Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 28-03-2021 Uruchomiony przez DOMOWY (administrator) DOMOWY-KOMPUTER (ASUSTeK Computer Inc. K73SV) (29-03-2021 20:17:20) Uruchomiony z C:\Users\DOMOWY\Desktop Załadowane profile: DOMOWY & UpdatusUser Platform: Windows 7 Home Premium Service Pack 1 (X64) Język: Polski (Polska) Domyślna przeglądarka: FF Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) () [Brak podpisu cyfrowego] C:\Program Files (x86)\Przypominacz JT\Przypominacz JT.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe <2> (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] C:\Program Files (x86)\Bluetooth Suite\AdminService.exe (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe (Atheros Communications Inc. -> Atheros Communications) [Brak podpisu cyfrowego] C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe (Digital Wave Ltd -> Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe (HP Inc. -> ) C:\Windows\SysWOW64\spdsvc.exe (Intel Corporation - Mobile Wireless Group -> Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\btplayerctrl.exe (Intel Corporation - Mobile Wireless Group -> Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe (Intel Corporation - Mobile Wireless Group -> Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe (Intel Corporation - Mobile Wireless Group -> Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <11> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2> (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Samsung Electronics CO., LTD. -> ) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> ) C:\Windows\SysWOW64\SecUPDUtilSvc.exe (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent Inc.) D:\Programy Portable ze skrótami w menu start\Foxmail 7.2\Foxmail.exe <3> ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18368512 2017-04-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1353680 2016-11-14] (Microsoft Corporation -> Microsoft Corporation) HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [1841496 2016-10-14] (Logitech -> Logitech, Inc.) HKLM\...\Run: [BTMTrayAgent] => C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [10357008 2011-10-18] (Intel Corporation - Mobile Wireless Group -> Intel Corporation) HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [613536 2010-10-27] (Atheros Communications Inc. -> Atheros Communications) [Brak podpisu cyfrowego] HKLM\...\Run: [AthBtTray] => C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [379040 2010-10-27] (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [464608 2014-09-08] (Samsung Electronics CO., LTD. -> ) HKLM-x32\...\Run: [Przypominacz JT] => C:\Program Files (x86)\Przypominacz JT\Przypominacz JT.exe [11129856 2020-01-06] () [Brak podpisu cyfrowego] HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-12-09] (Oracle America, Inc. -> Oracle Corporation) HKU\S-1-5-21-3982927073-1380822547-1866706166-1000\...\Run: [*LABAL*] => [X] HKU\S-1-5-21-3982927073-1380822547-1866706166-1000\...\Run: [Foxmail] => D:\Programy Portable ze skrótami w menu start\Foxmail 7.2\Foxmail.exe [17768136 2017-12-01] (Tencent Technology(Shenzhen) Company Limited -> Tencent Inc.) HKU\S-1-5-21-3982927073-1380822547-1866706166-1000\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5536424 2021-03-06] (Adobe Inc. -> Adobe Systems Incorporated) HKU\S-1-5-21-3982927073-1380822547-1866706166-1000\...\Policies\system: [LogonHoursAction] 2 HKU\S-1-5-21-3982927073-1380822547-1866706166-1000\...\Policies\system: [DontDisplayLogonHoursWarnings] 1 HKU\S-1-5-21-3982927073-1380822547-1866706166-1000\...\MountPoints2: {81a658b8-46a4-11e7-ba08-742f68a0f7fe} - F:\LenovoUsbDriver_autorun_1.0.8.exe HKU\S-1-5-21-3982927073-1380822547-1866706166-1000\...\MountPoints2: {81a658b9-46a4-11e7-ba08-742f68a0f7fe} - F:\LenovoUsbDriver_autorun_1.0.8.exe HKU\S-1-5-21-3982927073-1380822547-1866706166-1004\...\Policies\system: [LogonHoursAction] 2 HKU\S-1-5-21-3982927073-1380822547-1866706166-1004\...\Policies\system: [DontDisplayLogonHoursWarnings] 1 HKLM\...\Windows x64\Print Processors\us005PC: C:\Windows\System32\spool\prtprocs\x64\us005pc.dll [43520 2017-06-14] (Windows (R) Codename Longhorn DDK provider) [Brak podpisu cyfrowego] HKLM\...\Windows x64\Print Processors\us013PC: C:\Windows\System32\spool\prtprocs\x64\us013pc.dll [43520 2015-08-20] (Windows (R) Codename Longhorn DDK provider) [Brak podpisu cyfrowego] HKLM\...\Print\Monitors\HP C211 Status Monitor: C:\Windows\system32\hpinkstsC211LM.dll [333496 2012-12-16] (Hewlett Packard -> Hewlett-Packard Co.) HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Deskjet 2540 series): C:\Windows\system32\HPDiscoPMC211.dll [763912 2014-03-06] (Hewlett Packard -> Hewlett-Packard Co.) HKLM\...\Print\Monitors\us005 Langmon: C:\Windows\system32\us005lm.dll [22528 2015-01-29] () [Brak podpisu cyfrowego] HKLM\...\Print\Monitors\us013 Langmon: C:\Windows\system32\us013lm.dll [22528 2015-03-12] () [Brak podpisu cyfrowego] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\89.0.4389.90\Installer\chrmstp.exe [2021-03-16] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [181280 2017-01-25] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [158392 2017-01-25] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) GroupPolicy\User: Ograniczenia ? <==== UWAGA GroupPolicyUsers\S-1-5-21-3982927073-1380822547-1866706166-1004\User: Ograniczenia <==== UWAGA GroupPolicyUsers\S-1-5-21-3982927073-1380822547-1866706166-1003\User: Ograniczenia <==== UWAGA Policies: C:\Users\DOMOWY\NTUSER.pol: Ograniczenia <==== UWAGA Policies: C:\Users\ZUZA\NTUSER.pol: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0021FD4B-EB1D-4C44-8F58-CCA9626D2267} - System32\Tasks\{8F7C4EF8-AC05-4C31-9179-36D6ABD0416A} => C:\Users\DOMOWY\Desktop\VWTool 2.0.9 PL\VWTool 2.0.9 PL\VWTool\install\Setup.exe Task: {08E66F5C-D610-4F79-8D78-6DBD87430E0F} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115040 2021-03-13] (Microsoft Corporation -> Microsoft Corporation) Task: {0F4C647E-4CD0-486E-ADEE-C490DD89BBDA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4371880 2021-03-13] (Microsoft Corporation -> Microsoft Corporation) Task: {13CDA8C4-A43C-43F4-9548-7125D5542257} - System32\Tasks\{15991A77-92E0-4CE9-8C76-30881806FD48} => C:\Windows\system32\pcalua.exe -a "D:\Wirtualny\VMWare Workstation 5.5.2-29772\VMware-workstation-5.5.2-29772.exe" -d "D:\Wirtualny\VMWare Workstation 5.5.2-29772" Task: {16ECB513-69F0-4C61-80DC-0D9421791C92} - System32\Tasks\{981477D2-EFBF-4FF9-A72D-EAABA1C8AFC4} => C:\Users\DOMOWY\Desktop\VWTool 2.0.9 pl\VWTool 2.0.9 pl + en\install\Setup.exe Task: {25FEF25F-6BAD-435D-A2D3-2CE52930C6F6} - System32\Tasks\{567E0E5E-D9B3-49D2-8393-A11FD83BDB9F} => C:\Users\DOMOWY\Desktop\VWTool 2.0.9 PL\VWTool 2.0.9 PL\VWTool\install\Setup.exe Task: {2CCAF72B-6F19-4014-BBF7-E71A03ADF364} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4371880 2021-03-13] (Microsoft Corporation -> Microsoft Corporation) Task: {2D67BF58-C6F7-475D-AA81-63900CC31686} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.) Task: {313BED9B-0D4D-48EB-A74E-7EBC0A7B6120} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-22] (Adobe Inc. -> Adobe) Task: {346BDED0-E25D-4C05-B8E3-11D205B4F3EF} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115040 2021-03-13] (Microsoft Corporation -> Microsoft Corporation) Task: {378CB9E2-9C75-4AC7-8C5A-5E1FDB7E1BF9} - System32\Tasks\{F411EF3C-60A6-47C5-AA1D-B5B5E31C069B} => C:\Users\DOMOWY\Desktop\VWTool 2.0.9 pl\VWTool 2.0.9 pl + en\install\Setup.exe Task: {490AE197-168F-4A9E-9364-933868D4903A} - System32\Tasks\{C6B49B70-48D1-4434-9A5A-2927E9BB99BE} => C:\Users\DOMOWY\Desktop\VWTool 2.0.9 pl\VWTool 2.0.9 pl + en\install\Setup.exe Task: {4A710E88-A750-4985-941C-4D3AC8A10909} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1485312 2017-04-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {7584A237-9EF7-459F-9B6D-9037C168F1AE} - System32\Tasks\{D76AF4A7-FB7B-45CB-9C15-D5C4916C5E53} => C:\Users\DOMOWY\AppData\Roaming\Sony Channel Editor\Sony Channel Editor.exe [345552 2019-03-26] () [Brak podpisu cyfrowego] Task: {7F1AE535-960C-4562-A997-8C632EB11886} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1485312 2017-04-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {89B4BF4C-04FC-4945-A69D-9006CEF30FDB} - System32\Tasks\{B92E7E33-F346-431C-BE09-0A5C9D2C8BE2} => C:\Users\DOMOWY\Desktop\VWTool 2.0.9 pl\VWTool 2.0.9 pl + en\install\Setup.exe Task: {90D10A04-5E57-44E1-B067-4C68EA32BFA0} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24612256 2021-03-05] (Microsoft Corporation -> Microsoft Corporation) Task: {9E434AF3-B509-4136-A962-E4202209750A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-04-30] (Google Inc -> Google Inc.) Task: {A2644C84-72E2-4EC0-8432-F7EC3594E2B4} - System32\Tasks\{34EEBEE6-8A05-4309-BBE2-E3F233E46851} => H:\AUTORUN.EXE Task: {A96EFFB2-5B21-42D7-9BAB-DFB6874FFDC1} - System32\Tasks\{E55CC9D6-81FB-4089-BFFE-DFDBDA8E4C7E} => C:\Users\DOMOWY\Desktop\VWTool 2.0.9 pl\VWTool 2.0.9 pl + en\install\Setup.exe Task: {B1880E63-3129-4FA6-9A92-16BE2F113E71} - System32\Tasks\{643FC8DD-1F40-4951-B1E6-06DBD8628F48} => C:\Windows\system32\pcalua.exe -a "C:\Users\DOMOWY\Desktop\Advanced RAR Repair 1.2 Full.exe" -d C:\Users\DOMOWY\Desktop Task: {BBDBF4D0-CD62-4209-869A-44C314F8CD14} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24612256 2021-03-05] (Microsoft Corporation -> Microsoft Corporation) Task: {C5A04A4D-91B1-4ABD-BE7C-2D4F0C2DAF4D} - System32\Tasks\{D9EF7D2A-4B84-4A17-ACCD-4877383997BF} => C:\Users\DOMOWY\Desktop\Portable ABBYY FineReader 9 Pro PL\Portable ABBYY FineReader9 Pro PL\ABBYY FineReader 9.0 Professional Edition.exe Task: {D076571D-C25B-4986-BF80-9526E6AF710F} - System32\Tasks\{4EE58502-71EB-4C35-86EE-C1CBD2F661EF} => C:\Windows\system32\pcalua.exe -a C:\Users\DOMOWY\Desktop\16q4_7w_blt_01\IntelBT\Setup.exe -d C:\Users\DOMOWY\Desktop\16q4_7w_blt_01\IntelBT Task: {D1FF890E-7D01-47E0-8F87-86712E32DCA4} - System32\Tasks\{9395D8A2-49D7-424D-B180-575314DF03DF} => C:\Users\DOMOWY\Desktop\VWTool 2.0.9 pl\VWTool 2.0.9 pl + en\install\Setup.exe Task: {E8A77CFA-5760-48F2-B024-1233C9838C71} - System32\Tasks\{50B6ED41-5589-4F4F-858D-BF083985B5A3} => C:\Program Files (x86)\Hasbro Interactive\RollerCoaster Tycoon\rct.exe Task: {EF8FCE81-E204-4640-ABCE-BF7F911D66F7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-04-30] (Google Inc -> Google Inc.) Task: {F37453B9-315D-4D93-89E0-ACDE6FCF2A45} - System32\Tasks\{C07D0FB0-E64F-4D46-9877-00A08B633516} => C:\Users\DOMOWY\Desktop\VWTool 2.0.9 pl\VWTool 2.0.9 pl + en\install\Setup.exe Task: {F7C0320F-B147-45C1-ABD2-9DB0F5582B92} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1485312 2017-04-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 Tcpip\..\Interfaces\{77ACD0D8-8B6C-4F87-961C-287A6A630B55}: [DhcpNameServer] 192.168.43.1 Tcpip\..\Interfaces\{D623AAC0-0B12-489F-8EBF-8F5C0588D595}: [DhcpNameServer] 192.168.178.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\DOMOWY\AppData\Local\Microsoft\Edge\User Data\Default [2021-03-28] Edge HomePage: Default -> hxxps://www.msn.com/?OCID=IE11FREDHP&PC=UF01 Edge Extension: (Chrome Media Router) - C:\Users\DOMOWY\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-03-19] FireFox: ======== FF DefaultProfile: ryv3bs1t.default-1264842579387 FF ProfilePath: C:\Users\DOMOWY\AppData\Roaming\TomTom\HOME\Profiles\ct7e3tpv.default [2019-11-18] FF Extension: (Brak nazwy) - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [nie znaleziono] FF ProfilePath: C:\Users\DOMOWY\AppData\Roaming\Mozilla\Firefox\Profiles\ryv3bs1t.default-1264842579387 [2021-03-29] FF Notifications: Mozilla\Firefox\Profiles\ryv3bs1t.default-1264842579387 -> hxxps://www.facebook.com FF Extension: (ImTranslator: Tłumacz, Słownik, Głos) - C:\Users\DOMOWY\AppData\Roaming\Mozilla\Firefox\Profiles\ryv3bs1t.default-1264842579387\Extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi [2021-03-18] FF Extension: (Video DownloadHelper) - C:\Users\DOMOWY\AppData\Roaming\Mozilla\Firefox\Profiles\ryv3bs1t.default-1264842579387\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2020-12-20] FF Extension: (Flash Video Player for Facebook™) - C:\Users\DOMOWY\AppData\Roaming\Mozilla\Firefox\Profiles\ryv3bs1t.default-1264842579387\Extensions\{d0bfdcce-52c7-4b32-bb45-948f62db8d3f}.xpi [2019-10-30] FF Extension: (Adblock Plus - darmowy adblocker) - C:\Users\DOMOWY\AppData\Roaming\Mozilla\Firefox\Profiles\ryv3bs1t.default-1264842579387\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-01-29] FF Plugin: @java.com/DTPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\dtplugin\npDeployJava1.dll [2021-01-21] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\plugin2\npjp2.dll [2021-01-21] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @jlgplayer3.julegame.com -> C:\Users\DOMOWY\AppData\Local\JuleGame\jlgplayer\npjlgplayer3.dll [2019-10-14] (成都云合互动科技有限公司 -> Jule game technology co.,ltd) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2020-10-08] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-10-08] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-12-29] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Brak podpisu cyfrowego] FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-12-29] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Brak podpisu cyfrowego] FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-03-06] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-3982927073-1380822547-1866706166-1000: @jlgplayer3.julegame.com -> C:\Users\DOMOWY\AppData\Local\JuleGame\jlgplayer\npjlgplayer3.dll [2019-10-14] (成都云合互动科技有限公司 -> Jule game technology co.,ltd) FF ExtraCheck: C:\Program Files\mozilla firefox\8401792.cfg [2018-01-31] <==== UWAGA Chrome: ======= CHR DefaultProfile: Profile 2 CHR Profile: C:\Users\DOMOWY\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-09-07] CHR Profile: C:\Users\DOMOWY\AppData\Local\Google\Chrome\User Data\Profile 1 [2020-09-19] CHR HomePage: Profile 1 -> hxxp://www.google.pl/ CHR StartupUrls: Profile 1 -> "hxxp://www.google.pl/","hxxps://chrome.google.com/webstore/category/app/91-bookmarks?utm_source=chrome-ntp-icon&_sort=1" CHR Extension: (Prezentacje) - C:\Users\DOMOWY\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-01-26] CHR Extension: (Dokumenty) - C:\Users\DOMOWY\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2020-01-26] CHR Extension: (Dysk Google) - C:\Users\DOMOWY\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-01-26] CHR Extension: (YouTube) - C:\Users\DOMOWY\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-01-26] CHR Extension: (Arkusze) - C:\Users\DOMOWY\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-01-26] CHR Extension: (Dokumenty Google offline) - C:\Users\DOMOWY\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-09-19] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\DOMOWY\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-01-26] CHR Extension: (Gmail) - C:\Users\DOMOWY\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-01-26] CHR Extension: (Chrome Media Router) - C:\Users\DOMOWY\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-09-07] CHR Profile: C:\Users\DOMOWY\AppData\Local\Google\Chrome\User Data\Profile 2 [2021-03-28] CHR Notifications: Profile 2 -> hxxps://www.facebook.com; hxxps://www.youtube.com CHR Extension: (Prezentacje) - C:\Users\DOMOWY\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-01-26] CHR Extension: (Dokumenty) - C:\Users\DOMOWY\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2020-01-26] CHR Extension: (Dysk Google) - C:\Users\DOMOWY\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-31] CHR Extension: (YouTube) - C:\Users\DOMOWY\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-01-26] CHR Extension: (Arkusze) - C:\Users\DOMOWY\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-01-26] CHR Extension: (Dokumenty Google offline) - C:\Users\DOMOWY\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-03-28] CHR Extension: (Program uruchamiający aplikacje dla plików z Dysku (od Google)) - C:\Users\DOMOWY\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-01-24] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\DOMOWY\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-07] CHR Extension: (Gmail) - C:\Users\DOMOWY\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-22] CHR Extension: (Chrome Media Router) - C:\Users\DOMOWY\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-03-28] CHR Profile: C:\Users\DOMOWY\AppData\Local\Google\Chrome\User Data\Profile 3 [2020-12-07] CHR Notifications: Profile 3 -> hxxps://www.facebook.com CHR Extension: (Prezentacje) - C:\Users\DOMOWY\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-09-03] CHR Extension: (Just Black) - C:\Users\DOMOWY\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2020-09-03] CHR Extension: (Dokumenty) - C:\Users\DOMOWY\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake [2020-09-03] CHR Extension: (Dysk Google) - C:\Users\DOMOWY\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-15] CHR Extension: (YouTube) - C:\Users\DOMOWY\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-09-03] CHR Extension: (Arkusze) - C:\Users\DOMOWY\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-09-03] CHR Extension: (Dokumenty Google offline) - C:\Users\DOMOWY\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-12-05] CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\DOMOWY\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2020-11-15] CHR Extension: (fillUp Formularze - dodatek) - C:\Users\DOMOWY\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nlnpeeaafijaebcdgkdeojkpnkfkjdnh [2020-09-03] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\DOMOWY\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-09-03] CHR Extension: (Gmail) - C:\Users\DOMOWY\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-15] CHR Extension: (Chrome Media Router) - C:\Users\DOMOWY\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-12-05] CHR Profile: C:\Users\DOMOWY\AppData\Local\Google\Chrome\User Data\System Profile [2020-09-07] CHR HKU\S-1-5-21-3982927073-1380822547-1866706166-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] CHR HKLM-x32\...\Chrome\Extension: [nlnpeeaafijaebcdgkdeojkpnkfkjdnh] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.) S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-22] (Adobe Inc. -> Adobe) R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [52896 2010-10-27] (Atheros Communications Inc. -> Atheros Commnucations) [Brak podpisu cyfrowego] R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11137440 2021-03-05] (Microsoft Corporation -> Microsoft Corporation) R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [440808 2017-03-22] (Digital Wave Ltd -> Digital Wave Ltd.) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2020-12-11] (Malwarebytes Inc -> Malwarebytes) R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation -> Microsoft Corporation) R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation -> Microsoft Corporation) R2 Samsung Printer Dianostics Service; C:\Windows\SysWOW64\\spdsvc.exe [508488 2018-04-25] (HP Inc. -> ) R2 SamsungUPDUtilSvc; C:\Windows\SysWOW64\SecUPDUtilSvc.exe [143664 2017-04-30] (Samsung Electronics CO., LTD. -> ) R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-01-16] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13206544 2020-02-14] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) S3 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [694016 2019-09-03] (Oracle Corporation -> Oracle Corporation) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation) S2 MSCamSvc; "C:\Program Files\Microsoft LifeCam\MSCamS64.exe" [X] R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" S3 WsDrvInst; C:\Program Files (x86)\Wondershare\MobileTrans\DriverInstall.exe [X] ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 AMPPAL; C:\Windows\System32\DRIVERS\AMPPAL.sys [299008 2011-09-15] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) S3 androidusb; C:\Windows\System32\Drivers\ssadadb.sys [36328 2011-05-13] (MCCI Internal Testing Software -> Google Inc) R3 Apowersoft_AudioDevice; C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys [31920 2014-04-09] (APOWERSOFT LIMITED -> Wondershare) S3 ATHDFU; C:\Windows\System32\Drivers\AthDfu.sys [55336 2010-10-27] (Atheros Communications Inc. -> Windows (R) Win 7 DDK provider) R3 athr; C:\Windows\System32\DRIVERS\athrx.sys [2753536 2011-06-27] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.) S3 btmaux; C:\Windows\System32\DRIVERS\btmaux.sys [53760 2011-08-29] (Intel Corporation) [Brak podpisu cyfrowego] R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [153312 2020-12-11] (Malwarebytes Corporation -> Malwarebytes) S2 HOSTNT; C:\Windows\SysWow64\Drivers\HOSTNT.sys [4032 2017-09-14] () [Brak podpisu cyfrowego] R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115600 2010-01-29] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.) R0 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [220616 2021-02-19] (Malwarebytes Inc -> Malwarebytes) R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [198248 2021-03-28] (Malwarebytes Inc -> Malwarebytes) R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [77496 2021-03-28] (Malwarebytes Inc -> Malwarebytes) R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2021-02-19] (Malwarebytes Inc -> Malwarebytes) R3 MBAMWebProtection; C:\Windows\System32\DRIVERS\mwac.sys [130592 2021-03-28] (Malwarebytes Inc -> Malwarebytes) R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation -> Microsoft Corporation) R3 MpKsl3b1fc251; C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{49498E23-1C8B-468B-9FDA-F06FDA0008E8}\MpKslDrv.sys [47352 2021-03-29] (Microsoft Windows -> Microsoft Corporation) R3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation -> Microsoft Corporation) S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [166760 2020-04-24] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 usbUDisc; C:\Windows\System32\DRIVERS\USBDrv_AMD64.sys [18392 2013-01-25] (Allwinner Technology Co.,Ltd. -> Scott) R3 VBoxNetAdp; C:\Windows\System32\DRIVERS\VBoxNetAdp6.sys [237376 2019-09-03] (Oracle Corporation -> Oracle Corporation) R1 VBoxNetLwf; C:\Windows\System32\DRIVERS\VBoxNetLwf.sys [248464 2019-09-03] (Oracle Corporation -> Oracle Corporation) S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [175248 2019-09-03] (Oracle Corporation -> Oracle Corporation) S3 wdm_usb; C:\Windows\System32\DRIVERS\usb2ser.sys [159936 2019-06-14] (NGO -> MBB) S3 btath_avdt; system32\drivers\btath_avdt.sys [X] S3 SWDUMon; system32\DRIVERS\SWDUMon.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-03-29 20:17 - 2021-03-29 20:18 - 000032120 _____ C:\Users\DOMOWY\Desktop\FRST.txt 2021-03-29 20:17 - 2021-03-29 20:17 - 000000000 ____D C:\FRST 2021-03-29 20:16 - 2021-03-29 20:16 - 000000641 _____ C:\Users\DOMOWY\Desktop\1.txt 2021-03-29 19:56 - 2021-03-29 19:56 - 002298368 _____ (Farbar) C:\Users\DOMOWY\Desktop\FRST64.exe 2021-03-28 12:44 - 2021-03-28 12:44 - 000198248 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys 2021-03-28 12:44 - 2021-03-28 12:44 - 000130592 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys 2021-03-28 12:44 - 2021-03-28 12:44 - 000077496 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys 2021-03-28 12:44 - 2021-03-28 12:44 - 000000000 ___RD C:\Users\DOMOWY\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices 2021-03-28 00:02 - 2021-03-28 00:04 - 000000000 ____D C:\Users\DOMOWY\AppData\Roaming\EasyDuplicateFinder 2021-03-28 00:02 - 2021-03-28 00:04 - 000000000 ____D C:\ProgramData\Easy Duplicate Finder 2021-03-28 00:02 - 2021-03-28 00:02 - 000000000 ____D C:\Users\DOMOWY\Documents\EasyDuplicateFinder 2021-03-27 16:43 - 2021-03-27 20:34 - 000000000 ____D C:\Users\DOMOWY\AppData\Roaming\Ashisoft 2021-03-27 16:43 - 2021-03-27 20:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Duplicate File Finder 2021-03-27 16:43 - 2021-03-27 20:34 - 000000000 ____D C:\Program Files (x86)\Duplicate File Finder 2021-03-27 13:53 - 2021-03-27 13:53 - 000000000 ____D C:\ProgramData\KDO-RG 2021-03-19 22:08 - 2021-03-19 22:08 - 000000000 ____D C:\Users\DOMOWY\Downloads\ChomikBox 2021-03-19 20:31 - 2021-03-19 20:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Roblox 2021-03-16 16:07 - 2021-03-16 16:07 - 000642431 _____ C:\Users\DOMOWY\Desktop\Gastroskopia Jolanta Bąk luty 2020.pdf 2021-03-13 20:30 - 2021-03-13 20:30 - 000002533 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype dla firm.lnk 2021-03-13 20:30 - 2021-03-13 20:30 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk 2021-03-13 20:30 - 2021-03-13 20:30 - 000002424 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk 2021-03-13 20:30 - 2021-03-13 20:30 - 000002409 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk 2021-03-13 20:30 - 2021-03-13 20:30 - 000002406 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk 2021-03-13 20:30 - 2021-03-13 20:30 - 000002403 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk 2021-03-13 20:30 - 2021-03-13 20:30 - 000002370 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk 2021-03-13 20:30 - 2021-03-13 20:30 - 000002360 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk 2021-03-13 20:30 - 2021-03-13 20:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Narzędzia pakietu Microsoft Office 2021-03-10 15:53 - 2021-03-13 19:14 - 000000000 ____D C:\Users\DOMOWY\Desktop\mzk 2021-03-06 13:32 - 2021-03-06 13:32 - 003211483 _____ C:\Users\DOMOWY\Desktop\lista_operacji_150101_210306_202103061232214949.pdf ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-03-29 15:20 - 2017-09-14 17:48 - 000000000 ____D C:\Users\DOMOWY\.VirtualBox 2021-03-29 15:12 - 2019-10-17 09:03 - 000000000 ____D C:\ProgramData\VirtualBox 2021-03-29 13:07 - 2019-02-05 16:12 - 000000000 ____D C:\ProgramData\Mozilla 2021-03-29 13:07 - 2017-05-01 23:52 - 000000000 ____D C:\Users\DOMOWY\AppData\LocalLow\Mozilla 2021-03-29 11:52 - 2009-07-14 06:45 - 000032464 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2021-03-29 11:52 - 2009-07-14 06:45 - 000032464 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2021-03-29 11:34 - 2020-12-15 23:10 - 000000000 ____D C:\Program Files\Mozilla Firefox 2021-03-28 21:50 - 2017-12-29 21:21 - 000121477 _____ C:\Users\DOMOWY\Documents\Duplicate Cleaner log.txt 2021-03-28 19:22 - 2017-04-29 20:53 - 000003998 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{0D9F1201-1662-4DED-9E1C-BA486BEDC76F} 2021-03-28 12:48 - 2011-04-12 15:21 - 000743670 _____ C:\Windows\system32\perfh015.dat 2021-03-28 12:48 - 2011-04-12 15:21 - 000157238 _____ C:\Windows\system32\perfc015.dat 2021-03-28 12:48 - 2009-07-14 07:13 - 001677836 _____ C:\Windows\system32\PerfStringBackup.INI 2021-03-28 12:48 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf 2021-03-28 12:44 - 2020-02-27 17:02 - 000000000 ____D C:\Program Files (x86)\TeamViewer 2021-03-28 12:44 - 2018-05-03 21:06 - 000000000 ____D C:\Users\DOMOWY\AppData\Roaming\Foxmail7 2021-03-28 12:44 - 2017-12-01 23:56 - 000000035 _____ C:\ProgramData\Documents\AtherosServiceConfig.ini 2021-03-28 12:44 - 2017-04-29 20:42 - 000000000 ____D C:\ProgramData\NVIDIA 2021-03-28 12:43 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2021-03-27 14:51 - 2020-11-16 15:07 - 000000000 ____D C:\Users\DOMOWY\Desktop\obraz, film 2021-03-27 11:20 - 2020-06-26 22:29 - 000002233 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-03-26 23:52 - 2017-05-01 13:21 - 000000000 ____D C:\Users\DOMOWY\AppData\Local\CrashDumps 2021-03-24 13:31 - 2020-05-19 20:51 - 000000240 _____ C:\Users\DOMOWY\Documents\Przypominacz JT - zaplanowane przypomnienia.txt 2021-03-24 13:31 - 2017-04-29 19:21 - 000037828 _____ C:\Users\DOMOWY\Documents\Przypominacz JT - archiwalne przypomnienia.txt 2021-03-22 18:16 - 2020-02-21 14:55 - 000007597 _____ C:\Users\DOMOWY\AppData\Local\resmon.resmoncfg 2021-03-21 11:27 - 2017-05-01 00:51 - 000000000 ____D C:\Users\DOMOWY\AppData\Local\ElevatedDiagnostics 2021-03-19 22:09 - 2019-10-26 23:14 - 000000000 ____D C:\Users\DOMOWY\AppData\Local\ChomikBox 2021-03-19 22:05 - 2019-10-26 23:15 - 000000000 ____D C:\Users\DOMOWY\.gstreamer-0.10 2021-03-19 22:05 - 2019-10-26 23:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Chomikuj.pl 2021-03-19 22:05 - 2019-10-26 23:14 - 000000000 ____D C:\Program Files (x86)\ChomikBox 2021-03-19 21:19 - 2020-11-16 15:09 - 000000000 ____D C:\Users\DOMOWY\Desktop\ZUZA TwT 2021-03-19 20:31 - 2019-12-25 20:08 - 000000252 _____ C:\Users\DOMOWY\AppData\LocalLow\rbxcsettings.rbx 2021-03-19 20:31 - 2019-12-25 20:08 - 000000000 ____D C:\Program Files (x86)\Roblox 2021-03-16 12:08 - 2017-04-30 15:21 - 000002230 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2021-03-15 16:01 - 2020-10-06 21:49 - 000003190 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3982927073-1380822547-1866706166-1000 2021-03-15 16:01 - 2020-10-06 21:49 - 000002214 _____ C:\Users\DOMOWY\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk 2021-03-15 16:01 - 2020-10-06 21:49 - 000000000 ___RD C:\Users\DOMOWY\OneDrive 2021-03-14 16:14 - 2020-12-29 16:21 - 000000000 ____D C:\Users\DOMOWY\AppData\Roaming\Sony Channel Editor 2021-03-13 20:32 - 2020-10-07 11:58 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-03-13 20:29 - 2020-10-07 11:54 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2021-03-12 21:01 - 2020-10-19 13:18 - 000000000 ____D C:\Users\DOMOWY\Desktop\lista programów sony 55xh 2021-03-12 17:35 - 2017-04-30 22:30 - 000002059 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2021-03-11 22:25 - 2020-12-28 21:49 - 000000000 ____D C:\Users\DOMOWY\Desktop\SonyEditor 2021-03-10 21:49 - 2017-04-29 22:07 - 000000000 ____D C:\Windows\system32\MRT 2021-03-10 21:42 - 2017-04-29 22:07 - 131005360 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2021-03-05 23:02 - 2020-11-16 15:01 - 000000000 ____D C:\Users\DOMOWY\Desktop\TXT 2021-03-05 10:44 - 2020-06-26 22:29 - 000003410 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-03-05 10:44 - 2020-06-26 22:29 - 000003282 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore ==================== Pliki w katalogu głównym wybranych folderów ======== 2021-01-22 10:55 - 2021-01-30 21:45 - 000000017 _____ () C:\Users\DOMOWY\AppData\Roaming\.cache3678791056.dat 2017-05-04 19:29 - 2021-01-30 19:50 - 000018944 _____ () C:\Users\DOMOWY\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2020-02-21 14:55 - 2021-03-22 18:16 - 000007597 _____ () C:\Users\DOMOWY\AppData\Local\resmon.resmoncfg ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) LastRegBack: 2021-03-24 15:45 ==================== Koniec FRST.txt ========================