kambos506 utworzono 25 listopada 2020 utworzono 25 listopada 2020 (edytowane) Witam mam problem z przeglądarką po wpisaniu w google czegokolwiek wyskakują mi takie jakby reklamy czy co to jest nie wiem sam ale tak jakby reklamy wcześniej tego nie miałem oraz nie wiem jak teamu zaradzić.
Niebieska komentarz 25 listopada 2020 komentarz 25 listopada 2020 Przeskanuj komputer Malwarebytes i AdwCleanerem, daj do kwarantanny bądź usuń to co znajdą.
kambos506 komentarz 25 listopada 2020 Autor komentarz 25 listopada 2020 Robiłem już to system czysty i dalej to samo w ustawianiach chroma przeskanowałem tak samo i czysto a problem dalej jest
Anawa komentarz 25 listopada 2020 komentarz 25 listopada 2020 Jakieś dodatkowe rozszerzenia używasz do przeglądarki?
Niebieska komentarz 25 listopada 2020 komentarz 25 listopada 2020 A zobacz czy to będzie w Trybie incognito.
Niebieska komentarz 26 listopada 2020 komentarz 26 listopada 2020 Wyczyść cookies, wszystkie jakie masz.
Niebieska komentarz 27 listopada 2020 komentarz 27 listopada 2020 Teraz to już tylko zostały już logi z FRST (zaznacz Addition i Shortcuts)
alllan komentarz 28 listopada 2020 komentarz 28 listopada 2020 Dzień dobry, miałem właśnie tworzyć post, ale widzę że tutaj kolega ma ten sam problem ... porażka totalna - mam bit defender i ReImage przeskanowane i wszystko w porządku, jednakże mam ten sam problem - proszę zobaczcie w screeny. W managerze zadań z google chrome jest jakiś twitterboss.ru .... generalnie taki problem mam tylko w CHROME
Anawa komentarz 28 listopada 2020 komentarz 28 listopada 2020 To tak jak @Niebieska napisała. Wklej raport z FRST.
alllan komentarz 28 listopada 2020 komentarz 28 listopada 2020 Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 27-11-2020 Uruchomiony przez allla (28-11-2020 12:36:54) Uruchomiony z D:\Pobrane Windows 10 Home Wersja 2004 19041.630 (X64) (2020-10-25 18:11:49) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-1881768518-231767975-2866080711-500 - Administrator - Disabled) agawe (S-1-5-21-1881768518-231767975-2866080711-1002 - Limited - Enabled) => C:\Users\agawe allla (S-1-5-21-1881768518-231767975-2866080711-1001 - Administrator - Enabled) => C:\Users\allla Gość (S-1-5-21-1881768518-231767975-2866080711-501 - Limited - Disabled) hanna (S-1-5-21-1881768518-231767975-2866080711-1008 - Limited - Enabled) => C:\Users\hanna Konto domyślne (S-1-5-21-1881768518-231767975-2866080711-503 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-1881768518-231767975-2866080711-504 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Bitdefender Antywirus (Enabled - Up to date) {0E17DB7D-A20F-62CE-B95B-17DB0CDFE318} AV: McAfee — ochrona antywirusowa i przed oprogramowaniem szpiegującym (Enabled - Up to date) {DA9F8ED0-D0DE-39CC-F55A-51AB4CC1B556} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: McAfee Firewall (Enabled) {E2A40FF5-9AB1-3894-DE05-F89EB212F22D} FW: Bitdefender Zapora Sieciowa (Enabled) {362C5A58-E860-6396-9204-BEEEF20CA463} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 20.013.20066 - Adobe Systems Incorporated) Aktualizacje NVIDIA 2.4.5.57 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 2.4.5.57 - NVIDIA Corporation) Hidden Axence netTools 5 (HKLM-x32\...\Axence NetTools_is1) (Version: - Axence Inc.) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 24.0.1.142 - Bitdefender) Bitdefender Total Security (HKLM\...\Bitdefender) (Version: 25.0.7.34 - Bitdefender) Bitdefender VPN (HKLM\...\Bitdefender VPN) (Version: 25.0.1.24 - Bitdefender) Blitz (HKU\S-1-5-21-1881768518-231767975-2866080711-1001\...\Blitz) (Version: 1.6.17 - Blitz Inc.) ChomikBox (HKLM-x32\...\{8E4185CC-4FF3-46B9-A4DB-5B850B71ABC4}) (Version: 2.0.8.2 - Chomikuj.pl) CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.5521 - CyberLink Corp.) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.11.0.0948 - Disc Soft Ltd) Deluxe Ski Jump 4 (HKLM-x32\...\Deluxe Ski Jump 4_is1) (Version: 1.7.0 - Mediamond Tmi) Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment) Disk Drill 4.0.499.0 (HKLM-x32\...\{b0226fab-bacc-4c77-947d-609c7422e604}) (Version: 4.0.499.0 - CleverFiles) Dokan Library 1.2.0.1000 (x64) (HKLM\...\{65A3A964-3DC3-0102-0000-180809151012}) (Version: 1.2.0.1000 - Dokany Project) Hidden Dokan Library 1.2.0.1000 Bundle (HKLM-x32\...\{c2f619b0-68fd-4433-970e-cd66cd7a2775}) (Version: 1.2.0.1000 - Dokany Project) Dolby Audio X2 Windows API SDK (HKLM\...\{6A478BF2-F67F-4ABC-A7F1-B6B5BA862371}) (Version: 0.6.3.44 - Dolby Laboratories, Inc.) Dolby Audio X2 Windows APP (HKLM\...\{7DA57EF8-9D20-4126-AF15-D0CC97D0C017}) (Version: 0.4.0.22 - Dolby Laboratories, Inc.) Epson Easy Photo Print 2 (HKLM-x32\...\{F05A434E-D3CF-4B44-9D3E-779D42090781}) (Version: 2.8.0.0 - Seiko Epson Corporation) Epson Event Manager (HKLM-x32\...\{AB8BE3EA-01D3-44B7-8E77-A9601CBDEBDE}) (Version: 3.10.0085 - Seiko Epson Corporation) EPSON L3060 Series Printer Uninstall (HKLM\...\EPSON L3060 Series) (Version: - Seiko Epson Corporation) Epson Printer Connection Checker (HKLM-x32\...\{FFA5C174-DB3F-4AFE-B59D-C0FB1744CD76}) (Version: 3.1.0.0 - Seiko Epson Corporation) Epson Scan 2 (HKLM-x32\...\Epson Scan 2) (Version: - Seiko Epson Corporation) EPSON Scan OCR Component (HKLM-x32\...\{563B99D8-8895-4E3E-AE8D-15BE8C05F1C1}) (Version: 3.00.04 - SEIKO EPSON Corp.) Epson Software Updater (HKLM-x32\...\{FD036A57-F81D-4865-AAF0-811558EA76AE}) (Version: 4.5.1 - Seiko Epson Corporation) footbe (HKLM\...\footbe_is1) (Version: 7.0.3 build 1703 - ) GIMP 2.10.20 (HKLM\...\GIMP-2_is1) (Version: 2.10.20 - The GIMP Team) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 86.0.4240.198 - Google LLC) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.31 - Google LLC) Hidden Instrukcje użytkownika (HKLM-x32\...\{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 4.0.0.1 - Lenovo) Hidden Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1162 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.15.4271 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.6.0.1029 - Intel Corporation) Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{609B7E15-BE3A-4B81-BAEA-5E4B24BBB24F}) (Version: 18.1.1538.2273 - Intel Corporation) Intel® RealSense™ Depth Camera Manager Beta (x86): dptf_com (HKLM-x32\...\{C982EA5E-7331-11E5-ABE7-2C44FD873B55}) (Version: 2.2.0.52404 - Intel Corporation) Hidden Intel® RealSense™ Depth Camera Manager Beta (x86): dptf_com (HKLM-x32\...\{D734DE91-2B81-11E5-91AA-2C44FD873B55}) (Version: 2.2.0.32425 - Intel Corporation) Hidden Intel® RealSense™ Depth Camera Manager Beta (x86): Intel® RealSense™ SDK info server (HKLM-x32\...\{D7357ACF-2B81-11E5-8EF9-2C44FD873B55}) (Version: 2.2.0.32425 - Intel Corporation) Hidden Intel® RealSense™ Depth Camera Manager F200 Gold (x86): Intel® RealSense™ 3D camera IO module (HKLM-x32\...\{6C1D3280-7332-11E5-AD4E-2C44FD873B55}) (Version: 1.4.27.52404 - Intel Corporation) Hidden Intel® RealSense™ Depth Camera Manager F200 Gold (x86): Intel® RealSense™ 3D camera IO module (HKLM-x32\...\{8885534F-2B82-11E5-B349-2C44FD873B55}) (Version: 1.4.27.32425 - Intel Corporation) Hidden Intel® RealSense™ Depth Camera Manager F200 Gold (x86): Intel® RealSense™ Depth Camera Manager Service (HKLM-x32\...\{6C1D3280-7332-11E5-B485-2C44FD873B55}) (Version: 1.4.27.52404 - Intel Corporation) Hidden Intel® RealSense™ Depth Camera Manager F200 Gold (x86): Intel® RealSense™ Depth Camera Manager Service (HKLM-x32\...\{8885EF8F-2B82-11E5-BFED-2C44FD873B55}) (Version: 1.4.27.32425 - Intel Corporation) Hidden Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation) K-Lite Mega Codec Pack 15.6.5 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 15.6.5 - KLCP) League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc) Lenovo Experience Improvement (HKLM\...\LenovoExperienceImprovement) (Version: 2.0.9.0 - Lenovo) Lenovo Nerve Sense (HKLM\...\{DCB4DFB5-93CA-4BDD-9D08-CE880626B46E}_is1) (Version: 2.6.11.8 - Lenovo) Lenovo OneKey Recovery (HKLM\...\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.5708 - CyberLink Corp.) Hidden Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.5708 - CyberLink Corp.) Lenovo Photo Master (HKLM-x32\...\{BC94C56A-3649-420C-8756-2ADEBE399D33}) (Version: 2.5.5720.01 - CyberLink Corp.) Lenovo PowerDVD12 (HKLM-x32\...\{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.5328.55 - CyberLink Corp.) Hidden Lenovo PowerDVD12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.5328.55 - CyberLink Corp.) Lenovo QuickOptimizer (HKLM\...\{8D2C871B-1B9F-45AC-9C43-2BB18089CDFA}) (Version: 1.0.019.00 - Lenovo) Lenovo Solution Center (HKLM\...\{A5591EC4-8AD6-48EE-9F8D-FACFA8BA4E35}) (Version: 3.0.003.00 - Lenovo) Lenovo System Interface Foundation Driver (HKLM\...\{C2E5CA37-C862-4A69-AC6D-24F450A20C16}) (Version: 1.1.18.1 - Lenovo) LenovoUtility (HKLM-x32\...\{6ADA7E88-8D16-4D0D-BC90-2B93AC5E56DA}) (Version: 3.0.0.4 - Lenovo) Hidden LenovoUtility (HKLM-x32\...\InstallShield_{6ADA7E88-8D16-4D0D-BC90-2B93AC5E56DA}) (Version: 3.0.0.4 - Lenovo) Lightworks (HKLM-x32\...\{E94DD4E4-7746-472c-AA7B-1242FED0CFC8}) (Version: 14.6.0.0 - EditShare) MAC Diagnoza EP (HKU\S-1-5-21-1881768518-231767975-2866080711-1002\...\38fb98245903be1d) (Version: 1.0.0.184 - Grupa MAC S.A) Menedżer kamery z technologią wykrywania głębi Intel® RealSense™ F200 (HKLM-x32\...\ARP_for_prd_dcm_runtime_1.4.27.32425) (Version: 1.4.27.32425 - Intel Corporation) Menedżer kamery z technologią wykrywania głębi Intel® RealSense™ F200 (HKLM-x32\...\ARP_for_prd_dcm_runtime_1.4.27.52404) (Version: 1.4.27.52404 - Intel Corporation) Metric Collection SDK 35 (HKLM-x32\...\{C2B5B5B0-2545-4E94-B4BA-548D4BF0B196}) (Version: 1.2.0010.00 - Lenovo Group Limited) Hidden Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 87.0.664.47 - Microsoft Corporation) Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.137.99 - ) Microsoft Office Professional Plus 2019 - pl-pl (HKLM\...\ProPlus2019Retail - pl-pl) (Version: 16.0.13328.20356 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1881768518-231767975-2866080711-1001\...\OneDriveSetup.exe) (Version: 20.169.0823.0008 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1881768518-231767975-2866080711-1002\...\OneDriveSetup.exe) (Version: 20.169.0823.0008 - Microsoft Corporation) Microsoft SQL Server 2016 LocalDB (HKLM\...\{9097BF1A-13A0-4A4A-A1F8-473E2A669863}) (Version: 13.1.4001.0 - Microsoft Corporation) Microsoft Teams (HKU\S-1-5-21-1881768518-231767975-2866080711-1001\...\Teams) (Version: 1.3.00.28779 - Microsoft Corporation) Microsoft Teams (HKU\S-1-5-21-1881768518-231767975-2866080711-1002\...\Teams) (Version: 1.3.00.30866 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{97238E8A-4919-4A1E-965A-C6C36938F4CE}) (Version: 2.68.0.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x64) - 14.11.25325 (HKLM-x32\...\{6c6356fe-cbfa-4944-9bed-a9e99f45cb7a}) (Version: 14.11.25325.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x86) - 14.11.25325 (HKLM-x32\...\{404c9c27-8377-4fd1-b607-7ca635db4e49}) (Version: 14.11.25325.0 - Microsoft Corporation) Mozilla Firefox 81.0.2 (x64 pl) (HKLM\...\Mozilla Firefox 81.0.2 (x64 pl)) (Version: 81.0.2 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 72.0.2 - Mozilla) Mozilla Thunderbird 68.12.1 (x86 pl) (HKLM-x32\...\Mozilla Thunderbird 68.12.1 (x86 pl)) (Version: 68.12.1 - Mozilla) NVIDIA GeForce Experience 2.4.5.57 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.5.57 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation) O2Micro Flash Memory Card Windows Driver (HKLM\...\{A6668863-B0A3-4812-AAF2-E47749ECFE0E}) (Version: 3.3.00.145 - O2Micro International LTD.) Hidden O2Micro Flash Memory Card Windows Driver (HKLM-x32\...\InstallShield_{A6668863-B0A3-4812-AAF2-E47749ECFE0E}) (Version: 3.3.00.145 - O2Micro International LTD.) Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.13328.20340 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.13328.20340 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.13328.20340 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0415-0000-0000000FF1CE}) (Version: 16.0.13328.20340 - Microsoft Corporation) Hidden Oprogramowanie Intel® PROSet/Wireless (HKLM-x32\...\{4c8b7360-62a2-4339-b745-41323055d0bb}) (Version: 18.20.0 - Intel Corporation) Oprogramowanie mikroukładu Intel® (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel(R) Corporation) Hidden Panel sterowania NVIDIA 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 376.54 - NVIDIA Corporation) Hidden PITax.pl Łatwe podatki (HKLM-x32\...\{22775975-64E1-4B85-8409-E1BB1F9747D7}) (Version: 10.1.1.3 - PITax.pl) Hidden REACHit (HKLM-x32\...\{4532E4C5-C84D-4040-A044-ECFCC5C6995B}) (Version: 2.1.0.11 - Lenovo) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7780 - Realtek Semiconductor Corp.) Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform) Reimage Repair (HKLM\...\Reimage Repair) (Version: 1.9.5.6 - Reimage) <==== UWAGA SHAREit (HKLM-x32\...\SHAREit_is1) (Version: 2.5.5.1 - Lenovo) SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 4.1.2000 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.4.5.57 - NVIDIA Corporation) Hidden Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TeamSpeak 3 Client (HKU\S-1-5-21-1881768518-231767975-2866080711-1001\...\TeamSpeak 3 Client) (Version: 3.5.2 - TeamSpeak Systems GmbH) Total Uninstall Essential 7.0.0 (HKLM\...\Total Uninstall Essential_is1) (Version: 7.0.0 - Gavrila Martau) User Manuals (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 4.0.0.1 - Lenovo) Usługa Lenovo Vantage (HKLM-x32\...\VantageSRV_is1) (Version: 3.3.115.0 - Lenovo Group Ltd.) VEGAS Pro 15.0 (HKLM\...\{69E1B830-0C44-11E8-89BA-E03A9EDD8F3F}) (Version: 15.0.311 - VEGAS) VEGAS Pro 16.0 (HKLM\...\{0D090E4F-12A2-11E9-A3DD-00155D6302F2}) (Version: 16.0.361 - VEGAS) VEGAS Pro 17.0 (HKLM\...\{78C9DDF0-9153-11EA-BB7D-B395EC8FA0B0}) (Version: 17.0.452 - VEGAS) WinRAR 5.71 (32-bitowy) (HKLM-x32\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH) Wise Disk Cleaner 10.2.6 (HKLM-x32\...\Wise Disk Cleaner_is1) (Version: 10.2.6 - WiseCleaner.com, Inc.) Zoom (HKU\S-1-5-21-1881768518-231767975-2866080711-1001\...\ZoomUMX) (Version: 5.0 - Zoom Video Communications, Inc.) Zoom (HKU\S-1-5-21-1881768518-231767975-2866080711-1002\...\ZoomUMX) (Version: 5.0 - Zoom Video Communications, Inc.) Packages: ========= Dark Skies by Tracy Hymas -> C:\Program Files\WindowsApps\Microsoft.DarkSkiesbyTracyHymas_1.0.0.0_neutral__8wekyb3d8bbwe [2020-11-09] (Microsoft Corporation) Dodatek Aparat multimediów dla aplikacji Zdjęcia -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-04-05] (Microsoft Corporation) Lenovo Settings -> C:\Program Files\WindowsApps\LenovoCorporation.LenovoSettings_3.177.0.0_x86__4642shxvsv8s2 [2019-10-31] (LENOVO INCORPORATED.) Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2011.20.0_x64__k1h2ywk1493x8 [2020-11-27] (LENOVO INC.) Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.10142.0_x64__8wekyb3d8bbwe [2020-10-24] (Microsoft Studios) [MS Ad] Portal kont Lenovo -> C:\Program Files\WindowsApps\lenovocorporation.lenovoid_2.0.37.0_x86__4642shxvsv8s2 [2019-10-31] (LENOVO INCORPORATED.) Rozszerzenie wideo MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.22661.0_x64__8wekyb3d8bbwe [2019-11-12] (Microsoft Corporation) ==================== Niestandardowe rejestracje CLSID (filtrowane): ============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-1881768518-231767975-2866080711-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\allla\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1881768518-231767975-2866080711-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\allla\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1881768518-231767975-2866080711-1002_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\agawe\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20275.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1881768518-231767975-2866080711-1002_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\agawe\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll => Brak pliku ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2015-07-21] (CyberLink Corp. -> Cyberlink) ContextMenuHandlers1: [SHAREit.FileContextMenuExt] -> {430BD134-576D-4E75-87CD-0F5C6221A82B} => C:\Program Files (x86)\Lenovo\SHAREit\ShellEx\ShellExt64.dll [2015-09-25] (LENOVO -> Lenovo) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2019-05-07] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2019-05-07] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2015-07-21] (CyberLink Corp. -> Cyberlink) ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2019-10-31] (AVB Disc Soft, SIA -> Disc Soft Ltd) ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2019-10-31] (AVB Disc Soft, SIA -> Disc Soft Ltd) ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd) ContextMenuHandlers4: [SHAREit.FileContextMenuExt] -> {430BD134-576D-4E75-87CD-0F5C6221A82B} => C:\Program Files (x86)\Lenovo\SHAREit\ShellEx\ShellExt64.dll [2015-09-25] (LENOVO -> Lenovo) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Brak pliku ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_1a33d2f73651d989\igfxDTCM.dll [2018-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-12-29] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2019-05-07] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2019-05-07] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Drivers32: [VIDC.X264] => C:\WINDOWS\system32\x264vfw64.dll [3799552 2017-07-30] (x264vfw project) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [VIDC.LAGS] => C:\WINDOWS\system32\lagarith.dll [148992 2011-12-07] () [Brak podpisu cyfrowego] HKLM\...\Drivers32: [VIDC.XVID] => C:\WINDOWS\system32\xvidvfw.dll [310784 2019-12-28] () [Brak podpisu cyfrowego] HKLM\...\Drivers32: [msacm.ac3acm] => C:\WINDOWS\system32\ac3acm.acm [180736 2012-07-21] (fccHandler) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [VIDC.X264] => C:\Windows\SysWOW64\x264vfw.dll [3850240 2017-07-30] (x264vfw project) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\SysWOW64\lagarith.dll [216064 2011-12-07] () [Brak podpisu cyfrowego] HKLM\...\Drivers32: [VIDC.XVID] => C:\Windows\SysWOW64\xvidvfw.dll [284160 2019-12-28] () [Brak podpisu cyfrowego] HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\SysWOW64\ac3acm.acm [122880 2012-07-21] (fccHandler) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [VIDC.FFDS] => C:\Windows\SysWOW64\ff_vfw.dll [112128 2015-10-24] () [Brak podpisu cyfrowego] ==================== Skróty & WMI ======================== ==================== Załadowane moduły (filtrowane) ============= 2019-11-04 11:24 - 2016-09-22 07:11 - 000081920 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\Lenovo\Lenovo Photo Master\koan\_ctypes.pyd 2020-11-17 12:36 - 2020-11-25 16:28 - 150867952 _____ (Google LLC -> Google LLC) [Brak podpisu cyfrowego] C:\Program Files (x86)\Google\Chrome\Application\86.0.4240.198\chrome.dll 2015-07-27 11:28 - 2015-07-27 11:28 - 000285184 _____ (Intel Corporation) [Brak podpisu cyfrowego] [Plik w użyciu] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\PsiData.dll 2019-11-04 11:24 - 2016-09-22 07:06 - 001732608 _____ (Intel Corporation) [Brak podpisu cyfrowego] C:\Program Files (x86)\Lenovo\Lenovo Photo Master\subsys\PyImage\ijl20.dll 2015-07-27 11:28 - 2015-07-27 11:28 - 000562688 _____ (Intel Corporation) [Brak podpisu cyfrowego] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\ISDI2.dll 2020-10-25 19:06 - 2020-10-25 19:06 - 001101824 _____ (Microsoft Corporation) [Brak podpisu cyfrowego] C:\WINDOWS\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80.DLL 2020-10-25 19:06 - 2020-10-25 19:06 - 001093120 _____ (Microsoft Corporation) [Brak podpisu cyfrowego] C:\WINDOWS\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80U.DLL 2015-12-29 03:20 - 2015-06-24 12:36 - 001903232 _____ (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [Brak podpisu cyfrowego] C:\Program Files\NVIDIA Corporation\NvStreamSrv\rxinput.dll 2015-12-29 03:21 - 2015-06-24 12:36 - 001571696 _____ (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [Brak podpisu cyfrowego] C:\WINDOWS\system32\nvspcap64.dll 2019-11-04 11:24 - 2016-09-22 07:11 - 002113536 _____ (Python Software Foundation) [Brak podpisu cyfrowego] C:\Program Files (x86)\Lenovo\Lenovo Photo Master\koan\python25.dll 2020-08-13 07:39 - 2020-05-30 19:04 - 001638912 _____ (Robert Simpson, et al.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Lenovo\VantageService\3.3.115.0\x64\SQLite.Interop.dll 2020-11-12 22:52 - 2020-05-30 19:58 - 001280000 _____ (Robert Simpson, et al.) [Brak podpisu cyfrowego] C:\ProgramData\Lenovo\iMController\Plugins\GenericMessagingPlugin\x86\SQLite.Interop.dll 2017-02-13 13:54 - 2017-02-13 13:54 - 000132096 _____ (Seiko Epson Corporation) [Brak podpisu cyfrowego] C:\Program Files (x86)\EPSON Software\Event Manager\epnsm.dll 2009-10-21 16:39 - 2009-10-21 16:39 - 000291328 _____ (SEIKO EPSON CORPORATION) [Brak podpisu cyfrowego] C:\Program Files (x86)\EPSON Software\Event Manager\LcMgr.dll 2020-08-13 07:40 - 2020-07-09 01:36 - 000944840 _____ (SQLite Development Team) [Brak podpisu cyfrowego] C:\ProgramData\Lenovo\iMController\Plugins\LenovoWiFiSecurityPlugin\x86\x86\e_sqlite3.dll ==================== Alternate Data Streams (filtrowane) ======== ==================== Tryb awaryjny (filtrowane) ================== ==================== Powiązania plików (filtrowane) ================= ==================== Internet Explorer (filtrowane) ========== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = HKU\S-1-5-21-1881768518-231767975-2866080711-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-1881768518-231767975-2866080711-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com HKU\S-1-5-21-1881768518-231767975-2866080711-1002\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-1881768518-231767975-2866080711-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo15.msn.com/?pc=LCTE HKU\S-1-5-21-1881768518-231767975-2866080711-1002\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com SearchScopes: HKU\S-1-5-21-1881768518-231767975-2866080711-1001 -> DefaultScope {0A18C292-4004-43ED-890F-4EA46F345DCA} URL = SearchScopes: HKU\S-1-5-21-1881768518-231767975-2866080711-1001 -> {0A18C292-4004-43ED-890F-4EA46F345DCA} URL = BHO: Bitdefender Trackers Blocking -> {159ff5d5-55f1-4d2f-b706-767a55f77abb} -> C:\Program Files\Bitdefender\Bitdefender Security\bdtbie.dll [2020-10-02] (Bitdefender SRL -> Bitdefender) BHO: Portfel Bitdefender -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll [2020-10-02] (Bitdefender SRL -> Bitdefender) BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-11-26] (Microsoft Corporation -> Microsoft Corporation) BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) BHO-x32: Bitdefender Trackers Blocking -> {159ff5d5-55f1-4d2f-b706-767a55f77abb} -> C:\Program Files\Bitdefender\Bitdefender Security\antispam32\bdtbie.dll [2020-10-02] (Bitdefender SRL -> Bitdefender) BHO-x32: Portfel Bitdefender -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll [2020-10-02] (Bitdefender SRL -> Bitdefender) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2020-11-26] (Microsoft Corporation -> Microsoft Corporation) Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) Toolbar: HKLM - Portfel Bitdefender - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll [2020-10-02] (Bitdefender SRL -> Bitdefender) Toolbar: HKLM-x32 - Portfel Bitdefender - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll [2020-10-02] (Bitdefender SRL -> Bitdefender) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-11-26] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-11-26] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-11-26] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-11-26] (Microsoft Corporation -> Microsoft Corporation) (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) IE trusted site: HKU\S-1-5-21-1881768518-231767975-2866080711-1001\...\sharepoint.com -> hxxps://zso14-files.sharepoint.com ==================== Hosts - zawartość: ========================= (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2015-07-10 12:04 - 2020-11-28 11:47 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Inne obszary =========================== (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-1881768518-231767975-2866080711-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\allla\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\1_janapanfilova.jpg HKU\S-1-5-21-1881768518-231767975-2866080711-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\agawe\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\lenovowallpaper.jpg DNS Servers: 192.168.100.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Załączenie wejścia w fixlist spowoduje jego usunięcie.) HKU\S-1-5-21-1881768518-231767975-2866080711-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams" ==================== Reguły Zapory systemu Windows (filtrowane) ================ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{0480C039-441E-4CE6-8DF9-8E307DD9ECC1}] => (Allow) D:\Lightworks\ntcardvt.exe (EditShare EMEA (X-Edit Limited) -> Editshare EMEA) FirewallRules: [{4D2BDEE3-8843-462E-948E-BD13C0350047}] => (Allow) D:\Lightworks\ntcardvt.exe (EditShare EMEA (X-Edit Limited) -> Editshare EMEA) FirewallRules: [{5DE1F766-B775-47E8-95AE-49F37B72543D}] => (Allow) D:\Lightworks\lightworks.exe (EditShare EMEA (X-Edit Limited) -> ) FirewallRules: [{87EF7C92-44B5-4991-A0D8-729BDC059F2F}] => (Allow) D:\Lightworks\lightworks.exe (EditShare EMEA (X-Edit Limited) -> ) FirewallRules: [{81F0781C-7D73-46FB-94B3-7719E857B000}] => (Allow) C:\Program Files (x86)\Axence\netTools\5\netTools.exe (Axence Inc. -> Axence Inc.) FirewallRules: [{9B261AA9-51D4-4428-8C8C-FB5190970F91}] => (Allow) C:\Program Files (x86)\Axence\netTools\5\netTools.exe (Axence Inc. -> Axence Inc.) FirewallRules: [{1FC944A4-B0B7-419F-9583-104775ED46BF}] => (Allow) D:\Games\Steam\steamapps\common\Football Manager 2020 Editor\editor.exe (Sports Interactive) [Brak podpisu cyfrowego] FirewallRules: [{8EDE8717-3B24-471B-9E95-75AC5C97BE6C}] => (Allow) D:\Games\Steam\steamapps\common\Football Manager 2020 Editor\editor.exe (Sports Interactive) [Brak podpisu cyfrowego] FirewallRules: [{32AE8D0D-42C4-4AED-9BBB-F06D037395FE}] => (Allow) D:\Games\Steam\steamapps\common\Football Manager 2020\fm.exe (Sports Interactive) [Brak podpisu cyfrowego] FirewallRules: [{7556E017-0155-4A76-9026-EEE5F7987EDA}] => (Allow) D:\Games\Steam\steamapps\common\Football Manager 2020\fm.exe (Sports Interactive) [Brak podpisu cyfrowego] FirewallRules: [{056749A7-ADD8-44CE-8C05-A99B287B205D}] => (Allow) D:\Games\Steam\steamapps\common\Football Manager 2020 Touch\fm.exe (Sports Interactive) [Brak podpisu cyfrowego] FirewallRules: [{C087DE58-FBBB-4577-9A8E-CE106D8D5CB8}] => (Allow) D:\Games\Steam\steamapps\common\Football Manager 2020 Touch\fm.exe (Sports Interactive) [Brak podpisu cyfrowego] FirewallRules: [{26639D60-AAA7-4C60-8EC9-B73FAD0F8925}] => (Allow) C:\Users\allla\AppData\Roaming\Zoom\bin\airhost.exe => Brak pliku FirewallRules: [{CD53C9FD-B61D-4A06-8A73-D3B9554D9E14}] => (Allow) C:\Users\allla\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{1910246E-4707-43A6-A3E3-207381CA2281}] => (Allow) D:\Games\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> ) FirewallRules: [{FB0BBEC2-BD38-45C9-AB1D-39BC7B214100}] => (Allow) D:\Games\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> ) FirewallRules: [{9055BA1C-72F4-4908-9FD2-BB55BF7ADD17}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) FirewallRules: [{317413CA-414B-4113-B03D-00B4E4681670}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) FirewallRules: [{5CDD3C8F-7557-47B2-B4A9-6025D13C883F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{B3DCDEE6-7BE1-4B8B-B18B-A8E5972C92B7}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [UDP Query User{310B741B-09B1-4769-8BDD-F56F2F9EA659}D:\games\diablo iii\x64\diablo iii64.exe] => (Allow) D:\games\diablo iii\x64\diablo iii64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) FirewallRules: [TCP Query User{6CB309F0-6FE1-4CE0-AE4B-6E41BC972F13}D:\games\diablo iii\x64\diablo iii64.exe] => (Allow) D:\games\diablo iii\x64\diablo iii64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment) FirewallRules: [UDP Query User{8C6F3E83-8E2C-4F17-8EFB-590B96E021D7}D:\games\leagueoflegends\game\league of legends.exe] => (Allow) D:\games\leagueoflegends\game\league of legends.exe (Riot Games, Inc. -> Riot Games, Inc.) FirewallRules: [TCP Query User{43CF0364-CA04-4913-B01B-0FDA9ACF0D3F}D:\games\leagueoflegends\game\league of legends.exe] => (Allow) D:\games\leagueoflegends\game\league of legends.exe (Riot Games, Inc. -> Riot Games, Inc.) FirewallRules: [UDP Query User{67398702-8454-4390-9386-C628DC56D196}C:\users\allla\appdata\local\blitz\current\blitz.exe] => (Allow) C:\users\allla\appdata\local\blitz\current\blitz.exe (Swift Media Entertainment, Inc. -> Blitz Inc.) FirewallRules: [TCP Query User{79D394EA-D2A1-4FCF-B578-B8CE80782704}C:\users\allla\appdata\local\blitz\current\blitz.exe] => (Allow) C:\users\allla\appdata\local\blitz\current\blitz.exe (Swift Media Entertainment, Inc. -> Blitz Inc.) FirewallRules: [{2B51A38E-DBB1-4398-846B-E86167DB2EB9}] => (Allow) D:\Games\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{8E8793F5-D920-46D8-9F66-8438D9B78B26}] => (Allow) D:\Games\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{9319384A-EA71-44B9-97B8-E37C266631AD}] => (Allow) D:\Games\Steam\steamapps\common\Train Sim World\WindowsNoEditor\TS2Prototype.exe () [Brak podpisu cyfrowego] FirewallRules: [{608DD4D0-3567-4524-870A-720475039BD5}] => (Allow) D:\Games\Steam\steamapps\common\Train Sim World\WindowsNoEditor\TS2Prototype.exe () [Brak podpisu cyfrowego] FirewallRules: [{C44D9C9D-86F5-4B2A-B6DE-3C28B62CE73D}] => (Allow) D:\Games\Steam\bin\cef\cef.win7\steamwebhelper.exe => Brak pliku FirewallRules: [{D481E50F-B8FB-4B42-B043-63E8E7BE5C16}] => (Allow) D:\Games\Steam\bin\cef\cef.win7\steamwebhelper.exe => Brak pliku FirewallRules: [{07FC21C8-5198-4D10-A15F-1B5A866A1E2B}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) FirewallRules: [{0CCE5D60-E86C-487E-B60A-22CA09D54725}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) FirewallRules: [{8A417ED9-C6C3-4C4A-AD48-49D6FA318524}] => (Allow) D:\Games\LeagueOfLegends\LeagueClient.exe (Riot Games, Inc. -> Riot Games, Inc.) FirewallRules: [{BC21D280-C7AD-492A-BD07-91130AC506E4}] => (Allow) D:\Games\LeagueOfLegends\LeagueClient.exe (Riot Games, Inc. -> Riot Games, Inc.) FirewallRules: [{11646AB3-0676-46FE-A62A-E14CDB746765}] => (Allow) C:\Program Files (x86)\Lenovo\SHAREit\SHAREit.exe (LENOVO -> Lenovo) FirewallRules: [{BAE0F762-7267-4509-9D1D-AEEEBCDB4644}] => (Allow) C:\Program Files (x86)\Lenovo\SHAREit\SHAREit.exe (LENOVO -> Lenovo) FirewallRules: [{0F01338A-B317-4C0E-AB4A-C87692AEAB93}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{B777A742-76E3-4C37-B5E3-3DA269888AA7}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{CEFCECE9-3BF5-4681-9308-1AA052C82EDE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe => Brak pliku FirewallRules: [{4E797B38-D9B2-458F-827D-CDED53C2F196}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe => Brak pliku FirewallRules: [{2F92A052-7442-4D12-A611-A330A180543B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{1AF3D304-8881-454E-9E93-A4E1F88A57AD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{8B52A94E-18B4-4B30-83C1-0F3889ED716A}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation-Wireless Connectivity Solutions -> ) FirewallRules: [TCP Query User{25AFABF9-C850-4F05-AEF8-6D601C3AAB44}C:\users\hanna\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\hanna\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [UDP Query User{BEB2D5B6-B18A-4096-BCD7-5DD5B169A06E}C:\users\hanna\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\hanna\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{0D3D14F5-637F-44CC-B14D-A9AAB8BC8DD0}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{D3AE8C45-1ABE-4BEC-8447-7EB31C1D1C7B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.66.77.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{A619E7E4-8C43-41E8-ADE9-910934B5DADE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.66.77.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{43355FD1-8A6B-44B3-9A7C-4CBD71D3CDD6}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.66.77.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{2BA31AA2-29FE-4E04-965B-F606C87E98B4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.66.77.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [TCP Query User{847A731C-93A6-409C-8FE6-08453F1C23A6}C:\users\allla\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\allla\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [UDP Query User{CE3005F4-18B8-4ACB-BA61-78BDCEFB4E89}C:\users\allla\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\allla\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{3A96AE73-A9D5-4748-BC6F-9593BE42ABD3}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{3262B7EB-F8D3-49DC-A979-E327AFD09204}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{5D7410C6-8EA6-4025-9B39-1ADCCB0AA2CA}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{171374AA-1454-4D81-A2FF-96A01D54D809}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{F6A374F4-FE12-48FC-A693-08387AF6B3B9}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) ==================== Punkty Przywracania systemu ========================= 28-11-2020 10:20:10 Reimage Repair Restore Point ==================== Wadliwe urządzenia w Menedżerze urządzeń ============ Name: Intel(R) RealSense(TM) 3D Camera Virtual Driver Description: Intel(R) RealSense(TM) 3D Camera Virtual Driver Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f} Manufacturer: Intel Service: IXCamera Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31) Resolution: Update the driver ==================== Błędy w Dzienniku zdarzeń: ======================== Dziennik Aplikacja: ================== Error: (11/28/2020 12:07:30 PM) (Source: SideBySide) (EventID: 35) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Błąd w pliku manifestu lub w pliku zasad "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" w wierszu 1. Tożsamość składnika znaleziona w manifeście nie odpowiada tożsamości składnika żądanego. Odwołanie to UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0". Definicja to UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (11/28/2020 11:47:55 AM) (Source: SideBySide) (EventID: 35) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Błąd w pliku manifestu lub w pliku zasad "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" w wierszu 1. Tożsamość składnika znaleziona w manifeście nie odpowiada tożsamości składnika żądanego. Odwołanie to UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0". Definicja to UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (11/28/2020 10:38:28 AM) (Source: SecurityCenter) (EventID: 17) (User: ) Description: Centrum zabezpieczeń nie może zweryfikować obiektu wywołującego z powodu błędu %1. Error: (11/28/2020 10:36:27 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: RealSenseDCM.exe, wersja: 1.4.27.52404, sygnatura czasowa: 0x561f8531 Nazwa modułu powodującego błąd: RealSenseDCM.exe, wersja: 1.4.27.52404, sygnatura czasowa: 0x561f8531 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x001c166f Identyfikator procesu powodującego błąd: 0x1430 Godzina uruchomienia aplikacji powodującej błąd: 0x01d6c569f0e3dc64 Ścieżka aplikacji powodującej błąd: C:\Program Files (x86)\Common Files\Intel\RSDCM\bin\win32\RealSenseDCM.exe Ścieżka modułu powodującego błąd: C:\Program Files (x86)\Common Files\Intel\RSDCM\bin\win32\RealSenseDCM.exe Identyfikator raportu: e141995d-8e3e-4779-9bb8-7789ae7041b2 Pełna nazwa pakietu powodującego błąd: Identyfikator aplikacji względem pakietu powodującego błąd: Error: (11/28/2020 10:36:27 AM) (Source: NvStreamSvc) (EventID: 2001) (User: ) Description: An error has occurred (Can't create NSS process. [203]). Error: (11/28/2020 10:36:27 AM) (Source: NvStreamSvc) (EventID: 2001) (User: ) Description: An error has occurred (Failed to create process. [2]). Error: (11/27/2020 09:38:44 PM) (Source: SecurityCenter) (EventID: 17) (User: ) Description: Centrum zabezpieczeń nie może zweryfikować obiektu wywołującego z powodu błędu %1. Error: (11/27/2020 08:55:27 PM) (Source: SideBySide) (EventID: 35) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Błąd w pliku manifestu lub w pliku zasad "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" w wierszu 1. Tożsamość składnika znaleziona w manifeście nie odpowiada tożsamości składnika żądanego. Odwołanie to UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0". Definicja to UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Dziennik System: ============= Error: (11/28/2020 12:09:43 PM) (Source: DCOM) (EventID: 10010) (User: ZARZĄDZANIE NT) Description: Serwer {3C296D07-90AE-4FAC-86F9-65EAA8B82D22} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (11/28/2020 11:50:05 AM) (Source: DCOM) (EventID: 10010) (User: ZARZĄDZANIE NT) Description: Serwer {3C296D07-90AE-4FAC-86F9-65EAA8B82D22} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (11/28/2020 10:38:59 AM) (Source: DCOM) (EventID: 10010) (User: ZARZĄDZANIE NT) Description: Serwer {3C296D07-90AE-4FAC-86F9-65EAA8B82D22} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (11/28/2020 10:36:28 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Intel(R) RealSense(TM) Depth Camera Manager Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 5000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (11/28/2020 10:36:18 AM) (Source: Application Popup) (EventID: 56) (User: ) Description: ACPI5 Error: (11/28/2020 10:36:00 AM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-6QB2TS4O) Description: Serwer {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} nie zarejestrował się w modelu DCOM w wymaganym czasie. Error: (11/28/2020 10:20:03 AM) (Source: volsnap) (EventID: 36) (User: ) Description: Wykonywanie kopii w tle woluminu C: zostało przerwane, ponieważ nie można powiększyć magazynu kopii w tle z powodu limitu wprowadzonego przez użytkownika. Error: (11/28/2020 10:01:26 AM) (Source: DCOM) (EventID: 10010) (User: ZARZĄDZANIE NT) Description: Serwer {3C296D07-90AE-4FAC-86F9-65EAA8B82D22} nie zarejestrował się w modelu DCOM w wymaganym czasie. Windows Defender: =================================== Date: 2020-11-27 18:03:53.6030000Z Description: Produkt Program antywirusowy Microsoft Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz:https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Ymacco.AA25&threatid=2147757183&enterprise=0 Nazwa: Trojan:Win32/Ymacco.AA25 Identyfikator: 2147757183 Ważność: Poważny Kategoria: Koń trojański Ścieżka: file:_C:\Program Files (x86)\loafer\4ssa.exe Pochodzenie wykrycia: Komputer lokalny Typ wykrycia: FastPath Źródło wykrycia: System Użytkownik: ZARZĄDZANIE NT\SYSTEM Nazwa procesu: Unknown Wersja analizy zabezpieczeń: AV: 1.327.1622.0, AS: 1.327.1622.0, NIS: 1.327.1622.0 Wersja aparatu: AM: 1.1.17600.5, NIS: 1.1.17600.5 Date: 2020-11-27 18:03:53.5740000Z Description: Produkt Program antywirusowy Microsoft Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz:https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/CryptInject!ml&threatid=2147760506&enterprise=0 Nazwa: Trojan:Win32/CryptInject!ml Identyfikator: 2147760506 Ważność: Poważny Kategoria: Koń trojański Ścieżka: file:_C:\Program Files (x86)\loafer\makers\lvgo.exe Pochodzenie wykrycia: Komputer lokalny Typ wykrycia: FastPath Źródło wykrycia: System Użytkownik: ZARZĄDZANIE NT\SYSTEM Nazwa procesu: Unknown Wersja analizy zabezpieczeń: AV: 1.327.1622.0, AS: 1.327.1622.0, NIS: 1.327.1622.0 Wersja aparatu: AM: 1.1.17600.5, NIS: 1.1.17600.5 Date: 2020-11-27 18:03:26.1880000Z Description: Produkt Program antywirusowy Microsoft Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz:https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Wacatac.DB!ml&threatid=2147757790&enterprise=0 Nazwa: Trojan:Win32/Wacatac.DB!ml Identyfikator: 2147757790 Ważność: Poważny Kategoria: Koń trojański Ścieżka: file:_C:\Program Files (x86)\MachinerData\main.exe Pochodzenie wykrycia: Komputer lokalny Typ wykrycia: FastPath Źródło wykrycia: Ochrona w czasie rzeczywistym Użytkownik: LAPTOP-6QB2TS4O\allla Nazwa procesu: C:\Program Files\Total Uninstall Essential\Tue.exe Wersja analizy zabezpieczeń: AV: 1.327.1622.0, AS: 1.327.1622.0, NIS: 1.327.1622.0 Wersja aparatu: AM: 1.1.17600.5, NIS: 1.1.17600.5 Date: 2020-11-27 10:04:05.8400000Z Description: Produkt Program antywirusowy Microsoft Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz:https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Wacatac.B!ml&threatid=2147735505&enterprise=0 Nazwa: Trojan:Win32/Wacatac.B!ml Identyfikator: 2147735505 Ważność: Poważny Kategoria: Koń trojański Ścieżka: file:_C:\Program Files (x86)\Google\Update\GoogleUpdate.exe; file:_C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore->(UTF-16LE); file:_C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA->(UTF-16LE); regkey:_HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{264E3D4D-489C-4AA8-A86C-FC345FAD6597}; regkey:_HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4143FB96-4446-40C4-B397-522A2DA95E52}; regkey:_HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore; regkey:_HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA; service:_gupdate; service:_gupdatem; taskscheduler:_C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore; taskscheduler:_C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA Pochodzenie wykrycia: Komputer lokalny Typ wykrycia: FastPath Źródło wykrycia: System Użytkownik: ZARZĄDZANIE NT\SYSTEM Nazwa procesu: Unknown Wersja analizy zabezpieczeń: AV: 1.327.1622.0, AS: 1.327.1622.0, NIS: 1.327.1622.0 Wersja aparatu: AM: 1.1.17600.5, NIS: 1.1.17600.5 Date: 2020-11-27 10:03:34.6900000Z Description: Produkt Program antywirusowy Microsoft Defender wykrył złośliwe oprogramowanie lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz:https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Wacatac.B!ml&threatid=2147735505&enterprise=0 Nazwa: Trojan:Win32/Wacatac.B!ml Identyfikator: 2147735505 Ważność: Poważny Kategoria: Koń trojański Ścieżka: file:_C:\Program Files (x86)\Google\Update\GoogleUpdate.exe; service:_gupdate; service:_gupdatem Pochodzenie wykrycia: Komputer lokalny Typ wykrycia: FastPath Źródło wykrycia: System Użytkownik: ZARZĄDZANIE NT\SYSTEM Nazwa procesu: Unknown Wersja analizy zabezpieczeń: AV: 1.327.1622.0, AS: 1.327.1622.0, NIS: 1.327.1622.0 Wersja aparatu: AM: 1.1.17600.5, NIS: 1.1.17600.5 ==================== Statystyki pamięci =========================== BIOS: LENOVO CDCN53WW 09/19/2016 Płyta główna: LENOVO Allsparks 5A Procesor: Intel(R) Core(TM) i7-6700HQ CPU @ 2.60GHz Procent pamięci w użyciu: 47% Całkowita pamięć fizyczna: 16211.78 MB Dostępna pamięć fizyczna: 8438.45 MB Całkowita pamięć wirtualna: 18643.78 MB Dostępna pamięć wirtualna: 9624.97 MB ==================== Dyski ================================ Drive c: (Windows) (Fixed) (Total:96.58 GB) (Free:14.9 GB) NTFS ==>[system z komponentami startowymi (pozyskano odczytując dysk)] Drive d: (Stuff1) (Fixed) (Total:464.23 GB) (Free:277.35 GB) NTFS Drive e: (Zdjęcia, Dane) (Fixed) (Total:467.28 GB) (Free:303.23 GB) NTFS \\?\Volume{940b01ab-d69f-4d69-b3c1-f025ade65efc}\ () (Fixed) (Total:0.98 GB) (Free:0.45 GB) NTFS \\?\Volume{9c2cf5ed-85c1-4633-8c82-077981f19003}\ (LENOVO_PART) (Fixed) (Total:20.44 GB) (Free:3.55 GB) NTFS \\?\Volume{e4adca81-64cc-42f1-affb-cb013fe478fa}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32 ==================== MBR & Tablica partycji ==================== ========================================================== Disk: 0 (Size: 119.2 GB) (Disk ID: 032A7913) Partition: GPT. ========================================================== Disk: 1 (Size: 931.5 GB) (Disk ID: 2E0E8879) Partition: GPT. ==================== Koniec Addition.txt =======================
Niebieska komentarz 28 listopada 2020 komentarz 28 listopada 2020 To teraz poczekaj aż @Twój_Anioł_Stróż je sprawdzi.
Twój_Anioł_Stróż komentarz 28 listopada 2020 komentarz 28 listopada 2020 Ja tu wcale nie widzę logów FRST, a ściślej, widzę tylko log Addition.txt, nie ma logu FRST.txt
alllan komentarz 29 listopada 2020 komentarz 29 listopada 2020 Zrobiłem tak jak prosiliście, to dziwne - a więc zrobię raz jeszcze. Może ktoś poradzić w jakiej lokalizacji na dysku mógł ten plik się zapisać, bo nie mogę znaleźć Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 27-11-2020 Uruchomiony przez allla (administrator) LAPTOP-6QB2TS4O (LENOVO 80NV) (28-11-2020 12:34:57) Uruchomiony z D:\Pobrane Załadowane profile: allla & agawe Platform: Windows 10 Home Wersja 2004 19041.630 (X64) Język: Polski (Polska) Domyślna przeglądarka: Chrome Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) () [Brak podpisu cyfrowego] C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe () [Brak podpisu cyfrowego] C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe <2> (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\DiscoverySrv.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe <2> (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdntwrk.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe <3> (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdtrackersnmh.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdwtxcr.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender VPN\bdvpnapp.exe <2> (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender VPN\BdVpnService.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe (CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterImportAgent.exe (CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterWorker.exe (CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD12\PDVD12Serv.exe (CyberLink Corp. -> CyberLink) C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe <2> (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <16> (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation) [Brak podpisu cyfrowego] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe (Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Intel Corporation-Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_1a33d2f73651d989\igfxCUIService.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_1a33d2f73651d989\igfxEM.exe <2> (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_1a33d2f73651d989\IntelCpHDCPSvc.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_1a33d2f73651d989\IntelCpHeciSvc.exe (Intel(R) Software Development Products -> Intel Corporation) C:\Program Files (x86)\Common Files\Intel\RSDCM\bin\win32\RealSenseInfo.exe <2> (Intel(R) Software Development Products -> Intel(R) Corporation) C:\Program Files (x86)\Common Files\Intel\RSDCM\bin\win32\RealSenseDCM.exe (LENOVO -> ) C:\Program Files\Lenovo\LenovoUtility\utility.exe <2> (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.3.115.0\LenovoVantageService.exe (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.Device.exe (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.CompanionApp.exe (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe <2> (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe (LENOVO -> Lenovo(beijing) Limited) C:\Program Files\Lenovo\Nerve Center\bin\x64\HotkeyMonitor.exe (LENOVO -> Lenovo(beijing) Limited) C:\Program Files\Lenovo\Nerve Center\bin\x64\LenovoNerveCenterTray.exe <2> (LENOVO -> Lenovo(beijing) Limited) C:\Program Files\Lenovo\Nerve Center\bin\x64\LenovoNerveCenterUpdateAgent.exe (LENOVO -> Lenovo(beijing) Limited) C:\Program Files\Lenovo\Nerve Center\bin\x64\PluginLoaderSvc.exe (LENOVO -> Lenovo) C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe (LENOVO -> Lenovo) C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe (LENOVO -> Lenovo) C:\Program Files\Lenovo\ExperienceImprovement\LenovoExperienceImprovement.exe (LENOVO -> Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe <2> (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (Microsoft Corporation -> Microsoft Corporation) C:\Users\agawe\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation -> Microsoft Corporation) C:\Users\agawe\AppData\Local\Microsoft\Teams\current\Teams.exe <8> (Microsoft Corporation -> Microsoft Corporation) C:\Users\allla\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\WirelessKB850NotificationService.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2011.11613.0_x64__8wekyb3d8bbwe\Cortana.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LogonUI.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe <2> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (O2Micro -> BayHubTech/O2Micro International) C:\Windows\System32\drivers\o2flash.exe (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <6> (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe <2> (Reimage Ltd. -> reimage) C:\Program Files\Reimage\Reimage Protector\ReimageApp.exe <2> (Reimage Ltd. -> Reimage) C:\Program Files\Reimage\Reimage Protector\ReiSystem.exe (Reimage Ltd. -> Reimage®) C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe <2> (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe <2> (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe <2> Brak dostępu do procesu -> RealSenseDCM.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [LenovoUtility] => C:\Program Files\Lenovo\LenovoUtility\utility.exe [791848 2015-12-29] (LENOVO -> ) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2754704 2015-06-24] (NVIDIA Corporation -> NVIDIA Corporation) HKLM\...\Run: [NerveCenterTray] => C:\Program Files\Lenovo\Nerve Center\bin\x64\LenovoNerveCenterTray.exe [245088 2017-04-28] (LENOVO -> Lenovo(beijing) Limited) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16482040 2019-04-10] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1427712 2019-04-10] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1427712 2019-04-10] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1427712 2019-04-10] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [DAX2_APP] => C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe [628736 2015-06-16] () [Brak podpisu cyfrowego] HKLM\...\Run: [BdVpnApp] => C:\Program Files\Bitdefender\Bitdefender VPN\BdVpnApp.exe [224376 2020-11-21] (Bitdefender SRL -> Bitdefender) HKLM\...\Run: [Reimage] => C:\Program Files\Reimage\Reimage Protector\ReimageApp.exe [268440 2020-09-24] (Reimage Ltd. -> reimage) HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe [110008 2015-07-21] (CyberLink Corp. -> CyberLink) HKLM-x32\...\Run: [Intel(R) RealSense(TM) SDK info server] => C:\Program Files (x86)\Common Files\Intel\RSDCM\bin\win32\RealSenseInfo.exe [21144 2015-07-16] (Intel(R) Software Development Products -> Intel Corporation) HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1151872 2016-11-18] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) HKU\S-1-5-21-1881768518-231767975-2866080711-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [371304 2019-10-31] (AVB Disc Soft, SIA -> Disc Soft Ltd) HKU\S-1-5-21-1881768518-231767975-2866080711-1001\...\MountPoints2: {762f5a9f-fbee-11e9-9a03-a434d92dcae3} - "F:\setup.EXE" /AUTORUN HKU\S-1-5-21-1881768518-231767975-2866080711-1001\...\MountPoints2: {f76e6727-030c-11ea-9a03-a434d92dcae3} - "G:\Start.exe" HKU\S-1-5-21-1881768518-231767975-2866080711-1002\...\Run: [PhotoMasterImportAgent] => C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterImportAgent.exe [675608 2016-09-22] (CyberLink Corp. -> CyberLink Corp.) HKU\S-1-5-21-1881768518-231767975-2866080711-1002\...\Run: [com.squirrel.Teams.Teams] => C:\Users\agawe\AppData\Local\Microsoft\Teams\Update.exe [2453688 2020-11-20] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKLM\...\Print\Monitors\EPSON L3060 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBR5E.DLL [183296 2016-12-21] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\86.0.4240.198\Installer\chrmstp.exe [2020-11-17] (Google LLC -> Google LLC) HKLM\SOFTWARE\Policies\Google: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {081B74A7-F98A-4C27-B1A1-84BC336931C6} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\297f9b6b-368c-4d67-8385-aebcb6fefb79 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81744 2020-09-24] (Lenovo -> Lenovo Group Ltd.) Task: {0AFF0D3C-A259-47FB-887C-1104BC30882C} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService Task: {1A66EC82-BC2B-490C-92D3-56B7C8BF2FAC} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [1320384 2015-07-17] (LENOVO -> Lenovo) Task: {1F1AC11E-D102-4E2E-9622-3C6C31DA9A7B} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\6e42e8ac-d34f-4e50-9b09-596667f67de1 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81744 2020-09-24] (Lenovo -> Lenovo Group Ltd.) Task: {34F2E49C-EEAE-4335-A7F6-5460CAFD1C7F} - System32\Tasks\Office 2019 Statique Activation Planificateur => D:\O2019.ProPlusPL.x86.x64dw\ActO19\ActO19.cmd -renewalonly Task: {35288A32-8FAC-48F6-BA68-20D4F7FFC40D} - System32\Tasks\Agent Activation Runtime\S-1-5-21-1881768518-231767975-2866080711-1001 => C:\WINDOWS\System32\AgentActivationRuntimeStarter.exe [13312 2020-10-25] (Microsoft Windows -> ) Task: {37DC147E-B848-475B-9340-6FB49382384A} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [62280 2020-09-24] (Lenovo -> Lenovo Group Ltd.) Task: {40BB9B21-F5C0-43F5-9F75-81C28E8C8413} - System32\Tasks\Lenovo\REACHit Agent Update => C:\Program Files (x86)\Lenovo\REACHit\webAgent.exe [564664 2015-06-12] (LENOVO -> Lenovo) Task: {41932062-E49F-4239-BCAD-ABF33372FA54} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [117600 2020-11-26] (Microsoft Corporation -> Microsoft Corporation) Task: {4A53B415-E9C5-49F1-B53A-F7EA777D42E7} - System32\Tasks\CyberLink\Photo Master Gadget startup => C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterWorker.exe [745240 2016-09-22] (CyberLink Corp. -> CyberLink Corp.) Task: {4D4BF214-3002-440A-B01B-B0122A4E0FEC} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.) Task: {4D8643AF-C5B4-4618-8461-A05562A0BACC} - System32\Tasks\Lenovo\Experience Improvement => C:\Program Files\Lenovo\ExperienceImprovement\LenovoExperienceImprovement.exe [287688 2019-10-31] (LENOVO -> Lenovo) Task: {587E405E-08FD-4C9B-B4F2-9CA5D0BFE485} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [9465792 2015-07-17] (LENOVO -> ) Task: {5B884FC4-46FD-46DA-AB81-D6CBF5420A4F} - System32\Tasks\PDVDServ12 Task => C:\Program Files (x86)\Lenovo\PowerDVD12\PDVD12Serv.exe [85432 2015-05-28] (CyberLink Corp. -> CyberLink Corp.) Task: {72808007-01B2-4A98-BE28-811CCDBEB111} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\Windows\system32\rundll32.exe C:\Windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)" Task: {74E848F2-C74D-40C9-A381-C1547BC56708} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [9465792 2015-07-17] (LENOVO -> ) Task: {83682512-E229-4443-96C9-416672B0473F} - System32\Tasks\WiseCleaner\WDCSkipUAC => C:\Program Files (x86)\Wise\Wise Disk Cleaner\WiseDiskCleaner.exe [6983240 2019-11-14] (Lespeed Technology Ltd. -> WiseCleaner.com) Task: {8C9EAAAD-1015-49B5-A570-D22BD7CF0833} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22939528 2020-11-04] (Microsoft Corporation -> Microsoft Corporation) Task: {8D9974EB-D305-447F-80A2-755A67180EB3} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [3982744 2020-11-26] (Microsoft Corporation -> Microsoft Corporation) Task: {911DE04A-C35D-498F-95FE-0F2A3CD36E82} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [3982744 2020-11-26] (Microsoft Corporation -> Microsoft Corporation) Task: {98A7388B-3A9B-4616-954F-AF7E8321955F} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [144312 2020-09-15] (Lenovo -> Lenovo Group Ltd.) Task: {9A040DB8-B692-4679-A5FC-4AB69F9B964E} - System32\Tasks\Bitdefender AgentTask_AD394AE64E874073B10A89FEEC305A3C => C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe [930872 2020-10-02] (Bitdefender SRL -> Bitdefender) Task: {9D5ED957-1803-44DA-86EC-2E52A44C35D4} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSCService.exe [270272 2015-07-17] (LENOVO -> Lenovo) Task: {A8C3CAB8-929C-4B67-8B38-EE63CC2DA4C0} - System32\Tasks\EPSON L3060 Series Update {D1A42139-3484-43B2-8D92-C19A27724979} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSR5E.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) Task: {B928C064-0F69-48BD-9A84-08EBF76A0D1A} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22939528 2020-11-04] (Microsoft Corporation -> Microsoft Corporation) Task: {BD7E87E1-2EAD-4B2A-8361-4F694C0096D8} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [660688 2020-10-25] (Mozilla Corporation -> Mozilla Foundation) Task: {C3231533-7206-4FFD-9A6F-AFC7BFD34F32} - System32\Tasks\Lenovo\REACHit Agent Startup => C:\Program Files (x86)\Lenovo\REACHit\webAgent.exe [564664 2015-06-12] (LENOVO -> Lenovo) Task: {CC4C8BF9-0C5A-4E22-B509-479A32CB2AF9} - System32\Tasks\NerveCenterUpdate => C:\Program Files\Lenovo\Nerve Center\bin\x64\LenovoNerveCenterUpdateAgent.exe [744800 2017-04-28] (LENOVO -> Lenovo(beijing) Limited) Task: {D0C8713D-5F95-418D-9A17-93425CC9B536} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\8ec08f7a-1c17-4361-9de8-15693e173021 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81744 2020-09-24] (Lenovo -> Lenovo Group Ltd.) Task: {DAB5DEFC-FBFF-46C6-8AC8-FC85B53F4E2D} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\b24d4c02-64b6-43db-9552-8abcc4230e5b => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81744 2020-09-24] (Lenovo -> Lenovo Group Ltd.) Task: {DAE621B9-2E4F-445A-B4E4-F12026C4A5A4} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService Task: {DBF16B72-2B11-4812-BE83-59ED37268F9D} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [895080 2020-10-28] (Bitdefender SRL -> Bitdefender) Task: {E97B8F6A-0D99-4E12-9CFC-0EF014E8D6F2} - System32\Tasks\Agent Activation Runtime\S-1-5-21-1881768518-231767975-2866080711-1008 => C:\WINDOWS\System32\AgentActivationRuntimeStarter.exe [13312 2020-10-25] (Microsoft Windows -> ) Task: {F02679A3-D99B-4625-8CC0-0420F5CBDB52} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32 Task: {F1A6675B-6F3C-4E4D-A4C1-D661D3C8C293} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [117600 2020-11-26] (Microsoft Corporation -> Microsoft Corporation) Task: {F2F65034-B1CD-4A14-9AA6-90733ACF1C6B} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1706496 2020-08-05] () [Brak podpisu cyfrowego] Task: {FD67821E-903A-4113-A6CC-7BAC73C8E6FD} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [16832 2015-07-06] (LENOVO -> Lenovo) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\EPSON L3060 Series Update {D1A42139-3484-43B2-8D92-C19A27724979}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSR5E.EXE:/EXE:{D1A42139-3484-43B2-8D92-C19A27724979} /F:UpdateWORKGROUP\WIN-M80HJRUJ3V2$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.100.1 Tcpip\..\Interfaces\{81c1d793-bfc1-45a6-9161-5240d41c6b53}: [DhcpNameServer] 192.168.43.1 Tcpip\..\Interfaces\{db11f3bf-c6a0-415f-86d1-419003fd8620}: [DhcpNameServer] 192.168.100.1 Edge: ====== Edge Profile: C:\Users\allla\AppData\Local\Microsoft\Edge\User Data\Default [2020-11-28] FireFox: ======== FF DefaultProfile: 2v0h6yr5.default FF ProfilePath: C:\Users\allla\AppData\Roaming\Mozilla\Firefox\Profiles\2v0h6yr5.default [2020-11-27] FF ProfilePath: C:\Users\allla\AppData\Roaming\Mozilla\Firefox\Profiles\d4ey93yl.default-release [2020-11-28] FF HKLM\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi FF Extension: (Bitdefender Wallet) - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi [2020-07-16] [UpdateUrl:hxxps://download.bitdefender.com/windows/desktop/connect/wallet/updates.json ] FF HKLM\...\Firefox\Extensions: [bdtbe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi FF Extension: (Bitdefender Anti-tracker) - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi [2020-09-17] [UpdateUrl:hxxps://download.bitdefender.com/windows/desktop/connect/antitracker/updates.json ] FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext [2020-10-09] [Przestarzałe] [Brak podpisu cyfrowego] FF HKLM-x32\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi FF HKLM-x32\...\Firefox\Extensions: [bdtbe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2020-11-26] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-11-26] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-11-19] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-1881768518-231767975-2866080711-1002: @zoom.us/ZoomVideoPlugin -> C:\Users\agawe\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-05-13] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\bd_js_config.js [2020-11-28] <==== UWAGA (Linkuje do pliku *.cfg) FF ExtraCheck: C:\Program Files\mozilla firefox\bd_config.cfg [2020-11-28] <==== UWAGA Chrome: ======= CHR DefaultProfile: ", CHR Profile: C:\Users\allla\AppData\Local\Google\Chrome\User Data\Default [2020-11-28] CHR DownloadDir: D:\Pobrane CHR Notifications: Default -> hxxps://balanceforsun.com; hxxps://enduremods.org; hxxps://live.efortuna.pl; hxxps://messages.google.com; hxxps://pizzaportal.pl; hxxps://requestfor4.com; hxxps://www.51015kids.eu; hxxps://www.eobuwie.com.pl; hxxps://www.facebook.com; hxxps://www.fiat.pl CHR HomePage: Default -> hxxp://www.google.pl/ CHR StartupUrls: Default -> "hxxp://www.google.pl/ig" CHR Extension: (Prezentacje) - C:\Users\allla\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-10-31] CHR Extension: (Przelewy24) - C:\Users\allla\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiicmmpkicnndkhlnnloilpgncbpkbjj [2020-03-31] CHR Extension: (Dokumenty) - C:\Users\allla\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-10-31] CHR Extension: (Dysk Google) - C:\Users\allla\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-25] CHR Extension: (James White) - C:\Users\allla\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkeidgmehkdjmpjodpjkepolokanalkm [2019-10-31] CHR Extension: (YouTube) - C:\Users\allla\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-10-31] CHR Extension: (Adblock Plus - darmowy adblocker) - C:\Users\allla\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-11-18] CHR Extension: (Arkusze) - C:\Users\allla\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-10-31] CHR Extension: (Bitdefender Wallet) - C:\Users\allla\AppData\Local\Google\Chrome\User Data\Default\Extensions\gannpgaobkkhmpomoijebaigcapoeebl [2020-11-27] CHR Extension: (Dokumenty Google offline) - C:\Users\allla\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-16] CHR Extension: (AdBlock — najlepszy bloker reklam) - C:\Users\allla\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-11-20] CHR Extension: (Bitdefender Anti-tracker) - C:\Users\allla\AppData\Local\Google\Chrome\User Data\Default\Extensions\khndhdhbebhaddchcgnalcjlaekbbeof [2020-11-27] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\allla\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-31] CHR Extension: (Gmail) - C:\Users\allla\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-24] CHR Extension: (Chrome Media Router) - C:\Users\allla\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-14] CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] CHR HKLM-x32\...\Chrome\Extension: [gannpgaobkkhmpomoijebaigcapoeebl] CHR HKLM-x32\...\Chrome\Extension: [khndhdhbebhaddchcgnalcjlaekbbeof] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.) S3 AfVpnService; C:\Program Files\Bitdefender\Bitdefender VPN\hydra.sdk.windows.service.exe [197624 2020-11-02] (Pango Inc. -> AnchorFree Inc.) R2 BDAuxSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [803576 2020-10-02] (Bitdefender SRL -> Bitdefender) R2 BDProtSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [803576 2020-10-02] (Bitdefender SRL -> Bitdefender) R2 bdredline; C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe [2195344 2018-03-22] (Bitdefender SRL -> Bitdefender) R2 BdVpnService; C:\Program Files\Bitdefender\Bitdefender VPN\bdvpnservice.exe [249880 2020-11-21] (Bitdefender SRL -> Bitdefender) R2 CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [650680 2015-07-29] (LENOVO -> Lenovo) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9057136 2020-11-04] (Microsoft Corporation -> Microsoft Corporation) R2 DAX2API; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [163328 2016-01-27] () [Brak podpisu cyfrowego] R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4452456 2019-10-31] (AVB Disc Soft, SIA -> Disc Soft Ltd) R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [145224 2017-03-10] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) S3 GameRecorderSVC; C:\Program Files\Lenovo\Nerve Center\bin\x86\GameRecorderSVC.exe [392032 2017-04-28] (LENOVO -> Lenovo(beijing) Limited) R2 GDCAgent; C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe [1155512 2015-07-29] (LENOVO -> Lenovo) R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81744 2020-09-24] (Lenovo -> Lenovo Group Ltd.) R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Brak podpisu cyfrowego] S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Brak podpisu cyfrowego] R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.3.115.0\LenovoVantageService.exe [18360 2020-07-09] (Lenovo -> Lenovo Group Ltd.) S3 LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [271296 2015-07-17] (LENOVO -> Lenovo) S3 McSecDashboardService; C:\Program Files\McAfeeDashboard\McSecDashboardService.exe [1270536 2019-02-26] (McAfee, Inc. -> McAfee, Inc.) R2 O2FLASH; C:\WINDOWS\SysWOW64\drivers\o2flash.exe [82096 2015-05-21] (O2Micro -> BayHubTech/O2Micro International) R2 PluginLoaderSvc; C:\Program Files\Lenovo\Nerve Center\bin\x64\PluginLoaderSvc.exe [966496 2017-04-28] (LENOVO -> Lenovo(beijing) Limited) R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1355768 2020-10-28] (Bitdefender SRL -> Bitdefender) R2 RealSenseDCM; C:\Program Files (x86)\Common Files\Intel\RSDCM\bin\win32\RealSenseDCM.exe [3663512 2015-10-15] (Intel(R) Software Development Products -> Intel(R) Corporation) R2 ReimageRealTimeProtector; C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe [9259368 2020-09-06] (Reimage Ltd. -> Reimage®) R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe [170840 2020-10-02] (Bitdefender SRL -> Bitdefender) R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [803576 2020-10-02] (Bitdefender SRL -> Bitdefender) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2010.7-0\NisSrv.exe [2467088 2020-11-06] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2010.7-0\MsMpEng.exe [128376 2020-11-06] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WirelessKB850NotificationService; C:\WINDOWS\system32\WirelessKB850NotificationService.exe [176624 2018-05-14] (Microsoft Corporation -> Microsoft Corporation) S2 nvsvc; "C:\Windows\system32\nvvsvc.exe" [X] ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R1 atc; C:\WINDOWS\System32\DRIVERS\atc.sys [2151624 2020-09-16] (Bitdefender SRL -> Bitdefender S.R.L. Bucharest, ROMANIA) R2 BdDci; C:\WINDOWS\system32\DRIVERS\bddci.sys [796200 2020-05-26] (Bitdefender SRL -> Bitdefender) S0 bdelam; C:\WINDOWS\System32\drivers\bdelam.sys [22960 2019-03-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Bitdefender) R0 bdprivmon; C:\WINDOWS\System32\DRIVERS\bdprivmon.sys [46056 2020-01-17] (Bitdefender SRL -> © Bitdefender SRL) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego] R1 dokan1; C:\WINDOWS\System32\DRIVERS\dokan1.sys [104312 2018-08-09] (D3L -> Dokan Project) R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2019-04-10] (AVB Disc Soft, SIA -> Disc Soft Ltd) R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2019-04-10] (AVB Disc Soft, SIA -> Disc Soft Ltd) S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2019-10-31] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.) S3 FBNetFilter; C:\Windows\system32\Drivers\FBNetFlt.sys [46576 2017-04-28] (Lenovo (Beijing) Co., Ltd. -> Lenovo(beijing) Limited) R0 Gemma; C:\WINDOWS\System32\DRIVERS\gemma.sys [473608 2020-09-14] (Bitdefender SRL -> BitDefender S.R.L. Bucharest, ROMANIA) R0 gzflt; C:\WINDOWS\System32\DRIVERS\gzflt.sys [195232 2020-09-03] (Bitdefender SRL -> BitDefender LLC) R2 Ignis; C:\WINDOWS\system32\DRIVERS\ignis.sys [185312 2020-09-16] (Bitdefender SRL -> Bitdefender) R3 IntelDFUACPI; C:\WINDOWS\System32\drivers\IntelDFUACPI.sys [37888 2015-12-01] (Intel(R) Software Development Products -> Intel(R) Corporation) R3 IXCamera; C:\WINDOWS\system32\DRIVERS\RealSenseDCM.sys [72704 2015-10-15] (Intel(R) Software Development Products -> Intel(R) Corporation) R3 O2FJ2RDR; C:\WINDOWS\System32\drivers\O2FJ2x64.sys [201240 2015-05-21] (BayHub Technology Inc. -> BayHubTech/O2Micro) R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [47920 2020-02-20] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project) R0 trufos; C:\WINDOWS\System32\DRIVERS\trufos.sys [640760 2020-06-09] (Bitdefender SRL -> Bitdefender) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2020-11-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [429288 2020-11-06] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [71912 2020-11-06] (Microsoft Windows -> Microsoft Corporation) S3 WirelessKeyboardFilter; C:\WINDOWS\System32\drivers\WirelessKeyboardFilter.sys [49336 2018-03-11] (Microsoft Corporation -> Microsoft Corporation) S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-13] (CyberLink -> "CyberLink) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2020-11-28 12:34 - 2020-11-28 12:35 - 000000000 ____D C:\FRST 2020-11-28 10:36 - 2020-11-28 10:36 - 000000000 _____ C:\WINDOWS\system32\reimage.rep 2020-11-28 10:20 - 2020-11-28 10:35 - 000000000 ____D C:\ReimageUndo 2020-11-28 10:20 - 2020-11-28 10:20 - 000012710 _____ C:\WINDOWS\system32\Native.exe 2020-11-28 10:03 - 2020-11-28 10:35 - 000000158 _____ C:\WINDOWS\Reimage.ini 2020-11-28 10:03 - 2020-11-28 10:35 - 000000000 ____D C:\rei 2020-11-28 10:03 - 2020-11-28 10:10 - 000000000 ____D C:\ProgramData\Reimage Protector 2020-11-28 10:03 - 2020-11-28 10:04 - 000000000 ____D C:\Program Files\Reimage 2020-11-28 10:03 - 2020-11-28 10:03 - 000001929 _____ C:\Users\Public\Desktop\PC Scan & Repair by Reimage.lnk 2020-11-28 10:03 - 2020-11-28 10:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reimage Repair 2020-11-27 18:21 - 2020-11-27 18:21 - 000197020 _____ C:\ProgramData\vpn.1606497659.bdinstall.v2.bin 2020-11-27 18:21 - 2020-11-27 18:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender VPN 2020-11-27 18:21 - 2020-11-27 18:21 - 000000000 ____D C:\ProgramData\Bitdefender VPN 2020-11-27 18:21 - 2020-11-27 18:21 - 000000000 ____D C:\ProgramData\AnchorFree_Inc 2020-11-27 18:21 - 2020-02-20 13:02 - 000047920 _____ (The OpenVPN Project) C:\WINDOWS\system32\Drivers\tap0901.sys 2020-11-27 18:20 - 2020-11-27 18:20 - 000082516 _____ C:\ProgramData\dm.uninstall.1606497636.bdinstall.v2.bin 2020-11-27 18:18 - 2020-11-27 18:18 - 000086732 _____ C:\ProgramData\agent.update.1606497490.bdinstall.v2.bin 2020-11-27 18:13 - 2020-11-27 18:13 - 000764148 _____ C:\ProgramData\cl.1606497026.bdinstall.v2.bin 2020-11-27 18:13 - 2020-11-27 18:13 - 000131736 _____ C:\ProgramData\dm.1606497198.bdinstall.v2.bin 2020-11-27 18:13 - 2020-11-27 18:13 - 000101396 _____ C:\ProgramData\cl.kit.1606497024.bdinstall.v2.bin 2020-11-27 18:13 - 2020-11-27 18:13 - 000003420 _____ C:\WINDOWS\system32\Tasks\Bitdefender AgentTask_AD394AE64E874073B10A89FEEC305A3C 2020-11-27 18:13 - 2020-11-27 18:13 - 000000000 ____D C:\Users\hanna\AppData\Roaming\Bitdefender 2020-11-27 18:13 - 2020-11-27 18:13 - 000000000 ____D C:\ProgramData\Bitdefender Device Management 2020-11-27 18:13 - 2020-11-27 18:13 - 000000000 ____D C:\ProgramData\48C4687D-9760-4F5B-BAB3-60351B0841E4 2020-11-27 18:11 - 2020-11-27 18:21 - 000002198 _____ C:\Users\Public\Desktop\Bitdefender VPN.lnk 2020-11-27 18:11 - 2020-11-27 18:11 - 000003802 _____ C:\WINDOWS\system32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 2020-11-27 18:11 - 2020-11-27 18:11 - 000002345 _____ C:\Users\Public\Desktop\Bitdefender.lnk 2020-11-27 18:11 - 2020-11-27 18:11 - 000000000 ____D C:\WINDOWS\system32\elambkup 2020-11-27 18:11 - 2020-11-27 18:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender Security 2020-11-27 18:11 - 2020-11-27 18:11 - 000000000 ____D C:\ProgramData\Gemma 2020-11-27 18:11 - 2020-11-27 18:11 - 000000000 ____D C:\ProgramData\BDLogging 2020-11-27 18:11 - 2020-11-27 18:11 - 000000000 ____D C:\ProgramData\Atc 2020-11-27 18:11 - 2020-09-16 12:26 - 002151624 _____ (Bitdefender S.R.L. Bucharest, ROMANIA) C:\WINDOWS\system32\Drivers\atc.sys 2020-11-27 18:11 - 2020-09-14 13:26 - 000473608 _____ (BitDefender S.R.L. Bucharest, ROMANIA) C:\WINDOWS\system32\Drivers\gemma.sys 2020-11-27 18:11 - 2020-05-26 12:23 - 000796200 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\bddci.sys 2020-11-27 18:11 - 2020-01-17 02:03 - 000046056 _____ (© Bitdefender SRL) C:\WINDOWS\system32\Drivers\bdprivmon.sys 2020-11-27 18:11 - 2019-03-21 00:12 - 000022960 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\bdelam.sys 2020-11-27 18:10 - 2020-11-28 10:36 - 000000000 ____D C:\Program Files\Bitdefender 2020-11-27 18:10 - 2020-11-27 18:27 - 000000000 ____D C:\ProgramData\Bitdefender 2020-11-27 18:10 - 2020-11-27 18:13 - 000000000 ____D C:\Users\allla\AppData\Roaming\Bitdefender 2020-11-27 18:10 - 2020-11-27 18:10 - 000000000 ____D C:\Program Files\Common Files\Bitdefender 2020-11-27 18:10 - 2020-09-16 08:50 - 000185312 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\ignis.sys 2020-11-27 18:10 - 2020-09-03 04:20 - 000195232 _____ (BitDefender LLC) C:\WINDOWS\system32\Drivers\gzflt.sys 2020-11-27 18:10 - 2020-06-09 16:13 - 000640760 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\trufos.sys 2020-11-27 18:09 - 2020-11-27 18:18 - 000000000 ____D C:\Program Files\Bitdefender Agent 2020-11-27 18:09 - 2020-11-27 18:09 - 000106368 _____ C:\ProgramData\agent.1606496988.bdinstall.v2.bin 2020-11-27 18:09 - 2020-11-27 18:09 - 000000000 ____D C:\ProgramData\Bitdefender Agent 2020-11-27 16:30 - 2020-11-27 16:30 - 000595253 _____ C:\Users\hanna\Downloads\25.11..pdf 2020-11-27 15:22 - 2020-11-27 15:22 - 000455688 _____ C:\Users\hanna\Downloads\27.11.pdf 2020-11-26 21:14 - 2020-11-26 21:14 - 000921322 _____ C:\Users\agawe\Downloads\3540.pdf 2020-11-26 21:13 - 2020-11-26 21:13 - 001157105 _____ C:\Users\agawe\Downloads\3620.pdf 2020-11-26 21:12 - 2020-11-26 21:12 - 001969925 _____ C:\Users\agawe\Downloads\4299.pdf 2020-11-26 21:12 - 2020-11-26 21:12 - 000775800 _____ C:\Users\agawe\Downloads\3621.pdf 2020-11-26 21:11 - 2020-11-26 21:11 - 001064720 _____ C:\Users\agawe\Downloads\5032.pdf 2020-11-26 21:09 - 2020-11-26 21:09 - 001125826 _____ C:\Users\agawe\Downloads\2878 (1).pdf 2020-11-26 21:08 - 2020-11-26 21:08 - 000728871 _____ C:\Users\agawe\Downloads\3543.pdf 2020-11-26 21:07 - 2020-11-26 21:07 - 004824277 _____ C:\Users\agawe\Downloads\4701.pdf 2020-11-26 17:52 - 2020-11-26 17:52 - 000002505 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business.lnk 2020-11-26 17:52 - 2020-11-26 17:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools 2020-11-25 16:31 - 2020-11-27 18:05 - 000000000 ____D C:\Program Files (x86)\loafer 2020-11-25 16:31 - 2020-11-25 17:23 - 000000000 ____D C:\Users\allla\AppData\Roaming\Smart Clock 2020-11-25 16:31 - 2020-11-25 16:31 - 000000000 ____D C:\Users\allla\AppData\Roaming\Fokeante 2020-11-25 16:31 - 2020-11-25 16:31 - 000000000 ____D C:\ProgramData\Riate 2020-11-25 16:28 - 2020-11-27 18:03 - 000000000 ____D C:\Program Files (x86)\MachinerData 2020-11-25 16:28 - 2020-11-25 16:28 - 000000000 ____D C:\ProgramData\r4s0q6v4x8s0q6v4x8 2020-11-25 16:27 - 2020-11-25 16:27 - 000000000 ____D C:\WINDOWS\SysWOW64\VirtualDVD Windows10 InstallData 2020-11-25 16:27 - 2020-11-25 16:27 - 000000000 ____D C:\WINDOWS\SysWOW64\VirtualDVD InstallData 2020-11-25 16:20 - 2020-11-26 17:52 - 000002500 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk 2020-11-25 16:20 - 2020-11-26 17:52 - 000002499 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk 2020-11-25 16:20 - 2020-11-26 17:52 - 000002463 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk 2020-11-25 16:20 - 2020-11-26 17:52 - 000002462 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk 2020-11-25 16:20 - 2020-11-26 17:52 - 000002456 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk 2020-11-25 16:20 - 2020-11-26 17:52 - 000002450 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk 2020-11-25 16:18 - 2020-11-25 16:18 - 000000000 ____D C:\Program Files\Microsoft Office 15 2020-11-25 15:05 - 2020-11-25 15:05 - 000000000 ____D C:\Users\defaultuser100000.LAPTOP-6QB2TS4O.000\AppData\Local\ConnectedDevicesPlatform 2020-11-25 15:05 - 2020-11-25 15:05 - 000000000 ____D C:\Users\defaultuser100000.LAPTOP-6QB2TS4O.000 2020-11-24 20:27 - 2020-11-24 20:27 - 006897061 _____ C:\Users\agawe\Downloads\HistoriaPluszowegoMisiaDzieckiemBadz.pdf 2020-11-24 19:52 - 2020-11-24 19:52 - 010865247 _____ C:\Users\agawe\Downloads\5064.pdf 2020-11-24 08:11 - 2020-11-24 08:11 - 003576512 _____ C:\Users\agawe\Downloads\GangFajniakow2.pdf 2020-11-23 17:06 - 2020-11-23 17:06 - 000000000 ____D C:\Users\hanna\AppData\Roaming\DAEMON Tools Lite 2020-11-23 13:31 - 2020-11-25 16:37 - 000456608 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2020-11-23 13:30 - 2020-11-23 13:30 - 000000000 ____D C:\Users\hanna\AppData\Local\D3DSCache 2020-11-22 20:28 - 2020-11-22 20:28 - 000130541 _____ C:\Users\agawe\Downloads\ŁOWCA-LITER.pdf 2020-11-20 18:59 - 2020-11-20 18:59 - 001588832 _____ C:\Users\agawe\Downloads\3659.pdf 2020-11-20 18:58 - 2020-11-20 18:58 - 001577637 _____ C:\Users\agawe\Downloads\3166 (1).pdf 2020-11-20 18:57 - 2020-11-20 18:57 - 002453942 _____ C:\Users\agawe\Downloads\3445.pdf 2020-11-20 18:56 - 2020-11-20 18:56 - 001577637 _____ C:\Users\agawe\Downloads\3166.pdf 2020-11-20 18:55 - 2020-11-20 18:55 - 002328085 _____ C:\Users\agawe\Downloads\2685.pdf 2020-11-20 18:54 - 2020-11-20 18:54 - 001562876 _____ C:\Users\agawe\Downloads\2811.pdf 2020-11-20 18:52 - 2020-11-20 18:52 - 002440491 _____ C:\Users\agawe\Downloads\3459.pdf 2020-11-20 18:52 - 2020-11-20 18:52 - 002242973 _____ C:\Users\agawe\Downloads\3217.pdf 2020-11-20 18:50 - 2020-11-20 18:50 - 001632036 _____ C:\Users\agawe\Downloads\3604.pdf 2020-11-20 18:46 - 2020-11-20 18:46 - 002406817 _____ C:\Users\agawe\Downloads\2626.pdf 2020-11-20 18:43 - 2020-11-20 18:43 - 000914683 _____ C:\Users\agawe\Downloads\4945.pdf 2020-11-20 18:42 - 2020-11-20 18:42 - 000945352 _____ C:\Users\agawe\Downloads\5018.pdf 2020-11-20 18:40 - 2020-11-20 18:41 - 000296567 _____ C:\Users\agawe\Downloads\4286.pdf 2020-11-20 18:40 - 2020-11-20 18:40 - 002330948 _____ C:\Users\agawe\Downloads\2869.pdf 2020-11-20 18:25 - 2020-11-20 18:25 - 013137814 _____ C:\Users\agawe\Downloads\4710.pdf 2020-11-20 18:24 - 2020-11-20 18:24 - 001060696 _____ C:\Users\agawe\Downloads\3580 (1).pdf 2020-11-20 18:19 - 2020-11-20 18:19 - 001095793 _____ C:\Users\agawe\Downloads\2865.pdf 2020-11-20 18:19 - 2020-11-20 18:19 - 000207249 _____ C:\Users\agawe\Downloads\352.pdf 2020-11-20 18:18 - 2020-11-20 18:18 - 001229064 _____ C:\Users\agawe\Downloads\4308.pdf 2020-11-20 18:17 - 2020-11-20 18:17 - 001125826 _____ C:\Users\agawe\Downloads\2878.pdf 2020-11-20 17:26 - 2020-11-20 17:26 - 001795437 _____ C:\Users\agawe\Downloads\4281.pdf 2020-11-20 17:25 - 2020-11-20 17:25 - 001671234 _____ C:\Users\agawe\Downloads\2484.pdf 2020-11-20 17:21 - 2020-11-20 17:21 - 000549117 _____ C:\Users\agawe\Downloads\podstawy-czytania-sylabowego-z-dziecmi-19-11-2020.pdf 2020-11-20 10:41 - 2020-11-20 10:41 - 000423930 _____ C:\Users\hanna\Downloads\20 XI docx..pdf 2020-11-19 18:56 - 2020-11-19 18:56 - 000671553 _____ C:\Users\agawe\Downloads\Instrukcja-Dyplom.pdf 2020-11-19 18:55 - 2020-11-19 18:55 - 002202488 _____ C:\Users\agawe\Downloads\Czytanie-sylabowe-wprowadzenie (1).pdf 2020-11-19 18:55 - 2020-11-19 18:55 - 000745694 _____ C:\Users\agawe\Downloads\Bonusy-19-listopada-2020.pdf 2020-11-19 18:55 - 2020-11-19 18:55 - 000447247 _____ C:\Users\agawe\Downloads\Instrukcja-Materiały-do-szkolenia.pdf 2020-11-19 17:42 - 2020-11-19 17:42 - 001764743 _____ C:\Users\agawe\Downloads\3193.pdf 2020-11-19 17:23 - 2020-11-19 17:23 - 000345872 _____ C:\Users\agawe\Downloads\445.pdf 2020-11-19 17:22 - 2020-11-19 17:22 - 000441082 _____ C:\Users\agawe\Downloads\316.pdf 2020-11-19 17:21 - 2020-11-19 17:21 - 009837743 _____ C:\Users\agawe\Downloads\4782.pdf 2020-11-19 17:20 - 2020-11-19 17:20 - 008114157 _____ C:\Users\agawe\Downloads\3824.pdf 2020-11-19 17:19 - 2020-11-19 17:19 - 000434341 _____ C:\Users\agawe\Downloads\1586.pdf 2020-11-19 17:19 - 2020-11-19 17:19 - 000281759 _____ C:\Users\agawe\Downloads\983.pdf 2020-11-19 17:17 - 2020-11-19 17:17 - 024669897 _____ C:\Users\agawe\Downloads\4314.pdf 2020-11-19 17:17 - 2020-11-19 17:17 - 003807964 _____ C:\Users\agawe\Downloads\4716.pdf 2020-11-19 17:12 - 2020-11-19 17:12 - 001267792 _____ C:\Users\agawe\Downloads\5059.pdf 2020-11-19 10:41 - 2020-11-19 10:41 - 000752310 _____ C:\Users\hanna\Downloads\19.11. docx.pdf 2020-11-18 10:45 - 2020-11-18 10:45 - 000906124 _____ C:\Users\hanna\Downloads\18.11..pdf 2020-11-17 15:19 - 2020-11-17 15:19 - 000900856 _____ C:\Users\hanna\Downloads\17 XI (2).pdf 2020-11-17 12:06 - 2020-11-17 12:06 - 000048999 _____ C:\Users\agawe\Downloads\Vinted-Etykieta-153225040.pdf 2020-11-17 11:53 - 2020-11-17 11:53 - 000900856 _____ C:\Users\hanna\Downloads\17 XI (1).pdf 2020-11-17 11:13 - 2020-11-17 11:13 - 000900856 _____ C:\Users\hanna\Downloads\17 XI .pdf 2020-11-17 09:06 - 2020-11-17 09:06 - 003762660 _____ C:\Users\agawe\Downloads\3. Szlaczki (poziom 3).pdf 2020-11-17 09:06 - 2020-11-17 09:06 - 002008730 _____ C:\Users\agawe\Downloads\8. Odwzorowywanie rysunków.pdf 2020-11-17 09:06 - 2020-11-17 09:06 - 001563153 _____ C:\Users\agawe\Downloads\7. Dokończ wzór.pdf 2020-11-17 09:05 - 2020-11-17 09:05 - 005672014 _____ C:\Users\agawe\Downloads\11. Rysowanie symetryczne - Zwierzęta.pdf 2020-11-17 09:05 - 2020-11-17 09:05 - 003328311 _____ C:\Users\agawe\Downloads\4733.pdf 2020-11-17 09:05 - 2020-11-17 09:05 - 002903530 _____ C:\Users\agawe\Downloads\12. Labirynty.pdf 2020-11-17 09:04 - 2020-11-17 09:04 - 001060696 _____ C:\Users\agawe\Downloads\3580.pdf 2020-11-17 08:59 - 2020-11-17 09:00 - 238028013 _____ C:\Users\agawe\Downloads\mac-be61ea.zip 2020-11-16 22:15 - 2020-11-16 22:15 - 000000000 ____D C:\Users\allla\OneDrive\Dokumenty\Deluxe Ski Jump 4 2020-11-16 22:15 - 2020-11-16 22:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Deluxe Ski Jump 4 2020-11-16 22:15 - 2020-11-16 22:15 - 000000000 ____D C:\Program Files (x86)\Deluxe Ski Jump 4 2020-11-15 19:46 - 2020-11-15 19:46 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2020-11-15 17:27 - 2020-11-15 17:30 - 000000000 ____D C:\Users\allla\AppData\Roaming\Wise Disk Cleaner 2020-11-15 17:27 - 2020-11-15 17:27 - 000000000 ____D C:\WINDOWS\system32\Tasks\WiseCleaner 2020-11-15 17:27 - 2020-11-15 17:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Disk Cleaner 2020-11-15 17:27 - 2020-11-15 17:27 - 000000000 ____D C:\Program Files (x86)\Wise 2020-11-14 14:35 - 2020-11-14 14:35 - 000000044 _____ C:\Users\agawe\Downloads\Track13.cda 2020-11-13 14:48 - 2020-11-13 14:48 - 000977101 _____ C:\Users\agawe\Downloads\Praca z uczniem_materiały_Maria Tuchowska.pdf 2020-11-13 12:58 - 2020-11-13 12:58 - 000000000 ____D C:\Users\hanna\AppData\Local\OneDrive 2020-11-12 15:31 - 2020-11-12 15:31 - 000363520 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll 2020-11-12 15:31 - 2020-11-12 15:31 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll 2020-11-12 15:31 - 2020-11-12 15:31 - 000197632 _____ C:\WINDOWS\system32\IHDS.dll 2020-11-12 15:31 - 2020-11-12 15:31 - 000152576 _____ C:\WINDOWS\system32\EoAExperiences.exe 2020-11-12 15:31 - 2020-11-12 15:31 - 000009265 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2020-11-12 14:20 - 2020-11-12 14:21 - 000000000 ____D C:\Users\hanna\Desktop\Hanna 2020-11-10 19:53 - 2020-11-10 19:53 - 001779878 _____ C:\Users\agawe\Downloads\Metoda-18-struktur-wyrazowych (1).pptx 2020-11-10 17:39 - 2020-11-28 10:21 - 000000000 ____D C:\Users\allla\AppData\Local\footbe 2020-11-10 17:38 - 2020-11-10 17:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\footbe 2020-11-10 17:37 - 2020-11-27 16:20 - 000000000 ____D C:\Users\allla\OneDrive\Dokumenty\footbe 2020-11-10 17:37 - 2020-11-27 16:18 - 000000000 ____D C:\Users\allla\AppData\Roaming\footbe 2020-11-10 15:34 - 2020-11-10 15:34 - 000000000 ____D C:\Users\hanna\AppData\Roaming\Macromedia 2020-11-10 15:20 - 2020-11-10 15:21 - 000000000 ____D C:\Users\hanna\AppData\Roaming\nowaera.DAInformatykaKlasa1 2020-11-07 20:00 - 2020-11-07 20:00 - 000000000 ____D C:\Users\allla\AppData\Roaming\Teams 2020-11-07 16:37 - 2020-11-07 16:37 - 000000000 ____D C:\Users\hanna\AppData\Roaming\Teams 2020-11-07 08:56 - 2020-11-07 08:56 - 000000000 ____D C:\WINDOWS\system32\LSC 2020-11-06 19:07 - 2020-11-10 14:57 - 000000000 ____D C:\Users\hanna\AppData\Local\CyberLink 2020-11-06 17:40 - 2020-11-20 16:22 - 000002371 _____ C:\Users\agawe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk 2020-11-06 17:40 - 2020-11-06 17:40 - 000000000 ____D C:\Users\agawe\AppData\Roaming\Teams 2020-11-06 17:40 - 2020-11-06 17:40 - 000000000 ____D C:\Users\agawe\AppData\Local\SquirrelTemp 2020-11-06 17:34 - 2020-11-06 17:34 - 000000000 ____D C:\Users\hanna\AppData\Local\Comms 2020-11-06 17:26 - 2020-11-27 18:03 - 000000008 _____ C:\ProgramData\rndkvoqs.sir 2020-11-06 17:26 - 2020-11-27 18:03 - 000000008 _____ C:\ProgramData\iokjqkej.tdb 2020-11-06 17:26 - 2020-11-25 16:29 - 000000000 ____D C:\Program Files\Total Uninstall Essential 2020-11-06 17:26 - 2020-11-06 17:26 - 000000960 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total Uninstall Essential.lnk 2020-11-06 17:26 - 2020-11-06 17:26 - 000000016 _____ C:\ProgramData\mntemp 2020-11-06 17:26 - 2020-11-06 17:26 - 000000012 _____ C:\ProgramData\qtuemdke.aob 2020-11-06 17:26 - 2020-11-06 17:26 - 000000012 _____ C:\ProgramData\qmtcubwg.nqd 2020-11-06 17:26 - 2020-11-06 17:26 - 000000012 _____ C:\ProgramData\oiptnvyg.xmk 2020-11-06 17:26 - 2020-11-06 17:26 - 000000012 _____ C:\ProgramData\ipqbdleq.kee 2020-11-06 17:26 - 2020-11-06 17:26 - 000000008 _____ C:\ProgramData\yiwyxjlh.gfr 2020-11-06 17:26 - 2020-11-06 17:26 - 000000008 _____ C:\ProgramData\lygmafen.sxc 2020-11-06 17:26 - 2020-11-06 17:26 - 000000000 ____D C:\ProgramData\Martau 2020-11-06 17:18 - 2020-11-06 17:18 - 000000000 ____D C:\Users\hanna\AppData\LocalLow\Adobe 2020-11-06 17:17 - 2020-11-06 17:18 - 000000000 ____D C:\Users\hanna\AppData\Local\Adobe 2020-11-06 17:16 - 2020-11-06 17:16 - 000000000 ____D C:\Users\hanna\AppData\Roaming\LSC 2020-11-06 17:15 - 2020-11-12 14:21 - 000000000 ____D C:\Users\hanna\AppData\Local\PlaceholderTileLogoFolder 2020-11-06 17:10 - 2020-11-13 10:22 - 000002458 _____ C:\Users\hanna\Desktop\Microsoft Edge.lnk 2020-11-06 17:08 - 2020-11-23 11:20 - 000002371 _____ C:\Users\hanna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk 2020-11-06 17:08 - 2020-11-06 17:08 - 000000000 ____D C:\Users\hanna\AppData\Roaming\Microsoft Teams 2020-11-06 17:08 - 2020-11-06 17:08 - 000000000 ____D C:\Users\hanna\AppData\Roaming\Intel Corporation 2020-11-06 17:08 - 2020-11-06 17:08 - 000000000 ____D C:\Users\hanna\AppData\Local\SquirrelTemp 2020-11-06 17:08 - 2020-11-06 17:08 - 000000000 ____D C:\Users\hanna\AppData\Local\NVIDIA Corporation 2020-11-06 17:07 - 2020-11-06 17:07 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1881768518-231767975-2866080711-1008 2020-11-06 17:07 - 2020-11-06 17:07 - 000000000 ____D C:\Users\hanna\AppData\Roaming\Epson 2020-11-06 17:07 - 2020-11-06 17:07 - 000000000 ____D C:\Users\hanna\AppData\Local\Power2Go8 2020-11-06 17:07 - 2020-11-06 17:07 - 000000000 ____D C:\Users\hanna\AppData\Local\NVIDIA 2020-11-06 17:06 - 2020-11-06 17:10 - 000000000 ____D C:\Users\hanna\AppData\Local\Lenovo 2020-11-06 17:06 - 2020-11-06 17:06 - 000000000 ____D C:\Users\hanna\REACHit 2020-11-06 17:06 - 2020-11-06 17:06 - 000000000 ____D C:\Users\hanna\AppData\Local\Publishers 2020-11-06 17:05 - 2020-11-28 11:48 - 000000000 ___RD C:\Users\hanna\OneDrive 2020-11-06 17:05 - 2020-11-28 11:47 - 000000000 __SHD C:\Users\hanna\IntelGraphicsProfiles 2020-11-06 17:05 - 2020-11-09 17:15 - 000000000 ____D C:\Users\hanna 2020-11-06 17:05 - 2020-11-06 17:35 - 000000000 ____D C:\Users\hanna\AppData\Local\Packages 2020-11-06 17:05 - 2020-11-06 17:34 - 000000000 ____D C:\Users\hanna\AppData\Local\ConnectedDevicesPlatform 2020-11-06 17:05 - 2020-11-06 17:18 - 000000000 ____D C:\Users\hanna\AppData\Roaming\Adobe 2020-11-06 17:05 - 2020-11-06 17:07 - 000002414 _____ C:\Users\hanna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2020-11-06 17:05 - 2020-11-06 17:06 - 000000000 ____D C:\Users\hanna\AppData\Local\Intel 2020-11-06 17:05 - 2020-11-06 17:05 - 000000020 ___SH C:\Users\hanna\ntuser.ini 2020-11-06 17:05 - 2020-11-06 17:05 - 000000000 _SHDL C:\Users\hanna\Ustawienia lokalne 2020-11-06 17:05 - 2020-11-06 17:05 - 000000000 _SHDL C:\Users\hanna\Szablony 2020-11-06 17:05 - 2020-11-06 17:05 - 000000000 _SHDL C:\Users\hanna\Moje dokumenty 2020-11-06 17:05 - 2020-11-06 17:05 - 000000000 _SHDL C:\Users\hanna\Menu Start 2020-11-06 17:05 - 2020-11-06 17:05 - 000000000 _SHDL C:\Users\hanna\Dane aplikacji 2020-11-06 17:05 - 2020-11-06 17:05 - 000000000 _SHDL C:\Users\hanna\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2020-11-06 17:05 - 2020-11-06 17:05 - 000000000 _SHDL C:\Users\hanna\AppData\Local\Tymczasowe pliki internetowe 2020-11-06 17:05 - 2020-11-06 17:05 - 000000000 _SHDL C:\Users\hanna\AppData\Local\Historia 2020-11-06 17:05 - 2020-11-06 17:05 - 000000000 _SHDL C:\Users\hanna\AppData\Local\Dane aplikacji 2020-11-06 17:05 - 2020-11-06 17:05 - 000000000 ___RD C:\Users\hanna\3D Objects 2020-11-06 17:05 - 2020-11-06 17:05 - 000000000 ____D C:\Users\hanna\AppData\Roaming\Intel 2020-11-06 17:05 - 2020-11-06 17:05 - 000000000 ____D C:\Users\hanna\AppData\Local\VirtualStore 2020-11-06 17:05 - 2020-11-06 17:05 - 000000000 ____D C:\Users\hanna\AppData\Local\Google 2020-11-06 17:05 - 2020-11-06 17:05 - 000000000 ____D C:\Users\defaultuser100000.LAPTOP-6QB2TS4O\AppData\Local\ConnectedDevicesPlatform 2020-11-06 17:05 - 2020-11-06 17:05 - 000000000 ____D C:\Users\defaultuser100000.LAPTOP-6QB2TS4O 2020-11-06 16:53 - 2020-11-07 20:00 - 000002371 _____ C:\Users\allla\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk 2020-11-06 16:53 - 2020-11-06 16:53 - 000000000 ____D C:\Users\allla\AppData\Roaming\Microsoft Teams 2020-11-05 16:33 - 2020-11-05 16:33 - 000168150 _____ C:\Users\agawe\Downloads\Zaświadczenie - Okazje do uczenia, a sytuacje edukacyjne. Edukacja wczesnoszkolna w sytuacji pandemii.pdf 2020-11-04 18:38 - 2020-11-04 18:38 - 001779878 _____ C:\Users\agawe\Downloads\Metoda-18-struktur-wyrazowych.pptx 2020-11-01 18:58 - 2020-11-01 18:58 - 000049329 _____ C:\Users\agawe\Downloads\Vinted-Etykieta-146469408.pdf 2020-11-01 16:18 - 2020-11-01 16:18 - 000638833 _____ C:\Users\agawe\Downloads\mac-inspiracje-dzien-zdrowia.pdf 2020-11-01 16:13 - 2020-11-01 16:14 - 119419155 _____ C:\Users\agawe\Downloads\mac-2bc4f9 (1).zip 2020-10-29 09:35 - 2020-10-29 09:35 - 000038773 _____ C:\Users\agawe\Downloads\Pasek_20201031.zip 2020-10-29 09:29 - 2020-10-29 09:29 - 000031879 _____ C:\Users\agawe\Downloads\Potwierdzenie_transakcji_nr_0087011044_291020.pdf ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2020-11-28 12:32 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2020-11-28 12:07 - 2019-10-31 19:52 - 000000000 __SHD C:\Users\agawe\IntelGraphicsProfiles 2020-11-28 11:47 - 2020-10-25 19:02 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2020-11-28 10:50 - 2019-10-31 18:58 - 000000000 ____D C:\Users\allla\AppData\LocalLow\Mozilla 2020-11-28 10:43 - 2020-10-25 19:14 - 001769796 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2020-11-28 10:43 - 2019-12-07 16:08 - 000785416 _____ C:\WINDOWS\system32\perfh015.dat 2020-11-28 10:43 - 2019-12-07 16:08 - 000152276 _____ C:\WINDOWS\system32\perfc015.dat 2020-11-28 10:43 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF 2020-11-28 10:41 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2020-11-28 10:38 - 2020-10-25 16:09 - 000000000 ____D C:\Program Files\Mozilla Firefox 2020-11-28 10:36 - 2020-10-25 19:11 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2020-11-28 10:36 - 2020-10-25 19:02 - 000008192 ___SH C:\DumpStack.log.tmp 2020-11-28 10:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState 2020-11-28 10:36 - 2019-12-07 10:03 - 001310720 _____ C:\WINDOWS\system32\config\BBI 2020-11-28 10:36 - 2019-10-31 17:00 - 000000000 __SHD C:\Users\allla\IntelGraphicsProfiles 2020-11-27 18:27 - 2020-02-03 17:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CleverFiles Disk Drill (x64) 2020-11-27 18:20 - 2015-12-29 02:28 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo 2020-11-27 18:20 - 2015-12-29 02:28 - 000000000 ____D C:\Program Files (x86)\Lenovo 2020-11-27 10:33 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2020-11-27 10:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2020-11-26 20:30 - 2019-10-31 17:03 - 000000000 ____D C:\Users\allla\AppData\Local\PlaceholderTileLogoFolder 2020-11-26 17:52 - 2015-12-29 02:29 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2020-11-26 09:43 - 2019-10-31 19:52 - 000000000 ____D C:\Users\agawe\AppData\Local\Packages 2020-11-26 09:42 - 2020-10-19 12:48 - 000000000 ___DC C:\WINDOWS\Panther 2020-11-25 17:28 - 2020-07-19 08:44 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2020-11-25 16:40 - 2020-04-14 16:42 - 000007608 _____ C:\Users\allla\AppData\Local\Resmon.ResmonCfg 2020-11-25 16:36 - 2019-10-31 15:49 - 000000000 ____D C:\Program Files (x86)\VulkanRT 2020-11-25 16:18 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2020-11-24 19:41 - 2020-10-25 19:11 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2020-11-24 19:41 - 2019-11-04 14:39 - 000002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2020-11-24 18:18 - 2019-10-31 17:00 - 000000000 ____D C:\Users\allla\AppData\Local\Packages 2020-11-23 13:31 - 2019-10-31 18:58 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2020-11-23 13:31 - 2019-10-31 15:49 - 000000000 ____D C:\Intel 2020-11-22 19:41 - 2019-11-01 10:31 - 000000000 ____D C:\Users\allla\AppData\Local\D3DSCache 2020-11-21 09:42 - 2020-10-25 19:05 - 000000000 ____D C:\Users\allla 2020-11-17 12:36 - 2019-10-31 17:03 - 000002314 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2020-11-16 20:37 - 2019-10-31 20:16 - 000000000 ____D C:\Users\allla\AppData\Roaming\DAEMON Tools Lite 2020-11-15 19:47 - 2019-10-31 18:58 - 000000000 ____D C:\ProgramData\Mozilla 2020-11-15 19:46 - 2020-02-03 15:50 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2020-11-15 17:31 - 2019-11-12 17:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack 2020-11-15 17:31 - 2019-11-12 17:27 - 000000000 ____D C:\Program Files (x86)\K-Lite Codec Pack 2020-11-15 17:31 - 2019-10-31 20:15 - 000000000 ____D C:\Program Files (x86)\WinRAR 2020-11-15 17:31 - 2015-12-29 02:30 - 000000000 ____D C:\WINDOWS\Downloaded Installations 2020-11-15 17:28 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files 2020-11-13 13:10 - 2020-10-26 13:06 - 000000000 ____D C:\WINDOWS\system32\Tasks\Agent Activation Runtime 2020-11-13 01:07 - 2019-11-01 00:24 - 000000000 ____D C:\WINDOWS\system32\MRT 2020-11-13 01:05 - 2019-11-01 00:24 - 133736600 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2020-11-12 23:04 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2020-11-12 23:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2020-11-12 23:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources 2020-11-12 23:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2020-11-12 23:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup 2020-11-12 23:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2020-11-12 23:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz 2020-11-12 23:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences 2020-11-12 23:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2020-11-12 23:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2020-11-12 15:33 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing 2020-11-12 15:33 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2020-11-12 15:31 - 2020-10-25 19:03 - 002876928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2020-11-11 15:02 - 2020-05-03 21:41 - 000000081 _____ C:\Users\allla\AppData\Local\.bidstack.fault 2020-11-09 17:53 - 2020-10-25 19:05 - 000000000 ____D C:\Users\agawe 2020-11-06 17:44 - 2019-10-31 19:52 - 000000000 ____D C:\Users\agawe\AppData\Local\ConnectedDevicesPlatform 2020-11-06 17:08 - 2020-01-31 15:16 - 000000000 ___HD C:\OneDriveTemp 2020-11-06 17:05 - 2015-07-16 16:49 - 000000000 __RHD C:\Users\Public\AccountPictures 2020-11-06 17:00 - 2019-10-31 17:00 - 000000000 ____D C:\Users\allla\AppData\Local\ConnectedDevicesPlatform 2020-11-06 16:53 - 2019-10-31 20:20 - 000000000 ____D C:\Users\allla\AppData\Local\SquirrelTemp 2020-11-06 08:11 - 2019-10-31 15:56 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2020-11-01 09:52 - 2020-10-25 19:18 - 000003416 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6aaf9fe317720 2020-11-01 09:52 - 2020-10-25 19:11 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2020-10-30 08:59 - 2019-10-31 16:11 - 000795000 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe 2020-10-29 16:32 - 2020-01-27 19:55 - 000000000 ____D C:\Users\allla\AppData\Roaming\MPC-HC ==================== Pliki w katalogu głównym wybranych folderów ======== 2020-05-03 21:41 - 2020-11-11 15:02 - 000000081 _____ () C:\Users\allla\AppData\Local\.bidstack.fault 2020-09-17 10:35 - 2020-09-17 10:35 - 000000987 _____ () C:\Users\allla\AppData\Local\recently-used.xbel 2020-04-14 16:42 - 2020-11-25 16:40 - 000007608 _____ () C:\Users\allla\AppData\Local\Resmon.ResmonCfg ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================
Ten post jest popularny. Twój_Anioł_Stróż komentarz 29 listopada 2020 Ten post jest popularny. komentarz 29 listopada 2020 1) Odinstaluj ten program: Cytuj Reimage Repair (HKLM\...\Reimage Repair) (Version: 1.9.5.6 - Reimage) <==== UWAGA Nie jest zaufanym programem. ( https://www.systemlookup.com/O23/6662-ReiGuard_exe.html ) 2) Uruchom FRST. Na klawiaturze naciśnij jednocześnie CTRL+Y.Otworzy się Notatnik - wklej do niego: S2 nvsvc; "C:\Windows\system32\nvvsvc.exe" [X] R2 ReimageRealTimeProtector; C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe [9259368 2020-09-06] (Reimage Ltd. -> Reimage®) RemoveDirectory: C:\Program Files\Reimage CHR Notifications: Default -> hxxps://balanceforsun.com C:\WINDOWS\system32\reimage.rep C:\WINDOWS\Reimage.ini RemoveDirectory: C:\Program Files (x86)\loafer RemoveDirectory: C:\Users\allla\AppData\Roaming\Smart Clock RemoveDirectory: C:\Users\allla\AppData\Roaming\Fokeante RemoveDirectory: C:\ProgramData\Riate RemoveDirectory: C:\Program Files (x86)\MachinerData RemoveDirectory: C:\ProgramData\r4s0q6v4x8s0q6v4x8 RemoveDirectory: C:\ReimageUndo RemoveDirectory: C:\rei RemoveDirectory: C:\ProgramData\Reimage Protector RemoveDirectory: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reimage Repair C:\Users\Public\Desktop\PC Scan & Repair by Reimage.lnk C:\ProgramData\mntemp C:\ProgramData\qtuemdke.aob C:\ProgramData\qmtcubwg.nqd C:\ProgramData\oiptnvyg.xmk C:\ProgramData\ipqbdleq.kee C:\ProgramData\yiwyxjlh.gfr C:\ProgramData\lygmafen.sxc Powershell: wevtutil el | Foreach-Object {wevtutil cl "$_"} EmptyTemp: Na klawiaturze naciśnij jednocześnie CTRL+S. W FRST kliknij na Fix (NAPRAW). . 2
alllan komentarz 30 listopada 2020 komentarz 30 listopada 2020 Witaj, jak widać na załączonym screenie reklamy w CHROME dalej mi wyskakują jako pierwsze..... zrobiłem tak jak pisaliście - a przed chwilą raz jeszcze uruchomiłem skan FRST: ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================
Twój_Anioł_Stróż komentarz 30 listopada 2020 komentarz 30 listopada 2020 Pokaż te nowe logi FRST. Logi (tekst) wklejaj na http://wklejto.pl/ , a w poście daj tylko linki.(czyli skopiuj adres z paska adresów) A poza tym, to wyjaśnij mi, o jakie reklamy chodzi, bo na załączonym obrazku jakiś nie dostrzegam reklam. 1
alllan komentarz 30 listopada 2020 komentarz 30 listopada 2020 Po południu jeszcze raz zrobię skan, podeślę link do tego, natomiast chodzi mi o reklamy tak jak wysłałem wyżej. Poniżej wstawiam screen z drugiego laptopa, widzisz różnicę? Gdy wpisuję w google cokolwiek, jak np. tu Pogoda Sosnowiec - to wyskakuje mi ta pogoda itp. a na poprzednim screenie, który wrzuciłem z drugiego komputera gdy wpisuje jakiekolwiek frazy w googlach, zamiast od razu pokazywać te strony to są np. amazon windmu itp.
Twój_Anioł_Stróż komentarz 30 listopada 2020 komentarz 30 listopada 2020 W moim Chrome też są reklamowe linki na początku listy linków, i wcale nie uważam tego za "złe" - po prostu Google też się musi z czegoś utrzymywać.
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.