Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 27.01.2024 01 Uruchomiony przez Tomek (administrator) LAPTOP-720E1LVK (LENOVO 81D2) (28-01-2024 21:16:19) Uruchomiony z D:\Raport\FRST64.exe Załadowane profile: 88& 99& 00 Platforma: Microsoft Windows 10 Home Wersja 22H2 19045.3996 (X64) Język: Polski (Polska) Domyślna przeglądarka: Opera Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe ->) (IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFSrvWsc.exe (C:\Program Files\SecureAge\AntiVirus\sascansvc.exe ->) (SecureAge Technology Pte Ltd -> SecureAge Technology) C:\Program Files\SecureAge\AntiVirus\APEX\APEX.exe (C:\Users\Tomek\AppData\Local\Programs\Opera\opera.exe ->) (Opera Norway AS -> Opera Software) C:\Users\Tomek\AppData\Local\Programs\Opera\106.0.4998.66\opera_crashreporter.exe (C:\Users\Tomek\AppData\Roaming\uTorrent\updates\3.6.0_47006\utorrentie.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\120.0.2210.144\msedgewebview2.exe <7> (C:\Users\Tomek\AppData\Roaming\uTorrent\uTorrent.exe ->) (BitTorrent Inc -> BitTorrent Inc.) C:\Users\Tomek\AppData\Roaming\uTorrent\updates\3.6.0_47006\utorrentie.exe <2> (C:\Users\Tomek\AppData\Roaming\uTorrent\uTorrent.exe ->) (Rainberry Inc -> BitTorrent Inc.) C:\Users\Tomek\AppData\Roaming\uTorrent\helper\helper.exe (DriverStore\FileRepository\u0359870.inf_amd64_fd45b4f03d50fa4e\B359830\atiesrxx.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0359870.inf_amd64_fd45b4f03d50fa4e\B359830\atieclxx.exe (explorer.exe ->) (BitTorrent Inc -> BitTorrent Limited) C:\Users\Tomek\AppData\Roaming\uTorrent\uTorrent.exe (explorer.exe ->) (SecureAge Technology Pte Ltd -> SecureAge Technology) C:\Program Files\SecureAge\Whitelist\sanotifier.exe (explorer.exe ->) (SecureAge Technology Pte Ltd -> SecureAge Technology) C:\Program Files\SecureAge\Whitelist\SecureAPlus.exe (IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\pub\PubPlatform.exe (IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\SDXHelper.exe (Opera Norway AS -> Opera Software) C:\Users\Tomek\AppData\Local\Programs\Opera\opera.exe <27> (services.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0359870.inf_amd64_fd45b4f03d50fa4e\B359830\atiesrxx.exe (services.exe ->) (Dolby Laboratories, Inc. -> ) C:\Windows\System32\dolbyaposvc\DAX3API.exe <2> (services.exe ->) (IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe (services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe (services.exe ->) (McAfee, LLC -> McAfee, Inc.) C:\Program Files\McAfee\WebAdvisor\servicehost.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe (services.exe ->) (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2> (services.exe ->) (SecureAge Technology Pte Ltd -> SecureAge Technology) C:\Program Files\SecureAge\AntiVirus\sascansvc.exe (services.exe ->) (SecureAge Technology Pte Ltd -> SecureAge Technology) C:\Program Files\SecureAge\UniversalAV\UniversalAVService.exe (services.exe ->) (SecureAge Technology Pte Ltd -> SecureAge Technology) C:\Program Files\SecureAge\Vulnerability\VAsvc.exe (services.exe ->) (SecureAge Technology Pte Ltd -> SecureAge Technology) C:\Program Files\SecureAge\Whitelist\saappsvc.exe (services.exe ->) (SecureAge Technology Pte Ltd -> SecureAge Technology) C:\Program Files\SecureAge\Whitelist\SecureAPlusService.exe (services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe (services.exe ->) (voidtools -> voidtools) C:\Program Files\Everything\Everything.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [865568 2019-03-14] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [SAAppWhitelistingNotifier] => C:\Program Files\SecureAge\Whitelist\sanotifier.exe [4503120 2023-11-27] (SecureAge Technology Pte Ltd -> SecureAge Technology) HKLM\...\Run: [SecureAPlus] => C:\Program Files\SecureAge\Whitelist\SecureAPlus.exe [7866880 2023-11-14] (SecureAge Technology Pte Ltd -> SecureAge Technology) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412680 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-10] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [5237416 2021-02-25] (Adobe Inc. -> Adobe Systems Inc.) HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [IObit Malware Fighter] => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [6881208 2022-10-19] (IObit CO., LTD -> IObit) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [748624 2023-10-04] (Oracle America, Inc. -> Oracle Corporation) HKU\S-1-5-21-1802392719-117103019-839818755-1001\...\Run: [uTorrent] => C:\Users\Tomek\AppData\Roaming\uTorrent\uTorrent.exe [2261000 2024-01-10] (BitTorrent Inc -> BitTorrent Limited) HKU\S-1-5-21-1802392719-117103019-839818755-1001\...\Run: [Microsoft Edge Update] => C:\Users\Tomek\AppData\Local\Microsoft\EdgeUpdate\1.3.181.5\MicrosoftEdgeUpdateCore.exe [264264 2023-10-31] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1802392719-117103019-839818755-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [44540320 2024-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) HKU\S-1-5-21-1802392719-117103019-839818755-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4374376 2023-07-28] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-1802392719-117103019-839818755-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37188048 2024-01-24] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-1802392719-117103019-839818755-1001\...\Run: [Opera Stable] => C:\Users\Tomek\AppData\Local\Programs\Opera\launcher.exe [2350496 2024-01-25] (Opera Norway AS -> Opera Software) HKU\S-1-5-21-1802392719-117103019-839818755-1001\...\Run: [MicrosoftEdgeAutoLaunch_C63379C82922661C44C02AEF678422DE] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3788224 2024-01-25] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1802392719-117103019-839818755-1001\...\Run: [Advanced SystemCare] => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe [5455880 2023-10-17] (IObit CO., LTD -> IObit) HKU\S-1-5-21-1802392719-117103019-839818755-1001\...\Run: [ut] => C:\Users\Tomek\AppData\Roaming\uTorrent\uTorrent.exe [2261000 2024-01-10] (BitTorrent Inc -> BitTorrent Limited) HKU\S-1-5-21-1802392719-117103019-839818755-1001\...\Run: [Opera Browser Assistant] => C:\Users\Tomek\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3746208 2023-12-19] (Opera Norway AS -> Opera Software) HKU\S-1-5-21-1802392719-117103019-839818755-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1 HKU\S-1-5-21-1802392719-117103019-839818755-1002\...\Run: [MicrosoftEdgeAutoLaunch_BDFF2E6A7AEF4FB0AA6DE29A9536B3FF] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3788224 2024-01-25] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1802392719-117103019-839818755-1003\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37188048 2024-01-24] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-1802392719-117103019-839818755-1003\...\Run: [MicrosoftEdgeAutoLaunch_459FAB93B7ABA4017908CE9DEA57B5FF] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3788224 2024-01-25] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1802392719-117103019-839818755-1003\...\RunOnce: [Application Restart #2] => C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe --flag-switches-begin --flag-switches-end --enable-audio-service-sandbox --restore-last-session -- microsoft-edge:?launchContext1=Microsof (dane wartości zawierają 306 znaków więcej). [3788224 2024-01-25] (Microsoft Corporation -> Microsoft Corporation) HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [65496 2021-02-25] (Adobe Inc. -> Adobe Systems Inc) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\120.0.6099.225\Installer\chrmstp.exe [2024-01-20] (Google LLC -> Google LLC) BootExecute: autocheck autochk * SmartDefragBootTime.exe ==================== Zaplanowane zadania (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {31C5C494-E09D-4BCE-9338-CBCDFC22320B} - \Lenovo\ImController\TimeBasedEvents\f99d9d42-bab0-4376-a503-3c83970c3a32 -> Brak pliku <==== UWAGA Task: {6D684BA6-C02B-4D47-9A42-7E780E27A2C7} - \Lenovo\ImController\TimeBasedEvents\eaba945d-c665-4992-b2e4-44df52a82870 -> Brak pliku <==== UWAGA Task: {8E6D7C98-5230-4737-9015-3C1A20BBB85D} - \Lenovo\ImController\TimeBasedEvents\3ba43c73-f96f-45d5-9158-e47603993d6f -> Brak pliku <==== UWAGA Task: {D9FA8A63-E71C-4054-853A-D75D9E422C99} - \Lenovo\ImController\TimeBasedEvents\e9fea2f3-8e25-4ee6-9a59-0cee6e0ad827 -> Brak pliku <==== UWAGA Task: {78B88ABC-5C5F-4430-B7F8-A7F42267DC70} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-09-20] (Adobe Inc. -> Adobe Inc.) Task: {F991F058-22DD-4F9C-A059-F9DECB834488} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412680 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {4A974997-306B-47EE-85C7-7FE1B00D3525} - System32\Tasks\ASC_SkipUac_Tomek => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe [10991112 2023-10-17] (IObit CO., LTD -> IObit) Task: {01A23E27-FB82-46E4-82EA-02C2C9488690} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2024-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {5FBC90B5-E11E-467E-9F7E-94D26F3D2409} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2024-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "14936f54-f204-4abd-8fe3-b6a5f3f3d7cd" --version "6.20.10897" --silent Task: {F8F3CA3B-B966-48A7-BA20-E9F9D5805190} - System32\Tasks\CCleanerSkipUAC - Tomek => C:\Program Files\CCleaner\CCleaner.exe [38319520 2024-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {9E7F24FB-AB54-41F5-BD32-35CEDC256D0F} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\11.2.0\Scheduler.exe [160744 2023-11-09] (IObit CO., LTD -> IObit) Task: {F23E5C4A-9473-43EE-9FF8-12584593511A} - System32\Tasks\Driver Booster SkipUAC (Tomek) => C:\Program Files (x86)\IObit\Driver Booster\11.2.0\DriverBooster.exe [9045480 2023-12-19] (IObit CO., LTD -> IObit) Task: {75E8217F-F31D-465A-81C1-FA2D7130602D} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\11.2.0\AutoUpdate.exe [2524648 2023-11-09] (IObit CO., LTD -> IObit) Task: {7726DF09-D47E-4A16-96E6-4B5A9CC20021} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-08] (Google Inc -> Google LLC) Task: {96EF068B-3F65-4FE2-BD63-719E91B2F0D1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-08] (Google Inc -> Google LLC) Task: {73C18171-9087-47EC-94B1-596A3A883FF1} - System32\Tasks\IMF_SkipUAC_Tomek => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [6881208 2022-10-19] (IObit CO., LTD -> IObit) Task: {5F64255A-3219-4514-935A-A9522AE5B1C8} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2113024 2023-11-09] () [Brak podpisu cyfrowego] Task: {E09E2229-6A2E-4233-9BF8-646E9A400FAA} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [74952 2022-11-20] (Lenovo -> Lenovo Group Ltd.) Task: {4750D524-F24D-483D-B08F-CF59A17F9936} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => C:\WINDOWS\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> START ImControllerService Task: {C5F5541B-73CA-4B14-A53D-967A9A4D3269} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => C:\WINDOWS\System32\reg.exe [77312 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32 Task: {80FA93A4-30A8-41A6-9249-9F998AF0A4CD} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => C:\WINDOWS\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> start LenovoVantageService Task: {4EC9EEFC-B36E-4A51-B138-0A2766AC8BA0} - System32\Tasks\Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.0.49.0\ScheduleEventAction.exe [30064 2023-11-16] (Lenovo -> Lenovo) Task: {EBBCCE28-047C-459C-B2B8-5A9973AB942C} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\4.0.49.0\ScheduleEventAction.exe [30064 2023-11-16] (Lenovo -> Lenovo) Task: {E957A09A-A3E5-4BF0-A193-6E970193B85D} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\4.0.49.0\ScheduleEventAction.exe [30064 2023-11-16] (Lenovo -> Lenovo) Task: {6B37F994-8E22-48B5-8219-8395A70DF058} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.0.49.0\ScheduleEventAction.exe [30064 2023-11-16] (Lenovo -> Lenovo) Task: {564E4113-2E2B-474C-B720-A7C3EC8BA43D} - System32\Tasks\Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent => C:\Program Files (x86)\Lenovo\VantageService\4.0.49.0\ScheduleEventAction.exe [30064 2023-11-16] (Lenovo -> Lenovo) Task: {09A7D205-31D0-4F9E-9B58-41612E85340D} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport => C:\Program Files (x86)\Lenovo\VantageService\4.0.49.0\ScheduleEventAction.exe [30064 2023-11-16] (Lenovo -> Lenovo) Task: {8F1A657A-00B4-4823-8473-CB627675D587} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoBoostAddin.Prompt => C:\Program Files (x86)\Lenovo\VantageService\4.0.49.0\ScheduleEventAction.exe [30064 2023-11-16] (Lenovo -> Lenovo) Task: {B985E3DE-0EBA-4A9A-BD75-E4C23BDBB38F} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.0.49.0\ScheduleEventAction.exe [30064 2023-11-16] (Lenovo -> Lenovo) Task: {C3BA7855-A466-468C-BBD5-C11D4A37CDA9} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\4.0.49.0\ScheduleEventAction.exe [30064 2023-11-16] (Lenovo -> Lenovo) Task: {E0B1F1A6-F7CB-4C47-A848-67BAEC5438F6} - System32\Tasks\Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.0.49.0\ScheduleEventAction.exe [30064 2023-11-16] (Lenovo -> Lenovo) Task: {580C1CD7-D745-4320-843C-E68FF597E43C} - System32\Tasks\Lenovo\Vantage\Schedule\SmartPerformance.ExpireReminder => C:\Program Files (x86)\Lenovo\VantageService\4.0.49.0\ScheduleEventAction.exe [30064 2023-11-16] (Lenovo -> Lenovo) Task: {ED428952-A83B-48EF-BF9A-CE151C68845D} - System32\Tasks\Lenovo\Vantage\Schedule\VantageCoreAddinWeekScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.0.49.0\ScheduleEventAction.exe [30064 2023-11-16] (Lenovo -> Lenovo) Task: {E37DB73D-4E41-4BE2-BAD3-EAE08FF70616} - System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => C:\Program Files (x86)\Lenovo\VantageService\3.6.15.0\ScheduleEventAction.exe VantageTelemetryAddinTask (Brak pliku) Task: {8DB6E5D2-6912-4901-B8EE-087A5D48B483} - System32\Tasks\Lenovo\Vantage\StartupFixPlan => C:\Program Files (x86)\Lenovo\VantageService\4.0.49.0\uninstall.exe [311776 2023-11-16] (Lenovo -> Lenovo) Task: {B6B0D9A4-506E-480B-BE06-CD9F2C25F03F} - System32\Tasks\LenovoUtility Startup => C:\Windows\explorer.exe [5576216 2024-01-26] (Microsoft Windows -> Microsoft Corporation) Task: {0260D189-03FC-45C7-8677-4FF91AD5C101} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28425192 2024-01-14] (Microsoft Corporation -> Microsoft Corporation) Task: {7C54594C-70A4-4BF1-90F8-AF538EE4EDAF} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28425192 2024-01-14] (Microsoft Corporation -> Microsoft Corporation) Task: {BAF189EE-0455-4C44-BF99-0476ED71A701} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [218048 2024-01-14] (Microsoft Corporation -> Microsoft Corporation) Task: {198076B6-2BC5-4C4B-94BB-7DC4353BCECF} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [218048 2024-01-14] (Microsoft Corporation -> Microsoft Corporation) Task: {7A243422-0DDA-416C-BE3C-957F4EB12004} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-12] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {A8083AC4-61A6-489D-B726-C021DC150C1B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-12] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {7BC50AAA-B768-4F42-99F8-24962C95A61D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-12] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {D27A1FE9-16C6-4995-98B8-44D46A6988D2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2023-12-12] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {2530606A-97CE-43EF-884F-40EBAB0087C8} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-1802392719-117103019-839818755-1001Core => C:\Users\Tomek\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [205744 2022-06-27] (Microsoft Corporation -> Microsoft Corporation) Task: {1A750B1C-1124-4135-A49A-F86C9A9A83D0} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-1802392719-117103019-839818755-1001UA => C:\Users\Tomek\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [205744 2022-06-27] (Microsoft Corporation -> Microsoft Corporation) Task: {227D92AD-D2AF-40E2-87C4-0386471884D5} - System32\Tasks\Opera scheduled assistant Autoupdate 1587894617 => C:\Users\Tomek\AppData\Local\Programs\Opera\launcher.exe [2350496 2024-01-25] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Tomek\AppData\Local\Programs\Opera\assistant" $(Arg0) Task: {AD66EF20-04D1-4E01-A0B4-FCC2681F7EE2} - System32\Tasks\Opera scheduled assistant Autoupdate 1678560349 => C:\Users\Tomek\AppData\Local\Programs\Opera\launcher.exe [2350496 2024-01-25] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Tomek\AppData\Local\Programs\Opera\assistant" $(Arg0) Task: {5DF3EEEE-5D3F-4F70-A93D-8B7DCBB052AB} - System32\Tasks\Opera scheduled assistant Autoupdate 1682187135 => C:\Users\Tomek\AppData\Local\Programs\Opera\launcher.exe [2350496 2024-01-25] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Tomek\AppData\Local\Programs\Opera\assistant" $(Arg0) Task: {3860F7EE-B14D-4717-9E2E-53580716A762} - System32\Tasks\Opera scheduled Autoupdate 1587894605 => C:\Users\Tomek\AppData\Local\Programs\Opera\launcher.exe [2350496 2024-01-25] (Opera Norway AS -> Opera Software) Task: {9DEDA945-8E5D-4EB6-B44B-0222504BF751} - System32\Tasks\RtkAudUService64_BG => C:\Windows\system32\RtkAudUService64.exe [865568 2019-03-14] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {3D678844-6CBE-4454-8122-8A289A58C965} - System32\Tasks\SmartDefrag_AutoAnalyze => C:\Program Files (x86)\IObit\Smart Defrag\AutoDefrag.exe [314128 2018-05-02] (IObit Information Technology -> IObit) Task: {21371F53-6716-48A6-AFDA-55609157B5DB} - System32\Tasks\SmartDefrag_Update => C:\Program Files (x86)\IObit\Smart Defrag\AutoUpdate.exe [3712224 2024-01-04] (IObit CO., LTD -> IObit) Task: {35782E8B-FFA2-4648-86E3-5036242820E6} - System32\Tasks\Uninstaller_SkipUac_Tomek => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [9825288 2023-09-19] (IObit CO., LTD -> IObit) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 0.0.0.0 Tcpip\..\Interfaces\{9d6b8134-c09b-491e-96d2-2a8fd445a6b4}: [DhcpNameServer] 192.168.1.1 0.0.0.0 Tcpip\..\Interfaces\{9d6b8134-c09b-491e-96d2-2a8fd445a6b4}\B44323F583031363: [DhcpNameServer] 192.168.232.45 Tcpip\..\Interfaces\{fb23eed8-3788-4a06-9549-7637033ac2f8}: [DhcpNameServer] 192.168.0.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\Tomek\AppData\Local\Microsoft\Edge\User Data\Default [2024-01-26] Edge Session Restore: Default -> [funkcja włączona] Edge Extension: (Dokumenty Google offline) - C:\Users\Tomek\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-01-26] Edge Extension: (Edge relevant text changes) - C:\Users\Tomek\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-26] FireFox: ======== FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2019-09-27] FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2021-02-24] FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF Plugin-x32: @java.com/DTPlugin,version=11.391.2 -> C:\Program Files (x86)\Java\jre-1.8\bin\dtplugin\npDeployJava1.dll [2023-10-04] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.391.2 -> C:\Program Files (x86)\Java\jre-1.8\bin\plugin2\npjp2.dll [2023-10-04] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2024-01-12] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-12-06] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-02-25] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2024-01-13] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default [2024-01-28] CHR Notifications: Default -> hxxps://www.komputerswiat.pl; hxxps://www.youtube.com CHR Session Restore: Default -> [funkcja włączona] CHR Extension: (Adobe Acrobat: edycja plików PDF, konwertowanie, narzędzia podpisywania) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-12-16] CHR Extension: (MyJDownloader Browser Extension) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbcohnmimjicjdomonkcbcpbpnhggkip [2021-07-03] CHR Extension: (Dokumenty Google offline) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-01-12] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-31] CHR Profile: C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-12-24] CHR Profile: C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Profile 1 [2023-12-24] CHR Extension: (Prezentacje) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2022-01-06] CHR Extension: (Dokumenty) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2022-01-06] CHR Extension: (Dysk Google) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2022-01-06] CHR Extension: (YouTube) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2022-01-06] CHR Extension: (Adobe Acrobat) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-01-06] CHR Extension: (Arkusze) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2022-01-06] CHR Extension: (McAfee® WebAdvisor) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2022-01-06] CHR Extension: (Dokumenty Google offline) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-01-06] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-01-06] CHR Extension: (Gmail) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2022-01-06] CHR Profile: C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\System Profile [2023-12-24] CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] CHR HKU\S-1-5-21-1802392719-117103019-839818755-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKU\S-1-5-21-1802392719-117103019-839818755-1003\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] Opera: ======= OPR DefaultProfile: Default ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S4 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-09-20] (Adobe Inc. -> Adobe Inc.) S4 AdvancedSystemCareService17; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [1266696 2023-09-20] (IObit CO., LTD -> IObit) S4 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3780296 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated) S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3548360 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated) R2 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1082784 2024-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13777080 2024-01-14] (Microsoft Corporation -> Microsoft Corporation) R2 DolbyDAXAPI; C:\WINDOWS\system32\dolbyaposvc\DAX3API.exe [398344 2018-06-08] (Dolby Laboratories, Inc. -> ) S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [584680 2023-03-10] (EasyAntiCheat Oy -> Epic Games, Inc.) S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2022-07-11] (Epic Games Inc. -> Epic Games, Inc.) R2 Everything; C:\Program Files\Everything\Everything.exe [2265096 2023-05-26] (voidtools -> voidtools) R2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [305520 2018-05-30] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.) R2 IMFservice; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [2485640 2022-05-26] (IObit CO., LTD -> IObit) S2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [167432 2023-07-26] (IObit CO., LTD -> IObit) S4 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\4.0.49.0\LenovoVantageService.exe [34168 2023-11-16] (Lenovo -> Lenovo) R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [905472 2019-09-27] (McAfee, LLC -> McAfee, Inc.) R2 saappsvc; C:\Program Files\SecureAge\Whitelist\saappsvc.exe [1456768 2023-11-27] (SecureAge Technology Pte Ltd -> SecureAge Technology) R2 sascansvc; C:\Program Files\SecureAge\AntiVirus\sascansvc.exe [1216688 2023-11-14] (SecureAge Technology Pte Ltd -> SecureAge Technology) R2 SAUAVSvc; C:\Program Files\SecureAge\UniversalAV\UniversalAVService.exe [725312 2023-11-14] (SecureAge Technology Pte Ltd -> SecureAge Technology) R2 SAVAsvc; C:\Program Files\SecureAge\Vulnerability\VASvc.exe [241968 2022-11-22] (SecureAge Technology Pte Ltd -> SecureAge Technology) R2 SecureAPlusService; C:\Program Files\SecureAge\Whitelist\SecureAPlusService.exe [1746664 2023-11-14] (SecureAge Technology Pte Ltd -> SecureAge Technology) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.23110.3-0\NisSrv.exe [3174840 2023-12-12] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.23110.3-0\MsMpEng.exe [133592 2023-12-12] (Microsoft Windows Publisher -> Microsoft Corporation) S2 LDrvSvc; C:\Program Files (x86)\OSTotoSoft\DriverTalent\LDrvSvc.dll [X] ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 ampa; C:\WINDOWS\system32\ampa.sys [38320 2017-02-28] (CHENGDU AOMEI Tech Co., Ltd. -> ) S3 ddmdrv; C:\WINDOWS\system32\ddmdrv.sys [35760 2016-12-27] (CHENGDU AOMEI Tech Co., Ltd. -> ) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R3 Imf8HpRegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\ImfHpRegFilter.sys [41848 2019-12-17] (IObit Information Technology -> IObit) R1 IMFCameraProtect; C:\WINDOWS\system32\drivers\IMFCameraProtect.sys [42360 2019-07-30] (IObit Information Technology -> IObit) R3 IMFDownProtect; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\IMFDownProtect.sys [40920 2021-07-29] (IObit CO., LTD -> IObit) R3 IMFEFSFileControl; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\IMFEFSFileControl.sys [40824 2019-08-13] (IObit Information Technology -> IObit) R3 IMFForceDelete123; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\IMFForceDelete.sys [20008 2022-08-02] (Microsoft Windows Hardware Compatibility Publisher -> IObit) R3 ImfHpFileFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\ImfHpFileFilter.sys [45432 2019-12-17] (IObit Information Technology -> IObit) S3 ImfObCallback; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\ImfObCallback.sys [33984 2020-03-12] (IObit Information Technology -> IObit) R3 IUFileFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUFileFilter.sys [28240 2023-09-15] (Microsoft Windows Hardware Compatibility Publisher -> IObit) R3 IUProcessFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUProcessFilter.sys [37112 2023-01-13] (IObit Information Technology -> IObit) R3 IURegistryFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IURegistryFilter.sys [36432 2023-09-15] (Microsoft Windows Hardware Compatibility Publisher -> IObit) R0 SAAppCtl; C:\WINDOWS\System32\DRIVERS\saappctl.sys [331392 2023-11-14] (SecureAge Technology Pte Ltd -> SecureAge Technology) R0 sascan; C:\WINDOWS\System32\DRIVERS\sascan.sys [106176 2023-06-09] (SecureAge Technology Pte Ltd -> SecureAge Technology) R0 SmartDefragDriver; C:\WINDOWS\System32\Drivers\SmartDefragDriver.sys [30744 2017-03-09] (IObit Information Technology -> IObit) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55856 2023-12-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [594304 2023-12-12] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105856 2023-12-12] (Microsoft Windows -> Microsoft Corporation) S3 cpuz145; \??\C:\WINDOWS\temp\cpuz145\cpuz145_x64.sys [X] <==== UWAGA ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2024-01-28 21:15 - 2024-01-28 21:16 - 000000000 ____D C:\FRST 2024-01-26 21:09 - 2024-01-26 21:09 - 000019697 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json 2024-01-26 21:08 - 2024-01-26 21:08 - 000019697 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json 2024-01-26 20:48 - 2024-01-26 20:48 - 000000000 ___HD C:\$WinREAgent 2024-01-26 20:42 - 2024-01-26 20:42 - 000001235 _____ C:\Users\Public\Desktop\Lenovo Diagnostics Evolution.lnk 2024-01-26 20:42 - 2024-01-26 20:42 - 000000000 ____D C:\Users\Tomek\AppData\Local\Downloaded Installations 2024-01-26 20:42 - 2024-01-26 20:42 - 000000000 ____D C:\Users\Tomek\AppData\Local\cache 2024-01-26 20:42 - 2024-01-26 20:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo 2024-01-26 20:42 - 2024-01-26 20:42 - 000000000 ____D C:\Program Files\Lenovo 2024-01-26 20:40 - 2024-01-26 20:41 - 119487864 _____ (LENOVO (UNITED STATES) INC. ) C:\Users\Tomek\Downloads\ldiag_5.11.0_windows_x64.exe 2024-01-26 20:35 - 2024-01-26 20:35 - 000000404 _____ C:\WINDOWS\storelibdebug.txt 2024-01-26 19:28 - 2024-01-26 19:28 - 000004252 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1587894605 2024-01-26 19:28 - 2024-01-26 19:28 - 000001412 _____ C:\Users\Tomek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Przeglądarka Opera.lnk 2024-01-26 19:22 - 2024-01-26 21:16 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job 2024-01-26 19:22 - 2024-01-26 19:22 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2024-01-26 19:22 - 2024-01-26 19:22 - 000003378 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting 2024-01-21 12:26 - 2024-01-21 12:26 - 000003306 _____ C:\WINDOWS\system32\Tasks\Driver Booster SkipUAC (Tomek) 2024-01-21 12:26 - 2024-01-21 12:26 - 000003194 _____ C:\WINDOWS\system32\Tasks\Driver Booster Scheduler 2024-01-21 12:26 - 2024-01-21 12:26 - 000003180 _____ C:\WINDOWS\system32\Tasks\Driver Booster Update 2024-01-21 12:26 - 2024-01-21 12:26 - 000002385 _____ C:\Users\Public\Desktop\Driver Booster 11.lnk 2024-01-21 12:26 - 2024-01-21 12:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 11 2024-01-21 12:24 - 2024-01-21 12:24 - 029596856 _____ (IObit ) C:\Users\Tomek\Downloads\driver_booster_setup.exe 2024-01-20 15:03 - 2024-01-20 15:04 - 009598517 _____ ( ) C:\Users\Tomek\Downloads\klcp_update_1805_20240115.exe 2024-01-20 15:03 - 2024-01-20 15:03 - 000003264 _____ C:\WINDOWS\system32\Tasks\SmartDefrag_AutoAnalyze 2024-01-20 15:02 - 2024-01-20 15:02 - 000001242 _____ C:\Users\Public\Desktop\Smart Defrag 9.lnk 2024-01-20 15:02 - 2019-09-12 09:59 - 000178960 _____ (IObit) C:\WINDOWS\system32\IObitSmartDefragExtension.dll 2024-01-20 15:02 - 2017-03-09 13:53 - 000030744 _____ (IObit) C:\WINDOWS\system32\Drivers\SmartDefragDriver.sys 2024-01-20 15:01 - 2024-01-20 15:01 - 015040448 _____ (IObit ) C:\Users\Tomek\Downloads\smart-defrag-setup.exe 2024-01-16 17:08 - 2024-01-16 17:08 - 000002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader.lnk 2024-01-12 15:39 - 2024-01-12 15:41 - 000000000 ____D C:\Users\Tomek\AppData\Roaming\Dev-Cpp 2024-01-12 15:39 - 2024-01-12 15:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bloodshed Dev-C++ 2024-01-12 15:38 - 2024-01-12 15:41 - 000000000 ____D C:\Dev-Cpp 2024-01-12 15:37 - 2024-01-12 15:38 - 009326468 _____ C:\Users\Tomek\Downloads\devcpp-4.9.9.2_setup.exe ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2024-01-28 21:18 - 2019-06-16 12:55 - 000000000 ____D C:\Users\Tomek\AppData\Local\BitTorrentHelper 2024-01-28 21:17 - 2023-11-17 16:38 - 609735543 _____ C:\WINDOWS\system32\Drivers\whitelist2.sa 2024-01-28 21:17 - 2019-06-08 20:31 - 000000000 ____D C:\Users\Tomek\AppData\Roaming\uTorrent 2024-01-28 21:15 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2024-01-28 20:34 - 2021-12-17 03:30 - 000000000 ____D C:\WINDOWS\SystemTemp 2024-01-28 20:34 - 2019-06-08 21:45 - 000000000 ____D C:\Program Files (x86)\Google 2024-01-28 20:29 - 2020-10-10 22:45 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2024-01-28 20:04 - 2023-11-01 16:26 - 000003542 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2024-01-28 19:37 - 2020-10-10 23:10 - 001678234 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2024-01-28 19:37 - 2019-12-07 16:08 - 000748784 _____ C:\WINDOWS\system32\perfh015.dat 2024-01-28 19:37 - 2019-12-07 16:08 - 000144494 _____ C:\WINDOWS\system32\perfc015.dat 2024-01-28 19:37 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF 2024-01-28 19:30 - 2023-07-04 23:01 - 000008192 ___SH C:\DumpStack.log.tmp 2024-01-28 19:30 - 2020-10-10 23:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2024-01-28 19:30 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState 2024-01-28 18:33 - 2019-12-07 10:03 - 002097152 _____ C:\WINDOWS\system32\config\BBI 2024-01-28 18:31 - 2020-10-10 22:54 - 000000000 ____D C:\Users\Tymek 2024-01-28 13:18 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2024-01-28 13:04 - 2020-10-10 22:54 - 000000000 ____D C:\Users\Tomek 2024-01-28 13:01 - 2019-05-29 15:59 - 000000000 ____D C:\Users\Tomek\AppData\Local\Packages 2024-01-28 12:46 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2024-01-28 12:42 - 2019-07-22 16:55 - 000000000 ____D C:\ProgramData\ProductData 2024-01-27 17:41 - 2019-05-30 14:12 - 000000000 ____D C:\Users\Tymek\AppData\Local\Lenovo 2024-01-27 17:40 - 2020-06-08 08:15 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2024-01-27 17:40 - 2020-06-08 08:15 - 000002295 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2024-01-27 17:39 - 2023-09-10 13:26 - 000000000 ____D C:\ProgramData\ProductData3 2024-01-27 17:36 - 2019-07-22 15:49 - 000000000 ____D C:\Users\Tymek\AppData\Local\D3DSCache 2024-01-26 23:19 - 2019-10-16 19:42 - 000000000 ____D C:\Users\Tomek\AppData\Local\Spotify 2024-01-26 21:55 - 2019-10-13 19:47 - 000000000 ____D C:\Users\Tomek\AppData\Local\ElevatedDiagnostics 2024-01-26 21:22 - 2019-10-16 19:41 - 000000000 ____D C:\Users\Tomek\AppData\Roaming\Spotify 2024-01-26 21:16 - 2022-07-13 09:52 - 000000000 ____D C:\Program Files\CCleaner 2024-01-26 21:16 - 2020-10-10 22:45 - 000633560 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2024-01-26 21:15 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2024-01-26 21:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2024-01-26 21:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2024-01-26 21:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources 2024-01-26 21:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2024-01-26 21:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup 2024-01-26 21:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates 2024-01-26 21:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2024-01-26 21:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz 2024-01-26 21:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser 2024-01-26 21:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellComponents 2024-01-26 21:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2024-01-26 21:14 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2024-01-26 21:07 - 2020-10-10 22:51 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2024-01-26 20:42 - 2018-12-03 13:36 - 000000000 ____D C:\ProgramData\Lenovo 2024-01-26 20:02 - 2019-05-29 16:06 - 000000000 ____D C:\Users\Tomek\AppData\Local\Lenovo 2024-01-26 19:23 - 2019-06-09 11:32 - 000000000 ____D C:\Users\Tomek\AppData\Local\CrashDumps 2024-01-21 16:32 - 2019-10-18 20:37 - 000000000 ____D C:\Users\Tomek\AppData\Local\D3DSCache 2024-01-20 15:02 - 2020-05-17 19:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag 2024-01-20 13:23 - 2019-06-08 21:46 - 000002314 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2024-01-14 21:03 - 2022-10-28 19:00 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2024-01-13 19:07 - 2023-07-05 16:52 - 000000711 _____ C:\Users\Tomek\Desktop\Piwo.txt 2024-01-12 22:58 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2024-01-12 22:58 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences 2024-01-12 15:55 - 2019-05-30 19:40 - 000000000 ____D C:\WINDOWS\system32\MRT 2024-01-12 15:50 - 2019-05-30 19:40 - 189718008 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2024-01-12 14:55 - 2023-12-12 21:02 - 000918944 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe 2024-01-07 10:48 - 2023-07-15 20:14 - 000003676 _____ C:\WINDOWS\SysWOW64\pubfreeware.ini 2023-12-31 23:59 - 2020-03-27 11:03 - 000000000 ____D C:\WINDOWS\TempInst ==================== Pliki w katalogu głównym wybranych folderów ======== 2021-03-18 18:07 - 2021-03-18 18:07 - 000003584 _____ () C:\Users\Tomek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2023-12-11 20:35 - 2023-12-11 20:35 - 000000001 _____ () C:\Users\Tomek\AppData\Local\llftool.4.40.agreement 2021-04-03 13:57 - 2021-04-03 13:57 - 000000410 _____ () C:\Users\Tomek\AppData\Local\oobelibMkey.log 2022-01-15 21:02 - 2022-01-15 21:02 - 000007606 _____ () C:\Users\Tomek\AppData\Local\Resmon.ResmonCfg ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================