Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 01-11-2019 Uruchomiony przez SYSTEM MININT-8J2RS2Q (06-11-2019 21:44:36) Uruchomiony z D:\1 Platform: Windows 10 Pro Wersja 1903 18362.356 (X64) Język: Polski (Polska) Tryb startu: Recovery Domyślne: ControlSet001 [b]UWAGA!:=====> Jeśli system uruchamia się, FRST należy uruchomić z poziomu Trybu awaryjnego lub normalnego w celu utworzenia kompletnego raportu.[/b] Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [ACUW11EN] => C:\Program Files\ACD Systems\ACDSee Ultimate\11.0\acdIDInTouch2.exe [2157008 2017-09-20] (ACD Systems International Inc. -> ACD Systems) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-10] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM-x32\...\Run: [Bonus.SSR.FR11] => C:\Program Files (x86)\ABBYY FineReader 11\Bonus.ScreenshotReader.exe [925960 2015-04-07] (ABBYY SOLUTIONS LIMITED -> ABBYY.) HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2409944 2018-06-22] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM-x32\...\Run: [TeamsMachineUninstallerLocalAppData] => %LOCALAPPDATA%\Microsoft\Teams\Update.exe --uninstall --msiUninstall --source=default HKLM-x32\...\Run: [TeamsMachineUninstallerProgramData] => %ProgramData%\Microsoft\Teams\Update.exe --uninstall --msiUninstall --source=default HKLM-x32\...\Run: [vmware-tray.exe] => C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe [117680 2019-09-16] (VMware, Inc. -> VMware, Inc.) HKU\Administrator\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Corporation) HKU\Default\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Corporation) HKU\Default User\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Corporation) HKU\DefaultAppPool\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Corporation) HKU\Kasia\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Corporation) HKU\Maciek\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2019-10-25] (Apple Inc. -> Apple Inc.) HKU\Maciek\...\Run: [ACDSeeCommanderUltimate11] => C:\Program Files\ACD Systems\ACDSee Ultimate\11.0\ACDSeeCommanderUltimate11.exe [6392784 2017-09-27] (ACD Systems International Inc. -> ) HKU\Maciek\...\Run: [AppleIEDAV] => C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe [68408 2019-10-25] (Apple Inc. -> Apple Inc.) HKU\Maciek\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2019-10-25] (Apple Inc. -> Apple Inc.) HKU\Maciek\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [67896 2019-10-25] (Apple Inc. -> Apple Inc.) HKU\Maciek\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2019-10-25] (Apple Inc. -> Apple Inc.) HKU\Maciek\...\RunOnce: [iCloud] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloud.exe [67384 2019-10-25] (Apple Inc. -> Apple Inc.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\aktywacja testera.lnk [2015-04-07] ShortcutTarget: aktywacja testera.lnk -> C:\Program Files (x86)\Slowniki\watch.exe (Young Digital Poland) GroupPolicy: Ograniczenia ? <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {01519D9B-0B68-4B55-86E8-161614CE4484} - System32\Tasks\2BrightSparks\SyncBackPro\PC-Dom-Maciek\Dane Maciek na NAS => C:\Program Files (x86)\2BrightSparks\SyncBackPro\SyncBackPro.exe [25360440 2017-12-04] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte. Ltd.) Task: {05DB69F5-E71F-4AF7-BF74-96461CA104FC} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61} Task: {0AFBBF3E-A4F3-457F-BFC6-8A11835B8580} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe Task: {12F06E19-715E-435A-803A-E066B1579E15} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [156432 2019-10-25] (Microsoft Corporation -> Microsoft Corporation) Task: {1465546B-66F7-4431-B5B3-DF979DD78E03} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1} Task: {190996D8-14CA-4752-982B-0DC408E22D69} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe Task: {24AF34A6-2D22-4449-AE73-BF43D7CFA16E} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269000 2015-08-14] (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {269C8D96-0419-4E9C-B2E8-F6F1B7795837} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [469928 2019-11-02] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {2CFCDC18-0BC9-497C-A086-FD6B2A5AE2F5} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe Task: {2EDAEA58-882E-4C5A-AFC3-1C78A00F5975} - System32\Tasks\HP AR Program Upload - 05d08300502743b2833fc179f508c5f0318a97148a2c43daa8b314a44041cf4e => C:\Program Files\HP\HP Deskjet 5520 series\bin\HPRewards.exe Task: {32E08EA9-CE93-412B-99C5-C1ADA051A65D} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2043016 2019-10-16] (Microsoft Corporation -> Microsoft Corporation) Task: {4057EAFF-D2D0-4013-A470-04324F544A98} - System32\Tasks\HP AR Program Upload - 772b69ec704d4876911237bc83764fdc174e0d8ef3724700a601d6edf85ec69d => C:\Program Files\HP\HP Deskjet 5520 series\bin\HPRewards.exe Task: {41D75ED7-2114-49CD-AF87-B33D490C1513} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [469928 2019-11-02] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {45604A68-6BEC-4EF7-8345-7ABCC471CB8B} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [156432 2019-10-25] (Microsoft Corporation -> Microsoft Corporation) Task: {45EE99AA-6BA3-4BA3-9AA9-EDDE74242B0D} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB} Task: {499BC9CC-1547-49CB-AFBC-F783F5EBEDFC} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27289376 2019-10-18] (Microsoft Corporation -> Microsoft Corporation) Task: {53D9ED50-8626-4F59-B270-7F849C72B025} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe Task: {55D64142-88D0-47D0-B687-5E949D8CAAE8} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.) Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A} Task: {5CFEFAF8-2155-4511-BD93-951C39229C68} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe Task: {614DA56E-382D-4EE1-A777-7225BB6A3AF3} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe Task: {6284C419-E425-4FC9-B1E9-FB8CB61ABB5F} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe Task: {6302846D-3FCC-4773-B555-9064DB22B4EB} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2646160 2019-10-16] (Microsoft Corporation -> Microsoft Corporation) Task: {6C9A94B1-5A94-4888-97D6-4E0A054138FF} - System32\Tasks\HP AR Program Upload - ed5911a0292c45a39734750246a5dbb4a38ccb5c9c9b4c98b1cd39213883a4b9 => C:\Program Files\HP\HP Deskjet 5520 series\bin\HPRewards.exe Task: {6E325D51-5599-4B50-A742-C532F0E8AEDE} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6304872 2019-10-25] (Microsoft Corporation -> Microsoft Corporation) Task: {7029A6E4-6DFF-46CF-ADAD-2478198A87E1} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27289376 2019-10-18] (Microsoft Corporation -> Microsoft Corporation) Task: {735FD634-8B4B-420A-8EBC-B27CCED01F2A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe Task: {744A0BC2-2DCF-4701-8E91-7E7B277F92AD} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe Task: {7835421E-F31D-47B4-82A6-66E88E1B5B01} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316} Task: {7C2C5A65-D52A-4823-BC4E-BA74758C666A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-10-24] (Google Inc -> Google Inc.) Task: {7CB0959C-A8D0-4214-8796-C2B299AFD6CD} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe Task: {7EDED917-3C63-484E-BD2E-E2D2BDB551D0} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Brak pliku <==== UWAGA Task: {818F4B59-FFCB-4F4D-89C3-E8107A2D5072} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Brak pliku <==== UWAGA Task: {841DF65E-D41E-421C-8B53-AE98E0830342} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe Task: {8550FBA0-46B4-4582-B318-488ECB5BF6EF} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe Task: {8709AAD6-C963-4C74-8342-B386217638F0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-10-24] (Google Inc -> Google Inc.) Task: {876810CC-D9AE-4E4F-833C-65034CBE7789} - System32\Tasks\HP AR Program Upload - c0c3053f445549c5bf380724bd7b142ab2a1ec67430340e2bcf3c53c04c98ee7 => C:\Program Files\HP\HP Deskjet 5520 series\bin\HPRewards.exe Task: {88CADBBA-7A14-4729-A84E-BF77F5BEBC77} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [1146048 2018-05-28] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co. Ltd.) Task: {8A2072DC-BB15-4F9B-8898-E195451C44FA} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2177464 2019-10-16] (Microsoft Corporation -> Microsoft) Task: {8DB658BD-59B9-4756-AEA4-7063019A0617} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4200419112-2863149970-2283356567-1001 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe Task: {91D3536C-110F-4FB4-9EF3-AF0733A75D0F} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe Task: {97955B49-2532-4C6F-98F5-183CBD459B26} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe Task: {98931D41-B7C2-4BB8-903F-57BC948549B9} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2043016 2019-10-16] (Microsoft Corporation -> Microsoft Corporation) Task: {9DB4296D-1FAA-4AFB-A5AC-45B2D9121B07} - System32\Tasks\HP AR Program Upload - fb8f07a968c047bbba346c9c0659a940bdf4ae5748a24bfabbeef05be73fd1b3 => C:\Program Files\HP\HP Deskjet 5520 series\bin\HPRewards.exe Task: {A04C1615-A890-477D-B3F9-702C17343F5D} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe Task: {A3B30EB7-7B55-4314-BD33-8EBEFA0B08E1} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6304872 2019-10-25] (Microsoft Corporation -> Microsoft Corporation) Task: {A55B4063-6C39-4451-8C2F-0F5FABA5C256} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969} Task: {AF2B4052-AD74-45B8-82BF-BFD5BB941F8F} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371} Task: {B3488FFF-2027-4154-8A35-E8B42EEB170B} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe Task: {B3A33D42-3AA6-4F0D-9C93-513F936513BD} - \Microsoft\Windows\UNP\RunCampaignManager -> Brak pliku <==== UWAGA Task: {B425B13D-B010-4C09-BDA5-AA072444A167} - System32\Tasks\Microsoft_MKC_Logon_Task_ceip.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ceip.exe [32696 2019-10-16] (Microsoft Corporation -> Microsoft) Task: {B4E53356-9115-4FE4-82A9-46086717C327} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2349384 2019-10-25] (Microsoft Corporation -> Microsoft Corporation) Task: {B8F0DEC7-8392-4F57-9990-74FCB934033F} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\Windows\System32\WinBioPlugIns\FaceFodUninstaller.exe [501760 2019-03-19] () Task: {B99FFC42-8272-4874-AE69-4F301A3A4BBB} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe Task: {B9B9F5E8-6FAE-412B-B6DC-E7C45E6D4113} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe Task: {C21C2AE7-C330-4EA1-B697-53B013C4C265} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {C263BA0D-001D-4C16-BAA1-D2C12F49B101} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E} Task: {C3608B27-48AB-45F6-810B-46B8742CA2CC} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe Task: {C74790E7-EB4E-4573-880F-057C2F91174C} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4200419112-2863149970-2283356567-500 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe Task: {C9C3074B-2B65-433F-83F4-B5489209F61E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [469928 2019-11-02] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {CFB93C0B-0770-4EE0-930E-78AF727951FE} - System32\Tasks\2BrightSparks\SyncBackPro\PC-Dom-Administrator\Dane Maciek na NAS => C:\Program Files (x86)\SyncBackPro\SyncBackPro.exe Task: {D1E35F42-2864-4B9F-96C9-A8D80F5DE76F} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe Task: {D3A2B279-9D57-43A0-9343-FAD35BC3FEB4} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe Task: {D961BB4C-09FA-4590-967A-3CFB066A7596} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2170264 2019-10-25] (Microsoft Corporation -> Microsoft Corporation) Task: {DBCC079F-2215-483F-845D-3F664DBA971F} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2646160 2019-10-16] (Microsoft Corporation -> Microsoft Corporation) Task: {DC7F4B20-3174-4E5B-8819-FA1F8A65EACE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [469928 2019-11-02] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {DC8D60AB-3B31-4B7B-A08D-2B7E685FFD19} - System32\Tasks\HP AR Program Upload - e08867fac94b4beaa50f974791f800ed57608117a340455b9bb31a2cae0d7a4c => C:\Program Files\HP\HP Deskjet 5520 series\bin\HPRewards.exe Task: {DCEB9E89-3E06-45C1-ACB7-2C8CF4CBE7FC} - System32\Tasks\HP AR Program Upload - bfc0a9410e1e4271b68649d4a2f1a0608d1acd51f39b466ea467f72c42519368 => C:\Program Files\HP\HP Deskjet 5520 series\bin\HPRewards.exe Task: {E5790F2A-74C4-4737-A98A-D88E1D74E621} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Brak pliku <==== UWAGA Task: {E6C1EDCE-C3D5-4E57-86A4-5BD628B5FA60} - System32\Tasks\CorelUpdateHelperTaskCore => C:\Program Files (x86)\Corel\CUH\v2\CUH.exe [1577416 2016-02-26] (Corel Corporation -> Corel Corporation) Task: {EA5BBA5A-3334-493C-B9FD-5B9336A96320} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> Brak pliku <==== UWAGA Task: {EC026722-69C0-4D24-897D-781334DA14AE} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Brak pliku <==== UWAGA Task: {ED376B78-A479-49A1-A8C3-249404ECF4F7} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe Task: {F2C4EC47-7291-4EAD-9BE5-455186B57B3F} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2170264 2019-10-25] (Microsoft Corporation -> Microsoft Corporation) Task: {F4534A22-A960-4FC3-B430-515F3059D4BC} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems) Task: {F5F0D3E9-8BEF-4F9B-A093-FFDD3EAF7CDA} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe Task: {F678AF11-FBED-4026-9774-BE77775FE2CF} - System32\Tasks\2BrightSparks\SyncBackPro\PC-Dom-Administrator\SyncBackPro => C:\Program Files (x86)\2BrightSparks\SyncBackPro\SyncBackPro.exe [25360440 2017-12-04] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte. Ltd.) Task: {FC2A16C6-DAFA-45E6-B390-7A3F56B505F3} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Brak pliku <==== UWAGA (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [818128 2018-06-22] (Adobe Systems Incorporated -> Adobe Systems Incorporated) S2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3147344 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated) S2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2914896 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated) S2 CdRomArbiterService; C:\Program Files\Common Files\cdarbsvc\cdarbsvc_v1.0.0_x64.exe [8704 2019-09-29] (GuinpinSoft inc) S2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11636808 2019-10-18] (Microsoft Corporation -> Microsoft Corporation) S2 NMSAccess; C:\WINDOWS\SysWOW64\NMSAccessU.exe [71096 2009-01-12] (Numedia Soft, Inc. -> ) S3 SandraAgentSrv; C:\Program Files\SiSoft Sandra Lite 2016\RpcAgentSrv.exe [76784 2015-12-20] (SiSoftware SPC -> SiSoftware) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5796168 2019-09-12] (Microsoft Windows Publisher -> Microsoft Corporation) S2 SNMP; C:\Windows\System32\snmp.exe [53248 2019-07-07] (Microsoft Corporation) S2 SNMP; C:\Windows\SysWOW64\snmp.exe [46592 2019-07-07] (Microsoft Corporation) S2 softOSD; C:\Program Files (x86)\softOSD\softOSD.exe [294064 2012-04-23] (EnTech Taiwan -> EnTech Taiwan) S4 ssh-agent; C:\Windows\System32\OpenSSH\ssh-agent.exe [384512 2019-03-19] () S2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11660528 2018-12-07] (TeamViewer GmbH -> TeamViewer GmbH) S2 UsbClientService; C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe [248856 2017-01-18] (Synology Inc. -> ) S2 UserAccess; C:\Program Files (x86)\Common Files\YDP\UserAccessManager\useraccess.exe [53248 2015-04-07] () S2 vmware-converter-agent; C:\Program Files (x86)\VMware\VMware Converter\vmware-converter-a.exe [482008 2015-05-05] (VMware, Inc. -> VMware, Inc.) S2 vmware-converter-server; C:\Program Files (x86)\VMware\VMware Converter\vmware-converter.exe [482008 2015-05-05] (VMware, Inc. -> VMware, Inc.) S2 vmware-converter-worker; C:\Program Files (x86)\VMware\VMware Converter\vmware-converter.exe [482008 2015-05-05] (VMware, Inc. -> VMware, Inc.) S2 VMwareHostd; C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe [15476144 2019-09-16] (VMware, Inc. -> ) S2 vncserver; C:\Program Files\VNC\vncserver.exe [5664336 2016-03-23] (RealVNC Ltd -> RealVNC Ltd) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\NisSrv.exe [3201616 2019-11-02] (Microsoft Windows Publisher -> Microsoft Corporation) S2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MsMpEng.exe [103168 2019-11-02] (Microsoft Windows Publisher -> Microsoft Corporation) S2 WirelessKB850NotificationService; C:\Windows\system32\WirelessKB850NotificationService.exe [176624 2018-05-14] (Microsoft Corporation -> Microsoft Corporation) S2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 AcpiPmi; C:\Windows\System32\drivers\acpipmi.sys [16896 2019-03-19] (Microsoft Corporation) S1 afunix; C:\Windows\system32\drivers\afunix.sys [40960 2019-03-19] (Microsoft Corporation) S1 afunix; C:\Windows\SysWOW64\drivers\afunix.sys [29696 2019-03-19] (Microsoft Corporation) S1 ahcache; C:\Windows\System32\DRIVERS\ahcache.sys [291840 2019-03-19] (Microsoft Corporation) S3 applockerfltr; C:\Windows\System32\drivers\applockerfltr.sys [18432 2019-07-29] (Microsoft Corporation) S3 AthDfu; C:\Windows\System32\Drivers\AthDfu.sys [55336 2016-01-08] (Atheros Communications Inc. -> Windows (R) Win 7 DDK provider) S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [9728 2019-03-19] (Windows (R) Win 7 DDK provider) S1 Beep; C:\Windows\System32\Drivers\Beep.sys [10240 2019-03-19] (Microsoft Corporation) S3 bmdrvr; C:\Windows\SysWow64\drivers\bmdrvr.sys [75992 2015-03-11] (VMware, Inc. -> VMware, Inc.) S3 BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [610336 2016-07-13] (Microsoft Windows Hardware Compatibility Publisher -> Qualcomm Atheros) S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [231936 2019-09-12] (Microsoft Corporation) S3 BthEnum; C:\Windows\System32\drivers\BthEnum.sys [114688 2019-08-14] (Microsoft Corporation) S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [131072 2019-03-19] (Microsoft Corporation) S3 BthLEEnum; C:\Windows\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [97280 2019-03-19] (Microsoft Corporation) S3 BthMini; C:\Windows\System32\drivers\BTHMINI.sys [36864 2019-08-14] (Microsoft Corporation) S3 BTHMODEM; C:\Windows\System32\drivers\bthmodem.sys [76288 2019-03-19] (Microsoft Corporation) S3 BthPan; C:\Windows\System32\drivers\bthpan.sys [133120 2019-03-19] (Microsoft Corporation) S3 BTHPORT; C:\Windows\System32\drivers\BTHport.sys [1428992 2019-08-14] (Microsoft Corporation) S3 BTHUSB; C:\Windows\System32\drivers\BTHUSB.sys [98304 2019-08-14] (Microsoft Corporation) S3 busenum; C:\Windows\System32\drivers\busenum.sys [57824 2012-08-03] (Synology Inc. -> Windows (R) Win 7 DDK provider) S3 circlass; C:\Windows\System32\drivers\circlass.sys [51200 2019-03-19] (Microsoft Corporation) S2 CldFlt; C:\Windows\System32\drivers\cldflt.sys [456704 2019-09-12] (Microsoft Corporation) S1 CSC; C:\Windows\System32\drivers\csc.sys [577024 2019-09-12] (Microsoft Corporation) S3 e1cexpress; C:\Windows\system32\DRIVERS\e1c65x64.sys [472016 2016-07-18] (Intel(R) INTELNPG1 -> Intel Corporation) S1 FileCrypt; C:\Windows\System32\drivers\filecrypt.sys [59392 2019-03-19] (Microsoft Corporation) S3 genericusbfn; C:\Windows\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_b9c53b80e63af230\genericusbfn.sys [20992 2019-09-12] (Microsoft Corporation) S1 GpuEnergyDrv; C:\Windows\System32\drivers\gpuenergydrv.sys [8704 2019-03-19] (Microsoft Corporation) S3 HdAudAddService; C:\Windows\System32\drivers\HdAudio.sys [425472 2019-09-12] (Microsoft Corporation) S3 HidBth; C:\Windows\System32\drivers\hidbth.sys [121344 2019-03-19] (Microsoft Corporation) S3 HidIr; C:\Windows\System32\drivers\hidir.sys [48640 2019-03-19] (Microsoft Corporation) S3 hidspi; C:\Windows\System32\drivers\hidspi.sys [63488 2019-09-12] (Microsoft Corporation) S3 HidUsb; C:\Windows\System32\drivers\hidusb.sys [45568 2019-07-07] (Microsoft Corporation) S3 HwNClx0101; C:\Windows\System32\Drivers\mshwnclx.sys [28672 2019-03-19] (Microsoft Corporation) S3 IndirectKmd; C:\Windows\System32\drivers\IndirectKmd.sys [46592 2019-03-19] (Microsoft Corporation) S3 intelpmax; C:\Windows\System32\drivers\intelpmax.sys [28672 2019-03-19] (Microsoft Corporation) S3 IpFilterDriver; C:\Windows\System32\DRIVERS\ipfltdrv.sys [90624 2019-03-19] (Microsoft Corporation) S3 IPNAT; C:\Windows\System32\drivers\ipnat.sys [224768 2019-03-19] (Microsoft Corporation) S2 lltdio; C:\Windows\System32\drivers\lltdio.sys [72192 2019-03-19] (Microsoft Corporation) S2 luafv; C:\Windows\system32\drivers\luafv.sys [141312 2019-07-07] (Microsoft Corporation) S3 MbbCx; C:\Windows\System32\drivers\MbbCx.sys [358912 2019-07-07] (Microsoft Corporation) S3 Microsoft_Bluetooth_AvrcpTransport; C:\Windows\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [64512 2019-03-19] (Microsoft Corporation) S3 Modem; C:\Windows\System32\drivers\modem.sys [46592 2019-03-19] (Microsoft Corporation) S3 monitor; C:\Windows\System32\drivers\monitor.sys [69632 2019-07-07] (Microsoft Corporation) S2 MQAC; C:\Windows\System32\drivers\mqac.sys [185344 2019-03-19] (Microsoft Corporation) S3 MRxDAV; C:\Windows\system32\drivers\mrxdav.sys [158208 2019-03-19] (Microsoft Corporation) S3 MsBridge; C:\Windows\System32\drivers\bridge.sys [127488 2019-03-19] (Microsoft Corporation) S3 mshidumdf; C:\Windows\System32\drivers\mshidumdf.sys [12288 2019-03-19] (Microsoft Corporation) S3 MSKSSRV; C:\Windows\System32\drivers\MSKSSRV.sys [34816 2019-07-07] (Microsoft Corporation) S2 MsLldp; C:\Windows\System32\drivers\mslldp.sys [78848 2019-03-19] (Microsoft Corporation) S3 NativeWifiP; C:\Windows\System32\DRIVERS\nwifi.sys [701952 2019-08-14] (Microsoft Corporation) S3 NdisCap; C:\Windows\System32\drivers\ndiscap.sys [56320 2019-03-19] (Microsoft Corporation) S3 NdisImPlatform; C:\Windows\System32\drivers\NdisImPlatform.sys [135168 2019-03-19] (Microsoft Corporation) S3 NdisTapi; C:\Windows\System32\DRIVERS\ndistapi.sys [28672 2019-07-29] (Microsoft Corporation) S3 NDKPing; C:\Windows\System32\drivers\NDKPing.sys [63488 2019-03-19] (Microsoft Corporation) S3 ndproxy; C:\Windows\System32\DRIVERS\NDProxy.sys [244736 2019-07-29] (Microsoft Corporation) S2 Ndu; C:\Windows\System32\drivers\Ndu.sys [132096 2019-03-19] (Microsoft Corporation) S1 NetBT; C:\Windows\System32\DRIVERS\netbt.sys [337408 2019-07-07] (Microsoft Corporation) S3 npcap; C:\Windows\system32\DRIVERS\npcap.sys [81232 2017-01-09] (Insecure.Com LLC -> Insecure.Com LLC.) S3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_ref_pubwu.inf_amd64_708ec8f9a4d134c6\nvlddmkm.sys [17544792 2018-04-12] (NVIDIA Corporation -> NVIDIA Corporation) S3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation -> NVIDIA Corporation) S2 PEAUTH; C:\Windows\System32\drivers\peauth.sys [817152 2019-08-14] (Microsoft Corporation) S3 PNPMEM; C:\Windows\System32\drivers\pnpmem.sys [17408 2019-03-19] (Microsoft Corporation) S0 pwdrvio; C:\Windows\System32\pwdrvio.sys [19152 2013-09-30] (MiniTool Solution Ltd -> ) S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] (MiniTool Solution Ltd -> ) S3 QWAVEdrv; C:\Windows\system32\drivers\qwavedrv.sys [53760 2019-03-19] (Microsoft Corporation) S3 RasAgileVpn; C:\Windows\System32\drivers\AgileVpn.sys [114176 2019-07-07] (Microsoft Corporation) S3 rdpbus; C:\Windows\System32\drivers\rdpbus.sys [28672 2019-03-19] (Microsoft Corporation) S3 RDPDR; C:\Windows\System32\drivers\rdpdr.sys [167936 2019-07-29] (Microsoft Corporation) S3 RFCOMM; C:\Windows\System32\drivers\rfcomm.sys [211456 2019-03-19] (Microsoft Corporation) S3 rhproxy; C:\Windows\System32\drivers\rhproxy.sys [113152 2019-03-19] (Microsoft Corporation) S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [27520 2007-05-14] (Research In Motion Limited) S2 rspndr; C:\Windows\System32\drivers\rspndr.sys [89088 2019-03-19] (Microsoft Corporation) S3 SANDRA; C:\Program Files\SiSoft Sandra Lite 2014.SP2\WNt500x64\Sandra.sys [23112 2009-08-07] (SiSoftware Ltd -> SiSoftware) S3 scfilter; C:\Windows\System32\DRIVERS\scfilter.sys [45056 2019-03-19] (Microsoft Corporation) S1 se64a; C:\Windows\System32\Drivers\se64a.sys [14032 2007-05-03] (EnTech Taiwan -> EnTech Taiwan) S1 se64a; C:\Windows\SysWOW64\Drivers\se64a.sys [14032 2007-05-03] (EnTech Taiwan -> EnTech Taiwan) S3 srv2; C:\Windows\System32\DRIVERS\srv2.sys [771584 2019-09-12] (Microsoft Corporation) S3 srvnet; C:\Windows\System32\DRIVERS\srvnet.sys [309760 2019-07-07] (Microsoft Corporation) S3 StillCam; C:\Windows\system32\DRIVERS\serscan.sys [13312 2019-03-19] (Microsoft Corporation) S3 Synth3dVsc; C:\Windows\System32\drivers\Synth3dVsc.sys [66560 2019-03-19] (Microsoft Corporation) S2 tcpipreg; C:\Windows\System32\drivers\tcpipreg.sys [54784 2019-03-19] (Microsoft Corporation) S3 TsUsbFlt; C:\Windows\System32\drivers\tsusbflt.sys [65024 2019-03-19] (Microsoft Corporation) S3 TsUsbGD; C:\Windows\System32\drivers\TsUsbGD.sys [35328 2019-03-19] (Microsoft Corporation) S3 tsusbhub; C:\Windows\System32\drivers\tsusbhub.sys [130560 2019-09-12] (Microsoft Corporation) S3 tunnel; C:\Windows\System32\drivers\tunnel.sys [128512 2019-03-19] (Microsoft Corporation) S3 UcmCx0101; C:\Windows\System32\Drivers\UcmCx.sys [160256 2019-03-19] (Microsoft Corporation) S3 UcmTcpciCx0101; C:\Windows\System32\Drivers\UcmTcpciCx.sys [186368 2019-03-19] (Microsoft Corporation) S3 UcmUcsiAcpiClient; C:\Windows\System32\drivers\UcmUcsiAcpiClient.sys [34816 2019-03-19] (Microsoft Corporation) S3 UcmUcsiCx0101; C:\Windows\System32\Drivers\UcmUcsiCx.sys [111104 2019-03-19] (Microsoft Corporation) S3 umbus; C:\Windows\System32\DriverStore\FileRepository\umbus.inf_amd64_e566af5dd9858a0e\umbus.sys [57856 2019-09-12] (Microsoft Corporation) S3 usbaudio2; C:\Windows\System32\drivers\usbaudio2.sys [257536 2019-07-07] (Microsoft Corporation) S3 usbcir; C:\Windows\System32\drivers\usbcir.sys [107008 2019-03-19] (Microsoft Corporation) S3 usbprint; C:\Windows\System32\drivers\usbprint.sys [34304 2019-03-19] (Microsoft Corporation) S1 VD_FileDisk; C:\Windows\System32\Drivers\VD_FileDisk.sys [30312 2011-01-26] (Ghisler Software GmbH -> CaptainFlint Software) S1 vmkbd3; C:\Windows\system32\DRIVERS\vmkbd.sys [52288 2017-03-12] (VMware, Inc. -> VMware, Inc.) S0 vsock; C:\Windows\System32\DRIVERS\vsock.sys [103224 2019-08-14] (VMware, Inc. -> VMware, Inc.) S2 vstor2-mntapi20-shared; C:\Windows\SysWow64\drivers\vstor2-mntapi20-shared.sys [38376 2017-05-05] (VMware, Inc. -> VMware, Inc.) S2 wanarp; C:\Windows\System32\DRIVERS\wanarp.sys [92672 2019-07-29] (Microsoft Corporation) S3 wanarpv6; C:\Windows\System32\DRIVERS\wanarp.sys [92672 2019-07-29] (Microsoft Corporation) S3 wcnfs; C:\Windows\system32\drivers\wcnfs.sys [92672 2019-03-19] (Microsoft Corporation) S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [46472 2019-11-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [351968 2019-11-02] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [53984 2019-11-02] (Microsoft Windows -> Microsoft Corporation) S3 WinNat; C:\Windows\System32\drivers\winnat.sys [250880 2019-07-10] (Microsoft Corporation) S3 WINUSB; C:\Windows\System32\drivers\WinUSB.SYS [105472 2019-03-19] (Microsoft Corporation) S1 ws2ifsl; C:\Windows\system32\drivers\ws2ifsl.sys [25088 2019-09-12] (Microsoft Corporation) S3 WSDPrintDevice; C:\Windows\System32\drivers\WSDPrint.sys [24576 2019-03-19] (Microsoft Corporation) S3 WSDScan; C:\Windows\system32\DRIVERS\WSDScan.sys [26112 2019-03-19] (Microsoft Corporation) S3 WudfPf; C:\Windows\System32\drivers\WudfPf.sys [134656 2019-03-19] (Microsoft Corporation) S3 WUDFRd; C:\Windows\System32\drivers\WUDFRd.sys [297984 2019-03-19] (Microsoft Corporation) S3 WUDFWpdFs; C:\Windows\system32\DRIVERS\WUDFRd.sys [297984 2019-03-19] (Microsoft Corporation) S3 WUDFWpdMtp; C:\Windows\system32\DRIVERS\WUDFRd.sys [297984 2019-03-19] (Microsoft Corporation) S3 xboxgip; C:\Windows\System32\drivers\xboxgip.sys [324608 2019-07-29] (Microsoft Corporation) S3 xinputhid; C:\Windows\System32\drivers\xinputhid.sys [48128 2019-03-19] (Microsoft Corporation) S3 idsvc; Brak ImagePath ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) =================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-11-06 21:42 - 2019-11-06 21:44 - 000000000 ____D C:\FRST 2019-11-04 20:16 - 2019-11-04 20:16 - 000000000 ____D C:\Users\Maciek\Desktop\Nowy folder (2) 2019-11-02 21:23 - 2019-11-02 21:23 - 000000000 ____D C:\Users\Maciek\Desktop\Nowy folder 2019-11-02 20:23 - 2019-11-02 20:23 - 000000000 _____ C:\Users\Maciek\Desktop\Nowy dokument tekstowy.txt 2019-11-02 20:18 - 2019-11-02 20:18 - 000000000 ____D C:\Windows\System32\Tasks\Apple 2019-11-02 20:18 - 2019-11-02 20:18 - 000000000 ____D C:\Program Files (x86)\Apple Software Update 2019-11-02 20:10 - 2019-11-02 20:10 - 009256960 _____ C:\Program Files (x86)\GUTBAA9.tmp 2019-11-02 20:10 - 2019-11-02 20:10 - 000000000 ____D C:\Program Files (x86)\GUMBAA8.tmp 2019-11-02 20:01 - 2019-11-02 20:01 - 000000000 ___HD C:\$SysReset 2019-11-02 19:55 - 2019-11-02 19:55 - 000000000 _____ C:\Users\Maciek\Desktop\Nowy skrót (4).lnk 2019-11-02 19:42 - 2019-11-02 19:44 - 000000000 _____ C:\Recovery.txt 2019-10-31 20:47 - 2019-10-31 20:47 - 000000020 ___SH C:\Users\Kasia\ntuser.ini 2019-10-31 20:46 - 2019-10-31 20:46 - 000000000 _____ C:\Users\Maciek\Desktop\Nowy skrót (3).lnk 2019-10-31 20:45 - 2019-10-31 20:45 - 000000000 _____ C:\Users\Maciek\Desktop\Nowy skrót (2).lnk 2019-10-27 15:14 - 2019-11-04 20:20 - 001433360 _____ C:\Windows\ntbtlog.txt 2019-10-26 21:31 - 2019-10-26 21:31 - 000000020 ___SH C:\Users\Administrator\ntuser.ini 2019-10-26 21:30 - 2019-10-26 21:30 - 000000000 _____ C:\Users\Maciek\Desktop\Nowy skrót.lnk 2019-10-23 21:37 - 2019-10-23 21:37 - 000000000 ____D C:\Program Files\Microsoft Mouse and Keyboard Center 2019-10-16 14:08 - 2019-10-16 14:08 - 000064416 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\point64.sys 2019-10-14 00:38 - 2019-10-14 00:38 - 000000000 ___HD C:\OneDriveTemp 2019-10-13 23:20 - 2019-09-20 05:36 - 000492544 _____ (Microsoft Corporation) C:\Windows\System32\poqexec.exe 2019-10-13 23:19 - 2019-09-20 05:14 - 000390656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-11-04 21:17 - 2018-06-03 10:38 - 000000000 ____D C:\11 2019-11-04 20:19 - 2019-07-07 20:36 - 000007388 _____ C:\Windows\System32\PerfStringBackup.INI 2019-11-04 20:19 - 2019-03-19 13:24 - 000872418 _____ C:\Windows\System32\perfh015.dat 2019-11-04 20:19 - 2019-03-19 13:24 - 000187488 _____ C:\Windows\System32\perfc015.dat 2019-11-04 20:18 - 2019-07-07 20:27 - 000000000 ____D C:\users\Maciek 2019-11-04 20:17 - 2015-12-11 21:38 - 000000214 _____ C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job 2019-11-04 20:15 - 2019-07-07 20:22 - 000000000 ____D C:\Windows\System32\SleepStudy 2019-11-03 20:09 - 2019-03-19 05:37 - 000000000 ____D C:\Windows\CbsTemp 2019-11-03 19:48 - 2019-07-07 20:34 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2019-11-03 19:48 - 2017-07-01 22:22 - 000000000 ____D C:\ProgramData\NVIDIA 2019-11-03 19:48 - 2014-11-09 12:30 - 000000000 ____D C:\Program Files (x86)\TeamViewer 2019-11-03 19:48 - 2014-04-23 20:44 - 000000000 ____D C:\ProgramData\VMware 2019-11-03 14:55 - 2018-04-23 20:30 - 000000000 ____D C:\Program Files (x86)\Filter Forge 4 2019-11-03 14:03 - 2015-12-12 21:27 - 000000000 ____D C:\1 2019-11-03 09:21 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\PolicyDefinitions 2019-11-03 09:03 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2019-11-03 08:54 - 2019-03-19 13:26 - 000000000 ___SD C:\Windows\System32\AppV 2019-11-03 08:54 - 2019-03-19 05:52 - 000000000 ___RD C:\Windows\PrintDialog 2019-11-03 08:54 - 2019-03-19 05:52 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2019-11-03 08:54 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SysWOW64\oobe 2019-11-03 08:54 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SysWOW64\inetsrv 2019-11-03 08:54 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SysWOW64\Dism 2019-11-03 08:54 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SystemResources 2019-11-03 08:54 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\System32\WinMetadata 2019-11-03 08:54 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\System32\SystemResetPlatform 2019-11-03 08:54 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\System32\oobe 2019-11-03 08:54 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\System32\migwiz 2019-11-03 08:54 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\System32\inetsrv 2019-11-03 08:54 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\System32\Dism 2019-11-03 08:54 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\bcastdvr 2019-11-03 08:54 - 2019-03-19 05:50 - 000000000 ____D C:\Windows\INF 2019-11-03 08:50 - 2019-03-19 05:37 - 000786432 _____ C:\Windows\System32\config\BBI 2019-11-03 08:22 - 2019-07-07 20:34 - 000003570 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2019-11-03 08:22 - 2019-07-07 20:34 - 000003446 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2019-11-02 21:53 - 2019-07-07 20:22 - 000673144 _____ C:\Windows\System32\FNTCACHE.DAT 2019-11-02 21:51 - 2019-07-07 20:27 - 000000000 ____D C:\users\Administrator 2019-11-02 21:47 - 2014-08-26 20:37 - 000000000 ____D C:\Program Files (x86)\Google 2019-11-02 20:38 - 2018-06-03 11:09 - 000000000 ____D C:\Users\Administrator\AppData\Local\Adobe 2019-11-02 20:10 - 2019-10-04 19:43 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData 2019-11-02 20:08 - 2018-02-23 18:07 - 000000000 ____D C:\Windows\System32\Drivers\wd 2019-10-31 20:47 - 2019-07-07 20:27 - 000000000 ____D C:\users\Kasia 2019-10-26 21:31 - 2018-06-03 11:09 - 000000000 ____D C:\Users\Administrator\AppData\Local\ConnectedDevicesPlatform 2019-10-26 16:15 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2019-10-26 16:14 - 2015-08-19 22:15 - 000000000 ____D C:\Program Files\Microsoft Office 2019-10-26 16:03 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\LiveKernelReports 2019-10-26 13:47 - 2014-04-23 20:28 - 000000000 ____D C:\Users\Maciek\Documents\RedEye Host Scanner 2019-10-26 13:45 - 2016-04-17 11:56 - 000000000 ____D C:\Users\Maciek\AppData\Local\RealVNC 2019-10-25 20:37 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps 2019-10-25 20:37 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\AppReadiness 2019-10-24 23:28 - 2014-12-20 18:39 - 000000128 _____ C:\Users\Maciek\AppData\Local\PUTTY.RND 2019-10-24 23:04 - 2018-05-09 21:10 - 000000000 ____D C:\Users\Maciek\AppData\Roaming\VMware 2019-10-24 23:04 - 2014-04-23 21:12 - 000000000 ____D C:\Users\Maciek\AppData\Local\VMware 2019-10-23 21:37 - 2019-07-07 20:34 - 000003812 _____ C:\Windows\System32\Tasks\Microsoft_MKC_Logon_Task_ceip.exe 2019-10-23 21:37 - 2019-07-07 20:34 - 000003294 _____ C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe 2019-10-23 21:37 - 2019-07-07 20:34 - 000003242 _____ C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe 2019-10-23 21:37 - 2019-07-07 20:34 - 000003238 _____ C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_itype_exe 2019-10-23 21:37 - 2019-07-07 20:34 - 000003210 _____ C:\Windows\System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe 2019-10-23 21:37 - 2019-07-07 20:34 - 000003206 _____ C:\Windows\System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe 2019-10-23 19:25 - 2014-05-11 12:25 - 000000000 ____D C:\ProgramData\TEMP 2019-10-23 16:32 - 2019-10-04 19:43 - 000003518 _____ C:\Windows\System32\Tasks\AdobeGCInvoker-1.0 2019-10-23 10:47 - 2017-11-19 11:17 - 000000000 ____D C:\Users\Maciek\AppData\Local\Packages 2019-10-19 13:36 - 2019-07-07 20:34 - 000004562 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task 2019-10-19 13:34 - 2018-03-25 12:02 - 000000000 ____D C:\Users\Maciek\AppData\Local\Adobe 2019-10-16 14:08 - 2016-08-15 12:46 - 000074544 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\dc3d.sys 2019-10-14 00:38 - 2018-08-26 09:34 - 000000000 ___RD C:\Users\Maciek\iCloudDrive 2019-10-14 00:38 - 2014-04-27 16:36 - 000000000 __RDL C:\Users\Maciek\OneDrive 2019-10-13 23:30 - 2014-04-22 22:16 - 000000000 ____D C:\Windows\System32\MRT 2019-10-13 23:28 - 2014-04-22 22:16 - 127230528 ____C (Microsoft Corporation) C:\Windows\System32\MRT.exe ==================== KnownDLLs (filtrowane) ========================= ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) C:\Windows\System32\winlogon.exe => MD5 jest poprawne C:\Windows\System32\wininit.exe => MD5 jest poprawne C:\Windows\explorer.exe [2019-09-12 21:00] - [2019-09-12 21:00] - 004551352 _____ (Microsoft Corporation) 9CFA2A65575B4313753BC52D268F7B85 C:\Windows\SysWOW64\explorer.exe [2019-09-12 21:01] - [2019-09-12 21:01] - 003916048 _____ (Microsoft Corporation) 20BBF602473BFE7EE8FCD00F85056D41 C:\Windows\System32\svchost.exe => MD5 jest poprawne C:\Windows\SysWOW64\svchost.exe => MD5 jest poprawne C:\Windows\System32\services.exe => MD5 jest poprawne C:\Windows\System32\User32.dll => MD5 jest poprawne C:\Windows\SysWOW64\User32.dll => MD5 jest poprawne C:\Windows\System32\userinit.exe => MD5 jest poprawne C:\Windows\SysWOW64\userinit.exe => MD5 jest poprawne C:\Windows\System32\rpcss.dll => MD5 jest poprawne C:\Windows\System32\dnsapi.dll => MD5 jest poprawne C:\Windows\SysWOW64\dnsapi.dll => MD5 jest poprawne C:\Windows\System32\dllhost.exe => MD5 jest poprawne C:\Windows\SysWOW64\dllhost.exe => MD5 jest poprawne C:\Windows\System32\Drivers\volsnap.sys => MD5 jest poprawne ==================== Powiązania plików (filtrowane) ============= ==================== Punkty Przywracania systemu ========================= ==================== Statystyki pamięci =========================== Procent pamięci w użyciu: 7% Całkowita pamięć fizyczna: 16313.14 MB Dostępna pamięć fizyczna: 15034.79 MB Całkowita pamięć wirtualna: 16313.14 MB Dostępna pamięć wirtualna: 15113.83 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:231.7 GB) (Free:85.99 GB) NTFS Drive d: (Win10ToGo) (Removable) (Total:13.9 GB) (Free:1.56 GB) NTFS Drive f: () (Fixed) (Total:0.83 GB) (Free:0.39 GB) NTFS Drive x: (Boot) (Fixed) (Total:0.49 GB) (Free:0.49 GB) NTFS Drive y: (Data) (Fixed) (Total:0.36 GB) (Free:0.26 GB) NTFS ==>[system z komponentami startowymi (pozyskano odczytując dysk)] \\?\Volume{a5a458e1-00d5-11ea-9458-806e6f6e6963}\ () (Removable) (Total:0.29 GB) (Free:0.25 GB) FAT32 ==================== MBR & Tablica partycji ==================== ========================================================== Disk: 0 (Size: 232.9 GB) (Disk ID: AF3B2AEA) Partition 1: (Active) - (Size=365 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=231.7 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=847 MB) - (Type=27) ========================================================== Disk: 1 (Protective MBR) (Size: 14.3 GB) (Disk ID: 00000000) Partition: GPT. ==================== Koniec FRST.txt ========================