Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 22-09-2021 02 Uruchomiony przez necro (administrator) NECRONOMICON (29-09-2021 15:21:15) Uruchomiony z C:\Users\necro\Desktop Załadowane profile: necro & Zuzia & DefaultAppPool Platform: Windows 10 Home Wersja 1909 18363.1500 (X64) Język: Polski (Polska) Domyślna przeglądarka: Chrome Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe (Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <12> (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel(R) Corporation) [Brak podpisu cyfrowego] C:\Program Files\Intel\iCLS Client\HeciServer.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\avp.exe (Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\avpui.exe (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Safe Kids 1.0.5\safekids.exe (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Safe Kids 1.0.5\safekidsui.exe (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksdeui.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2> (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.BingWeather_4.46.32012.0_x64__8wekyb3d8bbwe\Microsoft.Msn.Weather.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2> (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13516360 2013-04-02] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-07-27] (Intel Corporation - Rapid Storage Technology -> Intel Corporation) HKLM\...\Run: [Windows Mobile Device Center] => C:\WINDOWS\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation -> Microsoft Corporation) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412680 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-07-07] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [IJNetworkScannerSelectorEX2] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNMNSST2.exe [279240 2016-12-09] (Canon Inc. -> CANON INC.) HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1313408 2017-07-05] (Canon Inc. -> CANON INC.) HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA HKU\S-1-5-21-1015341865-2955349865-1358925849-1000\...\Run: [BingSvc] => C:\Users\necro\AppData\Local\Microsoft\BingSvc\BingSvc.exe [146312 2020-08-15] (Microsoft Corporation -> © 2015 Microsoft Corporation) HKU\S-1-5-21-1015341865-2955349865-1358925849-1000\...\Run: [ChomikBox] => C:\Program Files (x86)\ChomikBox\ChomikBox.exe [3941376 2017-02-21] () [Brak podpisu cyfrowego] HKU\S-1-5-21-1015341865-2955349865-1358925849-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35093120 2021-09-10] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-1015341865-2955349865-1358925849-1000\...\MountPoints2: {bbd0d556-501c-11e5-b7dc-806e6f6e6963} - "F:\start.exe" HKU\S-1-5-21-1015341865-2955349865-1358925849-1000\...\MountPoints2: {c74c19f8-d9cc-11e8-8882-d0509930fa8d} - "L:\Setup.exe" HKLM\...\Windows x64\Print Processors\Canon iP7200 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBA.DLL [30208 2012-04-16] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Windows x64\Print Processors\Canon MP140 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPD8R.DLL [27648 2007-03-19] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Windows x64\Print Processors\Canon TS5100 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDDQ.DLL [482816 2017-03-23] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Windows x64\Print Processors\hpfpp70w: C:\Windows\System32\spool\prtprocs\x64\hpfpp70w.dll [249856 2009-04-16] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation) HKLM\...\Print\Monitors\Canon BJ Language Monitor iP7200 series: C:\WINDOWS\system32\CNMLMBA.DLL [389120 2012-04-16] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ Language Monitor TS5100 series: C:\WINDOWS\system32\CNMLMDQ.DLL [1302016 2017-03-23] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJNP Port: C:\WINDOWS\system32\CNMN6PPM.DLL [359936 2012-06-14] (CANON INC.) [Brak podpisu cyfrowego] HKLM\...\Print\Monitors\hpf3l70w.dll: C:\WINDOWS\system32\hpf3l70w.dll [136704 2009-04-16] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company) HKLM\Software\...\AppCompatFlags\InstalledSDB\{5534e02f-0f5d-40dd-ba92-bea38d22384d}: [DatabasePath] -> HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\94.0.4606.61\Installer\chrmstp.exe [2021-09-24] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] -> Policies: C:\ProgramData\NTUSER.pol: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {020491BD-F3B7-418B-8820-044E2DC83AE3} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {0374E6CF-0240-4433-8666-E1BC76CD3F50} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2016-01-15] (Google Inc -> Google Inc.) Task: {037E40BE-085C-4EF0-918F-C68831FFF27A} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1} Task: {03829497-9ACF-4E4E-B803-93EC6C18E139} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Brak pliku <==== UWAGA Task: {08EB6637-55FE-4908-94AC-F7FF3A1D3157} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-09-10] (Piriform Software Ltd -> Piriform) Task: {09193C77-F51B-47E5-BD1B-4FB79EC26626} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316} Task: {0A4B5DB1-B55E-4572-9ADF-F4B5962653CE} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [233824 2012-06-14] (Intel® Services Manager -> Intel Corporation) Task: {0D204FBB-57D7-4633-BA71-BD6ACA25B8A3} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe Task: {11737884-52CE-46A7-9DF2-F21481EC85C5} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe Task: {12C27131-FC27-4480-8048-6B17B32AE344} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Brak pliku <==== UWAGA Task: {17DBD99B-5DC4-4CBA-B488-4794991B7BC2} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {19A00663-D0F4-4F82-A194-C3B55CE13BA8} - System32\Tasks\Lenovo\REACHit Agent Startup => C:\Program Files (x86)\Lenovo\REACHit\webAgent.exe Task: {215D3BFE-4EBF-4ADE-BF5B-4940C6B7E3A6} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe Task: {227BB063-764F-4873-B78C-FD9C3A0C3B19} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Brak pliku <==== UWAGA Task: {240C76AC-027A-4417-9ABE-B083B2D930B3} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Brak pliku <==== UWAGA Task: {287CF70F-72C8-425A-ACCD-BD999EF4F149} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\RUXIMDisplay => C:\Program Files\ruxim\ruximics.exe [477512 2021-06-30] (Microsoft Windows -> Microsoft Corporation) Task: {2A91433C-771A-45B7-B4DE-52167C5152B4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2016-01-15] (Google Inc -> Google Inc.) Task: {2BC8FEB6-2756-4C4F-971A-D2DB5E35DE68} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969} Task: {2C06BD15-3472-4FD8-AE4F-1F5485390C38} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Brak pliku <==== UWAGA Task: {2C655DEA-6ADC-4530-A7FD-392BE49C95AF} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Brak pliku <==== UWAGA Task: {2D35560F-169A-495E-80B0-72EAC74845EF} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\necro\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [18007968 2021-06-07] (ESET, spol. s r.o. -> ESET) Task: {2ECE2540-449A-4811-B724-98201FCBCCC2} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> Brak pliku <==== UWAGA Task: {34E52F16-E347-43C7-839B-D1FD72ADFDF6} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61} Task: {3637D792-46BE-4B04-A67B-CFD1057B8264} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe Task: {378C2DF8-3AE7-490C-9316-D125C5DF0ECE} - System32\Tasks\Lenovo\REACHit Agent Update => C:\Program Files (x86)\Lenovo\REACHit\webAgent.exe Task: {381143BE-A8EE-4753-B40F-8B881575A580} - System32\Tasks\{46374442-1978-4BD4-B612-697BBE3C49A7} => C:\Windows\system32\pcalua.exe -a C:\Users\necro\Desktop\AudialsOne11_CBE.exe -d C:\Users\necro\Desktop Task: {430EF1A1-FB4F-4067-A69F-055338A36912} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {4652294D-45B6-4BF0-8F0D-F873B997571D} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe Task: {47EF2457-E5E9-4042-ADB1-4DA212D758FC} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Brak pliku <==== UWAGA Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB} Task: {4AA61134-4C44-4B21-BE43-D4B3A922E804} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1015341865-2955349865-1358925849-1007 => C:\Users\necro\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe Task: {4EBEAE13-CA40-44C4-B6DB-E81EBFF14DBC} - System32\Tasks\{C45A5631-B5A8-4796-9446-12F6FF76F974} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{5501481A-9944-4FAA-BCC5-F94CD094F2ED}\setup.exe" -d "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Plustek OpticSlim 2420+ V4.1.0.0" Task: {536D8A14-E23D-400B-8822-6F9DB7F380B0} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NoUACCheck Task: {53FEAE12-AEAE-4D7B-98CB-75F18AF75DFF} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe Task: {555C8256-037D-4055-8CB7-E83DB030F5A9} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Brak pliku <==== UWAGA Task: {594E5C24-1EDD-4361-9E24-59095266612B} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412680 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A} Task: {5D08DAC8-F248-4554-9894-F760B3013503} - System32\Tasks\{356793CE-CCB3-4C29-BBD4-EF2DD7314C51} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\Canon\MP Navigator 3.1\Maint.exe" -c /UninstallRemove C:\Program Files (x86)\Canon\MP Navigator 3.1\uninst.ini <==== UWAGA Task: {6092AF66-4FAA-4BBE-8EFD-A588E0C972F5} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [29155968 2021-09-10] (Piriform Software Ltd -> Piriform Software Ltd) Task: {67C9E2C0-540C-4331-ABED-685FEE9064FF} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe Task: {6957F78E-C83B-4B02-AE2D-F052F75B9A16} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Brak pliku <==== UWAGA Task: {6F230FC9-4872-452F-879B-9EA422AA7BD8} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {70408B2D-F09F-4ADD-8A47-79437BFF7527} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe Task: {744CF3CD-1170-445C-A9FA-D091EB5D7DF7} - System32\Tasks\CCleanerSkipUAC - necro => C:\Program Files\CCleaner\CCleaner.exe [29155968 2021-09-10] (Piriform Software Ltd -> Piriform Software Ltd) Task: {74E64350-50DD-4DAF-BE28-65CD80F2E91C} - System32\Tasks\{3A70FEA5-C6B5-4532-9195-8E6D2A528EE0} => C:\Windows\system32\pcalua.exe -a C:\Windows\system32\pcwrun.exe -c "C:\Program Files (x86)\ScannerU\AM32.exe" Task: {7551E70A-C4F2-4697-A609-05CBDA8BF42C} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe Task: {7670FC0E-108C-4C2D-BD41-91A6F1D2B841} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [7018264 2018-07-18] (Nero AG -> Nero AG) Task: {808D4C9D-3033-4193-9797-7F13B038C336} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {80EE710B-CC33-41CF-A5DB-1CF0A06E012F} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe Task: {929C84CF-3B01-4F6A-9635-5661DC3F84AB} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1015341865-2955349865-1358925849-1005 => C:\Users\necro\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe Task: {9A6BA728-7BBF-4694-A3E3-EDE8DFBF52A6} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Brak pliku <==== UWAGA Task: {9AA1AA3B-5C1C-4E8A-A9A8-7B9E257BDBA7} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe Task: {9C3685D4-D062-4D61-A372-B16221C15032} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe Task: {A0719AEF-8B61-4D4A-820D-2BFFB6367DEE} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe Task: {AB051661-FDD7-43B5-9212-D21B169DEBE6} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe Task: {AC52CE62-1607-47E2-B067-F28FC6173D97} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [233824 2012-06-14] (Intel® Services Manager -> Intel Corporation) Task: {AD171C6F-C6BD-4C08-BD1D-1229606405E0} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe Task: {AD337FBF-AFA9-42EA-A8C0-9B01281B8A73} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe Task: {AD54FAF6-1A80-4168-B12F-1BFC7164A7F6} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E} Task: {AF3DE830-B969-42DF-A533-4DE5305FE52D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.) Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371} Task: {B1268215-00C7-4969-A4BB-145DB9C0BA61} - System32\Tasks\AdobeAAMUpdater-1.0-necronomicon-necro => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe Task: {B47FA641-DE6C-4E93-B435-BA9111DD2AE8} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe Task: {BD09620C-4322-4C5E-A51F-4279D2EF57D6} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Brak pliku <==== UWAGA Task: {BE072554-9429-4FDF-BA15-7E36E21165A1} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\necro\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [18007968 2021-06-07] (ESET, spol. s r.o. -> ESET) Task: {C078B14B-EF38-4E18-A276-9613626C37AC} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Opt-in For HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Utils.exe Task: {C623BA9A-7B4F-41CC-9048-11E384C55DE8} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [16832 2015-07-08] (LENOVO -> Lenovo) Task: {C7E44E91-FABD-4145-BBB9-0EDD626EDFCA} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {CC439ABB-BE85-4757-BC74-6E3B0754D7F0} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe Task: {D28ED72F-2F76-4264-9601-D7BAE574789A} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Brak pliku <==== UWAGA Task: {D3930474-83A7-4210-9C3D-D6003E801850} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\RUXIMSync => C:\Program Files\ruxim\ruximics.exe [477512 2021-06-30] (Microsoft Windows -> Microsoft Corporation) Task: {D3E43EA8-EC72-4669-BE6F-01D4C9E63CC3} - System32\Tasks\GlaryInitialize 5 => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe Task: {D545EA9C-250F-40A2-87A8-0B4EB563EA5A} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe Task: {E29335DE-218B-4058-9897-E98D0A0D5822} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - resources updates => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe Task: {E2ABDCC9-207D-457B-B13F-0AB0C98BEB79} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe Task: {E63E9321-064A-4469-9DA1-41608759D596} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1015341865-2955349865-1358925849-1003 => C:\Users\necro\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe Task: {E92A076A-EF31-46E6-B20C-D81B68A6854D} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe Task: {EFAD51B8-CFF3-4A64-B3A3-33FB3FFC5408} - \Microsoft\Windows\UNP\RunCampaignManager -> Brak pliku <==== UWAGA Task: {F000BACE-160A-4E8F-B6D3-6AD34E7D9BBC} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe Task: {F25B28B6-B82F-463D-BB61-FF719092985A} - System32\Tasks\{BD2D7B94-A977-4BC0-9B54-4D81E84DE4AE} => C:\Program Files (x86)\ScannerU\AM32.exe Task: {F4B68D7A-967D-4787-A69E-9CB96DF5A4BC} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe Task: {F52DF620-1592-4B9F-B5E3-BB9265950558} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe Task: {FAB7B1AD-EC2F-45D5-B3A1-2CFED779B215} - System32\Tasks\HPPrintMonitorService => C:\Program Files (x86)\HP\Diagnostics\PrintMonitorService\HPPrintMonitorService.exe [73224 2020-10-13] (HP Inc. -> ) Task: {FB90BFB8-1933-448B-8D8E-514B340E782A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.55.1 Tcpip\..\Interfaces\{242271ee-07e3-4d08-bd37-1bd18f8d4291}: [DhcpNameServer] 176.58.20.19 91.189.218.147 Tcpip\..\Interfaces\{bb54b877-e8ce-4619-90a8-e137ee194cba}: [DhcpNameServer] 176.58.20.19 91.189.218.147 Tcpip\..\Interfaces\{bd2df671-69d1-4e2d-8f8b-70ae2f7ad874}: [DhcpNameServer] 176.58.20.19 91.189.218.147 Tcpip\..\Interfaces\{ddfca360-1f4b-4619-becd-549258715218}: [NameServer] 8.8.8.8,8.8.4.4 Tcpip\..\Interfaces\{e4b328bf-4490-4d88-9801-73450e73da34}: [DhcpNameServer] 192.168.55.1 Edge: ======= DownloadDir: C:\Users\necro\Downloads Edge Extension: (Brak nazwy) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [nie znaleziono] Edge Extension: (Brak nazwy) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [nie znaleziono] Edge Extension: (Brak nazwy) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [nie znaleziono] Edge Extension: (Brak nazwy) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [nie znaleziono] Edge DefaultProfile: Default Edge Profile: C:\Users\necro\AppData\Local\Microsoft\Edge\User Data\Default [2021-09-25] Edge Extension: (Kaspersky Protection 20.0) - C:\Users\necro\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\elhpdacimkjpccooodognopfhbdgnpbk [2021-01-30] Edge HKU\S-1-5-21-1015341865-2955349865-1358925849-1000\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] Edge HKU\S-1-5-21-1015341865-2955349865-1358925849-1007\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] Edge HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] FireFox: ======== FF DefaultProfile: 5w20bg5w.default FF ProfilePath: C:\Users\necro\AppData\Roaming\Mozilla\Firefox\Profiles\4o1i076l.default-release [2021-09-29] FF Homepage: Mozilla\Firefox\Profiles\4o1i076l.default-release -> hxxps://www.yandex.ru/?win=485&clid=2256027 FF NewTabOverride: Mozilla\Firefox\Profiles\4o1i076l.default-release -> Enabled: vb@yandex.ru FF Extension: (Kaspersky Protection) - C:\Users\necro\AppData\Roaming\Mozilla\Firefox\Profiles\4o1i076l.default-release\Extensions\light_plugin_B29D4AD94F82454BBC9215BCBD7E80AE@kaspersky.com.xpi [2020-07-06] FF SearchPlugin: C:\Users\necro\AppData\Roaming\Mozilla\Firefox\Profiles\4o1i076l.default-release\searchplugins\yandex.ru-20211514.xml [2021-04-14] FF ProfilePath: C:\Users\necro\AppData\Roaming\Mozilla\Firefox\Profiles\5w20bg5w.default [2021-09-29] FF Homepage: Mozilla\Firefox\Profiles\5w20bg5w.default -> hxxps://www.yandex.ru/?win=485&clid=2256027 FF Extension: (Bing Search) - C:\Users\necro\AppData\Roaming\Mozilla\Firefox\Profiles\5w20bg5w.default\Extensions\bingsearch.full@microsoft.com.xpi [2016-02-01] [Przestarzałe] FF SearchPlugin: C:\Users\necro\AppData\Roaming\Mozilla\Firefox\Profiles\5w20bg5w.default\searchplugins\bing-.xml [2016-02-01] FF SearchPlugin: C:\Users\necro\AppData\Roaming\Mozilla\Firefox\Profiles\5w20bg5w.default\searchplugins\yandex.ru-20211514.xml [2021-04-14] FF HKLM\...\Firefox\Extensions: [light_plugin_F363A72DD7B6435783A76E5F612C9006@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\FFExt\light_plugin_firefox\addon.xpi => nie znaleziono FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi => nie znaleziono FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2019-07-02] (CANON INC.) [Brak podpisu cyfrowego] FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-03-12] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-03-12] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Brak podpisu cyfrowego] FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Brak podpisu cyfrowego] FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-09-09] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\necro\AppData\Local\Google\Chrome\User Data\Default [2021-09-29] CHR DownloadDir: E:\Pobieranie CHR Notifications: Default -> hxxps://dziendobry.tvn.pl; hxxps://mail.google.com; hxxps://www.kaufda.de; hxxps://www.teb.pl CHR HomePage: Default -> hxxps://www.google.pl/webhp?sourceid=chrome-instant&rlz=1C1TEUA_enDE523DE531&ion=1&espv=2&ie=UTF-8 CHR StartupUrls: Default -> "hxxp://www.google.pl/" CHR Extension: (Prezentacje) - C:\Users\necro\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13] CHR Extension: (Just Black) - C:\Users\necro\AppData\Local\Google\Chrome\User Data\Default\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2020-11-11] CHR Extension: (Dokumenty) - C:\Users\necro\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13] CHR Extension: (Dysk Google) - C:\Users\necro\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-24] CHR Extension: (YouTube) - C:\Users\necro\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-01-15] CHR Extension: (Adblock Plus - darmowy adblocker) - C:\Users\necro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-09-01] CHR Extension: (Kaspersky Protection 20.0) - C:\Users\necro\AppData\Local\Google\Chrome\User Data\Default\Extensions\elhpdacimkjpccooodognopfhbdgnpbk [2021-01-29] CHR Extension: (Arkusze) - C:\Users\necro\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13] CHR Extension: (Flash Player & Playlist) - C:\Users\necro\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbajclanpfajnmiiihhnllgfobjbhpem [2016-04-17] CHR Extension: (Dokumenty Google offline) - C:\Users\necro\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-09-23] CHR Extension: (Save to Facebook) - C:\Users\necro\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfikkaogpplgnfjmbjdpalkhclendgd [2021-06-12] CHR Extension: (Planner 5D) - C:\Users\necro\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcafejemebbngbglfoinpoaannbihjna [2016-09-07] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\necro\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR Extension: (Gmail) - C:\Users\necro\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23] CHR Profile: C:\Users\necro\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-08-09] CHR Profile: C:\Users\necro\AppData\Local\Google\Chrome\User Data\System Profile [2021-08-09] CHR HKLM\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] CHR HKU\S-1-5-21-1015341865-2955349865-1358925849-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] CHR HKU\S-1-5-21-1015341865-2955349865-1358925849-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [ldgpjdiadomhinpimgchmeembbgojnjk] CHR HKLM-x32\...\Chrome\Extension: [bhbldcgbjblipegbeclmcnnddnopnhjm] CHR HKLM-x32\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] CHR HKLM-x32\...\Chrome\Extension: [ilamgbdaebkbpkkmfmmfbnaamkhijdek] CHR HKLM-x32\...\Chrome\Extension: [ofdgafmdegfkhfdfkmllfefmcmcjllec] CHR HKLM-x32\...\Chrome\Extension: [pnooffjhclkocplopffdbcdghmiffhji] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.) S3 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3780296 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated) S3 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3548360 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated) R2 AVP20.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\avp.exe [357416 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab) R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [443344 2020-05-25] (Canon Inc. -> ) R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [731648 2013-02-13] (Intel(R) Corporation) [Brak podpisu cyfrowego] S3 klvssbridge64_20.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\x64\vssbridge64.exe [438928 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab) R2 KSDE5.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe [447104 2021-06-17] (Kaspersky Lab JSC -> AO Kaspersky Lab) S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Brak podpisu cyfrowego] S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Brak podpisu cyfrowego] R2 SafeKids1.0.5; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Safe Kids 1.0.5\safekids.exe [598808 2021-09-16] (Kaspersky Lab JSC -> AO Kaspersky Lab) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-19] (Microsoft Corporation -> Microsoft Corporation) ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 AmUStor; C:\WINDOWS\system32\drivers\AmUStor.SYS [84480 2015-12-29] (Microsoft Windows Hardware Compatibility Publisher -> Alcor Micro, Corp.) R1 AsrAppCharger; C:\WINDOWS\System32\DRIVERS\AsrAppCharger.sys [17192 2011-11-07] (ASROCK Incorporation -> Windows (R) Win 7 DDK provider) R3 athur; C:\WINDOWS\System32\drivers\athurx.sys [1930240 2014-05-23] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.) S3 CH341SER_A64; C:\WINDOWS\System32\Drivers\CH341S64.SYS [59904 2015-11-30] (Microsoft Windows Hardware Compatibility Publisher -> www.winchiphead.com) R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [246912 2019-02-16] (Kaspersky Lab -> AO Kaspersky Lab) S3 ggsomc; C:\WINDOWS\System32\drivers\ggsomc.sys [30424 2017-06-19] (Sony Mobile Communications AB -> Sony Mobile Communications) R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-09-03] (Martin Malik - REALiX -> REALiX(tm)) R3 int0800; C:\WINDOWS\System32\drivers\flashud.sys [51712 2009-09-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) R0 klbackupdisk; C:\WINDOWS\System32\DRIVERS\klbackupdisk.sys [79768 2020-04-14] (Kaspersky Lab -> AO Kaspersky Lab) R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [145504 2020-02-13] (Kaspersky Lab -> AO Kaspersky Lab) R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [93312 2019-03-13] (Kaspersky Lab -> AO Kaspersky Lab) S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [37816 2019-01-24] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab) R3 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [251800 2020-08-13] (Kaspersky Lab -> AO Kaspersky Lab) R3 klfltks; C:\WINDOWS\system32\DRIVERS\klfltks.sys [509240 2021-09-16] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [657696 2021-05-08] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klhk; C:\WINDOWS\System32\drivers\klhk.sys [1439456 2021-05-08] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klids; C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\klids.sys [273176 2021-07-29] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [998808 2020-08-13] (Kaspersky Lab -> AO Kaspersky Lab) R1 klifks; C:\WINDOWS\System32\DRIVERS\klifks.sys [992056 2021-09-16] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [58192 2019-03-19] (Kaspersky Lab -> AO Kaspersky Lab) R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [79760 2020-04-14] (Kaspersky Lab -> AO Kaspersky Lab) R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [59512 2019-03-18] (Kaspersky Lab -> AO Kaspersky Lab) R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [51328 2019-03-13] (Kaspersky Lab -> AO Kaspersky Lab) S3 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [45904 2019-03-10] (Kaspersky Lab -> AO Kaspersky Lab) R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [55592 2020-06-29] (AnchorFree Inc -> The OpenVPN Project) R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [265176 2021-09-20] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [315032 2021-09-20] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [113952 2021-09-20] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [225648 2021-09-24] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [105600 2019-03-05] (Kaspersky Lab -> AO Kaspersky Lab) R1 Klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [211048 2019-12-19] (Kaspersky Lab -> AO Kaspersky Lab) R1 klwtpks; C:\WINDOWS\system32\DRIVERS\klwtpks.sys [319296 2021-09-16] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [233368 2020-08-13] (Kaspersky Lab -> AO Kaspersky Lab) R1 RrNetCapFilterDriver; C:\WINDOWS\system32\DRIVERS\RrNetCapFilterDriver.sys [24744 2015-04-01] (Audials AG -> Audials AG) R3 Serial; C:\WINDOWS\system32\DRIVERS\nuvserial.sys [86016 2014-01-12] (Microsoft Windows Hardware Compatibility Publisher -> Nuvoton Technology Corp.) R3 tbhsd; C:\WINDOWS\system32\drivers\tbhsd.sys [48296 2015-04-01] (Audials AG -> RapidSolution Software AG) U5 UnlockerDriver5; C:\Users\necro\UnlockerPortable\App\Unlocker64\UnlockerDriver5.sys [12352 2010-07-01] (Empty Loop -> ) S3 usbscan; C:\Windows\SysWOW64\DRIVERS\usbscan.sys [8944 1999-05-05] (Microsoft Corporation) [Brak podpisu cyfrowego] S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation) U3 idsvc; Brak ImagePath ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-09-29 15:21 - 2021-09-29 15:21 - 000039722 _____ C:\Users\necro\Desktop\FRST.txt 2021-09-29 15:21 - 2021-09-29 15:21 - 000000000 ____D C:\FRST 2021-09-29 15:20 - 2021-09-29 15:20 - 002304512 _____ (Farbar) C:\Users\necro\Desktop\FRST64.exe 2021-09-28 18:24 - 2021-09-28 18:24 - 000000000 ___HD C:\$WINDOWS.~BT 2021-09-28 15:13 - 2021-09-28 15:13 - 000002259 _____ C:\WINDOWS\epplauncher.mif 2021-09-27 21:55 - 2021-09-27 21:55 - 003087654 _____ C:\Users\necro\Desktop\H81M-HDS(2.10)ROM.zip 2021-09-27 21:47 - 2021-09-27 21:47 - 000058348 _____ C:\Users\necro\Desktop\NECRONOMICON.txt 2021-09-27 21:43 - 2021-09-27 21:43 - 000000914 _____ C:\Users\Public\Desktop\CPUID CPU-Z.lnk 2021-09-27 21:43 - 2021-09-27 21:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID 2021-09-27 21:43 - 2021-09-27 21:43 - 000000000 ____D C:\Program Files\CPUID 2021-09-27 20:59 - 2021-09-27 20:59 - 004071113 _____ C:\Users\necro\Desktop\nowy7.zip 2021-09-27 19:50 - 2021-09-27 19:50 - 000610023 _____ C:\Users\necro\Desktop\162372142.pdf 2021-09-27 16:11 - 2021-09-27 16:11 - 000613607 _____ C:\Users\necro\Documents\IMG_20210927_0001.pdf 2021-09-27 16:11 - 2021-09-27 16:11 - 000613607 _____ C:\Users\necro\Desktop\IMG_20210927_0001.pdf 2021-09-20 11:06 - 2021-09-20 11:06 - 000315032 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klark.sys 2021-09-20 11:05 - 2021-09-24 08:17 - 000225648 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_mark.sys 2021-09-20 11:05 - 2021-09-20 11:05 - 000265176 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_arkmon.sys 2021-09-20 11:05 - 2021-09-20 11:05 - 000113952 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klbg.sys 2021-09-19 20:51 - 2021-09-19 20:51 - 000000269 _____ C:\Users\necro\Desktop\FIX.REG 2021-09-15 06:13 - 2021-09-15 06:13 - 000000000 ___HD C:\$WinREAgent 2021-09-14 07:34 - 2021-09-14 07:34 - 000095384 _____ C:\Users\necro\AppData\Local\GDIPFONTCACHEV1.DAT 2021-09-14 06:48 - 2021-09-14 06:48 - 000000000 ____D C:\Users\necro\UnlockerPortable 2021-09-14 06:43 - 2021-09-27 15:52 - 000003650 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask 2021-09-07 21:26 - 2021-09-07 21:26 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-09-29 15:21 - 2015-08-31 22:47 - 000000000 ____D C:\ProgramData\Kaspersky Lab 2021-09-29 15:15 - 2016-01-15 20:01 - 000000000 ____D C:\Program Files (x86)\Google 2021-09-29 15:14 - 2021-06-05 13:34 - 000000000 ____D C:\ProgramData\NVIDIA 2021-09-29 15:14 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-09-29 15:14 - 2016-09-25 08:22 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2021-09-29 05:07 - 2015-08-31 23:04 - 000000000 ____D C:\Users\necro\AppData\Roaming\Smarty Uninstaller 2021-09-29 05:05 - 2020-07-01 14:41 - 000004220 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{AD652896-83BB-44E9-B126-E380C9E9D6C7} 2021-09-29 05:05 - 2019-10-04 16:52 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData 2021-09-29 05:04 - 2015-09-02 17:41 - 000000000 ____D C:\Program Files\CCleaner 2021-09-29 05:03 - 2020-07-01 14:41 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-09-29 05:03 - 2020-07-01 14:41 - 000003386 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-09-28 18:54 - 2020-07-01 14:26 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-09-28 18:26 - 2020-07-01 08:58 - 000000000 ___DC C:\WINDOWS\Panther 2021-09-28 17:35 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps 2021-09-28 17:35 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-09-27 16:11 - 2021-07-14 14:05 - 000000000 ____D C:\ProgramData\CanonIJPLM 2021-09-26 19:45 - 2019-03-19 06:37 - 000008192 _____ C:\WINDOWS\system32\config\ELAM 2021-09-26 19:28 - 2020-06-08 11:35 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-09-26 19:28 - 2020-06-08 11:35 - 000002286 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2021-09-25 10:29 - 2017-08-31 23:06 - 000000000 ____D C:\Users\necro\AppData\Local\ChomikBox 2021-09-25 10:27 - 2017-08-31 23:06 - 000000000 ____D C:\Users\necro\.gstreamer-0.10 2021-09-25 08:31 - 2020-07-01 14:38 - 002006200 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-09-25 08:31 - 2019-03-19 14:23 - 000856142 _____ C:\WINDOWS\system32\perfh015.dat 2021-09-25 08:31 - 2019-03-19 14:23 - 000182054 _____ C:\WINDOWS\system32\perfc015.dat 2021-09-25 08:31 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF 2021-09-25 08:27 - 2020-07-01 14:41 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-09-25 08:26 - 2019-03-19 06:37 - 001310720 _____ C:\WINDOWS\system32\config\BBI 2021-09-24 11:02 - 2020-07-01 14:41 - 000002828 _____ C:\WINDOWS\system32\Tasks\AdobeAAMUpdater-1.0-necronomicon-necro 2021-09-24 08:01 - 2016-01-15 20:02 - 000002307 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2021-09-24 08:01 - 2016-01-15 20:02 - 000002266 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2021-09-20 09:16 - 2020-07-01 14:30 - 000000000 ____D C:\Users\necro 2021-09-20 09:10 - 2018-01-15 14:47 - 000000000 ____D C:\Users\necro\AppData\Local\PlaceholderTileLogoFolder 2021-09-19 19:25 - 2021-06-07 22:15 - 000003852 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onLogOn 2021-09-19 19:25 - 2021-06-07 22:15 - 000003410 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onTime 2021-09-19 19:25 - 2021-06-07 17:58 - 000001424 _____ C:\Users\necro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk 2021-09-18 09:02 - 2020-07-01 14:41 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2021-09-16 22:03 - 2019-12-18 21:16 - 000992056 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klifks.sys 2021-09-16 22:03 - 2019-12-18 21:16 - 000509240 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klfltks.sys 2021-09-16 22:03 - 2019-02-06 23:08 - 000319296 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klwtpks.sys 2021-09-16 22:00 - 2021-02-24 00:52 - 000000000 ____D C:\Users\Zuzia 2021-09-14 17:45 - 2020-07-01 14:41 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2021-09-14 17:45 - 2015-09-03 21:50 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2021-09-14 07:01 - 2021-08-18 15:15 - 000000000 ____D C:\Program Files\ruxim 2021-09-13 21:47 - 2021-07-02 15:41 - 000000000 ____D C:\Users\Zuzia\AppData\Roaming\Hewlett-Packard 2021-09-13 21:47 - 2021-06-24 21:21 - 000000000 ____D C:\Users\necro\AppData\Local\Hewlett-Packard 2021-09-13 21:47 - 2016-05-05 08:18 - 000000000 ____D C:\AdwCleaner 2021-09-12 16:13 - 2020-05-05 09:30 - 000000000 ____D C:\Users\necro\AppData\LocalLow\Mozilla 2021-09-12 16:13 - 2020-05-05 09:30 - 000000000 ____D C:\ProgramData\Mozilla 2021-09-11 14:57 - 2020-07-01 14:30 - 000000000 ____D C:\Users\DefaultAppPool 2021-09-07 21:26 - 2020-05-05 09:30 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2021-09-05 09:33 - 2015-08-31 23:58 - 000000000 ____D C:\Users\necro\AppData\Local\Microsoft Help 2021-09-04 09:19 - 2020-09-18 17:01 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools ==================== Pliki w katalogu głównym wybranych folderów ======== 2018-09-29 08:24 - 2018-09-29 08:24 - 000000000 _____ () C:\Users\necro\AppData\Local\oobelibMkey.log 2015-11-25 18:24 - 2015-11-25 18:24 - 000000983 _____ () C:\Users\necro\AppData\Local\recently-used.xbel 2018-01-16 20:40 - 2021-06-06 21:52 - 000007618 _____ () C:\Users\necro\AppData\Local\Resmon.ResmonCfg ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================