Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 27-12-2021 Uruchomiony przez Slawek (administrator) SLAWEK-PCWIN10 (MSI MS-7823) (04-01-2022 17:18:54) Uruchomiony z C:\Users\Slawek\Downloads Załadowane profile: Slawek Platform: Microsoft Windows 10 Home Wersja 21H1 19043.1237 (X64) Język: Polski (Polska) Domyślna przeglądarka: FF Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\96.0.1054.62\identity_helper.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <10> (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCopyAccelerator.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <19> (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9037832 2016-10-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [49976 2014-08-01] (Hewlett-Packard Company -> Hewlett-Packard) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-09-27] (Oracle America, Inc. -> Oracle Corporation) HKU\S-1-5-21-406098911-3547360013-3433154366-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4267432 2021-12-16] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-406098911-3547360013-3433154366-1000\...\Run: [Battle.net] => C:\Program Files (x86)\Battle.net\Battle.net.exe [1087376 2021-12-17] (Blizzard Entertainment, Inc. -> Blizzard Entertainment) HKLM\...\Windows x64\Print Processors\HP1020PrintProc: C:\Windows\System32\spool\prtprocs\x64\pphp1020.dll [65024 2012-09-18] (Microsoft Windows Hardware Compatibility Publisher -> ) HKLM\...\Print\Monitors\HPLJ1020LM: C:\Windows\system32\zlhp1020.dll [192512 2012-09-18] (Microsoft Windows Hardware Compatibility Publisher -> ) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\96.0.4664.110\Installer\chrmstp.exe [2021-12-16] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] -> Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Office.lnk [2019-12-07] ShortcutTarget: Microsoft Office.lnk -> C:\Program Files (x86)\Microsoft Office\Office\OSA9.EXE (Microsoft Corporation) [Brak podpisu cyfrowego] Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ROCCAT Swarm Monitor.lnk [2019-01-11] ShortcutTarget: ROCCAT Swarm Monitor.lnk -> C:\Program Files (x86)\ROCCAT\ROCCAT Swarm\ROCCAT_Swarm_Monitor.exe (ROCCAT GmbH -> ROCCAT) ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {06AA16A2-84E1-42DF-BB21-D2100CCEF94B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {085B4F29-79E0-4862-9415-10D901982E1F} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1713952 2021-05-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {0B9B81D6-C9D8-4669-8809-8A2A038E8EA4} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB" Task: {12A9EF40-9CC5-4217-8F0F-BE359523C6B5} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4f47-879B-29A80C355D61} Task: {1CE2D809-F3E9-46D9-A5A4-EC0E220D8794} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0) (Brak pliku) Task: {1F99D3C1-1C44-45F2-8DFF-FCCBD3A631F4} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe /DRMInit (Brak pliku) Task: {20CAFFCA-E009-4227-86CD-AAB31A0F2D80} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe /OCURActivate (Brak pliku) Task: {23C6A4D0-90F2-46F0-9874-7A2E675C5C8D} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -ObjectStoreRecoveryTask (Brak pliku) Task: {31841465-3547-47E0-8F8D-A772D2F73D98} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe -PvrSchedule (Brak pliku) Task: {357B0863-FE3C-4C1A-8765-B78BDA422BD7} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery (Brak pliku) Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47c2-B62A-B7C4CED925CB} Task: {4B48D036-1C01-4831-9FEB-0E6B4A8F2A65} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {4C17104C-A3F2-4D99-9EDF-7E424B055953} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe /PBDADiscovery (Brak pliku) Task: {4DBBA13C-C749-4068-B2B2-7DFE7DCEC60F} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDfE067B1} Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A} Task: {5BEF8FAF-D8B2-414B-9FEF-5CD306E7D33D} - System32\Tasks\ROCCAT DEVICE SERVICE => C:\Program Files (x86)\ROCCAT\ROCCAT Swarm\ROCCAT_dev_service.exe [397208 2019-03-25] (ROCCAT GmbH -> ROCCAT) Task: {5CA323CA-1615-4E7D-A7D2-3A28791D2198} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.) Task: {63B2E2FB-72FE-4FBF-A6E4-3C7E77B29A54} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe /DoConfigureInternetTimeService (Brak pliku) Task: {71A36F23-9497-4074-AB2B-C816125478F2} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -PvrRecoveryTask (Brak pliku) Task: {742B8369-10F0-401E-B0AA-2292EA143109} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [69304 2020-08-21] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {78BE7AC6-18F4-4226-A8A0-5B990079A13C} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -SqlLiteRecoveryTask (Brak pliku) Task: {89412BAC-3D4A-4DFF-804F-95D13CCF18F9} - \Microsoft\Windows\Setup\EOSNotify2 -> Brak pliku <==== UWAGA Task: {98B508AC-80EA-4BC2-8606-1FE3BD2A8790} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe $(Arg0) (Brak pliku) Task: {9ADDEE02-81BF-491F-AEC1-71B8EEDD592F} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43da-BFD7-FBEEA2180A1E} Task: {9E2C2577-57F1-405B-B206-82AD25B56A84} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {A264EDB9-E4A2-4A83-A04A-AD0E617F92B5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-12-07] (Google Inc -> Google LLC) Task: {A2F10A4A-3F6C-4476-850D-643B956EB177} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61624 2020-08-21] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {A4294F3B-39BB-41A2-935B-77D95C4988BB} - \Microsoft\Windows\Setup\EOSNotify -> Brak pliku <==== UWAGA Task: {AE1A3237-BC06-4E99-B1ED-B4FEC0EB90ED} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316} Task: {AEADB26F-7200-472C-8D15-8550B44E42EA} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0) (Brak pliku) Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40b4-8963-D3C761B18371} Task: {B1BC1FB0-9FC9-4397-9566-6F5E54ED815D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {B3E25635-0716-4637-B5F7-FCE62EEA208A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-12-07] (Google Inc -> Google LLC) Task: {B6E9217E-5D89-4388-8097-EEB47BC053AD} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -MediaCenterRecoveryTask (Brak pliku) Task: {B9E05E42-0047-442D-BA66-087D53245FC9} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe -pscn 0 (Brak pliku) Task: {D30F7EE3-228C-4275-B03A-A78F82592B35} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => C:\Program Files\Microsoft Security Client\\MpCmdRun.exe Scan -ScheduleJob -RestrictPrivileges (Brak pliku) Task: {DDB30E45-79EC-4D78-983B-AAF7AB6634AA} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0) (Brak pliku) Task: {E2DD1E6C-080A-4165-A8A8-16F87CE2D837} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {E7EE3F41-5FA9-4533-9F2A-4B11CFCB8C84} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0) (Brak pliku) Task: {E90B8385-C9C2-42FD-ABA4-BDE88F5E86A4} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0) (Brak pliku) Task: {EA817224-395C-4908-B76B-88AC03B827FA} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe /DoReindexSearchRoot (Brak pliku) Task: {EC9059A8-BE34-455F-B67F-706FCC1B252D} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe /DoActivateWindowsSearch (Brak pliku) Task: {ED7F8AE8-80DD-4E41-A870-C9B85C2ADCB9} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe /RestartRecording (Brak pliku) Task: {EF9D6436-20A2-406B-B5A7-06D2B9BF7BC4} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1713952 2021-05-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {F0EADAD0-4316-4B14-A24B-CE60E144D9BC} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery (Brak pliku) Task: {F5B16561-8719-44D3-BC1A-C540C7DE0EDC} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969} Task: {F9C5D013-58C4-40B6-B8BA-2710EA82A9C0} - System32\Tasks\Microsoft\Windows\WaaSMedic\MaintenanceWork => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32} (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{27602726-C4BF-4EC1-B6F5-1B11D3C74E2D}: [DhcpNameServer] 192.168.0.1 Edge: ======= Edge Profile: C:\Users\Slawek\AppData\Local\Microsoft\Edge\User Data\Default [2022-01-04] FireFox: ======== FF DefaultProfile: f58t0191.default-1550177219148 FF ProfilePath: C:\Users\Slawek\AppData\Roaming\Mozilla\Firefox\Profiles\f58t0191.default-1550177219148 [2022-01-04] FF Homepage: Mozilla\Firefox\Profiles\f58t0191.default-1550177219148 -> file:///C:/Users/Slawek/Documents/strona.htm FF Plugin: @java.com/DTPlugin,version=11.311.2 -> C:\Program Files\Java\jre1.8.0_311\bin\dtplugin\npDeployJava1.dll [2021-12-29] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.311.2 -> C:\Program Files\Java\jre1.8.0_311\bin\plugin2\npjp2.dll [2021-12-29] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @videolan.org/vlc,version=3.0.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-12-20] (VideoLAN -> VideoLAN) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-10-05] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR Profile: C:\Users\Slawek\AppData\Local\Google\Chrome\User Data\Default [2021-11-15] CHR Extension: (Prezentacje) - C:\Users\Slawek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-12-07] CHR Extension: (Dokumenty) - C:\Users\Slawek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-12-07] CHR Extension: (Dysk Google) - C:\Users\Slawek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-22] CHR Extension: (YouTube) - C:\Users\Slawek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-12-07] CHR Extension: (Arkusze) - C:\Users\Slawek\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-12-07] CHR Extension: (Dokumenty Google offline) - C:\Users\Slawek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-11-15] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Slawek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-15] CHR Extension: (Gmail) - C:\Users\Slawek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-22] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.) S2 amdacpusrsvc; C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe [190464 2021-05-11] () [Brak podpisu cyfrowego] S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8894752 2021-03-05] (BattlEye Innovations e.K. -> ) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [818288 2020-08-25] (EasyAntiCheat Oy -> Epic Games, Inc) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe [2876152 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe [128360 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 ahcix64s; C:\WINDOWS\system32\drivers\ahcix64s.sys [292696 2012-10-07] (Promise Technology, Inc. -> Advanced Micro Devices, Inc) S3 BFN7x64; C:\WINDOWS\system32\drivers\Xeno7x64.sys [157288 2012-02-22] (Bigfoot Networks, Inc. -> Bigfoot Networks, Inc.) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego] S3 DC133; C:\WINDOWS\system32\drivers\DC133.sys [39320 2011-05-02] (Dawicontrol Computersysteme GmbH -> Dawicontrol GmbH) S3 DC150; C:\WINDOWS\system32\drivers\DC150.sys [39832 2011-05-02] (Dawicontrol Computersysteme GmbH -> Dawicontrol GmbH) S3 DC154; C:\WINDOWS\system32\drivers\DC154.sys [48136 2011-05-02] (Dawicontrol Computersysteme GmbH -> Dawicontrol GmbH) S3 DC300e; C:\WINDOWS\system32\drivers\DC300e.sys [40344 2011-05-02] (Dawicontrol Computersysteme GmbH -> Dawicontrol GmbH) S3 DC324e; C:\WINDOWS\system32\drivers\DC324e.sys [49752 2011-05-02] (Dawicontrol Computersysteme GmbH -> Dawicontrol GmbH) S0 DC3410; C:\WINDOWS\System32\drivers\DC3410.sys [48328 2011-05-02] (Dawicontrol Computersysteme GmbH -> Dawicontrol GmbH) S3 DC4300; C:\WINDOWS\system32\drivers\DC4300.sys [48360 2011-05-02] (Dawicontrol Computersysteme GmbH -> Dawicontrol GmbH) S3 DC600e; C:\WINDOWS\system32\drivers\DC600e.sys [40744 2011-05-02] (Dawicontrol Computersysteme GmbH -> Dawicontrol GmbH) S3 dtlitescsibus; C:\WINDOWS\System32\DRIVERS\dtlitescsibus.sys [30264 2019-01-23] (Disc Soft Ltd -> Disc Soft Ltd) S3 dtliteusbbus; C:\WINDOWS\System32\DRIVERS\dtliteusbbus.sys [47672 2019-01-23] (Disc Soft Ltd -> Disc Soft Ltd) S3 megasas2; C:\WINDOWS\system32\drivers\megasas2.sys [51496 2012-02-29] (LSI Corporation -> LSI Corporation) S3 uagp35; C:\WINDOWS\system32\drivers\sisagpx.sys [67104 2009-08-01] (SILICON INTEGRATED SYSTEMS CORP. -> Silicon Integrated Systems Corporation) S3 VCSVADHWSer; C:\WINDOWS\System32\drivers\vcsvad.sys [27600 2020-03-11] (Audio and Video Software Corporation -> AVSOFT Corp.) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2021-12-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [435432 2021-12-16] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86248 2021-12-16] (Microsoft Windows -> Microsoft Corporation) S2 amdacpksd; \??\C:\WINDOWS\system32\drivers\amdacpksd.sys [X] U3 idsvc; Brak ImagePath ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2022-01-04 17:18 - 2022-01-04 17:19 - 000020221 _____ C:\Users\Slawek\Downloads\FRST.txt 2022-01-04 17:18 - 2022-01-04 17:19 - 000000000 ____D C:\FRST 2022-01-04 17:18 - 2022-01-04 17:18 - 002311168 _____ (Farbar) C:\Users\Slawek\Downloads\FRST64.exe 2022-01-04 16:34 - 2022-01-04 16:35 - 000000000 ____D C:\AdwCleaner 2022-01-04 16:34 - 2022-01-04 16:34 - 008540344 _____ (Malwarebytes) C:\Users\Slawek\Downloads\adwcleaner_8.3.1.exe 2022-01-04 16:20 - 2022-01-04 16:20 - 000001431 _____ C:\Users\Slawek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk 2022-01-04 16:20 - 2022-01-04 16:20 - 000001325 _____ C:\Users\Slawek\Desktop\ESET Online Scanner.lnk 2022-01-04 16:20 - 2022-01-04 16:20 - 000000000 ____D C:\Users\Slawek\AppData\Local\ESET 2022-01-04 16:19 - 2022-01-04 16:19 - 013311448 _____ (ESET) C:\Users\Slawek\Downloads\esetonlinescanner.exe 2022-01-03 15:25 - 2022-01-03 15:25 - 000000000 ___HD C:\$WinREAgent 2021-12-31 06:39 - 2021-12-31 06:39 - 000000000 ____D C:\Users\Slawek\AppData\Local\OneDrive 2021-12-29 17:08 - 2021-12-29 17:08 - 000060772 _____ C:\Users\Slawek\Downloads\autohaven-buzzardpl(1).jar 2021-12-29 15:37 - 2021-12-29 15:37 - 000191832 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll 2021-12-29 15:37 - 2021-12-29 15:37 - 000000000 ____D C:\Users\Slawek\AppData\Roaming\Sun 2021-12-29 15:37 - 2021-12-29 15:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2021-12-29 15:37 - 2021-12-29 15:37 - 000000000 ____D C:\Program Files\Java 2021-12-29 15:35 - 2021-12-29 15:35 - 000060772 _____ C:\Users\Slawek\Downloads\autohaven-buzzardpl.jar 2021-12-29 12:07 - 2021-12-29 12:07 - 000000222 _____ C:\Users\Slawek\Desktop\Project Zomboid.url 2021-12-28 08:33 - 2021-12-28 08:33 - 000000000 ____D C:\GOG Games 2021-12-19 21:50 - 2021-12-21 14:39 - 000000000 ____D C:\Program Files\Mozilla Firefox 2021-12-19 19:43 - 2021-12-19 19:43 - 000000112 ___SH C:\bootTel.dat 2021-12-11 17:55 - 2021-12-11 17:55 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-406098911-3547360013-3433154366-1000 ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2022-01-04 17:18 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-01-04 17:10 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2022-01-04 16:55 - 2019-12-07 12:09 - 000000000 ____D C:\Program Files (x86)\Google 2022-01-04 16:38 - 2019-02-05 19:52 - 000000000 ____D C:\ProgramData\Mozilla 2022-01-04 16:37 - 2019-01-05 08:47 - 000000000 ____D C:\Users\Slawek\AppData\LocalLow\Mozilla 2022-01-04 16:28 - 2021-10-02 18:26 - 000000000 ____D C:\Users\Slawek\AppData\Local\D3DSCache 2022-01-04 16:26 - 2019-01-23 10:57 - 000000000 ____D C:\Users\Slawek\AppData\Roaming\uTorrent 2022-01-04 16:22 - 2019-01-05 09:31 - 000000000 ____D C:\Program Files (x86)\Steam 2022-01-04 15:51 - 2021-10-01 17:18 - 000000000 ___RD C:\Users\Slawek\OneDrive 2022-01-04 15:51 - 2021-10-01 15:20 - 000000000 ____D C:\Users\Slawek\AppData\Local\Battle.net 2022-01-03 21:17 - 2020-04-04 10:08 - 000000000 ____D C:\Users\Slawek\Zomboid 2022-01-03 19:53 - 2021-10-01 17:06 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-01-01 20:43 - 2020-06-23 20:09 - 000000000 ____D C:\Users\Slawek\AppData\Local\ElevatedDiagnostics 2021-12-29 12:07 - 2019-10-19 10:31 - 000000000 ____D C:\Users\Slawek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2021-12-26 06:52 - 2021-10-01 17:12 - 001971926 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-12-26 06:52 - 2019-12-07 16:08 - 000856296 _____ C:\WINDOWS\system32\perfh015.dat 2021-12-26 06:52 - 2019-12-07 16:08 - 000188138 _____ C:\WINDOWS\system32\perfc015.dat 2021-12-26 06:52 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF 2021-12-26 06:48 - 2021-10-01 17:15 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-12-26 06:48 - 2021-10-01 17:05 - 000008192 ___SH C:\DumpStack.log.tmp 2021-12-25 23:41 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2021-12-25 23:41 - 2019-01-05 10:42 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin 2021-12-23 15:41 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-12-23 15:41 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-12-21 14:39 - 2019-01-05 08:47 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2021-12-20 16:15 - 2021-10-06 15:38 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2021-12-20 16:15 - 2019-01-05 08:47 - 000000936 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2021-12-19 19:53 - 2021-10-01 17:07 - 000002455 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-12-19 19:53 - 2021-10-01 17:07 - 000002293 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2021-12-18 16:49 - 2021-10-01 15:18 - 000000000 ____D C:\Program Files (x86)\Battle.net 2021-12-16 09:51 - 2019-12-07 12:11 - 000002314 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2021-12-16 09:51 - 2019-12-07 12:11 - 000002273 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2021-12-16 09:45 - 2021-10-01 17:15 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2021-12-15 17:33 - 2019-01-14 21:24 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-12-15 17:32 - 2019-01-14 21:24 - 137938848 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-12-14 14:51 - 2021-01-11 16:06 - 000000000 ____D C:\Users\Slawek\Documents\Moje skanowanie 2021-12-12 18:25 - 2019-12-07 16:10 - 000000000 ____D C:\WINDOWS\system32\FxsTmp 2021-12-11 17:57 - 2021-10-01 17:17 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-12-11 17:57 - 2021-10-01 17:17 - 000003416 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d7b6de60ee41c1 2021-12-11 17:56 - 2021-10-01 17:18 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-406098911-3547360013-3433154366-1000 2021-12-11 17:56 - 2021-10-01 17:13 - 000002478 _____ C:\Users\Slawek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-12-09 18:52 - 2021-10-02 04:49 - 000000000 ____D C:\Users\Slawek\Documents\Diablo II ==================== Pliki w katalogu głównym wybranych folderów ======== 2021-10-06 15:41 - 2021-10-06 15:41 - 000000908 _____ () C:\Users\Slawek\AppData\Local\recently-used.xbel ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================