Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 16-02-2023 Uruchomiony przez jarek (administrator) JAREK-KOMPUTER (LENOVO 20091) (18-02-2023 17:43:55) Uruchomiony z C:\Users\jarek\Downloads Załadowane profile: jarek Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X64) Język: Polski (Polska) Domyślna przeglądarka: "D:\firefox\firefox.exe" -osint -url "%1" Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) () [Brak podpisu cyfrowego] C:\Program Files (x86)\Lenovo\OnekeyDM\OnekeyDM.exe (C:\Program Files (x86)\Ashampoo\Ashampoo Burning Studio 2016\burningstudio2016.exe ->) (Ashampoo GmbH & Co. KG -> Ashampoo) C:\Program Files (x86)\Ashampoo\Ashampoo Burning Studio 2016\CancelAutoplay2.exe (C:\Program Files (x86)\Garmin\Express\express.exe ->) (The CefSharp Authors) [Brak podpisu cyfrowego] C:\Program Files (x86)\Garmin\Express\CefSharp.BrowserSubprocess.exe <2> (C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe ->) (Lenovo (Beijing) Limited -> ) C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeySupport.exe (C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE ->) (Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe (C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <3> (C:\Program Files\Synaptics\SynTP\SynTPEnh.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (explorer.exe ->) (Ashampoo GmbH & Co. KG -> Ashampoo) C:\Program Files (x86)\Ashampoo\Ashampoo Burning Studio 2016\burningstudio2016.exe (explorer.exe ->) (Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe (explorer.exe ->) (ESET, spol. s r.o. -> ESET) C:\Users\jarek\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe (explorer.exe ->) (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) [Brak podpisu cyfrowego] C:\Program Files (x86)\Garmin\Express\express.exe (explorer.exe ->) (Intel Corporation - Mobile Wireless Group -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe (explorer.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\hkcmd.exe (explorer.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxpers.exe (explorer.exe ->) (Lenovo (Beijing) Limited -> Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe (explorer.exe ->) (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe (explorer.exe ->) (Lenovo (Beijing) Limited -> Lenovo) C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe (explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\spool\drivers\x64\3\E_YATIX0E.EXE (explorer.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe (IVT Corporation) [Brak podpisu cyfrowego] C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe (Mozilla Corporation -> Mozilla Corporation) D:\firefox\firefox.exe <27> (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (Renesas Electronics Corporation) [Brak podpisu cyfrowego] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe (services.exe ->) (Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe (services.exe ->) (Intel Corporation - Mobile Wireless Group -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (services.exe ->) (Intel Corporation - Mobile Wireless Group -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (services.exe ->) (IVT CORPORATION -> IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe (services.exe ->) (IVT CORPORATION -> IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\vds.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE (services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe (services.exe ->) (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe (services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe (services.exe ->) (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe (svchost.exe ->) (Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\BTStackServer.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (taskeng.exe ->) (CyberLink -> CyberLink) C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe Brak dostępu do procesu -> csrss.exe Brak dostępu do procesu -> csrss.exe Brak dostępu do procesu -> dllhost.exe Brak dostępu do procesu -> unsecapp.exe Brak dostępu do procesu -> WmiPrvSE.exe Brak dostępu do procesu -> WmiPrvSE.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [IntelPAN] => C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1935120 2011-05-02] (Intel Corporation - Mobile Wireless Group -> Intel(R) Corporation) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2712360 2011-03-21] (Synaptics Incorporated -> Synaptics Incorporated) HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [9753024 2011-10-08] (Lenovo (Beijing) Limited -> Lenovo (Beijing) Limited) HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [5908928 2011-10-08] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) HKLM\...\Run: [Lenovo EE Boot Optimizer] => C:\Program Files (x86)\Lenovo\Boot Optimizer\PopWnd.exe [275808 2011-10-08] (Lenovo) [Brak podpisu cyfrowego] HKLM\...\Run: [OnekeyStudio] => C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe [789920 2012-03-04] (Lenovo (Beijing) Limited -> Lenovo) HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1483264 2017-01-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16781824 2017-01-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1483264 2017-01-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM-x32\...\Run: [UpdatePRCShortCut] => C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe [300328 2009-05-13] (CyberLink Corp.) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [UpdateP2GShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [296232 2010-07-26] (CyberLink Corp.) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [188776 2011-09-16] (Renesas Electronics Corporation) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [OnekeyDM] => C:\Program Files (x86)\Lenovo\OnekeyDM\OnekeyDM.exe [468480 2009-03-27] () [Brak podpisu cyfrowego] HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation -> Microsoft Corporation) HKLM-x32\...\Run: [BtTray] => C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe [459000 2014-02-17] (IVT Corporation) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [YouCam Tray] => C:\Program Files (x86)\Lenovo\YouCam\YouCam.exe [298080 2011-01-29] (CyberLink Corp.) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [Codec Settings UAC Manager] => C:\windows\SysWOW64\Codecs\CodecUACManager.exe [145488 2022-03-09] () [Brak podpisu cyfrowego] HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Ograniczenia <==== UWAGA HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA HKU\S-1-5-21-2033674492-1833506033-309127491-1001\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [32282016 2022-10-16] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) [Brak podpisu cyfrowego] HKU\S-1-5-21-2033674492-1833506033-309127491-1001\...\Run: [EPLTarget\P0000000000000000] => C:\windows\system32\spool\DRIVERS\x64\3\E_YATIX0E.EXE [418736 2019-08-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) HKU\S-1-5-21-2033674492-1833506033-309127491-1001\...\Run: [Opera GX Stable] => C:\Users\jarek\AppData\Local\Programs\Opera GX\launcher.exe [2542536 2023-02-13] (Opera Norway AS -> Opera Software) HKU\S-1-5-21-2033674492-1833506033-309127491-1001\...\MountPoints2: {09de17ab-fe3c-11e4-8087-b870f44b6742} - J:\AutoRun.exe HKU\S-1-5-21-2033674492-1833506033-309127491-1001\...\MountPoints2: {09de17bf-fe3c-11e4-8087-b870f44b6742} - J:\AutoRun.exe HKU\S-1-5-21-2033674492-1833506033-309127491-1001\...\MountPoints2: {4fd7d237-1ef6-11e5-97e5-60d819ebcd6d} - J:\CMADownloader.exe HKU\S-1-5-21-2033674492-1833506033-309127491-1001\...\MountPoints2: {70c47d3b-e0ba-11e2-b46a-b870f44b6742} - J:\LaunchU3.exe -a HKU\S-1-5-21-2033674492-1833506033-309127491-1001\...\MountPoints2: {f5a88656-2231-11e8-b4eb-60d819ebcd6d} - J:\Startme.exe HKU\S-1-5-18\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [32282016 2022-10-16] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) [Brak podpisu cyfrowego] HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [230400 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation) HKLM\...\Print\Monitors\EPSON XP-2150 Series 64MonitorBE: C:\windows\SYSTEM32\E_YLMBX0E.DLL [187392 2018-06-15] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation) HKLM\...\Print\Monitors\EpsonNet Print Port: C:\windows\SYSTEM32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [Brak podpisu cyfrowego] HKLM\...\Print\Monitors\LIDIL hpzllw71: C:\windows\SYSTEM32\hpzllw71.dll [53248 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\windows\system32\cmd.exe /D /C start C:\windows\system32\ie4uinit.exe -ClearIconCache HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\109.0.5414.120\Installer\chrmstp.exe [2023-01-28] (Google LLC -> Google LLC) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\windows\system32\cmd.exe /D /C start C:\windows\system32\ie4uinit.exe -ClearIconCache HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2022-12-24] (Adobe Inc. -> Adobe Systems, Inc.) HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\Lenovo\Bluetooth Software\\BtwCP.dll (Broadcom Corporation -> Broadcom Corporation.) HKLM\Software\...\Authentication\Credential Providers: [{7C2CDE72-05FD-4829-980A-EFBAD05B7697}] -> C:\windows\SYSTEM32\ImageReog.dll [2011-10-08] (Lenovo (Beijing) Limited -> Lenovo) HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2010-09-21] (Microsoft Corporation -> Microsoft Corp.) AppInit_DLLs: C:\windows\system32\nvinitx.dll => C:\windows\system32\nvinitx.dll [182784 2018-03-25] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) AppInit_DLLs-x32: C:\windows\SysWOW64\nvinit.dll => C:\windows\SysWOW64\nvinit.dll [159704 2018-03-25] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2016-08-11] ShortcutTarget: Bluetooth.lnk -> C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe (Broadcom Corporation -> Broadcom Corporation.) AlternateShell: GroupPolicy: Ograniczenia ? <==== UWAGA Policies: C:\ProgramData\NTUSER.pol: Ograniczenia <==== UWAGA Policies: C:\Users\jarek\NTUSER.pol: Ograniczenia <==== UWAGA HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {033FCB84-3847-4B0E-A44E-3F49D9687A2A} - System32\Tasks\{B0828AAF-1A23-4B6F-AC1C-AC7D20CD4309} => C:\Program Files (x86)\Ahead\Nero\nero.exe (Brak pliku) Task: {06AA7A40-EBFF-4DC2-9E21-4AB466ECB454} - System32\Tasks\Seagate_Install_Launch => C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\Dashboard.exe (Brak pliku) Task: {0DF3C91E-1D6C-4463-A05A-AEF0A382801B} - System32\Tasks\{72EC407E-F7D0-4722-AB4B-137F5F777A1E} => C:\Program Files (x86)\Ahead\Nero\nero.exe (Brak pliku) Task: {168D738E-A896-44EB-80B0-D38709829200} - System32\Tasks\{DE2365CA-DB84-4575-BD6C-65398C58BFD6} => C:\Program Files (x86)\Ahead\Nero\nero.exe (Brak pliku) Task: {1FF4D4E1-F0EC-4A66-BBFF-A8D20A3EB443} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\jarek\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [21737944 2023-02-18] (ESET, spol. s r.o. -> ESET) Task: {2236B036-41DB-4663-B0AF-5A66865E950A} - System32\Tasks\EPSON XP-2150 Series Update {9332C2CB-7E62-401D-AA81-F4A2B2C3CD78} => C:\windows\system32\spool\DRIVERS\x64\3\E_YTSX0E.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) Task: {27DB0EDE-D029-455B-8B6C-F6B150C28D32} - System32\Tasks\{0D05D02C-9875-4293-AE31-CB4034134A88} => C:\Program Files (x86)\Ahead\Nero\nero.exe (Brak pliku) Task: {2AFE90DB-0A44-415C-9F32-0690EDEB56EB} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe [469952 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files (x86)\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log Task: {369E953D-C415-46DE-B50F-D2A6ADBC81CB} - System32\Tasks\GoogleUpdateTaskMachineCore{DB892ED9-75BC-4705-9A9D-04E048ECF614} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2022-10-18] (Google LLC -> Google LLC) Task: {3BA6AA5F-CF31-4B1C-8C91-D9C27A1D49C7} - System32\Tasks\MirageAgent => C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [136488 2011-01-29] (CyberLink -> CyberLink) Task: {443D9C76-544A-483A-B287-570F68C66E87} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [757184 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) Task: {46EC93F2-51FC-4FF4-A362-F3A7069A2C0A} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe /from_scheduler:1 (Brak pliku) Task: {47968236-B286-48E0-9737-AB9E98AC3DCE} - System32\Tasks\Opera GX scheduled Autoupdate 1676666796 => C:\Users\jarek\AppData\Local\Programs\Opera GX\launcher.exe [2542536 2023-02-13] (Opera Norway AS -> Opera Software) Task: {49F84576-B069-49CA-A2E0-B8050F7EF720} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [976832 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) Task: {52D591A0-C2F1-4B0E-AC58-02500184D047} - System32\Tasks\{388F01C0-FB78-4A31-9B43-9B9FF68295EF} => C:\Program Files (x86)\Ahead\Nero\nero.exe (Brak pliku) Task: {5C91BF78-8510-4BBC-8F39-42E4088CAB43} - System32\Tasks\GoogleUpdateTaskMachineUA{AB8085DF-F0D2-4202-9F63-389BDE7E60EB} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2022-10-18] (Google LLC -> Google LLC) Task: {6E6DE483-2F39-4526-89B2-E1FCB52DE72C} - System32\Tasks\{7D79555E-5D41-43A2-BF94-D91EA87C895B} => C:\Program Files (x86)\Ahead\Nero\nero.exe (Brak pliku) Task: {829C9FD9-9641-4F3A-94A4-4BC39FCF60F5} - System32\Tasks\{6DFB5573-BFCA-4D9A-99CE-5C596CF11D47} => C:\Program Files (x86)\Ahead\Nero StartSmart\NeroStartSmart.exe [4939863 2006-12-13] (Ahead Software AG) [Brak podpisu cyfrowego] Task: {84779DE5-857B-4F0F-BA86-DB18C0BC725F} - System32\Tasks\{CB98E2E8-300E-4074-8F9D-B395A92A2FFD} => C:\Program Files (x86)\Ahead\Nero\nero.exe (Brak pliku) Task: {860E39ED-68C9-4A5D-A7A3-27F1D4358082} - System32\Tasks\NVIDIA GeForceNow_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Users\jarek\AppData\Local\NVIDIA Corporation\GeForceNOW\CEF\GeForceNOW.exe [3381232 2020-06-04] (NVIDIA Corporation -> NVIDIA Corporation) Task: {87AAB4E4-ADA4-4B12-9BF4-914CD219A180} - System32\Tasks\DriverToolkit Autorun => C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe --autorun (Brak pliku) Task: {8B07F393-1D34-40D8-9D2B-C49FF09C51C8} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1} Task: {9B6DB3DE-623C-4D70-A463-600DA5AE89F2} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\jarek\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [21737944 2023-02-18] (ESET, spol. s r.o. -> ESET) Task: {A01BF268-A68E-4182-A091-B4E917E9A40C} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [40864 2021-02-16] (Garmin International, Inc. -> ) Task: {B5CDC5BF-7DC2-47A5-AC7E-62AE4EE3B1F2} - System32\Tasks\EPSON XP-2150 Series Update {114072B6-C530-46F0-A045-6A48ACF40644} => C:\windows\system32\spool\DRIVERS\x64\3\E_YTSX0E.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) Task: {B65202B8-A256-4009-B50E-728699D467DA} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [1174016 2010-11-21] (Microsoft Windows -> Microsoft Corporation) Task: {B811C7F2-2760-4C8B-9F57-83E9828A7DBA} - System32\Tasks\{A5194C9A-1555-4DBA-81EF-6688E89BCCF1} => C:\Program Files (x86)\Ahead\Nero\nero.exe (Brak pliku) Task: {BB70852B-1CB0-45A7-91DF-513E0B157281} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) Task: {BDC4EA41-7661-41B4-9A1A-F670D4D50171} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1552376 2022-09-26] (Adobe Inc. -> Adobe Inc.) Task: {C51285F9-4F86-479B-9F5C-38A3AF8139C0} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [4796696 2014-08-21] (Piriform Ltd -> Piriform Ltd) Task: {C698A55E-4701-432E-AC22-1BBA94B10383} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-2033674492-1833506033-309127491-1001 => C:\Users\jarek\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe [122344 2019-04-04] (Lenovo (Beijing) Limited -> Lenovo Group Limited) Task: {CB865F73-62E7-41CB-9EEF-8F5F438202EE} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) Task: {D8BD1D6D-BF61-41E7-9C4B-BD45FEBEA906} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {E0F47902-A99B-4146-861E-EFA11DE6F171} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [510912 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) Task: {E8374ED1-3A91-42C6-AEC6-46D819968A7A} - System32\Tasks\{E62F473F-7B78-4D21-8B4A-A9D6B0A624D0} => C:\Program Files (x86)\Ahead\Nero\nero.exe (Brak pliku) Task: {E868DE89-839F-4C4C-B3FA-64732B9DD4DA} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2069952 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) Task: {FDE96AA8-411E-46E9-A1DC-6F647F868D77} - System32\Tasks\{8DE0DFA7-4294-4808-91AA-F90FA6C08C09} => C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe [789920 2012-03-04] (Lenovo (Beijing) Limited -> Lenovo) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\windows\Tasks\DriverToolkit Autorun.job => C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe Task: C:\windows\Tasks\EPSON XP-2150 Series Update {114072B6-C530-46F0-A045-6A48ACF40644}.job => C:\windows\system32\spool\DRIVERS\x64\3\E_YTSX0E.EXE:/EXE:{114072B6-C530-46F0-A045-6A48ACF40644} /F:UpdateSYSTEMĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi Task: C:\windows\Tasks\EPSON XP-2150 Series Update {9332C2CB-7E62-401D-AA81-F4A2B2C3CD78}.job => C:\windows\system32\spool\DRIVERS\x64\3\E_YTSX0E.EXE:/EXE:{9332C2CB-7E62-401D-AA81-F4A2B2C3CD78} /F:UpdateSYSTEMĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Winsock: Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280 2010-09-21] (Microsoft Corporation -> Microsoft Corp.) Winsock: Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280 2010-09-21] (Microsoft Corporation -> Microsoft Corp.) Winsock: Catalog5-x64 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880 2010-09-21] (Microsoft Corporation -> Microsoft Corp.) Winsock: Catalog5-x64 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880 2010-09-21] (Microsoft Corporation -> Microsoft Corp.) Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{436A24ED-6D33-4C76-95EC-44F898C5902D}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{AA9F01FF-C01A-4CAD-80EE-38B3AE0ECBAF}: [DhcpNameServer] 192.168.1.1 FireFox: ======== FF DefaultProfile: q73v466d.default-1443643391790-1589143656818 FF ProfilePath: C:\Users\jarek\AppData\Roaming\Mozilla\Firefox\Profiles\q73v466d.default-1443643391790-1589143656818 [2023-02-18] FF Homepage: Mozilla\Firefox\Profiles\q73v466d.default-1443643391790-1589143656818 -> www.wp.pl FF Notifications: Mozilla\Firefox\Profiles\q73v466d.default-1443643391790-1589143656818 -> hxxps://mail.google.com; hxxps://ebok.pgnig.pl FF Extension: (tb7.pl) - C:\Users\jarek\AppData\Roaming\Mozilla\Firefox\Profiles\q73v466d.default-1443643391790-1589143656818\Extensions\jid1-yA1PzMgpqSEk1Q@jetpack.xpi [2020-05-25] FF Extension: (Old Layout for Facebook) - C:\Users\jarek\AppData\Roaming\Mozilla\Firefox\Profiles\q73v466d.default-1443643391790-1589143656818\Extensions\{8792af17-0df8-40ab-81d3-6cc777171564}.xpi [2021-08-19] FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => nie znaleziono FF HKU\S-1-5-21-2033674492-1833506033-309127491-1001\...\Firefox\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\jarek\AppData\Roaming\IDM\idmmzcc5 FF Extension: (IDM CC) - C:\Users\jarek\AppData\Roaming\IDM\idmmzcc5 [2022-10-29] [Przestarzałe] [Brak podpisu cyfrowego] FF HKU\S-1-5-21-2033674492-1833506033-309127491-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - D:\Internet Download Manager\idmmzcc2.xpi => nie znaleziono FF HKU\S-1-5-21-2033674492-1833506033-309127491-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\jarek\AppData\Roaming\IDM\idmmzcc5 FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (Electronic Arts -> EA Digital Illusions CE AB) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=3.0.8 -> D:\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (Electronic Arts -> EA Digital Illusions CE AB) FF Plugin-x32: @garmin.com/GpsControl -> C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll [2012-11-02] (Garmin International, Inc. -> GARMIN Corp.) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2023-02-14] (Adobe Inc. -> Adobe Systems Inc.) StartMenuInternet: FIREFOX.EXE - D:\firefox\firefox.exe Chrome: ======= CHR Profile: C:\Users\jarek\AppData\Local\Google\Chrome\User Data\Default [2023-02-17] CHR HomePage: Default -> hxxps://www.ea.com/pl-pl/fifa/ultimate-team/web-app/ CHR StartupUrls: Default -> "hxxp://www.gazeta.pl/0,0.html?p=190","hxxp://www.gazeta.pl/0,0.html?p=190","hxxps://www.gazeta.pl/0,0.html?p=190" CHR Extension: (Dokumenty Google offline) - C:\Users\jarek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-12-09] CHR Extension: (IDM Integration Module) - C:\Users\jarek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2022-10-18] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\jarek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-12-27] CHR HKLM\...\Chrome\Extension: [jeaohhlajejodfjadcponpnjgkiikocn] - D:\Internet Download Manager\IDMGCExt.crx [2015-04-20] CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - D:\Internet Download Manager\IDMGCExt.crx [2015-04-20] CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - D:\Internet Download Manager\IDMGCExt.crx [2015-04-20] Opera: ======= StartMenuInternet: (HKU\S-1-5-21-2033674492-1833506033-309127491-1001) Opera GXStable - "C:\Users\jarek\AppData\Local\Programs\Opera GX\Launcher.exe" ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2022-09-26] (Adobe Inc. -> Adobe Inc.) R2 BlueSoleilCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe [1579880 2014-02-17] (IVT CORPORATION -> IVT Corporation) R3 BsHelpCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [145656 2013-12-16] (IVT CORPORATION -> IVT Corporation) R2 btwdins; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [970016 2011-05-12] (Broadcom Corporation -> Broadcom Corporation.) S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934368 2021-12-01] (Epic Games Inc. -> Epic Games, Inc.) R2 EpsonScanSvc; C:\windows\system32\EscSvc64.exe [206304 2021-08-05] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) S2 KMService; C:\windows\SysWOW64\srvany.exe [8192 2014-01-05] () [Brak podpisu cyfrowego] R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2008-12-03] (Hewlett-Packard) [Brak podpisu cyfrowego] S3 Origin Client Service; G:\Origin\OriginClientService.exe [2579264 2022-11-09] (Electronic Arts, Inc. -> Electronic Arts) S2 Origin Web Helper Service; G:\Origin\OriginWebHelperService.exe [3497800 2022-11-09] (Electronic Arts, Inc. -> Electronic Arts) R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2008-12-03] (Hewlett-Packard) [Brak podpisu cyfrowego] R2 PnkBstrA; C:\windows\system32\PnkBstrA.exe [76152 2016-07-05] (Even Balance, Inc. -> ) R2 RapiMgr; C:\windows\WindowsMobile\rapimgr.dll [225672 2007-05-31] (Microsoft Corporation -> Microsoft Corporation) R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2021-11-25] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) R2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [920768 2021-11-25] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) R2 WcesComm; C:\windows\WindowsMobile\wcescomm.dll [443784 2007-05-31] (Microsoft Corporation -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Windows -> Microsoft Corporation) R2 wlidsvc; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2286976 2010-09-21] (Microsoft Corporation -> Microsoft Corp.) ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) U5 BlueletAudio; C:\Windows\System32\Drivers\BlueletAudio.sys [33968 2012-12-19] (Ralink Technology Corporation -> IVT Corporation) R3 BtAudioBusSrv; C:\windows\System32\Drivers\BtAudioBus.sys [23136 2012-06-15] (Ralink Technology Corporation -> IVT Corporation) R3 BthL2caScoIfSrv; C:\windows\System32\Drivers\BtL2caScoIf.sys [54064 2013-04-26] (Mediatek Inc. -> Ralink Corporation) S3 btUrbFilterDrv; C:\windows\System32\Drivers\IvtUrbBtFlt.sys [51936 2014-01-20] (IVT CORPORATION -> Ralink Corporation) R3 BTWDPAN; C:\windows\System32\DRIVERS\btwdpan.sys [89640 2011-05-13] (Broadcom Corporation -> Broadcom Corporation.) R3 clwvd; C:\windows\System32\DRIVERS\clwvd.sys [31088 2011-01-29] (CyberLink -> CyberLink Corporation) R3 DelayMan; C:\windows\System32\DRIVERS\delayman.sys [20064 2011-10-08] (Lenovo (Beijing) Limited -> Ensurebit Inc.) R1 dtsoftbus01; C:\windows\System32\DRIVERS\dtsoftbus01.sys [283064 2021-12-20] (Disc Soft Ltd -> Disc Soft Ltd) R1 ElRawDisk; C:\windows\system32\drivers\ElRawDsk.sys [30752 2012-07-26] (iolo technologies, LLC -> EldoS Corporation) S3 LGJoyXlCore; C:\windows\System32\drivers\LGJoyXlCore.sys [67736 2017-01-23] (Logitech Inc -> Logitech Inc.) S3 LGSHidFilt; C:\windows\System32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech -> Logitech Inc.) S3 LGSUsbFilt; C:\windows\System32\DRIVERS\LGSUsbFilt.Sys [41752 2013-05-30] (Logitech -> Logitech Inc.) S3 libusb0; C:\windows\System32\DRIVERS\libusb0.sys [44480 2013-09-23] (Akeo Consulting -> hxxp://libusb-win32.sourceforge.net) S3 ManyCam; C:\windows\System32\DRIVERS\mcvidrv_x64.sys [44928 2012-10-11] (Microsoft Windows Hardware Compatibility Publisher -> ManyCam LLC) S3 mcaudrv_simple; C:\windows\System32\drivers\mcaudrv_x64.sys [28160 2013-01-31] (ManyCam LLC) [Brak podpisu cyfrowego] S3 nmwcdnsux64; C:\windows\System32\drivers\nmwcdnsux64.sys [171008 2011-08-17] (Microsoft Windows Hardware Compatibility Publisher -> Nokia) S3 pccsmcfd; C:\windows\System32\DRIVERS\pccsmcfdx64.sys [26112 2012-06-11] (Microsoft Windows Hardware Compatibility Publisher -> Nokia) S3 RT-USB; C:\windows\System32\drivers\RT-USB64.SYS [97152 2014-05-12] (Ross-Tech, LLC -> Ross-Tech LLC) R0 sptd; C:\windows\System32\Drivers\sptd.sys [381440 2013-11-12] (Disc Soft Ltd -> Duplex Secure Ltd.) S1 StarOpen; C:\Windows\SysWow64\Drivers\StarOpen.sys [5632 2006-07-24] () [Brak podpisu cyfrowego] S3 SWDUMon; C:\windows\System32\DRIVERS\SWDUMon.sys [16056 2017-01-18] (Slimware Utilities Holdings, Inc. -> SlimWare Utilities, Inc.) R3 wdkmd; C:\windows\System32\DRIVERS\WDKMD.sys [42392 2010-12-01] (Wireless Display -> Intel Corporation) R1 winioex; C:\windows\System32\drivers\winioex.sys [15456 2011-10-08] (Lenovo (Beijing) Limited -> Ensurebit Inc.) S3 wsvd; C:\windows\System32\DRIVERS\wsvd.sys [121840 2009-07-21] (CyberLink -> CyberLink) U3 a26m9xrm; C:\Windows\System32\Drivers\a26m9xrm.sys [0 0000-00-00] (Advanced Micro Devices) <==== UWAGA [zerobajtowy plik/folder] U5 BlueletAudio; C:\Windows\SysWOW64\Drivers\BlueletAudio.sys [33968 2012-12-19] (Ralink Technology Corporation -> IVT Corporation) S3 dg_ssudbus; system32\DRIVERS\ssudbus.sys [X] S3 JMCR; system32\DRIVERS\jmcr.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-02-18 17:43 - 2023-02-18 17:47 - 000037551 _____ C:\Users\jarek\Downloads\FRST.txt 2023-02-18 17:42 - 2023-02-18 17:42 - 002378240 _____ (Farbar) C:\Users\jarek\Downloads\FRST64.exe 2023-02-18 17:01 - 2023-02-18 17:22 - 000000000 ____D C:\Users\jarek\Desktop\Nowy folder (2) 2023-02-18 16:54 - 2023-02-18 16:54 - 000003774 _____ C:\windows\system32\Tasks\EOSv3 Scheduler onLogOn 2023-02-18 16:54 - 2023-02-18 16:54 - 000003334 _____ C:\windows\system32\Tasks\EOSv3 Scheduler onTime 2023-02-18 16:35 - 2023-02-18 17:29 - 000001209 _____ C:\Users\jarek\Desktop\ESET Online Scanner.lnk 2023-02-18 16:34 - 2023-02-18 16:35 - 015274968 _____ (ESET) C:\Users\jarek\Downloads\esetonlinescanner.exe 2023-02-18 15:06 - 2023-02-18 15:06 - 000000000 ____H C:\ProgramData\cm-lock 2023-02-17 21:50 - 2023-02-17 21:50 - 000140315 _____ C:\Users\jarek\Downloads\kibot_ultra_9.txt 2023-02-17 21:46 - 2023-02-17 21:46 - 000004142 _____ C:\windows\system32\Tasks\Opera GX scheduled Autoupdate 1676666796 2023-02-17 21:46 - 2023-02-17 21:46 - 000001365 _____ C:\Users\jarek\Desktop\Przeglądarka Opera GX.lnk 2023-02-17 21:46 - 2023-02-17 21:46 - 000001365 _____ C:\Users\jarek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Przeglądarka Opera GX.lnk 2023-02-17 21:46 - 2023-02-17 21:46 - 000000000 ____D C:\Users\jarek\AppData\Local\Opera Software 2023-02-17 21:45 - 2023-02-17 21:45 - 000000000 ____D C:\Users\jarek\AppData\Roaming\Opera Software 2023-02-09 15:45 - 2023-02-09 15:45 - 000000000 ____D C:\Users\jarek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Urządzenia interfejsu Bluetooth ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-02-18 17:46 - 2021-08-15 14:37 - 000000000 ____D C:\FRST 2023-02-18 17:34 - 2022-02-25 21:24 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2023-02-18 17:33 - 2016-11-20 19:47 - 000000000 ____D C:\Users\jarek\AppData\LocalLow\Mozilla 2023-02-18 17:15 - 2022-04-11 16:15 - 000000911 _____ C:\windows\Tasks\EPSON XP-2150 Series Update {9332C2CB-7E62-401D-AA81-F4A2B2C3CD78}.job 2023-02-18 17:06 - 2022-04-11 16:06 - 000000911 _____ C:\windows\Tasks\EPSON XP-2150 Series Update {114072B6-C530-46F0-A045-6A48ACF40644}.job 2023-02-18 17:06 - 2011-10-08 10:31 - 000000000 ____D C:\Program Files (x86)\Google 2023-02-18 16:23 - 2019-09-05 17:18 - 000000000 ____D C:\Users\jarek\AppData\Roaming\vlc 2023-02-18 15:25 - 2011-10-08 01:23 - 000741124 _____ C:\windows\system32\perfh015.dat 2023-02-18 15:25 - 2011-10-08 01:23 - 000156408 _____ C:\windows\system32\perfc015.dat 2023-02-18 15:25 - 2009-07-14 06:13 - 001672134 _____ C:\windows\system32\PerfStringBackup.INI 2023-02-18 15:25 - 2009-07-14 04:20 - 000000000 ____D C:\windows\inf 2023-02-18 15:18 - 2022-10-18 19:23 - 000002065 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader.lnk 2023-02-18 15:15 - 2011-10-08 09:56 - 000000000 ____D C:\ProgramData\NVIDIA 2023-02-18 15:14 - 2009-07-14 05:45 - 000028704 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2023-02-18 15:14 - 2009-07-14 05:45 - 000028704 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2023-02-18 15:07 - 2009-07-14 04:20 - 000000000 ____D C:\windows\tracing 2023-02-18 15:06 - 2011-10-08 10:45 - 000110004 _____ C:\windows\system32\fastboot.set 2023-02-18 15:05 - 2018-01-12 10:36 - 000000358 _____ C:\windows\Tasks\DriverToolkit Autorun.job 2023-02-18 15:05 - 2015-04-26 10:07 - 000065536 _____ C:\windows\system32\Ikeext.etl 2023-02-18 15:05 - 2015-01-05 15:20 - 000001059 _____ C:\windows\SysWOW64\bscs.ini 2023-02-18 15:05 - 2009-07-14 06:08 - 000000006 ____H C:\windows\Tasks\SA.DAT 2023-02-17 20:41 - 2017-05-06 14:02 - 004703232 ___SH C:\Users\jarek\Desktop\Thumbs.db 2023-02-09 15:43 - 2012-04-26 22:22 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2023-02-07 17:28 - 2015-08-24 20:08 - 019631104 ___SH C:\Users\jarek\Downloads\Thumbs.db 2023-01-28 15:43 - 2022-10-18 22:02 - 000002182 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2023-01-28 15:43 - 2022-10-18 22:02 - 000002141 _____ C:\Users\Public\Desktop\Google Chrome.lnk ==================== Pliki w katalogu głównym wybranych folderów ======== 2012-07-12 09:28 - 2012-07-12 09:28 - 002174976 _____ (Advanced Micro Devices Inc.) C:\Program Files (x86)\Common Files\atimpenc.dll 2021-05-18 21:47 - 2021-07-05 21:31 - 000000859 _____ () C:\Users\jarek\AppData\Roaming\downloads.json 2018-05-23 20:47 - 2018-05-23 20:47 - 000001564 _____ () C:\Users\jarek\AppData\Local\PDLSetup.20180523.214704.txt 2018-05-23 20:47 - 2018-05-23 20:47 - 000001566 _____ () C:\Users\jarek\AppData\Local\PDLSetup.20180523.214734.txt 2018-05-23 20:53 - 2018-05-23 20:53 - 000001566 _____ () C:\Users\jarek\AppData\Local\PDLSetup.20180523.215345.txt 2018-05-23 21:14 - 2018-05-23 21:14 - 000001567 _____ () C:\Users\jarek\AppData\Local\PDLSetup.20180523.221418.txt 2014-04-02 12:29 - 2014-04-02 12:29 - 000000969 _____ () C:\Users\jarek\AppData\Local\recently-used.xbel 2012-02-24 22:12 - 2017-08-01 14:59 - 000007616 _____ () C:\Users\jarek\AppData\Local\resmon.resmoncfg ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) LastRegBack: 2022-08-09 13:32 ==================== Koniec FRST.txt ========================