSResponder.exe [401456 2017-03-19] (Xamarin Inc. -> Apple Inc.) S3 c2wts; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [5632 2019-03-19] (Microsoft Windows -> Microsoft Corporation) S3 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\80.0.3987.18\remoting_host.exe [73200 2019-12-17] (Google LLC -> Google Inc.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11129712 2020-01-28] (Microsoft Corporation -> Microsoft Corporation) R2 com.docker.service; C:\Program Files\Docker\Docker\com.docker.service [15912 2019-02-17] (Docker Inc -> Docker Inc.) R2 Connectify; C:\Program Files (x86)\Connectify\ConnectifyService.exe [487936 2014-03-04] (Connectify) [Brak podpisu cyfrowego] S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [774272 2018-06-13] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342456 2017-05-19] (FUTUREMARK INC -> Futuremark) S3 GoogleDesktopManager-051210-111108; C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe [30192 2018-03-16] (Google Inc -> Google) R2 HDDHealth; C:\Program Files (x86)\HDD Health\HDDHealthService.exe [17760 2013-03-08] (Aleksey Cherkasskiy -> ) [Brak podpisu cyfrowego] S3 HgClientService; C:\WINDOWS\system32\hgclientservice.dll [150528 2019-03-19] (Microsoft Windows -> Microsoft Corporation) R3 hns; C:\WINDOWS\System32\HostNetSvc.dll [3388928 2019-09-12] (Microsoft Windows -> Microsoft Corporation) S3 HwmRecordService; C:\Program Files (x86)\GIGABYTE\SIV\HwmRecordService.exe [128968 2019-08-26] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Brak podpisu cyfrowego] R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [365040 2017-10-20] (Intel(R) pGFX -> Intel Corporation) R2 IncrediBuild_Agent; C:\Program Files (x86)\IncrediBuild\BuildService.exe [1352672 2018-08-01] (XOREAX LTD -> IncrediBuild Software Ltd.) [Brak podpisu cyfrowego] R2 IncrediBuild_Coordinator; C:\Program Files (x86)\IncrediBuild\CoordService.exe [3468256 2018-08-01] (XOREAX LTD -> IncrediBuild Software Ltd.) [Brak podpisu cyfrowego] R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [21304 2017-09-28] (Microsoft Corporation -> Microsoft Corporation) R2 Jenkins; C:\Program Files (x86)\Jenkins\jenkins.exe [360448 2018-08-15] (CloudBees, Inc.) [Brak podpisu cyfrowego] R2 jetbrainsetw.192.0.20191016.60645; C:\Program Files (x86)\JetBrains\ETW Host\JetBrains.Etw.Collector.Host.exe [1909808 2019-10-16] (JetBrains s.r.o. -> JetBrains s.r.o) R2 LkCitadelServer; C:\WINDOWS\SysWOW64\lkcitdl.exe [688190 2006-06-19] (National Instruments, Inc.) [Brak podpisu cyfrowego] R2 lkClassAds; C:\WINDOWS\SysWOW64\lkads.exe [45056 2006-07-25] (National Instruments, Inc.) [Brak podpisu cyfrowego] R2 lkTimeSync; C:\WINDOWS\SysWOW64\lktsrv.exe [57344 2006-07-25] (National Instruments, Inc.) [Brak podpisu cyfrowego] R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6960640 2019-12-17] (Malwarebytes Inc -> Malwarebytes) S3 MsMpiLaunchSvc; C:\Program Files\Microsoft MPI\Bin\msmpilaunchsvc.exe [27760 2015-11-06] (AzureEngBuildCodeSign -> ) [Brak podpisu cyfrowego] R2 MSSQL$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [191064 2012-02-11] (Microsoft Corporation -> Microsoft Corporation) R2 MSSQL$SQLEXPRESS2014; C:\Program Files\Microsoft SQL Server\MSSQL12.SQLEXPRESS2014\MSSQL\Binn\sqlservr.exe [370368 2015-06-10] (Microsoft Corporation -> Microsoft Corporation) R2 MSSQLSERVER; C:\Program Files\Microsoft SQL Server\MSSQL14.MSSQLSERVER\MSSQL\Binn\sqlservr.exe [484944 2019-06-15] (Microsoft Corporation -> Microsoft Corporation) S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268968 2017-11-12] (Intel(R) Wireless Connectivity Solutions -> ) R2 NIDomainService; C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe [200704 2006-07-25] (National Instruments, Inc.) [Brak podpisu cyfrowego] S3 NILM License Manager; C:\Program Files (x86)\National Instruments\Shared\License Manager\Bin\lmgrd.exe [1007616 2006-06-27] (Macrovision Corporation) [Brak podpisu cyfrowego] R2 niSvcLoc; C:\WINDOWS\SysWOW64\nisvcloc.exe [49152 2006-02-06] (National Instruments Corp.) [Brak podpisu cyfrowego] R3 nvagent; C:\WINDOWS\System32\NvAgent.dll [41992 2019-03-19] (Microsoft Windows -> Microsoft Corporation) R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation) S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation) S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv2.exe [15872 2016-11-25] ( ) [Brak podpisu cyfrowego] R2 OpenVPNServiceInteractive; C:\Program Files\OpenVPN\bin\openvpnserv.exe [73856 2017-09-26] (OpenVPN Technologies, Inc. -> The OpenVPN Project) S3 OpenVPNServiceLegacy; C:\Program Files\OpenVPN\bin\openvpnserv.exe [73856 2017-09-26] (OpenVPN Technologies, Inc. -> The OpenVPN Project) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2130440 2016-09-14] (Electronic Arts, Inc. -> Electronic Arts) R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2195472 2016-09-14] (Electronic Arts, Inc. -> Electronic Arts) S3 ose; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [203296 2016-03-19] (Microsoft Corporation -> Microsoft Corporation) [Brak podpisu cyfrowego] S3 PDF Architect 5; C:\Program Files\PDF Architect 5\ws.exe [2832560 2017-11-29] (pdfforge GmbH -> pdfforge GmbH) R2 PDF Architect 5 Creator; C:\Program Files\PDF Architect 5\creator\common\creator-ws.exe [874680 2017-11-29] (pdfforge GmbH -> pdfforge GmbH) R2 PDF Architect 5 Manager; C:\Program Files (x86)\PDF Architect 5 Manager\PDF Architect 5\Architect Manager.exe [985848 2017-05-16] (pdfforge GmbH -> © pdfforge GmbH.) S3 PDFescape Desktop; C:\Program Files\PDFescape Desktop\ws.exe [2343728 2017-07-13] (PDFescape -> Red Software) R2 PDFescape Desktop Creator; C:\Program Files\PDFescape Desktop\creator-ws.exe [757552 2017-07-13] (PDFescape -> Red Software) S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.) R2 RunSwUSB; C:\Windows\runSW.exe [48856 2015-11-05] (Realtek Semiconductor Corp -> ) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5796168 2019-09-12] (Microsoft Windows Publisher -> Microsoft Corporation) S4 SQLAgent$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [597080 2012-02-11] (Microsoft Corporation -> Microsoft Corporation) S4 SQLAgent$SQLEXPRESS2014; C:\Program Files\Microsoft SQL Server\MSSQL12.SQLEXPRESS2014\MSSQL\Binn\SQLAGENT.EXE [613056 2015-06-10] (Microsoft Corporation -> Microsoft Corporation) S3 SQLSERVERAGENT; C:\Program Files\Microsoft SQL Server\MSSQL14.MSSQLSERVER\MSSQL\Binn\SQLAGENT.EXE [578640 2019-06-15] (Microsoft Corporation -> Microsoft Corporation) R2 SQLTELEMETRY; C:\Program Files\Microsoft SQL Server\MSSQL14.MSSQLSERVER\MSSQL\Binn\sqlceip.exe [252704 2019-06-15] (Microsoft Corporation -> Microsoft Corporation) S3 sshd; C:\WINDOWS\System32\OpenSSH\sshd.exe [974848 2019-08-21] (Microsoft Windows -> ) S3 SshdBroker; C:\WINDOWS\System32\SshdBroker.dll [290816 2019-10-04] (Microsoft Windows -> Microsoft Corporation) R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2018-12-12] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11644656 2018-08-13] (TeamViewer GmbH -> TeamViewer GmbH) R3 vmcompute; C:\WINDOWS\system32\vmcompute.exe [3498512 2019-10-04] (Microsoft Windows -> Microsoft Corporation) S3 VSStandardCollectorService150; C:\Program Files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe [147392 2019-04-30] (Microsoft Corporation -> Microsoft Corporation) S3 wampapache64; C:\wamp64\bin\apache\apache2.4.17\bin\httpd.exe [29184 2015-10-11] (Apache Software Foundation) [Brak podpisu cyfrowego] S3 wampmysqld64; C:\wamp64\bin\mysql\mysql5.7.9\bin\mysqld.exe [38587904 2015-10-12] () [Brak podpisu cyfrowego] S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.233\WsAppService.exe [493792 2017-11-07] (Wondershare Technology Co.,Ltd -> Wondershare) R2 WsDrvInst; C:\Program Files (x86)\Wondershare\drfone\Library\DriverInstaller\DriverInstall.exe [120096 2017-11-08] (Wondershare Technology Co.,Ltd -> Wondershare) R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [1764296 2017-12-13] (Wacom Technology Corporation -> Wacom Technology, Corp.) R2 XTU3SERVICE; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe [18736 2018-05-17] (Intel(R) Extreme Tuning Utility -> Intel(R) Corporation) R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3758760 2017-11-12] (Intel(R) Wireless Connectivity Solutions -> Intel® Corporation) R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R0 ambakdrv; C:\WINDOWS\System32\ambakdrv.sys [36024 2016-09-26] (CHENGDU AOMEI Tech Co., Ltd. -> ) [Brak podpisu cyfrowego] R3 AmdTools64; C:\WINDOWS\System32\drivers\AmdTools64.sys [58216 2018-03-23] (Advanced Micro Devices Inc. -> Advanced Micro Devices) R2 ammntdrv; C:\WINDOWS\system32\ammntdrv.sys [156856 2016-09-26] (CHENGDU AOMEI Tech Co., Ltd. -> ) [Brak podpisu cyfrowego] S3 ampa; C:\WINDOWS\system32\ampa.sys [19568 2015-11-10] (ChengDu AoMei Tech Co., Ltd -> ) [Brak podpisu cyfrowego] R2 amwrtdrv; C:\WINDOWS\system32\amwrtdrv.sys [23224 2016-09-26] (CHENGDU AOMEI Tech Co., Ltd. -> ) [Brak podpisu cyfrowego] R3 athr; C:\WINDOWS\System32\drivers\athwnx.sys [4233728 2019-03-19] (Microsoft Windows -> Qualcomm Atheros Communications, Inc.) R3 athur; C:\WINDOWS\System32\drivers\athuw8x.sys [2919936 2013-06-02] (Microsoft Windows Hardware Compatibility Publisher -> Qualcomm Atheros Communications, Inc.) S3 BstkDrv; C:\Program Files (x86)\BlueStacks\BstkDrv.sys [269408 2018-06-21] (Bluestack Systems, Inc. -> Bluestack System Inc. ) R1 cnnctfy3; C:\WINDOWS\system32\DRIVERS\cnnctfy3.sys [35352 2018-03-17] (Connectify -> Connectify) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131904 2018-12-12] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R1 EneIo; C:\WINDOWS\system32\drivers\ene.sys [17624 2019-05-22] (Microsoft Windows Hardware Compatibility Publisher -> ) S3 epmntdrv; C:\WINDOWS\system32\epmntdrv.sys [24056 2016-01-14] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Brak podpisu cyfrowego] R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153312 2020-02-08] (Malwarebytes Corporation -> Malwarebytes) S3 EuGdiDrv; C:\WINDOWS\system32\EuGdiDrv.sys [10848 2016-07-11] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Brak podpisu cyfrowego] R3 gdrv2; C:\WINDOWS\gdrv2.sys [32600 2019-12-16] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.) R0 hotcore3; C:\WINDOWS\System32\DRIVERS\hotcore3.sys [33968 2015-08-21] (Paragon Software GmbH -> Paragon Software Group) R3 hvsocketcontrol; C:\WINDOWS\system32\drivers\hvsocketcontrol.sys [36368 2019-03-19] (Microsoft Windows -> Microsoft Corporation) R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2019-12-27] (Martin Malik - REALiX -> REALiX(tm)) R2 iocbios2; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [37104 2018-05-09] (Intel Corporation -> Intel Corporation) S3 l2bridge; C:\WINDOWS\System32\drivers\l2bridge.sys [58384 2019-03-19] (Microsoft Windows -> Microsoft Corporation) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [214496 2020-02-08] (Malwarebytes Inc -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-12-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [226448 2020-02-11] (Malwarebytes Inc -> Malwarebytes) R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [73584 2020-02-11] (Malwarebytes Corporation -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-02-11] (Malwarebytes Inc -> Malwarebytes) R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [119960 2020-02-11] (Malwarebytes Inc -> Malwarebytes) R2 NPF; C:\WINDOWS\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.) R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_c1a085cc86772d3f\nvlddmkm.sys [17544792 2018-03-25] (NVIDIA Corporation -> NVIDIA Corporation) S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [31168 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [59240 2017-12-15] (NVIDIA Corporation -> NVIDIA Corporation) R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [58816 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) S3 pccsmcfd; C:\WINDOWS\system32\DRIVERS\pccsmcfdx64.sys [26112 2012-06-11] (Microsoft Windows Hardware Compatibility Publisher -> Nokia) S3 pcip; C:\WINDOWS\System32\drivers\pcip.sys [62264 2019-03-19] (Microsoft Windows -> Microsoft Corporation) R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2013-09-30] (MiniTool Solution Ltd -> ) S3 pwdspio; C:\windows\system32\pwdspio.sys [12504 2013-09-30] (MiniTool Solution Ltd -> ) S3 ramparser; C:\WINDOWS\System32\drivers\ramparser.sys [41784 2019-03-19] (Microsoft Windows -> Microsoft Corporation) S4 RsFx0200; C:\WINDOWS\System32\DRIVERS\RsFx0200.sys [334936 2012-02-11] (Microsoft Corporation -> Microsoft Corporation) S4 RsFx0300; C:\WINDOWS\System32\DRIVERS\RsFx0300.sys [247488 2014-02-21] (Microsoft Corporation -> Microsoft Corporation) S4 RsFx0501; C:\WINDOWS\System32\DRIVERS\RsFx0501.sys [261784 2019-06-15] (Microsoft Corporation -> Microsoft Corporation) R3 RTL8023x64; C:\WINDOWS\System32\drivers\Rtnic64.sys [51712 2019-03-19] (Microsoft Windows -> Realtek Semiconductor Corporation ) R3 RtlWlanu; C:\WINDOWS\System32\drivers\rtwlanu.sys [8206848 2019-03-19] (Microsoft Windows -> Realtek Semiconductor Corporation ) R3 SensorsSimulatorDriver; C:\WINDOWS\System32\drivers\WUDFRd.sys [297984 2019-03-19] (Microsoft Windows -> Microsoft Corporation) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167232 2018-12-12] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R3 Synth3dVsp; C:\WINDOWS\System32\drivers\synth3dvsp.sys [107520 2019-03-19] (Microsoft Windows -> Microsoft Corporation) R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project) S3 tap0901cn; C:\WINDOWS\System32\drivers\tap0901cn.sys [39616 2014-12-29] (Connectify -> Connectify) R1 UimBus; C:\WINDOWS\System32\drivers\UimBus.sys [102576 2015-08-21] (Paragon Software GmbH -> ) R1 Uim_DEVIM; C:\WINDOWS\System32\drivers\uim_devim.sys [25904 2015-08-21] (Paragon Software GmbH -> ) R1 Uim_IM; C:\WINDOWS\System32\drivers\uim_im.sys [701232 2015-08-21] (Paragon Software GmbH -> ) R3 USBPcap; C:\WINDOWS\system32\DRIVERS\USBPcap.sys [50224 2017-08-21] (Tomasz Moń -> USBPcap) S3 VBoxNetAdp; C:\WINDOWS\System32\drivers\VBoxNetAdp6.sys [200832 2018-01-15] (Oracle Corporation -> Oracle Corporation) S3 VBoxUSB; C:\WINDOWS\System32\Drivers\VBoxUSB.sys [135824 2016-09-12] (Oracle Corporation -> Oracle Corporation) R1 VfpExt; C:\WINDOWS\System32\drivers\vfpext.sys [1410560 2019-11-08] (Microsoft Windows -> Microsoft Corporation) R0 VMSNPXY; C:\WINDOWS\System32\drivers\VmsProxyHNic.sys [39736 2019-11-13] (Microsoft Windows -> Microsoft Corporation) R3 VMSNPXYMP; C:\WINDOWS\System32\drivers\VmsProxyHNic.sys [39736 2019-11-13] (Microsoft Windows -> Microsoft Corporation) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 XtuAcpiDriver; C:\WINDOWS\System32\drivers\XtuAcpiDriver.sys [53912 2018-05-11] (Intel Corporation -> Intel Corporation) S3 cpuz149; \??\C:\WINDOWS\temp\cpuz149\cpuz149_x64.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) NETSVC: HgClientService -> C:\Windows\system32\hgclientservice.dll (Microsoft Corporation) NETSVC: nvagent -> C:\Windows\System32\NvAgent.dll (Microsoft Corporation) NETSVC: hns -> C:\Windows\System32\HostNetSvc.dll (Microsoft Corporation) ==================== Jeden miesiąc (utworzone) =================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2020-02-11 01:02 - 2020-02-11 01:04 - 000000000 ____D C:\FRST 2020-02-11 00:57 - 2020-02-11 00:57 - 000226448 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys 2020-02-11 00:57 - 2020-02-11 00:57 - 000119960 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys 2020-02-11 00:57 - 2020-02-11 00:57 - 000073584 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys 2020-02-11 00:57 - 2020-02-11 00:57 - 000000000 ___HD C:\OneDriveTemp 2020-02-11 00:56 - 2020-02-11 00:56 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2020-02-08 20:52 - 2020-02-08 20:52 - 000214496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys 2020-02-08 10:56 - 2020-02-11 00:55 - 000005198 _____ C:\Users\pklim\Desktop\ogłoszenie.txt 2020-01-31 13:19 - 2020-01-31 13:19 - 000001100 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++.lnk 2020-01-29 14:29 - 2020-02-09 13:29 - 000000136 _____ C:\Users\pklim\Desktop\Golenie.txt 2020-01-23 14:12 - 2020-01-23 14:12 - 000000000 ____D C:\WINDOWS\system32\Tasks\Apple 2020-01-23 14:12 - 2020-01-23 14:12 - 000000000 ____D C:\Program Files (x86)\Apple Software Update 2020-01-22 17:51 - 2020-01-25 23:53 - 000000000 ____D C:\Program Files\Mozilla Firefox 2020-01-20 10:54 - 2020-01-20 10:54 - 000004058 _____ C:\WINDOWS\system32\Tasks\WpsExternal_pklim_20200120105423 2020-01-20 10:54 - 2020-01-20 10:54 - 000000000 ____D C:\Users\pklim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WPS Office 2020-01-16 08:47 - 2020-01-16 08:47 - 025900032 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 022627840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 019849216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 018020352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 009928208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2020-01-16 08:47 - 2020-01-16 08:47 - 008012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 007754752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 007600448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 007016448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 006520480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 005913600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 003729408 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2020-01-16 08:47 - 2020-01-16 08:47 - 003703296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 003263488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 002870784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 002801152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2020-01-16 08:47 - 2020-01-16 08:47 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2020-01-16 08:47 - 2020-01-16 08:47 - 002561536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 002494464 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 002473976 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 002305536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 001985928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 001697280 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 001664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 001655880 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 001610752 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 001399096 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2020-01-16 08:47 - 2020-01-16 08:47 - 001330952 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 001106944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 001098720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 001072952 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2020-01-16 08:47 - 2020-01-16 08:47 - 001051664 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 001020032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000921600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000852480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000851456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe 2020-01-16 08:47 - 2020-01-16 08:47 - 000842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000689664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000678712 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000670720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe 2020-01-16 08:47 - 2020-01-16 08:47 - 000646144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000571392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiaaut.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2020-01-16 08:47 - 2020-01-16 08:47 - 000542496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000432256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe 2020-01-16 08:47 - 2020-01-16 08:47 - 000400696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys 2020-01-16 08:47 - 2020-01-16 08:47 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000363840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe 2020-01-16 08:47 - 2020-01-16 08:47 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys 2020-01-16 08:47 - 2020-01-16 08:47 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV1.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000292056 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationVdev.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe 2020-01-16 08:47 - 2020-01-16 08:47 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\tssrvlic.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe 2020-01-16 08:47 - 2020-01-16 08:47 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti_ci.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000162696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe 2020-01-16 08:47 - 2020-01-16 08:47 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiadss.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tsusbhub.sys 2020-01-16 08:47 - 2020-01-16 08:47 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000127520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiadss.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000089536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterpriseresourcemanager.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe 2020-01-16 08:47 - 2020-01-16 08:47 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enterpriseresourcemanager.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\LSCSHostPolicy.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\lstelemetry.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiatrace.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiatrace.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll 2020-01-16 08:47 - 2020-01-16 08:47 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll 2020-01-16 08:40 - 2019-12-10 06:15 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe 2020-01-16 08:40 - 2019-12-10 05:59 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2020-02-11 01:02 - 2019-08-21 08:11 - 002182084 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2020-02-11 01:02 - 2019-03-19 13:24 - 000861074 _____ C:\WINDOWS\system32\perfh015.dat 2020-02-11 01:02 - 2019-03-19 13:24 - 000184542 _____ C:\WINDOWS\system32\perfc015.dat 2020-02-11 01:02 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF 2020-02-11 00:58 - 2016-08-05 09:43 - 000000000 ____D C:\ProgramData\NVIDIA 2020-02-11 00:57 - 2019-12-13 15:21 - 000000000 ____D C:\Users\pklim\AppData\LocalLow\IGDump 2020-02-11 00:57 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2020-02-11 00:57 - 2018-09-16 13:27 - 000000000 ____D C:\Program Files (x86)\Jenkins 2020-02-11 00:57 - 2017-10-03 11:01 - 000000000 ____D C:\Users\pklim\AppData\Local\PasswordSafe 2020-02-11 00:57 - 2016-11-17 19:41 - 000000000 ____D C:\Users\pklim\AppData\LocalLow\Mozilla 2020-02-11 00:57 - 2015-12-03 13:10 - 000000000 ___RD C:\Users\pklim\OneDrive 2020-02-11 00:56 - 2019-08-21 08:52 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2020-02-11 00:56 - 2019-08-21 07:51 - 000001134 _____ C:\WINDOWS\system32\config\VSMIDK 2020-02-11 00:56 - 2019-03-19 05:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2020-02-11 00:56 - 2018-11-20 07:11 - 000000000 ____D C:\ProgramData\DockerDesktop 2020-02-11 00:56 - 2018-01-05 20:27 - 000000000 ____D C:\Users\pklim\AppData\Roaming\WTablet 2020-02-11 00:56 - 2017-05-01 12:53 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2020-02-11 00:56 - 2016-12-03 18:05 - 000000000 ____D C:\Program Files (x86)\AOMEI Backupper 2020-02-11 00:56 - 2016-02-11 14:27 - 000000000 ____D C:\Program Files (x86)\TeamViewer 2020-02-11 00:56 - 2016-01-16 12:23 - 000000000 ____D C:\Users\pklim\AppData\Local\TSVNCache 2020-02-11 00:56 - 2016-01-15 16:30 - 000000512 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics 2020-02-11 00:56 - 2015-12-03 13:09 - 000000000 __SHD C:\Users\pklim\IntelGraphicsProfiles 2020-02-11 00:55 - 2016-12-19 12:10 - 000000000 ____D C:\Users\pklim\AppData\Local\TortoiseGit 2020-02-11 00:44 - 2016-01-15 15:40 - 000000000 ____D C:\Users\pklim\AppData\Local\ElevatedDiagnostics 2020-02-11 00:33 - 2019-12-16 14:40 - 000537610 _____ C:\WINDOWS\ntbtlog.txt 2020-02-11 00:23 - 2019-12-16 14:40 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job 2020-02-10 18:11 - 2019-08-21 07:51 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2020-02-10 17:51 - 2019-12-12 15:25 - 000000000 ____D C:\Users\pklim\AppData\Local\cache 2020-02-10 08:03 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps 2020-02-10 08:03 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\AppReadiness 2020-02-09 11:59 - 2015-12-06 15:00 - 000000000 ____D C:\Users\pklim\OneDrive\Dokumenty\Biblioteka calibre 2020-02-09 11:51 - 2015-12-09 19:30 - 000000000 ____D C:\Users\pklim\AppData\Local\CrashDumps 2020-02-09 09:55 - 2019-08-21 07:59 - 000000000 ____D C:\Users\SQLTELEMETRY 2020-02-09 09:55 - 2019-08-21 07:59 - 000000000 ____D C:\Users\MSSQLSERVER 2020-02-09 09:55 - 2019-08-21 07:59 - 000000000 ____D C:\Users\MSSQL$SQLEXPRESS2014 2020-02-09 09:55 - 2019-08-21 07:59 - 000000000 ____D C:\Users\MSSQL$SQLEXPRESS 2020-02-08 20:52 - 2019-12-17 17:09 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys 2020-02-06 18:20 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2020-02-06 15:21 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2020-02-06 15:19 - 2016-04-04 19:22 - 000000000 ____D C:\Program Files\Microsoft Office 2020-02-05 01:25 - 2019-08-21 08:52 - 000003570 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2020-02-05 01:25 - 2019-08-21 08:52 - 000003476 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore1d3ece2f178ad8a 2020-02-04 17:52 - 2019-08-21 08:52 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1978625630-1779754910-779616976-1001 2020-02-04 17:52 - 2019-08-21 07:59 - 000002452 _____ C:\Users\pklim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2020-02-04 11:47 - 2019-08-21 08:52 - 000003860 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-1978625630-1779754910-779616976-1001UA1d25859a26bd6cc 2020-02-04 11:47 - 2019-08-21 08:52 - 000003592 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-1978625630-1779754910-779616976-1001Core1d25859a26818bf 2020-01-31 13:19 - 2016-06-19 10:13 - 000000000 ____D C:\Users\pklim\AppData\Roaming\Notepad++ 2020-01-31 13:19 - 2016-06-19 10:13 - 000000000 ____D C:\Program Files (x86)\Notepad++ 2020-01-26 14:55 - 2015-12-13 11:43 - 000000000 ____D C:\Users\pklim\AppData\Roaming\BESTplayer 2020-01-25 23:53 - 2019-04-10 18:29 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2020-01-23 14:12 - 2019-11-24 14:35 - 000002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk 2020-01-23 08:52 - 2015-12-18 22:51 - 000002307 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2020-01-23 08:51 - 2019-04-10 18:29 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2020-01-21 22:11 - 2019-08-21 08:52 - 000004688 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player NPAPI Notifier 2020-01-21 22:11 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed 2020-01-21 22:11 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Macromed 2020-01-21 22:11 - 2015-12-04 14:34 - 000000000 ____D C:\Users\pklim\AppData\Local\Adobe 2020-01-20 10:54 - 2019-08-21 08:52 - 000003644 _____ C:\WINDOWS\system32\Tasks\WpsUpdateTask_pklim 2020-01-18 19:28 - 2018-06-19 11:25 - 000000000 ____D C:\ProgramData\Packages 2020-01-17 12:07 - 2015-12-18 22:51 - 000000000 ____D C:\Program Files (x86)\Google 2020-01-17 12:00 - 2019-08-21 07:51 - 000550352 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2020-01-16 12:27 - 2019-08-21 07:39 - 000000000 ____D C:\Program Files\Hyper-V 2020-01-16 12:27 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\system32\UNP 2020-01-16 12:27 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SystemResources 2020-01-16 12:27 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ShellExperiences 2020-01-16 12:27 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\bcastdvr 2020-01-16 08:58 - 2015-12-04 12:21 - 000000000 ____D C:\WINDOWS\system32\MRT 2020-01-16 08:49 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\CbsTemp 2020-01-16 08:49 - 2015-12-04 12:21 - 120202352 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe ==================== Pliki w katalogu głównym wybranych folderów ======== 2018-05-16 07:55 - 2018-05-16 07:55 - 007649280 _____ () C:\Program Files (x86)\GUTCF8E.tmp 2018-02-21 00:07 - 2018-02-21 01:27 - 000000600 _____ () C:\Users\pklim\AppData\Roaming\winscp.rnd 2018-02-21 01:27 - 2018-08-28 16:13 - 000000600 _____ () C:\Users\pklim\AppData\Local\PUTTY.RND 2016-08-02 18:10 - 2018-02-19 20:23 - 000007668 _____ () C:\Users\pklim\AppData\Local\Resmon.ResmonCfg 2017-03-20 18:35 - 2017-03-20 18:35 - 000000552 _____ () C:\Users\pklim\AppData\Local\TroubleshooterConfig.json ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================