Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 14-08-2021 Uruchomiony przez jarek (administrator) JAREK-KOMPUTER (LENOVO 20091) (15-08-2021 15:38:52) Uruchomiony z C:\Users\jarek\Downloads Załadowane profile: jarek Platform: Windows 7 Home Premium Service Pack 1 (X64) Język: Polski (Polska) Domyślna przeglądarka: "D:\firefox\firefox.exe" -osint -url "%1" Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) () [Brak podpisu cyfrowego] C:\Program Files (x86)\Lenovo\OnekeyDM\OnekeyDM.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\BTStackServer.exe (Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe (Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe (CyberLink -> CyberLink) C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe (Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) C:\Program Files (x86)\Garmin\Express\express.exe (Hewlett-Packard Co.) [Brak podpisu cyfrowego] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe (Hewlett-Packard Co.) [Brak podpisu cyfrowego] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe (Hewlett-Packard Co.) [Brak podpisu cyfrowego] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard) [Brak podpisu cyfrowego] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe (Intel Corporation - Mobile Wireless Group -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe (Intel Corporation - Mobile Wireless Group -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (Intel Corporation - Mobile Wireless Group -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxpers.exe (IVT CORPORATION -> IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe (IVT CORPORATION -> IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe (IVT CORPORATION -> IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe (Lenovo (Beijing) Limited -> ) C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeySupport.exe (Lenovo (Beijing) Limited -> Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe (Lenovo (Beijing) Limited -> Lenovo) C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe (Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\vds.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe (Mozilla Corporation -> Mozilla Corporation) D:\firefox\firefox.exe <6> (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <3> (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE (Renesas Electronics Corporation -> Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (The CefSharp Authors) [Brak podpisu cyfrowego] C:\Program Files (x86)\Garmin\Express\CefSharp.BrowserSubprocess.exe <2> (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [IntelPAN] => C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1935120 2011-05-02] (Intel Corporation - Mobile Wireless Group -> Intel(R) Corporation) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2712360 2011-03-21] (Synaptics Incorporated -> Synaptics Incorporated) HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [9753024 2011-10-08] (Lenovo (Beijing) Limited -> Lenovo (Beijing) Limited) HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [5908928 2011-10-08] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) HKLM\...\Run: [Lenovo EE Boot Optimizer] => C:\Program Files (x86)\Lenovo\Boot Optimizer\PopWnd.exe [206176 2011-10-08] (Lenovo (Beijing) Limited -> Lenovo) HKLM\...\Run: [OnekeyStudio] => C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe [789920 2012-03-04] (Lenovo (Beijing) Limited -> Lenovo) HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1483264 2017-01-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16781824 2017-01-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1483264 2017-01-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM-x32\...\Run: [UpdatePRCShortCut] => C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe [222504 2009-05-13] (CyberLink -> CyberLink Corp.) HKLM-x32\...\Run: [UpdateP2GShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2010-07-26] (CyberLink -> CyberLink Corp.) HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048 2011-09-16] (Renesas Electronics Corporation -> Renesas Electronics Corporation) HKLM-x32\...\Run: [OnekeyDM] => C:\Program Files (x86)\Lenovo\OnekeyDM\OnekeyDM.exe [468480 2009-03-27] () [Brak podpisu cyfrowego] HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation -> Microsoft Corporation) HKLM-x32\...\Run: [BtTray] => C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe [389368 2014-02-17] (IVT CORPORATION -> IVT Corporation) HKLM-x32\...\Run: [YouCam Tray] => C:\Program Files (x86)\Lenovo\YouCam\YouCam.exe [228448 2011-01-29] (CyberLink -> CyberLink Corp.) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [hpqSRMon] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe [150528 2008-07-22] (Hewlett-Packard) [Brak podpisu cyfrowego] HKU\S-1-5-21-2033674492-1833506033-309127491-1001\...\Run: [DAEMON Tools Lite] => D:\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd -> Disc Soft Ltd) HKU\S-1-5-21-2033674492-1833506033-309127491-1001\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [31163808 2021-02-16] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) HKU\S-1-5-21-2033674492-1833506033-309127491-1001\...\MountPoints2: {09de17ab-fe3c-11e4-8087-b870f44b6742} - J:\AutoRun.exe HKU\S-1-5-21-2033674492-1833506033-309127491-1001\...\MountPoints2: {09de17bf-fe3c-11e4-8087-b870f44b6742} - J:\AutoRun.exe HKU\S-1-5-21-2033674492-1833506033-309127491-1001\...\MountPoints2: {4fd7d237-1ef6-11e5-97e5-60d819ebcd6d} - J:\CMADownloader.exe HKU\S-1-5-21-2033674492-1833506033-309127491-1001\...\MountPoints2: {70c47d3b-e0ba-11e2-b46a-b870f44b6742} - J:\LaunchU3.exe -a HKU\S-1-5-21-2033674492-1833506033-309127491-1001\...\MountPoints2: {f5a88656-2231-11e8-b4eb-60d819ebcd6d} - J:\Startme.exe HKU\S-1-5-18\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [31163808 2021-02-16] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [230400 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation) HKLM\...\Print\Monitors\LIDIL hpzllw71: C:\windows\SYSTEM32\hpzllw71.dll [53248 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\windows\system32\cmd.exe /D /C start C:\windows\system32\ie4uinit.exe -ClearIconCache HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\92.0.4515.131\Installer\chrmstp.exe [2021-08-05] (Google LLC -> Google LLC) [Brak podpisu cyfrowego] HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\windows\system32\cmd.exe /D /C start C:\windows\system32\ie4uinit.exe -ClearIconCache HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2021-05-28] (Adobe Inc. -> Adobe Systems, Inc.) HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\Lenovo\Bluetooth Software\\BtwCP.dll [2011-05-12] (Broadcom Corporation -> Broadcom Corporation.) HKLM\Software\...\Authentication\Credential Providers: [{7C2CDE72-05FD-4829-980A-EFBAD05B7697}] -> C:\windows\SYSTEM32\ImageReog.dll [2011-10-08] (Lenovo (Beijing) Limited -> Lenovo) HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2010-09-21] (Microsoft Corporation -> Microsoft Corp.) AppInit_DLLs: C:\windows\system32\nvinitx.dll => C:\windows\system32\nvinitx.dll [182784 2018-03-25] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) AppInit_DLLs-x32: C:\windows\SysWOW64\nvinit.dll => C:\windows\SysWOW64\nvinit.dll [159704 2018-03-25] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2016-08-11] ShortcutTarget: Bluetooth.lnk -> C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe (Broadcom Corporation -> Broadcom Corporation.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2021-02-08] ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.) [Brak podpisu cyfrowego] HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {033FCB84-3847-4B0E-A44E-3F49D9687A2A} - System32\Tasks\{B0828AAF-1A23-4B6F-AC1C-AC7D20CD4309} => C:\Program Files (x86)\Ahead\Nero\nero.exe Task: {06AA7A40-EBFF-4DC2-9E21-4AB466ECB454} - System32\Tasks\Seagate_Install_Launch => C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\Dashboard.exe Task: {0DF3C91E-1D6C-4463-A05A-AEF0A382801B} - System32\Tasks\{72EC407E-F7D0-4722-AB4B-137F5F777A1E} => C:\Program Files (x86)\Ahead\Nero\nero.exe Task: {168D738E-A896-44EB-80B0-D38709829200} - System32\Tasks\{DE2365CA-DB84-4575-BD6C-65398C58BFD6} => C:\Program Files (x86)\Ahead\Nero\nero.exe Task: {27DB0EDE-D029-455B-8B6C-F6B150C28D32} - System32\Tasks\{0D05D02C-9875-4293-AE31-CB4034134A88} => C:\Program Files (x86)\Ahead\Nero\nero.exe Task: {2AFE90DB-0A44-415C-9F32-0690EDEB56EB} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe [469952 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files (x86)\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log Task: {3BA6AA5F-CF31-4B1C-8C91-D9C27A1D49C7} - System32\Tasks\MirageAgent => C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [136488 2011-01-29] (CyberLink -> CyberLink) Task: {443D9C76-544A-483A-B287-570F68C66E87} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [757184 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) Task: {46EC93F2-51FC-4FF4-A362-F3A7069A2C0A} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1790184 2021-05-03] (Avast Software s.r.o. -> Avast Software) Task: {49F84576-B069-49CA-A2E0-B8050F7EF720} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [976832 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) Task: {52D591A0-C2F1-4B0E-AC58-02500184D047} - System32\Tasks\{388F01C0-FB78-4A31-9B43-9B9FF68295EF} => C:\Program Files (x86)\Ahead\Nero\nero.exe Task: {5C8F7D3B-238D-4FC3-8F11-B6BC05C30612} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-01-02] (Google LLC -> Google LLC) Task: {6E6DE483-2F39-4526-89B2-E1FCB52DE72C} - System32\Tasks\{7D79555E-5D41-43A2-BF94-D91EA87C895B} => C:\Program Files (x86)\Ahead\Nero\nero.exe Task: {829C9FD9-9641-4F3A-94A4-4BC39FCF60F5} - System32\Tasks\{6DFB5573-BFCA-4D9A-99CE-5C596CF11D47} => C:\Program Files (x86)\Ahead\Nero StartSmart\NeroStartSmart.exe [4866135 2006-12-13] (Ahead Software AG) [Brak podpisu cyfrowego] Task: {84779DE5-857B-4F0F-BA86-DB18C0BC725F} - System32\Tasks\{CB98E2E8-300E-4074-8F9D-B395A92A2FFD} => C:\Program Files (x86)\Ahead\Nero\nero.exe Task: {860E39ED-68C9-4A5D-A7A3-27F1D4358082} - System32\Tasks\NVIDIA GeForceNow_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Users\jarek\AppData\Local\NVIDIA Corporation\GeForceNOW\CEF\GeForceNOW.exe [3381232 2020-06-04] (NVIDIA Corporation -> NVIDIA Corporation) Task: {87AAB4E4-ADA4-4B12-9BF4-914CD219A180} - System32\Tasks\DriverToolkit Autorun => C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe Task: {8B07F393-1D34-40D8-9D2B-C49FF09C51C8} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1} Task: {A01BF268-A68E-4182-A091-B4E917E9A40C} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [40864 2021-02-16] (Garmin International, Inc. -> ) Task: {AC24AF3E-7E0F-4422-B5D7-824FB68149E5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-01-02] (Google LLC -> Google LLC) Task: {B65202B8-A256-4009-B50E-728699D467DA} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [1174016 2010-11-21] (Microsoft Windows -> Microsoft Corporation) Task: {B811C7F2-2760-4C8B-9F57-83E9828A7DBA} - System32\Tasks\{A5194C9A-1555-4DBA-81EF-6688E89BCCF1} => C:\Program Files (x86)\Ahead\Nero\nero.exe Task: {BB70852B-1CB0-45A7-91DF-513E0B157281} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) Task: {C51285F9-4F86-479B-9F5C-38A3AF8139C0} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [4796696 2014-08-21] (Piriform Ltd -> Piriform Ltd) Task: {C698A55E-4701-432E-AC22-1BBA94B10383} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-2033674492-1833506033-309127491-1001 => C:\Users\jarek\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe [122344 2019-04-04] (Lenovo (Beijing) Limited -> Lenovo Group Limited) Task: {CB865F73-62E7-41CB-9EEF-8F5F438202EE} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) Task: {D8BD1D6D-BF61-41E7-9C4B-BD45FEBEA906} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {E0F47902-A99B-4146-861E-EFA11DE6F171} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [510912 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) Task: {E8374ED1-3A91-42C6-AEC6-46D819968A7A} - System32\Tasks\{E62F473F-7B78-4D21-8B4A-A9D6B0A624D0} => C:\Program Files (x86)\Ahead\Nero\nero.exe Task: {E868DE89-839F-4C4C-B3FA-64732B9DD4DA} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2069952 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) Task: {FD459525-F9F4-44CC-9403-D4F7DAD29C0D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.) Task: {FDE96AA8-411E-46E9-A1DC-6F647F868D77} - System32\Tasks\{8DE0DFA7-4294-4808-91AA-F90FA6C08C09} => C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe [789920 2012-03-04] (Lenovo (Beijing) Limited -> Lenovo) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\windows\Tasks\DriverToolkit Autorun.job => C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Winsock: Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280 2010-09-21] (Microsoft Corporation -> Microsoft Corp.) Winsock: Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280 2010-09-21] (Microsoft Corporation -> Microsoft Corp.) Winsock: Catalog5-x64 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880 2010-09-21] (Microsoft Corporation -> Microsoft Corp.) Winsock: Catalog5-x64 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880 2010-09-21] (Microsoft Corporation -> Microsoft Corp.) Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{436A24ED-6D33-4C76-95EC-44F898C5902D}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{AA9F01FF-C01A-4CAD-80EE-38B3AE0ECBAF}: [DhcpNameServer] 192.168.1.1 FireFox: ======== FF DefaultProfile: q73v466d.default-1443643391790-1589143656818 FF ProfilePath: C:\Users\jarek\AppData\Roaming\Mozilla\Firefox\Profiles\q73v466d.default-1443643391790-1589143656818 [2021-08-15] FF Homepage: Mozilla\Firefox\Profiles\q73v466d.default-1443643391790-1589143656818 -> www.wp.pl FF Notifications: Mozilla\Firefox\Profiles\q73v466d.default-1443643391790-1589143656818 -> hxxps://mail.google.com FF Extension: (tb7.pl) - C:\Users\jarek\AppData\Roaming\Mozilla\Firefox\Profiles\q73v466d.default-1443643391790-1589143656818\Extensions\jid1-yA1PzMgpqSEk1Q@jetpack.xpi [2020-05-25] FF Extension: (Add-ons Search Detection) - C:\Users\jarek\AppData\Roaming\Mozilla\Firefox\Profiles\q73v466d.default-1443643391790-1589143656818\features\{7af13233-940a-4bfe-bc13-df37fb751e7d}\addons-search-detection@mozilla.com.xpi [2021-08-15] FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 FF Extension: (HP Smart Web Printing) - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2021-02-08] [Przestarzałe] [Brak podpisu cyfrowego] FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => nie znaleziono FF HKU\S-1-5-21-2033674492-1833506033-309127491-1001\...\Firefox\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\jarek\AppData\Roaming\IDM\idmmzcc5 FF Extension: (IDM CC) - C:\Users\jarek\AppData\Roaming\IDM\idmmzcc5 [2021-08-02] [Przestarzałe] [Brak podpisu cyfrowego] FF HKU\S-1-5-21-2033674492-1833506033-309127491-1001\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 FF HKU\S-1-5-21-2033674492-1833506033-309127491-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - D:\Internet Download Manager\idmmzcc2.xpi => nie znaleziono FF HKU\S-1-5-21-2033674492-1833506033-309127491-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\jarek\AppData\Roaming\IDM\idmmzcc5 FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (Electronic Arts -> EA Digital Illusions CE AB) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=3.0.8 -> D:\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (Electronic Arts -> EA Digital Illusions CE AB) FF Plugin-x32: @garmin.com/GpsControl -> C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll [2012-11-02] (Garmin International, Inc. -> GARMIN Corp.) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-07-24] (Adobe Inc. -> Adobe Systems Inc.) StartMenuInternet: FIREFOX.EXE - D:\firefox\firefox.exe Chrome: ======= CHR Profile: C:\Users\jarek\AppData\Local\Google\Chrome\User Data\Default [2021-07-31] CHR HomePage: Default -> hxxps://pte.nu/login CHR StartupUrls: Default -> "hxxp://www.gazeta.pl/0,0.html?p=190","hxxp://www.gazeta.pl/0,0.html?p=190" CHR Extension: (Dokumenty) - C:\Users\jarek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-01-03] CHR Extension: (Dysk Google) - C:\Users\jarek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-12-21] CHR Extension: (YouTube) - C:\Users\jarek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-03-20] CHR Extension: (Dokumenty Google offline) - C:\Users\jarek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-12-21] CHR Extension: (IDM Integration Module) - C:\Users\jarek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2020-12-21] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\jarek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-01-03] CHR Extension: (Gmail) - C:\Users\jarek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-12-21] CHR Extension: (Chrome Media Router) - C:\Users\jarek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-12-21] CHR HKLM\...\Chrome\Extension: [jeaohhlajejodfjadcponpnjgkiikocn] - D:\Internet Download Manager\IDMGCExt.crx [2015-04-20] CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - D:\Internet Download Manager\IDMGCExt.crx [2015-04-20] CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - D:\Internet Download Manager\IDMGCExt.crx [2015-04-20] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.) R2 BlueSoleilCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe [1579880 2014-02-17] (IVT CORPORATION -> IVT Corporation) R3 BsHelpCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [145656 2013-12-16] (IVT CORPORATION -> IVT Corporation) R2 btwdins; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [970016 2011-05-12] (Broadcom Corporation -> Broadcom Corporation.) S3 GoogleChromeElevationService; C:\Program Files (x86)\Google\Chrome\Application\92.0.4515.131\elevation_service.exe [1460568 2021-07-30] (Google LLC -> Google LLC) [Brak podpisu cyfrowego] R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [249344 2009-09-20] (Hewlett-Packard Co.) [Brak podpisu cyfrowego] R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-09-20] (Hewlett-Packard Co.) [Brak podpisu cyfrowego] S2 KMService; C:\windows\SysWOW64\srvany.exe [8192 2014-01-05] () [Brak podpisu cyfrowego] R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2008-12-03] (Hewlett-Packard) [Brak podpisu cyfrowego] S3 Origin Client Service; G:\Origin\OriginClientService.exe [2556048 2021-07-15] (Electronic Arts, Inc. -> Electronic Arts) S2 Origin Web Helper Service; G:\Origin\OriginWebHelperService.exe [3474584 2021-07-15] (Electronic Arts, Inc. -> Electronic Arts) R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2008-12-03] (Hewlett-Packard) [Brak podpisu cyfrowego] R2 PnkBstrA; C:\windows\system32\PnkBstrA.exe [76152 2016-07-05] (Even Balance, Inc. -> ) R2 RapiMgr; C:\windows\WindowsMobile\rapimgr.dll [225672 2007-05-31] (Microsoft Corporation -> Microsoft Corporation) R2 WcesComm; C:\windows\WindowsMobile\wcescomm.dll [443784 2007-05-31] (Microsoft Corporation -> Microsoft Corporation) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Windows -> Microsoft Corporation) R2 wlidsvc; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2286976 2010-09-21] (Microsoft Corporation -> Microsoft Corp.) ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) U5 BlueletAudio; C:\Windows\System32\Drivers\BlueletAudio.sys [33968 2012-12-19] (Ralink Technology Corporation -> IVT Corporation) R3 BtAudioBusSrv; C:\windows\System32\Drivers\BtAudioBus.sys [23136 2012-06-15] (Ralink Technology Corporation -> IVT Corporation) R3 BthL2caScoIfSrv; C:\windows\System32\Drivers\BtL2caScoIf.sys [54064 2013-04-26] (Mediatek Inc. -> Ralink Corporation) S3 btUrbFilterDrv; C:\windows\System32\Drivers\IvtUrbBtFlt.sys [51936 2014-01-20] (IVT CORPORATION -> Ralink Corporation) R3 BTWDPAN; C:\windows\System32\DRIVERS\btwdpan.sys [89640 2011-05-13] (Broadcom Corporation -> Broadcom Corporation.) R3 clwvd; C:\windows\System32\DRIVERS\clwvd.sys [31088 2011-01-29] (CyberLink -> CyberLink Corporation) R3 DelayMan; C:\windows\System32\DRIVERS\delayman.sys [20064 2011-10-08] (Lenovo (Beijing) Limited -> Ensurebit Inc.) S3 dg_ssudbus; C:\windows\System32\DRIVERS\ssudbus.sys [120416 2018-01-12] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.(www.devguru.co.kr)) S3 LGJoyXlCore; C:\windows\System32\drivers\LGJoyXlCore.sys [67736 2017-01-24] (Logitech Inc -> Logitech Inc.) S3 LGSHidFilt; C:\windows\System32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech -> Logitech Inc.) S3 LGSUsbFilt; C:\windows\System32\DRIVERS\LGSUsbFilt.Sys [41752 2013-05-30] (Logitech -> Logitech Inc.) S3 libusb0; C:\windows\System32\DRIVERS\libusb0.sys [44480 2013-09-23] (Akeo Consulting -> hxxp://libusb-win32.sourceforge.net) S3 ManyCam; C:\windows\System32\DRIVERS\mcvidrv_x64.sys [44928 2012-10-11] (Microsoft Windows Hardware Compatibility Publisher -> ManyCam LLC) S3 mcaudrv_simple; C:\windows\System32\drivers\mcaudrv_x64.sys [28160 2013-01-31] (ManyCam LLC) [Brak podpisu cyfrowego] S3 nmwcdnsux64; C:\windows\System32\drivers\nmwcdnsux64.sys [171008 2011-08-17] (Microsoft Windows Hardware Compatibility Publisher -> Nokia) S3 pccsmcfd; C:\windows\System32\DRIVERS\pccsmcfdx64.sys [26112 2012-06-11] (Microsoft Windows Hardware Compatibility Publisher -> Nokia) R0 sptd; C:\windows\System32\Drivers\sptd.sys [381440 2013-11-12] (Disc Soft Ltd -> Duplex Secure Ltd.) S3 ssudmdm; C:\windows\System32\DRIVERS\ssudmdm.sys [166760 2019-09-26] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S1 StarOpen; C:\Windows\SysWow64\Drivers\StarOpen.sys [5632 2006-07-24] () [Brak podpisu cyfrowego] S3 SWDUMon; C:\windows\System32\DRIVERS\SWDUMon.sys [16056 2017-01-18] (Slimware Utilities Holdings, Inc. -> SlimWare Utilities, Inc.) R3 wdkmd; C:\windows\System32\DRIVERS\WDKMD.sys [42392 2010-12-01] (Wireless Display -> Intel Corporation) R1 winioex; C:\windows\System32\drivers\winioex.sys [15456 2011-10-08] (Lenovo (Beijing) Limited -> Ensurebit Inc.) S3 wsvd; C:\windows\System32\DRIVERS\wsvd.sys [121840 2009-07-21] (CyberLink -> CyberLink) U3 at9i93q8; C:\Windows\System32\Drivers\at9i93q8.sys [0 0000-00-00] (Advanced Micro Devices) <==== UWAGA (zerobajtowy plik/folder) U5 BlueletAudio; C:\Windows\SysWOW64\Drivers\BlueletAudio.sys [33968 2012-12-19] (Ralink Technology Corporation -> IVT Corporation) S3 JMCR; system32\DRIVERS\jmcr.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-08-15 15:38 - 2021-08-15 15:41 - 000033596 _____ C:\Users\jarek\Downloads\FRST.txt 2021-08-15 15:37 - 2021-08-15 15:40 - 000000000 ____D C:\FRST 2021-08-15 15:37 - 2021-08-15 15:37 - 002300416 _____ (Farbar) C:\Users\jarek\Downloads\FRST64.exe 2021-08-15 13:56 - 2021-08-15 14:00 - 732471296 _____ C:\Users\jarek\Downloads\Ice.Age.The.Great.Egg-Scapade.2016.READNFO.PLDUB.WEB-DL.XviD-KiT.avi 2021-08-15 13:55 - 2021-08-15 14:00 - 733425664 _____ C:\Users\jarek\Downloads\Ice.Age.Collision.Course.2016.PLDUB.BDRip.XviD-KiT.avi 2021-08-15 13:54 - 2021-08-15 14:02 - 1070797038 _____ C:\Users\jarek\Downloads\Epoka.lodowcowa.4.2012.PLDUB.BRRip.480p.XviD.AC3.LTN.avi 2021-08-15 13:49 - 2021-08-15 13:53 - 1070363168 _____ C:\Users\jarek\Downloads\Epoka.lodowcowa.3.2009.PLDUB.BRRip.480p.XviD.AC3.LTN.avi 2021-08-15 13:37 - 2021-08-15 13:37 - 000000000 ____D C:\Users\jarek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Urządzenia interfejsu Bluetooth 2021-08-15 13:36 - 2021-08-15 13:36 - 000000000 ____H C:\ProgramData\cm-lock 2021-08-09 23:10 - 2021-08-09 23:16 - 1470098317 _____ C:\Users\jarek\Downloads\The.Hitmans.Wifes.Bodyguard.2021.PL.NOF.480p.WEB-DL.DD5.1.x264-P2P.mkv 2021-08-08 14:25 - 2021-08-08 14:27 - 733857118 _____ C:\Users\jarek\Downloads\A.Quiet.Place.Part.II.2020.PL.WEB-DL.XviD-GR4PE.avi 2021-08-08 13:47 - 2021-08-08 13:55 - 1679177539 _____ C:\Users\jarek\Downloads\Nobody.2021.PL.480p.BDRip.x264.AC3-MAXiM-darkw.pl.mkv 2021-07-31 14:21 - 2021-07-31 14:21 - 000001132 _____ C:\Users\jarek\Desktop\antywirus.txt ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-08-15 15:37 - 2015-08-24 21:08 - 015217664 ___SH C:\Users\jarek\Downloads\Thumbs.db 2021-08-15 15:29 - 2012-04-26 23:22 - 000000000 ____D C:\ProgramData\Mozilla 2021-08-15 15:28 - 2016-11-20 20:47 - 000000000 ____D C:\Users\jarek\AppData\LocalLow\Mozilla 2021-08-15 14:43 - 2011-10-08 11:31 - 000000000 ____D C:\Program Files (x86)\Google 2021-08-15 13:46 - 2009-07-14 06:45 - 000021072 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2021-08-15 13:46 - 2009-07-14 06:45 - 000021072 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2021-08-15 13:45 - 2011-10-08 10:56 - 000000000 ____D C:\ProgramData\NVIDIA 2021-08-15 13:45 - 2011-10-08 02:23 - 000741124 _____ C:\windows\system32\perfh015.dat 2021-08-15 13:45 - 2011-10-08 02:23 - 000156408 _____ C:\windows\system32\perfc015.dat 2021-08-15 13:45 - 2009-07-14 07:13 - 001672134 _____ C:\windows\system32\PerfStringBackup.INI 2021-08-15 13:45 - 2009-07-14 05:20 - 000000000 ____D C:\windows\inf 2021-08-15 13:40 - 2009-07-14 05:20 - 000000000 ____D C:\windows\tracing 2021-08-15 13:39 - 2012-04-26 23:22 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2021-08-15 13:36 - 2015-04-26 11:07 - 000065536 _____ C:\windows\system32\Ikeext.etl 2021-08-15 13:36 - 2015-01-05 16:20 - 000001059 _____ C:\windows\SysWOW64\bscs.ini 2021-08-15 13:36 - 2011-10-08 11:45 - 000111200 _____ C:\windows\system32\fastboot.set 2021-08-15 13:35 - 2018-01-12 11:36 - 000000358 _____ C:\windows\Tasks\DriverToolkit Autorun.job 2021-08-15 13:35 - 2009-07-14 07:08 - 000000006 ____H C:\windows\Tasks\SA.DAT 2021-08-10 20:51 - 2017-05-06 15:02 - 004069376 ___SH C:\Users\jarek\Desktop\Thumbs.db 2021-08-08 13:30 - 2018-07-11 12:07 - 000006027 _____ C:\Users\jarek\Desktop\filmy.txt 2021-08-05 20:44 - 2020-01-02 22:42 - 000002236 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2021-08-05 20:38 - 2020-01-02 22:41 - 000003484 _____ C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA 2021-08-05 20:38 - 2020-01-02 22:41 - 000003356 _____ C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore 2021-08-04 22:47 - 2019-09-05 18:18 - 000000000 ____D C:\Users\jarek\AppData\Roaming\vlc 2021-08-02 22:51 - 2012-03-01 12:34 - 000000000 ____D C:\Users\jarek\AppData\Roaming\DMCache 2021-07-31 15:00 - 2009-07-14 07:32 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2021-07-31 14:36 - 2009-07-14 07:08 - 000032604 _____ C:\windows\Tasks\SCHEDLGU.TXT 2021-07-31 13:40 - 2013-06-03 15:23 - 000000000 ____D C:\Users\jarek\AppData\Roaming\FlvtoConverter 2021-07-31 13:23 - 2019-08-13 12:09 - 000000000 ____D C:\Users\jarek\AppData\Local\Flvto Youtube Downloader 2021-07-28 20:48 - 2017-10-02 16:14 - 000002065 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk ==================== Pliki w katalogu głównym wybranych folderów ======== 2012-07-12 10:28 - 2012-07-12 10:28 - 002174976 _____ (Advanced Micro Devices Inc.) C:\Program Files (x86)\Common Files\atimpenc.dll 2021-05-18 22:47 - 2021-07-05 22:31 - 000000859 _____ () C:\Users\jarek\AppData\Roaming\downloads.json 2018-05-23 21:47 - 2018-05-23 21:47 - 000001564 _____ () C:\Users\jarek\AppData\Local\PDLSetup.20180523.214704.txt 2018-05-23 21:47 - 2018-05-23 21:47 - 000001566 _____ () C:\Users\jarek\AppData\Local\PDLSetup.20180523.214734.txt 2018-05-23 21:53 - 2018-05-23 21:53 - 000001566 _____ () C:\Users\jarek\AppData\Local\PDLSetup.20180523.215345.txt 2018-05-23 22:14 - 2018-05-23 22:14 - 000001567 _____ () C:\Users\jarek\AppData\Local\PDLSetup.20180523.221418.txt 2014-04-02 13:29 - 2014-04-02 13:29 - 000000969 _____ () C:\Users\jarek\AppData\Local\recently-used.xbel 2012-02-24 23:12 - 2017-08-01 15:59 - 000007616 _____ () C:\Users\jarek\AppData\Local\resmon.resmoncfg ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) LastRegBack: 2021-08-15 14:18 ==================== Koniec FRST.txt ========================