Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 08-02-2021 01 Uruchomiony przez dell (administrator) DESKTOP-6PUL9M1 (Dell Inc. Inspiron 5570) (11-02-2021 09:15:14) Uruchomiony z C:\Users\dell\Desktop Załadowane profile: dell Platform: Windows 10 Home Wersja 20H2 19042.804 (X64) Język: Polski (Polska) Domyślna przeglądarka: Opera Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe (Advanced Micro Devices, Inc. -> AMD) C:\Program Files\AMD\Performance Profile Client\AUEPLauncher.exe (Advanced Micro Devices, Inc. -> AMD) C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe (Advanced Micro Devices, Inc. -> AMD) C:\Program Files\AMD\Performance Profile Client\AUEPUF.exe (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0361677.inf_amd64_38e4d1c55adc8927\B361561\atieclxx.exe (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0361677.inf_amd64_38e4d1c55adc8927\B361561\atiesrxx.exe (Brother Industries, Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe (Brother Industries, Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Browny02\BrYNSvc.exe (Brother Industries, Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe (Brother Industries, Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe (Chris Andriessen) [Brak podpisu cyfrowego] C:\Users\dell\AppData\Roaming\TaskbarX\TaskbarX.exe (Dell Inc -> ) C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe (Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe (Dell Inc -> Dell INC.) C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe (Discord Inc. -> Discord Inc.) C:\Users\dell\AppData\Local\Discord\app-0.0.309\Discord.exe <6> (Hewlett Packard -> Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\dptf_helper.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5dc194ddcb559d66\igfxCUIService.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5dc194ddcb559d66\igfxEM.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5dc194ddcb559d66\IntelCpHDCPSvc.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5dc194ddcb559d66\IntelCpHeciSvc.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_f881c4be237ce854\RstMwService.exe (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe (libMPVPlayer) [Brak podpisu cyfrowego] C:\Program Files (x86)\Lively Wallpaper\plugins\libMPVPlayer\libMPVPlayer.exe (livelySubProcess) [Brak podpisu cyfrowego] C:\Program Files (x86)\Lively Wallpaper\plugins\subproc\livelySubProcess.exe (livelywpf) [Brak podpisu cyfrowego] C:\Program Files (x86)\Lively Wallpaper\livelywpf.exe (McAfee, Inc. -> McAfee, LLC) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe (McAfee, Inc. -> McAfee, LLC) C:\Windows\System32\mfevtps.exe (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\CSP\3.9.126.0\McCSPServiceHost.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\SDXHelper.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Users\dell\AppData\Local\Microsoft\OneDrive\OneDrive.exe <2> (Microsoft Corporation -> Microsoft Corporation) C:\Users\dell\AppData\Local\Microsoft\Teams\current\Teams.exe <10> (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2101.15643.0_x64__8wekyb3d8bbwe\Cortana.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.740_none_e752aa59261f271f\TiWorker.exe (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe <2> (Opera Software AS -> Opera Software) C:\Users\dell\AppData\Local\Programs\Opera GX\72.0.3815.487\opera.exe <38> (Opera Software AS -> Opera Software) C:\Users\dell\AppData\Local\Programs\Opera GX\72.0.3815.487\opera_crashreporter.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Panda Security S.L. -> Panda Security S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\pselamsvc.exe (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2> (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Rivet Networks LLC -> Rivet Networks LLC) C:\Program Files\Rivet Networks\SmartByte\RAPS.exe (Rivet Networks LLC -> Rivet Networks) C:\Program Files\Rivet Networks\SmartByte\SmartByteAnalyticsService.exe (Rivet Networks LLC -> Rivet Networks) C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe (Rivet Networks LLC -> Rivet Networks, LLC.) C:\Program Files\Rivet Networks\SmartByte\RAPSService.exe (Shenzhen Huion Animation Technology Co.,LTD -> ) C:\Huion Tablet\Huion Tablet.exe (Shenzhen Huion Animation Technology Co.,LTD -> ) C:\Huion Tablet\x64\TabletDriverCore.exe (Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe (Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11235928 2020-02-17] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617568 2020-02-17] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [DellMobileConnectWelcome] => C:\Program Files\Dell\DellMobileConnectDrivers\DellMobileConnectWStartup.exe [313064 2018-10-04] (SCREENOVATE TECHNOLOGIES LTD. -> Screenovate Technologies Ltd.) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [320056 2019-12-10] (Intel(R) Rapid Storage Technology -> Intel Corporation) HKLM\...\Run: [WavesSvc] => c:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [1235160 2019-09-26] (Waves Inc -> Waves Audio Ltd.) HKLM\...\Run: [TabletDriver] => C:\Huion Tablet\Huion Tablet.exe [240360 2020-10-24] (Shenzhen Huion Animation Technology Co.,LTD -> ) HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard) HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [139264 2013-05-14] (Brother Industries, Ltd.) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [4522496 2012-12-27] (Brother Industries, Ltd.) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [BrHelp] => C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe [2009088 2013-01-18] (Brother Industries, Ltd.) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-09-17] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [PSUAMain] => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe [168456 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.) HKU\S-1-5-21-2664109808-772184126-3271391785-1001\...\Run: [livelywpf] => C:\Program Files (x86)\Lively Wallpaper\livelywpf.exe [195072 2021-01-11] (livelywpf) [Brak podpisu cyfrowego] HKU\S-1-5-21-2664109808-772184126-3271391785-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\dell\AppData\Local\Microsoft\Teams\Update.exe [2453656 2021-02-02] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKU\S-1-5-21-2664109808-772184126-3271391785-1001\...\Run: [TabletDriver] => C:\Huion Tablet\x64\TabletDriverCore.exe [333544 2020-10-24] (Shenzhen Huion Animation Technology Co.,LTD -> ) HKU\S-1-5-21-2664109808-772184126-3271391785-1001\...\Run: [dell] => cmd.exe /c start www.exinariuminix.info HKU\S-1-5-21-2664109808-772184126-3271391785-1001\...\MountPoints2: {25243a4c-1b74-11eb-bd84-d8d09015abe1} - "F:\setupEN.exe" HKU\S-1-5-21-2664109808-772184126-3271391785-1001\...\MountPoints2: {a41a8092-46d8-11eb-bd9b-207918f1adff} - "F:\setup_the_witcher_2_ee_3.0.1.17.exe" HKU\S-1-5-21-2664109808-772184126-3271391785-1001\...\MountPoints2: {fef0c73f-4752-11eb-bd9d-207918f1adff} - "G:\Autorun.exe" HKLM\...\Windows x64\Print Processors\hpfpp70v: C:\Windows\System32\spool\prtprocs\x64\hpfpp70v.dll [248320 2009-04-16] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation) HKLM\...\Print\Monitors\hpf3l70v.dll: C:\WINDOWS\system32\hpf3l70v.dll [136704 2009-04-16] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2020-01-29] ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett Packard -> Hewlett-Packard Co.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Huion Tablet.lnk [2021-01-18] ShortcutTarget: Huion Tablet.lnk -> C:\Huion Tablet\Huion Tablet.exe (Shenzhen Huion Animation Technology Co.,LTD -> ) Startup: C:\Users\dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2021-01-20] ShortcutTarget: MEGAsync.lnk -> C:\Users\dell\Desktop\MEGAsyncPortable\App\MEGAsync\MEGAsync.exe (Brak pliku) Startup: C:\Users\dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Wysyłanie do programu OneNote.lnk [2020-12-30] ShortcutTarget: Wysyłanie do programu OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation) HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA HKLM\SOFTWARE\Policies\Google: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {021E57A6-E268-40EE-978F-A7D2DB74D519} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\B78C718D-96D7-4FE9-8AD7-DF752707C46D\Provisioning initiated session => C:\WINDOWS\system32\deviceenroller.exe [464896 2021-02-04] (Microsoft Windows -> Microsoft Corporation) Task: {03B42885-0BF1-4372-B692-626501455584} - System32\Tasks\TaskbarX => C:\Users\dell\AppData\Roaming\TaskbarX\TaskbarX.exe [194048 2020-05-24] (Chris Andriessen) [Brak podpisu cyfrowego] <==== UWAGA Task: {1290F586-2409-49B4-BE81-63719F418803} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\B78C718D-96D7-4FE9-8AD7-DF752707C46D\Passport for Work alert created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [464896 2021-02-04] (Microsoft Windows -> Microsoft Corporation) Task: {1B21A4E9-F4D8-4FCC-B432-9E888E66BD67} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\B78C718D-96D7-4FE9-8AD7-DF752707C46D\Schedule #3 created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [464896 2021-02-04] (Microsoft Windows -> Microsoft Corporation) Task: {1FD2C9EA-3709-4A3F-97B4-633ED3C542EA} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\B78C718D-96D7-4FE9-8AD7-DF752707C46D\Schedule to run OMADMClient by server => C:\WINDOWS\system32\omadmclient.exe [435200 2021-02-04] (Microsoft Windows -> Microsoft Corporation) Task: {2140DF7E-5A9D-4EB2-8FB4-7523E80BCF99} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent => {ABCECA3B-EA5A-496B-A021-5C6BAB365E5C} "C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe" Task: {229CEA0C-A9A8-42EF-BDDF-53690751606F} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\B78C718D-96D7-4FE9-8AD7-DF752707C46D\Schedule #2 created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [464896 2021-02-04] (Microsoft Windows -> Microsoft Corporation) Task: {280081B4-DCAB-4618-A06E-7AC631D4CFC0} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\B78C718D-96D7-4FE9-8AD7-DF752707C46D\Win10 S Mode event listener created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [464896 2021-02-04] (Microsoft Windows -> Microsoft Corporation) Task: {311E02FF-6D88-41D5-9986-CECAAFD1F274} - Brak ścieżki do pliku Task: {351619BD-685D-49A9-B473-A6D5C94DAFD3} - Brak ścieżki do pliku Task: {37493F0F-D365-4EFE-A1E5-A1B957EC3B1C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [3994024 2021-02-02] (Microsoft Corporation -> Microsoft Corporation) Task: {3E9BC19C-B9BE-48BF-A7FD-646DA29687D7} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1710464 2020-11-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {4B9B1562-6835-4838-A83B-52197B97F88E} - Brak ścieżki do pliku Task: {4F0FB799-4F3C-4ECC-919C-A46C6EA67DCE} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-2664109808-772184126-3271391785-1001 => C:\Users\dell\Desktop\MEGAsyncPortable\App\MEGAsync\MEGAupdater.exe Task: {57F0E126-FCAD-4CE6-AEE0-9059EEB48E0F} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115048 2021-02-02] (Microsoft Corporation -> Microsoft Corporation) Task: {584718E6-C284-4BAB-BB1B-4B896FA7EFAA} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\B78C718D-96D7-4FE9-8AD7-DF752707C46D\PushUpgrade => C:\WINDOWS\system32\deviceenroller.exe [464896 2021-02-04] (Microsoft Windows -> Microsoft Corporation) Task: {5C49875A-F66A-45D0-A240-0D2DD49F8847} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [3994024 2021-02-02] (Microsoft Corporation -> Microsoft Corporation) Task: {6153D127-50B0-410D-AFEF-B1F8AD61E0BB} - System32\Tasks\dell => cmd.exe /c REG ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /f /v dell /t REG_SZ /d "cmd.exe /c start www.exinariuminix.info" Task: {68E8B7BF-30D1-4069-9C3E-BEEFE4E89441} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\B78C718D-96D7-4FE9-8AD7-DF752707C46D\Schedule created by enrollment client for renewal of certificate warning => C:\WINDOWS\system32\deviceenroller.exe [464896 2021-02-04] (Microsoft Windows -> Microsoft Corporation) Task: {6D4A732C-E4E2-4069-9D12-77A9FD1DC301} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [69304 2020-11-25] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {89170ADA-6D98-4831-B4E9-E5C8B0114389} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1126296 2021-02-02] (Microsoft Corporation -> Microsoft Corporation) Task: {94A06309-B81D-479C-9CED-1466C3CE7B84} - System32\Tasks\StartCNBM => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61624 2020-11-25] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {A7B18499-4B4C-4156-B8C3-D2793165D0FC} - Brak ścieżki do pliku Task: {A7BF5808-3C0A-46B2-A2D5-55C7624AA22A} - Brak ścieżki do pliku Task: {A8566103-9789-4431-9158-D9D019695813} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1710464 2020-11-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {AC1C2228-1248-44C6-B3AB-FC1811F16653} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1741416 2020-10-22] (Avast Software s.r.o. -> Avast Software) Task: {AD374DD8-7DAF-4780-A26B-7F758BE9AF51} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22993288 2021-01-22] (Microsoft Corporation -> Microsoft Corporation) Task: {AE0C244E-A001-4655-9073-D06186CF3EFF} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\B78C718D-96D7-4FE9-8AD7-DF752707C46D\Schedule #1 created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [464896 2021-02-04] (Microsoft Windows -> Microsoft Corporation) Task: {AE109544-9F36-4F77-9B15-587CA04B4937} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\B78C718D-96D7-4FE9-8AD7-DF752707C46D\OS Edition Upgrade event listener created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [464896 2021-02-04] (Microsoft Windows -> Microsoft Corporation) Task: {B45C76BC-F81D-4A63-8E97-115FA5710AAF} - System32\Tasks\McAfee\DAD.Execute.Updates => C:\Program Files\Common Files\McAfee\DynamicAppDownloader\DADUpdater.exe Task: {BC1784BF-E2B4-47B7-B8F4-09361E96E36F} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115048 2021-02-02] (Microsoft Corporation -> Microsoft Corporation) Task: {C1BAA001-4C03-48D3-BD20-106ED121D7C4} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61624 2020-11-25] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {C5E080CB-F2C7-464E-9CC2-CFB49B47F68E} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\B78C718D-96D7-4FE9-8AD7-DF752707C46D\PushRenewal => C:\WINDOWS\system32\deviceenroller.exe [464896 2021-02-04] (Microsoft Windows -> Microsoft Corporation) Task: {C7815626-1AEE-4DA3-B682-F44C73533E11} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22993288 2021-01-22] (Microsoft Corporation -> Microsoft Corporation) "C:\Windows\System32\Tasks\McAfee\McAfee Idle Detection Task" został odblokowany. <==== UWAGA Task: {C8464783-551E-47AE-8E44-F5F5AC348F4B} - System32\Tasks\McAfee\McAfee Idle Detection Task => {ABCDCA3B-DE6B-5A7C-B132-6D7CBA63E5C5} "C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe" Task: {CA78D51D-F2C4-42FB-A09F-26FD6F1F9200} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\B78C718D-96D7-4FE9-8AD7-DF752707C46D\Schedule to run OMADMClient by client => C:\WINDOWS\system32\omadmclient.exe [435200 2021-02-04] (Microsoft Windows -> Microsoft Corporation) Task: {DABA1D11-D470-46FE-9FA3-1BC9224EB69F} - System32\Tasks\Opera GX scheduled Autoupdate 1607243099 => C:\Users\dell\AppData\Local\Programs\Opera GX\launcher.exe [1664664 2021-01-26] (Opera Software AS -> Opera Software) Task: {E297646B-6305-4519-A49A-9D853EACF6DE} - Brak ścieżki do pliku Task: {E5183B5B-E1C6-42C8-ABA3-675F5482678A} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\B78C718D-96D7-4FE9-8AD7-DF752707C46D\PushLaunch => C:\WINDOWS\system32\deviceenroller.exe [464896 2021-02-04] (Microsoft Windows -> Microsoft Corporation) Task: {EF62F90F-F3A7-40F9-8577-B2F77B66878C} - Brak ścieżki do pliku Task: {F0926D9E-B47C-4DFB-9644-24E82C0E503F} - Brak ścieżki do pliku Task: {F14D1F2F-8C12-4337-BF00-F89A899D6ED1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.) Task: {FC476E91-1F6E-4575-BB8E-C91ED972C566} - Brak ścieżki do pliku (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.43.1 Tcpip\..\Interfaces\{7b4d88e8-45b9-4606-9b81-589165462557}: [DhcpNameServer] 192.168.192.1 192.168.250.198 192.168.250.98 Tcpip\..\Interfaces\{f22709ca-2b55-4520-815d-22051ee51c7d}: [DhcpNameServer] 192.168.43.1 Edge: ======= Edge HomeButtonPage: HKU\S-1-5-21-2664109808-772184126-3271391785-1001 -> hxxp://www.nav-pl.com/ Edge DefaultProfile: Default Edge Profile: C:\Users\dell\AppData\Local\Microsoft\Edge\User Data\Default [2021-02-11] Edge HomePage: Default -> hxxp://www.nav-pl.com/ Edge StartupUrls: Default -> "hxxp://www.nav-pl.com/" Edge Extension: (Malwarebytes Browser Guard) - C:\Users\dell\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2020-12-26] Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee] FireFox: ======== FF DefaultProfile: 9axmo42r.default FF ProfilePath: C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\9axmo42r.default [2021-02-11] FF Extension: (Avast SafePrice | Porównania, promocje, kupony) - C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\9axmo42r.default\Extensions\sp@avast.com.xpi [2019-08-10] FF Extension: (Avast Online Security) - C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\9axmo42r.default\Extensions\wrc@avast.com.xpi [2019-08-10] FF ProfilePath: C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\svueqfc9.default-release [2021-02-11] FF Extension: (Facebook Container) - C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\svueqfc9.default-release\Extensions\@contain-facebook.xpi [2020-08-13] FF Extension: (Jesus Cielo) - C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\svueqfc9.default-release\Extensions\{0fb80cff-ab1b-4681-8a6c-6f3fa9d2b816}.xpi [2019-08-19] FF Extension: (Jesus on the Cross) - C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\svueqfc9.default-release\Extensions\{af8b5440-bad6-41c0-818e-f80eec782dec}.xpi [2019-08-19] FF Extension: (Cross Of God) - C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\svueqfc9.default-release\Extensions\{b237e2b9-ee57-4c97-8715-beb1f170d288}.xpi [2019-08-19] FF Extension: (Adblock Plus - darmowy adblocker) - C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\svueqfc9.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2020-09-09] FF Extension: (Jesus Christ Death Couldnt Handle Him) - C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\svueqfc9.default-release\Extensions\{ebf9042b-c45f-4db5-9c63-e6eff99e8755}.xpi [2019-08-19] FF Extension: (Jesus heart) - C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\svueqfc9.default-release\Extensions\{eda5a41a-f3a4-474a-9187-8c19c5d0fbe8}.xpi [2019-08-19] FF HKLM\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSKHKLM => nie znaleziono FF Plugin: @java.com/DTPlugin,version=11.271.2 -> C:\Program Files\Java\jre1.8.0_271\bin\dtplugin\npDeployJava1.dll [2020-10-29] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.271.2 -> C:\Program Files\Java\jre1.8.0_271\bin\plugin2\npjp2.dll [2020-10-29] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @mcafee.com/MSC,version=10 -> C:\Program Files\McAfee\MSC\npMcSnFFPl64.dll [Brak pliku] FF Plugin-x32: @mcafee.com/MSC,version=10 -> C:\Program Files (x86)\McAfee\MSC\npMcSnFFPl.dll [Brak pliku] FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-02-02] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-02-02] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-02-02] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default [2021-02-11] CHR HomePage: Default -> hxxp://google.pl/ CHR StartupUrls: Default -> "hxxps://www.google.com/" CHR Extension: (Prezentacje) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-04-06] CHR Extension: (Dokumenty) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-04-06] CHR Extension: (Malwarebytes Browser Guard) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2020-11-29] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-05-02] CHR Extension: (Netflix Party is now Teleparty) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\oocalimimngaihdkbihfgmpkcpnmlaoa [2020-10-14] CHR Extension: (Chrome Media Router) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-11-24] CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb] CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] Opera: ======= StartMenuInternet: (HKU\S-1-5-21-2664109808-772184126-3271391785-1001) Opera GXStable - "C:\Users\dell\AppData\Local\Programs\Opera GX\Launcher.exe" ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.) R2 AUEPLauncher; C:\Program Files\AMD\CIM\..\Performance Profile Client\AUEPLauncher.exe [61832 2020-11-25] (Advanced Micro Devices, Inc. -> AMD) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8736880 2020-12-25] (BattlEye Innovations e.K. -> ) R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112 2012-10-26] (Brother Industries, Ltd.) [Brak podpisu cyfrowego] R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8902024 2021-01-22] (Microsoft Corporation -> Microsoft Corporation) S3 dcpm-notify; C:\Program Files\Dell\CommandPowerManager\NotifyService.exe [315008 2020-08-18] (Dell Inc -> Dell Inc.) R2 Dell Digital Delivery Services; C:\Program Files (x86)\Dell Digital Delivery Services\Dell.D3.WinSvc.exe [48832 2020-11-19] (Dell Inc -> ) R2 Dell SupportAssist Remediation; C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe [19128 2020-12-25] (Dell Inc -> Dell INC.) S3 Dell.CommandPowerManager.Service; C:\WINDOWS\system32\dllhost.exe /Processid:{FF23D0CC-F425-49F4-8D12-5AD828BE888F} [21312 2020-10-01] (Microsoft Windows -> Microsoft Corporation) S3 Dell.CommandPowerManager.Service; C:\WINDOWS\system32\dllhost.exe /Processid:{FF23D0CC-F425-49F4-8D12-5AD828BE888F} [21312 2020-10-01] (Microsoft Windows -> Microsoft Corporation) R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [38592 2021-01-19] (Dell Inc -> ) S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [5026104 2021-01-06] (AVB Disc Soft, SIA -> Disc Soft Ltd) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2020-11-16] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6821960 2020-12-08] (GOG Sp. z o.o. -> GOG.com) R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\3.9.126.0\\McCSPServiceHost.exe [2785184 2020-11-30] (McAfee, LLC -> McAfee, LLC) S3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [646248 2020-09-14] (McAfee, Inc. -> McAfee, LLC) R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [646248 2020-09-14] (McAfee, Inc. -> McAfee, LLC) R3 mfevtp; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [646248 2020-09-14] (McAfee, Inc. -> McAfee, LLC) S2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1584272 2020-11-27] (McAfee, LLC -> McAfee, LLC) R2 NanoServiceMain; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe [98896 2020-12-01] (Panda Security S.L. -> Panda Security, S.L.) R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Brak podpisu cyfrowego] S3 Panda VPN Service; C:\Program Files (x86)\Panda Security\Panda Security Protection\Hydra.Sdk.Windows.Service.exe [320848 2017-11-20] (AnchorFree Inc -> ) R2 PandaAgent; C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe [84176 2019-02-19] (Panda Security S.L. -> Panda Security, S.L.) R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Brak podpisu cyfrowego] R2 pselamsvc; C:\Program Files (x86)\Panda Security\Panda Security Protection\pselamsvc.exe [189288 2020-07-09] (Panda Security S.L. -> Panda Security S.L.) R2 PSUAService; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe [59440 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.) R2 RAPSService; C:\Program Files\Rivet Networks\SmartByte\RAPSService.exe [64848 2020-08-14] (Rivet Networks LLC -> Rivet Networks, LLC.) S3 RNDBWM; C:\Program Files\Rivet Networks\SmartByte\RNDBWMService.exe [64856 2020-08-14] (Rivet Networks LLC -> Rivet Networks, LLC.) R2 SmartByte Analytics Service; C:\Program Files\Rivet Networks\SmartByte\SmartByteAnalyticsService.exe [1630576 2020-08-14] (Rivet Networks LLC -> Rivet Networks) R2 SmartByte Network Service x64; C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe [2385256 2020-08-14] (Rivet Networks LLC -> Rivet Networks) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2020-12-25] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2020-12-25] (Microsoft Windows Publisher -> Microsoft Corporation) S3 GalaxyClientService; "E:\Other\GOG Galaxy\GalaxyClientService.exe" [X] S3 HnGEpicService; E:\Games\HeroesGeneralsWWII\hngservice.exe [X] S3 HnGService; E:\Games\HeroesGeneralsWWII\hngservice.exe [X] S2 McAPExe; "C:\Program Files\Common Files\McAfee\VSCore_20_9\McApExe.exe" [X] S3 McAWFwk; "C:\Program Files\Common Files\McAfee\ActWiz\McAWFwk.exe" [X] ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 aftap0901; C:\WINDOWS\System32\drivers\aftap0901.sys [48624 2017-11-16] (AnchorFree Inc -> The OpenVPN Project) R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [62056 2020-07-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) S3 cfwids; C:\WINDOWS\system32\drivers\cfwids.sys [75704 2020-09-22] (McAfee, Inc. -> McAfee, LLC) R4 DBUtil_2_3; C:\WINDOWS\TEMP\DBUtil_2_3.Sys [14840 2021-02-11] (Dell Inc. -> ) S3 DDDriver; C:\WINDOWS\System32\drivers\dddriver64Dcsa.sys [35704 2019-10-31] (Microsoft Windows Hardware Compatibility Publisher -> Dell Inc.) R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2019-08-15] (AVB Disc Soft, SIA -> Disc Soft Ltd) R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2019-08-15] (AVB Disc Soft, SIA -> Disc Soft Ltd) S3 Hamachi; C:\WINDOWS\System32\drivers\Hamdrv.sys [45680 2019-04-02] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.) S3 HipShieldK; C:\WINDOWS\System32\drivers\HipShieldK.sys [218960 2020-05-26] (McAfee, LLC -> McAfee, Inc.) R3 mfeaack; C:\WINDOWS\system32\drivers\mfeaack.sys [531896 2020-09-22] (McAfee, Inc. -> McAfee, LLC) R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [385464 2020-09-22] (McAfee, Inc. -> McAfee, LLC) S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [85944 2020-09-22] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, LLC) R3 mfefirek; C:\WINDOWS\system32\drivers\mfefirek.sys [522168 2020-09-22] (McAfee, Inc. -> McAfee, LLC) R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [1019832 2020-09-22] (McAfee, Inc. -> McAfee, LLC) R3 mfencbdc; C:\WINDOWS\system32\DRIVERS\mfencbdc.sys [603072 2020-09-17] (McAfee, Inc. -> McAfee LLC.) S3 mfencrk; C:\WINDOWS\system32\DRIVERS\mfencrk.sys [107968 2020-09-17] (McAfee, Inc. -> McAfee LLC.) R3 mfeplk; C:\WINDOWS\system32\drivers\mfeplk.sys [116664 2020-09-22] (McAfee, Inc. -> McAfee, LLC) R0 mfewfpk; C:\WINDOWS\system32\drivers\mfewfpk.sys [252344 2020-09-22] (McAfee, Inc. -> McAfee, LLC) R1 NNSDNS; C:\WINDOWS\system32\DRIVERS\NNSDNS.sys [141088 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSHTTP; C:\WINDOWS\system32\DRIVERS\NNSHTTP.sys [212768 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSHTTPS; C:\WINDOWS\system32\DRIVERS\NNSHTTPS.sys [125728 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSIDS; C:\WINDOWS\system32\DRIVERS\NNSIDS.sys [132384 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSNAHSL; C:\WINDOWS\system32\DRIVERS\NNSNAHSL.sys [111296 2020-11-23] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSPICC; C:\WINDOWS\system32\DRIVERS\NNSPICC.sys [152864 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSPIHSW; C:\WINDOWS\system32\DRIVERS\NNSPIHSW.sys [102688 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSPOP3; C:\WINDOWS\system32\DRIVERS\NNSPOP3.sys [135456 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSPROT; C:\WINDOWS\system32\DRIVERS\NNSPROT.sys [347424 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSPRV; C:\WINDOWS\system32\DRIVERS\NNSPRV.sys [353592 2020-12-10] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSSMTP; C:\WINDOWS\system32\DRIVERS\NNSSMTP.sys [123168 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSSTRM; C:\WINDOWS\system32\DRIVERS\NNSSTRM.sys [327968 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.) R3 pelmouse; C:\WINDOWS\system32\DRIVERS\pelmouse.sys [26880 2016-07-11] (WDKTestCert idd,131110062695071623 -> TPMX Electronics Ltd.) R3 pelusblf; C:\WINDOWS\system32\DRIVERS\pelusblf.sys [32544 2017-03-29] (WDKTestCert primax,131147703563436555 -> ) R3 pelvendr; C:\WINDOWS\system32\DRIVERS\pelvendr.sys [15032 2016-07-11] (WDKTestCert idd,131110062695071623 -> TPMX Electronics Ltd.) R2 PSINAflt; C:\WINDOWS\system32\DRIVERS\PSINAflt.sys [195872 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.) S0 psinelam; C:\WINDOWS\System32\DRIVERS\psinelam.sys [21432 2020-07-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Panda Security, S.L.) R2 PSINFile; C:\WINDOWS\System32\DRIVERS\PSINFile.sys [171296 2020-12-27] (Panda Security S.L. -> Panda Security, S.L.) R1 PSINKNC; C:\WINDOWS\system32\DRIVERS\PSINKNC.sys [216864 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.) R2 PSINProc; C:\WINDOWS\System32\DRIVERS\PSINProc.sys [148768 2020-12-27] (Panda Security S.L. -> Panda Security, S.L.) R2 PSINProt; C:\WINDOWS\system32\DRIVERS\PSINProt.sys [160544 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.) R2 PSINReg; C:\WINDOWS\system32\DRIVERS\PSINReg.sys [130336 2020-12-02] (Panda Security S.L. -> Panda Security, S.L.) U3 PSKMAD; C:\WINDOWS\System32\DRIVERS\PSKMAD.sys [72984 2019-02-20] (Panda Security S.L. -> Panda Security, S.L.) R3 SmbCoSvc; C:\WINDOWS\system32\DRIVERS\SmbCo10X64.sys [164424 2020-08-14] (Rivet Networks LLC -> Rivet Networks, LLC.) R3 vmulti; C:\WINDOWS\System32\drivers\vmulti.sys [10752 2018-03-16] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2020-12-25] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [429296 2020-12-25] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [70896 2020-12-25] (Microsoft Windows -> Microsoft Corporation) U3 aswbdisk; Brak ImagePath S3 DBUtilDrv2; \SystemRoot\System32\drivers\DBUtilDrv2.sys [X] S2 MBAMChameleon; \SystemRoot\System32\Drivers\MbamChameleon.sys [X] S3 mfeaack01; \Device\mfeaack01.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-02-11 09:15 - 2021-02-11 09:16 - 000039926 _____ C:\Users\dell\Desktop\FRST.txt 2021-02-11 08:59 - 2019-02-20 06:31 - 000072984 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSKMAD.sys 2021-02-11 08:50 - 2021-02-11 08:50 - 002297344 _____ (Farbar) C:\Users\dell\Desktop\FRST64.exe 2021-02-11 08:16 - 2021-02-11 08:16 - 000002406 _____ C:\Users\dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-02-10 16:41 - 2021-02-10 16:41 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2021-02-10 16:40 - 2021-02-10 16:40 - 000002146 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2021-02-10 16:23 - 2021-02-10 16:23 - 000231232 _____ C:\WINDOWS\system32\containerdevicemanagement.dll 2021-02-10 16:23 - 2021-02-10 16:23 - 000010892 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-02-05 19:35 - 2021-02-10 21:00 - 000000000 ____D C:\Users\dell\AppData\Roaming\Blitz 2021-02-05 19:35 - 2021-02-10 17:13 - 000000000 ____D C:\Users\dell\AppData\Local\blitz-updater 2021-02-05 19:35 - 2021-02-05 19:35 - 000002242 _____ C:\Users\dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blitz.lnk 2021-02-05 17:55 - 2021-02-05 17:55 - 000000000 ____D C:\Program Files (x86)\DummyDir 2021-02-05 08:14 - 2021-02-11 08:16 - 000002858 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2664109808-772184126-3271391785-1001 2021-02-04 08:09 - 2021-02-04 08:09 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2021-02-04 08:08 - 2021-02-04 08:08 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2021-02-04 08:08 - 2021-02-04 08:08 - 001314112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2021-02-03 07:34 - 2020-12-02 23:56 - 000171504 _____ (Intel Corporation) C:\WINDOWS\system32\intel_gfx_api-x64.dll 2021-02-03 07:34 - 2020-12-02 23:56 - 000146792 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\intel_gfx_api-x86.dll 2021-02-03 07:34 - 2020-12-02 23:55 - 000507736 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2021-02-03 07:34 - 2020-12-02 23:55 - 000427864 _____ C:\WINDOWS\system32\ze_loader.dll 2021-02-03 07:34 - 2020-12-02 23:55 - 000370520 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2021-02-03 07:34 - 2020-12-02 23:55 - 000148824 _____ C:\WINDOWS\system32\ze_validation_layer.dll 2021-02-03 07:34 - 2020-12-02 23:54 - 000294232 _____ C:\WINDOWS\system32\igfxCPL.cpl 2021-02-03 07:24 - 2021-02-03 07:24 - 000000000 ____D C:\WINDOWS\{6D0E596C-59BC-4529-917C-0B86AFC2823D} 2021-02-02 14:07 - 2021-02-02 14:07 - 000002361 _____ C:\Users\dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk 2021-02-01 21:23 - 2021-02-01 21:23 - 000000000 ____D C:\Users\dell\Riot Games 2021-02-01 21:23 - 2021-02-01 21:23 - 000000000 ____D C:\Users\dell\Riot Games 2021-02-01 19:44 - 2021-02-01 19:44 - 000001433 _____ C:\Users\dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Przeglądarka Opera GX.lnk 2021-02-01 09:01 - 2021-02-09 12:13 - 000000000 ____D C:\Users\dell\Desktop\Nowy folder 2021-01-31 09:11 - 2021-02-02 07:50 - 000000545 _____ C:\Users\dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\osu!.lnk 2021-01-31 09:02 - 2021-01-31 09:02 - 000000000 ____D C:\Users\dell\AppData\Local\Origin 2021-01-30 15:42 - 2021-01-30 15:42 - 000000000 ___HD C:\$Windows.~WS 2021-01-30 15:42 - 2021-01-30 15:42 - 000000000 ____D C:\$WINDOWS.~BT 2021-01-30 15:18 - 2021-01-30 15:18 - 000000000 ____D C:\ProgramData\SystemAcCrux 2021-01-30 15:18 - 2021-01-30 15:18 - 000000000 ____D C:\ProgramData\SystemAcCrux 2021-01-26 14:08 - 2021-01-26 14:08 - 000002322 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Dome.lnk 2021-01-26 14:06 - 2021-01-26 14:06 - 000000000 ____D C:\Users\dell\AppData\Roaming\Panda Security 2021-01-26 14:06 - 2020-12-02 11:21 - 000195872 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINAflt.sys 2021-01-26 14:06 - 2020-12-02 11:21 - 000160544 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINProt.sys 2021-01-26 14:06 - 2020-12-02 11:21 - 000130336 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINReg.sys 2021-01-26 14:06 - 2020-12-02 11:20 - 000347424 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsprot.sys 2021-01-26 14:06 - 2020-12-02 11:20 - 000212768 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnshttp.sys 2021-01-26 14:06 - 2020-12-02 11:20 - 000152864 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnspicc.sys 2021-01-26 14:06 - 2020-12-02 11:20 - 000141088 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsdns.sys 2021-01-26 14:06 - 2020-12-02 11:20 - 000135456 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnspop3.sys 2021-01-26 14:06 - 2020-12-02 11:20 - 000132384 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsids.sys 2021-01-26 14:06 - 2020-12-02 11:20 - 000125728 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnshttps.sys 2021-01-26 14:06 - 2020-12-02 11:20 - 000123168 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnssmtp.sys 2021-01-26 14:06 - 2020-12-02 11:20 - 000102688 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnspihsw.sys 2021-01-26 14:05 - 2021-01-26 14:06 - 000000000 ____D C:\Program Files (x86)\Panda Security 2021-01-26 14:05 - 2021-01-26 14:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Dome 2021-01-26 14:05 - 2020-12-10 13:18 - 000353592 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsprv.sys 2021-01-26 14:05 - 2020-12-02 11:21 - 000216864 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\PSINKNC.sys 2021-01-26 14:05 - 2020-12-02 11:20 - 000327968 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\nnsstrm.sys 2021-01-26 14:05 - 2020-07-10 10:48 - 000021432 _____ (Panda Security, S.L.) C:\WINDOWS\system32\Drivers\psinelam.sys 2021-01-26 14:02 - 2021-01-26 14:06 - 000000000 ____D C:\ProgramData\Panda Security 2021-01-26 14:02 - 2021-01-26 14:06 - 000000000 ____D C:\ProgramData\Panda Security 2021-01-26 13:31 - 2021-01-26 13:31 - 000000000 ____D C:\Users\dell\AppData\Local\McAfee File Lock 2021-01-26 13:31 - 2020-05-26 00:11 - 000218960 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\HipShieldK.sys 2021-01-26 13:27 - 2021-01-26 13:29 - 000000000 ____D C:\WINDOWS\system32\Tasks\McAfee 2021-01-26 13:27 - 2020-09-14 14:01 - 000579040 _____ (McAfee, LLC) C:\WINDOWS\system32\mfevtps.exe 2021-01-26 13:11 - 2021-02-11 09:00 - 000000000 ___RD C:\Users\dell\OneDrive - XXI Liceum Ogólnoksztłcące im. św. Stanisława Kostki 2021-01-26 13:11 - 2021-02-11 09:00 - 000000000 ___RD C:\Users\dell\OneDrive - XXI Liceum Ogólnoksztłcące im. św. Stanisława Kostki 2021-01-25 16:55 - 2021-01-25 16:55 - 000003560 _____ C:\WINDOWS\system32\Tasks\dell 2021-01-25 16:49 - 2021-01-25 16:49 - 000000000 ____H C:\Users\dell\Downloads\.getxfer.14960.490.mega 2021-01-24 15:31 - 2021-01-27 09:52 - 000167975 _____ C:\Users\dell\Desktop\f7613220611cc376809d14cb72ec8602.mdp 2021-01-23 14:54 - 2021-01-23 14:54 - 000000000 ____H C:\Users\dell\Downloads\.getxfer.26068.36.mega 2021-01-21 21:01 - 2021-01-21 21:01 - 000000000 ____H C:\Users\dell\Downloads\.getxfer.30148.142.mega 2021-01-20 22:24 - 2021-01-20 22:24 - 000000000 ____H C:\Users\dell\Downloads\.getxfer.17240.119.mega 2021-01-20 10:30 - 2021-01-20 10:30 - 000000000 ___HD C:\Users\dell\Downloads\Rubbish 2021-01-20 10:26 - 2021-01-20 10:26 - 000000000 ____D C:\Users\dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MEGAsync 2021-01-20 10:24 - 2021-01-20 10:24 - 000000000 ____D C:\WINDOWS\system32\Tasks\MEGA 2021-01-20 10:24 - 2021-01-20 10:24 - 000000000 ____D C:\Users\Public\Public Account Pictures 2021-01-20 10:24 - 2021-01-20 10:24 - 000000000 ____D C:\Users\Public\Public Account Pictures 2021-01-20 10:24 - 2021-01-20 10:24 - 000000000 ____D C:\Users\dell\AppData\Local\Mega Limited 2021-01-20 10:23 - 2021-01-20 10:24 - 000000000 ____D C:\MEGAsyncPortable 2021-01-18 16:28 - 2021-01-18 16:28 - 000000000 ____D C:\Users\dell\AppData\LocalLow\uTorrent 2021-01-18 15:03 - 2021-01-18 15:03 - 000000689 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Huion Tablet Uninstall .lnk 2021-01-18 15:03 - 2021-01-18 15:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Huion Tablet 2021-01-18 15:03 - 2020-09-08 09:59 - 000221184 _____ (Graphics Tablet) C:\WINDOWS\system32\wintab32.dll 2021-01-18 15:03 - 2020-09-08 09:59 - 000190976 _____ (Graphics Tablet) C:\WINDOWS\SysWOW64\wintab32.dll 2021-01-18 13:30 - 2021-01-18 15:03 - 000000000 ____D C:\Huion Tablet 2021-01-18 13:30 - 2021-01-18 13:30 - 000000000 ____D C:\Program Files\DIFX 2021-01-15 09:43 - 2021-01-15 09:43 - 000001159 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lively Wallpaper.lnk 2021-01-15 09:40 - 2021-01-15 09:40 - 000095744 _____ C:\WINDOWS\system32\VirtualMonitorManager.dll 2021-01-15 09:39 - 2021-01-15 09:39 - 000729600 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx 2021-01-15 09:39 - 2021-01-15 09:39 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl 2021-01-15 09:39 - 2021-01-15 09:39 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr 2021-01-15 09:39 - 2021-01-15 09:39 - 000575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx 2021-01-15 09:39 - 2021-01-15 09:39 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr 2021-01-15 09:39 - 2021-01-15 09:39 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl 2021-01-15 09:39 - 2021-01-15 09:39 - 000446976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl 2021-01-15 09:39 - 2021-01-15 09:39 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax 2021-01-15 09:39 - 2021-01-15 09:39 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax 2021-01-15 09:39 - 2021-01-15 09:39 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl 2021-01-15 09:39 - 2021-01-15 09:39 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\VBICodec.ax 2021-01-15 09:39 - 2021-01-15 09:39 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VBICodec.ax 2021-01-15 09:39 - 2021-01-15 09:39 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx 2021-01-15 09:39 - 2021-01-15 09:39 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl 2021-01-15 09:39 - 2021-01-15 09:39 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx 2021-01-15 09:39 - 2021-01-15 09:39 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl 2021-01-15 09:39 - 2021-01-15 09:39 - 000067072 _____ C:\WINDOWS\system32\BWContextHandler.dll 2021-01-15 09:39 - 2021-01-15 09:39 - 000053760 _____ C:\WINDOWS\SysWOW64\BWContextHandler.dll 2021-01-15 09:38 - 2021-01-15 09:38 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll 2021-01-15 09:38 - 2021-01-15 09:38 - 002254336 _____ C:\WINDOWS\system32\dwmscene.dll 2021-01-15 09:38 - 2021-01-15 09:38 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll 2021-01-15 09:38 - 2021-01-15 09:38 - 001162240 _____ C:\WINDOWS\system32\MBR2GPT.EXE 2021-01-15 09:38 - 2021-01-15 09:38 - 000643072 _____ C:\WINDOWS\system32\WindowManagementAPI.dll 2021-01-15 09:38 - 2021-01-15 09:38 - 000544768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl 2021-01-15 09:38 - 2021-01-15 09:38 - 000455680 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll 2021-01-15 09:38 - 2021-01-15 09:38 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv 2021-01-15 09:38 - 2021-01-15 09:38 - 000330752 _____ C:\WINDOWS\SysWOW64\ssdm.dll 2021-01-15 09:38 - 2021-01-15 09:38 - 000306688 _____ C:\WINDOWS\system32\HeatCore.dll 2021-01-15 09:38 - 2021-01-15 09:38 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl 2021-01-15 09:38 - 2021-01-15 09:38 - 000235520 _____ C:\WINDOWS\SysWOW64\HeatCore.dll 2021-01-15 09:38 - 2021-01-15 09:38 - 000190976 _____ C:\WINDOWS\system32\BthpanContextHandler.dll 2021-01-15 09:38 - 2021-01-15 09:38 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\timedate.cpl 2021-01-15 09:38 - 2021-01-15 09:38 - 000152064 _____ C:\WINDOWS\system32\EoAExperiences.exe 2021-01-15 09:37 - 2021-01-15 09:37 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv 2021-01-15 09:37 - 2021-01-15 09:37 - 000455168 _____ C:\WINDOWS\system32\ssdm.dll 2021-01-15 09:37 - 2021-01-15 09:37 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl 2021-01-15 09:37 - 2021-01-15 09:37 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe 2021-01-15 09:37 - 2021-01-15 09:37 - 000074240 _____ C:\WINDOWS\system32\rdsxvmaudio.dll 2021-01-14 14:27 - 2021-01-24 11:35 - 000000316 _____ C:\Users\dell\Desktop\Nowy dokument tekstowy.txt 2021-01-12 19:19 - 2021-01-12 19:19 - 000424893 _____ C:\Users\dell\Desktop\P2P-18374815.pdf ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-02-11 09:18 - 2020-05-08 09:10 - 000000000 ____D C:\Users\dell\AppData\Roaming\discord 2021-02-11 09:17 - 2019-04-20 17:15 - 000000000 ____D C:\Program Files (x86)\Dell Digital Delivery Services 2021-02-11 09:15 - 2020-08-13 09:35 - 000000000 ____D C:\FRST 2021-02-11 09:00 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-02-11 09:00 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-02-11 09:00 - 2019-08-10 09:23 - 000000000 ___RD C:\Users\dell\OneDrive 2021-02-11 09:00 - 2019-08-10 09:23 - 000000000 ___RD C:\Users\dell\OneDrive 2021-02-11 09:00 - 2019-08-10 09:21 - 000000000 __SHD C:\Users\dell\IntelGraphicsProfiles 2021-02-11 09:00 - 2019-08-10 09:21 - 000000000 __SHD C:\Users\dell\IntelGraphicsProfiles 2021-02-11 08:59 - 2020-11-22 15:58 - 000008192 ___SH C:\DumpStack.log.tmp 2021-02-11 08:59 - 2020-06-20 15:22 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-02-11 08:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase 2021-02-11 08:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState 2021-02-11 08:59 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2021-02-11 08:59 - 2019-04-20 17:13 - 000000000 ____D C:\Intel 2021-02-11 08:55 - 2019-09-08 16:37 - 000000000 ____D C:\Users\dell\AppData\LocalLow\Temp 2021-02-11 08:46 - 2020-06-20 15:14 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-02-10 17:15 - 2020-05-08 12:38 - 000000000 ____D C:\ProgramData\Riot Games 2021-02-10 17:15 - 2020-05-08 12:38 - 000000000 ____D C:\ProgramData\Riot Games 2021-02-10 16:30 - 2020-06-20 15:17 - 001769796 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-02-10 16:30 - 2019-12-07 16:08 - 000786888 _____ C:\WINDOWS\system32\perfh015.dat 2021-02-10 16:30 - 2019-12-07 16:08 - 000152732 _____ C:\WINDOWS\system32\perfc015.dat 2021-02-10 16:30 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF 2021-02-10 16:25 - 2020-12-30 20:40 - 000451992 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-02-10 16:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources 2021-02-10 16:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-02-10 16:24 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System 2021-02-10 16:24 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-02-10 16:18 - 2019-08-11 00:18 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-02-10 16:16 - 2021-01-02 13:50 - 000000000 ____D C:\Program Files (x86)\dotnet 2021-02-10 16:16 - 2019-08-11 00:18 - 130141752 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-02-10 16:16 - 2019-04-20 17:11 - 000000000 ____D C:\ProgramData\Package Cache 2021-02-10 16:16 - 2019-04-20 17:11 - 000000000 ____D C:\ProgramData\Package Cache 2021-02-10 09:44 - 2019-08-11 12:34 - 000000000 ____D C:\Users\dell\AppData\Local\CrashDumps 2021-02-09 15:14 - 2019-10-20 08:28 - 000007887 _____ C:\WINDOWS\BRRBCOM.INI 2021-02-09 07:31 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-02-09 07:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-02-07 21:20 - 2019-08-19 16:53 - 000000000 ____D C:\Users\dell\.junique 2021-02-07 21:20 - 2019-08-19 16:53 - 000000000 ____D C:\Users\dell\.junique 2021-02-07 19:47 - 2019-08-19 16:48 - 000000000 ____D C:\Users\dell\AppData\Local\CrystalLauncherInstaller 2021-02-06 10:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2021-02-06 08:20 - 2020-08-27 07:24 - 000002452 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-02-06 08:15 - 2020-08-27 07:24 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-02-06 08:15 - 2020-08-27 07:24 - 000003386 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-02-05 19:48 - 2019-08-15 19:44 - 000000000 ____D C:\Users\dell\AppData\Local\D3DSCache 2021-02-05 19:30 - 2021-01-06 16:29 - 000000000 ____D C:\Users\dell\AppData\Local\Overwolf 2021-02-04 08:27 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-02-04 08:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-02-04 08:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX 2021-02-04 08:27 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing 2021-02-03 18:19 - 2020-04-06 06:37 - 000000000 ____D C:\Program Files (x86)\Google 2021-02-03 17:48 - 2020-11-22 13:37 - 000000000 ____D C:\Users\dell\AppData\Roaming\Wargaming.net 2021-02-03 17:47 - 2020-12-03 12:33 - 000000000 ____D C:\Users\dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Skróty 2021-02-03 17:44 - 2020-04-06 06:37 - 000000000 ____D C:\Users\dell\AppData\Local\Google 2021-02-02 17:29 - 2019-09-02 18:06 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2021-02-02 10:33 - 2019-08-15 08:56 - 000000017 _____ C:\Users\dell\AppData\Roaming\.cache3678791056.dat 2021-02-02 10:32 - 2019-08-10 09:21 - 000000000 ____D C:\Users\dell\AppData\Local\Packages 2021-02-01 21:23 - 2020-06-20 15:14 - 000000000 ____D C:\Users\dell 2021-02-01 19:44 - 2020-12-06 09:25 - 000004252 _____ C:\WINDOWS\system32\Tasks\Opera GX scheduled Autoupdate 1607243099 2021-01-31 09:05 - 2020-12-28 09:56 - 000000000 ____D C:\Users\dell\AppData\Local\The Witcher 2021-01-30 15:46 - 2020-06-20 15:22 - 000013005 _____ C:\WINDOWS\diagwrn.xml 2021-01-30 15:46 - 2020-06-20 15:22 - 000009528 _____ C:\WINDOWS\diagerr.xml 2021-01-30 15:45 - 2020-06-20 13:23 - 000000000 ___DC C:\WINDOWS\Panther 2021-01-29 09:48 - 2020-06-27 20:06 - 000000000 ____D C:\AMD 2021-01-29 09:24 - 2020-12-08 18:23 - 000000000 ____D C:\Users\dell\AppData\Local\AMD_Common 2021-01-27 15:53 - 2020-05-08 12:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games 2021-01-26 19:12 - 2020-12-25 09:45 - 000000000 ____D C:\Program Files\Common Files\McAfee 2021-01-26 15:46 - 2020-06-11 17:11 - 000000000 ____D C:\ProgramData\McAfee 2021-01-26 15:46 - 2020-06-11 17:11 - 000000000 ____D C:\ProgramData\McAfee 2021-01-26 14:06 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy 2021-01-26 14:06 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\GroupPolicy 2021-01-26 13:56 - 2020-09-26 15:30 - 000000045 _____ C:\Users\dell\AppData\Roaming\MCVi2UserDetail.ini 2021-01-26 13:32 - 2018-09-15 08:31 - 000000234 _____ C:\WINDOWS\win.ini 2021-01-26 13:30 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2021-01-26 13:27 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2021-01-26 13:11 - 2020-05-19 13:25 - 000799104 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe 2021-01-25 17:06 - 2020-07-02 14:50 - 000000000 ____D C:\ProgramData\Origin 2021-01-25 17:06 - 2020-07-02 14:50 - 000000000 ____D C:\ProgramData\Origin 2021-01-24 16:16 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords 2021-01-24 16:16 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Keywords 2021-01-24 16:16 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2021-01-23 15:02 - 2020-10-10 16:27 - 000000000 ____D C:\Users\dell\AppData\Roaming\Twitch 2021-01-22 13:40 - 2020-07-13 15:48 - 000000000 ____D C:\ProgramData\MTA San Andreas All 2021-01-22 13:40 - 2020-07-13 15:48 - 000000000 ____D C:\ProgramData\MTA San Andreas All 2021-01-19 13:40 - 2020-10-31 16:36 - 000000000 ____D C:\ProgramData\Buena Vista Games 2021-01-19 13:40 - 2020-10-31 16:36 - 000000000 ____D C:\ProgramData\Buena Vista Games 2021-01-19 13:40 - 2020-10-31 16:34 - 000000137 _____ C:\WINDOWS\disney.ini 2021-01-19 13:40 - 2019-04-20 17:11 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2021-01-18 16:28 - 2019-12-27 14:20 - 000000000 ____D C:\Users\dell\AppData\Roaming\uTorrent 2021-01-15 09:55 - 2019-12-07 16:11 - 000000000 ____D C:\Program Files\Windows Photo Viewer 2021-01-15 09:55 - 2019-12-07 16:11 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2021-01-15 09:55 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12 2021-01-15 09:55 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs 2021-01-15 09:55 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP 2021-01-15 09:55 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\F12 2021-01-15 09:55 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2021-01-15 09:55 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog 2021-01-15 09:55 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2021-01-15 09:55 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation 2021-01-15 09:55 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2021-01-15 09:55 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2021-01-15 09:55 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com 2021-01-15 09:55 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers 2021-01-15 09:55 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2021-01-15 09:55 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2021-01-15 09:55 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep 2021-01-15 09:55 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup 2021-01-15 09:55 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation 2021-01-15 09:55 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2021-01-15 09:55 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Com 2021-01-15 09:55 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers 2021-01-15 09:55 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences 2021-01-15 09:55 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellComponents 2021-01-15 09:55 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning 2021-01-15 09:55 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\IME 2021-01-15 09:55 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender 2021-01-15 09:43 - 2021-01-02 13:48 - 000000000 ____D C:\Program Files (x86)\Lively Wallpaper 2021-01-15 09:37 - 2020-06-20 15:16 - 002877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2021-01-13 15:15 - 2020-04-25 12:52 - 000000000 ____D C:\Users\dell\AppData\Local\ElevatedDiagnostics 2021-01-12 10:32 - 2019-04-20 17:13 - 000000000 ____D C:\ProgramData\Goodix 2021-01-12 10:32 - 2019-04-20 17:13 - 000000000 ____D C:\ProgramData\Goodix ==================== Pliki w katalogu głównym wybranych folderów ======== 2019-08-15 08:56 - 2021-02-02 10:33 - 000000017 _____ () C:\Users\dell\AppData\Roaming\.cache3678791056.dat 2019-08-19 16:49 - 2020-08-27 09:48 - 000000019 _____ () C:\Users\dell\AppData\Roaming\.crystalinst 2020-09-26 15:30 - 2021-01-26 13:56 - 000000045 _____ () C:\Users\dell\AppData\Roaming\MCVi2UserDetail.ini 2020-10-22 18:26 - 2020-10-22 18:26 - 000016438 _____ () C:\Users\dell\AppData\Local\partner.bmp 2020-09-22 19:52 - 2020-09-22 19:52 - 000001471 _____ () C:\Users\dell\AppData\Local\recently-used.xbel ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================