Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 26-03-2021 Uruchomiony przez Mariusz (administrator) DOM (ASUSTeK COMPUTER INC. N550JV) (26-03-2021 21:17:13) Uruchomiony z C:\Users\Mariusz\Downloads Załadowane profile: Mariusz Platform: Windows 10 Home Wersja 20H2 19042.868 (X64) Język: Polski (Polska) Domyślna przeglądarka: FF Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe (ASUSTeK Computer Inc. -> ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe (ASUSTeK Computer Inc. -> ASUS) C:\Program Files\ASUS\P4G\InsOnSrv.exe (ASUSTeK Computer Inc. -> ASUS) C:\Program Files\ASUS\P4G\InsOnWMI.exe (ASUSTeK Computer Inc. -> ASUSTeK COMPUTER INC.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files\ASUS\ASUS Console\ASUS Console Starter.exe (ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe (ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe (Atheros) [Brak podpisu cyfrowego] C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe (AutoIt Consulting Ltd -> AutoIt Team) C:\Users\Mariusz\AppData\Local\Disk\AutoIt3\AutoIt3_x64.exe (Facebook Inc) C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_950.7.118.0_x64__8xx8rvfyw5nnt\app\Messenger.exe <6> (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler64.exe (Huawei Technologies Co.,Ltd. -> ) C:\Program Files (x86)\MobileBrServ\mbbService.exe (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel(R) Corporation) [Brak podpisu cyfrowego] C:\Program Files\Intel\iCLS Client\HeciServer.exe (Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe (Jax Development Limited) [Brak podpisu cyfrowego] C:\Users\Mariusz\AppData\Local\Disk\Packages\Active.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2102.8653.0_x64__8wekyb3d8bbwe\Cortana.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe <2> (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <8> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2> (Podatnik S.A. -> Podatnik S.A.) C:\Program Files (x86)\Podatnik.info\PIT pro 2016\pproupd.exe (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2> (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [AuditSHD] => C:\windows\system32\oobe\auditshd.exe [31744 2021-03-13] (Microsoft Windows -> Microsoft Corporation) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-11-21] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) HKLM\...\Run: [WebStorage] => C:\Program Files (x86)\ASUS\WebStorage\2.2.17.591\ASUSWSLoader.exe [63968 2017-07-26] (ASUS Cloud Corporation -> ASUS Cloud Corporation) HKLM-x32\...\Run: [ASUS InstantKey] => C:\Program Files (x86)\ASUS\ASUS Instant Key\Ikey_start.exe [13936 2013-08-27] (ASUSTeK Computer Inc. -> ASUS) HKLM-x32\...\Run: [WidgetPodatnikInfo] => C:\Program Files (x86)\Podatnik.info\PIT pro 2016\Widget.exe [267160 2021-03-25] (Podatnik S.A. -> Podatnik S.A.) HKLM\...\Winlogon: [Shell] explorer.exe, d. b a t HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA HKU\S-1-5-21-2384729773-2530975304-3792660739-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-11-01] (Piriform Software Ltd -> Piriform Ltd) HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [230400 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation) HKLM\...\Print\Monitors\PCL hpz3lw71: C:\WINDOWS\system32\hpz3lw71.dll [46080 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation) HKLM\Software\...\Authentication\Credential Providers: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2013-09-07] (Qualcomm Atheros -> Qualcomm®Atheros®) [Brak podpisu cyfrowego] HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\WINDOWS\system32\AthCredentialProvider.dll [2013-09-07] (Qualcomm Atheros -> Qualcomm®Atheros®) [Brak podpisu cyfrowego] Startup: C:\Users\Mariusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\RUNDLL32.EXE.lnk [2021-03-23] ShortcutAndArgument: RUNDLL32.EXE.lnk -> C:\Windows\System32\rundll32.exe => C:\Users\Mariusz\AppData\Local\Temp\WBXODM~1.DLL,fzVKHEGcBQ== GroupPolicy: Ograniczenia - Chrome <==== UWAGA Policies: C:\ProgramData\NTUSER.pol: Ograniczenia <==== UWAGA HKLM\SOFTWARE\Policies\Google: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0CA097F6-7F51-4189-903E-F1391A729907} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK Task: {0DDB73BB-E9A8-48C7-85F5-43E1321ED4B3} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969} Task: {1446C0BB-DF61-4BD1-B4CF-14023CB83357} - System32\Tasks\BraveSoftwareUpdateTaskUserS-1-5-21-2384729773-2530975304-3792660739-1002Core => C:\Users\Mariusz\AppData\Local\BraveSoftware\Update\BraveUpdate.exe Task: {1729C454-C402-4881-84E9-2BFC8D1987CE} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Brak pliku <==== UWAGA Task: {190D9423-AD61-4BF0-A5E9-DD74F3ADC2E0} - System32\Tasks\{C54D4EBC-1849-4660-BEDF-24E7C967F787} => "c:\program files\internet explorer\iexplore.exe" https://ui.skype.com/ui/0/7.40.0.151/pl/go/help.faq.installer?LastError=1603 Task: {19A76B63-36A5-4134-8EB6-FCA15972C503} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Brak pliku <==== UWAGA Task: {1E5A808B-F916-424F-B1DF-B724AE75FC06} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5260176 2021-03-08] (Microsoft Corporation -> Microsoft Corporation) Task: {1EB89081-BFFC-426B-B6C8-9D976D7D8C0F} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141184 2021-03-23] (Microsoft Corporation -> Microsoft Corporation) Task: {22DE96AA-FE54-49DC-B3C0-754C6660BDED} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Brak pliku <==== UWAGA Task: {24E93C02-45D0-4BCD-90BA-D0F70B827FCA} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Brak pliku <==== UWAGA Task: {269A05CD-51EF-4FA8-8895-8D8059054963} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617784 2021-02-05] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {273906EC-C03F-450F-81BD-BD11F2AAE1C5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.) Task: {2FAE6615-3064-4238-A422-794033242C68} - System32\Tasks\ASUS Console => C:\Program Files\ASUS\ASUS Console\ASUS Console Starter.exe [2278168 2013-08-16] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) Task: {3141AAC7-DE44-4B29-9D2D-F58CA6F46ABD} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1} Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe Task: {3CE34424-53F0-434C-801C-C3310C8F57F3} - \TASKDIRFORTASKCREATE\TASKFORTASKCREATE -> Brak pliku <==== UWAGA Task: {3DB02C6E-07D1-4F02-8605-7B313A0ECC09} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe Task: {3EADE1E4-7A6F-40E9-9277-D65A5F0E3B86} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Brak pliku <==== UWAGA Task: {46D65FC1-27C6-4EEB-9702-9B522F33585B} - System32\Tasks\BraveSoftwareUpdateTaskUserS-1-5-21-2384729773-2530975304-3792660739-1002UA => C:\Users\Mariusz\AppData\Local\BraveSoftware\Update\BraveUpdate.exe Task: {4CCDFC91-6737-452A-A121-21646003919C} - System32\Tasks\Core Temp Autostart Mariusz => C:\Program Files\Core Temp\Core Temp.exe [1011592 2019-08-30] (ALCPU -> ALCPU) Task: {5675412D-AA24-4C12-BD5E-A3F7671E3BAC} - \Microsoft\Windows\UNP\RunCampaignManager -> Brak pliku <==== UWAGA Task: {5724FCAE-F7AE-4351-B4F1-371BC831AA00} - System32\Tasks\{68B7BBC6-2A46-457B-99FD-097EA4BF9FC1} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe" Task: {59506601-1CDC-4EDF-B9B7-F30E6AEF729C} - \Program aktualizacji online firmy Adobe. -> Brak pliku <==== UWAGA Task: {5C825A78-83E6-4F03-9B67-7433CF93BEEB} - System32\Tasks\Driver Booster SkipUAC (Mariusz) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [7932416 2020-07-24] (IObit) [Brak podpisu cyfrowego] Task: {644ED097-CA75-4D1B-8A90-7A2624684A49} - System32\Tasks\Adobe Flash TXL Files Update ver_202018 => C:\ProgramData\QTalk.exe [253496 2020-01-08] (Tencent Technology(Shenzhen) Company Limited -> Tencent) <==== UWAGA Task: {6527F683-7EB4-4B25-8897-2ABE9C0D7B96} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\MpCmdRun.exe [566368 2021-03-15] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} Task: {6F94C1C4-7008-490F-9A60-F2176FF22D0F} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617784 2021-02-05] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {7089CB63-924C-440E-BCB3-A6D95D352E15} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe [834856 2020-03-11] (Intel(R) Trust Services -> Intel(R) Corporation) Task: {7C0C03ED-4D20-4255-B657-BB8A2195D44E} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E} Task: {7D11AD7B-7683-4913-892E-59450912C69B} - \{DB743FC9-7CA7-42E8-9D6D-5908C374DE01} -> Brak pliku <==== UWAGA Task: {81958CC0-4106-40EC-902A-AE573CFD9478} - System32\Tasks\{A302A72A-C84A-4473-8704-E384A3AC605B} => "c:\program files\internet explorer\iexplore.exe" https://ui.skype.com/ui/0/7.40.0.151/pl/go/help.faq.installer?LastError=1603 Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE} Task: {885B930B-6402-4FB9-86CA-E58F441A8480} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.) Task: {89C24172-327F-459A-BA04-D717CDF8097B} - System32\Tasks\{38B5BF5D-0E8C-49ED-8E85-FDD32AC826C0} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\HIP GAMES\Garfield\garfield.exe" -d "C:\Program Files (x86)\HIP GAMES\Garfield" Task: {8FC61A39-3FCC-40DC-8222-EE4B5A9DEAA1} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Brak pliku <==== UWAGA Task: {93A2BF5B-4864-42D6-AB35-CE1006FFB543} - System32\Tasks\{A93C893E-0940-4B7F-94E2-5FFCD2372E37} => "c:\program files\internet explorer\iexplore.exe" https://ui.skype.com/ui/0/7.40.0.103/pl/go/help.faq.installer?LastError=1603 Task: {94CD9053-54E4-4574-ADC3-46C128E1EEF8} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61} Task: {96DDB1F8-4BF8-48D2-B6F8-BD847BFF2BE8} - \WPD\SqmUpload_S-1-5-21-2384729773-2530975304-3792660739-1002 -> Brak pliku <==== UWAGA Task: {9CD60B01-D92C-4FD0-8A09-CFA3F1312A6A} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe Task: {A31ECB63-E6C6-43CA-A37B-7C2D5AEA4D5E} - System32\Tasks\Opera scheduled Autoupdate 1513373007 => C:\Users\Mariusz\AppData\Local\Programs\Opera\launcher.exe Task: {AAD5055F-ECD5-4CEF-BE81-FDA8F3692879} - System32\Tasks\Program aktualizacji online firmy HP => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard) Task: {AB5182C2-4DF9-4301-A588-43BA87FB1CEA} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Brak pliku <==== UWAGA Task: {ACF84442-583E-488D-B7F8-98058FEBF24E} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [18392 2017-12-12] (ASUSTeK Computer Inc. -> AsusTek) Task: {B0A77B3A-DC9F-450E-AE49-8B38BA6DF014} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\MpCmdRun.exe [566368 2021-03-15] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {B1344132-BAA2-4935-91E7-D4A4E4F1B55A} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA} Task: {B2CA82CC-495F-487D-9E96-82618C82DCCE} - System32\Tasks\{8424647E-EE42-41EF-B885-F5EA46FD960B} => "c:\program files\internet explorer\iexplore.exe" https://ui.skype.com/ui/0/7.39.0.102/pl/go/help.faq.installer?LastError=1603 Task: {B2DA64A4-0AE9-4E96-8CFF-028CDF2A74A5} - System32\Tasks\AsusVibeSchedule => C:\Program Files (x86)\Asus\AsusVibe\AsusVibeLauncher.exe [1957040 2013-07-09] (ASUSTeK Computer Inc. -> ) [Brak podpisu cyfrowego] Task: {B5E0C435-AD8F-40FC-9D29-6D9C77E7076E} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Brak pliku <==== UWAGA Task: {B6C0B939-263E-4EB6-8FE3-34A7C0F57316} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\MpCmdRun.exe [566368 2021-03-15] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {B86E6114-6D69-4ADE-9586-727B9C6F8C05} - System32\Tasks\ASUS Live Update2 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2998552 2015-03-23] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) Task: {B945E293-6078-43AD-A21C-2D5AC0EA8BEC} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Brak pliku <==== UWAGA Task: {B9F809BC-A2FF-4B46-BAEC-B93E10786523} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [1038648 2013-08-29] (ASUSTeK Computer Inc. -> ASUS) Task: {C0C48677-0643-454F-857F-24A893D09691} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [19646544 2013-08-29] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) Task: {C25D5493-D7C3-47B7-8DF1-1FBADE893AC6} - System32\Tasks\ASUS InstantOn Config => C:\Program Files\ASUS\P4G\InsOnCfg.exe Task: {C49D5609-2A4D-42DB-91F3-AF636E4E9122} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-11-01] (Piriform Software Ltd -> Piriform Software Ltd) Task: {C5AA237D-0A42-47C2-83F5-3AD66D3F4BBD} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23080824 2021-03-09] (Microsoft Corporation -> Microsoft Corporation) Task: {C85493B4-AC3F-42F8-B1A7-4A8E6056A836} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2384729773-2530975304-3792660739-1002Core => C:\Users\Mariusz\AppData\Local\Google\Update\GoogleUpdate.exe Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371} Task: {CFFB17A8-9B62-4A99-9A1A-917514EDDFEE} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5260176 2021-03-08] (Microsoft Corporation -> Microsoft Corporation) Task: {D0F56D6E-6827-4A23-BF0A-87186F400B5C} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe Task: {D48F5A49-9205-4855-B153-A3AFD4FA328F} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2998552 2015-03-23] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) Task: {D51B51E4-7B53-4CF5-80B2-831903D8EB7B} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Brak pliku <==== UWAGA Task: {D67A06BA-793F-4B17-A426-AF6DC7DA4BB2} - System32\Tasks\{28B19968-0F08-47F0-9CD2-113653B20F87} => "c:\program files\internet explorer\iexplore.exe" https://ui.skype.com/ui/0/7.40.0.151/pl/go/help.faq.installer?LastError=1603 Task: {D6FB9D9B-E1FC-49F8-B492-0C8A834908A1} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-11-01] (Piriform Software Ltd -> Piriform Ltd) Task: {DD77CF3B-D0DF-4DBA-B49A-D312AF28A5A2} - System32\Tasks\{EC4555EB-4A2C-4BA5-9280-9EF5FD41B93A} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\Activision\Call of Duty 2\cod2sp_s.exe" -d "C:\Program Files (x86)\Activision\Call of Duty 2\" Task: {DE53465A-7FCD-482B-B27F-A1AA803E2EC4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\MpCmdRun.exe [566368 2021-03-15] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {DF5FFCAD-EC3C-4FE7-9C03-CD5C39B44AD9} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2384729773-2530975304-3792660739-1002UA => C:\Users\Mariusz\AppData\Local\Google\Update\GoogleUpdate.exe Task: {E02D2BFD-335F-41BF-BE4D-C618E437EBAA} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\BrowserChoice\browserchoice.exe Task: {E07CA684-BA93-4338-AE27-ABFC35011706} - System32\Tasks\{938BC64B-536A-4FD8-8B50-F58AED0455F6} => "c:\program files\internet explorer\iexplore.exe" https://ui.skype.com/ui/0/7.40.0.103/pl/go/help.faq.installer?LastError=1603 Task: {E202B14E-7CD4-4B91-BD14-4D71431407DF} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141184 2021-03-23] (Microsoft Corporation -> Microsoft Corporation) Task: {E7F546CD-45DE-4365-8986-76EF228B00D4} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Brak pliku <==== UWAGA Task: {E82B4902-806B-4A2E-9A9D-C623B4CDDD35} - System32\Tasks\Services\Diagnostic => C:\Users\Mariusz\AppData\Local\Disk\AutoIt3\AutoIt3_x64.exe [1013928 2018-03-15] (AutoIt Consulting Ltd -> AutoIt Team) -> "C:\Users\Mariusz\AppData\Local\Disk\AutoIt3\Settings.au3" Task: {ECBD6CB4-C386-43A2-B601-399C3756C165} - System32\Tasks\{C7FA4D5B-47BC-4A31-8616-41C9BF82D24A} => "c:\program files\internet explorer\iexplore.exe" http://ui.skype.com/ui/0/7.0.0.102/pl/abandoninstall?page=tsProgressBar Task: {EE695EB7-6FC9-4C99-928D-21F56521605A} - System32\Tasks\{AD92C709-ECE4-43C6-89F3-B5220104F24C} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\Activision\Call of Duty 2\cod2mp_s.exe" -d "C:\Program Files (x86)\Activision\Call of Duty 2\" Task: {EED86F53-64E4-40FE-B936-86B23965AF5A} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617784 2021-02-05] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {EF3CA9D2-32F1-4ABD-B280-DBCDC2F8B41E} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23080824 2021-03-09] (Microsoft Corporation -> Microsoft Corporation) Task: {F22C4C2F-4A09-4AD8-8205-6F30676186CE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.) Task: {F50F9C5A-8AB7-403A-AEC2-E4D19BF05AAA} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316} (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\Adobe Flash TXL Files Update ver_202018.job => C:\ProgramData\QTalk.exe/check_updat C:\Program Files (x86)\SopaDOM\Mariusz5This task detect has update for txl files.ver <==== UWAGA Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe Task: C:\WINDOWS\Tasks\Intel PTT EK Recertification.job => C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) ProxyServer: [S-1-5-21-2384729773-2530975304-3792660739-1002] => 127.0.0.1:8080 Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.8.1 Tcpip\..\Interfaces\{15d5ad8e-310b-43de-acc3-f9b206a3ee92}: [DhcpNameServer] 192.168.8.1 Tcpip\..\Interfaces\{32030b03-6fee-4cd0-8b61-a85a0c9348bf}: [DhcpNameServer] 192.168.8.1 192.168.8.1 Tcpip\..\Interfaces\{3b9ba31f-5ac7-4f5a-be39-ba381b925e9d}: [DhcpNameServer] 192.168.8.1 192.168.8.1 Tcpip\..\Interfaces\{3f8e8087-88e3-4c3e-a5f3-534368c7b738}: [DhcpNameServer] 192.168.8.1 Edge: ======= Edge HomeButtonPage: HKU\S-1-5-21-2384729773-2530975304-3792660739-1002 -> hxxp://www.onet.pl/ Edge Profile: C:\Users\Mariusz\AppData\Local\Microsoft\Edge\User Data\Default [2021-03-26] Edge StartupUrls: Default -> "hxxp://www.onet.pl/" Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee] FireFox: ======== FF DefaultProfile: 3cfmrv42.default-1599232901378 FF ProfilePath: C:\Users\Mariusz\AppData\Roaming\Mozilla\Firefox\Profiles\3cfmrv42.default-1599232901378 [2021-03-26] FF Homepage: Mozilla\Firefox\Profiles\3cfmrv42.default-1599232901378 -> www.onet.pl FF HKLM\...\Firefox\Extensions: [{90ca575e-4c80-47b5-8a3b-ad862f38a292}] - C:\Program Files (x86)\SafeMyWeb\ff\safe_my_web-1.0.1-fx.xpi => nie znaleziono FF HKLM-x32\...\Firefox\Extensions: [{90ca575e-4c80-47b5-8a3b-ad862f38a292}] - C:\Program Files (x86)\SafeMyWeb\ff\safe_my_web-1.0.1-fx.xpi => nie znaleziono FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => nie znaleziono FF Plugin: @mcafee.com/MSC,version=10 -> C:\Program Files\mcafee\msc\npMcSnFFPl64.dll [Brak pliku] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=2.1.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1235205.dll [2019-03-15] (Adobe Systems, Inc.) [Brak podpisu cyfrowego] FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2000-01-01] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2000-01-01] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @mcafee.com/MSC,version=10 -> C:\Program Files (x86)\McAfee\msc\npMcSnFFPl.dll [Brak pliku] FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-03-08] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-03-06] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-2384729773-2530975304-3792660739-1002: SkypeForBusinessPlugin-16.2 -> C:\Users\Mariusz\AppData\Local\Microsoft\SkypeForBusinessPlugin\16.2.0.511\npGatewayNpapi.dll [2019-08-03] (Microsoft Corporation -> Microsoft Corporation) FF Plugin HKU\S-1-5-21-2384729773-2530975304-3792660739-1002: SkypeForBusinessPlugin64-16.2 -> C:\Users\Mariusz\AppData\Local\Microsoft\SkypeForBusinessPlugin\16.2.0.511\npGatewayNpapi-x64.dll [2019-08-03] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR Profile: C:\Users\Mariusz\AppData\Local\Google\Chrome\User Data\Default [2020-08-04] CHR Extension: (Docs) - C:\Users\Mariusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-12-16] CHR Extension: (Dysk Google) - C:\Users\Mariusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-12-16] CHR Extension: (YouTube) - C:\Users\Mariusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-12-16] CHR Extension: (Gmail) - C:\Users\Mariusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-12-16] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] Brave: ======= BRA Profile: C:\Users\Mariusz\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2018-12-22] BRA Extension: (Brave Tracking Protection Updater) - C:\Users\Mariusz\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2018-12-22] BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\Mariusz\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2018-12-22] BRA Extension: (Brave Tor Client Updater (Windows)) - C:\Users\Mariusz\AppData\Local\BraveSoftware\Brave-Browser\User Data\cpoalefficncklhjfpglfiplenlpccdb [2018-12-22] BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\Mariusz\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2018-12-22] BRA Extension: (Brave Ad Block Updater (POL: polskie filtry do Adblocka i uBlocka)) - C:\Users\Mariusz\AppData\Local\BraveSoftware\Brave-Browser\User Data\paoecjnjjbclkgbempaeemcbeldldlbo [2018-12-22] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.) R2 ASUS InstantOn; C:\Program Files\ASUS\P4G\InsOnSrv.exe [277120 2013-08-29] (ASUSTeK Computer Inc. -> ASUS) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8990072 2021-03-11] (Microsoft Corporation -> Microsoft Corporation) R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2011-08-18] (Hewlett-Packard Co.) [Brak podpisu cyfrowego] R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [Brak podpisu cyfrowego] R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2021-03-23] (Malwarebytes Inc -> Malwarebytes) R2 Mobile Broadband HL Service; C:\Program Files (x86)\MobileBrServ\mbbservice.exe [242264 2016-03-24] (Huawei Technologies Co.,Ltd. -> ) R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Brak podpisu cyfrowego] R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Brak podpisu cyfrowego] R2 pproupd; C:\Program Files (x86)\Podatnik.info\PIT pro 2016\pproupd.exe [60824 2021-03-25] (Podatnik S.A. -> Podatnik S.A.) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\NisSrv.exe [2483616 2021-03-15] (Microsoft Windows Publisher -> Microsoft Corporation) R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-09-07] (Atheros) [Brak podpisu cyfrowego] ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 AsusTP; C:\WINDOWS\System32\drivers\AsusTP.sys [110544 2017-12-12] (ASUSTeK Computer Inc. -> ASUS Corporation) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego] S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2015-06-08] (Disc Soft Ltd -> Disc Soft Ltd) R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS) S3 HipShieldK; C:\WINDOWS\System32\drivers\HipShieldK.sys [196440 2012-04-20] (McAfee, Inc. -> McAfee, Inc.) R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2019-08-19] (Martin Malik - REALiX -> REALiX(tm)) S3 KMWDFILTER; C:\WINDOWS\System32\drivers\KMWDFILTER.sys [30208 2009-04-29] (MLK Technologies Limited -> Windows (R) Codename Longhorn DDK provider) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220616 2021-03-26] (Malwarebytes Inc -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-03-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-03-23] (Malwarebytes Inc -> Malwarebytes) S3 mferkdet; C:\WINDOWS\System32\drivers\mferkdet.sys [106112 2012-06-22] (McAfee, Inc. -> McAfee, Inc.) R2 plctrl; C:\Program Files\ASUS\P4G\plctrl.sys [14136 2013-08-29] (ASUSTeK Computer Inc. -> Windows (R) Win 7 DDK provider) R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2013-09-30] (MiniTool Solution Ltd -> ) S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] (MiniTool Solution Ltd -> ) S3 rtcrfilt64; C:\WINDOWS\system32\DRIVERS\rtcrfilt64.sys [19600 2000-01-01] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2021-03-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [420072 2021-03-15] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [72952 2021-03-15] (Microsoft Windows -> Microsoft Corporation) U4 ekrn; Brak ImagePath ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) Błąd podczas odczytu pliku: "C:\WINDOWS\system32\Tasks\Program aktualizacji online firmy Adobe." 2021-03-26 21:17 - 2021-03-26 21:17 - 000035569 _____ C:\Users\Mariusz\Downloads\FRST.txt 2021-03-26 21:17 - 2021-03-26 21:17 - 000000000 ____D C:\Users\Mariusz\Downloads\FRST-OlderVersion 2021-03-26 21:16 - 2021-03-26 21:17 - 000000000 ____D C:\FRST 2021-03-26 21:13 - 2021-03-26 21:17 - 002300928 _____ (Farbar) C:\Users\Mariusz\Downloads\FRST64.exe 2021-03-26 21:10 - 2021-03-26 21:10 - 000220616 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys 2021-03-26 21:09 - 2021-03-26 21:09 - 000000000 _____ C:\WINDOWS\system32\Tasks\CIS_{81EFDD93-DBBE-415B-BE6E-49B9664E3E82} 2021-03-26 21:07 - 2021-03-26 21:07 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71.dll 2021-03-26 21:01 - 2021-03-26 21:01 - 000000000 ____D C:\Users\Mariusz\AppData\Local\Comodo 2021-03-26 20:57 - 2021-03-26 20:57 - 005712008 _____ (COMODO) C:\Users\Mariusz\Downloads\cfw_installer.exe 2021-03-26 19:45 - 2021-03-26 19:45 - 000000000 ____D C:\Users\Mariusz\Downloads\Autoruns 2021-03-26 19:44 - 2021-03-26 19:44 - 002670815 _____ C:\Users\Mariusz\Downloads\Autoruns.zip 2021-03-25 18:48 - 2021-03-26 18:23 - 000000000 ____D C:\Program Files\Mozilla Firefox 2021-03-23 20:26 - 2021-03-23 20:42 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2021-03-23 20:26 - 2021-03-23 20:26 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys 2021-03-23 20:26 - 2021-03-23 20:26 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys 2021-03-23 20:26 - 2021-03-23 20:26 - 000002035 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2021-03-23 20:26 - 2021-03-23 20:26 - 000002023 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2021-03-23 20:26 - 2021-03-23 20:26 - 000000000 ____D C:\ProgramData\Malwarebytes 2021-03-23 20:23 - 2021-03-23 20:23 - 000000000 __SHD C:\Users\Mariusz\AppData\Local\Disk 2021-03-23 20:23 - 2021-03-23 20:23 - 000000000 ____D C:\WINDOWS\system32\Tasks\Services 2021-03-23 20:23 - 2021-03-23 20:23 - 000000000 ____D C:\ProgramData\Posse 2021-03-23 20:22 - 2021-03-23 20:31 - 000000000 ____D C:\Users\Mariusz\AppData\Roaming\HnOpTtukFW 2021-03-23 20:22 - 2021-03-23 20:23 - 000000000 ____D C:\Users\Mariusz\AppData\Roaming\HrPaRxnLfckqpnfgCv 2021-03-23 20:22 - 2021-03-23 20:22 - 000000000 ____D C:\Users\Mariusz\AppData\Roaming\Uadeko 2021-03-23 20:21 - 2021-03-23 20:21 - 000000000 ____D C:\Users\Mariusz\AppData\Roaming\Bilbo 2021-03-23 20:19 - 2021-03-23 20:23 - 000000000 ____D C:\Users\Mariusz\AppData\Roaming\LExndcqUFVu 2021-03-23 19:42 - 2021-03-23 19:42 - 000000000 ____D C:\Users\Mariusz\AppData\Roaming\Helge Klein 2021-03-23 19:20 - 2021-03-23 19:20 - 000658480 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-03-21 19:51 - 2021-03-21 19:51 - 000000000 ____D C:\Program Files\Malwarebytes 2021-03-21 19:47 - 2021-03-21 19:47 - 000000036 _____ C:\WINDOWS\1J_2ryIwgOpN3Wg4wdI8k08Uck5Hi-K-z@e=download 2021-03-21 19:15 - 2021-03-21 19:15 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job 2021-03-21 19:13 - 2021-03-12 09:18 - 000000308 _____ C:\WINDOWS\e.reg 2021-03-21 19:13 - 2021-02-26 00:31 - 000002298 _____ C:\WINDOWS\d.bat 2021-03-21 19:13 - 2021-01-25 17:45 - 000000308 _____ C:\WINDOWS\c.reg 2021-03-21 19:13 - 2021-01-25 17:45 - 000000302 _____ C:\WINDOWS\mn.reg 2021-03-21 19:13 - 2021-01-25 17:45 - 000000302 _____ C:\WINDOWS\mf.reg 2021-03-21 19:13 - 2021-01-25 17:45 - 000000001 _____ C:\WINDOWS\y.txt 2021-03-21 18:18 - 2021-03-01 19:37 - 000002837 _____ C:\WINDOWS\e.bat 2021-03-21 14:06 - 2021-03-21 19:13 - 000000000 ____D C:\WINDOWS\w 2021-03-21 14:06 - 2021-03-21 19:13 - 000000000 ____D C:\WINDOWS\c 2021-03-16 22:22 - 2021-03-16 22:22 - 000011351 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-03-15 20:45 - 2021-03-15 20:45 - 009908832 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RsCRIcon.dll 2021-03-15 18:17 - 2021-03-15 18:17 - 000000000 ____D C:\Users\Mariusz\Documents\Games for Windows - LIVE Demos 2021-03-13 22:37 - 2021-03-13 22:37 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2021-03-13 22:37 - 2021-03-13 22:37 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2021-03-13 22:37 - 2021-03-13 22:37 - 001822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2021-03-13 22:37 - 2021-03-13 22:37 - 001394024 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2021-03-13 22:37 - 2021-03-13 22:37 - 001314128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2021-03-13 22:37 - 2021-03-13 22:37 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE 2021-03-13 22:37 - 2021-03-13 22:37 - 000707016 _____ C:\WINDOWS\system32\TextShaping.dll 2021-03-13 22:37 - 2021-03-13 22:37 - 000611952 _____ C:\WINDOWS\SysWOW64\TextShaping.dll 2021-03-13 22:37 - 2021-03-13 22:37 - 000231248 _____ C:\WINDOWS\system32\containerdevicemanagement.dll 2021-03-13 22:37 - 2021-03-13 22:37 - 000091136 _____ C:\WINDOWS\system32\Drivers\cimfs.sys 2021-03-13 21:56 - 2021-03-13 21:56 - 000000000 ____D C:\WINDOWS\system32\Tasks\Agent Activation Runtime 2021-03-13 21:32 - 2021-03-13 21:32 - 000000000 ____D C:\ProgramData\Microsoft OneDrive 2021-03-13 21:30 - 2021-03-26 21:10 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-03-13 21:30 - 2021-03-26 18:20 - 000003544 _____ C:\WINDOWS\system32\Tasks\ASUS Live Update1 2021-03-13 21:30 - 2021-03-26 18:20 - 000003534 _____ C:\WINDOWS\system32\Tasks\ASUS Live Update2 2021-03-13 21:30 - 2021-03-23 20:40 - 000004212 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2021-03-13 21:30 - 2021-03-15 20:44 - 000002928 _____ C:\WINDOWS\system32\Tasks\Driver Booster SkipUAC (Mariusz) 2021-03-13 21:30 - 2021-03-13 21:30 - 000003678 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-2384729773-2530975304-3792660739-1002UA 2021-03-13 21:30 - 2021-03-13 21:30 - 000003610 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1513373007 2021-03-13 21:30 - 2021-03-13 21:30 - 000003546 _____ C:\WINDOWS\system32\Tasks\BraveSoftwareUpdateTaskUserS-1-5-21-2384729773-2530975304-3792660739-1002UA 2021-03-13 21:30 - 2021-03-13 21:30 - 000003496 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2021-03-13 21:30 - 2021-03-13 21:30 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2021-03-13 21:30 - 2021-03-13 21:30 - 000003438 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-03-13 21:30 - 2021-03-13 21:30 - 000003410 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-2384729773-2530975304-3792660739-1002Core 2021-03-13 21:30 - 2021-03-13 21:30 - 000003278 _____ C:\WINDOWS\system32\Tasks\BraveSoftwareUpdateTaskUserS-1-5-21-2384729773-2530975304-3792660739-1002Core 2021-03-13 21:30 - 2021-03-13 21:30 - 000003272 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2021-03-13 21:30 - 2021-03-13 21:30 - 000003214 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-03-13 21:30 - 2021-03-13 21:30 - 000003174 _____ C:\WINDOWS\system32\Tasks\Intel PTT EK Recertification 2021-03-13 21:30 - 2021-03-13 21:30 - 000003110 _____ C:\WINDOWS\system32\Tasks\Java Update Scheduler 2021-03-13 21:30 - 2021-03-13 21:30 - 000003108 _____ C:\WINDOWS\system32\Tasks\Adobe Flash TXL Files Update ver_202018 2021-03-13 21:30 - 2021-03-13 21:30 - 000003082 _____ C:\WINDOWS\system32\Tasks\Program aktualizacji online firmy HP 2021-03-13 21:30 - 2021-03-13 21:30 - 000002880 _____ C:\WINDOWS\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2384729773-2530975304-3792660739-1002 2021-03-13 21:30 - 2021-03-13 21:30 - 000002866 _____ C:\WINDOWS\system32\Tasks\ASUS Smart Gesture Launcher 2021-03-13 21:30 - 2021-03-13 21:30 - 000002658 _____ C:\WINDOWS\system32\Tasks\Update Checker 2021-03-13 21:30 - 2021-03-13 21:30 - 000002590 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask 2021-03-13 21:30 - 2021-03-13 21:30 - 000002552 _____ C:\WINDOWS\system32\Tasks\CreateChoiceProcessTask 2021-03-13 21:30 - 2021-03-13 21:30 - 000002440 _____ C:\WINDOWS\system32\Tasks\{EC4555EB-4A2C-4BA5-9280-9EF5FD41B93A} 2021-03-13 21:30 - 2021-03-13 21:30 - 000002440 _____ C:\WINDOWS\system32\Tasks\{AD92C709-ECE4-43C6-89F3-B5220104F24C} 2021-03-13 21:30 - 2021-03-13 21:30 - 000002410 _____ C:\WINDOWS\system32\Tasks\{38B5BF5D-0E8C-49ED-8E85-FDD32AC826C0} 2021-03-13 21:30 - 2021-03-13 21:30 - 000002366 _____ C:\WINDOWS\system32\Tasks\AsusVibeSchedule 2021-03-13 21:30 - 2021-03-13 21:30 - 000002346 _____ C:\WINDOWS\system32\Tasks\RtHDVBg_ListenToDevice 2021-03-13 21:30 - 2021-03-13 21:30 - 000002336 _____ C:\WINDOWS\system32\Tasks\ASUS Console 2021-03-13 21:30 - 2021-03-13 21:30 - 000002326 _____ C:\WINDOWS\system32\Tasks\{68B7BBC6-2A46-457B-99FD-097EA4BF9FC1} 2021-03-13 21:30 - 2021-03-13 21:30 - 000002302 _____ C:\WINDOWS\system32\Tasks\RTKCPL 2021-03-13 21:30 - 2021-03-13 21:30 - 000002288 _____ C:\WINDOWS\system32\Tasks\RtHDVBg 2021-03-13 21:30 - 2021-03-13 21:30 - 000002278 _____ C:\WINDOWS\system32\Tasks\Core Temp Autostart Mariusz 2021-03-13 21:30 - 2021-03-13 21:30 - 000002272 _____ C:\WINDOWS\system32\Tasks\ASUS P4G 2021-03-13 21:30 - 2021-03-13 21:30 - 000002240 _____ C:\WINDOWS\system32\Tasks\{C54D4EBC-1849-4660-BEDF-24E7C967F787} 2021-03-13 21:30 - 2021-03-13 21:30 - 000002240 _____ C:\WINDOWS\system32\Tasks\{A93C893E-0940-4B7F-94E2-5FFCD2372E37} 2021-03-13 21:30 - 2021-03-13 21:30 - 000002240 _____ C:\WINDOWS\system32\Tasks\{A302A72A-C84A-4473-8704-E384A3AC605B} 2021-03-13 21:30 - 2021-03-13 21:30 - 000002240 _____ C:\WINDOWS\system32\Tasks\{938BC64B-536A-4FD8-8B50-F58AED0455F6} 2021-03-13 21:30 - 2021-03-13 21:30 - 000002240 _____ C:\WINDOWS\system32\Tasks\{8424647E-EE42-41EF-B885-F5EA46FD960B} 2021-03-13 21:30 - 2021-03-13 21:30 - 000002240 _____ C:\WINDOWS\system32\Tasks\{28B19968-0F08-47F0-9CD2-113653B20F87} 2021-03-13 21:30 - 2021-03-13 21:30 - 000002228 _____ C:\WINDOWS\system32\Tasks\{C7FA4D5B-47BC-4A31-8616-41C9BF82D24A} 2021-03-13 21:30 - 2021-03-13 21:30 - 000002220 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC 2021-03-13 21:30 - 2021-03-13 21:30 - 000002188 _____ C:\WINDOWS\system32\Tasks\ASUS USB Charger Plus 2021-03-13 21:30 - 2021-03-13 21:30 - 000002038 _____ C:\WINDOWS\system32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance 2021-03-13 21:30 - 2021-03-13 21:30 - 000001974 _____ C:\WINDOWS\system32\Tasks\ASUS InstantOn Config 2021-03-13 21:30 - 2021-03-13 21:30 - 000000020 ___SH C:\Users\Mariusz\ntuser.ini 2021-03-13 21:30 - 2021-03-13 21:30 - 000000000 ____D C:\WINDOWS\system32\Tasks\WPD 2021-03-13 21:30 - 2021-03-13 21:30 - 000000000 ____D C:\WINDOWS\system32\Tasks\S-1-5-21-2384729773-2530975304-3792660739-1002 2021-03-13 21:29 - 2021-03-13 21:30 - 000011433 _____ C:\WINDOWS\diagwrn.xml 2021-03-13 21:29 - 2021-03-13 21:30 - 000011433 _____ C:\WINDOWS\diagerr.xml 2021-03-13 21:27 - 2021-03-26 21:16 - 001769800 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-03-13 21:23 - 2021-03-13 21:23 - 000000322 ____H C:\WINDOWS\Tasks\Intel PTT EK Recertification.job 2021-03-13 21:20 - 2021-03-23 20:31 - 000000000 ____D C:\Users\Mariusz 2021-03-13 21:20 - 2021-03-13 21:25 - 000000000 ____D C:\Users\UpdatusUser 2021-03-13 21:20 - 2021-03-13 21:20 - 000000000 _SHDL C:\Users\UpdatusUser\Ustawienia lokalne 2021-03-13 21:20 - 2021-03-13 21:20 - 000000000 _SHDL C:\Users\UpdatusUser\Szablony 2021-03-13 21:20 - 2021-03-13 21:20 - 000000000 _SHDL C:\Users\UpdatusUser\Moje dokumenty 2021-03-13 21:20 - 2021-03-13 21:20 - 000000000 _SHDL C:\Users\UpdatusUser\Menu Start 2021-03-13 21:20 - 2021-03-13 21:20 - 000000000 _SHDL C:\Users\UpdatusUser\Documents\Moje wideo 2021-03-13 21:20 - 2021-03-13 21:20 - 000000000 _SHDL C:\Users\UpdatusUser\Documents\Moje obrazy 2021-03-13 21:20 - 2021-03-13 21:20 - 000000000 _SHDL C:\Users\UpdatusUser\Documents\Moja muzyka 2021-03-13 21:20 - 2021-03-13 21:20 - 000000000 _SHDL C:\Users\UpdatusUser\Dane aplikacji 2021-03-13 21:20 - 2021-03-13 21:20 - 000000000 _SHDL C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2021-03-13 21:20 - 2021-03-13 21:20 - 000000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Tymczasowe pliki internetowe 2021-03-13 21:20 - 2021-03-13 21:20 - 000000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Historia 2021-03-13 21:20 - 2021-03-13 21:20 - 000000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Dane aplikacji 2021-03-13 21:20 - 2021-03-13 21:20 - 000000000 _SHDL C:\Users\Mariusz\Ustawienia lokalne 2021-03-13 21:20 - 2021-03-13 21:20 - 000000000 _SHDL C:\Users\Mariusz\Szablony 2021-03-13 21:20 - 2021-03-13 21:20 - 000000000 _SHDL C:\Users\Mariusz\Moje dokumenty 2021-03-13 21:20 - 2021-03-13 21:20 - 000000000 _SHDL C:\Users\Mariusz\Menu Start 2021-03-13 21:20 - 2021-03-13 21:20 - 000000000 _SHDL C:\Users\Mariusz\Documents\Moje wideo 2021-03-13 21:20 - 2021-03-13 21:20 - 000000000 _SHDL C:\Users\Mariusz\Documents\Moje obrazy 2021-03-13 21:20 - 2021-03-13 21:20 - 000000000 _SHDL C:\Users\Mariusz\Documents\Moja muzyka 2021-03-13 21:20 - 2021-03-13 21:20 - 000000000 _SHDL C:\Users\Mariusz\Dane aplikacji 2021-03-13 21:20 - 2021-03-13 21:20 - 000000000 _SHDL C:\Users\Mariusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2021-03-13 21:20 - 2021-03-13 21:20 - 000000000 _SHDL C:\Users\Mariusz\AppData\Local\Tymczasowe pliki internetowe 2021-03-13 21:20 - 2021-03-13 21:20 - 000000000 _SHDL C:\Users\Mariusz\AppData\Local\Historia 2021-03-13 21:20 - 2021-03-13 21:20 - 000000000 _SHDL C:\Users\Mariusz\AppData\Local\Dane aplikacji 2021-03-13 21:20 - 2019-12-07 10:10 - 000001105 _____ C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-03-13 21:18 - 2021-03-26 21:10 - 000008192 ___SH C:\DumpStack.log.tmp 2021-03-13 21:18 - 2021-03-25 21:14 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-03-13 21:14 - 2021-03-13 21:18 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate 2021-03-13 21:13 - 2021-03-13 21:14 - 000000000 ____D C:\WINDOWS\ServiceProfiles 2021-03-13 21:13 - 2021-03-13 21:13 - 000008192 _____ C:\WINDOWS\system32\config\userdiff 2021-03-13 21:12 - 2021-03-13 21:12 - 000000000 ____D C:\ProgramData\ssh 2021-03-13 21:09 - 2021-03-13 21:09 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr 2021-03-13 21:09 - 2021-03-13 21:09 - 000575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx 2021-03-13 21:09 - 2021-03-13 21:09 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr 2021-03-13 21:09 - 2021-03-13 21:09 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl 2021-03-13 21:09 - 2021-03-13 21:09 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax 2021-03-13 21:09 - 2021-03-13 21:09 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mpg2splt.ax 2021-03-13 21:09 - 2021-03-13 21:09 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VBICodec.ax 2021-03-13 21:09 - 2021-03-13 21:09 - 000095744 _____ C:\WINDOWS\system32\VirtualMonitorManager.dll 2021-03-13 21:09 - 2021-03-13 21:09 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl 2021-03-13 21:09 - 2021-03-13 21:09 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx 2021-03-13 21:09 - 2021-03-13 21:09 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl 2021-03-13 21:09 - 2021-03-13 21:09 - 000053760 _____ C:\WINDOWS\SysWOW64\BWContextHandler.dll 2021-03-13 21:09 - 2021-03-13 21:09 - 000045880 _____ C:\WINDOWS\system32\HvSocket.dll 2021-03-13 21:08 - 2021-03-13 21:08 - 004898144 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpltfm.dll 2021-03-13 21:08 - 2021-03-13 21:08 - 003860832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpltfm.dll 2021-03-13 21:08 - 2021-03-13 21:08 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll 2021-03-13 21:08 - 2021-03-13 21:08 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll 2021-03-13 21:08 - 2021-03-13 21:08 - 002254336 _____ C:\WINDOWS\system32\dwmscene.dll 2021-03-13 21:08 - 2021-03-13 21:08 - 001354080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpal.dll 2021-03-13 21:08 - 2021-03-13 21:08 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll 2021-03-13 21:08 - 2021-03-13 21:08 - 001091936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmcodecs.dll 2021-03-13 21:08 - 2021-03-13 21:08 - 001032544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ortcengine.dll 2021-03-13 21:08 - 2021-03-13 21:08 - 000980320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpal.dll 2021-03-13 21:08 - 2021-03-13 21:08 - 000915296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmcodecs.dll 2021-03-13 21:08 - 2021-03-13 21:08 - 000732000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ortcengine.dll 2021-03-13 21:08 - 2021-03-13 21:08 - 000729600 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx 2021-03-13 21:08 - 2021-03-13 21:08 - 000643072 _____ C:\WINDOWS\system32\WindowManagementAPI.dll 2021-03-13 21:08 - 2021-03-13 21:08 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl 2021-03-13 21:08 - 2021-03-13 21:08 - 000544768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl 2021-03-13 21:08 - 2021-03-13 21:08 - 000455680 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll 2021-03-13 21:08 - 2021-03-13 21:08 - 000446976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl 2021-03-13 21:08 - 2021-03-13 21:08 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv 2021-03-13 21:08 - 2021-03-13 21:08 - 000330752 _____ C:\WINDOWS\SysWOW64\ssdm.dll 2021-03-13 21:08 - 2021-03-13 21:08 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax 2021-03-13 21:08 - 2021-03-13 21:08 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthprops.cpl 2021-03-13 21:08 - 2021-03-13 21:08 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll 2021-03-13 21:08 - 2021-03-13 21:08 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpg2splt.ax 2021-03-13 21:08 - 2021-03-13 21:08 - 000240640 _____ C:\WINDOWS\SysWOW64\CoreMas.dll 2021-03-13 21:08 - 2021-03-13 21:08 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl 2021-03-13 21:08 - 2021-03-13 21:08 - 000235520 _____ C:\WINDOWS\SysWOW64\HeatCore.dll 2021-03-13 21:08 - 2021-03-13 21:08 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthprops.cpl 2021-03-13 21:08 - 2021-03-13 21:08 - 000190976 _____ C:\WINDOWS\system32\BthpanContextHandler.dll 2021-03-13 21:08 - 2021-03-13 21:08 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\timedate.cpl 2021-03-13 21:08 - 2021-03-13 21:08 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl 2021-03-13 21:08 - 2021-03-13 21:08 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\VBICodec.ax 2021-03-13 21:08 - 2021-03-13 21:08 - 000152064 _____ C:\WINDOWS\system32\EoAExperiences.exe 2021-03-13 21:08 - 2021-03-13 21:08 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\activeds.tlb 2021-03-13 21:08 - 2021-03-13 21:08 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\activeds.tlb 2021-03-13 21:08 - 2021-03-13 21:08 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncpa.cpl 2021-03-13 21:08 - 2021-03-13 21:08 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncpa.cpl 2021-03-13 21:08 - 2021-03-13 21:08 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx 2021-03-13 21:08 - 2021-03-13 21:08 - 000067072 _____ C:\WINDOWS\system32\BWContextHandler.dll 2021-03-13 21:08 - 2021-03-13 21:08 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe 2021-03-13 21:08 - 2021-03-13 21:08 - 000056672 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmmvrortc.dll 2021-03-13 21:08 - 2021-03-13 21:08 - 000055376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmmvrortc.dll 2021-03-13 21:08 - 2021-03-13 21:08 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll 2021-03-13 21:08 - 2021-03-13 21:08 - 000047472 _____ C:\WINDOWS\SysWOW64\umpdc.dll 2021-03-13 21:08 - 2021-03-13 21:08 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll 2021-03-13 21:08 - 2021-03-13 21:08 - 000029696 _____ (The ICU Project) C:\WINDOWS\system32\icuuc.dll 2021-03-13 21:08 - 2021-03-13 21:08 - 000025088 _____ (The ICU Project) C:\WINDOWS\system32\icuin.dll 2021-03-13 21:08 - 2021-03-13 21:08 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msacm32.drv 2021-03-13 21:08 - 2021-03-13 21:08 - 000010752 _____ C:\WINDOWS\SysWOW64\agentactivationruntimestarter.exe 2021-03-13 21:08 - 2021-03-13 21:08 - 000001370 _____ C:\WINDOWS\system32\ThirdPartyNoticesBySHS.txt 2021-03-13 21:07 - 2021-03-13 21:07 - 004227116 _____ C:\WINDOWS\system32\DefaultHrtfs.bin 2021-03-13 21:07 - 2021-03-13 21:07 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv 2021-03-13 21:07 - 2021-03-13 21:07 - 000455168 _____ C:\WINDOWS\system32\ssdm.dll 2021-03-13 21:07 - 2021-03-13 21:07 - 000363520 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll 2021-03-13 21:07 - 2021-03-13 21:07 - 000306688 _____ C:\WINDOWS\system32\HeatCore.dll 2021-03-13 21:07 - 2021-03-13 21:07 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll 2021-03-13 21:07 - 2021-03-13 21:07 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl 2021-03-13 21:07 - 2021-03-13 21:07 - 000197632 _____ C:\WINDOWS\system32\IHDS.dll 2021-03-13 21:07 - 2021-03-13 21:07 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe 2021-03-13 21:07 - 2021-03-13 21:07 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll 2021-03-13 21:07 - 2021-03-13 21:07 - 000074240 _____ C:\WINDOWS\system32\rdsxvmaudio.dll 2021-03-13 21:07 - 2021-03-13 21:07 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll 2021-03-13 21:07 - 2021-03-13 21:07 - 000064552 _____ C:\WINDOWS\system32\umpdc.dll 2021-03-13 21:07 - 2021-03-13 21:07 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msacm32.drv 2021-03-13 21:07 - 2021-03-13 21:07 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe 2021-03-13 21:01 - 2021-03-13 21:01 - 000076060 _____ C:\WINDOWS\SysWOW64\xpsrchvw.xml 2021-03-13 21:01 - 2021-03-13 21:01 - 000076060 _____ C:\WINDOWS\system32\xpsrchvw.xml 2021-03-13 20:56 - 2021-03-13 20:56 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer 2021-03-13 20:56 - 2021-03-13 20:56 - 000000000 ____D C:\Program Files\Reference Assemblies 2021-03-13 20:56 - 2021-03-13 20:56 - 000000000 ____D C:\Program Files\MSBuild 2021-03-13 20:56 - 2021-03-13 20:56 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies 2021-03-13 20:56 - 2021-03-13 20:56 - 000000000 ____D C:\Program Files (x86)\MSBuild 2021-03-12 20:42 - 2021-03-25 17:39 - 000000000 ___DC C:\WINDOWS\Panther ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-03-26 21:16 - 2019-12-07 16:08 - 000775248 _____ C:\WINDOWS\system32\perfh015.dat 2021-03-26 21:16 - 2019-12-07 16:08 - 000152320 _____ C:\WINDOWS\system32\perfc015.dat 2021-03-26 21:16 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF 2021-03-26 21:12 - 2019-02-05 17:36 - 000000000 ____D C:\ProgramData\Mozilla 2021-03-26 21:11 - 2016-12-09 22:01 - 000000000 ____D C:\Users\Mariusz\AppData\LocalLow\Mozilla 2021-03-26 21:10 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-03-26 21:10 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2021-03-26 21:10 - 2019-03-27 23:01 - 000000000 ____D C:\ProgramData\ASUS Smart Gesture 2021-03-26 21:10 - 2017-04-13 23:12 - 000000000 ____D C:\ProgramData\NVIDIA 2021-03-26 21:10 - 2015-08-09 20:30 - 000000000 __SHD C:\Users\Mariusz\IntelGraphicsProfiles 2021-03-26 21:09 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2021-03-26 18:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-03-26 18:20 - 2018-01-12 22:14 - 000000000 ____D C:\Users\Mariusz\AppData\Local\Packages 2021-03-26 18:15 - 2016-08-06 10:53 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird 2021-03-25 18:50 - 2018-06-13 17:46 - 000001007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2021-03-25 18:31 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-03-23 20:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF 2021-03-23 20:35 - 2014-02-19 23:21 - 000000000 ____D C:\Users\Mariusz\AppData\Local\ElevatedDiagnostics 2021-03-23 20:31 - 2020-06-07 13:34 - 000000000 ____D C:\Users\Mariusz\AppData\Roaming\Smart Clock 2021-03-23 20:29 - 2018-05-02 16:16 - 000000000 ____D C:\Program Files (x86)\Ares 2021-03-23 20:27 - 2017-07-29 21:37 - 000014336 _____ C:\Users\Mariusz\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2021-03-23 20:25 - 2014-04-23 20:30 - 000000002 _____ C:\Users\Mariusz\AppData\Local\SendToWorkFiles.txt 2021-03-23 20:24 - 2014-02-24 18:17 - 000000000 ____D C:\Users\Mariusz\AppData\Local\CrashDumps 2021-03-23 20:08 - 2016-02-15 21:53 - 000000266 __RSH C:\ProgramData\ntuser.pol 2021-03-23 20:06 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2021-03-23 20:04 - 2014-06-25 21:58 - 000000000 ____D C:\Program Files\Microsoft Office 2021-03-23 18:47 - 2015-09-20 11:11 - 000000000 ____D C:\Users\Mariusz\AppData\LocalLow\Temp 2021-03-23 18:47 - 2014-02-28 21:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2021-03-21 20:02 - 2018-05-17 21:03 - 000000000 ____D C:\Users\Mariusz\AppData\Local\D3DSCache 2021-03-21 19:26 - 2014-02-18 19:01 - 000000000 ____D C:\Users\Mariusz\AppData\Roaming\vlc 2021-03-20 07:28 - 2020-07-17 12:42 - 000002450 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-03-20 07:28 - 2020-07-17 12:42 - 000002288 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2021-03-17 01:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-03-16 22:23 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-03-15 20:45 - 2020-11-23 18:09 - 001147384 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys 2021-03-15 20:45 - 2020-10-02 15:50 - 000448096 _____ (Realsil Semiconductor Corporation) C:\WINDOWS\system32\Drivers\RtsUer.sys 2021-03-15 20:39 - 2018-02-20 20:52 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2021-03-15 18:38 - 2014-02-18 19:18 - 000001284 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk 2021-03-15 18:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\appcompat 2021-03-13 22:41 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-03-13 22:41 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2021-03-13 22:41 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2021-03-13 22:41 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2021-03-13 22:41 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources 2021-03-13 22:41 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2021-03-13 22:41 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2021-03-13 22:41 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup 2021-03-13 22:41 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-03-13 22:41 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2021-03-13 22:41 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning 2021-03-13 22:41 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2021-03-13 22:40 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing 2021-03-13 21:49 - 2020-10-01 17:55 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2021-03-13 21:47 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog 2021-03-13 21:35 - 2019-07-05 21:53 - 000000000 ____D C:\Users\Mariusz\AppData\Local\PackageStaging 2021-03-13 21:34 - 2018-04-14 14:13 - 000000000 ____D C:\Users\Mariusz\AppData\Local\PlaceholderTileLogoFolder 2021-03-13 21:31 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\USOPrivate 2021-03-13 21:31 - 2018-07-03 16:52 - 000000000 ____D C:\ProgramData\Packages 2021-03-13 21:31 - 2016-11-21 10:19 - 000000000 __RHD C:\Users\Public\AccountPictures 2021-03-13 21:31 - 2015-12-13 21:38 - 000000000 ___RD C:\Users\Mariusz\3D Objects 2021-03-13 21:30 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Registration 2021-03-13 21:30 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows NT 2021-03-13 21:30 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender 2021-03-13 21:30 - 2019-12-07 10:03 - 000065536 _____ C:\WINDOWS\system32\config\ELAM 2021-03-13 21:29 - 2014-10-23 18:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Realtek 2021-03-13 21:29 - 2014-02-18 11:58 - 000023140 _____ C:\WINDOWS\system32\emptyregdb.dat 2021-03-13 21:25 - 2019-12-07 10:14 - 000000000 __RSD C:\WINDOWS\Media 2021-03-13 21:22 - 2018-05-02 16:16 - 000000000 ____D C:\Users\Mariusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ares 2021-03-13 21:22 - 2016-02-24 18:45 - 000000000 ____D C:\Users\Mariusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2021-03-13 21:20 - 2014-04-23 20:26 - 000000000 ____D C:\Temp 2021-03-13 21:19 - 2017-04-13 23:12 - 000359626 _____ C:\WINDOWS\system32\Drivers\RTWAVES40.dat 2021-03-13 21:19 - 2017-04-13 23:12 - 000006786 _____ C:\WINDOWS\system32\Drivers\rtwavesEFX.dat 2021-03-13 21:19 - 2017-04-13 23:12 - 000002626 _____ C:\WINDOWS\system32\Drivers\rtwavesMFX.dat 2021-03-13 21:19 - 2017-04-13 23:12 - 000000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat 2021-03-13 21:19 - 2017-04-13 23:12 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM 2021-03-13 21:19 - 2017-04-13 23:12 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2021-03-13 21:18 - 2020-12-08 20:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools 2021-03-13 21:18 - 2020-03-22 21:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 6.4 2021-03-13 21:18 - 2020-01-04 20:53 - 000000000 ____D C:\WINDOWS\system32\elambkup 2021-03-13 21:18 - 2019-12-07 14:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dream Aquarium 2021-03-13 21:18 - 2019-12-07 10:18 - 000000000 ____D C:\WINDOWS\Setup 2021-03-13 21:18 - 2019-12-07 10:14 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template 2021-03-13 21:18 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files 2021-03-13 21:18 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\tracing 2021-03-13 21:18 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed 2021-03-13 21:18 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase 2021-03-13 21:18 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\spool 2021-03-13 21:18 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Macromed 2021-03-13 21:18 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\InputMethod 2021-03-13 21:18 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState 2021-03-13 21:18 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\InputMethod 2021-03-13 21:18 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Help 2021-03-13 21:18 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System 2021-03-13 21:18 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2021-03-13 21:18 - 2019-09-11 21:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace 2021-03-13 21:18 - 2019-08-09 10:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2021-03-13 21:18 - 2019-03-30 15:45 - 000000000 ___RD C:\Program Files\Microsoft Games 2021-03-13 21:18 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated 2021-03-13 21:18 - 2019-01-06 11:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Core Temp 2021-03-13 21:18 - 2018-09-16 17:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2021-03-13 21:18 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\MsDtc 2021-03-13 21:18 - 2017-12-16 13:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2021-03-13 21:18 - 2017-04-13 23:12 - 000000000 ____D C:\WINDOWS\SysWOW64\sda 2021-03-13 21:18 - 2017-04-13 23:12 - 000000000 ____D C:\Program Files\Intel 2021-03-13 21:18 - 2017-04-13 23:12 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2021-03-13 21:18 - 2017-04-12 17:25 - 000000000 ____D C:\Program Files\UNP 2021-03-13 21:18 - 2017-02-06 22:40 - 000000000 ____D C:\WINDOWS\SysWOW64\Adobe 2021-03-13 21:18 - 2016-12-31 21:36 - 000000000 ____D C:\WINDOWS\SysWOW64\BestPractices 2021-03-13 21:18 - 2016-08-27 17:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Active Dancer 2021-03-13 21:18 - 2016-02-24 18:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2021-03-13 21:18 - 2015-06-06 15:46 - 000000000 ____D C:\WINDOWS\SysWOW64\xlive 2021-03-13 21:18 - 2015-04-30 23:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\nGlide 2021-03-13 21:18 - 2014-04-06 20:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP 2021-03-13 21:18 - 2014-03-14 22:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2021-03-13 21:18 - 2014-02-18 11:51 - 000000000 ____D C:\Program Files (x86)\Intel 2021-03-13 21:18 - 2014-02-18 09:43 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-03-13 21:18 - 2014-02-18 09:21 - 000000000 ____D C:\WINDOWS\system32\Plug-In Settings 2021-03-13 21:18 - 2014-02-14 09:16 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel 2021-03-13 21:18 - 2014-02-14 09:15 - 000000000 ____D C:\ProgramData\Intel 2021-03-13 21:18 - 2013-08-22 16:36 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy 2021-03-13 21:18 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Shared 2021-03-13 21:18 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared 2021-03-13 21:18 - 2012-08-04 18:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS 2021-03-13 21:17 - 2019-12-07 10:14 - 000000000 __RHD C:\Users\Public\Libraries 2021-03-13 21:15 - 2020-06-05 17:55 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation 2021-03-13 21:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\IME 2021-03-13 21:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\IME 2021-03-13 21:15 - 2014-04-06 20:57 - 000000000 ____D C:\WINDOWS\SysWOW64\spool 2021-03-13 21:14 - 2020-03-11 17:14 - 000000000 ____D C:\Program Files\Apoint2K 2021-03-13 21:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Resources 2021-03-13 21:14 - 2017-04-13 23:12 - 000000000 ____D C:\Program Files\Realtek 2021-03-13 21:14 - 2017-02-06 19:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo 2021-03-13 21:14 - 2016-12-31 21:36 - 000000000 ____D C:\WINDOWS\system32\BestPractices 2021-03-13 21:14 - 2015-12-15 18:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AidemMedia 2021-03-13 21:14 - 2015-05-07 17:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Activision 2021-03-13 21:14 - 2014-03-03 17:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Milestone 2021-03-13 21:14 - 2014-02-28 21:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rovio Entertainment Ltd 2021-03-13 21:14 - 2014-02-28 21:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rovio 2021-03-13 21:14 - 2014-02-14 09:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS Video Magic 2021-03-13 21:12 - 2019-12-07 16:11 - 000000000 ____D C:\Program Files\Windows Photo Viewer 2021-03-13 21:12 - 2019-12-07 16:11 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2021-03-13 21:12 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12 2021-03-13 21:12 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs 2021-03-13 21:12 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP 2021-03-13 21:12 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\F12 2021-03-13 21:12 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2021-03-13 21:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2021-03-13 21:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation 2021-03-13 21:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz 2021-03-13 21:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords 2021-03-13 21:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com 2021-03-13 21:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers 2021-03-13 21:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2021-03-13 21:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep 2021-03-13 21:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences 2021-03-13 21:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation 2021-03-13 21:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz 2021-03-13 21:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Keywords 2021-03-13 21:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX 2021-03-13 21:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Com 2021-03-13 21:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser 2021-03-13 21:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers 2021-03-13 21:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences 2021-03-13 21:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellComponents 2021-03-13 21:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\IME 2021-03-13 21:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\DiagTrack 2021-03-13 21:12 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender 2021-03-13 21:11 - 2019-12-07 16:11 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll 2021-03-13 21:11 - 2019-12-07 16:11 - 000020908 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml 2021-03-13 21:01 - 2019-12-07 16:10 - 000000000 ____D C:\WINDOWS\OCR 2021-03-13 21:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV 2021-03-13 21:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT 2021-03-13 21:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE 2021-03-13 21:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX 2021-03-13 21:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV 2021-03-13 21:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT 2021-03-13 21:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE 2021-03-13 21:00 - 2019-12-07 16:08 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm 2021-03-13 21:00 - 2019-12-07 16:08 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN 2021-03-13 21:00 - 2019-12-07 16:08 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr 2021-03-13 21:00 - 2019-12-07 16:08 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts 2021-03-13 21:00 - 2019-12-07 16:08 - 000000000 ____D C:\WINDOWS\system32\winrm 2021-03-13 21:00 - 2019-12-07 16:08 - 000000000 ____D C:\WINDOWS\system32\WCN 2021-03-13 21:00 - 2019-12-07 16:08 - 000000000 ____D C:\WINDOWS\system32\slmgr 2021-03-13 21:00 - 2019-12-07 16:08 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts 2021-03-13 20:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI 2021-03-13 20:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\MUI 2021-03-13 20:47 - 2020-06-07 14:25 - 000589824 _____ C:\WINDOWS\system32\Ikeext.etl 2021-03-12 17:54 - 2018-01-12 19:52 - 000002138 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2021-03-10 18:21 - 2014-02-18 09:43 - 131005360 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-02-28 19:09 - 2021-01-29 20:57 - 000000000 ____D C:\Users\Mariusz\Desktop\Zdjęcia 2021-02-27 18:19 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\TextInput ==================== Pliki w katalogu głównym wybranych folderów ======== 2020-01-08 20:55 - 2020-01-08 20:55 - 000020224 _____ (Microsoft Corporation) C:\ProgramData\Microsoft.VisualStudio.DesignUI.dll 2020-01-08 20:55 - 2020-01-08 20:55 - 000253496 _____ (Tencent) C:\ProgramData\QTalk.exe 2015-05-23 19:47 - 2015-05-23 19:47 - 000063488 _____ () C:\Users\Mariusz\xobglu16.dll 2015-05-23 19:47 - 2015-05-23 19:47 - 000023552 _____ () C:\Users\Mariusz\xobglu32.dll 2015-01-30 18:46 - 2015-01-29 13:44 - 000000408 _____ () C:\Program Files (x86)\227300_install.vdf 2015-01-30 18:46 - 2015-01-29 13:44 - 2647203741 _____ () C:\Program Files (x86)\base.scs 2015-08-13 19:53 - 2015-08-13 19:53 - 000000000 _____ () C:\Program Files (x86)\IObit Apps Toolbar 2015-05-22 20:53 - 2015-05-22 20:53 - 000325960 _____ () C:\Program Files (x86)\lua5.1.dll 2019-08-09 10:34 - 2020-01-14 21:49 - 000001385 _____ () C:\Program Files (x86)\Skype.lnk 2015-01-06 11:07 - 2015-04-22 17:40 - 000000089 _____ () C:\Users\Mariusz\AppData\Roaming\WB.CFG 2017-07-29 21:37 - 2021-03-23 20:27 - 000014336 _____ () C:\Users\Mariusz\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2014-04-23 20:30 - 2021-03-23 20:25 - 000000002 _____ () C:\Users\Mariusz\AppData\Local\SendToWorkFiles.txt 2016-10-14 14:15 - 2016-10-14 14:15 - 000000000 _____ () C:\Users\Mariusz\AppData\Local\{4C136D7D-099B-40B8-B07C-C07E3876CE98} 2014-10-27 19:48 - 2014-10-27 19:48 - 000000000 _____ () C:\Users\Mariusz\AppData\Local\{4F1AC6B2-82CA-4B88-9258-4E3E3DDE8DC6} 2016-10-16 17:17 - 2016-10-16 17:17 - 000000000 _____ () C:\Users\Mariusz\AppData\Local\{6F626955-39ED-40B5-888E-D3446CA96B0A} 2016-10-17 19:05 - 2016-10-17 19:05 - 000000000 _____ () C:\Users\Mariusz\AppData\Local\{A6554F26-0D29-4525-B2E0-E2C3472FA960} ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================