Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 07-06-2019 01 Uruchomiony przez Visek (administrator) VISKO (LENOVO 20245) (08-06-2019 21:19:21) Uruchomiony z C:\Users\Visek\Downloads Załadowane profile: Visek (Dostępne profile: Visek) Platform: Windows 8.1 (Update) (X64) Język: Polski (Polska) Domyślna przeglądarka: Opera Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe (Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe (Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe (CyberLink -> CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe (CyberLink -> CyberLink Corp.) C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe (DEVGURU CO LTD -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation-Mobile Wireless Group -> Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe (Intel Corporation-Mobile Wireless Group -> Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe (Intel Corporation-Mobile Wireless Group -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (Intel Corporation-Mobile Wireless Group -> Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe (Intel Corporation-Mobile Wireless Group -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Intel Corporation-Mobile Wireless Group -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe (Intel® Upgrade Service -> Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Lenovo (Beijing) Limited -> Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (Motorola Solutions Inc. -> Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe (Motorola Solutions Inc. -> Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe (NAVITEL s.r.o. -> ) C:\Program Files (x86)\CNT\Navitel Navigator Update Center\NavitelUpdaterService.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Opera Software AS -> Opera Software) C:\Users\Visek\AppData\Local\Programs\Opera beta\62.0.3331.5\opera.exe (Opera Software AS -> Opera Software) C:\Users\Visek\AppData\Local\Programs\Opera beta\62.0.3331.5\opera.exe (Opera Software AS -> Opera Software) C:\Users\Visek\AppData\Local\Programs\Opera beta\62.0.3331.5\opera.exe (Opera Software AS -> Opera Software) C:\Users\Visek\AppData\Local\Programs\Opera beta\62.0.3331.5\opera.exe (Opera Software AS -> Opera Software) C:\Users\Visek\AppData\Local\Programs\Opera beta\62.0.3331.5\opera.exe (Opera Software AS -> Opera Software) C:\Users\Visek\AppData\Local\Programs\Opera beta\62.0.3331.5\opera.exe (Opera Software AS -> Opera Software) C:\Users\Visek\AppData\Local\Programs\Opera beta\62.0.3331.5\opera.exe (Opera Software AS -> Opera Software) C:\Users\Visek\AppData\Local\Programs\Opera beta\62.0.3331.5\opera.exe (Opera Software AS -> Opera Software) C:\Users\Visek\AppData\Local\Programs\Opera beta\62.0.3331.5\opera.exe (Opera Software AS -> Opera Software) C:\Users\Visek\AppData\Local\Programs\Opera beta\62.0.3331.5\opera.exe (Opera Software AS -> Opera Software) C:\Users\Visek\AppData\Local\Programs\Opera beta\62.0.3331.5\opera.exe (Opera Software AS -> Opera Software) C:\Users\Visek\AppData\Local\Programs\Opera beta\62.0.3331.5\opera.exe (Opera Software AS -> Opera Software) C:\Users\Visek\AppData\Local\Programs\Opera beta\62.0.3331.5\opera.exe (Opera Software AS -> Opera Software) C:\Users\Visek\AppData\Local\Programs\Opera beta\62.0.3331.5\opera.exe (Opera Software AS -> Opera Software) C:\Users\Visek\AppData\Local\Programs\Opera beta\62.0.3331.5\opera.exe (Opera Software AS -> Opera Software) C:\Users\Visek\AppData\Local\Programs\Opera beta\62.0.3331.5\opera.exe (Opera Software AS -> Opera Software) C:\Users\Visek\AppData\Local\Programs\Opera beta\62.0.3331.5\opera_crashreporter.exe (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Realtek Semiconductor Corp -> Realtek semiconductor) C:\Windows\RTFTrack.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\nowy\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\nowy\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\nowy\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\nowy\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\nowy\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\nowy\Steam.exe ==================== Rejestr (filtrowane) =========================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2876816 2013-03-05] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) HKLM\...\Run: [RtsFT] => C:\WINDOWS\RTFTrack.exe [6339656 2013-04-10] (Realtek Semiconductor Corp -> Realtek semiconductor) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [286192 2013-01-31] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [17097200 2013-11-21] (Lenovo (Beijing) Limited -> Lenovo (Beijing) Limited) HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [193008 2013-11-21] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [112512 2010-03-13] (Microsoft Corporation -> Microsoft Corporation) HKLM\...\Run: [BTMTrayAgent] => C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [7818040 2013-09-19] (Motorola Solutions Inc. -> Motorola Solutions, Inc.) HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.) [Brak podpisu cyfrowego] HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [909016 2013-10-21] (Conexant Systems, Inc. -> Conexant Systems, Inc.) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2397120 2016-06-14] (NVIDIA Corporation -> NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\nvspcap64.dll [1767944 2016-06-14] (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [Brak podpisu cyfrowego] HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe" HKLM-x32\...\Run: [YouCam Tray] => C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [168464 2012-10-30] (CyberLink -> CyberLink Corp.) HKLM-x32\...\Run: [UpdateP2GShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [217088 2012-04-18] (CyberLink Corp.) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe [91432 2012-03-28] (CyberLink -> CyberLink Corp.) HKLM-x32\...\Run: [Intel AppUp(SM) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel® Services Manager -> Intel Corporation) HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc. -> Apple Inc.) HKLM-x32\...\Run: [Nikon Message Center 2] => C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe [570880 2013-12-27] (Nikon Corporation) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311616 2015-07-27] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1282120 2013-05-02] (Canon Inc. -> CANON INC.) HKU\S-1-5-21-3229826569-2663044726-3155959205-1002\...\Run: [uTorrent] => C:\Users\Visek\AppData\Roaming\uTorrent\uTorrent.exe [1982144 2017-11-10] (BitTorrent Inc -> BitTorrent Inc.) HKU\S-1-5-21-3229826569-2663044726-3155959205-1002\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd -> Disc Soft Ltd) HKU\S-1-5-21-3229826569-2663044726-3155959205-1002\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3114256 2019-06-01] (Electronic Arts, Inc. -> Electronic Arts) HKU\S-1-5-21-3229826569-2663044726-3155959205-1002\...\Run: [Service for Navitel Navigator Update Center] => C:\Program Files (x86)\CNT\Navitel Navigator update center\NavitelUpdaterService.exe [1221224 2017-02-06] (NAVITEL s.r.o. -> ) HKU\S-1-5-21-3229826569-2663044726-3155959205-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\nowy\steam.exe [3152160 2019-04-30] (Valve -> Valve Corporation) HKU\S-1-5-21-3229826569-2663044726-3155959205-1002\...\Run: [GalaxyClient] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [7415880 2018-12-13] (GOG Sp. z o.o. -> GOG.com) HKU\S-1-5-21-3229826569-2663044726-3155959205-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22691064 2019-06-04] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-3229826569-2663044726-3155959205-1002\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\scrnsave.scr [11776 2014-11-21] (Microsoft Windows -> Microsoft Corporation) HKLM\...\Drivers32: [vidc.ffds] => C:\WINDOWS\system32\ff_vfw.dll [127488 2014-08-12] () [Brak podpisu cyfrowego] HKLM\...\Drivers32: [VIDC.FPS1] => C:\WINDOWS\system32\frapsv64.dll [71680 2013-02-26] (Beepa P/L) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.ffds] => C:\WINDOWS\SysWOW64\ff_vfw.dll [112640 2014-08-12] () [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.xvid] => C:\Windows\SysWOW64\xvidvfw.dll [235520 2014-04-08] () [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.x264] => C:\Windows\SysWOW64\x264vfw.dll [4102656 2013-12-17] (x264vfw project) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.lags] => C:\Windows\SysWOW64\lagarith.dll [216064 2013-12-17] ( ) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [msacm.divxa32] => C:\Windows\SysWOW64\DivXa32.acm [291408 2013-12-17] (Packed With Joy !) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [msacm.clmp3enc] => C:\Program Files (x86)\Lenovo\Power2Go\CLMP3Enc.ACM [217088 2005-05-13] (CyberLink Corp.) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [65536 2013-02-26] (Beepa P/L) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.VP60] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com) HKLM\...\Drivers32: [vidc.VP61] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2019-05-03] (Adobe Inc. -> Adobe Systems, Inc.) AppInit_DLLs: C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [181488 2016-08-26] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [159352 2016-08-26] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodecPackUpdateChecker.lnk [2015-01-27] ShortcutTarget: CodecPackUpdateChecker.lnk -> C:\Windows\SysWOW64\C2MP\UpdateChecker.exe (Brak pliku) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {094CD275-5C71-4753-B57E-5566CA859498} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316} Task: {0F6DBBD1-1FA5-490B-A482-1F43FCC689E6} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969} Task: {1CA6B4D8-E92F-4194-BFE4-FCD587A9147F} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-06-04] (Piriform Software Ltd -> Piriform Software Ltd) Task: {3F9165F3-AD76-44BA-92AB-EC0576AB9619} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [1321296 2016-08-24] (LENOVO -> Lenovo) Task: {469AC7AB-4BA4-4D43-8F67-0D5F4DCFEBBD} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [569416 2016-02-23] (Apple Inc. -> Apple Inc.) Task: {58984714-8A81-476B-956B-FADB03FA540E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1195544 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Task: {63E33D6F-1220-4B8B-85C4-D73DAF53A733} - System32\Tasks\Lenovo\LSC\Time72Task => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCService.exe Task: {65E0BE62-DD68-4FB2-B5B7-2C00E4B9659B} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe Task: {8621AB4D-2284-4863-8249-AABE5295EF26} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_192_pepper.exe [1452600 2019-05-26] (Adobe Inc. -> Adobe) Task: {8954B7EA-0371-476C-8788-AAB085C0123E} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe Task: {8B6759EE-1C08-4B8F-955C-774AB5A6544E} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDfE067B1} Task: {8D2F4155-D631-4DF3-B047-D2E06EFA1ACD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\\MpCmdRun.exe [410792 2017-01-12] (Microsoft Corporation -> Microsoft Corporation) Task: {90FE6A05-E6EC-4CFD-9E1F-3BC83C44A977} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [10157392 2016-08-24] (LENOVO -> Lenovo) Task: {96B51D40-6F91-42AB-8939-D5F7C83D7751} - System32\Tasks\Opera scheduled Autoupdate 1559510640 => C:\Users\Visek\AppData\Local\Programs\Opera beta\launcher.exe [1776216 2019-06-04] (Opera Software AS -> Opera Software) Task: {B087AE7B-FC18-4427-81A6-47F2B85C8E3F} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [10157392 2016-08-24] (LENOVO -> Lenovo) Task: {B2300661-DFBC-4EFC-981C-59A90AA5B1E5} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16664352 2019-06-04] (Piriform Software Ltd -> Piriform Software Ltd) Task: {B89508AC-00CC-4443-AA76-088513FF5345} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\\MpCmdRun.exe [410792 2017-01-12] (Microsoft Corporation -> Microsoft Corporation) Task: {BA84FFFE-5FD2-4C08-8F70-F30C8A4826D6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\\MpCmdRun.exe [410792 2017-01-12] (Microsoft Corporation -> Microsoft Corporation) Task: {C9DCF59E-6B97-4C0C-8641-B8261089C8CA} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43da-BFD7-FBEEA2180A1E} Task: {CC5DC0C6-8E86-4497-B228-DC7A302486D6} - System32\Tasks\AutoKMS => C:\WINDOWS\AutoKMS.exe [614400 2015-03-15] () [Brak podpisu cyfrowego] Task: {DB21EF32-6BA9-4118-BBC1-BC4FF48961E5} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4f47-879B-29A80C355D61} Task: {DC2FE51A-8EB6-4BC1-8B92-A1A9B1623B81} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\\MpCmdRun.exe [410792 2017-01-12] (Microsoft Corporation -> Microsoft Corporation) Task: {E93E93CB-1302-4CD8-AD7A-068EACB2DBAE} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)" Task: {F4BB72A0-7014-44AA-8DB6-AA8E8E8EDA6E} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.UpdateStatusService.exe [264016 2016-08-24] (LENOVO -> ) Task: {FD79EC94-F7EC-4EF0-9748-68DCEF5E4D95} - System32\Tasks\Lenovo\LSC\RebootCountTask => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCService.exe (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\AutoKMS.job => C:\WINDOWS\AutoKMS.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 62.179.1.61 62.179.1.63 Tcpip\..\Interfaces\{01C46775-F337-421B-A9ED-4FAC2CC04C02}: [DhcpNameServer] 62.179.1.61 62.179.1.63 Tcpip\..\Interfaces\{F2CC0B03-3A37-4F92-A139-6E5FCA9A6A31}: [DhcpNameServer] 62.179.1.61 62.179.1.63 Internet Explorer: ================== HKU\S-1-5-21-3229826569-2663044726-3155959205-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13.msn.com/ HKU\S-1-5-21-3229826569-2663044726-3155959205-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com HKU\S-1-5-21-3229826569-2663044726-3155959205-1002\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (Canon Inc. -> CANON INC.) BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: IEPluginBHO Class -> {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} -> C:\Users\Visek\AppData\Roaming\Nowe Gadu-Gadu\_userdata\ggbho.1.dll [2009-10-28] (GG Network S.A. -> GG Network S.A.) Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (Canon Inc. -> CANON INC.) Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (Canon Inc. -> CANON INC.) Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll [2008-05-23] (Microsoft Corporation) [Brak podpisu cyfrowego] FireFox: ======== FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-05-03] (Adobe Inc. -> Adobe Systems Inc.) Opera: ======= OPR Extension: (Adblock Plus - free ad blocker) - C:\Users\Visek\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2019-05-11] ==================== Usługi (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [707144 2018-12-13] (GOG Sp. z o.o. -> GOG.com) S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7172680 2018-12-01] (GOG Sp. z o.o. -> GOG.com) R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163712 2016-06-14] (NVIDIA Corporation -> NVIDIA Corporation) R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-01-31] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [319376 2014-10-01] (Intel Corporation - pGFX -> Intel Corporation) R2 Intel(R) Wireless Bluetooth(R) 4.0 Radio Management; C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe [157128 2013-09-18] (Intel Corporation-Mobile Wireless Group -> Intel Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-11-06] (Intel Corporation -> Intel Corporation) S3 LSC.Services.SystemService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [273232 2016-08-24] (LENOVO -> Lenovo) S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [273136 2013-04-18] (Intel Corporation-Mobile Wireless Group -> ) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-06-14] (NVIDIA Corporation -> NVIDIA Corporation) S3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3632576 2016-06-14] (NVIDIA Corporation -> NVIDIA Corporation) S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2521024 2016-06-14] (NVIDIA Corporation -> NVIDIA Corporation) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2303792 2019-06-01] (Electronic Arts, Inc. -> Electronic Arts) S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3175728 2019-06-01] (Electronic Arts, Inc. -> Electronic Arts) R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2015-05-21] (DEVGURU CO LTD -> DEVGURU Co., LTD.) R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation) R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation -> Microsoft Corporation) R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3388144 2013-04-18] (Intel Corporation-Mobile Wireless Group -> Intel® Corporation) ===================== Sterowniki (filtrowane) ====================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 AMPPAL; C:\WINDOWS\System32\drivers\AMPPAL.sys [165344 2013-04-11] (Intel Corporation-Mobile Wireless Group -> Windows (R) Win 7 DDK provider) R3 btmhsf; C:\WINDOWS\system32\DRIVERS\btmhsf.sys [1390904 2013-09-05] (Motorola Solutions Inc. -> Motorola Solutions, Inc.) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R3 dtsoftbus01; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [283064 2015-02-20] (Disc Soft Ltd -> Disc Soft Ltd) R3 IntcDAud; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [342528 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Intel(R) Corporation) S4 IObitUnlocker; C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlocker.sys [36568 2013-09-30] (IObit Information Technology -> IObit) R3 NETwNe64; C:\WINDOWS\system32\DRIVERS\NETwew00.sys [3344352 2013-07-08] (Intel Corporation-Mobile Wireless Group -> Intel Corporation) S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-06-14] (NVIDIA Corporation -> NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation -> NVIDIA Corporation) S3 qcfilter; C:\WINDOWS\System32\drivers\qcusbfilter.sys [49208 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated) S3 qcusbnet; C:\WINDOWS\system32\DRIVERS\qcusbnet.sys [428600 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated) S3 qcusbser; C:\WINDOWS\system32\DRIVERS\qcusbser.sys [254520 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated) R3 rtsuvc; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [8243272 2013-04-10] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation) S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-13] (CyberLink -> "CyberLink) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-06-08 21:19 - 2019-06-08 21:21 - 000029181 _____ C:\Users\Visek\Downloads\FRST.txt 2019-06-08 21:18 - 2019-06-08 21:18 - 002417664 _____ (Farbar) C:\Users\Visek\Downloads\FRST64.exe 2019-06-08 19:46 - 2019-06-08 19:46 - 000001490 _____ C:\Users\Visek\Downloads\AdwCleaner[S03].txt 2019-06-07 19:52 - 2019-06-08 19:21 - 000000000 ____D C:\AdwCleaner 2019-06-07 19:51 - 2019-06-07 19:51 - 007025360 _____ (Malwarebytes) C:\Users\Visek\Downloads\adwcleaner_7.3.exe 2019-06-03 13:02 - 2019-06-08 21:19 - 000000000 ____D C:\FRST 2019-06-03 00:30 - 2019-06-03 00:30 - 001886447 _____ C:\Users\Visek\Desktop\bookmarks_03.06.2019 1.html 2019-06-03 00:26 - 2019-06-03 00:26 - 001892490 _____ C:\Users\Visek\Desktop\bookmarks_03.06.2019.html 2019-06-03 00:07 - 2019-06-03 00:07 - 000000000 ____D C:\Users\Visek\AppData\Local\mbam 2019-06-03 00:06 - 2019-06-03 00:06 - 000000000 ____D C:\Users\Visek\AppData\Local\mbamtray 2019-06-02 23:24 - 2019-06-07 19:59 - 000004088 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1559510640 2019-06-02 23:24 - 2019-06-07 19:59 - 000001424 _____ C:\Users\Visek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Opera beta.lnk 2019-06-02 23:24 - 2019-06-02 23:24 - 000001418 _____ C:\Users\Visek\Desktop\Opera beta.lnk 2019-05-25 17:00 - 2019-05-06 05:47 - 001311768 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll 2019-05-25 17:00 - 2019-05-06 05:35 - 007363320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2019-05-25 17:00 - 2019-05-06 05:33 - 001136208 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2019-05-25 17:00 - 2019-05-06 04:12 - 000861184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll 2019-05-25 17:00 - 2019-05-06 04:08 - 001040384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll 2019-05-25 17:00 - 2019-05-06 03:41 - 001197056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll 2019-05-25 17:00 - 2019-04-25 06:01 - 025730560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2019-05-25 17:00 - 2019-04-25 05:40 - 002902016 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2019-05-25 17:00 - 2019-04-25 05:31 - 020279296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2019-05-25 17:00 - 2019-04-25 05:28 - 005775360 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2019-05-25 17:00 - 2019-04-25 05:09 - 002295808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2019-05-25 17:00 - 2019-04-25 04:46 - 015285248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2019-05-25 17:00 - 2019-04-25 04:40 - 004493312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2019-05-25 17:00 - 2019-04-25 04:35 - 005303808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2019-05-25 17:00 - 2019-04-25 04:24 - 001557504 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2019-05-25 17:00 - 2019-04-25 04:18 - 004831232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2019-05-25 17:00 - 2019-04-17 02:45 - 022373296 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2019-05-25 17:00 - 2019-04-17 02:41 - 019790872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2019-05-25 17:00 - 2019-04-06 20:39 - 002172832 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll 2019-05-25 17:00 - 2019-04-05 16:07 - 003324928 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll 2019-05-25 17:00 - 2019-04-05 16:01 - 003618304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll 2019-05-25 17:00 - 2019-04-05 01:58 - 000863232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll 2019-05-25 17:00 - 2019-04-05 00:15 - 000513416 _____ C:\WINDOWS\SysWOW64\locale.nls 2019-05-25 17:00 - 2019-04-05 00:15 - 000513416 _____ C:\WINDOWS\system32\locale.nls 2019-05-25 17:00 - 2019-04-04 18:44 - 002779648 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll 2019-05-25 16:59 - 2019-05-06 05:36 - 001677024 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2019-05-25 16:59 - 2019-05-06 05:36 - 001537776 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2019-05-25 16:59 - 2019-05-06 05:34 - 000805384 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll 2019-05-25 16:59 - 2019-04-30 02:51 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2019-05-25 16:59 - 2019-04-30 02:51 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2019-05-25 16:59 - 2019-04-25 05:26 - 000790528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2019-05-25 16:59 - 2019-04-25 05:03 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2019-05-25 16:59 - 2019-04-25 04:58 - 001033216 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll 2019-05-25 16:59 - 2019-04-25 04:50 - 000809472 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2019-05-25 16:59 - 2019-04-25 04:42 - 000880640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll 2019-05-25 16:59 - 2019-04-25 04:37 - 000696320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll 2019-05-25 16:59 - 2019-04-25 04:35 - 013682176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2019-05-25 16:59 - 2019-04-25 04:14 - 001323008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2019-05-25 16:59 - 2019-04-25 04:14 - 000800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll 2019-05-25 16:59 - 2019-04-25 04:12 - 000710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll 2019-05-25 16:59 - 2019-04-20 18:41 - 000081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS 2019-05-25 16:59 - 2019-04-16 15:45 - 001756160 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll 2019-05-25 16:59 - 2019-04-16 15:40 - 001493504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll 2019-05-25 16:59 - 2019-04-14 18:37 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll 2019-05-25 16:59 - 2019-04-14 18:35 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll 2019-05-25 16:59 - 2019-04-14 18:09 - 000078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll 2019-05-25 16:59 - 2019-04-14 18:07 - 000113664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll 2019-05-25 16:59 - 2019-04-09 00:17 - 000537096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll 2019-05-25 16:59 - 2019-04-09 00:17 - 000139912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe 2019-05-25 16:59 - 2019-04-09 00:13 - 000449744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll 2019-05-25 16:59 - 2019-04-09 00:12 - 000136736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe 2019-05-25 16:59 - 2019-04-08 23:40 - 000136432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys 2019-05-25 16:59 - 2019-04-07 02:57 - 001214720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll 2019-05-25 16:59 - 2019-04-06 22:31 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll 2019-05-25 16:59 - 2019-04-06 22:31 - 000376320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspbde40.dll 2019-05-25 16:59 - 2019-04-06 22:31 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll 2019-05-25 16:59 - 2019-04-06 22:31 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll 2019-05-25 16:59 - 2019-04-06 22:31 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll 2019-05-25 16:59 - 2019-04-06 20:39 - 001662512 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll 2019-05-25 16:59 - 2019-04-06 17:42 - 000809472 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll 2019-05-25 16:59 - 2019-04-06 00:47 - 000096208 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptdll.dll 2019-05-25 16:59 - 2019-04-06 00:46 - 000177608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys 2019-05-25 16:59 - 2019-04-06 00:44 - 000073248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptdll.dll 2019-05-25 16:59 - 2019-04-05 16:06 - 001253888 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll 2019-05-25 16:59 - 2019-04-05 16:06 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll 2019-05-25 16:59 - 2019-04-05 16:06 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll 2019-05-25 16:59 - 2019-04-05 16:01 - 000160256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll 2019-05-25 16:59 - 2019-04-04 20:01 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe 2019-05-25 16:59 - 2019-04-04 19:41 - 000445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll 2019-05-25 16:59 - 2019-04-04 19:10 - 001080320 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL 2019-05-25 16:59 - 2019-04-04 18:49 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll 2019-05-25 16:59 - 2019-04-04 18:48 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll 2019-05-25 16:59 - 2019-04-04 18:15 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll 2019-05-25 16:59 - 2019-04-04 18:10 - 002464256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll 2019-05-22 07:50 - 2019-05-22 07:50 - 000001377 _____ C:\Users\Public\Desktop\The Sims 4.lnk 2019-05-22 07:50 - 2019-05-22 07:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Sims 4 2019-05-22 07:49 - 2014-09-16 18:45 - 000447752 _____ (On2.com) C:\WINDOWS\SysWOW64\vp6vfw.dll 2019-05-22 07:44 - 2019-05-22 07:44 - 000000227 _____ C:\Users\Visek\Desktop\Guacamelee! Super Turbo Championship Edition.url 2019-05-22 07:31 - 2019-05-22 07:31 - 000000226 _____ C:\Users\Visek\Desktop\GRID 2.url ==================== Jeden miesiąc (zmodyfikowane) ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-06-08 20:01 - 2013-08-22 15:36 - 000000000 ____D C:\WINDOWS\Inf 2019-06-08 20:00 - 2015-01-26 12:24 - 000003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3229826569-2663044726-3155959205-1002 2019-06-08 19:40 - 2015-03-15 23:27 - 000000212 _____ C:\WINDOWS\Tasks\AutoKMS.job 2019-06-08 19:40 - 2015-03-04 19:22 - 000000000 ____D C:\ProgramData\Origin 2019-06-08 19:38 - 2013-08-22 16:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2019-06-08 19:23 - 2013-08-22 15:25 - 000262144 ___SH C:\WINDOWS\system32\config\BBI 2019-06-08 19:04 - 2015-02-18 13:10 - 000003972 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{08EA6B76-5C4B-4369-9B95-DE0CCC34E021} 2019-06-07 19:44 - 2013-08-22 16:44 - 000488664 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2019-06-07 19:15 - 2017-11-26 14:44 - 000003870 _____ C:\WINDOWS\System32\Tasks\CCleaner Update 2019-06-07 19:15 - 2017-07-23 10:20 - 000000845 _____ C:\Users\Public\Desktop\CCleaner.lnk 2019-06-03 00:36 - 2015-01-23 23:41 - 000000000 ____D C:\Program Files (x86)\Opera 2019-06-03 00:22 - 2017-10-21 17:37 - 000000000 ____D C:\Program Files\Malwarebytes 2019-06-03 00:22 - 2015-12-27 15:37 - 000000000 ____D C:\ProgramData\Malwarebytes 2019-06-02 23:24 - 2015-01-23 23:48 - 000000000 ____D C:\Users\Visek\AppData\Local\Opera Software 2019-06-02 23:23 - 2015-01-23 23:47 - 000000000 ____D C:\Users\Visek\AppData\Roaming\Opera Software 2019-06-02 00:12 - 2016-09-07 11:36 - 000000000 ____D C:\Users\Visek\AppData\Local\CrashDumps 2019-06-01 23:10 - 2015-03-04 19:22 - 000000000 ____D C:\Program Files (x86)\Origin 2019-05-30 07:35 - 2015-03-04 19:24 - 000000000 ____D C:\Users\Visek\AppData\Roaming\Origin 2019-05-26 22:29 - 2015-01-25 10:58 - 000004420 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier 2019-05-26 22:29 - 2015-01-23 23:32 - 000000000 ____D C:\Users\Visek\AppData\Local\Adobe 2019-05-26 22:28 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed 2019-05-26 22:28 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\system32\Macromed 2019-05-25 23:33 - 2013-08-22 17:36 - 000000000 ___RD C:\WINDOWS\ToastData 2019-05-25 18:22 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\rescache 2019-05-25 18:11 - 2012-07-26 09:59 - 000000000 ____D C:\WINDOWS\CbsTemp 2019-05-22 07:44 - 2018-04-22 14:38 - 000000000 ____D C:\Users\Visek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2019-05-22 07:24 - 2015-03-04 19:24 - 000000000 ____D C:\Program Files (x86)\Origin Games 2019-05-21 21:32 - 2015-01-24 01:13 - 000000000 ____D C:\WINDOWS\system32\MRT 2019-05-21 21:17 - 2015-01-24 01:12 - 132445408 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2019-05-21 19:36 - 2015-11-08 09:21 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2019-05-11 11:30 - 2015-12-10 13:59 - 000000000 ____D C:\Users\Visek\Desktop\foty sprzedaz 2019-05-11 11:30 - 2015-11-21 20:54 - 000000000 ____D C:\Users\Visek\Desktop\części mefa na sprzedaż 2019-05-11 11:29 - 2015-08-07 15:16 - 000000000 ____D C:\Users\Visek\Desktop\potrzebne rzeczy 2019-05-11 11:24 - 2016-01-19 17:12 - 000000000 ____D C:\Users\Visek\Desktop\fotografie na sprzedaż 2019-05-11 11:15 - 2018-04-22 10:48 - 000000000 ____D C:\Users\Visek\Desktop\sprzedaz z piwwnicy ==================== Pliki w katalogu głównym wybranych folderów ======= 2015-11-01 22:25 - 2015-11-01 22:25 - 000000268 ___RH () C:\Users\Visek\AppData\Roaming\Sync Schema 2015-11-01 22:26 - 2015-11-01 22:26 - 000000268 ___RH () C:\Users\Visek\AppData\Roaming\Sync Services 2015-11-01 22:25 - 2015-11-01 22:25 - 000000268 ___RH () C:\Users\Visek\AppData\Roaming\Synth Basics 2015-11-01 22:23 - 2015-11-01 22:23 - 000000268 ___RH () C:\Users\Visek\AppData\Roaming\Track Settings 2019-02-13 22:25 - 2019-02-13 22:25 - 000003584 _____ () C:\Users\Visek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2015-05-15 18:31 - 2015-05-15 18:31 - 000007602 _____ () C:\Users\Visek\AppData\Local\Resmon.ResmonCfg ==================== SigCheck =============================== (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) LastRegBack: 2019-06-08 20:01 ==================== Koniec FRST.txt ============================