Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 11-05-2022 Uruchomiony przez Rodzice (administrator) LAPTOP-AVEQT1FF (Acer Aspire ES1-571) (17-05-2022 09:58:15) Uruchomiony z C:\Users\Rodzice\Desktop Załadowane profile: Rodzice Platform: Microsoft Windows 10 Home Wersja 1909 18363.1379 (X64) Język: Polski (Polska) Domyślna przeglądarka: Chrome Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe ->) (McAfee, Inc. -> McAfee, Inc.) C:\Windows\System32\mfevtps.exe (C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler64.exe (Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (services.exe ->) () [Brak podpisu cyfrowego] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe (services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe (services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (services.exe ->) (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe (services.exe ->) (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) [Brak podpisu cyfrowego] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe (svchost.exe ->) (Acer Incorporated -> ) C:\OEM\Preload\FubTracking\FubTracking.exe (svchost.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16409496 2015-11-20] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [167496 2022-05-16] (ESET, spol. s r.o. -> ESET) HKU\S-1-5-21-1038097244-1411404417-1248049143-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [36836592 2022-05-11] (Piriform Software Ltd -> Piriform Software Ltd) HKLM\...\Print\Monitors\HP E111 Status Monitor: C:\WINDOWS\system32\hpinkstsE111LM.dll [393352 2017-04-14] (Hewlett Packard -> HP Inc.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\101.0.4951.67\Installer\chrmstp.exe [2022-05-16] (Google LLC -> Google LLC) ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0185D5FB-6B6A-43A6-BBC6-E29AB3D9B4C4} - System32\Tasks\Optimize Push Notification Data File-S-1-5-21-1038097244-1411404417-1248049143-1001 => {201600D8-6EFF-48CE-B842-E14D37A0682D} C:\WINDOWS\System32\wpninprc.dll [24064 2019-03-19] (Microsoft Windows -> Microsoft Corporation) Task: {1760FD04-7DC0-46B3-9823-715F29D52B22} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22894544 2022-05-16] (Microsoft Corporation -> Microsoft Corporation) Task: {44FA9AD8-F674-445A-97AE-0D8AFCE6DAEB} - System32\Tasks\FUBTrackingByPLD => C:\OEM\Preload\FubTracking\FubTracking.exe [30976 2015-05-14] (Acer Incorporated -> ) Task: {46D5BCD9-3128-4A21-8D77-3F8337EFF189} - System32\Tasks\CCleanerSkipUAC - Rodzice => C:\Program Files\CCleaner\CCleaner.exe [30924528 2022-05-11] (Piriform Software Ltd -> Piriform Software Ltd) Task: {495A9433-348C-42ED-93EA-05EB44BD5A32} - System32\Tasks\Odkurzacz => C:\Program Files (x86)\Odkurzacz\odkurzacz.exe [1069056 2022-05-16] (FranmoSoftware) [Brak podpisu cyfrowego] Task: {5B4F9998-F327-4C2B-AD6E-EA429B3E2116} - System32\Tasks\Microsoft\Office\Microsoft Office Touchless Attach Notification => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22894544 2022-05-16] (Microsoft Corporation -> Microsoft Corporation) Task: {5EA49F38-2BDD-4A26-9DC7-733ADA5253AC} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22894544 2022-05-16] (Microsoft Corporation -> Microsoft Corporation) Task: {6CCF579D-6643-4006-8262-A7BD0A80051A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-01-31] (Google Inc -> Google Inc.) Task: {6E8CB9F9-572F-49B4-A47B-E28D07A6242A} - System32\Tasks\DashlaneUpgradeCheck => net [Argument = start "Dashlane Upgrade Service"] Task: {7C184E8D-2D73-4A4B-9937-38530848E70A} - System32\Tasks\Re-Install Application => C:\ProgramData\OEM\UpgradeTool\CareCenter_v2\20182191422249FixpackB\BUnzip\Setup.exe [538416 2018-02-01] (Acer Incorporated -> Acer Incorporated) Task: {9AAC27AF-A712-45CA-94B3-E9595200A008} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe do-task "E7CF176E110C211B" Task: {BD5F0283-89B9-4E01-B67A-A1C6B4E6A57A} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-05-11] (Piriform Software Ltd -> Piriform) Task: {C3095AAE-8077-4DC2-8B5C-2FD284704555} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [472992 2016-01-20] (Acer Incorporated -> Acer Incorporated) Task: {DC02CCD3-3C81-4B2D-898F-0D4B539C0950} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-01-31] (Google Inc -> Google Inc.) Task: {E7934BDC-E434-4413-B114-7CF6596BE63B} - System32\Tasks\BacKGroundAgent => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [65752 2017-03-20] (Acer Incorporated -> Acer Incorporated) Task: {F59CD256-2A2B-4A6F-BA4D-C489535A3062} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115608 2022-05-16] (Microsoft Corporation -> Microsoft Corporation) Task: {FDDE7ADD-9A38-4867-95FA-B17A1E3F5A92} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115608 2022-05-16] (Microsoft Corporation -> Microsoft Corporation) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 10.150.40.11 10.150.40.12 Tcpip\..\Interfaces\{3ba09feb-ae43-44cc-af73-9e898a720086}: [DhcpNameServer] 10.150.40.11 10.150.40.12 Tcpip\..\Interfaces\{3c06831a-77a9-4ff3-84cf-92b85d6b6e94}: [DhcpNameServer] 192.168.8.1 192.168.8.1 Edge: ======= DownloadDir: C:\Users\Rodzice\Downloads Edge DefaultProfile: Default Edge Profile: C:\Users\Rodzice\AppData\Local\Microsoft\Edge\User Data\Default [2022-05-16] FireFox: ======== FF DefaultProfile: tgwxwo1i.default FF ProfilePath: C:\Users\Rodzice\AppData\Roaming\Mozilla\Firefox\Profiles\tgwxwo1i.default [2022-05-17] FF Notifications: Mozilla\Firefox\Profiles\tgwxwo1i.default -> hxxps://download.komputerswiat.pl FF Extension: (Amazon Assistant for Firefox) - C:\Users\Rodzice\AppData\Roaming\Mozilla\Firefox\Profiles\tgwxwo1i.default\Extensions\abb-acer@amazon.com [2018-01-31] [Przestarzałe] FF Extension: (العربية Language Pack) - C:\Users\Rodzice\AppData\Roaming\Mozilla\Firefox\Profiles\tgwxwo1i.default\Extensions\langpack-ar@firefox.mozilla.org.xpi [2022-05-16] FF Extension: (Български Language Pack) - C:\Users\Rodzice\AppData\Roaming\Mozilla\Firefox\Profiles\tgwxwo1i.default\Extensions\langpack-bg@firefox.mozilla.org.xpi [2022-05-16] FF Extension: (Czech (CZ) Language Pack) - C:\Users\Rodzice\AppData\Roaming\Mozilla\Firefox\Profiles\tgwxwo1i.default\Extensions\langpack-cs@firefox.mozilla.org.xpi [2022-05-16] FF Extension: (Dansk (da) Language Pack) - C:\Users\Rodzice\AppData\Roaming\Mozilla\Firefox\Profiles\tgwxwo1i.default\Extensions\langpack-da@firefox.mozilla.org.xpi [2022-05-16] FF Extension: (Deutsch (DE) Language Pack) - C:\Users\Rodzice\AppData\Roaming\Mozilla\Firefox\Profiles\tgwxwo1i.default\Extensions\langpack-de@firefox.mozilla.org.xpi [2022-05-16] FF Extension: (Ελληνικά Language Pack) - C:\Users\Rodzice\AppData\Roaming\Mozilla\Firefox\Profiles\tgwxwo1i.default\Extensions\langpack-el@firefox.mozilla.org.xpi [2022-05-16] FF Extension: (English (US) Language Pack) - C:\Users\Rodzice\AppData\Roaming\Mozilla\Firefox\Profiles\tgwxwo1i.default\Extensions\langpack-en-US@firefox.mozilla.org.xpi [2022-05-16] FF Extension: (Español (España) Language Pack) - C:\Users\Rodzice\AppData\Roaming\Mozilla\Firefox\Profiles\tgwxwo1i.default\Extensions\langpack-es-ES@firefox.mozilla.org.xpi [2022-05-16] FF Extension: (Estonian Language Pack) - C:\Users\Rodzice\AppData\Roaming\Mozilla\Firefox\Profiles\tgwxwo1i.default\Extensions\langpack-et@firefox.mozilla.org.xpi [2022-05-16] FF Extension: (Finnish Language Pack) - C:\Users\Rodzice\AppData\Roaming\Mozilla\Firefox\Profiles\tgwxwo1i.default\Extensions\langpack-fi@firefox.mozilla.org.xpi [2022-05-16] FF Extension: (Français Language Pack) - C:\Users\Rodzice\AppData\Roaming\Mozilla\Firefox\Profiles\tgwxwo1i.default\Extensions\langpack-fr@firefox.mozilla.org.xpi [2022-05-16] FF Extension: (Hebrew (IL) Language Pack) - C:\Users\Rodzice\AppData\Roaming\Mozilla\Firefox\Profiles\tgwxwo1i.default\Extensions\langpack-he@firefox.mozilla.org.xpi [2022-05-16] FF Extension: (Magyar (HU) Language Pack) - C:\Users\Rodzice\AppData\Roaming\Mozilla\Firefox\Profiles\tgwxwo1i.default\Extensions\langpack-hu@firefox.mozilla.org.xpi [2022-05-16] FF Extension: (Italiano (IT) Language Pack) - C:\Users\Rodzice\AppData\Roaming\Mozilla\Firefox\Profiles\tgwxwo1i.default\Extensions\langpack-it@firefox.mozilla.org.xpi [2022-05-16] FF Extension: (Japanese Language Pack) - C:\Users\Rodzice\AppData\Roaming\Mozilla\Firefox\Profiles\tgwxwo1i.default\Extensions\langpack-ja@firefox.mozilla.org.xpi [2022-05-16] FF Extension: (Korean (KR) Language Pack) - C:\Users\Rodzice\AppData\Roaming\Mozilla\Firefox\Profiles\tgwxwo1i.default\Extensions\langpack-ko@firefox.mozilla.org.xpi [2022-05-16] FF Extension: (Lietuvių Language Pack) - C:\Users\Rodzice\AppData\Roaming\Mozilla\Firefox\Profiles\tgwxwo1i.default\Extensions\langpack-lt@firefox.mozilla.org.xpi [2022-05-16] FF Extension: (Norsk (bokmål) Language Pack) - C:\Users\Rodzice\AppData\Roaming\Mozilla\Firefox\Profiles\tgwxwo1i.default\Extensions\langpack-nb-NO@firefox.mozilla.org.xpi [2022-05-16] FF Extension: (Nederlands (NL) Language Pack) - C:\Users\Rodzice\AppData\Roaming\Mozilla\Firefox\Profiles\tgwxwo1i.default\Extensions\langpack-nl@firefox.mozilla.org.xpi [2022-05-16] FF Extension: (Polski Language Pack) - C:\Users\Rodzice\AppData\Roaming\Mozilla\Firefox\Profiles\tgwxwo1i.default\Extensions\langpack-pl@firefox.mozilla.org.xpi [2022-05-16] FF Extension: (Português (pt-BR) Language Pack) - C:\Users\Rodzice\AppData\Roaming\Mozilla\Firefox\Profiles\tgwxwo1i.default\Extensions\langpack-pt-BR@firefox.mozilla.org.xpi [2022-05-16] FF Extension: (Português (Europeu) Language Pack) - C:\Users\Rodzice\AppData\Roaming\Mozilla\Firefox\Profiles\tgwxwo1i.default\Extensions\langpack-pt-PT@firefox.mozilla.org.xpi [2022-05-16] FF Extension: (Russian (RU) Language Pack) - C:\Users\Rodzice\AppData\Roaming\Mozilla\Firefox\Profiles\tgwxwo1i.default\Extensions\langpack-ru@firefox.mozilla.org.xpi [2022-05-16] FF Extension: (Slovak (SK) Language Pack) - C:\Users\Rodzice\AppData\Roaming\Mozilla\Firefox\Profiles\tgwxwo1i.default\Extensions\langpack-sk@firefox.mozilla.org.xpi [2022-05-16] FF Extension: (Slovenski jezik Language Pack) - C:\Users\Rodzice\AppData\Roaming\Mozilla\Firefox\Profiles\tgwxwo1i.default\Extensions\langpack-sl@firefox.mozilla.org.xpi [2022-05-16] FF Extension: (српски (sr) Language Pack) - C:\Users\Rodzice\AppData\Roaming\Mozilla\Firefox\Profiles\tgwxwo1i.default\Extensions\langpack-sr@firefox.mozilla.org.xpi [2022-05-16] FF Extension: (Svenska (SE) Language Pack) - C:\Users\Rodzice\AppData\Roaming\Mozilla\Firefox\Profiles\tgwxwo1i.default\Extensions\langpack-sv-SE@firefox.mozilla.org.xpi [2022-05-16] FF Extension: (ไทย Language Pack) - C:\Users\Rodzice\AppData\Roaming\Mozilla\Firefox\Profiles\tgwxwo1i.default\Extensions\langpack-th@firefox.mozilla.org.xpi [2022-05-16] FF Extension: (Türkçe (TR) Language Pack) - C:\Users\Rodzice\AppData\Roaming\Mozilla\Firefox\Profiles\tgwxwo1i.default\Extensions\langpack-tr@firefox.mozilla.org.xpi [2022-05-16] FF Extension: (Ukrainian (UA) Language Pack) - C:\Users\Rodzice\AppData\Roaming\Mozilla\Firefox\Profiles\tgwxwo1i.default\Extensions\langpack-uk@firefox.mozilla.org.xpi [2022-05-16] FF Extension: (Chinese Simplified (zh-CN) Language Pack) - C:\Users\Rodzice\AppData\Roaming\Mozilla\Firefox\Profiles\tgwxwo1i.default\Extensions\langpack-zh-CN@firefox.mozilla.org.xpi [2022-05-16] FF Extension: (Traditional Chinese (zh-TW) Language Pack) - C:\Users\Rodzice\AppData\Roaming\Mozilla\Firefox\Profiles\tgwxwo1i.default\Extensions\langpack-zh-TW@firefox.mozilla.org.xpi [2022-05-16] FF Extension: (Mozilla Partner Defaults) - C:\Users\Rodzice\AppData\Roaming\Mozilla\Firefox\Profiles\tgwxwo1i.default\Extensions\partnerdefaults@mozilla.com [2018-01-31] [Przestarzałe] FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => nie znaleziono FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-04-08] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [Brak pliku] FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2022-05-17] Chrome: ======= CHR DefaultProfile: Profile 1 CHR Profile: C:\Users\Rodzice\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-05-17] CHR Profile: C:\Users\Rodzice\AppData\Local\Google\Chrome\User Data\Profile 1 [2022-05-17] CHR Notifications: Profile 1 -> hxxps://muzyka.interia.pl; hxxps://www.wakacje.pl CHR Extension: (Dokumenty Google offline) - C:\Users\Rodzice\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-05-16] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Rodzice\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-09] CHR Profile: C:\Users\Rodzice\AppData\Local\Google\Chrome\User Data\System Profile [2022-05-17] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [323152 2015-09-07] (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) [Brak podpisu cyfrowego] R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11759056 2022-05-16] (Microsoft Corporation -> Microsoft Corporation) S2 Dashlane Upgrade Service; C:\Program Files (x86)\Dashlane\Upgrade\DashlaneUpgradeService.exe [83992 2017-08-23] (Dashlane -> Dashlane, Inc.) R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [3141480 2022-05-16] (ESET, spol. s r.o. -> ESET) R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [3141480 2022-05-16] (ESET, spol. s r.o. -> ESET) S3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Brak podpisu cyfrowego] R2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Brak podpisu cyfrowego] R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [382456 2016-08-02] (McAfee, Inc. -> McAfee, Inc.) S3 mfevtp; C:\Windows\system32\mfevtps.exe [277744 2016-04-26] (McAfee, Inc. -> McAfee, Inc.) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe [2872024 2021-11-14] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe [128376 2021-11-14] (Microsoft Windows Publisher -> Microsoft Corporation) S2 GamesAppIntegrationService; "C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe" [X] S3 mfefire; "C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe" [X] ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [78632 2016-08-02] (McAfee, Inc. -> McAfee, Inc.) R1 eamonm; C:\WINDOWS\System32\drivers\eamonm.sys [184464 2022-05-16] (ESET, spol. s r.o. -> ESET) R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [122944 2022-05-16] (ESET, spol. s r.o. -> ESET) S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15824 2021-12-09] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET) R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [201976 2022-05-16] (ESET, spol. s r.o. -> ESET) R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [43904 2022-05-16] (ESET, spol. s r.o. -> ESET) R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [69704 2022-05-16] (ESET, spol. s r.o. -> ESET) R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [110560 2022-05-16] (ESET, spol. s r.o. -> ESET) S3 ew_hwusbdev; C:\WINDOWS\System32\drivers\ew_hwusbdev.sys [109568 2013-01-25] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.) S3 ew_usbenumfilter; C:\WINDOWS\System32\drivers\ew_usbenumfilter.sys [14976 2012-12-22] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.) S3 HipShieldK; C:\WINDOWS\System32\drivers\HipShieldK.sys [216704 2016-08-02] (McAfee, Inc. -> McAfee, Inc.) S3 huawei_cdcacm; C:\WINDOWS\System32\drivers\ew_jucdcacm.sys [110592 2013-11-30] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.) S3 huawei_enumerator; C:\WINDOWS\System32\drivers\ew_jubusenum.sys [91648 2013-11-30] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.) S3 huawei_ext_ctrl; C:\WINDOWS\System32\drivers\ew_juextctrl.sys [30720 2013-11-30] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.) S3 hwdatacard; C:\WINDOWS\System32\drivers\ewusbmdm.sys [226176 2013-11-30] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.) S3 hwusb_cdcacm; C:\WINDOWS\System32\drivers\ew_cdcacm.sys [124800 2014-06-11] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.) S3 iaLPSS_UART2; C:\WINDOWS\System32\drivers\iaLPSS_UART2.sys [143864 2014-06-03] (Intel Corporation - Software and Firmware Products -> Intel Corporation) R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [31000 2018-05-15] (Acer Incorporated -> Acer Incorporated) R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [419624 2016-08-02] (McAfee, Inc. -> McAfee, Inc.) R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [349480 2016-08-02] (McAfee, Inc. -> McAfee, Inc.) S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [83608 2016-08-02] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, Inc.) R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [493352 2016-08-02] (McAfee, Inc. -> McAfee, Inc.) R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [843048 2016-08-02] (McAfee, Inc. -> McAfee, Inc.) R3 mfencbdc; C:\WINDOWS\system32\DRIVERS\mfencbdc.sys [519456 2016-08-01] (McAfee, Inc. -> McAfee, Inc.) S3 mfencrk; C:\WINDOWS\system32\DRIVERS\mfencrk.sys [100136 2016-08-01] (McAfee, Inc. -> McAfee, Inc.) R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [243496 2016-08-02] (McAfee, Inc. -> McAfee, Inc.) R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [25368 2018-05-15] (Acer Incorporated -> Acer Incorporated) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48520 2021-11-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [435424 2021-11-14] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86240 2021-11-14] (Microsoft Windows -> Microsoft Corporation) U3 avgbdisk; Brak ImagePath S3 MpKslf111d499; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{3E89ACF7-5F91-437D-B321-F70ED92D3A0A}\MpKslDrv.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2022-05-17 09:58 - 2022-05-17 10:00 - 000023871 _____ C:\Users\Rodzice\Desktop\FRST.txt 2022-05-17 09:56 - 2022-05-17 09:56 - 000003508 _____ C:\WINDOWS\system32\Tasks\DashlaneUpgradeCheck 2022-05-17 09:52 - 2022-05-17 09:55 - 000014055 _____ C:\Users\Rodzice\Desktop\Fixlog.txt 2022-05-17 06:58 - 2022-05-17 07:00 - 000000000 ____D C:\AdwCleaner 2022-05-17 06:58 - 2022-05-17 06:58 - 008551608 _____ (Malwarebytes) C:\Users\Rodzice\Downloads\adwcleaner.exe 2022-05-16 18:43 - 2022-05-16 18:43 - 000000000 ____D C:\Users\Rodzice\AppData\Roaming\IrfanView 2022-05-16 18:43 - 2022-05-16 18:43 - 000000000 ____D C:\Program Files\IrfanView 2022-05-16 18:42 - 2022-05-16 18:42 - 003769880 _____ (Irfan Skiljan) C:\Users\Rodzice\Downloads\iview460_x64_setup.exe 2022-05-16 18:24 - 2022-05-16 18:24 - 000003470 _____ C:\WINDOWS\system32\Tasks\Odkurzacz 2022-05-16 18:23 - 2022-05-16 18:23 - 000001160 _____ C:\Users\Rodzice\Desktop\Odkurzacz.lnk 2022-05-16 18:23 - 2022-05-16 18:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Odkurzacz 2022-05-16 18:23 - 2022-05-16 18:23 - 000000000 ____D C:\Program Files (x86)\Odkurzacz 2022-05-16 18:21 - 2022-05-16 18:21 - 006233158 _____ (FranmoSoftware ) C:\Users\Rodzice\Downloads\odk14.3.0.4600setup.exe 2022-05-16 17:04 - 2022-05-16 18:04 - 000000000 ____D C:\Users\Rodzice\AppData\Local\CrashDumps 2022-05-16 16:52 - 2022-05-17 09:59 - 000000000 ____D C:\FRST 2022-05-16 16:51 - 2022-05-16 16:50 - 002366976 _____ (Farbar) C:\Users\Rodzice\Desktop\FRST64.exe 2022-05-16 16:37 - 2022-05-16 16:37 - 000000000 ____D C:\WINDOWS\system32\gf2engine 2022-05-16 16:34 - 2022-05-16 16:34 - 000000379 _____ C:\Users\Rodzice\Desktop\Panel sterowania — skrót.lnk 2022-05-16 16:25 - 2022-05-16 16:25 - 000000000 ____D C:\Users\Rodzice\AppData\Local\CEF 2022-05-16 16:02 - 2022-05-16 16:03 - 000002437 _____ C:\Users\Rodzice\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-05-16 16:01 - 2022-05-16 16:16 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2022-05-16 16:01 - 2022-05-16 16:01 - 000002912 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Rodzice 2022-05-16 16:01 - 2022-05-16 16:01 - 000000867 _____ C:\Users\Public\Desktop\CCleaner.lnk 2022-05-16 16:01 - 2022-05-16 16:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2022-05-16 16:00 - 2022-05-17 09:56 - 000000000 ____D C:\Program Files\CCleaner 2022-05-16 16:00 - 2022-05-17 09:51 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2022-05-16 16:00 - 2022-05-17 09:50 - 000000000 ____D C:\Users\Rodzice\AppData\LocalLow\Mozilla 2022-05-16 15:59 - 2022-05-16 15:59 - 000001224 _____ C:\Users\Public\Desktop\Firefox.lnk 2022-05-16 15:59 - 2022-05-16 15:59 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2022-05-16 15:55 - 2022-05-16 15:57 - 036572432 _____ (Piriform Software Ltd) C:\Users\Rodzice\Downloads\ccsetup589.exe 2022-05-16 15:49 - 2022-05-16 15:49 - 000000440 _____ C:\Users\Rodzice\Desktop\Ten komputer — skrót.lnk 2022-05-16 15:45 - 2022-05-16 15:46 - 000338944 _____ (Mozilla) C:\Users\Rodzice\Downloads\Firefox Installer.exe ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2022-05-17 09:57 - 2016-04-01 21:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer 2022-05-17 09:56 - 2018-01-31 17:52 - 000000000 ____D C:\Program Files (x86)\Google 2022-05-17 09:55 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-05-17 09:55 - 2016-12-12 06:51 - 000000000 __SHD C:\Users\Rodzice\IntelGraphicsProfiles 2022-05-17 09:54 - 2018-01-31 13:06 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2022-05-17 09:53 - 2020-08-15 14:58 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-05-17 09:53 - 2019-03-19 06:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2022-05-17 09:50 - 2020-08-15 14:24 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-05-17 07:15 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF 2022-05-17 07:08 - 2016-04-01 22:17 - 000000000 ___HD C:\OEM 2022-05-17 07:08 - 2016-04-01 21:35 - 000000000 ____D C:\ProgramData\Acer 2022-05-17 07:08 - 2016-04-01 21:35 - 000000000 ____D C:\Program Files (x86)\Acer 2022-05-17 07:01 - 2016-04-01 21:39 - 000000000 ____D C:\Program Files\Acer 2022-05-17 06:22 - 2020-08-15 14:43 - 001768484 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2022-05-17 06:22 - 2019-03-19 14:23 - 000785768 _____ C:\WINDOWS\system32\perfh015.dat 2022-05-17 06:22 - 2019-03-19 14:23 - 000152530 _____ C:\WINDOWS\system32\perfc015.dat 2022-05-17 06:09 - 2016-04-01 21:39 - 000000000 ____D C:\Program Files\Common Files\McAfee 2022-05-16 18:34 - 2020-07-09 21:46 - 000000000 ___DC C:\WINDOWS\Panther 2022-05-16 18:11 - 2018-01-31 17:56 - 000002311 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-05-16 18:11 - 2018-01-31 17:56 - 000002270 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2022-05-16 18:04 - 2021-11-30 15:01 - 000000000 ____D C:\WINDOWS\Minidump 2022-05-16 18:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2022-05-16 17:45 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp 2022-05-16 17:25 - 2016-08-20 09:38 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2022-05-16 16:57 - 2019-03-19 06:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2022-05-16 16:57 - 2016-04-01 21:38 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2022-05-16 16:54 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps 2022-05-16 16:54 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness 2022-05-16 16:48 - 2020-09-26 18:18 - 000002452 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-05-16 16:48 - 2020-09-26 18:18 - 000002290 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2022-05-16 16:11 - 2021-12-08 13:50 - 000122944 _____ (ESET) C:\WINDOWS\system32\Drivers\edevmon.sys 2022-05-16 16:11 - 2021-12-08 13:50 - 000110560 _____ (ESET) C:\WINDOWS\system32\Drivers\epfwwfp.sys 2022-05-16 16:11 - 2021-12-08 13:50 - 000069704 _____ (ESET) C:\WINDOWS\system32\Drivers\epfw.sys 2022-05-16 16:11 - 2021-12-08 13:50 - 000043904 _____ (ESET) C:\WINDOWS\system32\Drivers\ekbdflt.sys 2022-05-16 16:11 - 2018-02-11 14:59 - 000201976 _____ (ESET) C:\WINDOWS\system32\Drivers\ehdrv.sys 2022-05-16 16:11 - 2018-02-11 14:59 - 000184464 _____ (ESET) C:\WINDOWS\system32\Drivers\eamonm.sys 2022-05-16 16:04 - 2022-01-20 08:53 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1038097244-1411404417-1248049143-1001 2022-05-16 16:04 - 2020-08-15 14:58 - 000003384 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1038097244-1411404417-1248049143-1001 2022-05-16 16:00 - 2016-04-01 21:38 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox 2022-05-16 15:59 - 2016-04-01 21:38 - 000001236 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2022-05-16 15:23 - 2020-08-15 14:58 - 000003570 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2022-05-16 15:22 - 2020-08-15 14:58 - 000003446 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2022-05-11 19:42 - 2020-09-26 18:17 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-05-11 19:42 - 2020-09-26 18:17 - 000003442 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2022-05-11 19:27 - 2020-11-30 08:45 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2022-04-22 20:03 - 2018-02-04 18:31 - 000000000 ____D C:\WINDOWS\system32\MRT ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================