Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 10-10-2020 Uruchomiony przez Anna (administrator) ANIA (LENOVO 81FV) (11-10-2020 13:50:26) Uruchomiony z C:\Users\Anna\Desktop Załadowane profile: Anna & MSSQL$SAGEPL & SQLTELEMETRY$SAGEPL Platform: Windows 10 Home Wersja 2004 19041.388 (X64) Język: Polski (Polska) Domyślna przeglądarka: Edge Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Inc. -> Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2> (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe (Asseco Data Systems S.A. -> Certum) C:\Program Files (x86)\Certum\proCertum CardManager\cryptoCertumScanner.exe (Brother Industries, Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Brother\BrUtilities\BrLogRx.exe (Brother Industries, Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Brother\SoftwareUpdateNotification\SoftwareUpdateNotificationService.exe (Brother Industries, Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe (Brother Industries, Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Browny02\BrYNSvc.exe (Dolby Laboratories, Inc. -> ) C:\Windows\System32\dolbyaposvc\DAX3API.exe <2> (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe (INTEL CORP) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.2731.0_x64__8j3eq9eme6ctt\IGCC.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_7ecc5be6ca7b3b0d\esif_uf.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\jhi_service.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_component.inf_amd64_0219cc1c7085a93f\igfxCUIService.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_component.inf_amd64_0219cc1c7085a93f\igfxEM.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_3c82703a0fbed0ab\IntelCpHDCPSvc.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_3c82703a0fbed0ab\IntelCpHeciSvc.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_120314e52c04567c\RstMwService.exe (Lenovo -> Lenovo) C:\Windows\System32\ymc.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <60> (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL13.SAGEPL\MSSQL\Binn\sqlceip.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL13.SAGEPL\MSSQL\Binn\sqlservr.exe (Microsoft Corporation -> Microsoft Corporation) C:\Users\Anna\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_2.34.28001.0_x64__8wekyb3d8bbwe\GameBar.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe (Microsoft) [Brak podpisu cyfrowego] C:\Program Files (x86)\Brother\iPrint&Scan\USBAppControl.exe (Microsoft) [Brak podpisu cyfrowego] C:\Program Files (x86)\Brother\iPrint&Scan\WorkflowAppControl.exe (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2> (Sage GmbH -> Sage GmbH) C:\Program Files (x86)\Sage Update\Sage.Deployment.Desktop.exe (Sage GmbH -> Sage GmbH) C:\Program Files (x86)\Sage Update\Sage.Deployment.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [865568 2019-03-14] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [185648 2020-08-26] (ESET, spol. s r.o. -> ESET) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [331064 2020-09-09] (Apple Inc. -> Apple Inc.) HKLM-x32\...\Run: [M17A] => C:\WINDOWS\twain_32\Brimm17a\Common\TwDsUiLaunch.exe [94752 2019-08-06] (Microsoft Windows Hardware Compatibility Publisher -> ) HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [146584 2017-11-07] (Brother Industries, Ltd. -> Brother Industries, Ltd.) HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2976256 2018-01-19] (Brother Industries, Ltd.) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [BrotherSoftwareUpdateNotification] => C:\Program Files (x86)\Brother\SoftwareUpdateNotification\SoftwareUpdateNotificationService.exe [3581952 2017-04-05] (Brother Industries, Ltd.) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [5641776 2020-09-11] (Adobe Inc. -> Adobe Systems Inc.) HKLM-x32\...\Run: [AutoRegisterCerts] => C:\Program Files (x86)\Certum\proCertum CardManager\cryptoCertumScanner.exe [171032 2019-11-08] (Asseco Data Systems S.A. -> Certum) HKLM-x32\...\Run: [Sage.Deployment] => C:\Program Files (x86)\Sage Update\Sage.Deployment.Desktop.exe [274624 2017-10-12] (Sage GmbH -> Sage GmbH) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [710264 2020-06-18] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [] => [X] HKU\S-1-5-21-3670700893-2789226242-3682420669-1002\...\Run: [BitTorrent] => C:\Users\Anna\AppData\Roaming\BitTorrent\BitTorrent.exe [2121968 2020-08-22] (BitTorrent Inc -> BitTorrent Inc.) HKU\S-1-5-21-3670700893-2789226242-3682420669-1002\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [5482544 2020-09-11] (Adobe Inc. -> Adobe Systems Incorporated) HKU\S-1-5-21-3670700893-2789226242-3682420669-1002\...\Run: [Spotify] => C:\Users\Anna\AppData\Roaming\Spotify\Spotify.exe [23360232 2020-10-10] (Spotify AB -> Spotify Ltd) HKU\S-1-5-80-3212782614-549107612-2017269515-2678090759-2970619914\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-12-07] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-80-814518542-523395099-1812417668-3907999870-2047993044\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-12-07] (Microsoft Windows -> Microsoft Corporation) HKLM\...\Windows x64\Print Processors\ssm1MPC: C:\Windows\System32\spool\prtprocs\x64\ssm1mpc.dll [41984 2014-09-18] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider) HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [65488 2020-02-05] (Adobe Inc. -> Adobe Systems Inc) HKLM\...\Print\Monitors\PDF-XChange: C:\WINDOWS\system32\pxc35pm.dll [6656 2006-01-30] (Tracker Software) [Brak podpisu cyfrowego] HKLM\...\Print\Monitors\ssm1M Langmon: C:\WINDOWS\system32\ssm1mlm.dll [34304 2014-09-18] (Microsoft Windows Hardware Compatibility Publisher -> ) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\85.0.4183.121\Installer\chrmstp.exe [2020-09-21] (Google LLC -> Google LLC) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{73FA19D0-2D75-11D2-995D-00C04F98BBC9}] -> ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {015620E9-FC14-4165-AA0F-AB9881DF8168} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation) Task: {06FD48B3-6330-43FD-A758-3044214BF2AF} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Task: {08CDF4FE-F9F1-48DC-A372-5D7692235195} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation) Task: {1B7C3AC5-F3C1-4FBB-BA09-F6D302737D6F} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation) Task: {355737EF-569F-455F-AB7B-7F5A74A56E32} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation) Task: {46F028F4-DFE1-4E65-8E87-8DF55166604A} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1724928 2020-01-21] () [Brak podpisu cyfrowego] Task: {4890E859-21D4-4FE7-A84D-6C6CFA540874} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1341008 2020-09-06] (Adobe Inc. -> Adobe Inc.) Task: {75F9D814-08C2-4708-96C6-1E792D703E96} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {760AE18B-995C-4CBE-992F-D718CD44FF55} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-07-22] (Google LLC -> Google LLC) Task: {92065E99-FAF5-4029-BCCC-1CCFCA3007C6} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [647656 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation) Task: {9552C9D4-F948-4692-AF6F-0E33895B27BC} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3292984 2020-06-25] (NVIDIA Corporation -> NVIDIA Corporation) Task: {BB4B06E1-A9A5-458B-8B30-3F75B8B49F3E} - System32\Tasks\Agent Activation Runtime\S-1-5-21-3670700893-2789226242-3682420669-1002 => C:\WINDOWS\System32\AgentActivationRuntimeStarter.exe [13312 2020-07-30] (Microsoft Windows -> ) Task: {BE94801F-D745-4BD1-B574-70E6D613DA9A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-07-22] (Google LLC -> Google LLC) Task: {BE9AD22F-E8F1-404E-BCAE-1CB27517CACE} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation) Task: {C3BE48FD-80F7-452D-9B6F-AAA783731283} - System32\Tasks\Agent Activation Runtime\S-1-5-21-3670700893-2789226242-3682420669-500 => C:\WINDOWS\System32\AgentActivationRuntimeStarter.exe [13312 2020-07-30] (Microsoft Windows -> ) Task: {CF8A979A-EDD5-45FC-A91A-27DF7F08A945} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Task: {DE291021-B24A-4F77-91D4-E806E9F08026} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Task: {DF208488-C6FD-497A-B8EA-29D48B83FFAD} - System32\Tasks\SoundBass => C:\Users\Anna\AppData\Roaming\Unpacker\Unpacker.exe <==== UWAGA Task: {E1DA43B4-32FF-426A-8B71-2C4CD6744A1E} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [752136 2020-10-08] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.) Task: {E709A1AD-707B-4495-942F-515BC11EE399} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-05-07] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log Task: {E7FF66EF-D7FA-497A-8278-ECF0AEF60960} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-05-07] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {F4015D08-A692-465F-90C0-02844507B485} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation) Task: {FAD681C5-FE74-49D6-A236-E56D6C7E7F13} - System32\Tasks\Lenovo\Lenovo YMC Uninstall Task => C:\WINDOWS\System32\ymc.exe [64696 2018-05-03] (Lenovo -> Lenovo) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{0594b23f-b87c-477e-ad33-2a081a7bd654}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{db29feb3-daf3-4ebb-bb1e-5511c6bf5b77}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{fe42dc6b-b9b4-43e5-90a6-1254abb4bbbe}: [DhcpNameServer] 172.20.10.1 Edge: ====== Edge HomeButtonPage: HKU\S-1-5-21-3670700893-2789226242-3682420669-1002 -> hxxps://www.x-kom.pl/l/dziekujemy-za-zakupy Edge DefaultProfile: Default Edge Profile: C:\Users\Anna\AppData\Local\Microsoft\Edge\User Data\Default [2020-10-11] Edge Notifications: Default -> hxxps://5ce6e0db2be0d.edrone.me; hxxps://kontigo-com-pl.edrone.me; hxxps://meet.google.com; hxxps://poczta.kei.lbl.pl Edge HomePage: Default -> about:blank Edge StartupUrls: Default -> "hxxps://www.google.pl/","hxxp://www.google.com/","hxxps://www.google.com/","hxxps://www.x-kom.pl/l/dziekujemy-za-zakupy" Edge Session Restore: Default -> [funkcja włączona] Edge Extension: (Giving Assistant Button) - C:\Users\Anna\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\abmkpkbghkncelngngaldkhfchgnmnbf [2020-09-30] Edge Extension: (AliExpress Coupon Finder) - C:\Users\Anna\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\adanomdlalebngcphfbknoglbcdcbchb [2020-09-22] Edge Extension: (WME Validator) - C:\Users\Anna\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\baojhpeknpmkhplkcnpdcficcaaniaih [2020-06-01] Edge Extension: (Śledzenie cen AliPrice) - C:\Users\Anna\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ccinledjceanimdkflfafdpoljflhbjf [2020-09-24] Edge Extension: (Search by Image (by Google)) - C:\Users\Anna\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dajedkncpodkggklbegccjpmnglmnflm [2020-06-01] Edge Extension: (Notifier for Gmail™) - C:\Users\Anna\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dcjichoefijpinlfnjghokpkojhlhkgl [2020-02-09] Edge Extension: (Chrome Remote Desktop) - C:\Users\Anna\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\efmjfjelnicpmdcmfikempdhlmainjcb [2020-07-13] Edge Extension: (imgur Community Extension) - C:\Users\Anna\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ehoopddfhgaehhmphfcooacjdpmbjlao [2020-09-03] Edge Extension: (Falcon Proxy) - C:\Users\Anna\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gchhimlnjdafdlkojbffdkogjhhkdepf [2020-06-01] Edge Extension: (FoxyProxy Standard) - C:\Users\Anna\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gcknhkkoolaabfmlnjonogaaifnjlfnp [2020-06-01] Edge Extension: (Szafir SDK Web) - C:\Users\Anna\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gjalhnomhafafofonpdihihjnbafkipc [2020-04-23] Edge Extension: (TinEye Reverse Image Search) - C:\Users\Anna\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\haebnnbpedcbhciplfhjjkbafijpncjl [2020-06-01] Edge Extension: (Web Scrobbler) - C:\Users\Anna\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hhinaapppaileiechjoiifaancjggfjm [2020-10-06] Edge Extension: (Youtube Downloader) - C:\Users\Anna\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\icdodnoipobociadpmenebbhekkacoog [2020-10-09] Edge Extension: (Chrome Remote Desktop) - C:\Users\Anna\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2020-06-24] Edge Extension: (AdBlock — najlepszy bloker reklam) - C:\Users\Anna\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2020-10-09] Edge Extension: (IG Stories for Instagram™) - C:\Users\Anna\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\nilbfjdbacfdodpbdondbbkmoigehodg [2020-08-01] FireFox: ======== FF DefaultProfile: 4pr2irzh.default FF ProfilePath: C:\Users\Anna\AppData\Roaming\Mozilla\Firefox\Profiles\4pr2irzh.default [2020-04-16] FF ProfilePath: C:\Users\Anna\AppData\Roaming\Mozilla\Firefox\Profiles\r2ahm6d0.default-release-1587224755498 [2020-07-17] FF Extension: (Szafir SDK Web) - C:\Users\Anna\AppData\Roaming\Mozilla\Firefox\Profiles\r2ahm6d0.default-release-1587224755498\Extensions\{5e118bad-a840-4256-bd31-296194533aac}.xpi [2020-04-22] [UpdateUrl:hxxps://www.elektronicznypodpis.pl/download/webmodule/firefox/updates.json] FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2019-10-11] FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.261.2 -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\dtplugin\npDeployJava1.dll [2020-07-26] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.261.2 -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\plugin2\npjp2.dll [2020-07-26] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2020-09-11] (Adobe Inc. -> Adobe Systems Inc.) FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2020-07-21] Chrome: ======= CHR Profile: C:\Users\Anna\AppData\Local\Google\Chrome\User Data\Default [2020-10-06] CHR HomePage: Default -> about:blank CHR StartupUrls: Default -> "hxxps://www.google.pl/","hxxp://www.google.com/","hxxps://www.google.com/","hxxps://www.x-kom.pl/l/dziekujemy-za-zakupy" CHR Session Restore: Default -> [funkcja włączona] CHR Extension: (Prezentacje) - C:\Users\Anna\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-07-22] CHR Extension: (Giving Assistant Button) - C:\Users\Anna\AppData\Local\Google\Chrome\User Data\Default\Extensions\abmkpkbghkncelngngaldkhfchgnmnbf [2020-10-03] CHR Extension: (AliExpress Coupon Finder) - C:\Users\Anna\AppData\Local\Google\Chrome\User Data\Default\Extensions\adanomdlalebngcphfbknoglbcdcbchb [2020-09-23] CHR Extension: (Dokumenty) - C:\Users\Anna\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-07-22] CHR Extension: (Dysk Google) - C:\Users\Anna\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-07-22] CHR Extension: (WME Validator) - C:\Users\Anna\AppData\Local\Google\Chrome\User Data\Default\Extensions\baojhpeknpmkhplkcnpdcficcaaniaih [2020-07-22] CHR Extension: (YouTube) - C:\Users\Anna\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-07-22] CHR Extension: (Śledzenie cen AliPrice) - C:\Users\Anna\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccinledjceanimdkflfafdpoljflhbjf [2020-09-24] CHR Extension: (Puk-Puk) - C:\Users\Anna\AppData\Local\Google\Chrome\User Data\Default\Extensions\cngkcldnnppckgbmndaccoffaikjbemc [2020-07-22] CHR Extension: (Search by Image (by Google)) - C:\Users\Anna\AppData\Local\Google\Chrome\User Data\Default\Extensions\dajedkncpodkggklbegccjpmnglmnflm [2020-07-22] CHR Extension: (Adobe Acrobat) - C:\Users\Anna\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-09-23] CHR Extension: (Arkusze) - C:\Users\Anna\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-07-22] CHR Extension: (Falcon Proxy) - C:\Users\Anna\AppData\Local\Google\Chrome\User Data\Default\Extensions\gchhimlnjdafdlkojbffdkogjhhkdepf [2020-07-22] CHR Extension: (FoxyProxy Standard) - C:\Users\Anna\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcknhkkoolaabfmlnjonogaaifnjlfnp [2020-07-22] CHR Extension: (Dokumenty Google offline) - C:\Users\Anna\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-09-23] CHR Extension: (AdBlock — najlepszy bloker reklam) - C:\Users\Anna\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-09-25] CHR Extension: (Szafir SDK Web) - C:\Users\Anna\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjalhnomhafafofonpdihihjnbafkipc [2020-07-22] CHR Extension: (TinEye Reverse Image Search) - C:\Users\Anna\AppData\Local\Google\Chrome\User Data\Default\Extensions\haebnnbpedcbhciplfhjjkbafijpncjl [2020-07-22] CHR Extension: (Web Scrobbler) - C:\Users\Anna\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhinaapppaileiechjoiifaancjggfjm [2020-09-23] CHR Extension: (Google Play Music) - C:\Users\Anna\AppData\Local\Google\Chrome\User Data\Default\Extensions\icppfcnhkcmnfdhfhphakoifcfokfdhg [2020-07-22] CHR Extension: (Chrome Remote Desktop) - C:\Users\Anna\AppData\Local\Google\Chrome\User Data\Default\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2020-07-22] CHR Extension: (Dropbox) - C:\Users\Anna\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl [2020-07-22] CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Anna\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2020-09-29] CHR Extension: (IG Stories for Instagram™) - C:\Users\Anna\AppData\Local\Google\Chrome\User Data\Default\Extensions\nilbfjdbacfdodpbdondbbkmoigehodg [2020-08-02] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Anna\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-07-22] CHR Extension: (Gmail) - C:\Users\Anna\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-07-22] CHR Extension: (Chrome Media Router) - C:\Users\Anna\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-09-23] CHR HKU\S-1-5-21-3670700893-2789226242-3682420669-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169544 2020-09-06] (Adobe Inc. -> Adobe Inc.) R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3739728 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3511376 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated) S2 AktualizujPP; C:\Program Files (x86)\Asseco Poland SA\Platnik\ASSECO.AKTUALIZUJ.PP.exe [44032 2020-10-09] (Asseco Poland S.A.) [Brak podpisu cyfrowego] R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2020-09-09] (Apple Inc. -> Apple Inc.) R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [314368 2018-01-18] (Brother Industries, Ltd.) [Brak podpisu cyfrowego] S3 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\85.0.4183.6\remoting_host.exe [72176 2020-06-28] (Google LLC -> Google Inc.) R2 DolbyDAXAPI; C:\WINDOWS\system32\dolbyaposvc\DAX3API.exe [398352 2018-06-21] (Dolby Laboratories, Inc. -> ) R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2371760 2020-08-26] (ESET, spol. s r.o. -> ESET) R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2371760 2020-08-26] (ESET, spol. s r.o. -> ESET) R2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [305520 2018-05-30] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) R2 MSSQL$SAGEPL; C:\Program Files\Microsoft SQL Server\MSSQL13.SAGEPL\MSSQL\Binn\sqlservr.exe [392896 2016-10-29] (Microsoft Corporation -> Microsoft Corporation) R2 Sage.Deployment; C:\Program Files (x86)\Sage Update\Sage.Deployment.exe [56008 2017-10-12] (Sage GmbH -> Sage GmbH) S4 SQLAgent$SAGEPL; C:\Program Files\Microsoft SQL Server\MSSQL13.SAGEPL\MSSQL\Binn\SQLAGENT.EXE [565952 2016-10-29] (Microsoft Corporation -> Microsoft Corporation) R2 SQLTELEMETRY$SAGEPL; C:\Program Files\Microsoft SQL Server\MSSQL13.SAGEPL\MSSQL\Binn\sqlceip.exe [249032 2016-10-29] (Microsoft Corporation -> Microsoft Corporation) R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13088784 2020-05-25] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) R2 USBAppControl; C:\Program Files (x86)\Brother\iPrint&Scan\USBAppControl.exe [12288 2020-08-04] (Microsoft) [Brak podpisu cyfrowego] S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WorkflowAppControl; C:\Program Files (x86)\Brother\iPrint&Scan\WorkflowAppControl.exe [20480 2020-08-04] (Microsoft) [Brak podpisu cyfrowego] R2 YMC; C:\WINDOWS\System32\ymc.exe [64696 2018-05-03] (Lenovo -> Lenovo) ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 ACSSCR; C:\WINDOWS\system32\DRIVERS\a38usb.sys [62592 2014-05-14] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Card Systems Ltd.) R3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.) R3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.) R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2020-08-18] (Bluestack Systems, Inc -> Bluestack System Inc.) S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2019-07-08] (AVB Disc Soft, SIA -> Disc Soft Ltd) S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2019-07-08] (AVB Disc Soft, SIA -> Disc Soft Ltd) R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [158512 2020-08-26] (ESET, spol. s r.o. -> ESET) R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [106640 2020-08-26] (ESET, spol. s r.o. -> ESET) S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15288 2020-09-15] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET) R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [195976 2020-08-26] (ESET, spol. s r.o. -> ESET) R2 ekbdflt; C:\WINDOWS\System32\drivers\ekbdflt.sys [50712 2019-11-01] (ESET, spol. s r.o. -> ESET) R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [116488 2020-08-26] (ESET, spol. s r.o. -> ESET) S3 HPEWSFXBULK; C:\WINDOWS\system32\drivers\hpfx64bulk.sys [29096 2019-06-11] (Hewlett-Packard Company -> Hewlett Packard) S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2015-11-05] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.) S4 RsFx0410; C:\WINDOWS\System32\DRIVERS\RsFx0410.sys [261840 2016-10-20] (Microsoft Corporation -> Microsoft Corporation) S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2015-11-05] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) =================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2020-10-11 13:50 - 2020-10-11 13:50 - 000033494 _____ C:\Users\Anna\Desktop\FRST.txt 2020-10-11 13:49 - 2020-10-11 13:49 - 002299392 _____ (Farbar) C:\Users\Anna\Desktop\FRST64.exe 2020-10-11 13:07 - 2020-10-11 13:07 - 001054771 _____ C:\Users\Anna\Desktop\Image_00804.pdf 2020-10-11 13:06 - 2020-10-11 13:06 - 010849672 _____ C:\Users\Anna\Desktop\Mid-morning on BBC Radio Sussex - Reunion with a lost royal moment - BBC Sounds.mp4 2020-10-10 23:48 - 2020-10-11 13:50 - 000000000 ____D C:\FRST 2020-10-09 19:30 - 2020-10-09 19:30 - 000000964 _____ C:\Users\Public\Desktop\Brother iPrint&Scan.lnk 2020-10-08 17:12 - 2020-10-08 17:12 - 000003522 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0 2020-10-01 19:51 - 2020-10-01 19:51 - 000001823 _____ C:\Users\Public\Desktop\iTunes.lnk 2020-10-01 19:51 - 2020-10-01 19:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes 2020-10-01 19:51 - 2020-10-01 19:51 - 000000000 ____D C:\Program Files\iTunes 2020-10-01 19:51 - 2020-10-01 19:51 - 000000000 ____D C:\Program Files\iPod 2020-09-30 20:13 - 2020-09-30 20:13 - 531718402 _____ C:\Users\Anna\AppData\Local\Colossal Order.rar 2020-09-13 21:02 - 2020-09-13 21:02 - 000000996 _____ C:\Users\Anna\Desktop\(64)The Sims 4.lnk 2020-09-12 22:18 - 2020-08-14 01:59 - 001371344 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2020-09-12 22:18 - 2020-08-14 01:59 - 001371344 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2020-09-12 22:18 - 2020-08-14 01:58 - 001780944 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2020-09-12 22:18 - 2020-08-14 01:58 - 001780944 _____ C:\WINDOWS\system32\vulkaninfo.exe 2020-09-12 22:18 - 2020-08-14 01:58 - 001086672 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2020-09-12 22:18 - 2020-08-14 01:58 - 001086672 _____ C:\WINDOWS\system32\vulkan-1.dll 2020-09-12 22:18 - 2020-08-14 01:58 - 000946392 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2020-09-12 22:18 - 2020-08-14 01:58 - 000946392 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2020-09-12 22:18 - 2020-08-14 01:58 - 000455400 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2020-09-12 22:18 - 2020-08-14 01:58 - 000349928 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2020-09-12 22:18 - 2020-08-14 01:56 - 000816376 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll 2020-09-12 22:18 - 2020-08-14 01:56 - 000675216 _____ C:\WINDOWS\system32\nvofapi64.dll 2020-09-12 22:18 - 2020-08-14 01:56 - 000541928 _____ C:\WINDOWS\SysWOW64\nvofapi.dll 2020-09-12 22:18 - 2020-08-14 01:55 - 002078104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2020-09-12 22:18 - 2020-08-14 01:55 - 001570720 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2020-09-12 22:18 - 2020-08-14 01:55 - 001485544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2020-09-12 22:18 - 2020-08-14 01:55 - 001146256 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2020-09-12 22:18 - 2020-08-14 01:55 - 000811256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll 2020-09-12 22:18 - 2020-08-14 01:55 - 000669432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll 2020-09-12 22:18 - 2020-08-14 01:55 - 000656792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2020-09-12 22:18 - 2020-08-14 01:55 - 000555936 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll 2020-09-12 22:18 - 2020-08-14 01:54 - 006653328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2020-09-12 22:18 - 2020-08-14 01:54 - 005882600 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2020-09-12 22:18 - 2020-08-14 01:54 - 003916688 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2020-09-12 22:18 - 2020-08-14 01:54 - 002376080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2020-09-12 22:18 - 2020-08-14 01:54 - 001722088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6445206.dll 2020-09-12 22:18 - 2020-08-14 01:54 - 001482992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6445206.dll 2020-09-12 22:18 - 2020-08-14 01:51 - 004707696 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2020-10-11 13:36 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2020-10-11 11:17 - 2020-02-08 21:11 - 000000000 ____D C:\ProgramData\NVIDIA 2020-10-11 11:17 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2020-10-11 11:12 - 2020-02-08 22:30 - 000000000 ____D C:\Users\Anna\AppData\Roaming\BitTorrent 2020-10-11 10:45 - 2020-01-25 20:01 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData 2020-10-11 10:42 - 2020-07-30 20:54 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2020-10-11 00:55 - 2020-07-30 21:01 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2020-10-11 00:55 - 2020-07-30 21:01 - 000003386 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2020-10-10 23:49 - 2020-02-08 21:47 - 000000000 ____D C:\Users\Anna\AppData\Local\Spotify 2020-10-10 23:46 - 2020-07-30 21:01 - 001931494 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2020-10-10 23:46 - 2019-12-07 17:08 - 000787066 _____ C:\WINDOWS\system32\perfh015.dat 2020-10-10 23:46 - 2019-12-07 17:08 - 000152910 _____ C:\WINDOWS\system32\perfc015.dat 2020-10-10 23:46 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2020-10-10 23:39 - 2020-02-08 21:46 - 000000000 ____D C:\Users\Anna\AppData\Roaming\Spotify 2020-10-10 23:39 - 2019-06-19 15:11 - 000000000 ___RD C:\Users\Anna\OneDrive 2020-10-10 23:38 - 2020-07-30 21:01 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2020-10-10 23:38 - 2020-07-30 20:54 - 000008192 ___SH C:\DumpStack.log.tmp 2020-10-10 23:38 - 2020-04-02 13:34 - 000000000 ____D C:\Program Files (x86)\TeamViewer 2020-10-10 23:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState 2020-10-10 23:38 - 2019-06-19 15:08 - 000000000 __SHD C:\Users\Anna\IntelGraphicsProfiles 2020-10-10 23:19 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2020-10-10 22:27 - 2020-07-30 20:55 - 000000000 ____D C:\Users\Anna 2020-10-10 18:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2020-10-10 17:03 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2020-10-09 19:41 - 2020-02-08 21:37 - 000002428 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2020-10-09 19:30 - 2020-02-08 21:59 - 000000000 ____D C:\Program Files (x86)\Brother 2020-10-09 19:30 - 2020-02-08 21:57 - 000000000 ____D C:\ProgramData\Package Cache 2020-10-09 19:30 - 2019-12-30 16:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother 2020-10-09 16:59 - 2020-09-03 20:16 - 000003922 _____ C:\WINDOWS\system32\Tasks\BlueStacksHelper 2020-10-08 22:20 - 2020-07-30 21:01 - 000003356 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3670700893-2789226242-3682420669-1002 2020-10-08 22:20 - 2020-07-30 20:55 - 000002415 _____ C:\Users\Anna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2020-10-07 22:08 - 2020-08-21 23:04 - 000011169 _____ C:\Users\Anna\Desktop\Raty.xlsx 2020-10-06 22:41 - 2020-02-08 21:31 - 000000000 ____D C:\Users\Anna\AppData\Local\Packages 2020-10-06 17:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2020-10-05 18:46 - 2020-06-18 17:46 - 000000000 ___RD C:\Users\Administrator\OneDrive 2020-10-05 18:46 - 2020-06-18 17:43 - 000000000 __SHD C:\Users\Administrator\IntelGraphicsProfiles 2020-10-05 17:32 - 2020-02-08 21:57 - 000000000 ____D C:\Users\Anna\AppData\Roaming\GofinDruki 2020-10-02 17:35 - 2020-06-18 17:43 - 000000000 ____D C:\Users\Administrator\AppData\Local\Packages 2020-10-01 18:02 - 2020-02-28 22:54 - 000000000 ____D C:\Users\Anna\AppData\Local\D3DSCache 2020-09-29 00:24 - 2019-06-24 21:42 - 000000000 ____D C:\Users\Anna\JPK 2020-09-29 00:09 - 2020-07-22 18:24 - 000000000 ____D C:\Users\Anna\AppData\Local\Google 2020-09-25 18:58 - 2019-06-20 11:06 - 000000000 ____D C:\Users\Anna\AKMF 2020-09-24 15:15 - 2020-07-30 21:01 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2020-09-24 15:14 - 2020-02-11 22:13 - 000002121 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller DC.lnk 2020-09-24 15:14 - 2020-02-11 22:13 - 000002110 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk 2020-09-21 23:30 - 2020-07-22 18:24 - 000002314 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2020-09-21 23:30 - 2020-07-22 18:24 - 000002273 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2020-09-18 19:43 - 2019-09-25 21:38 - 000000000 ____D C:\Users\Anna\Downloads\Compressed 2020-09-15 19:30 - 2020-04-12 23:08 - 000000000 ____D C:\Users\Anna\AppData\Local\NVIDIA 2020-09-15 18:05 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2020-09-15 18:05 - 2019-10-16 14:04 - 000015288 _____ (ESET) C:\WINDOWS\system32\Drivers\eelam.sys 2020-09-13 21:02 - 2020-08-06 20:19 - 000000000 ____D C:\WINDOWS\SysWOW64\directx 2020-09-13 21:02 - 2020-02-09 22:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\by.xatab 2020-09-13 20:41 - 2019-06-19 21:17 - 000000000 ____D C:\Games 2020-09-11 22:48 - 2020-04-03 15:45 - 000000000 ____D C:\Users\Anna\AppData\Local\Colossal Order ==================== Pliki w katalogu głównym wybranych folderów ======== 2020-09-30 20:13 - 2020-09-30 20:13 - 531718402 _____ () C:\Users\Anna\AppData\Local\Colossal Order.rar 2020-02-09 12:45 - 2020-02-09 12:45 - 000000410 _____ () C:\Users\Anna\AppData\Local\oobelibMkey.log 2020-04-03 17:40 - 2020-06-06 18:15 - 000007597 _____ () C:\Users\Anna\AppData\Local\Resmon.ResmonCfg ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================