-
Za darmo dla wszystkich bez rejestracji konta
Dodaj plik... -
Darmowy hosting nawet do 1GB / plik
Dodaj plik... -
Dziel się plikami prywatnie i publicznie
Dodaj plik...
Wrzucaj teksty, notatki, kody i linki
Kopiuj, wklej i podziel się bez ograniczeń
Treść schowka:
Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 05-03-2023
Uruchomiony przez Pawel (administrator) LAPTOP-MK3P05PH (LENOVO 80QQ) (05-03-2023 18:27:51)
Uruchomiony z C:\Users\Paweł\Desktop
Załadowane profile: Pawel
Platform: Microsoft Windows 10 Home Wersja 21H2 19044.2486 (X64) Język: Polski (Polska)
Domyślna przeglądarka: Chrome
Tryb startu: Normal
==================== Procesy (filtrowane) =================
(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)
(C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTDevMgr.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTServer.exe
(C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTServer.exe ->) (Realtek Semiconductor Corp -> ) C:\Program Files (x86)\Realtek\Realtek Bluetooth\SkypePlugin.exe
(C:\Program Files\Google\Chrome\Application\chrome.exe ->) (Google LLC -> Google) C:\Users\Paweł\AppData\Local\Google\Chrome\User Data\SwReporter\107.294.200\software_reporter_tool.exe <4>
(C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe
(explorer.exe ->) (Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <17>
(Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(services.exe ->) (Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (LENOVO -> Lenovo) C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Locator.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(services.exe ->) (Realtek Semiconductor Corp -> ) C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTDevMgr.exe
(services.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\Realtek Bluetooth\AvrcpService.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
==================== Rejestr (filtrowane) ===================
(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-07-22] (Intel Corporation - Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [916184 2014-07-02] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [BtServer] => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [230104 2015-07-10] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation)
HKLM\...\Run: [LenovoUtility] => C:\ProgramData\Lenovo\ImController\Plugins\IdeaOSDPackage\x64\utility.exe [911272 2017-07-27] (LENOVO -> Lenovo(beijing) Limited)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [711288 2023-01-09] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Ograniczenia <==== UWAGA
HKLM\SOFTWARE\Policies\Microsoft\MRT: Ograniczenia <==== UWAGA
HKU\S-1-5-21-929241179-32002084-1731227500-1001\...\Run: [MicrosoftEdgeAutoLaunch_5882F6839F6659C345806F2F072F4DDB] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4243408 2023-03-02] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-929241179-32002084-1731227500-1001\...\MountPoints2: {6b52361c-2cdd-11ed-9c42-48e244be1156} - "F:\HiSuiteDownLoader.exe"
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5700 series: CNMLMCS.DLL (Brak pliku)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5700 series XPS: C:\Windows\system32\CNMXLMCS.DLL [409088 2015-03-15] (CANON INC.) [Brak podpisu cyfrowego]
HKLM\...\Print\Monitors\Canon BJNP Port: C:\Windows\system32\CNMN6PPM.DLL [375296 2015-03-17] (CANON INC.) [Brak podpisu cyfrowego]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\110.0.5481.178\Installer\chrmstp.exe [2023-03-05] (Google LLC -> Google LLC)
Startup: C:\Users\Paweł\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\My DDT2000 Quick Menu.lnk [2017-09-15]
ShortcutTarget: My DDT2000 Quick Menu.lnk -> C:\Program Files (x86)\DDT2000\DDT2000_menu.exe (Brak pliku)
Startup: C:\Users\Paweł\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\up.lnk [2021-01-28]
ShortcutTarget: up.lnk -> C:\Users\Default\AppData\Roaming\h.js () [Brak podpisu cyfrowego]
Startup: C:\Users\Paweł\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\upd.lnk [2021-01-28]
ShortcutTarget: upd.lnk -> C:\Users\Default\AppData\Local\b.js () [Brak podpisu cyfrowego]
GroupPolicy: Ograniczenia ? <==== UWAGA
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA
==================== Zaplanowane zadania (filtrowane) ============
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
Task: {0615E9E4-BC22-485A-B093-59FF8B22D3BE} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3285192 2017-01-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {08346C8E-9E76-446B-82CA-CA957D270DC6} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [149280 2022-09-23] (Lenovo -> Lenovo Group Ltd.)
Task: {0DEFC272-CFB8-4C64-B1F2-2C1B0AC772C2} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [3888328 2017-01-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {11EDB63B-A5DE-49D8-8BE3-A853467F8921} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MpCmdRun.exe [1592184 2023-03-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {140DB51F-991B-459B-9707-33D62F108386} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [690744 2016-09-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {253A47A3-9658-4466-B23B-417FDB12E3C5} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [74952 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {28C47E06-F650-4465-ABB4-73459CB70BA2} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {2A82B9DF-0A73-46E4-A0DC-DF91F9E8ACFC} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [3888328 2017-01-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {2B60B6B4-6174-4D47-9567-8C4ED7777439} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService
Task: {2F1F3B86-2482-44AB-977F-F0453BB16D24} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [611384 2016-09-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {34BFCFA0-02D6-4EA3-96FB-F114890563C3} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [611384 2016-09-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {35E7FDD1-7BCF-4DEB-B90E-60D3A1C15009} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MpCmdRun.exe [1592184 2023-03-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3D32E0EF-C8A1-487F-9944-1DCEEC7CE511} - System32\Tasks\GoogleUpdateTaskMachineUA{AA682A20-EF1F-460B-8B45-D3787AE5ACF5} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2023-03-05] (Google LLC -> Google LLC)
Task: {42B74993-688F-4D56-B043-150AD0566F9F} - System32\Tasks\PDVDServ12 Task => C:\Program Files (x86)\Lenovo\PowerDVD12\PDVD12Serv.exe [85432 2015-05-28] (CyberLink Corp. -> CyberLink Corp.)
Task: {616D5657-C373-4DD6-A512-59C0030529D4} - System32\Tasks\Lenovo\Experience Improvement => C:\Program Files\Lenovo\ExperienceImprovement\LenovoExperienceImprovement.exe [287688 2016-08-05] (LENOVO -> Lenovo)
Task: {63531086-6F57-4F84-B2B2-7A72070573B3} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3285192 2017-01-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {6B2CE076-9391-4A19-B97E-B89751504C80} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\20216caf-76d8-4b2c-a621-8ac389270226 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {811EDBE9-A3D8-4FDB-9B85-20A3BCAFD7E3} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\9b9ffeb4-de99-41e0-af16-e900fd00e5bc => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {8F87A479-5400-44B4-8957-F790627F8B09} - System32\Tasks\GoogleUpdateTaskMachineCore{10D6B2CE-8651-4F82-9683-CCC54D283FAB} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2023-03-05] (Google LLC -> Google LLC)
Task: {ACC53B82-DEA9-4879-891A-C87C32AC6DFD} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [16832 2015-07-08] (LENOVO -> Lenovo)
Task: {CA0A6707-9CFA-47A9-9033-E08AB4F843AC} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [421944 2016-09-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CA310E45-9152-4174-9DA1-CF4A6A2B2A45} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [1321296 2016-06-02] (LENOVO -> Lenovo)
Task: {CEA8DCFC-AB54-4ADB-81B8-E5D77DD0B321} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1560056 2023-02-01] (Adobe Inc. -> Adobe Inc.)
Task: {CF1FEE77-953C-4437-940B-71859659B39A} - \Microsoft\Windows\UNP\RunCampaignManager -> Brak pliku <==== UWAGA
Task: {DF14F408-0FAB-4AB3-98B6-E9E48F7C445B} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [690744 2016-09-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E087FA2D-6719-4776-BE7D-62CAB9EEA035} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [9944400 2016-06-02] (LENOVO -> Lenovo)
Task: {E3E5D887-3CA4-46F1-BAB6-1A589AA258A4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MpCmdRun.exe [1592184 2023-03-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E8AACF29-C143-4C12-820D-4ED86A225F5E} - System32\Tasks\{31DDBD37-5DB7-4030-8064-10B0CAA806C3} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe --cistrayUI (Brak pliku)
Task: {EBA04807-C1BD-417E-B687-221AD3ED720F} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\Windows\system32\rundll32.exe C:\Windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {EC657766-C2A3-44B7-8EFE-6B508CB1A015} - System32\Tasks\Microsoft\Windows\CUAssistant\CULauncher => C:\Program Files\CUAssistant\culauncher.exe (Brak pliku)
Task: {EC713B39-A6A1-4943-B70E-CE02ABA8E6BF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MpCmdRun.exe [1592184 2023-03-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {EF03BA7D-6DF8-4EAC-88CF-2140F3A31919} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSC.Services.UpdateStatusService.exe [263504 2016-06-02] (LENOVO -> )
Task: {F7BA3904-6685-48CD-AD1C-9E300DB49B1C} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [9944400 2016-06-02] (LENOVO -> Lenovo)
Task: {F8CABE39-2057-4281-9D58-657AA0583476} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\bb153ddd-9a6f-48da-9b44-c8953807e2dc => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {FE0E32EF-2E92-4684-8B7D-6EB7DC813828} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\3b6412d4-340f-45ec-948e-6ab540d393b6 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
(Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.)
==================== Internet (filtrowane) ====================
(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)
AutoConfigURL: [S-1-5-21-929241179-32002084-1731227500-1001] => 2019 <==== UWAGA
Tcpip\Parameters: [DhcpNameServer] 192.168.100.1
Tcpip\..\Interfaces\{1cc1418c-916b-4ffd-bda2-a878d1627c72}: [DhcpNameServer] 192.168.100.1
Tcpip\..\Interfaces\{ba6c13c9-b26e-4f27-8f7d-26dc13fb9ca7}: [DhcpNameServer] 192.168.42.129
ManualProxies: 02019 <==== UWAGA
Edge:
=======
Edge Extension: (Brak nazwy) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [nie znaleziono]
Edge Extension: (Brak nazwy) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [nie znaleziono]
Edge DefaultProfile: Profile 2
Edge Profile: C:\Users\Paweł\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2022-02-25]
Edge Profile: C:\Users\Paweł\AppData\Local\Microsoft\Edge\User Data\Profile 2 [2023-03-05]
FireFox:
========
FF DefaultProfile: m9gdce25.default-1585758072461
FF ProfilePath: C:\Users\Paweł\AppData\Roaming\Mozilla\Firefox\Profiles\m9gdce25.default-1585758072461 [2023-01-01]
FF Notifications: Mozilla\Firefox\Profiles\m9gdce25.default-1585758072461 -> hxxps://rootblog.pl; hxxps://decider.com
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_26_0_0_151.dll [2017-09-07] (Adobe Systems Incorporated -> )
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-01-28] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_26_0_0_151.dll [2017-09-07] (Adobe Systems Incorporated -> )
FF Plugin-x32: @java.com/DTPlugin,version=11.361.2 -> C:\Program Files (x86)\Java\jre1.8.0_361\bin\dtplugin\npDeployJava1.dll [2023-01-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.361.2 -> C:\Program Files (x86)\Java\jre1.8.0_361\bin\plugin2\npjp2.dll [2023-01-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2017-01-28] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-12-29] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Brak podpisu cyfrowego]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-12-29] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Brak podpisu cyfrowego]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2022-11-14] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\Paweł\AppData\Local\Google\Chrome\User Data\Default [2023-03-05]
CHR Extension: (Dokumenty Google offline) - C:\Users\Paweł\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-03-05]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Paweł\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-03-05]
CHR Profile: C:\Users\Paweł\AppData\Local\Google\Chrome\User Data\Profile 1 [2023-03-05]
CHR Extension: (Dokumenty Google offline) - C:\Users\Paweł\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-03-05]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Paweł\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-03-05]
CHR Profile: C:\Users\Paweł\AppData\Local\Google\Chrome\User Data\System Profile [2023-03-05]
==================== Usługi (filtrowane) ===================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-02-01] (Adobe Inc. -> Adobe Inc.)
R2 AvrcpService; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\AvrcpService.exe [41176 2015-03-02] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation)
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [120024 2015-07-02] (Realtek Semiconductor Corp -> )
S2 CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [680288 2016-12-06] (LENOVO -> Lenovo)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3697352 2017-01-21] (Microsoft Corporation -> Microsoft Corporation)
R2 GDCAgent; C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe [1155512 2015-07-29] (LENOVO -> Lenovo)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
S3 LSC.Services.SystemService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [273232 2016-06-02] (LENOVO -> Lenovo)
S3 mfevtp; C:\Windows\system32\mfevtps.exe [277744 2016-04-26] (McAfee, Inc. -> McAfee, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\NisSrv.exe [3191256 2023-03-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MsMpEng.exe [133576 2023-03-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"
===================== Sterowniki (filtrowane) ===================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego]
R3 BthAudioHF; C:\WINDOWS\system32\drivers\RtkHfp.sys [95248 2015-05-12] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corporation)
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego]
S3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [78632 2016-04-27] (McAfee, Inc. -> McAfee, Inc.)
S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2017-09-15] (Disc Soft Ltd -> Disc Soft Ltd)
S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2017-09-15] (Disc Soft Ltd -> Disc Soft Ltd)
R3 glavcam; C:\WINDOWS\system32\DRIVERS\glavcam.sys [3476736 2015-10-16] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [349480 2016-04-27] (McAfee, Inc. -> McAfee, Inc.)
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [83608 2016-04-27] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, Inc.)
R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [493352 2016-04-27] (McAfee, Inc. -> McAfee, Inc.)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [843048 2016-04-27] (McAfee, Inc. -> McAfee, Inc.)
R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [243488 2016-04-27] (McAfee, Inc. -> McAfee, Inc.)
R3 RtkA2dp; C:\WINDOWS\system32\drivers\RtkA2dp.sys [182288 2015-05-21] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corporation)
R3 RtkAvrcp; C:\WINDOWS\System32\drivers\RtkAvrcp.sys [60944 2015-05-12] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corporation)
R3 RtkAvrcpCtrlr; C:\WINDOWS\System32\drivers\RtkAvrcpCtrlr.sys [70672 2015-05-12] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49576 2023-03-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [473336 2023-03-04] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99576 2023-03-04] (Microsoft Windows -> Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-13] (CyberLink -> "CyberLink)
==================== NetSvcs (filtrowane) ===================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
==================== Jeden miesiąc (utworzone) (filtrowane) =========
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
2023-03-05 18:36 - 2023-03-05 18:36 - 000002040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2023-03-05 18:36 - 2023-03-05 18:36 - 000002028 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2023-03-05 18:36 - 2023-03-05 18:36 - 000000000 ____D C:\Users\Paweł\AppData\Local\mbam
2023-03-05 18:33 - 2023-03-05 18:33 - 000000000 ____D C:\ProgramData\Malwarebytes
2023-03-05 18:33 - 2023-03-05 18:33 - 000000000 ____D C:\Program Files\Malwarebytes
2023-03-05 18:31 - 2023-03-05 18:31 - 002580896 _____ (Malwarebytes) C:\Users\Paweł\Downloads\MBSetup.exe
2023-03-05 18:27 - 2023-03-05 18:32 - 000025952 _____ C:\Users\Paweł\Desktop\FRST.txt
2023-03-05 18:23 - 2023-03-05 18:24 - 002378752 _____ (Farbar) C:\Users\Paweł\Desktop\FRST64.exe
2023-03-05 18:11 - 2023-03-05 18:11 - 000002328 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-03-05 18:11 - 2023-03-05 18:11 - 000002287 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-03-05 18:11 - 2023-03-05 18:11 - 000000000 ____D C:\Program Files\Google
2023-03-05 18:10 - 2023-03-05 18:17 - 000000000 ____D C:\Program Files (x86)\Google
2023-03-05 18:10 - 2023-03-05 18:10 - 000003646 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{AA682A20-EF1F-460B-8B45-D3787AE5ACF5}
2023-03-05 18:10 - 2023-03-05 18:10 - 000003522 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{10D6B2CE-8651-4F82-9683-CCC54D283FAB}
2023-03-05 18:09 - 2023-03-05 18:22 - 000000000 ____D C:\Users\Paweł\AppData\Local\Google
2023-03-04 17:15 - 2023-03-04 17:15 - 000000000 ___HD C:\$WinREAgent
==================== Jeden miesiąc (zmodyfikowane) ==================
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
2023-03-05 18:35 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-03-05 18:30 - 2017-04-10 16:27 - 000000000 ____D C:\FRST
2023-03-05 18:16 - 2022-02-12 12:03 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-03-05 18:15 - 2021-01-29 17:36 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2023-03-05 18:03 - 2017-07-07 15:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2023-03-05 18:03 - 2017-07-07 15:40 - 000000000 ____D C:\Program Files (x86)\Java
2023-03-05 17:57 - 2017-09-15 17:46 - 000000000 ____D C:\Program Files (x86)\DDT2000
2023-03-05 17:39 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-03-05 17:38 - 2017-01-28 17:48 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2023-03-05 17:36 - 2022-02-08 17:51 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-03-05 17:36 - 2022-02-08 17:12 - 000008192 ___SH C:\DumpStack.log.tmp
2023-03-05 17:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2023-03-05 17:36 - 2017-01-28 17:49 - 000000000 ____D C:\ProgramData\NVIDIA
2023-03-05 17:35 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2023-03-05 17:25 - 2022-02-08 17:12 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-03-05 17:23 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-03-05 17:21 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-03-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-03-05 16:10 - 2016-10-02 09:28 - 000000000 ____D C:\Users\Paweł\AppData\Local\CrashDumps
2023-03-04 17:10 - 2022-02-08 17:32 - 000002455 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-03-04 16:52 - 2022-02-08 17:51 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2023-03-04 16:49 - 2018-06-16 18:47 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-02-11 18:02 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2023-02-11 18:00 - 2022-02-08 18:27 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-02-11 18:00 - 2022-02-08 18:27 - 000003472 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d81d0961ff1ec4
2023-02-03 10:46 - 2016-08-05 19:37 - 000000000 ____D C:\Users\Paweł\AppData\Local\Packages
2023-02-03 10:21 - 2022-02-08 17:51 - 000003580 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-929241179-32002084-1731227500-1001
2023-02-03 10:21 - 2022-02-08 17:51 - 000003374 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-929241179-32002084-1731227500-1001
2023-02-03 10:21 - 2022-02-08 17:22 - 000002426 _____ C:\Users\Paweł\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
==================== Pliki w katalogu głównym wybranych folderów ========
2018-07-20 13:25 - 2016-04-16 18:59 - 000000054 _____ () C:\Users\Paweł\AppData\Roaming\12.bat
2018-07-20 13:25 - 2016-10-02 09:26 - 000000110 _____ () C:\Users\Paweł\AppData\Roaming\h.js
2018-07-20 13:25 - 2015-08-09 15:00 - 000278016 _____ (The cURL library, hxxp://curl.haxx.se/) C:\Users\Paweł\AppData\Roaming\libcurl.dll
2018-07-20 13:25 - 2015-08-09 15:00 - 000094208 _____ (Free Software Foundation) C:\Users\Paweł\AppData\Roaming\libmicrohttpd-dll.dll
2018-07-20 13:25 - 2013-10-05 00:58 - 000660128 _____ (Microsoft Corporation) C:\Users\Paweł\AppData\Roaming\msvcp120.dll
2018-07-20 13:25 - 2013-10-04 22:58 - 000963232 _____ (Microsoft Corporation) C:\Users\Paweł\AppData\Roaming\msvcr120.dll
2018-07-20 13:25 - 2015-08-09 15:00 - 000021504 _____ () C:\Users\Paweł\AppData\Roaming\OpenCL.dll
2018-07-20 13:25 - 2015-08-09 15:00 - 000209920 _____ () C:\Users\Paweł\AppData\Roaming\winserver.exe
2018-07-20 13:25 - 2016-04-17 21:52 - 000000117 _____ () C:\Users\Paweł\AppData\Local\b.js
2016-08-05 19:37 - 2023-03-05 17:49 - 003207244 _____ () C:\Users\Paweł\AppData\Local\BTServer.log
2017-01-24 20:52 - 2017-01-24 20:52 - 000003584 _____ () C:\Users\Paweł\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-10-02 15:15 - 2016-10-02 15:15 - 000007605 _____ () C:\Users\Paweł\AppData\Local\Resmon.ResmonCfg
2018-07-20 13:25 - 2016-04-17 21:49 - 000000107 _____ () C:\Users\Paweł\AppData\Local\upd.bat
2018-07-20 13:25 - 2016-04-17 21:43 - 000251392 _____ () C:\Users\Paweł\AppData\Local\winhost.exe
==================== SigCheck ============================
(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)
==================== Koniec FRST.txt ======================== Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 05-03-2023
Uruchomiony przez Pawel (administrator) LAPTOP-MK3P05PH (LENOVO 80QQ) (05-03-2023 18:27:51)
Uruchomiony z C:\Users\Paweł\Desktop
Załadowane profile: Pawel
Platform: Microsoft Windows 10 Home Wersja 21H2 19044.2486 (X64) Język: Polski (Polska)
Domyślna przeglądarka: Chrome
Tryb startu: Normal
==================== Procesy (filtrowane) =================
(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)
(C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTDevMgr.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTServer.exe
(C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTServer.exe ->) (Realtek Semiconductor Corp -> ) C:\Program Files (x86)\Realtek\Realtek Bluetooth\SkypePlugin.exe
(C:\Program Files\Google\Chrome\Application\chrome.exe ->) (Google LLC -> Google) C:\Users\Paweł\AppData\Local\Google\Chrome\User Data\SwReporter\107.294.200\software_reporter_tool.exe <4>
(C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe
(explorer.exe ->) (Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <17>
(Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(services.exe ->) (Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (LENOVO -> Lenovo) C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Locator.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(services.exe ->) (Realtek Semiconductor Corp -> ) C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTDevMgr.exe
(services.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\Realtek Bluetooth\AvrcpService.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
==================== Rejestr (filtrowane) ===================
(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-07-22] (Intel Corporation - Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [916184 2014-07-02] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [BtServer] => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [230104 2015-07-10] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation)
HKLM\...\Run: [LenovoUtility] => C:\ProgramData\Lenovo\ImController\Plugins\IdeaOSDPackage\x64\utility.exe [911272 2017-07-27] (LENOVO -> Lenovo(beijing) Limited)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [711288 2023-01-09] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Ograniczenia <==== UWAGA
HKLM\SOFTWARE\Policies\Microsoft\MRT: Ograniczenia <==== UWAGA
HKU\S-1-5-21-929241179-32002084-1731227500-1001\...\Run: [MicrosoftEdgeAutoLaunch_5882F6839F6659C345806F2F072F4DDB] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4243408 2023-03-02] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-929241179-32002084-1731227500-1001\...\MountPoints2: {6b52361c-2cdd-11ed-9c42-48e244be1156} - "F:\HiSuiteDownLoader.exe"
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5700 series: CNMLMCS.DLL (Brak pliku)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5700 series XPS: C:\Windows\system32\CNMXLMCS.DLL [409088 2015-03-15] (CANON INC.) [Brak podpisu cyfrowego]
HKLM\...\Print\Monitors\Canon BJNP Port: C:\Windows\system32\CNMN6PPM.DLL [375296 2015-03-17] (CANON INC.) [Brak podpisu cyfrowego]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\110.0.5481.178\Installer\chrmstp.exe [2023-03-05] (Google LLC -> Google LLC)
Startup: C:\Users\Paweł\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\My DDT2000 Quick Menu.lnk [2017-09-15]
ShortcutTarget: My DDT2000 Quick Menu.lnk -> C:\Program Files (x86)\DDT2000\DDT2000_menu.exe (Brak pliku)
Startup: C:\Users\Paweł\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\up.lnk [2021-01-28]
ShortcutTarget: up.lnk -> C:\Users\Default\AppData\Roaming\h.js () [Brak podpisu cyfrowego]
Startup: C:\Users\Paweł\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\upd.lnk [2021-01-28]
ShortcutTarget: upd.lnk -> C:\Users\Default\AppData\Local\b.js () [Brak podpisu cyfrowego]
GroupPolicy: Ograniczenia ? <==== UWAGA
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA
==================== Zaplanowane zadania (filtrowane) ============
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
Task: {0615E9E4-BC22-485A-B093-59FF8B22D3BE} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3285192 2017-01-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {08346C8E-9E76-446B-82CA-CA957D270DC6} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [149280 2022-09-23] (Lenovo -> Lenovo Group Ltd.)
Task: {0DEFC272-CFB8-4C64-B1F2-2C1B0AC772C2} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [3888328 2017-01-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {11EDB63B-A5DE-49D8-8BE3-A853467F8921} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MpCmdRun.exe [1592184 2023-03-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {140DB51F-991B-459B-9707-33D62F108386} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [690744 2016-09-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {253A47A3-9658-4466-B23B-417FDB12E3C5} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [74952 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {28C47E06-F650-4465-ABB4-73459CB70BA2} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {2A82B9DF-0A73-46E4-A0DC-DF91F9E8ACFC} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [3888328 2017-01-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {2B60B6B4-6174-4D47-9567-8C4ED7777439} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService
Task: {2F1F3B86-2482-44AB-977F-F0453BB16D24} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [611384 2016-09-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {34BFCFA0-02D6-4EA3-96FB-F114890563C3} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [611384 2016-09-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {35E7FDD1-7BCF-4DEB-B90E-60D3A1C15009} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MpCmdRun.exe [1592184 2023-03-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3D32E0EF-C8A1-487F-9944-1DCEEC7CE511} - System32\Tasks\GoogleUpdateTaskMachineUA{AA682A20-EF1F-460B-8B45-D3787AE5ACF5} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2023-03-05] (Google LLC -> Google LLC)
Task: {42B74993-688F-4D56-B043-150AD0566F9F} - System32\Tasks\PDVDServ12 Task => C:\Program Files (x86)\Lenovo\PowerDVD12\PDVD12Serv.exe [85432 2015-05-28] (CyberLink Corp. -> CyberLink Corp.)
Task: {616D5657-C373-4DD6-A512-59C0030529D4} - System32\Tasks\Lenovo\Experience Improvement => C:\Program Files\Lenovo\ExperienceImprovement\LenovoExperienceImprovement.exe [287688 2016-08-05] (LENOVO -> Lenovo)
Task: {63531086-6F57-4F84-B2B2-7A72070573B3} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3285192 2017-01-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {6B2CE076-9391-4A19-B97E-B89751504C80} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\20216caf-76d8-4b2c-a621-8ac389270226 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {811EDBE9-A3D8-4FDB-9B85-20A3BCAFD7E3} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\9b9ffeb4-de99-41e0-af16-e900fd00e5bc => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {8F87A479-5400-44B4-8957-F790627F8B09} - System32\Tasks\GoogleUpdateTaskMachineCore{10D6B2CE-8651-4F82-9683-CCC54D283FAB} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2023-03-05] (Google LLC -> Google LLC)
Task: {ACC53B82-DEA9-4879-891A-C87C32AC6DFD} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [16832 2015-07-08] (LENOVO -> Lenovo)
Task: {CA0A6707-9CFA-47A9-9033-E08AB4F843AC} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [421944 2016-09-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CA310E45-9152-4174-9DA1-CF4A6A2B2A45} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [1321296 2016-06-02] (LENOVO -> Lenovo)
Task: {CEA8DCFC-AB54-4ADB-81B8-E5D77DD0B321} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1560056 2023-02-01] (Adobe Inc. -> Adobe Inc.)
Task: {CF1FEE77-953C-4437-940B-71859659B39A} - \Microsoft\Windows\UNP\RunCampaignManager -> Brak pliku <==== UWAGA
Task: {DF14F408-0FAB-4AB3-98B6-E9E48F7C445B} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [690744 2016-09-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E087FA2D-6719-4776-BE7D-62CAB9EEA035} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [9944400 2016-06-02] (LENOVO -> Lenovo)
Task: {E3E5D887-3CA4-46F1-BAB6-1A589AA258A4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MpCmdRun.exe [1592184 2023-03-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E8AACF29-C143-4C12-820D-4ED86A225F5E} - System32\Tasks\{31DDBD37-5DB7-4030-8064-10B0CAA806C3} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe --cistrayUI (Brak pliku)
Task: {EBA04807-C1BD-417E-B687-221AD3ED720F} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\Windows\system32\rundll32.exe C:\Windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {EC657766-C2A3-44B7-8EFE-6B508CB1A015} - System32\Tasks\Microsoft\Windows\CUAssistant\CULauncher => C:\Program Files\CUAssistant\culauncher.exe (Brak pliku)
Task: {EC713B39-A6A1-4943-B70E-CE02ABA8E6BF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MpCmdRun.exe [1592184 2023-03-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {EF03BA7D-6DF8-4EAC-88CF-2140F3A31919} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSC.Services.UpdateStatusService.exe [263504 2016-06-02] (LENOVO -> )
Task: {F7BA3904-6685-48CD-AD1C-9E300DB49B1C} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [9944400 2016-06-02] (LENOVO -> Lenovo)
Task: {F8CABE39-2057-4281-9D58-657AA0583476} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\bb153ddd-9a6f-48da-9b44-c8953807e2dc => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {FE0E32EF-2E92-4684-8B7D-6EB7DC813828} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\3b6412d4-340f-45ec-948e-6ab540d393b6 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
(Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.)
==================== Internet (filtrowane) ====================
(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)
AutoConfigURL: [S-1-5-21-929241179-32002084-1731227500-1001] => 2019 <==== UWAGA
Tcpip\Parameters: [DhcpNameServer] 192.168.100.1
Tcpip\..\Interfaces\{1cc1418c-916b-4ffd-bda2-a878d1627c72}: [DhcpNameServer] 192.168.100.1
Tcpip\..\Interfaces\{ba6c13c9-b26e-4f27-8f7d-26dc13fb9ca7}: [DhcpNameServer] 192.168.42.129
ManualProxies: 02019 <==== UWAGA
Edge:
=======
Edge Extension: (Brak nazwy) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [nie znaleziono]
Edge Extension: (Brak nazwy) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [nie znaleziono]
Edge DefaultProfile: Profile 2
Edge Profile: C:\Users\Paweł\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2022-02-25]
Edge Profile: C:\Users\Paweł\AppData\Local\Microsoft\Edge\User Data\Profile 2 [2023-03-05]
FireFox:
========
FF DefaultProfile: m9gdce25.default-1585758072461
FF ProfilePath: C:\Users\Paweł\AppData\Roaming\Mozilla\Firefox\Profiles\m9gdce25.default-1585758072461 [2023-01-01]
FF Notifications: Mozilla\Firefox\Profiles\m9gdce25.default-1585758072461 -> hxxps://rootblog.pl; hxxps://decider.com
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_26_0_0_151.dll [2017-09-07] (Adobe Systems Incorporated -> )
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-01-28] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_26_0_0_151.dll [2017-09-07] (Adobe Systems Incorporated -> )
FF Plugin-x32: @java.com/DTPlugin,version=11.361.2 -> C:\Program Files (x86)\Java\jre1.8.0_361\bin\dtplugin\npDeployJava1.dll [2023-01-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.361.2 -> C:\Program Files (x86)\Java\jre1.8.0_361\bin\plugin2\npjp2.dll [2023-01-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2017-01-28] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-12-29] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Brak podpisu cyfrowego]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-12-29] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Brak podpisu cyfrowego]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2022-11-14] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\Paweł\AppData\Local\Google\Chrome\User Data\Default [2023-03-05]
CHR Extension: (Dokumenty Google offline) - C:\Users\Paweł\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-03-05]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Paweł\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-03-05]
CHR Profile: C:\Users\Paweł\AppData\Local\Google\Chrome\User Data\Profile 1 [2023-03-05]
CHR Extension: (Dokumenty Google offline) - C:\Users\Paweł\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-03-05]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Paweł\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-03-05]
CHR Profile: C:\Users\Paweł\AppData\Local\Google\Chrome\User Data\System Profile [2023-03-05]
==================== Usługi (filtrowane) ===================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-02-01] (Adobe Inc. -> Adobe Inc.)
R2 AvrcpService; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\AvrcpService.exe [41176 2015-03-02] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation)
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [120024 2015-07-02] (Realtek Semiconductor Corp -> )
S2 CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [680288 2016-12-06] (LENOVO -> Lenovo)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3697352 2017-01-21] (Microsoft Corporation -> Microsoft Corporation)
R2 GDCAgent; C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe [1155512 2015-07-29] (LENOVO -> Lenovo)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
S3 LSC.Services.SystemService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [273232 2016-06-02] (LENOVO -> Lenovo)
S3 mfevtp; C:\Windows\system32\mfevtps.exe [277744 2016-04-26] (McAfee, Inc. -> McAfee, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\NisSrv.exe [3191256 2023-03-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MsMpEng.exe [133576 2023-03-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"
===================== Sterowniki (filtrowane) ===================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego]
R3 BthAudioHF; C:\WINDOWS\system32\drivers\RtkHfp.sys [95248 2015-05-12] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corporation)
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego]
S3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [78632 2016-04-27] (McAfee, Inc. -> McAfee, Inc.)
S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2017-09-15] (Disc Soft Ltd -> Disc Soft Ltd)
S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2017-09-15] (Disc Soft Ltd -> Disc Soft Ltd)
R3 glavcam; C:\WINDOWS\system32\DRIVERS\glavcam.sys [3476736 2015-10-16] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [349480 2016-04-27] (McAfee, Inc. -> McAfee, Inc.)
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [83608 2016-04-27] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, Inc.)
R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [493352 2016-04-27] (McAfee, Inc. -> McAfee, Inc.)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [843048 2016-04-27] (McAfee, Inc. -> McAfee, Inc.)
R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [243488 2016-04-27] (McAfee, Inc. -> McAfee, Inc.)
R3 RtkA2dp; C:\WINDOWS\system32\drivers\RtkA2dp.sys [182288 2015-05-21] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corporation)
R3 RtkAvrcp; C:\WINDOWS\System32\drivers\RtkAvrcp.sys [60944 2015-05-12] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corporation)
R3 RtkAvrcpCtrlr; C:\WINDOWS\System32\drivers\RtkAvrcpCtrlr.sys [70672 2015-05-12] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49576 2023-03-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [473336 2023-03-04] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99576 2023-03-04] (Microsoft Windows -> Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-13] (CyberLink -> "CyberLink)
==================== NetSvcs (filtrowane) ===================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
==================== Jeden miesiąc (utworzone) (filtrowane) =========
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
2023-03-05 18:36 - 2023-03-05 18:36 - 000002040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2023-03-05 18:36 - 2023-03-05 18:36 - 000002028 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2023-03-05 18:36 - 2023-03-05 18:36 - 000000000 ____D C:\Users\Paweł\AppData\Local\mbam
2023-03-05 18:33 - 2023-03-05 18:33 - 000000000 ____D C:\ProgramData\Malwarebytes
2023-03-05 18:33 - 2023-03-05 18:33 - 000000000 ____D C:\Program Files\Malwarebytes
2023-03-05 18:31 - 2023-03-05 18:31 - 002580896 _____ (Malwarebytes) C:\Users\Paweł\Downloads\MBSetup.exe
2023-03-05 18:27 - 2023-03-05 18:32 - 000025952 _____ C:\Users\Paweł\Desktop\FRST.txt
2023-03-05 18:23 - 2023-03-05 18:24 - 002378752 _____ (Farbar) C:\Users\Paweł\Desktop\FRST64.exe
2023-03-05 18:11 - 2023-03-05 18:11 - 000002328 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-03-05 18:11 - 2023-03-05 18:11 - 000002287 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-03-05 18:11 - 2023-03-05 18:11 - 000000000 ____D C:\Program Files\Google
2023-03-05 18:10 - 2023-03-05 18:17 - 000000000 ____D C:\Program Files (x86)\Google
2023-03-05 18:10 - 2023-03-05 18:10 - 000003646 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{AA682A20-EF1F-460B-8B45-D3787AE5ACF5}
2023-03-05 18:10 - 2023-03-05 18:10 - 000003522 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{10D6B2CE-8651-4F82-9683-CCC54D283FAB}
2023-03-05 18:09 - 2023-03-05 18:22 - 000000000 ____D C:\Users\Paweł\AppData\Local\Google
2023-03-04 17:15 - 2023-03-04 17:15 - 000000000 ___HD C:\$WinREAgent
==================== Jeden miesiąc (zmodyfikowane) ==================
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
2023-03-05 18:35 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-03-05 18:30 - 2017-04-10 16:27 - 000000000 ____D C:\FRST
2023-03-05 18:16 - 2022-02-12 12:03 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-03-05 18:15 - 2021-01-29 17:36 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2023-03-05 18:03 - 2017-07-07 15:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2023-03-05 18:03 - 2017-07-07 15:40 - 000000000 ____D C:\Program Files (x86)\Java
2023-03-05 17:57 - 2017-09-15 17:46 - 000000000 ____D C:\Program Files (x86)\DDT2000
2023-03-05 17:39 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-03-05 17:38 - 2017-01-28 17:48 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2023-03-05 17:36 - 2022-02-08 17:51 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-03-05 17:36 - 2022-02-08 17:12 - 000008192 ___SH C:\DumpStack.log.tmp
2023-03-05 17:36 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2023-03-05 17:36 - 2017-01-28 17:49 - 000000000 ____D C:\ProgramData\NVIDIA
2023-03-05 17:35 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2023-03-05 17:25 - 2022-02-08 17:12 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-03-05 17:23 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-03-05 17:21 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-03-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-03-05 16:10 - 2016-10-02 09:28 - 000000000 ____D C:\Users\Paweł\AppData\Local\CrashDumps
2023-03-04 17:10 - 2022-02-08 17:32 - 000002455 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-03-04 16:52 - 2022-02-08 17:51 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2023-03-04 16:49 - 2018-06-16 18:47 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-02-11 18:02 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2023-02-11 18:00 - 2022-02-08 18:27 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-02-11 18:00 - 2022-02-08 18:27 - 000003472 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d81d0961ff1ec4
2023-02-03 10:46 - 2016-08-05 19:37 - 000000000 ____D C:\Users\Paweł\AppData\Local\Packages
2023-02-03 10:21 - 2022-02-08 17:51 - 000003580 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-929241179-32002084-1731227500-1001
2023-02-03 10:21 - 2022-02-08 17:51 - 000003374 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-929241179-32002084-1731227500-1001
2023-02-03 10:21 - 2022-02-08 17:22 - 000002426 _____ C:\Users\Paweł\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
==================== Pliki w katalogu głównym wybranych folderów ========
2018-07-20 13:25 - 2016-04-16 18:59 - 000000054 _____ () C:\Users\Paweł\AppData\Roaming\12.bat
2018-07-20 13:25 - 2016-10-02 09:26 - 000000110 _____ () C:\Users\Paweł\AppData\Roaming\h.js
2018-07-20 13:25 - 2015-08-09 15:00 - 000278016 _____ (The cURL library, hxxp://curl.haxx.se/) C:\Users\Paweł\AppData\Roaming\libcurl.dll
2018-07-20 13:25 - 2015-08-09 15:00 - 000094208 _____ (Free Software Foundation) C:\Users\Paweł\AppData\Roaming\libmicrohttpd-dll.dll
2018-07-20 13:25 - 2013-10-05 00:58 - 000660128 _____ (Microsoft Corporation) C:\Users\Paweł\AppData\Roaming\msvcp120.dll
2018-07-20 13:25 - 2013-10-04 22:58 - 000963232 _____ (Microsoft Corporation) C:\Users\Paweł\AppData\Roaming\msvcr120.dll
2018-07-20 13:25 - 2015-08-09 15:00 - 000021504 _____ () C:\Users\Paweł\AppData\Roaming\OpenCL.dll
2018-07-20 13:25 - 2015-08-09 15:00 - 000209920 _____ () C:\Users\Paweł\AppData\Roaming\winserver.exe
2018-07-20 13:25 - 2016-04-17 21:52 - 000000117 _____ () C:\Users\Paweł\AppData\Local\b.js
2016-08-05 19:37 - 2023-03-05 17:49 - 003207244 _____ () C:\Users\Paweł\AppData\Local\BTServer.log
2017-01-24 20:52 - 2017-01-24 20:52 - 000003584 _____ () C:\Users\Paweł\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-10-02 15:15 - 2016-10-02 15:15 - 000007605 _____ () C:\Users\Paweł\AppData\Local\Resmon.ResmonCfg
2018-07-20 13:25 - 2016-04-17 21:49 - 000000107 _____ () C:\Users\Paweł\AppData\Local\upd.bat
2018-07-20 13:25 - 2016-04-17 21:43 - 000251392 _____ () C:\Users\Paweł\AppData\Local\winhost.exe
==================== SigCheck ============================
(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)
==================== Koniec FRST.txt ========================Strona korzysta z plików cookies w celu realizacji usług zgodnie z Polityką Plików Cookies. Możesz określić warunki przechowywania lub dostępu do plików cookies w Twojej przeglądarce.
