Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x86) Wersja: 05-02-2022 Uruchomiony przez KTR (administrator) KTR-KOMPUTER (FUJITSU LIFEBOOK T730) (07-02-2022 20:23:25) Uruchomiony z C:\Users\KTR\Desktop Załadowane profile: KTR Platforma: Microsoft Windows 7 Professional Service Pack 1 (X86) Język: Polski (Polska) Domyślna przeglądarka: FF Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Acronis International GmbH -> Acronis) C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe (Acronis International GmbH -> Acronis) C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe (Acronis International GmbH -> Acronis) C:\Program Files\Common Files\Acronis\SyncAgent\syncagentsrv.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe (Autodesk, Inc. -> ) C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe (BlackBerry Ltd. -> Apple Inc.) C:\Program Files\Common Files\Research In Motion\Tunnel Manager\mDNSResponder.exe (BlackBerry Ltd. -> BlackBerry Limited) C:\Program Files\Common Files\Research In Motion\Tunnel Manager\tunmgr.exe (BlackBerry Ltd. -> BlackBerry Limited) C:\Program Files\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files\Dropbox\Client\Dropbox.exe <3> (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files\Dropbox\Client\141.4.3299\QtWebEngineProcess.exe <2> (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\RemoteAdministrator\Agent\ERAAgent.exe (FUJITSU CLIENT COMPUTING LIMITED -> Fujitsu Technology Solutions) C:\Program Files\Fujitsu\DeskUpdate\DeskUpdateNotifier.exe (FUJITSU LIMITED -> ) C:\Programme\Fujitsu\WirelessSelector\WSUService.exe (FUJITSU LIMITED -> FUJITSU LIMITED) C:\Program Files\Fujitsu\FDM7\FdmDaemon.exe (FUJITSU LIMITED -> FUJITSU LIMITED) C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.exe (FUJITSU LIMITED -> FUJITSU LIMITED) C:\Program Files\Fujitsu\SSUtility\FJSSDMN.exe (FUJITSU LIMITED -> FUJITSU LIMITED) C:\Programme\Fujitsu\PSUtility\PSUService.exe (Ghisler Software GmbH -> Ghisler Software GmbH) C:\totalcmd\TOTALCMD.EXE (Google LLC -> Google LLC) C:\Program Files\Google\Update\1.3.36.122\GoogleCrashHandler.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxpers.exe (Intel Corporation) [Brak podpisu cyfrowego] C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation) [Brak podpisu cyfrowego] C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation) [Brak podpisu cyfrowego] C:\Windows\System32\IPROSetMonitor.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wisptis.exe <2> (Microsoft Windows Hardware Compatibility Publisher -> ) C:\Windows\snuvcdsm.exe (O&K Software Ltd. -> ) C:\Program Files\Prio\prio_svc.exe (O2Micro International) [Brak podpisu cyfrowego] C:\Windows\System32\o2flash.exe (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner.exe (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [LoadFUJ02E3] => C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.exe [36712 2009-10-14] (FUJITSU LIMITED -> FUJITSU LIMITED) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [7862816 2009-10-28] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [] => [X] HKLM\...\Run: [SSUtility] => C:\Program Files\Fujitsu\SSUtility\FJSSDMN.exe [193832 2007-12-14] (FUJITSU LIMITED -> FUJITSU LIMITED) HKLM\...\Run: [Dropbox] => C:\Program Files\Dropbox\Client\Dropbox.exe [10585376 2022-02-02] (Dropbox, Inc -> Dropbox, Inc.) HKLM\...\Run: [FDM7] => C:\Program Files\Fujitsu\FDM7\FdmDaemon.exe [128360 2009-07-23] (FUJITSU LIMITED -> FUJITSU LIMITED) HKLM\...\Run: [SNUVCDSM] => C:\Windows\snuvcdsm.exe [24576 2009-05-22] (Microsoft Windows Hardware Compatibility Publisher -> ) HKLM\...\Run: [DeskUpdateNotifier] => C:\Program Files\Fujitsu\DeskUpdate\DeskUpdateNotifier.exe [102664 2021-08-12] (FUJITSU CLIENT COMPUTING LIMITED -> Fujitsu Technology Solutions) HKLM\...\Run: [FUJ02B1_Apps] => C:\Program Files\Fujitsu\FUJ02B1\CheckBatteryPack.exe [385984 2020-02-26] (FUJITSU CLIENT COMPUTING LIMITED -> FUJITSU CLIENT COMPUTING LIMITED) HKLM\...\Run: [FUJ02E3_BatteryChargingControlUpdate] => C:\Program Files\Fujitsu\FUJ02E3_BatteryChargingControlUpdate\CheckBatteryFW.exe [435752 2019-09-10] (FUJITSU CLIENT COMPUTING LIMITED -> FUJITSU LIMITED) HKLM\...\Run: [FjBatteryLimitter] => C:\Program Files\Fujitsu\FjBatteryLimitter\FjBatteryLimitterRun.exe [361096 2018-11-21] (FUJITSU CLIENT COMPUTING LIMITED -> FUJITSU CLIENT COMPUTING LIMITED) HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [159712 2021-11-19] (ESET, spol. s r.o. -> ESET) HKU\S-1-5-21-912733372-1404333684-1559997254-1000\...\Run: [HP Deskjet 3520 series (NET)] => C:\Program Files\HP\HP Deskjet 3520 series\Bin\ScanToPCActivationApp.exe [1837672 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.) HKU\S-1-5-21-912733372-1404333684-1559997254-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [29453952 2022-01-25] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-912733372-1404333684-1559997254-1000\Software\Policies\...\system: [disablecmd] 0 HKU\S-1-5-21-912733372-1404333684-1559997254-1000\...\MountPoints2: {6c8356b0-d6c3-11e9-bbc7-e839df8c43a2} - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL E:\Start.exe HKU\S-1-5-21-912733372-1404333684-1559997254-1000\...\MountPoints2: {95cb5f1f-eb65-11e9-b429-e839df8c43a2} - E:\unlock.exe autoplay=true HKU\S-1-5-21-912733372-1404333684-1559997254-1000\...\MountPoints2: {b81c952f-3ae5-11ea-8d0d-e839df8c43a2} - E:\AutoRun.exe HKLM\...\Print\Monitors\HP B011 Status Monitor: C:\Windows\system32\hpinkstsB011LM.dll [268688 2012-06-13] (Hewlett Packard -> Hewlett-Packard Co.) HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Deskjet 3520 series): C:\Windows\system32\HPDiscoPMB011.dll [580712 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\97.0.4692.99\Installer\chrmstp.exe [2022-01-26] (Google LLC -> Google LLC) HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\98.1.35.100\Installer\chrmstp.exe [2022-02-03] (Brave Software, Inc. -> Brave Software, Inc.) AppInit_DLLs: prio.dll => C:\Program Files\Prio\prio.dll [15264 2017-01-15] (O&K Software Ltd. -> O&K Software) Startup: C:\Users\KTR\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Wysyłanie do programu OneNote.lnk [2021-09-11] ShortcutTarget: Wysyłanie do programu OneNote.lnk -> C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation) GroupPolicy: Ograniczenia ? <==== UWAGA Policies: C:\ProgramData\NTUSER.pol: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {004F8CA6-4902-42CE-A11B-D6C54FF5C1EE} - System32\Tasks\Fujitsu\FjBatteryLimitter\Limit => C:\Program Files\Fujitsu\FjBatteryLimitter\FjBatteryLimitterBatu.exe [150160 2018-10-03] (FUJITSU CLIENT COMPUTING LIMITED -> FUJITSU CLIENT COMPUTING LIMITED) Task: {02A1547E-C8F5-433D-A227-64528487E840} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {166C652A-606A-45C6-A4C4-3E535E8F598E} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.) Task: {1EC9BE79-CE69-4E18-809B-81786DD3F69D} - System32\Tasks\CCleanerSkipUAC - KTR => C:\Program Files\CCleaner\CCleaner.exe [29453952 2022-01-25] (Piriform Software Ltd -> Piriform Software Ltd) Task: {2645C1CC-A235-45C5-BAA5-3B5782297030} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files\BraveSoftware\Update\BraveUpdate.exe [163528 2020-11-14] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {32D6878B-F0CF-4C1A-B75A-E9FFA0429E4B} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB" Task: {457E3559-555E-477C-8B68-F65F13083641} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-01-25] (Piriform Software Ltd -> Piriform) Task: {4F58706C-3D1B-46D9-AB86-E76F65A0ACEC} - System32\Tasks\Teamviewer-QS-updater-6tyn6p2 => C:\Users\KTR\AppData\Local\TeamViewer\CustomConfigs\6tyn6p2\TeamViewer.exe [49255720 2021-12-17] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) Task: {69C7BBBE-0779-4493-8A2C-5433B52E726B} - System32\Tasks\Fujitsu\DeskUpdate => C:\Program Files\Fujitsu\DeskUpdate\DUCMD.EXE [120584 2021-08-12] (FUJITSU CLIENT COMPUTING LIMITED -> ) Task: {87BD7AFE-A63C-44E9-822F-040E0396BD68} - System32\Tasks\{FD407C14-6552-4465-AFCB-C043D53897FB} => C:\Windows\system32\pcalua.exe -a E:\Archiwum\T730\Stery\LAN_INTEL_V11.5.10.0_WIN7_CA41534-6772.EXE -d E:\Archiwum\T730\Stery Task: {88A24D07-3725-4552-974F-C0682A4F0A56} - System32\Tasks\Fujitsu\FjBatteryLimitter\Notify => C:\Program Files\Fujitsu\FjBatteryLimitter\FjBatteryLimitterNotify.exe [181904 2018-10-03] (FUJITSU CLIENT COMPUTING LIMITED -> FUJITSU CLIENT COMPUTING LIMITED) Task: {9CD37EAC-5168-4316-B77B-1275E65EBB12} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files\BraveSoftware\Update\BraveUpdate.exe [163528 2020-11-14] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {A9B858FA-68E2-4ECF-9068-4D9A8E3529E9} - System32\Tasks\Fujitsu\FjBatteryLimitter\Unlimit => C:\Program Files\Fujitsu\FjBatteryLimitter\FjBatteryLimitterBatu.exe [150160 2018-10-03] (FUJITSU CLIENT COMPUTING LIMITED -> FUJITSU CLIENT COMPUTING LIMITED) Task: {AF89553A-9E35-4250-B3F3-5A05081C672C} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1051864 2014-01-23] (Microsoft Corporation -> Microsoft Corporation) Task: {BA0FFB66-6E40-4115-BCE4-C58E35C38FB4} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.) Task: {C789C802-9AA2-4AF8-874D-8D898F8328BD} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [282800 2014-01-23] (Microsoft Corporation -> Microsoft Corporation) Task: {CE608B27-4EC8-443F-8CD8-36660A2D85FF} - System32\Tasks\GarminUpdaterTask => C:\Program Files\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [40880 2021-03-16] (Garmin International, Inc. -> ) Task: {D10992DE-E54F-4DBF-BDB6-6560EB229E9B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [156104 2020-05-12] (Google LLC -> Google LLC) Task: {DEF83452-1A13-455D-8233-895B20896C0C} - System32\Tasks\{C3F81D82-75B6-42A7-9DA9-8F7A858D555D} => C:\Windows\system32\pcalua.exe -a E:\Archiwum\T730\Stery\SYS-EXTENSION-UTIL_V3.1.1_WIN7_CA41534-6772.EXE -d E:\Archiwum\T730\Stery Task: {E4603D35-CAA7-4C46-8769-DA051E6998EA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [156104 2020-05-12] (Google LLC -> Google LLC) Task: {E7BBF03E-524F-4D2F-B927-F4EB259DC2D1} - System32\Tasks\HPCustParticipation HP Deskjet 3520 series => C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPCustPartic.exe [2938984 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.) Task: {F03663CC-C349-45EF-900F-52F394CC21DC} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [282800 2014-01-23] (Microsoft Corporation -> Microsoft Corporation) Task: {FD0B514A-1F80-4C5A-BD3D-0DFCCE0E80A6} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\Teamviewer-QS-updater-6tyn6p2.job => C:\Users\KTR\AppData\Local\TeamViewer\CustomConfigs\6tyn6p2\TeamViewer.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{966EE454-62DB-48E3-80AA-3778F6E739BB}: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{9B80B859-CD97-4A16-9FA7-8F4DF3BDD57C}: [DhcpNameServer] 192.168.1.254 Edge: ======= Edge Profile: C:\Users\KTR\AppData\Local\Microsoft\Edge\User Data\Default [2022-02-07] FireFox: ======== FF DefaultProfile: xikkqova.default FF ProfilePath: C:\Users\KTR\AppData\Roaming\Mozilla\Firefox\Profiles\xikkqova.default [2020-12-21] FF ProfilePath: C:\Users\KTR\AppData\Roaming\Mozilla\Firefox\Profiles\dn0s06f3.default-release-1616262955942 [2022-02-07] FF Homepage: Mozilla\Firefox\Profiles\dn0s06f3.default-release-1616262955942 -> about:blank FF Extension: (Facebook Container) - C:\Users\KTR\AppData\Roaming\Mozilla\Firefox\Profiles\dn0s06f3.default-release-1616262955942\Extensions\@contain-facebook.xpi [2021-08-03] FF Extension: (Malwarebytes Browser Guard) - C:\Users\KTR\AppData\Roaming\Mozilla\Firefox\Profiles\dn0s06f3.default-release-1616262955942\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2022-01-22] FF Extension: (Groovy Blue) - C:\Users\KTR\AppData\Roaming\Mozilla\Firefox\Profiles\dn0s06f3.default-release-1616262955942\Extensions\{6149213c-39c0-4bad-8ffa-f0bff06e96f8}.xpi [2021-03-21] FF Extension: (NoScript) - C:\Users\KTR\AppData\Roaming\Mozilla\Firefox\Profiles\dn0s06f3.default-release-1616262955942\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2022-02-07] FF Extension: (Video DownloadHelper) - C:\Users\KTR\AppData\Roaming\Mozilla\Firefox\Profiles\dn0s06f3.default-release-1616262955942\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2021-07-01] FF Extension: (Adblock Plus - darmowy adblocker) - C:\Users\KTR\AppData\Roaming\Mozilla\Firefox\Profiles\dn0s06f3.default-release-1616262955942\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-11-23] FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [Brak pliku] FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [Brak pliku] FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [Brak pliku] FF Plugin: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-06-25] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @RIM.com/WebSLLauncher,version=1.0 -> C:\Program Files\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll [2015-03-19] (Research In Motion -> ) FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-12-24] (Adobe Inc. -> Adobe Systems Inc.) FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2022-02-07] Chrome: ======= CHR Profile: C:\Users\KTR\AppData\Local\Google\Chrome\User Data\Default [2022-02-07] CHR Extension: (Prezentacje) - C:\Users\KTR\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-05-12] CHR Extension: (Dokumenty) - C:\Users\KTR\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-05-12] CHR Extension: (Dysk Google) - C:\Users\KTR\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-12-15] CHR Extension: (YouTube) - C:\Users\KTR\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-05-12] CHR Extension: (Arkusze) - C:\Users\KTR\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-05-12] CHR Extension: (Dokumenty Google offline) - C:\Users\KTR\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-01-04] CHR Extension: (Browsing Protection by F-Secure) - C:\Users\KTR\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmjjnhpacphpjmnnlnccpfmhkcloaade [2021-10-13] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\KTR\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-05] CHR Extension: (Gmail) - C:\Users\KTR\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-12-15] Brave: ======= BRA Profile: C:\Users\KTR\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2022-02-07] BRA Extension: (Brave Local Data Files Updater) - C:\Users\KTR\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2022-02-04] BRA Extension: (Brave NTP background images) - C:\Users\KTR\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2022-01-24] BRA Extension: (Wallet Data Files Updater) - C:\Users\KTR\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2022-01-24] BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\KTR\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2022-02-04] BRA Extension: (Brave NTP sponsored images) - C:\Users\KTR\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodhafecfemgejckecbnmpobnhmoaoag [2022-02-04] BRA Extension: (Brave SpeedReader Updater) - C:\Users\KTR\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2022-01-24] BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\KTR\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2022-02-04] BRA Extension: (Brave Ad Block Updater (Oficjalne Polskie Filtry do AdBlocka, uBlocka Origin i AdGuarda)) - C:\Users\KTR\AppData\Local\BraveSoftware\Brave-Browser\User Data\paoecjnjjbclkgbempaeemcbeldldlbo [2022-02-04] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AcrSch2Svc; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [777048 2013-08-21] (Acronis International GmbH -> Acronis) R2 AdobeARMservice; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.) R2 afcdpsrv; C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe [3869688 2020-11-16] (Acronis International GmbH -> Acronis) R2 Autodesk Content Service; C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe [18656 2011-02-02] (Autodesk, Inc. -> ) R3 BlackBerry Device Manager; C:\Program Files\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe [588024 2014-10-31] (BlackBerry Ltd. -> BlackBerry Limited) S2 brave; C:\Program Files\BraveSoftware\Update\BraveUpdate.exe [163528 2020-11-14] (Brave Software, Inc. -> BraveSoftware Inc.) S3 bravem; C:\Program Files\BraveSoftware\Update\BraveUpdate.exe [163528 2020-11-14] (Brave Software, Inc. -> BraveSoftware Inc.) S2 dbupdate; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.) R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [37160 2022-02-02] (Dropbox, Inc -> Dropbox, Inc.) S3 EHttpSrv; C:\Program Files\ESET\ESET Security\ehttpsrv.exe [38360 2021-11-19] (ESET, spol. s r.o. -> ESET) R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2624432 2021-11-19] (ESET, spol. s r.o. -> ESET) R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2624432 2021-11-19] (ESET, spol. s r.o. -> ESET) R2 EraAgentSvc; C:\Program Files\ESET\RemoteAdministrator\Agent\ERAAgent.exe [1266272 2020-05-29] (ESET, spol. s r.o. -> ESET) S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [1044816 2020-07-19] (Flexera Software, Inc. -> Flexera Software, Inc.) R2 Intel(R) PROSet Monitoring Service; C:\Windows\system32\IProsetMonitor.exe [392704 2019-08-21] (Intel Corporation) [Brak podpisu cyfrowego] R2 LMS; C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [262144 2009-11-01] (Intel Corporation) [Brak podpisu cyfrowego] R2 O2Flash; C:\Windows\system32\o2flash.exe [65536 2007-02-12] (O2Micro International) [Brak podpisu cyfrowego] R2 PowerSavingUtilityService; C:\Programme\Fujitsu\PSUtility\PSUService.exe [62824 2009-07-27] (FUJITSU LIMITED -> FUJITSU LIMITED) R2 prio_svc; C:\Program Files\Prio\prio_svc.exe [12704 2017-01-15] (O&K Software Ltd. -> ) R2 RIM MDNS; C:\Program Files\Common Files\Research In Motion\Tunnel Manager\mDNSResponder.exe [396024 2015-03-19] (BlackBerry Ltd. -> Apple Inc.) R2 RIM Tunnel Service; C:\Program Files\Common Files\Research In Motion\Tunnel Manager\tunmgr.exe [1354488 2015-03-19] (BlackBerry Ltd. -> BlackBerry Limited) R2 syncagentsrv; C:\Program Files\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7142360 2013-10-22] (Acronis International GmbH -> Acronis) R2 UNS; C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2314240 2009-11-01] (Intel Corporation) [Brak podpisu cyfrowego] R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Windows -> Microsoft Corporation) R2 WirelessSelectorService; C:\Programme\Fujitsu\WirelessSelector\WSUService.exe [62760 2008-10-09] (FUJITSU LIMITED -> ) S2 WsAppService; C:\Program Files\Wondershare\WAF\2.4.2.223\WsAppService.exe [473312 2017-03-20] (Wondershare Technology Co.,Ltd -> Wondershare) ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 acpials; C:\Windows\System32\DRIVERS\acpials.sys [7680 2009-07-14] (Microsoft Windows -> Microsoft Corporation) R3 athr; C:\Windows\System32\DRIVERS\athr.sys [1227776 2009-11-06] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.) S3 athur; C:\Windows\System32\DRIVERS\athur.sys [1500160 2010-01-05] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.) S3 blackberryncm; C:\Windows\System32\DRIVERS\blackberryncm6.sys [22016 2014-09-08] (Microsoft Windows Hardware Compatibility Publisher -> BlackBerry) S3 csrusbfilter; C:\Windows\System32\Drivers\csrusbfilter.sys [20168 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [141000 2021-11-19] (ESET, spol. s r.o. -> ESET) R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [100168 2021-11-19] (ESET, spol. s r.o. -> ESET) R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [154432 2021-11-19] (ESET, spol. s r.o. -> ESET) R2 ekbdflt; C:\Windows\System32\DRIVERS\ekbdflt.sys [36168 2021-11-19] (ESET, spol. s r.o. -> ESET) R1 epfw; C:\Windows\System32\DRIVERS\epfw.sys [62464 2021-11-19] (ESET, spol. s r.o. -> ESET) R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [49072 2021-11-19] (ESET, spol. s r.o. -> ESET) R1 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [90368 2021-11-19] (ESET, spol. s r.o. -> ESET) S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [23936 2019-12-27] (CHENGDU YIWO Tech Development Co., Ltd. -> ) R0 EPMVolFl; C:\Windows\System32\drivers\EPMVolFl.sys [17920 2019-12-27] (CHENGDU YIWO Tech Development Co., Ltd. -> Windows (R) Codename Longhorn DDK provider) S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [14080 2019-12-27] (CHENGDU YIWO Tech Development Co., Ltd. -> ) R3 Fjbtndrv; C:\Windows\System32\DRIVERS\FjBtnDrv.sys [18816 2009-08-27] (Microsoft Windows Hardware Compatibility Publisher -> Fujitsu America, Inc.) R0 FJGSDisk; C:\Windows\System32\DRIVERS\FJGSDisk.sys [12776 2019-09-08] (FUJITSU LIMITED -> FUJITSU LIMITED) R3 FUJ02B1; C:\Windows\System32\DRIVERS\FUJ02B1.sys [65808 2020-02-26] (FUJITSU LIMITED -> FUJITSU LIMITED) S3 GridinSoftInetSecurityDriver; C:\Windows\System32\DRIVERS\gsInetSecurity.sys [96008 2020-08-18] (GridinSoft, LLC -> GridinSoft LLC) R3 NAL; C:\Windows\system32\Drivers\iqvw32.sys [44008 2019-10-09] (Intel(R) INTELND1617 -> Intel Corporation) S3 nmwcd; C:\Windows\System32\drivers\ccdcmb.sys [18176 2012-01-09] (Microsoft Windows Hardware Compatibility Publisher -> Nokia) S3 nmwcdc; C:\Windows\System32\drivers\ccdcmbo.sys [23168 2012-01-09] (Microsoft Windows Hardware Compatibility Publisher -> Nokia) R0 pwdrvio; C:\Windows\System32\pwdrvio.sys [17160 2015-03-05] (MiniTool Solution Ltd -> ) S3 pwdspio; C:\Windows\system32\pwdspio.sys [13064 2016-11-24] (MiniTool Solution Ltd -> ) S3 RimUsb; C:\Windows\System32\Drivers\RimUsb.sys [68608 2014-05-06] (Microsoft Windows Hardware Compatibility Publisher -> BlackBerry Limited) R3 rimvndis; C:\Windows\System32\Drivers\rimvndis6.sys [14848 2015-03-19] (Microsoft Windows Hardware Compatibility Publisher -> BlackBerry Limited) R3 RimVSerPort; C:\Windows\System32\DRIVERS\RimSerial.sys [35840 2012-12-10] (Microsoft Windows Hardware Compatibility Publisher -> Research in Motion Ltd) R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [3487104 2009-09-04] (Microsoft Windows Hardware Compatibility Publisher -> ) S3 tdrpman; C:\Windows\System32\DRIVERS\tdrpman.sys [889888 2020-11-16] (Acronis International GmbH -> Acronis International GmbH) R0 tib; C:\Windows\System32\DRIVERS\tib.sys [736192 2020-11-16] (Acronis International GmbH -> Acronis International GmbH) R0 tib_mounter; C:\Windows\System32\DRIVERS\tib_mounter.sys [143648 2020-11-16] (Acronis International GmbH -> Acronis International GmbH) S3 TrojanKillerDriver; C:\Windows\System32\DRIVERS\gtkdrv.sys [36168 2020-08-18] (GridinSoft, LLC -> GridinSoft LLC) S3 upperdev; C:\Windows\System32\DRIVERS\usbser_lowerflt.sys [8192 2012-01-09] (Microsoft Windows Hardware Compatibility Publisher -> Nokia) S3 USBAAPL; C:\Windows\System32\Drivers\usbaapl.sys [45056 2018-04-17] (Apple, Inc.) [Brak podpisu cyfrowego] S3 UsbserFilt; C:\Windows\System32\DRIVERS\usbser_lowerfltj.sys [8192 2012-01-09] (Microsoft Windows Hardware Compatibility Publisher -> Nokia) R0 vididr; C:\Windows\System32\DRIVERS\vididr.sys [116000 2020-11-16] (Acronis International GmbH -> Acronis International GmbH) R0 vidsflt; C:\Windows\System32\DRIVERS\vidsflt.sys [85280 2020-11-16] (Acronis International GmbH -> Acronis International GmbH) R3 WISDPen; C:\Windows\System32\DRIVERS\wisdpen.sys [36648 2009-08-24] (Wacom Technology Corp. -> Wacom Technology) S3 BthAvrcp; system32\DRIVERS\BthAvrcp.sys [X] S3 CsrBtPort; system32\DRIVERS\CsrBtPort.sys [X] S3 csrpan; system32\DRIVERS\csrpan.sys [X] S3 csrserial; system32\DRIVERS\csrserial.sys [X] S3 csrusb; System32\Drivers\csrusb.sys [X] S3 ewusbmbb; system32\DRIVERS\ewusbwwan.sys [X] S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X] S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X] S3 pccsmcfd; system32\DRIVERS\pccsmcfd.sys [X] S3 vpnva; system32\DRIVERS\vpnva-6.sys [X] S3 WinRing0_1_2_0; \??\D:\Pobrane\Instal\OpeHardMonitor\OpenHardwareMonitor\OpenHardwareMonitorLib.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2022-02-07 17:33 - 2022-02-07 17:40 - 000003870 _____ C:\Windows\system32\Tasks\CCleaner Update 2022-02-07 17:33 - 2022-02-07 17:33 - 000002812 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC - KTR 2022-02-07 17:33 - 2022-02-07 17:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2022-02-07 17:32 - 2022-02-07 20:08 - 000000000 ____D C:\Program Files\CCleaner 2022-02-06 18:11 - 2022-02-06 18:16 - 000003542 _____ C:\Windows\system32\Tasks\GarminUpdaterTask 2022-02-04 11:09 - 2022-02-04 11:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2022-02-02 03:36 - 2022-02-02 03:36 - 000037160 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe 2022-02-02 03:36 - 2022-02-02 03:36 - 000036848 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys 2022-02-02 03:36 - 2022-02-02 03:36 - 000036848 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys 2022-02-02 03:36 - 2022-02-02 03:36 - 000036848 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys 2022-01-29 09:20 - 2022-01-30 16:43 - 000000000 ____D C:\Program Files\Mozilla Firefox 2022-01-15 10:28 - 2022-01-15 10:29 - 000000000 ___SD C:\ComboFix ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2022-02-07 20:24 - 2019-11-09 12:53 - 000000000 ____D C:\FRST 2022-02-07 20:16 - 2020-05-12 17:18 - 000000000 ____D C:\Program Files\Google 2022-02-07 20:16 - 2009-07-14 05:34 - 000035568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2022-02-07 20:16 - 2009-07-14 05:34 - 000035568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2022-02-07 20:09 - 2019-09-10 19:43 - 000000000 ____D C:\Users\KTR\AppData\Local\Dropbox 2022-02-07 20:06 - 2019-09-10 19:43 - 000001130 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job 2022-02-07 20:06 - 2009-07-14 05:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2022-02-07 18:44 - 2019-09-08 12:16 - 000000000 ____D C:\ProgramData\Mozilla 2022-02-07 18:43 - 2019-09-08 12:17 - 000000000 ____D C:\Users\KTR\AppData\LocalLow\Mozilla 2022-02-07 18:25 - 2019-09-14 17:47 - 000000000 ____D C:\Program Files\7-Zip 2022-02-07 18:04 - 2019-09-10 19:43 - 000001134 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job 2022-02-07 08:44 - 2019-09-14 09:09 - 000000000 ____D C:\ProgramData\Package Cache 2022-02-06 18:16 - 2021-08-22 13:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin 2022-02-06 18:16 - 2020-06-07 10:22 - 000000000 ____D C:\Program Files\Garmin 2022-02-06 18:13 - 2020-06-07 10:31 - 000000000 ____D C:\ProgramData\Garmin 2022-02-06 18:12 - 2009-07-14 03:37 - 000000000 ____D C:\Windows\inf 2022-02-06 18:10 - 2011-04-12 06:34 - 000740348 _____ C:\Windows\system32\perfh015.dat 2022-02-06 18:10 - 2011-04-12 06:34 - 000155890 _____ C:\Windows\system32\perfc015.dat 2022-02-06 18:10 - 2010-11-20 22:01 - 001669190 _____ C:\Windows\system32\PerfStringBackup.INI 2022-02-05 09:00 - 2020-06-29 08:44 - 000002145 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-02-04 11:09 - 2019-09-10 19:43 - 000000000 ____D C:\Program Files\Dropbox 2022-02-03 08:34 - 2020-11-14 14:43 - 000002259 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk 2022-01-30 18:26 - 2019-10-28 19:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bluetooth Feature Pack 5.0 2022-01-30 16:43 - 2019-09-08 12:16 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service 2022-01-29 14:58 - 2021-09-28 17:18 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla 2022-01-29 11:03 - 2019-10-29 20:01 - 000000000 ____D C:\bd_logs 2022-01-29 09:14 - 2020-06-29 08:43 - 000003398 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-01-29 09:14 - 2020-06-29 08:43 - 000003270 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2022-01-26 07:15 - 2020-05-12 17:20 - 000002142 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-01-22 10:52 - 2020-05-12 17:18 - 000003472 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA 2022-01-22 10:52 - 2020-05-12 17:18 - 000003344 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore 2022-01-18 08:32 - 2021-06-10 07:44 - 000000384 _____ C:\Windows\Tasks\Teamviewer-QS-updater-6tyn6p2.job 2022-01-17 08:41 - 2019-09-15 09:52 - 000007622 _____ C:\Users\KTR\AppData\Local\resmon.resmoncfg 2022-01-14 11:43 - 2020-06-07 10:32 - 000000000 ____D C:\Users\KTR\AppData\Local\Garmin_Ltd._or_its_subsid 2022-01-14 11:41 - 2021-08-28 13:18 - 000000000 ____D C:\Users\KTR\AppData\Roaming\Garmin 2022-01-14 11:41 - 2020-06-07 10:31 - 000000000 ____D C:\Users\KTR\AppData\Local\Garmin 2022-01-12 09:37 - 2019-12-17 16:37 - 000000000 ____D C:\Users\KTR\AppData\Local\Adobe 2022-01-12 09:15 - 2019-09-10 17:14 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 2022-01-12 09:09 - 2019-11-20 14:45 - 000000000 ____D C:\Windows\system32\MRT 2022-01-12 08:54 - 2019-11-20 14:45 - 142270864 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2022-01-11 20:13 - 2019-12-17 16:46 - 000004464 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task 2022-01-11 20:11 - 2019-12-17 16:44 - 000001995 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk ==================== Pliki w katalogu głównym wybranych folderów ======== 2019-09-08 19:41 - 2019-11-03 17:30 - 000003540 _____ () C:\Users\KTR\AppData\Roaming\FjMenu1.XML 2019-11-15 17:03 - 2019-11-15 17:03 - 000000026 _____ () C:\Users\KTR\AppData\Roaming\prio.ini 2020-01-23 21:04 - 2020-01-23 21:04 - 000033193 _____ () C:\Users\KTR\AppData\Roaming\UserTile.png 2020-01-25 06:18 - 2020-01-25 06:18 - 000038431 _____ () C:\Users\KTR\AppData\Roaming\Wartości oddzielone przecinkami.ADR 2019-09-15 09:52 - 2022-01-17 08:41 - 000007622 _____ () C:\Users\KTR\AppData\Local\resmon.resmoncfg 2021-07-14 15:40 - 2021-07-14 15:40 - 000000000 _____ () C:\Users\KTR\AppData\Local\{4A88F28E-D090-4865-953A-918DBB92B176} 2021-07-14 15:40 - 2021-07-14 15:40 - 000000000 _____ () C:\Users\KTR\AppData\Local\{AE458B61-DB10-4BA3-8686-091DFDB7578C} ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) LastRegBack: 2022-02-07 09:29 ==================== Koniec FRST.txt ========================