Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 26-11-2022 Uruchomiony przez mango (administrator) MANGO-COMPUTER (Dell Inc. Inspiron 15-3567) (29-11-2022 17:22:17) Uruchomiony z C:\Users\mango\Downloads Załadowane profile: mango Platform: Microsoft Windows 10 Home Service Pack 2 (X64) Język: Polski (Polska) Domyślna przeglądarka: Chrome Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Advanced Micro Devices Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.21.10044.0_x64__0a9344xs7nr4m\radeonsoftware\AMDRSServ.exe (Advanced Micro Devices Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.21.10044.0_x64__0a9344xs7nr4m\radeonsoftware\RadeonSoftware.exe (C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe (C:\Program Files\Dell\Dell Peripheral Manager\DPMService.exe ->) (IndiLogic LLC -> Dell Inc.) C:\Program Files\Dell\Dell Peripheral Manager\DPM.exe (C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (C:\Program Files\Rivet Networks\SmartByte\RAPSService.exe ->) (Rivet Networks LLC -> Rivet Networks LLC) C:\Program Files\Rivet Networks\SmartByte\RAPS.exe (C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.21.10044.0_x64__0a9344xs7nr4m\radeonsoftware\AMDRSServ.exe ->) (Advanced Micro Devices Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.21.10044.0_x64__0a9344xs7nr4m\radeonsoftware\amdow.exe (C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.21.10044.0_x64__0a9344xs7nr4m\radeonsoftware\AMDRSServ.exe ->) (Advanced Micro Devices Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.21.10044.0_x64__0a9344xs7nr4m\radeonsoftware\AMDRSSrcExt.exe (C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.21.10044.0_x64__0a9344xs7nr4m\radeonsoftware\RadeonSoftware.exe ->) (Advanced Micro Devices Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.21.10044.0_x64__0a9344xs7nr4m\radeonsoftware\cncmd.exe (C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCopyAccelerator.exe (cmd.exe ->) (ACLAP -> Node.js) C:\Program Files\net.downloadhelper.coapp\bin\net.downloadhelper.coapp-win-64.exe (DriverStore\FileRepository\u0373234.inf_amd64_2f2bf0ce197fd0ec\B371260\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0373234.inf_amd64_2f2bf0ce197fd0ec\B371260\atieclxx.exe (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <11> (explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\k127153.inf_amd64_3f3936d8dec668b8\igfxEM.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel\DPTF\esif_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\dptf_helper.exe (services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0373234.inf_amd64_2f2bf0ce197fd0ec\B371260\atiesrxx.exe (services.exe ->) (Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe (services.exe ->) (IndiLogic LLC -> Dell Inc.) C:\Program Files\Dell\Dell Peripheral Manager\DPMService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe (services.exe ->) (Intel(R) Corporation -> Intel Corporation) C:\Program Files\Intel\IntelSGXPSW\bin\x64\Release\aesm_service.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\k127153.inf_amd64_3f3936d8dec668b8\igfxCUIService.exe (services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\k127153.inf_amd64_3f3936d8dec668b8\IntelCpHDCPSvc.exe (services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\k127153.inf_amd64_3f3936d8dec668b8\IntelCpHeciSvc.exe (services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\NisSrv.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (services.exe ->) (Rivet Networks LLC -> Rivet Networks) C:\Program Files\Rivet Networks\SmartByte\SmartByteAnalyticsService.exe (services.exe ->) (Rivet Networks LLC -> Rivet Networks) C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe (services.exe ->) (Rivet Networks LLC -> Rivet Networks, LLC.) C:\Program Files\Rivet Networks\SmartByte\RAPSService.exe (services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe (services.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22092.214.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\HelpPane.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (SOSVIRUS (LE BOZEC CEDRIC, DOMINIQUE, MARIE) -> ) [Brak podpisu cyfrowego] C:\Program Files (x86)\UsbFix\Modules\UsbFixMonitor.exe (svchost.exe ->) (SOSVIRUS (LE BOZEC CEDRIC, DOMINIQUE, MARIE) -> ) [Brak podpisu cyfrowego] C:\Program Files (x86)\UsbFix\UsbFix.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9269328 2019-01-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506384 2019-01-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [QuickSet] => C:\PROGRAM FILES\DELL\QUICKSET\QUICKSET.EXE [3910656 2017-05-03] (Dell Inc.) [Brak podpisu cyfrowego] HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [321112 2019-07-29] (Intel(R) Rapid Storage Technology -> Intel Corporation) HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA HKU\S-1-5-21-3483495963-2498424976-411220748-1001\...\Run: [MicrosoftEdgeAutoLaunch_8DFAB801BE5D2582B855CCF3E7B10F66] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3892168 2022-11-21] (Microsoft Corporation -> Microsoft Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\107.0.5304.108\Installer\chrmstp.exe [2022-11-28] (Google LLC -> Google LLC) BootExecute: autocheck autochk * ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {03B6F4C9-B797-44E6-8D07-AB40373E66F1} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61624 2020-05-15] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {198A0A04-9058-4D61-A9BD-633C96ED1B2E} - System32\Tasks\UsbFix Monitor => C:\Program Files (x86)\UsbFix\Modules\UsbFixMonitor.exe [1239176 2020-12-02] (SOSVIRUS (LE BOZEC CEDRIC, DOMINIQUE, MARIE) -> ) [Brak podpisu cyfrowego] Task: {1B8BEF63-7938-4FC6-B70F-EBC488346CB4} - System32\Tasks\Microsoft\Windows\WaaSMedic\MaintenanceWork => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32} Task: {1E53FE45-D2C7-4446-BD9D-01F51019E579} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-12-13] (Google Inc -> Google Inc.) Task: {254EB9F9-941F-4883-9CDB-45AEB14B1ADF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-11] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {4E9F1DB5-8F48-49F4-B002-B42E10C1D749} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1628160 2020-05-15] (Advanced Micro Devices, Inc.) [Brak podpisu cyfrowego] Task: {5D556558-FB05-48E7-9099-1A6ECACEDDBF} - System32\Tasks\UsbFix Boot Scan => C:\Program Files (x86)\UsbFix\UsbFix.exe [2053256 2020-12-02] (SOSVIRUS (LE BOZEC CEDRIC, DOMINIQUE, MARIE) -> ) [Brak podpisu cyfrowego] Task: {799DCDBF-01DC-4ACA-976F-2E45EF670216} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-11] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {7A7818CE-EF7E-45B9-98B4-860CACA17EF4} - System32\Tasks\CCleanerSkipUAC - mango => C:\Users\mango\Desktop\- SECURITY -\CCleaner\CCleaner.exe [32472400 2022-10-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {8F6F7727-516A-4F15-A1DC-9DE8139D7276} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1628160 2020-05-15] (Advanced Micro Devices, Inc.) [Brak podpisu cyfrowego] "C:\Windows\System32\Tasks\McAfee\McAfee Idle Detection Task" został odblokowany. <==== UWAGA Task: {A1C6287B-53D5-40E9-A1BD-701A7296317D} - System32\Tasks\McAfee\McAfee Idle Detection Task => {ABCDCA3B-DE6B-5A7C-B132-6D7CBA63E5C5} Task: {AE661E9C-E862-4257-B637-F8B4C5446158} - System32\Tasks\McAfee\DAD.Execute.Updates => C:\Program Files\Common Files\McAfee\DynamicAppDownloader\DADUpdater.exe (Brak pliku) Task: {B0AD31FA-D6A1-4E3F-8A05-25CD55FF11D4} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [69304 2020-05-15] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {B97DA45F-8F25-46FE-83C8-39289D000AFF} - System32\Tasks\CCleanerCrashReporting => C:\Users\mango\Desktop\- SECURITY -\CCleaner\CCleanerBugReport.exe [4669264 2022-10-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Users\mango\Desktop\- SECURITY -\CCleaner\LOG" --programpath "C:\Users\mango\Desktop\- SECURITY -\CCleaner" --configpath "C:\Users\mango\Desktop\- SECURITY -\CCleaner\Setup" --guid "2ef0b8e5-e93a-4236-948d-a5bc162c586f" --version "6.05.10110" --silent Task: {CFFE9FED-CBB6-496A-848A-62A4E2BE1773} - System32\Tasks\CCleaner Update => C:\Users\mango\Desktop\- SECURITY -\CCleaner\CCUpdate.exe [684976 2022-10-20] (Piriform Software Ltd -> Piriform) Task: {E1DE8013-8E32-440F-ABDB-84CC2106C1E7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-11] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {E4DE713B-02B9-440B-A52C-1C81C3812AD6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-11] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {F76C28DB-40C7-4A07-994F-30346E961FB2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-12-13] (Google Inc -> Google Inc.) Task: {FF4B9707-52D7-4B2E-83FD-DFB4B9C96C5C} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent => {ABCECA3B-EA5A-496B-A021-5C6BAB365E5C} (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Users\mango\Desktop\- SECURITY -\CCleaner\CCleanerBugReport.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.8.1 192.168.8.1 Tcpip\..\Interfaces\{0039259d-8aa7-4f21-9dc1-02308aec62c4}: [DhcpNameServer] 192.168.8.1 192.168.8.1 Tcpip\..\Interfaces\{cdae703b-d21f-48e3-8422-3e319b1a4af1}: [DhcpNameServer] 192.168.8.1 192.168.8.1 Edge: ======= Edge Extension: (Brak nazwy) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => ścieżki nie znaleziono Edge Extension: (Brak nazwy) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => ścieżki nie znaleziono Edge Extension: (Brak nazwy) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => ścieżki nie znaleziono Edge Extension: (Brak nazwy) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => ścieżki nie znaleziono Edge Profile: C:\Users\mango\AppData\Local\Microsoft\Edge\User Data\Default [2022-11-28] FireFox: ======== FF HKLM\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSKHKLM => nie znaleziono FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi => nie znaleziono FF Plugin: @java.com/DTPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll [2019-01-24] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\plugin2\npjp2.dll [2019-01-24] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @mcafee.com/MVT -> C:\Program Files (x86)\McAfee\Supportability\MVT\NPMVTPlugin.dll [Brak pliku] Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\mango\AppData\Local\Google\Chrome\User Data\Default [2022-11-29] CHR DownloadDir: C:\Users\mango\Downloads CHR Notifications: Default -> hxxps://1.historysv.com; hxxps://5z7hb.leadnote.me; hxxps://biedronka.push-ad.com; hxxps://forum.dopalamy.com; hxxps://mail.protonmail.com; hxxps://notify-monad.com; hxxps://rk6zd.videommm.pro; hxxps://sdotn.pro; hxxps://thinker.unfurlable.com; hxxps://www.facebook.com; hxxps://www.fixitpc.pl; hxxps://www.onet.pl; hxxps://www.youtube.com CHR HomePage: Default -> hxxp://www.google.pl/ CHR StartupUrls: Default -> "hxxp://www.google.pl/" CHR Extension: (Just Black) - C:\Users\mango\AppData\Local\Google\Chrome\User Data\Default\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2020-08-01] CHR Extension: (Adblock Plus - darmowy adblocker) - C:\Users\mango\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2022-11-25] CHR Extension: (Netflix Translate) - C:\Users\mango\AppData\Local\Google\Chrome\User Data\Default\Extensions\cppopffhjdgeijpkpaoebneockpeehdo [2020-07-03] CHR Extension: (Stream Video Downloader) - C:\Users\mango\AppData\Local\Google\Chrome\User Data\Default\Extensions\imkngaibigegepnlckfcbecjoilcjbhf [2020-07-03] CHR Extension: (Video DownloadHelper) - C:\Users\mango\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2022-10-15] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\mango\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR Profile: C:\Users\mango\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-11-24] CHR Profile: C:\Users\mango\AppData\Local\Google\Chrome\User Data\System Profile [2022-11-24] CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [37056 2020-07-29] (Dell Inc -> ) R2 DPMService; C:\Program Files\Dell\Dell Peripheral Manager\DPMService.exe [1426016 2020-05-16] (IndiLogic LLC -> Dell Inc.) S3 PrintNotify; C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll [3593728 2020-12-18] (Microsoft Corporation) [Brak podpisu cyfrowego] R2 RAPSService; C:\Program Files\Rivet Networks\SmartByte\RAPSService.exe [66296 2021-08-13] (Rivet Networks LLC -> Rivet Networks, LLC.) S3 RNDBWM; C:\Program Files\Rivet Networks\SmartByte\RNDBWMService.exe [66296 2021-08-13] (Rivet Networks LLC -> Rivet Networks, LLC.) R2 SmartByte Analytics Service; C:\Program Files\Rivet Networks\SmartByte\SmartByteAnalyticsService.exe [1633040 2021-08-13] (Rivet Networks LLC -> Rivet Networks) R2 SmartByte Network Service x64; C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe [2390800 2021-08-13] (Rivet Networks LLC -> Rivet Networks) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\NisSrv.exe [3191272 2022-11-11] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe [133544 2022-11-11] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 DBUtilDrv2; C:\WINDOWS\System32\drivers\DBUtilDrv2.sys [24968 2022-11-23] (Microsoft Windows Hardware Compatibility Publisher -> Dell) S3 DellProf; C:\WINDOWS\system32\drivers\DellProf.sys [41208 2018-05-08] (Techporch Incorporated -> Dell Computer Corporation) R3 DPMDriver; C:\WINDOWS\System32\drivers\DPMDriver.sys [128736 2020-03-31] (IndiLogic LLC -> Dell Inc.) R2 DpmLiteDrv; c:\Program Files\Dell\QuickSet\DpmLiteDrv64.sys [15080 2014-10-15] (Wistron Corporation -> Wistron Corp.) S3 gdrv; C:\WINDOWS\gdrv.sys [25640 2018-11-12] (Giga-Byte Technology -> Windows (R) Server 2003 DDK provider) S3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [508736 2018-10-04] (McAfee, Inc. -> McAfee, LLC) S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [108840 2018-10-02] (McAfee, Inc. -> McAfee LLC.) S3 mfeplk; C:\WINDOWS\System32\drivers\mfeplk.sys [117568 2018-10-04] (McAfee, Inc. -> McAfee, LLC) R3 MpKsl53d63ba2; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{C5072355-EA0A-4F19-A071-EAAAAEE84FD2}\MpKslDrv.sys [214280 2022-11-28] (Microsoft Windows -> Microsoft Corporation) R3 SmbCoSvc; C:\WINDOWS\system32\DRIVERS\SmbCo10X64.sys [166032 2021-08-13] (Intel Corporation -> Rivet Networks, LLC.) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49616 2022-11-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [469288 2022-11-11] (Microsoft Windows -> Microsoft Corporation) S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [151184 2016-07-15] (NGO -> MBB) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [95520 2022-11-11] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2022-11-29 17:22 - 2022-11-29 17:24 - 000021784 _____ C:\Users\mango\Downloads\FRST.txt 2022-11-29 17:21 - 2022-11-29 17:23 - 000000000 ____D C:\FRST 2022-11-29 17:14 - 2022-11-29 17:14 - 002375680 _____ (Farbar) C:\Users\mango\Downloads\FRST64.exe 2022-11-27 15:44 - 2022-11-27 15:44 - 000005574 ____C C:\Users\mango\Desktop\UsbFix_Report.txt 2022-11-27 15:44 - 2022-11-27 15:44 - 000001958 _____ C:\Users\Public\Desktop\UsbFix Anti-Malware.lnk 2022-11-24 02:44 - 2022-11-24 02:44 - 000003626 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting 2022-11-24 02:44 - 2022-11-24 02:44 - 000000912 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job 2022-11-23 08:23 - 2022-11-23 08:23 - 000024968 _____ (Dell) C:\WINDOWS\system32\Drivers\DBUtilDrv2.sys 2022-11-23 08:21 - 2022-11-23 08:21 - 000003124 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher 2022-11-23 08:20 - 2022-11-23 08:20 - 000000000 ____D C:\WINDOWS\Panther 2022-11-18 17:55 - 2022-11-18 17:55 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3483495963-2498424976-411220748-1001 2022-11-18 17:55 - 2022-11-18 17:55 - 000002425 ____C C:\Users\mango\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-11-11 16:07 - 2022-11-11 16:07 - 000003270 _____ C:\WINDOWS\system32\Tasks\UsbFix Boot Scan 2022-11-11 16:07 - 2022-11-11 16:07 - 000003268 _____ C:\WINDOWS\system32\Tasks\UsbFix Monitor 2022-11-11 16:07 - 2022-11-11 16:07 - 000000000 ____D C:\Program Files (x86)\UsbFix 2022-11-09 15:36 - 2022-11-09 15:36 - 000688128 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll 2022-11-09 15:36 - 2022-11-09 15:36 - 000073216 _____ C:\WINDOWS\system32\nettraceex.dll 2022-11-09 15:36 - 2022-11-09 15:36 - 000012253 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2022-11-09 15:35 - 2022-11-09 15:35 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll 2022-11-09 15:29 - 2022-11-09 15:29 - 000000000 ___HD C:\$WinREAgent 2022-11-07 21:19 - 2022-11-07 21:19 - 000000000 ____D C:\Users\mango\AppData\Roaming\Shutdown Timer Classic 2022-11-05 03:48 - 2022-11-05 03:52 - 000000000 ____D C:\Users\mango\AppData\Roaming\LosslessCut ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2022-11-29 17:19 - 2018-08-10 19:05 - 000000000 ___DC C:\Users\mango\AppData\Local\D3DSCache 2022-11-29 16:41 - 2017-12-13 17:27 - 000000000 ____D C:\Program Files (x86)\Google 2022-11-29 16:18 - 2018-10-17 17:16 - 000000000 ___DC C:\Users\mango\AppData\Roaming\vlc 2022-11-28 22:43 - 2020-12-23 19:49 - 000000000 ____D C:\WINDOWS\AppReadiness 2022-11-28 22:31 - 2017-12-13 17:27 - 000002309 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-11-24 02:45 - 2020-11-16 16:03 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-11-24 02:45 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF 2022-11-23 23:11 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-11-23 23:09 - 2022-05-25 23:44 - 000002452 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-11-23 22:12 - 2022-10-27 01:16 - 000004248 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2022-11-23 08:25 - 2020-11-16 17:23 - 001769800 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2022-11-23 08:25 - 2019-12-07 16:08 - 000787066 _____ C:\WINDOWS\system32\perfh015.dat 2022-11-23 08:25 - 2019-12-07 16:08 - 000152910 _____ C:\WINDOWS\system32\perfc015.dat 2022-11-23 08:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Registration 2022-11-23 08:21 - 2020-11-16 16:05 - 000000000 ____D C:\Users\mango 2022-11-23 08:21 - 2017-12-11 17:43 - 000000000 __SHD C:\Users\mango\IntelGraphicsProfiles 2022-11-23 08:20 - 2020-11-16 16:10 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-11-23 08:20 - 2020-11-16 16:03 - 000008192 ___SH C:\DumpStack.log.tmp 2022-11-23 08:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState 2022-11-22 22:24 - 2019-02-03 02:40 - 000000000 __RDC C:\Users\mango\Desktop\- PROGRAMY - 2022-11-18 17:55 - 2021-12-11 08:32 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3483495963-2498424976-411220748-1001 2022-11-18 09:12 - 2018-06-17 15:43 - 000000000 ____D C:\ProgramData\Packages 2022-11-15 21:19 - 2017-12-12 19:45 - 000000000 ___DC C:\Users\mango\AppData\Local\Packages 2022-11-14 20:03 - 2022-05-25 23:44 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-11-14 20:03 - 2022-05-25 23:44 - 000003442 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2022-11-11 16:59 - 2017-12-12 18:15 - 000000000 __RDC C:\Users\mango\Desktop\- SECURITY - 2022-11-11 07:58 - 2018-05-17 19:20 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2022-11-10 04:22 - 2020-11-16 16:03 - 000436552 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2022-11-10 04:21 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP 2022-11-10 04:21 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2022-11-10 04:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2022-11-10 04:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources 2022-11-10 04:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2022-11-10 04:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2022-11-10 04:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2022-11-10 04:21 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2022-11-09 21:48 - 2019-02-03 02:30 - 000000000 __RDC C:\Users\mango\Desktop\- MUZYKA - 2022-11-09 15:38 - 2021-04-17 19:29 - 000000000 ____D C:\WINDOWS\CbsTemp 2022-11-09 12:58 - 2020-05-12 21:42 - 000000000 ____D C:\WINDOWS\system32\MRT 2022-11-09 12:56 - 2017-12-12 18:18 - 146960040 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2022-11-06 14:23 - 2019-02-03 02:06 - 000000000 __RDC C:\Users\mango\Desktop\- GRAFIKI - 2022-11-06 10:57 - 2022-10-25 17:14 - 000000499 ____C C:\Users\mango\Desktop\DVD.lnk ==================== Pliki w katalogu głównym wybranych folderów ======== 2017-12-15 20:45 - 2011-05-18 01:02 - 006816416 _____ (Adobe Systems, Inc.) C:\Program Files\Flash Player 10.exe 2021-08-20 17:32 - 2022-08-18 20:21 - 000004608 _____ () C:\Users\mango\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2022-02-28 11:09 - 2022-02-28 11:09 - 000004096 ____H () C:\Users\mango\AppData\Local\keyfile3.drm ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) C:\WINDOWS\SysWOW64\wininit.exe BRAK <==== UWAGA ==================== Koniec FRST.txt ========================