Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 10-04-2021 Uruchomiony przez Konrad Paluszek (administrator) DESKTOP-C3N1C6N (11-04-2021 10:44:30) Uruchomiony z F:\Instalki\Farbar Recovery Scan Tool Załadowane profile: Konrad Paluszek Platform: Windows 10 Pro Wersja 20H2 19042.906 (X64) Język: Polski (Polska) Domyślna przeglądarka: Chrome Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) () [Brak podpisu cyfrowego] C:\Program Files (x86)\ViewPowerMini1.00SP2\upsTray.exe (Acresso) [Brak podpisu cyfrowego] C:\Program Files (x86)\ViewPowerMini1.00SP2\ViewPowerMini.exe (Corel Corporation -> WinZip Computing) C:\Program Files\WinZip\WzPreloader.exe (Esumsoft -> Esumsoft) C:\Program Files (x86)\POP Peeper\POPPeeper.exe (Gary Kramlich -> The Pidgin developer community) C:\Program Files (x86)\Pidgin\pidgin.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <15> (HP) [Brak podpisu cyfrowego] C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe (hxxp://www.emule-project.net) [Brak podpisu cyfrowego] C:\Program Files (x86)\eMule\emule.exe (ICEpower a/s -> ICEpower) C:\Windows\System32\ICEsoundService64.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_c52b34f1b30918c5\RstMwService.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation) [Brak podpisu cyfrowego] [Plik w użyciu] C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.521.3093.0_x64__8wekyb3d8bbwe\GameBar.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.521.3093.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\NisSrv.exe (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2> (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_3784df9edffd3314\Display.NvContainer\NVDisplay.Container.exe <2> (O&O Software GmbH -> O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodag.exe (O&O Software GmbH -> O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodtray.exe (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe <6> (Sun Microsystems, Inc. -> Sun Microsystems, Inc.) C:\Program Files (x86)\ViewPowerMini1.00SP2\jre\bin\javaw.exe (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.231\WsAppService.exe (www.dvbdream.org) [Brak podpisu cyfrowego] C:\dvbdream\dvbdream.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [OODefragTray] => C:\Program Files\OO Software\Defrag\oodtray.exe [5128552 2020-10-23] (O&O Software GmbH -> O&O Software GmbH) HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe" HKLM-x32\...\Run: [] => [X] HKLM-x32\...\RunOnce: [GrpConv] => grpconv -o HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA HKU\S-1-5-21-1885980802-37223428-1519408807-500\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [109945728 2021-02-12] (Skype Software Sarl -> Skype Technologies S.A.) HKU\S-1-5-21-1885980802-37223428-1519408807-500\...\Run: [POP Peeper] => C:\Program Files (x86)\POP Peeper\POPPeeper.exe [3427200 2020-10-12] (Esumsoft -> Esumsoft) HKU\S-1-5-21-1885980802-37223428-1519408807-500\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [33169992 2021-03-18] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-1885980802-37223428-1519408807-500\...\Run: [eMuleAutoStart] => C:\Program Files (x86)\eMule\emule.exe [5758976 2010-04-07] (hxxp://www.emule-project.net) [Brak podpisu cyfrowego] HKU\S-1-5-21-1885980802-37223428-1519408807-500\...\Policies\Explorer: [NoRecentDocsNetHood] 1 HKU\S-1-5-21-1885980802-37223428-1519408807-500\...\Policies\Explorer: [NoRecentDocsHistory] 1 HKU\S-1-5-21-1885980802-37223428-1519408807-500\...\Policies\Explorer: [NoRecentDocsMenu] 1 HKU\S-1-5-21-1885980802-37223428-1519408807-500\...\Policies\Explorer: [NoSecurityTab] 1 HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [55432 2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc) HKLM\...\Print\Monitors\HP Standard TCP/IP Port: C:\Windows\system32\HpTcpMon.dll [331264 2009-09-16] (Hewlett Packard) [Brak podpisu cyfrowego] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\89.0.4389.114\Installer\chrmstp.exe [2021-03-31] (Google LLC -> Google LLC) IFEO\dismHost.exe: [Debugger] * IFEO\EOSNOTIFY.EXE: [Debugger] * IFEO\InstallAgent.exe: [Debugger] * IFEO\MusNotification.exe: [Debugger] * IFEO\MUSNOTIFICATIONUX.EXE: [Debugger] * IFEO\remsh.exe: [Debugger] * IFEO\SIHClient.exe: [Debugger] * IFEO\UpdateAssistant.exe: [Debugger] * IFEO\UPFC.EXE: [Debugger] * IFEO\UsoClient.exe: [Debugger] * IFEO\WaaSMedic.exe: [Debugger] * IFEO\WaasMedicAgent.exe: [Debugger] * IFEO\Windows10Upgrade.exe: [Debugger] * IFEO\WINDOWS10UPGRADERAPP.EXE: [Debugger] * Startup: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\pidgin.lnk [2021-02-24] ShortcutTarget: pidgin.lnk -> C:\Program Files (x86)\Pidgin\pidgin.exe (Gary Kramlich -> The Pidgin developer community) Startup: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sidebar498.lnk [2021-04-11] ShortcutTarget: Sidebar498.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation) [Brak podpisu cyfrowego] [Plik w użyciu] Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled [2020-10-21] () Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\O&O Defrag Tray.lnk [2020-11-30] ShortcutTarget: O&O Defrag Tray.lnk -> C:\Windows\Installer\{2CB92DA5-CD07-42D0-A588-A77CC2906821}\app_icon.exe () [Brak podpisu cyfrowego] Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ViewPowerMini.lnk [2019-05-21] ShortcutTarget: ViewPowerMini.lnk -> C:\Program Files (x86)\ViewPowerMini1.00SP2\ViewPowerMini.exe (Acresso) [Brak podpisu cyfrowego] GroupPolicy: Ograniczenia ? <==== UWAGA GroupPolicy\User: Ograniczenia ? <==== UWAGA Policies: C:\ProgramData\NTUSER.pol: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {08AFA2B1-999F-47E2-81BB-2033EFCD951C} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-03-26] (NVIDIA Corporation -> NVIDIA Corporation) Task: {0A0606E5-07B2-4B22-904E-4626C260EF8D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [27616328 2021-03-18] (Piriform Software Ltd -> Piriform Software Ltd) Task: {16C4A0A7-4894-462D-BC3E-8346E339D7A1} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5255104 2021-03-31] (Microsoft Corporation -> Microsoft Corporation) Task: {2CD01D7D-9D2C-4561-8204-9DFD9B894C22} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-11] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {2D5C712C-2B81-4A15-9DD2-A55EE0690630} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-11] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {38EF673D-3DDF-457F-BC76-65A2211F4E1C} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-03-26] (NVIDIA Corporation -> NVIDIA Corporation) Task: {3D28B182-45AA-4523-BDA0-B72AFBC906AE} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\8.4.0\Scheduler.exe [156696 2021-03-29] (IObit CO., LTD -> IObit) Task: {40E8982C-D6BE-43B6-A9BB-107CF7F3C2D6} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5255104 2021-03-31] (Microsoft Corporation -> Microsoft Corporation) Task: {46536B58-547C-48D4-A965-B5A6A2CD5960} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2021-03-26] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {4FBB5468-9D30-43A9-BE4F-1011DE1DA830} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-03-18] (Piriform Software Ltd -> Piriform) Task: {5451B381-4561-49E2-80B1-AD0C23618182} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-11] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {5C15B4F9-E4B9-4E60-9AA4-13BF28102D19} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23248760 2021-04-01] (Microsoft Corporation -> Microsoft Corporation) Task: {67C99161-E4AD-4B4D-B28C-377099E10A77} - System32\Tasks\SU_AutoUpdate => C:\Program Files (x86)\IObit\Software Updater\SoftwareUpdater.exe [4513224 2021-01-19] (IObit Information Technology -> IObit) Task: {75DF2684-FF6D-42EA-97A2-D5B6573A035B} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Nero\Nero Apps\NeroInfo\NeroInfo.exe [3873560 2021-01-09] (Nero AG -> Nero AG) Task: {763C037E-B8F3-465E-BE56-4CEF15870843} - \Microsoft\Windows\Google\GoogleUpdateTaskMachineRO -> Brak pliku <==== UWAGA Task: {7D368C2C-D314-4DC7-B816-7724679E544B} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302128 2021-03-26] (NVIDIA Corporation -> NVIDIA Corporation) Task: {7FAEEBCC-E25D-4720-96EA-3F7E3BF84099} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\8.4.0\AutoUpdate.exe [2285592 2021-03-31] (IObit CO., LTD -> IObit) Task: {8CE20C22-8EBA-4C09-80C1-48EF4E5F9A95} - System32\Tasks\CCleanerClean => C:\Program Files\CCleaner\CCleaner.exe [27616328 2021-03-18] (Piriform Software Ltd -> Piriform Software Ltd) Task: {97AC5164-8587-4AF3-9CB3-FC0E093CF576} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-10-30] (Google Inc -> Google LLC) Task: {9DFA200F-6429-4193-A137-24C541578355} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-03-26] (NVIDIA Corporation -> NVIDIA Corporation) Task: {9FB8A6CE-7CAC-4F72-A901-167D97F24B09} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [569416 2016-02-23] (Apple Inc. -> Apple Inc.) Task: {A897FA42-E067-4DEA-A21E-0049B3398236} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-03-26] (NVIDIA Corporation -> NVIDIA Corporation) Task: {B1F7CD80-1641-437E-AB3A-7E8E15F8B5E9} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141168 2021-04-03] (Microsoft Corporation -> Microsoft Corporation) Task: {BBC7BF1B-A3C3-44FA-B144-43B91D45AF66} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-10-30] (Google Inc -> Google LLC) Task: {BCCC1D77-8655-4560-AE01-C0BA40BE4A11} - System32\Tasks\Software Updater SkipUAC(Konrad Paluszek) => C:\Program Files (x86)\IObit\Software Updater\SoftwareUpdater.exe [4513224 2021-01-19] (IObit Information Technology -> IObit) <==== UWAGA Task: {C0A6871F-B162-4CE5-95A7-DE97C2BE3564} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-11] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {CC7A329E-0B5F-4AAE-A889-56D8BB700120} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2021-03-26] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log Task: {CF42D2BF-D6AA-4BF9-8B6A-9C2266D33C0C} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906480 2021-03-26] (NVIDIA Corporation -> NVIDIA Corporation) Task: {D15C259B-FB06-44E7-BEDB-B707A0F5DDF3} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141168 2021-04-03] (Microsoft Corporation -> Microsoft Corporation) Task: {D307B2B6-3007-4C03-892B-A38FD0BC2F5A} - System32\Tasks\Driver Booster SkipUAC (Konrad Paluszek) => C:\Program Files (x86)\IObit\Driver Booster\8.4.0\DriverBooster.exe [8242200 2021-04-02] (IObit CO., LTD -> IObit) [Brak podpisu cyfrowego] Task: {D58126C7-0B57-4E8E-B505-BFFC5C723437} - System32\Tasks\Software Updater Scheduler => C:\Program Files (x86)\IObit\Software Updater\SUInit.exe [1789200 2020-06-30] (IObit Information Technology -> IObit Software updater) <==== UWAGA Task: {D875F3FD-CF6A-43D6-8609-3CFF2D9025A4} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe [918288 2020-04-22] (Intel(R) Trust Services -> Intel(R) Corporation) Task: {DF290DED-F0B4-4DE1-B521-EDC53E29BA93} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646896 2021-03-26] (NVIDIA Corporation -> NVIDIA Corporation) Task: {E2699DE5-784B-4C5F-8314-F1DD456D6566} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906480 2021-03-26] (NVIDIA Corporation -> NVIDIA Corporation) Task: {F07DF7F3-88D0-43F7-A8A7-E2CAA1E5C4EC} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23248760 2021-04-01] (Microsoft Corporation -> Microsoft Corporation) Task: {FF08C86E-A9C1-4A55-9D52-04D4080FEC0F} - System32\Tasks\Odkurzacz => C:\Program Files (x86)\Odkurzacz\odkurzacz.exe [1069056 2019-05-21] (FranmoSoftware) [Brak podpisu cyfrowego] (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\CCleanerClean.job => C:\Program Files\CCleaner\CCleaner.exe Task: C:\WINDOWS\Tasks\Intel PTT EK Recertification.job => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{aabbd025-2153-4bab-84b5-034d1d2538df}: [NameServer] 194.204.152.34,194.204.159.1 Tcpip\..\Interfaces\{aabbd025-2153-4bab-84b5-034d1d2538df}: [DhcpNameServer] 192.168.1.1 Edge: ======= DownloadDir: C:\Users\Administrator\Downloads Edge Notifications: HKU\S-1-5-21-1885980802-37223428-1519408807-500 -> hxxps://www.dobreprogramy.pl Edge Extension: (Brak nazwy) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [nie znaleziono] Edge Extension: (Brak nazwy) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [nie znaleziono] Edge Extension: (Brak nazwy) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [nie znaleziono] Edge Extension: (Brak nazwy) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [nie znaleziono] Edge DefaultProfile: Default Edge Profile: C:\Users\Administrator\AppData\Local\Microsoft\Edge\User Data\Default [2021-04-11] Edge StartupUrls: Default -> "hxxp://www.o2.pl/" FireFox: ======== FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-03-02] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.281.2 -> C:\Program Files (x86)\Java\jre1.8.0_281\bin\dtplugin\npDeployJava1.dll [2021-02-04] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.281.2 -> C:\Program Files (x86)\Java\jre1.8.0_281\bin\plugin2\npjp2.dll [2021-02-04] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-03-02] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-03-02] (Microsoft Corporation -> Microsoft Corporation) FF Plugin HKU\S-1-5-21-1885980802-37223428-1519408807-500: @lightspark.github.com/Lightspark;version=1 -> C:\Program Files (x86)\Lightspark\nplightsparkplugin.dll [Brak pliku] Chrome: ======= CHR Profile: C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default [2021-04-11] CHR Notifications: Default -> hxxps://0.getclick100.biz; hxxps://0.klickmode.biz; hxxps://0.load05.biz; hxxps://0.load20.biz; hxxps://0.load28.biz; hxxps://0.luckymedia.website; hxxps://0.ro04.biz; hxxps://0.startvideo.life; hxxps://1.klickmode.biz; hxxps://1.load05.biz; hxxps://1.load20.biz; hxxps://1.load28.biz; hxxps://1.luckymedia.website; hxxps://1.ro04.biz; hxxps://1.startvideo.life; hxxps://2.luckymedia.website; hxxps://2.startvideo.life; hxxps://3.luckymedia.website; hxxps://3.startvideo.life; hxxps://365keys.ru; hxxps://8.torrenti.co.kr; hxxps://answear.com; hxxps://audio.com.pl; hxxps://beasthackerz.ru; hxxps://br.pinterest.com; hxxps://businessinsider.com.pl; hxxps://captchatopsource.com; hxxps://cryptotabbrowser.com; hxxps://dailyuploads.net; hxxps://discography111.rssing.com; hxxps://dropapk.to; hxxps://elektronikab2b.pl; hxxps://en.hwzone.co.il; hxxps://expressit.pl; hxxps://fastcaptcharesolve.com; hxxps://fastsolvecaptcha.com; hxxps://forum.dobreprogramy.pl; hxxps://genuine-lamps.com; hxxps://getclick100.biz; hxxps://gyktd.warehopi.online; hxxps://inpost.pl; hxxps://kcrack.com; hxxps://kickasstorrents.to; hxxps://klickmode.biz; hxxps://l1progsru16091759620081.thevtk.com; hxxps://l365keysru16101066429550.thevtk.com; hxxps://load05.biz; hxxps://load20.biz; hxxps://load28.biz; hxxps://lodz.naszemiasto.pl; hxxps://luckymedia.website; hxxps://mediamarkt.pl; hxxps://mojafirma.infor.pl; hxxps://natemat.push-ad.com; hxxps://orangepl.api.useinsider.com; hxxps://ouo.io; hxxps://patronite.pl; hxxps://pl.aliexpress.com; hxxps://pl.beogradionica.com; hxxps://pl.computersm.com; hxxps://pl.ruarrijoseph.com; hxxps://pl.smartcity-telefonica.com; hxxps://pl.soringpcrepair.com; hxxps://pogoda.interia.pl; hxxps://polarize.ru; hxxps://postimg.cc; hxxps://procrackpc.com; hxxps://push-dbhfffc-665.pushails.com; hxxps://recontent.site; hxxps://ro04.biz; hxxps://soft98.ir; hxxps://soundartifacts.com; hxxps://startvideo.life; hxxps://suzana.pl; hxxps://thepiratebay.mx; hxxps://top-electrician.ru; hxxps://torlook.info; hxxps://torrentz2.uproxy2.biz; hxxps://turbobit.net; hxxps://tvn24.pl; hxxps://uploadrar.com; hxxps://usersdrive.com; hxxps://wiadomosci.onet.pl; hxxps://www-www-edziecko-pl.pushpushgo.com; hxxps://www.7torrents.cc; hxxps://www.aliexpress.com; hxxps://www.ask4pc.net; hxxps://www.conrad.pl; hxxps://www.decathlon.pl; hxxps://www.dobreprogramy.pl; hxxps://www.elektroda.pl; hxxps://www.esky.pl; hxxps://www.facebook.com; hxxps://www.filmweb.pl; hxxps://www.financeflick.com; hxxps://www.komputerswiat.pl; hxxps://www.komputronik.pl; hxxps://www.mediaexpert.pl; hxxps://www.medonet.pl; hxxps://www.morele.net; hxxps://www.nero.com; hxxps://www.o2.pl; hxxps://www.onet.pl; hxxps://www.philips.pl; hxxps://www.poradykomputerowe.pl; hxxps://www.reddit.com; hxxps://www.rmf.fm; hxxps://www.sat-universe.com; hxxps://www.siepomaga.pl; hxxps://www.telemagazyn.pl; hxxps://www.wish.com; hxxps://www.wprost.pl; hxxps://www.youtube.com; hxxps://www.zuketcreation.net; hxxps://www59.zippyshare.com; hxxps://www87.zippyshare.com; hxxps://yourcommonfeed.com; hxxps://zapytaj.onet.pl; hxxps://zrzutka.pl CHR StartupUrls: Default -> "hxxp://www.o2.pl/" CHR DefaultSearchURL: Default -> hxxps://search.videodownloaderpremium.com/query?q={searchTerms}&v=1.0.3.2 CHR DefaultSearchKeyword: Default -> Videodownloaderpremium CHR DefaultSuggestURL: Default -> hxxps://search.videodownloaderpremium.com/suggestion?q={searchTerms} CHR Extension: (Video Downloader professional) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2020-10-30] CHR Extension: (Tampermonkey BETA) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcalenpjmijncebpfijmoaglllgpjagf [2021-04-04] CHR Extension: (Stream Recorder - download HLS as MP4) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\iogidnfllpdhagebkblkgbfijkbkjdmm [2021-01-05] CHR Extension: (Video DownloadHelper) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2021-03-04] CHR Extension: (Web ) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbaoeggbhlhgjplonohefdehaoohmfdn [2021-02-16] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR Extension: (Chrome Media Router) - C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-03-03] CHR Profile: C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\System Profile [2021-04-11] CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb] CHR HKLM-x32\...\Chrome\Extension: [makcojoppodhcgmmchohadhpkicoafka] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82640 2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) S3 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3147344 2019-10-09] (Adobe Inc. -> Adobe Systems, Incorporated) S3 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2914896 2019-10-09] (Adobe Inc. -> Adobe Systems, Incorporated) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8788368 2021-03-29] (Microsoft Corporation -> Microsoft Corporation) S2 Crypkey License; C:\Windows\SysWOW64\crypserv.exe [50176 1997-04-09] () [Brak podpisu cyfrowego] S3 FvSvc; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [410864 2021-03-26] (NVIDIA Corporation -> NVIDIA) R2 HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [176128 2014-06-25] (HP) [Brak podpisu cyfrowego] S4 NeroBackItUpBackgroundService2022; C:\Program Files (x86)\Nero\Nero 2021\Nero BackItUp\NBService.exe [287000 2021-01-09] (Nero AG -> Nero AG) R2 OODefragAgent; C:\Program Files\OO Software\Defrag\oodag.exe [1701224 2020-10-15] (O&O Software GmbH -> O&O Software GmbH) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5361256 2021-03-30] (Microsoft Windows Publisher -> Microsoft Corporation) S2 SU10Guard; C:\Windows\F1VPIJD6\SU10Guard.exe [72776 2020-05-30] (Greatis Software LLC -> Greatis Software, LLC) S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [Brak podpisu cyfrowego] R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\NisSrv.exe [2624104 2021-04-11] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MsMpEng.exe [128376 2021-04-11] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.231\WsAppService.exe [493792 2017-10-24] (Wondershare Technology Co.,Ltd -> Wondershare) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_3784df9edffd3314\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_3784df9edffd3314\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 AmUStor; C:\WINDOWS\system32\drivers\AmUStor.SYS [118088 2020-07-16] (Alcorlink Corp. -> ) S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.) R3 BSTPROSRV; C:\WINDOWS\system32\drivers\bstpro.sys [420936 2018-08-19] (Microsoft Windows Hardware Compatibility Publisher -> Bestunar Inc.) R3 cmudaxp; C:\WINDOWS\system32\drivers\cmudaxp.sys [2735616 2015-06-02] (C-MEDIA ELECTRONICS INC. -> C-Media Inc) S3 DFX11_1; C:\WINDOWS\system32\drivers\dfx11_1x64.sys [28008 2015-08-31] (Power Technology -> Windows (R) Win 7 DDK provider) S3 DFX12; C:\WINDOWS\system32\drivers\dfx12x64.sys [39048 2015-11-15] (Power Technology -> Windows (R) Win 7 DDK provider) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R1 ElbyCDIO; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [42616 2017-05-14] (Microsoft Windows Hardware Compatibility Publisher -> Elaborate Bytes AG) R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2019-05-21] (Martin Malik - REALiX -> REALiX(tm)) S3 MpKsl93a4e431; C:\WINDOWS\system32\MpEngineStore\MpKslDrv.sys [97528 2021-04-11] (Microsoft Windows -> Microsoft Corporation) R2 npf; C:\WINDOWS\system32\drivers\npf.sys [36600 2019-07-16] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.) S3 Revoflt; C:\WINDOWS\System32\DRIVERS\revoflt.sys [38400 2020-10-14] (Microsoft Windows Hardware Compatibility Publisher -> VS Revo Group) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 tbhsd; C:\WINDOWS\system32\drivers\tbhsd.sys [57648 2019-09-16] (Audials AG -> RapidSolution Software AG) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2021-04-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [421088 2021-04-11] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [72928 2021-04-11] (Microsoft Windows -> Microsoft Corporation) S3 WsAudio_Device; C:\WINDOWS\system32\drivers\VirtualAudio.sys [48424 2018-06-08] (Wondershare Technology Co.,Ltd -> Wondershare) S3 libusb0; system32\drivers\libusb0.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)