Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 14-12-2019
- Uruchomiony przez kps (administrator) KPS-KOMBAJN (Hewlett-Packard HP EliteBook 8740w) (15-12-2019 09:52:47)
- Uruchomiony z H:\Programy\instalki
- Załadowane profile: kps (Dostępne profile: kps)
- Platform: Windows 7 Ultimate Service Pack 1 (X64) Język: Polski (Polska)
- Internet Explorer Wersja 11 (Domyślna przeglądarka: Chrome)
- Tryb startu: Normal
- Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
- ==================== Procesy (filtrowane) =================
- (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)
- (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
- (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
- (Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
- (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
- (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
- (Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
- (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
- (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
- (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
- (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
- (Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
- (Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
- (AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler.exe
- (AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler64.exe
- (AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
- (AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
- (AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
- (AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
- (Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- (Hewlett-Packard Company -> Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
- (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
- (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
- (Intel Corporation-Mobile Wireless Group -> Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
- (Intel Corporation-Mobile Wireless Group -> Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
- (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
- (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
- (McAfee, LLC -> McAfee, Inc.) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
- (McAfee, LLC -> McAfee, Inc.) C:\Program Files\McAfee\WebAdvisor\uihost.exe
- (Mega Limited -> Mega Limited) C:\ProgramData\MEGAsync\MEGAsync.exe
- (Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
- (Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
- (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
- (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
- (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
- (Microsoft Windows Hardware Compatibility Publisher -> Andrea Electronics Corporation) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_b20011ea53a6b83e\AESTSr64.exe
- (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
- (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_b20011ea53a6b83e\stacsv64.exe
- (Nero AG -> Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
- (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
- (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
- (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
- (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvwmi64.exe
- (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvwmi64.exe
- (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
- (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
- (Piriform Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
- (Renesas Electronics Corporation -> Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
- (RescueTime, Inc.) [Brak podpisu cyfrowego] C:\Program Files (x86)\RescueTime\RescueTime.exe
- (TeamViewer -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
- (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.231\WsAppService.exe
- ==================== Rejestr (filtrowane) ===================
- (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)
- HKLM\...\Run: [nwiz] => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2716960 2013-04-19] (NVIDIA Corporation -> )
- HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [487424 2010-03-17] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
- HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [268680 2019-08-15] (AVAST Software s.r.o. -> AVAST Software)
- HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
- HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [302904 2019-10-25] (Apple Inc. -> Apple Inc.)
- HKLM-x32\...\Run: [NUSB3MON] => c:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-17] (Renesas Electronics Corporation -> Renesas Electronics Corporation)
- HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [Brak podpisu cyfrowego]
- HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle America, Inc. -> Oracle Corporation)
- HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA
- HKU\S-1-5-21-382856504-3390691762-2710609008-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [18630056 2018-09-10] (Piriform Ltd -> Piriform Ltd)
- HKU\S-1-5-21-382856504-3390691762-2710609008-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2019-10-25] (Apple Inc. -> Apple Inc.)
- HKU\S-1-5-21-382856504-3390691762-2710609008-1000\...\MountPoints2: {a4d943ed-8ee1-11e2-b32c-402cf4d9289b} - G:\autorun.exe
- HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
- HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.79\Installer\chrmstp.exe [2019-12-11] (Google LLC -> Google LLC)
- HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
- HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\77.2.2153.120\Installer\chrmstp.exe [2019-11-27] (AVAST Software s.r.o. -> AVAST Software)
- HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{73FA19D0-2D75-11D2-995D-00C04F98BBC9}] ->
- HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.81\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
- HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2019-05-03] (Adobe Inc. -> Adobe Systems, Inc.)
- HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
- Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\RescueTime.lnk [2015-12-14]
- ShortcutTarget: RescueTime.lnk -> C:\Program Files (x86)\RescueTime\RescueTime.exe (RescueTime, Inc.) [Brak podpisu cyfrowego]
- Startup: C:\Users\kps\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2019-09-13]
- ShortcutTarget: MEGAsync.lnk -> C:\ProgramData\MEGAsync\MEGAsync.exe (Mega Limited -> Mega Limited)
- FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA
- ==================== Zaplanowane zadania (filtrowane) ============
- (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
- Task: {062AAA77-E822-44A1-A9AA-9547E8A654E0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc -> Google Inc.)
- Task: {092409E4-9BDF-448E-A135-9815E7461B59} - System32\Tasks\avastBCLRestart_chrome.exe => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- Task: {14B93714-79C6-4334-894B-450B163C1809} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-03-22] (AVAST Software s.r.o. -> AVAST Software)
- Task: {1C44ABFC-A869-4D0F-92E7-5C2470A5532A} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-02-04] (Piriform Software Ltd -> Piriform Software Ltd)
- Task: {3424E2E3-4AB0-4351-8E79-721B6767C9D9} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-382856504-3390691762-2710609008-1000Core => C:\Users\kps\AppData\Local\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc -> Dropbox, Inc.)
- Task: {34C21D10-5A54-458A-9855-E361B19AA982} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1873288 2019-09-18] (AVAST Software s.r.o. -> AVAST Software)
- Task: {3CA60A6F-004A-4FF8-A152-B4C7E0E07639} - System32\Tasks\avastBCLRestartS-1-5-21-382856504-3390691762-2710609008-1000 => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
- Task: {5658CDA7-B0EA-4A85-AAF3-A119993CA5D9} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_303_Plugin.exe [1457720 2019-12-10] (Adobe Inc. -> Adobe)
- Task: {58D8B73F-D182-40BA-A76D-2CCA81AD7E3D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc -> Google Inc.)
- Task: {5C9CDCCC-E7F4-4443-B710-FCF8108B5C65} - System32\Tasks\{ABBF335E-C140-46E1-B5B4-D2900D2BC0F7} => C:\Windows\system32\pcalua.exe -a E:\Programy\instalki\xampp-win32-1.7.4-VC6-installer.exe -d E:\Programy\instalki
- Task: {5F8919A7-63E5-4C62-B2F7-7861F988D806} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
- Task: {7AB0B8AE-5CBF-4D79-B89C-828CBBB413C9} - System32\Tasks\HPCustParticipation HP Deskjet 1050 J410 series => C:\Program Files\HP\HP Deskjet 1050 J410 series\Bin\HPCustPartic.exe [4119656 2012-10-02] (Hewlett Packard -> Hewlett-Packard Co.)
- Task: {88F4D640-0DA5-40E9-B66D-0D58BDB61E5F} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1857552 2019-11-05] (AVAST Software s.r.o. -> AVAST Software)
- Task: {8CED2B4D-39A3-41B1-8F04-8230ACAFB594} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
- Task: {8F6F2540-5F2C-4D5D-A209-48978A4C3F02} - System32\Tasks\{F3C4356F-A9D8-468A-9940-B44EBAE05607} => C:\Windows\system32\pcalua.exe -a "C:\Users\kps\Desktop\JRE - Flip Installer - 3.4.7.112.exe" -d C:\Users\kps\Desktop
- Task: {933F1274-56A5-4F35-A21C-0ACB1076D9D5} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-12-10] (Adobe Inc. -> Adobe)
- Task: {965DAADC-453A-44C5-856A-A23AAED9F838} - System32\Tasks\G2MUpdateTask-S-1-5-21-382856504-3390691762-2710609008-1000 => C:\Users\kps\AppData\Local\GoToMeeting\16180\g2mupdate.exe [32256 2019-12-07] (LogMeIn, Inc. -> LogMeIn, Inc.)
- Task: {A922A7B2-7BD5-4EDE-8A19-3A0202048278} - System32\Tasks\G2MUploadTask-S-1-5-21-382856504-3390691762-2710609008-1000 => C:\Users\kps\AppData\Local\GoToMeeting\16180\g2mupload.exe [32256 2019-12-07] (LogMeIn, Inc. -> LogMeIn, Inc.)
- Task: {AA46A42D-57F7-4DD5-88B8-69AFAE66DCFF} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [13797712 2018-09-10] (Piriform Ltd -> Piriform Ltd)
- Task: {AE790560-C535-4D7E-9A15-0CA742FEDA77} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
- Task: {BBF4E725-0642-4FC8-8BBF-88C5D1DE4D78} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-382856504-3390691762-2710609008-1000 => C:\ProgramData\MEGAsync\MEGAupdater.exe [615160 2019-09-16] (Mega Limited -> Mega Limited)
- Task: {C564BD26-B060-4935-9DE9-DEA35E7B67A3} - System32\Tasks\{BC73714B-0B37-4F82-87F9-D21BCFD8D748} => C:\Windows\system32\pcalua.exe -a "C:\Users\kps\Desktop\Hp drivery\sp48432 - chipset instal utility.exe" -d "C:\Users\kps\Desktop\Hp drivery"
- Task: {CFA7EAAD-C425-4654-96EE-DE0DAFEC8A88} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
- Task: {DD301ED6-B008-4CBB-AEBA-66F228A3C7EC} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-382856504-3390691762-2710609008-1000UA => C:\Users\kps\AppData\Local\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc -> Dropbox, Inc.)
- Task: {E0DC7B4F-FFAC-4DC5-9D09-734D19CE2A12} - System32\Tasks\AdobeAAMUpdater-1.0-kps-Kombajn-kps => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
- Task: {E4B9369C-8850-41A7-B1C4-A9EB4624D972} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
- Task: {E4EE3CFF-9DEC-43A7-A3D2-BF021350A73C} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1857552 2019-11-05] (AVAST Software s.r.o. -> AVAST Software)
- Task: {EAE9CC83-2391-45B2-B918-4D6CA4BD78A1} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3942792 2019-08-15] (AVAST Software s.r.o. -> AVAST Software)
- Task: {EE172D90-4453-4ACE-9621-6ED0793C231C} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-03-22] (AVAST Software s.r.o. -> AVAST Software)
- (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.)
- Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-382856504-3390691762-2710609008-1000Core.job => C:\Users\kps\AppData\Local\Dropbox\Update\DropboxUpdate.exe
- Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-382856504-3390691762-2710609008-1000UA.job => C:\Users\kps\AppData\Local\Dropbox\Update\DropboxUpdate.exe
- Task: C:\Windows\Tasks\G2MUpdateTask-S-1-5-21-382856504-3390691762-2710609008-1000.job => C:\Users\kps\AppData\Local\GoToMeeting\16180\g2mupdate.exe
- Task: C:\Windows\Tasks\G2MUploadTask-S-1-5-21-382856504-3390691762-2710609008-1000.job => C:\Users\kps\AppData\Local\GoToMeeting\16180\g2mupload.exe
- ==================== Internet (filtrowane) ====================
- (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)
- Winsock: Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
- Winsock: Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
- Winsock: Catalog5 10 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
- Winsock: Catalog5-x64 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
- Winsock: Catalog5-x64 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
- Winsock: Catalog5-x64 10 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
- Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt
- Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
- Tcpip\..\Interfaces\{2AE82204-AD61-4AF0-A110-1135D616F648}: [DhcpNameServer] 192.168.0.1
- Tcpip\..\Interfaces\{4D9748EB-A5E7-456D-95C9-0756A43940F2}: [NameServer] 8.8.8.8,8.8.4.4
- Tcpip\..\Interfaces\{4D9748EB-A5E7-456D-95C9-0756A43940F2}: [DhcpNameServer] 192.168.0.1
- Tcpip\..\Interfaces\{9DF7285E-7084-40F3-9798-E5E3401FCDD8}: [DhcpNameServer] 172.20.10.1
- HKLM\System\...\Parameters\PersistentRoutes: [169.254.0.0,255.255.0.0,192.168.0.3,1]
- Internet Explorer:
- ==================
- HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
- HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
- HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com
- HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
- HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
- URLSearchHook: [S-1-5-21-382856504-3390691762-2710609008-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-12152019093740585] UWAGA => Brak domyślnego URLSearchHook
- SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
- SearchScopes: HKU\S-1-5-21-382856504-3390691762-2710609008-1000 -> {EEDBDB8E-479C-478C-B9DD-506FA71D41B2} URL = hxxp://www.bing.com/search?FORM=WLETDF&PC=WLEM&q={searchTerms}&src=IE-SearchBox
- BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexbho.dll [2013-11-28] (Canon Inc. -> CANON INC.)
- BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_131\bin\ssv.dll [2017-04-24] (Oracle America, Inc. -> Oracle Corporation)
- BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
- BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2019-12-13] (McAfee, LLC -> McAfee, Inc.)
- BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-01-16] (Microsoft Corporation -> Microsoft Corporation)
- BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-04-24] (Oracle America, Inc. -> Oracle Corporation)
- BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2013-11-28] (Canon Inc. -> CANON INC.)
- BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\ssv.dll [2017-04-24] (Oracle America, Inc. -> Oracle Corporation)
- BHO-x32: Pomocnik logowania za pomocą konta Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
- BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2019-12-13] (McAfee, LLC -> McAfee, Inc.)
- BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\front page\Office14\URLREDIR.DLL [2010-01-16] (Microsoft Corporation -> Microsoft Corporation)
- BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-04-24] (Oracle America, Inc. -> Oracle Corporation)
- Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - Brak pliku
- Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexhlp.dll [2013-11-28] (Canon Inc. -> CANON INC.)
- Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2013-11-28] (Canon Inc. -> CANON INC.)
- Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll Brak pliku
- Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Brak pliku
- FireFox:
- ========
- FF DefaultProfile: u2z9jybl.default
- FF ProfilePath: C:\Users\kps\AppData\Roaming\Mozilla\Firefox\Profiles\u2z9jybl.default [2019-12-15]
- FF Homepage: Mozilla\Firefox\Profiles\u2z9jybl.default -> hxxps://www.google.com/?trackid=sp-006
- FF NewTab: Mozilla\Firefox\Profiles\u2z9jybl.default -> about:newtab
- FF Notifications: Mozilla\Firefox\Profiles\u2z9jybl.default -> hxxps://www.dobrzemieszkaj.pl; hxxps://czasnawnetrze.pl
- FF Extension: (Grammarly for Firefox) - C:\Users\kps\AppData\Roaming\Mozilla\Firefox\Profiles\u2z9jybl.default\Extensions\87677a2c52b84ad3a151a4a72f5bd3c4@jetpack.xpi [2019-10-19]
- FF Extension: (English (GB) Language Pack) - C:\Users\kps\AppData\Roaming\Mozilla\Firefox\Profiles\u2z9jybl.default\Extensions\langpack-en-GB@firefox.mozilla.org.xpi [2019-10-26]
- FF Extension: (Avast SafePrice | Porównania, promocje, kupony) - C:\Users\kps\AppData\Roaming\Mozilla\Firefox\Profiles\u2z9jybl.default\Extensions\sp@avast.com.xpi [2019-11-27]
- FF Extension: (Avast Online Security) - C:\Users\kps\AppData\Roaming\Mozilla\Firefox\Profiles\u2z9jybl.default\Extensions\wrc@avast.com.xpi [2019-08-17]
- FF Extension: (Brak nazwy) - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi [nie znaleziono]
- FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2019-12-13]
- FF SearchPlugin: C:\Users\kps\AppData\Roaming\Mozilla\Firefox\Profiles\u2z9jybl.default\searchplugins\google-avast.xml [2016-03-09]
- FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
- FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
- FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_303.dll [2019-12-10] (Adobe Inc. -> )
- FF Plugin: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-04-24] (Oracle America, Inc. -> Oracle Corporation)
- FF Plugin: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-04-24] (Oracle America, Inc. -> Oracle Corporation)
- FF Plugin: @microsoft.com/GENUINE -> disabled [Brak pliku]
- FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] (Microsoft Corporation -> Microsoft Corporation)
- FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
- FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-10-25] (Adobe Systems Incorporated -> Adobe Systems)
- FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_303.dll [2019-12-10] (Adobe Inc. -> )
- FF Plugin-x32: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-04-24] (Oracle America, Inc. -> Oracle Corporation)
- FF Plugin-x32: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-04-24] (Oracle America, Inc. -> Oracle Corporation)
- FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Brak pliku]
- FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] (Microsoft Corporation -> Microsoft Corporation)
- FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\FRONTP~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
- FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\FRONTP~1\Office14\NPSPWRAP.DLL [2010-01-10] (Microsoft Corporation -> Microsoft Corporation)
- FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
- FF Plugin-x32: @Nero.com/KM -> C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL [2012-12-19] (Nero AG -> Nero AG)
- FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-13] (Google LLC -> Google LLC)
- FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-13] (Google LLC -> Google LLC)
- FF Plugin-x32: @videolan.org/vlc,version=2.0.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
- FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
- FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
- FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
- FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
- FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
- FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
- FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-12-02] (Adobe Inc. -> Adobe Systems Inc.)
- FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-10-25] (Adobe Systems Incorporated -> Adobe Systems)
- FF Plugin HKU\S-1-5-21-382856504-3390691762-2710609008-1000: @alibaba.com/npAliSSOLogin;version=1.0 -> C:\Program Files (x86)\Trademanager\npAliSSOLogin.dll [Brak pliku]
- FF Plugin HKU\S-1-5-21-382856504-3390691762-2710609008-1000: @zoom.us/ZoomVideoPlugin -> C:\Users\kps\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2019-06-13] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
- FF Plugin HKU\S-1-5-21-382856504-3390691762-2710609008-1000: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [Brak pliku]
- Chrome:
- =======
- CHR DefaultProfile: Default
- CHR StartupUrls: Default -> "hxxp://google.co.uk/"
- CHR Session Restore: Default -> [funkcja włączona]
- CHR Notifications: Default -> hxxp://tomato-timer.com; hxxps://benangel.pushcrew.com; hxxps://charzynska.pl; hxxps://digitalmarketer.pushcrew.com; hxxps://goto.clickfunnels.com; hxxps://upviral.com; hxxps://www.digitalmarketer.com; hxxps://www.pakamera.pl; hxxps://www.quicksprout.com; hxxps://www.realsimple.com; hxxps://www.redlinesteel.com; hxxps://www.salesmanago.pl; hxxps://www.upwork.com; hxxps://www.youtube.com
- CHR Profile: C:\Users\kps\AppData\Local\Google\Chrome\User Data\Default [2019-12-15]
- CHR Extension: (Tłumacz Google) - C:\Users\kps\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2017-10-20]
- CHR Extension: (Screenshot stron www - Screenshot Extension) - C:\Users\kps\AppData\Local\Google\Chrome\User Data\Default\Extensions\akgpcdalpfphjmfifkmfbpdmgdmeeaeo [2019-07-31]
- CHR Extension: (Google Optimize) - C:\Users\kps\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhdplaindhdkiflmbfbciehdccfhegci [2019-11-17]
- CHR Extension: (Vimeo™ Video Downloader) - C:\Users\kps\AppData\Local\Google\Chrome\User Data\Default\Extensions\cgpbghdbejagejmciefmekcklikpoeel [2019-12-11]
- CHR Extension: (OneTab) - C:\Users\kps\AppData\Local\Google\Chrome\User Data\Default\Extensions\chphlpgkkbolifaimnlloiipkdnihall [2017-02-20]
- CHR Extension: (Clear Cache) - C:\Users\kps\AppData\Local\Google\Chrome\User Data\Default\Extensions\cppjkneekbjaeellbfkmgnhonkkjfpdn [2018-01-03]
- CHR Extension: (MozBar) - C:\Users\kps\AppData\Local\Google\Chrome\User Data\Default\Extensions\eakacpaijcpapndcfffdgphdiccmpknp [2019-11-01]
- CHR Extension: (Facebook Pixel Helper) - C:\Users\kps\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdgfkebogiimcoedlicjlajpkdmockpc [2019-09-25]
- CHR Extension: (Fill Your Funnel) - C:\Users\kps\AppData\Local\Google\Chrome\User Data\Default\Extensions\gabdofalmjgpgmmhidipabggamlgmilm [2019-04-04]
- CHR Extension: (Dokumenty Google offline) - C:\Users\kps\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-15]
- CHR Extension: (AdBlock — best ad blocker) - C:\Users\kps\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-12-07]
- CHR Extension: (Avast Online Security) - C:\Users\kps\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2019-07-17]
- CHR Extension: (LastPass: Free Password Manager) - C:\Users\kps\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2019-12-14]
- CHR Extension: (Clipular! Research, save & share screenshot) - C:\Users\kps\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmjbgcjbgmcfgbgikmbdioggjlhjegpp [2015-05-27]
- CHR Extension: (Grammarly for Chrome) - C:\Users\kps\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2019-12-14]
- CHR Extension: (WhatsGreen Multi Messenger) - C:\Users\kps\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbhfoiaobflocffnclkigpkeoagheimn [2019-01-14]
- CHR Extension: (Facebook Screen Sharing) - C:\Users\kps\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncfpggehkhmjpdjpefomjchjafhmbnai [2019-01-16]
- CHR Extension: (Save to Pocket) - C:\Users\kps\AppData\Local\Google\Chrome\User Data\Default\Extensions\niloccemoadcdkdjlinkgdfekeahmflj [2019-07-25]
- CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\kps\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
- CHR Extension: (SEO for Chrome) - C:\Users\kps\AppData\Local\Google\Chrome\User Data\Default\Extensions\oangcciaeihlfmhppegpdceadpfaoclj [2015-06-11]
- CHR Extension: (Checker Plus for Gmail™) - C:\Users\kps\AppData\Local\Google\Chrome\User Data\Default\Extensions\oeopbcgkkoapgobdbedcemjljbihmemj [2019-10-24]
- CHR Extension: (vidIQ Vision for YouTube) - C:\Users\kps\AppData\Local\Google\Chrome\User Data\Default\Extensions\pachckjkecffpdphbpmfolblodfkgbhl [2019-12-14]
- CHR Extension: (Chrome Media Router) - C:\Users\kps\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-12-13]
- CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx
- CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx <nie znaleziono>
- CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
- CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
- CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx
- CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <nie znaleziono>
- CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl]
- CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx <nie znaleziono>
- ==================== Usługi (filtrowane) ===================
- (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
- R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [744640 2016-10-25] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
- R2 AESTFilters; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_b20011ea53a6b83e\AESTSr64.exe [89600 2009-03-03] (Microsoft Windows Hardware Compatibility Publisher -> Andrea Electronics Corporation)
- R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3147344 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
- R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2914896 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
- R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2019-08-26] (Apple Inc. -> Apple Inc.)
- R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5975136 2019-08-15] (AVAST Software s.r.o. -> AVAST Software)
- S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-03-22] (AVAST Software s.r.o. -> AVAST Software)
- R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [405072 2019-08-15] (AVAST Software s.r.o. -> AVAST Software)
- R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [416576 2019-08-15] (AVAST Software s.r.o. -> AVAST Software)
- S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-03-22] (AVAST Software s.r.o. -> AVAST Software)
- S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\77.2.2153.120\elevation_service.exe [970088 2019-11-05] (AVAST Software s.r.o. -> AVAST Software)
- S3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [245760 2010-01-25] (Brother Industries, Ltd.) [Brak podpisu cyfrowego]
- R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [140456 2012-03-28] (Canon Inc. -> )
- R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6960640 2019-12-02] (Malwarebytes Inc -> Malwarebytes)
- R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [913208 2019-12-13] (McAfee, LLC -> McAfee, Inc.)
- R2 NVWMI; C:\Windows\system32\nvwmi64.exe [1248032 2013-04-19] (NVIDIA Corporation -> NVIDIA Corporation)
- S3 OpenVPNService; C:\Program Files (x86)\HMA! Pro VPN\bin\openvpnserv.exe [37176 2014-09-04] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
- R2 STacSV; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_b20011ea53a6b83e\STacSV64.exe [244736 2010-03-17] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
- S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [Brak podpisu cyfrowego]
- R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5702416 2015-09-11] (TeamViewer -> TeamViewer GmbH)
- S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
- R2 wlidsvc; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2292480 2012-07-17] (Microsoft Corporation -> Microsoft Corp.)
- R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.231\WsAppService.exe [493792 2017-10-24] (Wondershare Technology Co.,Ltd -> Wondershare)
- S3 WsDrvInst; H:\Programy\MobileTrans\DriverInstall.exe [102112 2017-10-31] (Wondershare Technology Co.,Ltd -> Wondershare)
- ===================== Sterowniki (filtrowane) ===================
- (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
- R3 Accelerometer; C:\Windows\System32\DRIVERS\Accelerometer.sys [43320 2011-05-13] (Hewlett-Packard Company -> Hewlett-Packard Company)
- R3 AgereSoftModem; C:\Windows\System32\DRIVERS\agrsm64.sys [1146880 2009-06-10] (Microsoft Windows -> LSI Corp)
- R3 AMPPAL; C:\Windows\System32\DRIVERS\AMPPAL.sys [198144 2012-03-15] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
- S3 AMPPALP; C:\Windows\System32\DRIVERS\amppal.sys [198144 2012-03-15] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
- R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [209552 2019-08-15] (AVAST Software s.r.o. -> AVAST Software)
- R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [263008 2019-08-15] (AVAST Software s.r.o. -> AVAST Software)
- R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [205848 2019-08-15] (AVAST Software s.r.o. -> AVAST Software)
- R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [61472 2019-08-15] (AVAST Software s.r.o. -> AVAST Software)
- R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42288 2019-08-15] (AVAST Software s.r.o. -> AVAST Software)
- R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [169408 2019-08-15] (AVAST Software s.r.o. -> AVAST Software)
- R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2018-11-21] (AVAST Software s.r.o. -> AVAST Software)
- R1 aswNetSec; C:\Windows\System32\drivers\aswNetSec.sys [552848 2019-08-15] (AVAST Software s.r.o. -> AVAST Software)
- R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [112312 2019-08-15] (AVAST Software s.r.o. -> AVAST Software)
- R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [87944 2019-08-15] (AVAST Software s.r.o. -> AVAST Software)
- R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [1030784 2019-08-15] (AVAST Software s.r.o. -> AVAST Software)
- R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [478096 2019-08-27] (AVAST Software s.r.o. -> AVAST Software)
- R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [236024 2019-08-15] (AVAST Software s.r.o. -> AVAST Software)
- R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [387176 2019-08-15] (AVAST Software s.r.o. -> AVAST Software)
- R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-03-17] (DT Soft Ltd -> DT Soft Ltd)
- S3 hidkmdf; C:\Windows\System32\DRIVERS\hidkmdf.sys [14320 2012-12-20] (Wacom Technology Corp. -> Windows (R) Win 7 DDK provider)
- R0 hpdskflt; C:\Windows\System32\DRIVERS\hpdskflt.sys [30008 2011-05-13] (Hewlett-Packard Company -> Hewlett-Packard Company)
- R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [216544 2019-12-15] (Malwarebytes Inc -> Malwarebytes)
- R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [278344 2019-12-15] (Malwarebytes Inc -> Malwarebytes)
- S3 Netaapl; C:\Windows\System32\DRIVERS\netaapl64.sys [23040 2013-07-25] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
- R3 nusb3hub; C:\Windows\System32\DRIVERS\nusb3hub.sys [80384 2010-12-10] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
- R3 nusb3xhc; C:\Windows\System32\DRIVERS\nusb3xhc.sys [181248 2010-12-10] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
- S2 port_nt; c:\windows\SysWOW64\drivers\port_nt.sys [3608 2000-10-23] () [Brak podpisu cyfrowego]
- R3 RICOH SmartCard Reader; C:\Windows\System32\DRIVERS\rismcx64.sys [79488 2006-10-03] (Microsoft Windows Hardware Compatibility Publisher -> RICOH Company, Ltd.)
- R2 rismxdp; C:\Windows\System32\DRIVERS\rixdpx64.sys [55296 2006-11-18] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
- R1 SamsungMonitorFirmware; C:\Windows\system32\drivers\MFWCtwl.sys [21360 2011-12-26] (Samsung Electronics CO., LTD. -> Samsung Electronics, Inc. ) [Brak podpisu cyfrowego]
- R3 STHDA; C:\Windows\System32\DRIVERS\stwrt64.sys [505856 2010-03-17] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
- R3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [40664 2014-09-04] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
- S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2015-06-10] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
- S3 usbohci; C:\Windows\system32\drivers\usbohci.sys [25600 2011-05-11] (Microsoft Corporation) [Brak podpisu cyfrowego]
- S3 usbuhci; C:\Windows\system32\drivers\usbuhci.sys [30720 2011-05-11] (Microsoft Corporation) [Brak podpisu cyfrowego]
- S3 WacHidRouter; system32\DRIVERS\wachidrouter.sys [X]
- S3 wacomrouterfilter; system32\DRIVERS\wacomrouterfilter.sys [X]
- ==================== NetSvcs (filtrowane) ===================
- (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
- ==================== Trzy miesiące (utworzone) ===================
- (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
- 2019-12-15 09:17 - 2019-12-15 09:17 - 000278344 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
- 2019-12-15 09:17 - 2019-12-15 09:17 - 000216544 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
- 2019-12-07 00:17 - 2019-12-07 00:17 - 000000000 ____D C:\Users\kps\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
- 2019-12-02 23:41 - 2019-12-13 14:05 - 000000000 ____D C:\Users\kps\AppData\LocalLow\BitTorrent
- 2019-12-02 16:52 - 2019-12-02 16:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
- 2019-12-02 16:51 - 2019-12-02 16:51 - 000001707 _____ C:\Users\Public\Desktop\iTunes.lnk
- 2019-12-02 16:51 - 2019-12-02 16:51 - 000001707 _____ C:\ProgramData\Desktop\iTunes.lnk
- 2019-12-02 16:51 - 2019-12-02 16:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
- 2019-12-02 16:51 - 2019-12-02 16:51 - 000000000 ____D C:\Program Files\iPod
- 2019-12-02 16:50 - 2019-12-02 16:51 - 000000000 ____D C:\Program Files\iTunes
- 2019-12-02 16:46 - 2019-12-02 16:46 - 000000000 ____D C:\Windows\system32\Tasks\Apple
- 2019-12-02 16:46 - 2019-12-02 16:46 - 000000000 ____D C:\Program Files (x86)\Apple Software Update
- 2019-12-02 10:52 - 2019-12-02 10:52 - 000001908 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
- 2019-12-02 10:52 - 2019-12-02 10:52 - 000001908 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
- 2019-12-02 10:52 - 2019-12-02 10:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
- 2019-12-02 10:51 - 2019-12-02 10:51 - 000000000 ____D C:\Program Files\Malwarebytes
- 2019-11-22 01:05 - 2019-11-22 01:05 - 000255352 _____ (Audible, Inc.) C:\Windows\SysWOW64\awrdscdc.ax
- 2019-11-22 01:05 - 2019-11-22 01:05 - 000001965 _____ C:\Users\kps\Desktop\Audible Manager.lnk
- 2019-11-22 01:05 - 2019-11-22 01:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AudibleManager
- 2019-11-22 01:05 - 2003-03-18 21:20 - 001060864 ____N (Microsoft Corporation) C:\Windows\SysWOW64\mfc71.dll
- 2019-11-22 01:05 - 2003-03-18 20:14 - 000499712 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msvcp71.dll
- 2019-11-22 01:05 - 2003-02-21 04:42 - 000348160 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll
- 2019-11-22 01:05 - 2001-08-17 22:43 - 000024576 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msxml3a.dll
- 2019-11-22 01:04 - 2019-11-22 01:05 - 000000000 ____D C:\Users\kps\Documents\Audible
- 2019-11-22 01:04 - 2019-11-22 01:05 - 000000000 ____D C:\Program Files (x86)\Audible
- 2019-10-03 14:46 - 2019-12-10 01:21 - 000003446 _____ C:\Windows\system32\Tasks\AdobeGCInvoker-1.0
- 2019-10-03 14:46 - 2019-12-06 11:12 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
- 2019-10-03 14:46 - 2019-12-06 11:12 - 000000000 ___HD C:\ProgramData\Documents\AdobeGCData
- 2019-09-28 09:49 - 2019-09-28 09:49 - 007976792 _____ (Tim Kosse) C:\Users\kps\Downloads\FileZilla_3.45.1_win64-setup.exe
- 2019-09-17 10:33 - 2019-09-17 10:33 - 000000000 ____D C:\Users\kps\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flvto Youtube Downloader
- ==================== Trzy miesiące (zmodyfikowane) ==================
- (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
- 2019-12-15 09:53 - 2016-12-28 13:49 - 000000000 ____D C:\FRST
- 2019-12-15 09:48 - 2015-05-31 01:53 - 000000622 _____ C:\Windows\Tasks\G2MUploadTask-S-1-5-21-382856504-3390691762-2710609008-1000.job
- 2019-12-15 09:42 - 2014-09-09 20:17 - 000000225 _____ C:\Users\kps\BullseyeCoverageError.txt
- 2019-12-15 09:42 - 2014-09-09 20:17 - 000000000 ____D C:\Users\kps\AppData\Local\Unity
- 2019-12-15 09:41 - 2014-05-20 21:28 - 000000000 ____D C:\Users\kps\AppData\Local\CrashDumps
- 2019-12-15 09:18 - 2018-03-22 23:33 - 000000000 ____D C:\Users\kps\AppData\Local\AVAST Software
- 2019-12-15 09:16 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
- 2019-12-15 00:57 - 2009-07-14 05:45 - 000016832 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
- 2019-12-15 00:57 - 2009-07-14 05:45 - 000016832 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
- 2019-12-15 00:13 - 2015-06-20 14:28 - 000001154 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-382856504-3390691762-2710609008-1000UA.job
- 2019-12-15 00:08 - 2014-02-04 01:11 - 000000526 _____ C:\Windows\Tasks\G2MUpdateTask-S-1-5-21-382856504-3390691762-2710609008-1000.job
- 2019-12-14 11:13 - 2015-06-20 14:28 - 000001102 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-382856504-3390691762-2710609008-1000Core.job
- 2019-12-14 01:28 - 2017-06-11 19:36 - 000000000 ____D C:\Users\kps\AppData\Roaming\BitTorrent
- 2019-12-13 21:08 - 2019-07-22 08:31 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
- 2019-12-13 21:01 - 2013-03-12 23:55 - 000003484 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
- 2019-12-13 21:01 - 2013-03-12 23:55 - 000003356 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
- 2019-12-13 14:17 - 2013-03-16 16:59 - 000000000 ____D C:\Users\kps\AppData\Roaming\vlc
- 2019-12-12 15:57 - 2016-02-17 00:06 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
- 2019-12-11 15:10 - 2009-07-14 06:32 - 000000000 ____D C:\Windows\system32\FxsTmp
- 2019-12-11 15:08 - 2018-03-08 19:38 - 000000000 ____D C:\Users\kps\AppData\Local\GoToMeeting
- 2019-12-11 01:02 - 2013-03-12 23:56 - 000002230 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
- 2019-12-11 01:02 - 2013-03-12 23:56 - 000002189 _____ C:\Users\Public\Desktop\Google Chrome.lnk
- 2019-12-11 01:02 - 2013-03-12 23:56 - 000002189 _____ C:\ProgramData\Desktop\Google Chrome.lnk
- 2019-12-10 13:15 - 2018-03-13 23:15 - 000004564 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
- 2019-12-10 13:15 - 2013-03-12 23:56 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
- 2019-12-10 13:15 - 2013-03-12 23:56 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
- 2019-12-10 13:15 - 2013-03-12 23:56 - 000004412 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
- 2019-12-10 13:15 - 2013-03-12 23:56 - 000000000 ____D C:\Windows\SysWOW64\Macromed
- 2019-12-10 13:15 - 2013-03-12 23:56 - 000000000 ____D C:\Windows\system32\Macromed
- 2019-12-10 01:26 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
- 2019-12-10 01:21 - 2018-04-10 21:08 - 000004128 _____ C:\Windows\system32\Tasks\CCleaner Update
- 2019-12-10 01:21 - 2016-03-06 16:42 - 000002792 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
- 2019-12-10 01:21 - 2015-06-20 14:28 - 000004134 _____ C:\Windows\system32\Tasks\DropboxUpdateTaskUserS-1-5-21-382856504-3390691762-2710609008-1000UA
- 2019-12-10 01:21 - 2015-06-20 14:28 - 000003738 _____ C:\Windows\system32\Tasks\DropboxUpdateTaskUserS-1-5-21-382856504-3390691762-2710609008-1000Core
- 2019-12-10 01:21 - 2015-05-31 01:53 - 000003654 _____ C:\Windows\system32\Tasks\G2MUploadTask-S-1-5-21-382856504-3390691762-2710609008-1000
- 2019-12-10 01:21 - 2014-12-30 01:23 - 000004476 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
- 2019-12-10 01:21 - 2014-08-08 01:25 - 000003246 _____ C:\Windows\system32\Tasks\SidebarExecute
- 2019-12-10 01:21 - 2014-02-04 01:11 - 000003558 _____ C:\Windows\system32\Tasks\G2MUpdateTask-S-1-5-21-382856504-3390691762-2710609008-1000
- 2019-12-10 01:21 - 2013-03-18 18:33 - 000003504 _____ C:\Windows\system32\Tasks\AdobeAAMUpdater-1.0-kps-Kombajn-kps
- 2019-12-10 00:55 - 2015-12-14 20:02 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software
- 2019-12-09 09:25 - 2013-03-17 19:48 - 000000000 ____D C:\Windows\Minidump
- 2019-12-07 00:18 - 2014-04-08 16:21 - 000000000 ____D C:\Users\kps\AppData\Roaming\Dropbox
- 2019-12-05 13:13 - 2016-07-08 21:31 - 000000034 _____ C:\Users\kps\AppData\Roaming\AdobeWLCMCache.dat
- 2019-12-02 16:46 - 2013-03-13 00:03 - 000002519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
- 2019-12-02 10:52 - 2013-12-16 20:57 - 000000000 ____D C:\Users\kps\AppData\Local\cache
- 2019-11-29 15:18 - 2017-02-01 20:37 - 000000000 ____D C:\Users\kps\AppData\LocalLow\Mozilla
- 2019-11-29 00:37 - 2013-04-22 17:02 - 000000132 _____ C:\Users\kps\AppData\Roaming\Adobe PNG Format CS5 Prefs
- 2019-11-27 19:39 - 2019-04-12 12:09 - 000003732 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
- 2019-11-27 19:39 - 2019-04-12 12:09 - 000003150 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Logon)
- 2019-11-27 19:39 - 2018-03-22 23:34 - 000002435 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
- 2019-11-22 19:28 - 2013-03-17 10:18 - 000000000 ____D C:\Users\kps\AppData\Roaming\FileZilla
- 2019-11-21 14:32 - 2013-08-11 12:03 - 000000000 ____D C:\ProgramData\boost_interprocess
- 2019-11-21 00:33 - 2016-11-22 16:41 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
- 2019-11-21 00:33 - 2013-03-13 00:01 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
- ==================== Pliki w katalogu głównym wybranych folderów ========
- 2013-12-26 16:11 - 2013-12-26 16:11 - 000000088 _____ () C:\Users\kps\AppData\Roaming\.95d691779473f3e03bc4b4e56319d74c.key
- 2016-02-08 21:41 - 2016-02-08 21:43 - 000000132 _____ () C:\Users\kps\AppData\Roaming\Adobe GIF Format CS5 Prefs
- 2013-04-22 17:02 - 2019-11-29 00:37 - 000000132 _____ () C:\Users\kps\AppData\Roaming\Adobe PNG Format CS5 Prefs
- 2016-07-08 21:31 - 2019-12-05 13:13 - 000000034 _____ () C:\Users\kps\AppData\Roaming\AdobeWLCMCache.dat
- 2013-04-15 11:38 - 2014-05-16 02:17 - 000000116 _____ () C:\Users\kps\AppData\Roaming\Camdata.ini
- 2013-04-15 11:38 - 2014-05-16 02:17 - 000000408 _____ () C:\Users\kps\AppData\Roaming\CamLayout.ini
- 2013-04-15 11:38 - 2014-05-16 02:17 - 000000408 _____ () C:\Users\kps\AppData\Roaming\CamShapes.ini
- 2013-04-15 11:38 - 2014-05-16 02:17 - 000004535 _____ () C:\Users\kps\AppData\Roaming\CamStudio.cfg
- 2018-02-18 11:58 - 2019-10-14 10:10 - 000001192 _____ () C:\Users\kps\AppData\Roaming\downloads.json
- 2013-08-23 13:16 - 2015-05-14 18:13 - 000000120 _____ () C:\Users\kps\AppData\Roaming\GWMC-I92M
- 2013-03-20 09:39 - 2013-04-20 12:36 - 000000132 _____ () C:\Users\kps\AppData\Roaming\Preferencje Adobe CS5 dla formatu PNG
- 2013-08-17 19:19 - 2016-06-01 11:49 - 000000268 _____ () C:\Users\kps\AppData\Roaming\RO39-2M3Q
- 2013-12-16 20:58 - 2013-12-16 20:58 - 000000096 _____ () C:\Users\kps\AppData\Roaming\version2.xml
- 2013-03-20 20:27 - 2013-03-20 20:27 - 000000600 _____ () C:\Users\kps\AppData\Roaming\winscp.rnd
- 2014-03-23 20:50 - 2014-03-23 20:56 - 000001456 _____ () C:\Users\kps\AppData\Local\Adobe Save for Web 12.0 Prefs
- 2014-05-14 12:53 - 2019-10-14 13:16 - 000006144 _____ () C:\Users\kps\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
- 2018-10-01 09:35 - 2018-10-01 09:35 - 000000000 _____ () C:\Users\kps\AppData\Local\oobelibMkey.log
- 2013-11-05 17:41 - 2019-08-06 09:01 - 000000600 _____ () C:\Users\kps\AppData\Local\PUTTY.RND
- ==================== SigCheckExt =========================
- 2013-03-15 16:15 - 2012-07-05 12:32 - 000084480 _____ (Brother Industries, Ltd.) C:\Windows\system32\BrNetSti.dll
- 2013-03-15 16:15 - 2010-09-23 09:13 - 000051712 _____ (Brother Industries,Ltd) C:\Windows\system32\Brnsplg.dll
- 2013-03-15 16:15 - 2005-04-22 05:36 - 000143360 _____ C:\Windows\system32\BrSNMP64.dll
- 2013-03-15 16:15 - 2010-09-23 09:14 - 000058880 _____ (Brother Industries,Ltd.) C:\Windows\system32\BrWiaNCp.dll
- 2015-01-11 14:23 - 2012-03-28 18:01 - 000359936 _____ (CANON INC.) C:\Windows\system32\CNMN6PPM.DLL
- 2015-01-11 14:23 - 2012-03-28 18:01 - 000039424 _____ (CANON INC.) C:\Windows\system32\CNMN6UI.DLL
- 2013-03-12 23:58 - 2013-03-07 19:00 - 000127488 _____ C:\Windows\system32\ff_vfw.dll
- 2013-03-12 23:58 - 2013-04-07 17:09 - 000148992 _____ ( ) C:\Windows\system32\Lagarith.dll
- 2013-03-15 16:15 - 2012-03-19 05:09 - 000316928 _____ (brother) C:\Windows\system32\NSSRH64.dll
- 2010-11-21 04:24 - 2010-11-21 04:24 - 000001536 _____ (Microsoft Corporation) C:\Windows\system32\sppcomapi.dll
- 2010-11-21 04:24 - 2010-11-21 04:24 - 000419840 _____ (Microsoft Corporation) C:\Windows\system32\systemcpl.dll
- 2013-03-12 23:58 - 2012-06-09 19:21 - 000206336 _____ C:\Windows\system32\unrar64.dll
- 2016-12-14 15:29 - 2016-11-10 17:32 - 001008640 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
- 2009-07-14 00:57 - 2009-07-14 02:39 - 000002048 _____ C:\Windows\system32\winver.exe
- 2017-06-13 14:41 - 2007-12-13 21:16 - 000073728 ____N (Brother Industries Ltd.) C:\Windows\SysWOW64\BrDctF2.dll
- 2017-06-13 14:41 - 2007-12-13 21:16 - 000005120 ____N (Brother Industries Ltd.) C:\Windows\SysWOW64\BrDctF2L.dll
- 2017-06-13 14:41 - 2010-03-08 12:50 - 000003072 ____N (Brother Industries Ltd.) C:\Windows\SysWOW64\BrDctF2S.dll
- 2017-06-13 14:41 - 2010-02-05 10:42 - 000180224 ____N (Brother Industries, Ltd.) C:\Windows\SysWOW64\BroSNMP.dll
- 2013-03-15 16:15 - 2010-01-06 10:51 - 000061440 _____ (Brother Industries Ltd.) C:\Windows\SysWOW64\brprtink.dll
- 2015-01-11 14:27 - 2012-01-16 15:21 - 000103424 _____ (CANON INC.) C:\Windows\SysWOW64\CNC_B8U.dll
- 2012-03-28 18:00 - 2012-03-28 18:00 - 000366592 _____ (CANON INC.) C:\Windows\SysWOW64\CNMNPPM.DLL
- 2013-03-12 23:32 - 2009-12-14 13:33 - 000053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll
- 2000-08-03 00:35 - 2000-08-03 00:35 - 000446464 _____ (eHelp Corporation.) C:\Windows\SysWOW64\HHACTIVEX.DLL
- 1999-01-28 02:39 - 1999-01-28 02:39 - 000049152 _____ (Blue Sky Software Corporation.) C:\Windows\SysWOW64\INETWH32.dll
- 2014-05-14 12:53 - 2013-04-07 17:09 - 000216064 _____ ( ) C:\Windows\SysWOW64\Lagarith.dll
- 1999-04-08 10:23 - 1999-04-08 10:23 - 000053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFC42PLK.DLL
- 2019-11-22 01:05 - 2003-03-18 21:20 - 001060864 ____N (Microsoft Corporation) C:\Windows\SysWOW64\mfc71.dll
- 1999-06-04 14:22 - 1999-06-04 14:22 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSPRPPL.DLL
- 2000-05-11 12:06 - 2000-05-11 12:06 - 000397312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSRDO20.DLL
- 2000-05-23 21:45 - 2000-05-23 21:45 - 000118784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSSTDFMT.DLL
- 1998-08-09 10:07 - 1998-08-09 10:07 - 000094208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSSTKPRP.DLL
- 2019-11-22 01:05 - 2003-03-18 20:14 - 000499712 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msvcp71.dll
- 2019-11-22 01:05 - 2003-02-21 04:42 - 000348160 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll
- 2019-11-22 01:05 - 2001-08-17 22:43 - 000024576 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msxml3a.dll
- 2017-06-13 14:41 - 2010-02-09 16:11 - 000217088 ____N (brother) C:\Windows\SysWOW64\NSSearch.dll
- 2000-04-03 16:52 - 2000-04-03 16:52 - 000151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RDOCURS.DLL
- 1998-03-24 20:54 - 1998-03-24 20:54 - 000015872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SCP32.DLL
- 2017-06-05 10:15 - 2017-06-05 10:15 - 000001536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppcomapi.dll
- 2017-06-05 10:15 - 2017-06-05 10:15 - 000410624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\systemcpl.dll
- 2013-04-23 10:55 - 2013-04-23 10:55 - 000234496 _____ (TechSmith Corporation) C:\Windows\SysWOW64\tsc2_codec32.dll
- 2013-04-23 10:55 - 2013-04-23 10:55 - 000270848 _____ (TechSmith Corporation) C:\Windows\SysWOW64\tsc2_codec64.dll
- 2012-11-27 08:52 - 2012-11-27 08:52 - 000571392 _____ (TechSmith Corporation) C:\Windows\SysWOW64\tsccvid.dll
- 2012-11-27 08:52 - 2012-11-27 08:52 - 000595456 _____ (TechSmith Corporation) C:\Windows\SysWOW64\tsccvid64.dll
- 2013-03-13 00:01 - 2012-06-09 19:21 - 000178688 _____ C:\Windows\SysWOW64\unrar.dll
- 2017-06-05 10:15 - 2017-06-05 10:15 - 000833024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
- 1999-11-24 17:40 - 1999-11-24 17:40 - 000040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VBAME.DLL
- 2017-06-05 10:15 - 2017-06-05 10:15 - 000002048 _____ C:\Windows\SysWOW64\winver.exe
- 2015-10-11 08:31 - 2015-10-11 08:31 - 000003210 _____ C:\Windows\system32\Tasks\avastBCLRestart_chrome.exe
- ==================== SigCheck ============================
- (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)
- C:\Windows\system32\User32.dll
- [2016-12-14 15:29] - [2016-11-10 17:32] - 001008640 _____ (Microsoft Corporation) E573BD9AB55C8E333C202B9E255F972E
- C:\Windows\SysWOW64\User32.dll
- [2017-06-05 10:15] - [2017-06-05 10:15] - 000833024 _____ (Microsoft Corporation) 2C9CC9F492CA596B1B9FC1AE5E916356
- ==================== BCD ================================
- Mened�er rozruchu systemu Windows
- ---------------------------------
- Identyfikator {bootmgr}
- device partition=\Device\HarddiskVolume1
- description Windows Boot Manager
- locale pl-PL
- inherit {globalsettings}
- default {current}
- resumeobject {8d64f67c-8b3d-11e2-a4eb-919431b3c504}
- displayorder {current}
- toolsdisplayorder {memdiag}
- timeout 30
- Modu� �aduj�cy rozruchu systemu Windows
- ---------------------------------------
- Identyfikator {current}
- device partition=C:
- path \Windows\system32\winload.exe
- description Windows 7
- locale pl-PL
- inherit {bootloadersettings}
- recoverysequence {8d64f67e-8b3d-11e2-a4eb-919431b3c504}
- recoveryenabled Yes
- osdevice partition=C:
- systemroot \Windows
- resumeobject {8d64f67c-8b3d-11e2-a4eb-919431b3c504}
- nx OptIn
- bootlog No
- Modu� �aduj�cy rozruchu systemu Windows
- ---------------------------------------
- Identyfikator {8d64f67e-8b3d-11e2-a4eb-919431b3c504}
- device ramdisk=[C:]\Recovery\8d64f67e-8b3d-11e2-a4eb-919431b3c504\Winre.wim,{8d64f67f-8b3d-11e2-a4eb-919431b3c504}
- path \windows\system32\winload.exe
- description Windows Recovery Environment
- inherit {bootloadersettings}
- osdevice ramdisk=[C:]\Recovery\8d64f67e-8b3d-11e2-a4eb-919431b3c504\Winre.wim,{8d64f67f-8b3d-11e2-a4eb-919431b3c504}
- systemroot \windows
- nx OptIn
- winpe Yes
- Wznawianie ze stanu hibernacji
- ------------------------------
- Identyfikator {8d64f67c-8b3d-11e2-a4eb-919431b3c504}
- device partition=C:
- path \Windows\system32\winresume.exe
- description Windows Resume Application
- locale pl-PL
- inherit {resumeloadersettings}
- filedevice partition=C:
- filepath \hiberfil.sys
- debugoptionenabled No
- Modu� testuj�cy pami�� systemu Windows
- --------------------------------------
- Identyfikator {memdiag}
- device partition=\Device\HarddiskVolume1
- path \boot\memtest.exe
- description Diagnostyka pami�ci systemu Windows
- locale pl-PL
- inherit {globalsettings}
- badmemoryaccess Yes
- Ustawienia us�ug EMS
- --------------------
- Identyfikator {emssettings}
- bootems Yes
- Ustawienia debugera
- -------------------
- Identyfikator {dbgsettings}
- debugtype Serial
- debugport 1
- baudrate 115200
- Uszkodzenia pami�ci RAM
- -----------------------
- Identyfikator {badmemory}
- Ustawienia globalne
- -------------------
- Identyfikator {globalsettings}
- inherit {dbgsettings}
- {emssettings}
- {badmemory}
- Ustawienia modu�u �aduj�cego rozruchu
- -------------------------------------
- Identyfikator {bootloadersettings}
- inherit {globalsettings}
- {hypervisorsettings}
- Ustawienia funkcji hypervisor
- -----------------------------
- Identyfikator {hypervisorsettings}
- hypervisordebugtype Serial
- hypervisordebugport 1
- hypervisorbaudrate 115200
- Ustawienia modu�u �aduj�cego wznawiania
- ---------------------------------------
- Identyfikator {resumeloadersettings}
- inherit {globalsettings}
- Opcje urz�dzenia
- ----------------
- Identyfikator {8d64f67f-8b3d-11e2-a4eb-919431b3c504}
- description Ramdisk Options
- ramdisksdidevice partition=C:
- ramdisksdipath \Recovery\8d64f67e-8b3d-11e2-a4eb-919431b3c504\boot.sdi
- LastRegBack: 2019-12-09 10:00
- ==================== Koniec FRST.txt ========================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement