Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 15-11-2020 Uruchomiony przez naprawa (administrator) DAMIANS (16-11-2020 16:16:28) Uruchomiony z C:\Users\naprawa\Downloads Załadowane profile: naprawa Platform: Windows 7 Professional Service Pack 1 (X64) Język: Polski (Polska) Domyślna przeglądarka: Chrome Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (ABBYY PRODUCTION LLC -> ABBYY) C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (Adobe Systems, Incorporated -> Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe (Arvato Digital Services Canada Inc -> arvato digital services llc) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.32\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.32\GoogleCrashHandler64.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <13> (Intel Corporation -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\PrintIsolationHost.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2> (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\CCleanerBrowserCrashHandler.exe (Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\CCleanerBrowserCrashHandler64.exe (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Siber Systems -> Siber Systems Inc.) C:\Program Files (x86)\Siber Systems\AI RoboForm\rf-chrome-nm-host.exe (Siber Systems -> Siber Systems) C:\Program Files (x86)\Siber Systems\AI RoboForm\robotaskbaricon.exe (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe <6> (TeamViewer GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11545192 2010-11-02] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmdS.exe [175504 2020-11-03] (ESET, spol. s r.o. -> ESET) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-01-07] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM\...\Run: [SimplySignDesktop] => C:\Program Files\Certum\SimplySign Desktop\SimplySignDesktop.exe [1189456 2020-06-04] (Asseco Data Systems S.A. -> Asseco Data Systems S.A.) HKLM-x32\...\Run: [FPDU] => C:\Program Files (x86)\FPDU\Fiery Driver Updater.exe [9507938 2016-11-08] (Electronics For Imaging, Inc.) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [ISUSScheduler] => C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe [81920 2005-02-16] (InstallShield Software Corporation) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3499640 2017-03-28] (Adobe Systems, Incorporated -> Adobe Systems Inc.) HKLM-x32\...\Run: [SimplySignDesktop] => C:\Program Files (x86)\Certum\SimplySign Desktop\SimplySignDesktop.exe [1189456 2020-06-04] (Asseco Data Systems S.A. -> Asseco Data Systems S.A.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [710776 2020-06-18] (Oracle America, Inc. -> Oracle Corporation) HKU\S-1-5-21-704456318-2252790210-932501199-1003\...\Run: [CCleanerBrowserAutoLaunch_B34C2BD532134589E78FE37B27FA0A35] => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2137520 2020-11-02] (Piriform Software Ltd -> Piriform Software) HKU\S-1-5-21-704456318-2252790210-932501199-1003\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [90952568 2020-10-29] (Skype Software Sarl -> Skype Technologies S.A.) HKU\S-1-5-21-704456318-2252790210-932501199-1003\...\Run: [RoboForm] => C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe [145704 2019-10-30] (Siber Systems -> Siber Systems) HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [55432 2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc) HKLM\Software\Microsoft\Active Setup\Installed Components: [{052EB454-9F19-CB42-7875-807F79F311C4}] -> C:\Program Files (x86)\CCleaner Browser\Application\86.1.6739.114\Installer\chrmstp.exe [2020-11-05] (Piriform Software Ltd -> Piriform Software) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\86.0.4240.193\Installer\chrmstp.exe [2020-11-12] (Google LLC -> Google LLC) Startup: C:\Users\Damian S\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tworzenie wycinków ekranu i uruchamianie programu OneNote 2010.lnk [2019-10-09] ShortcutTarget: Tworzenie wycinków ekranu i uruchamianie programu OneNote 2010.lnk -> C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation) BootExecute: autocheck autochk * HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {05E3D44A-97A3-44AF-A03D-40595FB05214} - System32\Tasks\{E44137B7-F495-4807-8831-BC74349BB825} => C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE [24171136 2020-09-17] (Microsoft Corporation -> Microsoft Corporation) Task: {0A65B347-B2F7-4E27-BB43-90A3F38E2B0A} - System32\Tasks\Open URL by RoboForm => C:\Windows\system32\rundll32.exe url.dll,FileProtocolHandler "https://www.roboform.com/test-pass.html?aaa=KICMOJNJKJNMGMMJMMMMCNHMGMLMNMCNLMJJOMKMCNOJPMKJOMCNJJHMOJKMKJGMMMLJOJOMIMNMJNJICMHMCNJMCNNMFMOMOMCNPMCNGMJMPMPMFMJMCNOMCNIMJMPMOMCNNMJNPICMPMFMEKMICNJJCKFMKMGMIMJNHICMEKMICNJJCKJNBJCMGJBJJJAJPLIIKJNJIJDJAJNJOJDJBNPIDJJNKJCMGJBJJJAJPLIIKJNJIJDJAJNJOJDJBNPIDJJNNICMJNDJCMPIDJJNMJCMPMFMOMHMKMJMFMPMJNFICMGJLJKJBJLIGJLIGJKJMIBNKJHIKJ" Task: {1A04D96A-3438-498F-A16D-C9480EB3AF20} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2137520 2020-11-02] (Piriform Software Ltd -> Piriform Software) Task: {1F7B7221-AE8F-44F3-BA82-F7D260F51964} - System32\Tasks\Microsoft\Windows\Task Manager\Interactive => {855fec53-d2e4-4999-9e87-3414e9cf0ff4} C:\Windows\system32\wdc.dll [1363456 2017-06-12] () [Brak podpisu cyfrowego] Task: {20BE89F3-5A25-4A87-BA44-A97E7DDA25E2} - System32\Tasks\Run RoboForm TaskBar Icon => C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe [145704 2019-10-30] (Siber Systems -> Siber Systems) Task: {2F9FCC75-20EC-463A-BADC-41B9FAA0A73F} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2137520 2020-11-02] (Piriform Software Ltd -> Piriform Software) Task: {357D3C5F-1A4F-47C7-ACCE-6B5FAEC1A1CE} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158568 2020-11-12] (Microsoft Corporation -> Microsoft Corporation) Task: {4F50DB2E-E60C-4335-8D6D-513E1DBAE233} - System32\Tasks\GU5SkipUAC => C:\Program Files (x86)\Glary Utilities 5\Integrator.exe [918960 2020-11-06] (Glarysoft LTD -> Glarysoft Ltd) Task: {6A1470B2-1E87-43FE-B1E2-686BD4B74EE4} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {738D9558-886B-472A-A6EF-8192900526B2} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24612240 2020-11-04] (Microsoft Corporation -> Microsoft Corporation) Task: {791C2A6C-2279-4B32-B439-16D8C9B0DED1} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-11-11] (Adobe Inc. -> Adobe) Task: {87A412D5-849A-4A77-B8BF-297DB9C36829} - System32\Tasks\{683714FA-22C2-447F-8A20-01CAD20CBF37} => C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE [24171136 2020-09-17] (Microsoft Corporation -> Microsoft Corporation) Task: {9527D900-C7A4-43D7-9624-C2C820112BAC} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [25492152 2020-09-22] (Piriform Software Ltd -> Piriform Software Ltd) Task: {9A91DD9E-0791-4101-B220-6C410BFF18C8} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1341008 2020-09-06] (Adobe Inc. -> Adobe Inc.) Task: {9DB5BDAE-A540-44C9-9D7F-6E85DD146941} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-704456318-2252790210-932501199-1000 => C:\Users\naprawa\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe Task: {B1668860-9D8C-4CF6-8FAD-D68FB5B6353F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-09-29] (Google LLC -> Google LLC) Task: {C1CBC835-4E23-42B5-835B-29EBC37F0132} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-10-04] (Piriform Software Ltd -> Piriform Software) Task: {C61F09E3-ED86-466A-9767-531D3C5764E6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-09-29] (Google LLC -> Google LLC) Task: {C7A4DD1E-8C9C-45A7-B868-D4731E328E16} - System32\Tasks\{D2A0ACD7-ECF9-45EE-BE8B-ABA21C67FD1D} => C:\Windows\system32\pcalua.exe -a E:\/setup.exe -d E:\ Task: {CC05A7EC-BED5-4935-90EA-62EE417B3436} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-09-22] (Piriform Software Ltd -> Piriform Software Ltd) Task: {CF6C11E8-2132-4F74-B7E0-A2FAABC046F6} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158568 2020-11-12] (Microsoft Corporation -> Microsoft Corporation) Task: {D887363C-3C71-4D72-9C35-79208A2F31AF} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_453_Plugin.exe [1502776 2020-11-11] (Adobe Inc. -> Adobe) Task: {DF35AC0B-90ED-445D-8C79-CE1B8AAF5EA3} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [667856 2020-11-09] (Mozilla Corporation -> Mozilla Foundation) Task: {E1FD18C2-1AA2-4265-AB01-08C8E9566B44} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24612240 2020-11-04] (Microsoft Corporation -> Microsoft Corporation) Task: {E33FDA54-63A4-4B90-B77A-91F719365706} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-10-04] (Piriform Software Ltd -> Piriform Software) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.8.1 Tcpip\..\Interfaces\{BEB23D1C-8861-4E6A-9F58-733077E30B30}: [DhcpNameServer] 192.168.8.1 Edge: ====== Edge Profile: C:\Users\naprawa\AppData\Local\Microsoft\Edge\User Data\Default [2020-11-16] FireFox: ======== FF HKLM\...\Firefox\Extensions: [{7bb202fa-9247-49c6-898c-ce0d36bc44e3}] - C:\Program Files (x86)\mypopupblocker\ff\my_popup_blocker-1.0.0-fx.xpi FF Extension: (My Popup Blocker) - C:\Program Files (x86)\mypopupblocker\ff\my_popup_blocker-1.0.0-fx.xpi [2019-09-03] FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.15@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2020-09-29] [Przestarzałe] FF HKLM-x32\...\Firefox\Extensions: [{7bb202fa-9247-49c6-898c-ce0d36bc44e3}] - C:\Program Files (x86)\mypopupblocker\ff\my_popup_blocker-1.0.0-fx.xpi FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_453.dll [2020-11-11] (Adobe Inc. -> ) FF Plugin: @java.com/DTPlugin,version=11.271.2 -> C:\Program Files\Java\jre1.8.0_271\bin\dtplugin\npDeployJava1.dll [2020-10-27] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.271.2 -> C:\Program Files\Java\jre1.8.0_271\bin\plugin2\npjp2.dll [2020-10-27] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @microsoft.com/GENUINE -> disabled [Brak pliku] FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-11-03] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-07-29] (Adobe Systems Incorporated -> Adobe Systems) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_453.dll [2020-11-11] (Adobe Inc. -> ) FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Brak pliku] FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-11-03] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-10-27] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Brak podpisu cyfrowego] FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-10-27] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Brak podpisu cyfrowego] FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2020-10-04] (Piriform Software Ltd -> Piriform Software) FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2020-10-04] (Piriform Software Ltd -> Piriform Software) FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2017-03-28] (Adobe Systems, Incorporated -> Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-07-29] (Adobe Systems Incorporated -> Adobe Systems) FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2020-11-16] Chrome: ======= CHR Profile: C:\Users\naprawa\AppData\Local\Google\Chrome\User Data\Default [2020-11-16] CHR Extension: (Prezentacje) - C:\Users\naprawa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-11-16] CHR Extension: (Dokumenty) - C:\Users\naprawa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-11-16] CHR Extension: (Dysk Google) - C:\Users\naprawa\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-16] CHR Extension: (YouTube) - C:\Users\naprawa\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-11-16] CHR Extension: (Adobe Acrobat) - C:\Users\naprawa\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-11-16] CHR Extension: (Arkusze) - C:\Users\naprawa\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-11-16] CHR Extension: (Dokumenty Google offline) - C:\Users\naprawa\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-16] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\naprawa\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-11-16] CHR Extension: (Gmail) - C:\Users\naprawa\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-16] CHR Extension: (Chrome Media Router) - C:\Users\naprawa\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-11-16] CHR Extension: (RoboForm Password Manager) - C:\Users\naprawa\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnlccmojcmeohlpggmfnbbiapkmbliob [2020-11-16] CHR HKLM\...\Chrome\Extension: [pnlccmojcmeohlpggmfnbbiapkmbliob] - C:\Program Files (x86)\Siber Systems\AI RoboForm\Chrome\rf-chrome.crx [2018-03-11] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2017-03-28] CHR HKLM-x32\...\Chrome\Extension: [pnlccmojcmeohlpggmfnbbiapkmbliob] - C:\Program Files (x86)\Siber Systems\AI RoboForm\Chrome\rf-chrome.crx [2018-03-11] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 ABBYY.Licensing.FineReader.Professional.11.0; C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe [821840 2012-07-19] (ABBYY PRODUCTION LLC -> ABBYY) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169544 2020-09-06] (Adobe Inc. -> Adobe Inc.) S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-11-11] (Adobe Inc. -> Adobe) R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3739728 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3511376 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated) S2 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-10-04] (Piriform Software Ltd -> Piriform Software) S3 CCleanerBrowserElevationService; C:\Program Files (x86)\CCleaner Browser\Application\86.1.6739.114\elevation_service.exe [1348304 2020-11-02] (Piriform Software Ltd -> Piriform Software) S3 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-10-04] (Piriform Software Ltd -> Piriform Software) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11137392 2020-11-02] (Microsoft Corporation -> Microsoft Corporation) R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2595360 2020-11-03] (ESET, spol. s r.o. -> ESET) R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2595360 2020-11-03] (ESET, spol. s r.o. -> ESET) R3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7269976 2020-11-16] (Malwarebytes Inc -> Malwarebytes) R2 PSI_SVC_2; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc) S3 ss_conn_launcher_service; C:\Windows\system32\Samsung\EasySetup\ss_conn_launcher.exe [182120 2019-09-26] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12758528 2019-12-16] (TeamViewer GmbH -> TeamViewer Germany GmbH) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation) ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 ACR39U; C:\Windows\System32\DRIVERS\acr39u.sys [81264 2018-06-22] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Card Systems Ltd.) R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [160992 2020-10-27] (ESET, spol. s r.o. -> ESET) R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [109360 2020-10-27] (ESET, spol. s r.o. -> ESET) R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [190464 2020-10-27] (ESET, spol. s r.o. -> ESET) S4 ekbdflt; C:\Windows\System32\DRIVERS\ekbdflt.sys [43720 2020-10-27] (ESET, spol. s r.o. -> ESET) R1 epfw; C:\Windows\System32\DRIVERS\epfw.sys [70048 2020-10-27] (ESET, spol. s r.o. -> ESET) R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [56152 2020-10-27] (ESET, spol. s r.o. -> ESET) R1 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [107784 2020-10-27] (ESET, spol. s r.o. -> ESET) R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [153312 2020-11-16] (Malwarebytes Corporation -> Malwarebytes) R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [28936 2020-11-16] (Glarysoft LTD -> Glarysoft Ltd) R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [217600 2020-11-16] (Malwarebytes Inc -> Malwarebytes) R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [197792 2020-11-16] (Malwarebytes Inc -> Malwarebytes) R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [74936 2020-11-16] (Malwarebytes Inc -> Malwarebytes) R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248968 2020-11-16] (Malwarebytes Inc -> Malwarebytes) R3 MBAMWebProtection; C:\Windows\System32\DRIVERS\mwac.sys [121968 2020-11-16] (Malwarebytes Inc -> Malwarebytes) S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [166760 2020-04-24] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 ssudserd; C:\Windows\System32\DRIVERS\ssudserd.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 ss_conn_usb_driver2; C:\Windows\System32\Drivers\ss_conn_usb_driver2.sys [43368 2019-09-26] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 wdm_usb; C:\Windows\System32\DRIVERS\usb2ser.sys [159936 2016-08-16] (NGO -> MBB) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) =================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2020-11-16 16:07 - 2020-11-16 16:07 - 000054722 ____C C:\Users\naprawa\Downloads\Addition.txt 2020-11-16 16:05 - 2020-11-16 16:17 - 000025256 ____C C:\Users\naprawa\Downloads\FRST.txt 2020-11-16 16:02 - 2020-11-16 16:17 - 000000000 ___DC C:\FRST 2020-11-16 16:01 - 2020-11-16 16:01 - 002294784 ____C (Farbar) C:\Users\naprawa\Downloads\FRST64.exe 2020-11-16 15:48 - 2020-11-16 15:56 - 000000000 ___DC C:\Users\naprawa\AppData\Local\RoboForm 2020-11-16 15:47 - 2020-11-16 15:47 - 000000000 ___DC C:\Users\naprawa\AppData\LocalLow\IGDump 2020-11-16 15:46 - 2020-11-16 15:46 - 000000000 ___DC C:\Users\naprawa\AppData\Roaming\Skype 2020-11-16 15:43 - 2020-11-16 15:43 - 000000000 ___DC C:\Users\naprawa\AppData\Local\ElevatedDiagnostics 2020-11-16 15:41 - 2020-11-16 15:41 - 000000000 ___DC C:\Users\naprawa\AppData\Roaming\FileZilla 2020-11-16 15:41 - 2020-11-16 15:41 - 000000000 ___DC C:\Users\naprawa\AppData\Local\FileZilla 2020-11-16 15:29 - 2020-11-16 15:29 - 000197792 ____C (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys 2020-11-16 15:29 - 2020-11-16 15:29 - 000121968 ____C (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys 2020-11-16 15:29 - 2020-11-16 15:29 - 000074936 ____C (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys 2020-11-16 15:29 - 2020-11-16 15:29 - 000000000 ___DC C:\Users\naprawa\AppData\Local\mbam 2020-11-16 15:13 - 2020-11-16 15:13 - 000000000 ___DC C:\Users\naprawa\AppData\Roaming\GlarySoft 2020-11-16 15:05 - 2020-11-16 15:38 - 000000000 ___DC C:\Users\naprawa\AppData\Roaming\Adobe 2020-11-16 15:05 - 2020-11-16 15:38 - 000000000 ___DC C:\Users\naprawa\AppData\Local\Adobe 2020-11-16 15:05 - 2020-11-16 15:05 - 000001421 ____C C:\Users\naprawa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2020-11-16 15:05 - 2020-11-16 15:05 - 000000020 __SHC C:\Users\naprawa\ntuser.ini 2020-11-16 15:05 - 2020-11-16 15:05 - 000000000 SHDCL C:\Users\naprawa\Ustawienia lokalne 2020-11-16 15:05 - 2020-11-16 15:05 - 000000000 SHDCL C:\Users\naprawa\Szablony 2020-11-16 15:05 - 2020-11-16 15:05 - 000000000 SHDCL C:\Users\naprawa\Moje dokumenty 2020-11-16 15:05 - 2020-11-16 15:05 - 000000000 SHDCL C:\Users\naprawa\Menu Start 2020-11-16 15:05 - 2020-11-16 15:05 - 000000000 SHDCL C:\Users\naprawa\Documents\Moje wideo 2020-11-16 15:05 - 2020-11-16 15:05 - 000000000 SHDCL C:\Users\naprawa\Documents\Moje obrazy 2020-11-16 15:05 - 2020-11-16 15:05 - 000000000 SHDCL C:\Users\naprawa\Documents\Moja muzyka 2020-11-16 15:05 - 2020-11-16 15:05 - 000000000 SHDCL C:\Users\naprawa\Dane aplikacji 2020-11-16 15:05 - 2020-11-16 15:05 - 000000000 SHDCL C:\Users\naprawa\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2020-11-16 15:05 - 2020-11-16 15:05 - 000000000 SHDCL C:\Users\naprawa\AppData\Local\Historia 2020-11-16 15:05 - 2020-11-16 15:05 - 000000000 SHDCL C:\Users\naprawa\AppData\Local\Dane aplikacji 2020-11-16 15:05 - 2020-11-16 15:05 - 000000000 ___DC C:\Users\naprawa\AppData\Local\VirtualStore 2020-11-16 15:05 - 2020-11-16 15:05 - 000000000 ___DC C:\Users\naprawa\AppData\Local\Google 2020-11-16 15:05 - 2020-11-16 15:05 - 000000000 ___DC C:\Users\naprawa\AppData\Local\ESET 2020-11-16 15:05 - 2020-11-16 15:05 - 000000000 ___DC C:\Users\naprawa\AppData\Local\CCleaner Browser 2020-11-16 15:05 - 2020-11-16 15:05 - 000000000 ___DC C:\Users\naprawa 2020-11-16 15:05 - 2018-02-24 03:02 - 000000000 ___DC C:\Users\naprawa\AppData\Local\Microsoft Help 2020-11-16 15:05 - 2011-04-12 14:32 - 000000000 ___DC C:\Users\naprawa\AppData\Roaming\Media Center Programs 2020-11-16 14:45 - 2020-11-16 15:06 - 000000000 ___DC C:\Users\TEMP.DamianS.001 2020-11-16 14:32 - 2020-11-16 14:32 - 000028936 ____C (Glarysoft Ltd) C:\Windows\system32\Drivers\GUBootStartup.sys 2020-11-16 14:32 - 2020-11-16 14:32 - 000002976 ____C C:\Windows\system32\Tasks\GU5SkipUAC 2020-11-16 14:32 - 2020-11-16 14:32 - 000001092 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk 2020-11-16 14:32 - 2020-11-16 14:32 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5 2020-11-16 14:31 - 2020-11-16 14:32 - 000000000 ___DC C:\Program Files (x86)\Glary Utilities 5 2020-11-16 14:27 - 2020-11-16 14:31 - 000001902 ____C C:\GUDownLoaddebug.txt 2020-11-16 14:27 - 2020-11-16 14:27 - 000001259 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Registry Repair.lnk 2020-11-16 14:27 - 2020-11-16 14:27 - 000001247 ____C C:\Users\Public\Desktop\Registry Repair.lnk 2020-11-16 14:27 - 2020-11-16 14:27 - 000001247 ____C C:\ProgramData\Desktop\Registry Repair.lnk 2020-11-16 14:27 - 2020-11-16 14:27 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glarysoft 2020-11-16 14:27 - 2020-11-16 14:27 - 000000000 ___DC C:\Program Files (x86)\Glarysoft 2020-11-16 14:13 - 2020-11-16 14:44 - 000000000 ___DC C:\Users\TEMP.DamianS.000 2020-11-16 14:07 - 2020-11-16 14:07 - 000001421 ____C C:\Users\TEMP.DamianS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2020-11-16 14:07 - 2020-11-16 14:07 - 000000020 __SHC C:\Users\TEMP.DamianS\ntuser.ini 2020-11-16 14:07 - 2020-11-16 14:07 - 000000000 SHDCL C:\Users\TEMP.DamianS\Ustawienia lokalne 2020-11-16 14:07 - 2020-11-16 14:07 - 000000000 SHDCL C:\Users\TEMP.DamianS\Szablony 2020-11-16 14:07 - 2020-11-16 14:07 - 000000000 SHDCL C:\Users\TEMP.DamianS\Moje dokumenty 2020-11-16 14:07 - 2020-11-16 14:07 - 000000000 SHDCL C:\Users\TEMP.DamianS\Menu Start 2020-11-16 14:07 - 2020-11-16 14:07 - 000000000 SHDCL C:\Users\TEMP.DamianS\Documents\Moje wideo 2020-11-16 14:07 - 2020-11-16 14:07 - 000000000 SHDCL C:\Users\TEMP.DamianS\Documents\Moje obrazy 2020-11-16 14:07 - 2020-11-16 14:07 - 000000000 SHDCL C:\Users\TEMP.DamianS\Documents\Moja muzyka 2020-11-16 14:07 - 2020-11-16 14:07 - 000000000 SHDCL C:\Users\TEMP.DamianS\Dane aplikacji 2020-11-16 14:07 - 2020-11-16 14:07 - 000000000 SHDCL C:\Users\TEMP.DamianS\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2020-11-16 14:07 - 2020-11-16 14:07 - 000000000 SHDCL C:\Users\TEMP.DamianS\AppData\Local\Historia 2020-11-16 14:07 - 2020-11-16 14:07 - 000000000 SHDCL C:\Users\TEMP.DamianS\AppData\Local\Dane aplikacji 2020-11-16 14:07 - 2020-11-16 14:07 - 000000000 ___DC C:\Users\TEMP.DamianS\AppData\Roaming\Adobe 2020-11-16 14:07 - 2020-11-16 14:07 - 000000000 ___DC C:\Users\TEMP.DamianS\AppData\Local\VirtualStore 2020-11-16 14:07 - 2020-11-16 14:07 - 000000000 ___DC C:\Users\TEMP.DamianS\AppData\Local\Google 2020-11-16 14:07 - 2020-11-16 14:07 - 000000000 ___DC C:\Users\TEMP.DamianS\AppData\Local\ESET 2020-11-16 14:07 - 2020-11-16 14:07 - 000000000 ___DC C:\Users\TEMP.DamianS\AppData\Local\CCleaner Browser 2020-11-16 14:07 - 2020-11-16 14:07 - 000000000 ___DC C:\Users\TEMP.DamianS\AppData\Local\Adobe 2020-11-16 14:07 - 2020-11-16 14:07 - 000000000 ___DC C:\Users\TEMP.DamianS 2020-11-16 14:07 - 2018-02-24 03:02 - 000000000 ___DC C:\Users\TEMP.DamianS\AppData\Local\Microsoft Help 2020-11-16 14:07 - 2011-04-12 14:32 - 000000000 ___DC C:\Users\TEMP.DamianS\AppData\Roaming\Media Center Programs 2020-11-16 13:27 - 2020-11-16 13:37 - 000000000 ___DC C:\Users\TEMP\AppData\Roaming\Adobe 2020-11-16 13:27 - 2020-11-16 13:37 - 000000000 ___DC C:\Users\TEMP\AppData\Local\Adobe 2020-11-16 13:27 - 2020-11-16 13:27 - 000001421 ____C C:\Users\TEMP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2020-11-16 13:27 - 2020-11-16 13:27 - 000000020 __SHC C:\Users\TEMP\ntuser.ini 2020-11-16 13:27 - 2020-11-16 13:27 - 000000000 SHDCL C:\Users\TEMP\Ustawienia lokalne 2020-11-16 13:27 - 2020-11-16 13:27 - 000000000 SHDCL C:\Users\TEMP\Szablony 2020-11-16 13:27 - 2020-11-16 13:27 - 000000000 SHDCL C:\Users\TEMP\Moje dokumenty 2020-11-16 13:27 - 2020-11-16 13:27 - 000000000 SHDCL C:\Users\TEMP\Menu Start 2020-11-16 13:27 - 2020-11-16 13:27 - 000000000 SHDCL C:\Users\TEMP\Documents\Moje wideo 2020-11-16 13:27 - 2020-11-16 13:27 - 000000000 SHDCL C:\Users\TEMP\Documents\Moje obrazy 2020-11-16 13:27 - 2020-11-16 13:27 - 000000000 SHDCL C:\Users\TEMP\Documents\Moja muzyka 2020-11-16 13:27 - 2020-11-16 13:27 - 000000000 SHDCL C:\Users\TEMP\Dane aplikacji 2020-11-16 13:27 - 2020-11-16 13:27 - 000000000 SHDCL C:\Users\TEMP\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2020-11-16 13:27 - 2020-11-16 13:27 - 000000000 SHDCL C:\Users\TEMP\AppData\Local\Historia 2020-11-16 13:27 - 2020-11-16 13:27 - 000000000 SHDCL C:\Users\TEMP\AppData\Local\Dane aplikacji 2020-11-16 13:27 - 2020-11-16 13:27 - 000000000 ___DC C:\Users\TEMP\AppData\Local\VirtualStore 2020-11-16 13:27 - 2020-11-16 13:27 - 000000000 ___DC C:\Users\TEMP\AppData\Local\Google 2020-11-16 13:27 - 2020-11-16 13:27 - 000000000 ___DC C:\Users\TEMP\AppData\Local\ESET 2020-11-16 13:27 - 2020-11-16 13:27 - 000000000 ___DC C:\Users\TEMP\AppData\Local\CCleaner Browser 2020-11-16 13:27 - 2020-11-16 13:27 - 000000000 ___DC C:\Users\TEMP 2020-11-16 13:27 - 2018-02-24 03:02 - 000000000 ___DC C:\Users\TEMP\AppData\Local\Microsoft Help 2020-11-16 13:27 - 2011-04-12 14:32 - 000000000 ___DC C:\Users\TEMP\AppData\Roaming\Media Center Programs 2020-11-16 12:10 - 2020-11-16 12:10 - 000248968 ____C (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys 2020-11-16 12:10 - 2020-11-16 12:10 - 000217600 ____C (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys 2020-11-16 08:17 - 2020-11-16 08:17 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Narzędzia pakietu Microsoft Office 2020-11-16 08:14 - 2020-11-16 08:14 - 000000000 __HDC C:\Users\Public\Documents\AdobeGC 2020-11-16 08:14 - 2020-11-16 08:14 - 000000000 __HDC C:\ProgramData\Documents\AdobeGC 2020-11-12 12:49 - 2020-11-12 12:50 - 000985390 ____C C:\Users\Damian S\Downloads\CamScanner 11-12-2020 12.43.pdf 2020-11-11 12:14 - 2020-11-11 12:14 - 000000000 ___DC C:\Windows\system32\Tasks\Mozilla 2020-11-09 18:25 - 2020-11-16 08:10 - 000000000 ___DC C:\Program Files\Mozilla Firefox 2020-11-06 09:41 - 2020-11-16 08:17 - 000002394 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk 2020-11-06 09:41 - 2020-11-16 08:17 - 000002382 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk 2020-11-06 09:41 - 2020-11-16 08:17 - 000002367 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk 2020-11-06 09:41 - 2020-11-16 08:17 - 000002364 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk 2020-11-06 09:41 - 2020-11-16 08:17 - 000002361 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk 2020-11-06 09:41 - 2020-11-16 08:17 - 000002328 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk 2020-11-06 09:41 - 2020-11-16 08:17 - 000002318 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk 2020-11-03 12:15 - 2020-11-16 08:18 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2020-11-03 11:57 - 2020-11-03 11:57 - 000000000 ___DC C:\Program Files\Microsoft Office 15 2020-11-02 20:53 - 2020-11-02 20:53 - 000107898 ____C C:\Users\Damian S\Downloads\14x Umowa zlecenie wzor bez danych z kwaterą.pdf 2020-11-02 09:08 - 2020-11-02 09:08 - 000003038 ____C C:\Windows\system32\Tasks\{D2A0ACD7-ECF9-45EE-BE8B-ABA21C67FD1D} 2020-10-21 11:22 - 2020-10-31 19:25 - 000000000 ___DC C:\Users\Damian S\AppData\Roaming\Signal 2020-10-21 11:22 - 2020-10-27 12:57 - 000002445 ____C C:\Users\Damian S\Desktop\Signal.lnk 2020-10-21 11:22 - 2020-10-21 11:22 - 000002453 ____C C:\Users\Damian S\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Signal.lnk 2020-10-21 11:22 - 2020-10-21 11:22 - 000000000 ___DC C:\Users\Damian S\AppData\Local\signal-desktop-updater ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2020-11-16 16:05 - 2009-07-14 05:45 - 000035440 ___HC C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2020-11-16 16:05 - 2009-07-14 05:45 - 000035440 ___HC C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2020-11-16 15:48 - 2018-03-11 10:10 - 000003602 ____C C:\Windows\system32\Tasks\Run RoboForm TaskBar Icon 2020-11-16 15:32 - 2011-04-12 14:21 - 000743484 ____C C:\Windows\system32\perfh015.dat 2020-11-16 15:32 - 2011-04-12 14:21 - 000156966 ____C C:\Windows\system32\perfc015.dat 2020-11-16 15:32 - 2009-07-14 06:13 - 001678034 ____C C:\Windows\system32\PerfStringBackup.INI 2020-11-16 15:32 - 2009-07-14 04:20 - 000000000 ___DC C:\Windows\inf 2020-11-16 15:28 - 2018-02-26 20:24 - 000000000 ___DC C:\Program Files (x86)\TeamViewer 2020-11-16 15:28 - 2018-02-23 00:43 - 000000000 ___DC C:\ProgramData\NVIDIA 2020-11-16 15:28 - 2009-07-14 06:08 - 000000006 ___HC C:\Windows\Tasks\SA.DAT 2020-11-16 12:12 - 2020-09-10 10:09 - 000001960 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2020-11-16 12:12 - 2019-09-17 08:39 - 000001948 ____C C:\Users\Public\Desktop\Malwarebytes.lnk 2020-11-16 12:12 - 2019-09-17 08:39 - 000001948 ____C C:\ProgramData\Desktop\Malwarebytes.lnk 2020-11-16 12:04 - 2019-09-17 08:39 - 000153312 ____C (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys 2020-11-16 08:24 - 2018-02-23 02:24 - 000000000 ___DC C:\Windows\system32\MRT 2020-11-16 08:19 - 2018-02-23 02:24 - 133736600 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2020-11-16 08:18 - 2009-07-14 04:20 - 000000000 ___DC C:\Program Files\Common Files\Microsoft Shared 2020-11-16 08:16 - 2018-02-23 16:48 - 000000000 ___DC C:\Program Files\Microsoft Office 2020-11-16 08:10 - 2018-02-23 00:56 - 000000000 ___DC C:\Program Files (x86)\Mozilla Maintenance Service 2020-11-16 00:19 - 2018-08-18 15:49 - 000000000 ___DC C:\Users\Damian S\AppData\Roaming\GG 2020-11-16 00:15 - 2019-11-07 10:36 - 000000000 ___DC C:\Users\Damian S\AppData\Roaming\FileZilla 2020-11-16 00:13 - 2020-02-19 13:21 - 000000000 ___DC C:\Users\Damian S\Documents\baza leady zbierane 2020-11-15 23:55 - 2018-02-23 17:09 - 000000000 ___DC C:\Users\Damian S\Documents\Pliki programu Outlook 2020-11-15 23:50 - 2019-11-14 07:41 - 000000000 ___DC C:\Users\Damian S\AppData\Local\CrashDumps 2020-11-15 04:55 - 2019-12-02 13:54 - 000000000 __HDC C:\Users\Public\Documents\AdobeGCData 2020-11-15 04:55 - 2019-12-02 13:54 - 000000000 __HDC C:\ProgramData\Documents\AdobeGCData 2020-11-14 18:20 - 2019-11-21 09:48 - 000007887 ____C C:\Windows\BRRBCOM.INI 2020-11-14 12:20 - 2020-07-01 02:17 - 000002233 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2020-11-14 12:20 - 2020-07-01 02:17 - 000002192 ____C C:\Users\Public\Desktop\Microsoft Edge.lnk 2020-11-14 12:20 - 2020-07-01 02:17 - 000002192 ____C C:\ProgramData\Desktop\Microsoft Edge.lnk 2020-11-12 09:08 - 2020-09-29 20:23 - 000002176 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2020-11-12 09:08 - 2020-09-29 20:23 - 000002135 ____C C:\Users\Public\Desktop\Google Chrome.lnk 2020-11-12 09:08 - 2020-09-29 20:23 - 000002135 ____C C:\ProgramData\Desktop\Google Chrome.lnk 2020-11-11 12:33 - 2020-10-04 13:47 - 000004128 _____ C:\Windows\system32\Tasks\CCleaner Update 2020-11-11 12:14 - 2018-02-23 00:56 - 000000000 ___DC C:\Users\Damian S\AppData\LocalLow\Mozilla 2020-11-11 03:10 - 2020-04-21 15:33 - 000842296 ____C (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe 2020-11-11 03:10 - 2020-04-21 15:33 - 000175160 ____C (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2020-11-11 03:10 - 2020-04-21 15:33 - 000004524 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier 2020-11-11 03:10 - 2020-04-21 15:33 - 000004382 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater 2020-11-11 03:10 - 2020-04-21 15:33 - 000000000 ___DC C:\Windows\SysWOW64\Macromed 2020-11-11 03:10 - 2020-04-21 15:33 - 000000000 ___DC C:\Windows\system32\Macromed 2020-11-08 11:17 - 2018-02-23 17:18 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2020-11-08 11:16 - 2009-07-14 05:45 - 000522032 ____C C:\Windows\system32\FNTCACHE.DAT 2020-11-05 17:54 - 2020-10-04 13:48 - 000003726 ____C C:\Windows\system32\Tasks\CCleaner Browser Heartbeat Task (Hourly) 2020-11-05 17:54 - 2020-10-04 13:48 - 000002328 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner Browser.lnk 2020-11-05 17:54 - 2020-10-04 13:48 - 000002285 ____C C:\Users\Public\Desktop\CCleaner Browser.lnk 2020-11-05 17:54 - 2020-10-04 13:48 - 000002285 ____C C:\ProgramData\Desktop\CCleaner Browser.lnk 2020-11-05 17:54 - 2020-10-04 13:47 - 000000000 ___DC C:\Program Files (x86)\CCleaner Browser 2020-11-04 10:48 - 2009-07-14 06:32 - 000000000 ___DC C:\Windows\system32\FxsTmp 2020-11-04 10:30 - 2019-11-07 16:12 - 000000128 ____C C:\Users\Damian S\AppData\Local\PUTTY.RND 2020-11-03 14:46 - 2018-02-23 00:54 - 000139296 ____C C:\Users\Damian S\AppData\Local\GDIPFONTCACHEV1.DAT 2020-11-03 12:15 - 2018-02-24 03:02 - 000000000 ___DC C:\Program Files\Common Files\DESIGNER 2020-11-02 07:42 - 2020-07-01 02:17 - 000003410 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2020-11-02 07:42 - 2020-07-01 02:17 - 000003282 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2020-10-31 18:54 - 2018-03-10 15:20 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Future Project 2020-10-31 18:54 - 2018-03-10 15:20 - 000000000 ___DC C:\ProgramData\Future Project 2020-10-31 18:54 - 2018-03-10 15:20 - 000000000 ___DC C:\Program Files (x86)\Future Project 2020-10-29 23:06 - 2010-11-21 04:27 - 000795000 ____C (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2020-10-27 14:42 - 2018-11-29 10:54 - 000160992 _____ (ESET) C:\Windows\system32\Drivers\eamonm.sys 2020-10-27 14:42 - 2018-11-29 10:54 - 000109360 _____ (ESET) C:\Windows\system32\Drivers\edevmon.sys 2020-10-27 14:42 - 2018-10-17 15:37 - 000190464 _____ (ESET) C:\Windows\system32\Drivers\ehdrv.sys 2020-10-27 14:42 - 2018-10-17 15:37 - 000107784 _____ (ESET) C:\Windows\system32\Drivers\epfwwfp.sys 2020-10-27 14:42 - 2018-10-17 15:37 - 000070048 _____ (ESET) C:\Windows\system32\Drivers\epfw.sys 2020-10-27 14:42 - 2018-10-17 15:37 - 000056152 _____ (ESET) C:\Windows\system32\Drivers\EpfwLWF.sys 2020-10-27 14:42 - 2018-10-17 15:37 - 000043720 _____ (ESET) C:\Windows\system32\Drivers\ekbdflt.sys 2020-10-27 08:27 - 2019-11-28 13:13 - 000192168 ____C (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll 2020-10-27 08:27 - 2019-11-28 13:13 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2020-10-27 08:27 - 2019-11-28 13:13 - 000000000 ___DC C:\Program Files\Java 2020-10-22 18:24 - 2019-11-07 10:36 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client 2020-10-21 18:16 - 2020-01-13 12:23 - 000000936 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2020-10-21 18:16 - 2020-01-13 12:23 - 000000924 ____C C:\Users\Public\Desktop\Firefox.lnk 2020-10-21 18:16 - 2020-01-13 12:23 - 000000924 ____C C:\ProgramData\Desktop\Firefox.lnk 2020-10-21 17:59 - 2019-11-07 10:36 - 000000000 ___DC C:\Users\Damian S\AppData\Local\FileZilla 2020-10-21 17:42 - 2020-09-29 20:22 - 000003482 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA 2020-10-21 17:42 - 2020-09-29 20:22 - 000003354 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore 2020-10-21 12:29 - 2009-07-14 04:20 - 000000000 ___DC C:\Windows\system32\NDF 2020-10-20 16:21 - 2020-09-21 10:53 - 000003178 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-704456318-2252790210-932501199-1000 2020-10-20 16:21 - 2020-09-21 10:53 - 000002208 ____C C:\Users\Damian S\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk 2020-10-17 21:20 - 2020-05-02 11:54 - 000000000 ___DC C:\Users\Damian S\AKMF ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) LastRegBack: 2020-11-16 09:23 ==================== Koniec FRST.txt ========================