Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 15-08-2022 Uruchomiony przez User (administrator) M73-5662 (LENOVO 10B4S0Y600) (26-08-2022 21:23:14) Uruchomiony z D:\Programy\FRST64 Załadowane profile: User Platform: Microsoft Windows 7 Professional Service Pack 1 (X64) Język: Polski (Polska) Domyślna przeglądarka: FF Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe (Brother Industries, Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe (Brother Industries, Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe (C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe ->) (Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe (C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.2\avp.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.2\avpui.exe (C:\Windows\SysWOW64\rundll32.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (explorer.exe ->) (Intel Corporation - pGFX -> ) C:\Windows\System32\igfxTray.exe (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe (Lenovo Information Products (Shenzhen) Co.,Ltd -> Lenovo Group Limited) C:\Program Files (x86)\Lenovo\PowerMgr\SCHTASK.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe (Piriform Software Ltd -> Piriform Software Ltd) D:\Programy\CCleaner\CCleaner64.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Brother Industries, Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Browny02\BrYNSvc.exe (services.exe ->) (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (services.exe ->) (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (services.exe ->) (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (services.exe ->) (Intel(R) Corporation) [Brak podpisu cyfrowego] C:\Program Files\Intel\iCLS Client\HeciServer.exe (services.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.2\avp.exe (services.exe ->) (Lenovo -> ) C:\Program Files (x86)\Lenovo\PCM3.0Agent\SCCM_Agent.exe (services.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\PCMAgent\Server.exe (services.exe ->) (Lenovo Information Products (Shenzhen) Co.,Ltd -> Lenovo) C:\Program Files (x86)\Lenovo\PowerMgr\PWMDBSVC.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (taskeng.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (taskeng.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM-x32\...\Run: [Power Manager Startup Utility] => C:\Program Files (x86)\Lenovo\PowerMgr\DPMHost.exe [27496 2014-03-05] (Lenovo Information Products (Shenzhen) Co.,Ltd -> ) HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [145344 2019-07-26] (Brother Industries, Ltd. -> Brother Industries, Ltd.) HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3146752 2021-12-10] (Brother Industries, Ltd.) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [BCSSync] => D:\Programy\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation -> Microsoft Corporation) HKLM-x32\...\Run: [BrHelp] => C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe [2009088 2013-01-18] (Brother Industries, Ltd.) [Brak podpisu cyfrowego] HKU\S-1-5-21-1811663747-779851345-1508571368-1001\...\Run: [CCleaner Smart Cleaning] => D:\Programy\CCleaner\CCleaner64.exe [38274576 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd) HKLM\...\Print\Monitors\Canon BJ Language Monitor MP250 series: C:\Windows\system32\CNMLM9W.DLL [336896 2010-04-24] (CANON INC.) [Brak podpisu cyfrowego] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\104.0.5112.102\Installer\chrmstp.exe [2022-08-23] (Google LLC -> Google LLC) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader 2015\Esl\AiodLite.dll [2020-04-25] (Adobe Systems, Incorporated -> Adobe Systems, Inc.) ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {15E290EA-C957-4FE0-9E10-3000DB089C54} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [16832 2015-08-17] (LENOVO -> Lenovo) Task: {1EA89489-DAD0-448A-8546-F06606F7D7DB} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13662424 2013-12-17] (Realtek Semiconductor Corp -> Realtek Semiconductor) Task: {26DCC674-1FD6-4C47-908F-EEEFEB3DFDD5} - System32\Tasks\RtHDVBg_LENOVO_MICPKEY => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1368792 2013-11-13] (Realtek Semiconductor Corp -> Realtek Semiconductor) Task: {430DFB4E-4C2B-4A55-8270-419EDCD1AEFC} - System32\Tasks\Mozilla\Firefox Background Update E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\E7CF176E110C211B\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {6570995C-6575-4374-9180-623F3F4EDBA7} - System32\Tasks\CCleanerSkipUAC - User => D:\Programy\CCleaner\CCleaner.exe [31990800 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd) Task: {73CAC506-225E-4A55-80A1-9DB5ADBDBF12} - System32\Tasks\CCleanerSkipUAC - Admin => D:\Programy\CCleaner\CCleaner.exe [31990800 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd) Task: {7E553C45-AC1F-4CE6-85E9-5AEA31304D46} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\Windows\system32\rundll32.exe C:\Windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)" Task: {9474EE39-FB34-4E09-9CF9-E089DB35E8D3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-05-30] (Google Inc -> Google Inc.) Task: {9F3BF8A4-7803-4510-AF72-BF41BF35047E} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe do-task "E7CF176E110C211B" Task: {B24F9F82-8B24-42B8-85B9-87BFE8E7DAB2} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.) Task: {C657E3FB-5698-4707-8B07-7208508550B0} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [16832 2015-07-01] (LENOVO -> Lenovo) Task: {CDF7A961-264D-42A3-9B1D-2A0E7FF532A8} - System32\Tasks\Microsoft\Internet Explorer\Usuń starsze wersje programu Internet Explorer => C:\Windows\SYSTEM32\ie4uinit.EXE [728064 2018-10-12] (Microsoft Windows -> Microsoft Corporation) Task: {D8F4023A-09D5-479D-AA20-E656B9ECD0C8} - System32\Tasks\PMTask => C:\Program Files (x86)\Lenovo\PowerMgr\PwmIdTsv.exe [306024 2014-03-05] (Lenovo Information Products (Shenzhen) Co.,Ltd -> Lenovo Group Limited) Task: {E542D1BB-D1FA-489B-AA40-5C8E090A3F56} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-05-30] (Google Inc -> Google Inc.) Task: {E8C318CE-C38F-4AD3-B3B6-A8CE161B796D} - System32\Tasks\CCleaner Update => D:\Programy\CCleaner\CCUpdate.exe [684976 2022-08-12] (Piriform Software Ltd -> Piriform) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1 Tcpip\..\Interfaces\{6FAAF571-28E2-402B-9AB7-15BC98614616}: [DhcpNameServer] 192.168.1.1 192.168.1.1 FireFox: ======== FF DefaultProfile: 7tco9b5n.default FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\7tco9b5n.default [2022-08-26] FF Homepage: Mozilla\Firefox\Profiles\7tco9b5n.default -> hxxps://www.google.pl/webhp?hl=pl FF Notifications: Mozilla\Firefox\Profiles\7tco9b5n.default -> hxxps://allani.pl FF Extension: (Bloker reklam AdGuard) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\7tco9b5n.default\Extensions\adguardadblocker@adguard.com.xpi [2022-08-25] FF Extension: (AdBlock — najlepszy bloker reklam) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\7tco9b5n.default\Extensions\jid1-NIfFY2CA8fy1tg@jetpack.xpi [2022-08-18] FF Extension: (Google Translator for Firefox) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\7tco9b5n.default\Extensions\translator@zoli.bod.xpi [2020-10-23] FF Extension: (Pastel) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\7tco9b5n.default\Extensions\{03f1cf98-eaea-421b-8525-535fc377cbe8}.xpi [2022-08-23] FF Extension: (Youtube Download) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\7tco9b5n.default\Extensions\{9fd0e085-1545-13de-a831-ab9a05dcf253}.xpi [2020-02-19] FF Extension: (PASTEL COMA) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\7tco9b5n.default\Extensions\{b74cbc01-3781-4d79-bc60-a165a77ee791}.xpi [2021-06-07] FF Extension: (Adblock Plus - darmowy adblocker) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\7tco9b5n.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2022-07-06] FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_293.dll [2019-11-14] (Adobe Inc. -> ) FF Plugin: @java.com/DTPlugin,version=11.341.2 -> C:\Program Files\Java\jre1.8.0_341\bin\dtplugin\npDeployJava1.dll [2022-07-22] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.341.2 -> C:\Program Files\Java\jre1.8.0_341\bin\plugin2\npjp2.dll [2022-07-22] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-03-12] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-03-12] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> D:\Programy\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> D:\Programy\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader 2015\Reader\AIR\nppdf32.dll [2020-07-29] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-1811663747-779851345-1508571368-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\User\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-11-15] (Unity Technologies SF -> Unity Technologies ApS) FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2021-08-06] <==== UWAGA (Linkuje do pliku *.cfg) FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2021-08-06] <==== UWAGA Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default [2022-08-26] CHR StartupUrls: Default -> "hxxps://www.google.pl/" CHR Extension: (Bloker reklam AdGuard) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgnkhhnnamicmpeenaelnjfhikgbkllg [2022-08-26] CHR Extension: (Adblock Plus - darmowy adblocker) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2022-08-16] CHR Extension: (Google Search) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-07] CHR Extension: (Dokumenty Google offline) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-08-16] CHR Extension: (AdBlock — najlepszy bloker reklam) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-08-26] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-03-16] CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] Opera: ======= OPR Profile: C:\Users\User\AppData\Roaming\Opera Software\Opera Stable [2022-08-26] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.) R2 AVP21.2; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.2\avp.exe [381928 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [321536 2021-12-06] (Brother Industries, Ltd.) [Brak podpisu cyfrowego] R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [731648 2013-02-13] (Intel(R) Corporation) [Brak podpisu cyfrowego] S3 klvssbridge64_21.2; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.2\x64\vssbridge64.exe [467352 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab) R2 PCM3.0 for SCCM Agent; C:\Program Files (x86)\Lenovo\PCM3.0Agent\SCCM_Agent.exe [571712 2014-03-04] (Lenovo -> ) R2 PCMAgent; C:\Program Files (x86)\Lenovo\PCMAgent\Server.exe [902952 2014-12-09] (Lenovo -> Lenovo) R3 Power Manager DBC Service; C:\Program Files (x86)\Lenovo\PowerMgr\PWMDBSVC.EXE [63848 2014-03-05] (Lenovo Information Products (Shenzhen) Co.,Ltd -> Lenovo) S3 PwmEWSvc; C:\Program Files (x86)\Lenovo\PowerMgr\PWMEWSVC.EXE [186728 2014-03-05] (Lenovo Information Products (Shenzhen) Co.,Ltd -> Lenovo Group Limited) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation) ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [251608 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab) R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [660280 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [110392 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [212280 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [127288 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klflt; C:\Windows\System32\DRIVERS\klflt.sys [523576 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klgse; C:\Windows\System32\DRIVERS\klgse.sys [659768 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [1341232 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [1025336 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klim6; C:\Windows\System32\DRIVERS\klim6.sys [95544 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [113464 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [113464 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [85288 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klwfp; C:\Windows\System32\DRIVERS\klwfp.sys [153400 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [250168 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [300856 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab) S3 mtkmbim; C:\Windows\System32\DRIVERS\mtkmbim7_x64.sys [208896 2012-12-13] (Microsoft Windows Hardware Compatibility Publisher -> MediaTek Inc.) R1 NetWorkLocker; C:\Windows\syswow64\drivers\NetworkLocker_x64.sys [20392 2014-12-09] (Lenovo -> ) S3 usbohci; C:\Windows\system32\drivers\usbohci.sys [25600 2013-09-04] (Microsoft Corporation) [Brak podpisu cyfrowego] S3 usbuhci; C:\Windows\system32\drivers\usbuhci.sys [30720 2013-09-04] (Microsoft Corporation) [Brak podpisu cyfrowego] S3 wdf_usb; C:\Windows\System32\DRIVERS\usb2ser.sys [81408 2014-03-04] (Microsoft Windows Hardware Compatibility Publisher -> MediaTek Inc.) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (Wszystkie) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2022-08-26 21:19 - 2022-08-26 21:19 - 000015986 _____ C:\Windows\ntbtlog.txt 2022-08-26 17:27 - 2022-08-26 17:33 - 000000000 ____D C:\AdwCleaner 2022-08-23 16:21 - 2022-08-25 15:39 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox 2022-08-23 16:06 - 2022-08-23 16:11 - 000003860 _____ C:\Windows\system32\Tasks\CCleaner Update 2022-08-11 08:17 - 2022-08-17 07:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2022-08-11 08:17 - 2022-08-11 08:17 - 000001317 _____ C:\Users\Public\Desktop\Skype.lnk ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2022-08-26 21:24 - 2019-01-16 10:12 - 000000000 ____D C:\FRST 2022-08-26 21:21 - 2015-02-14 19:01 - 000000000 ____D C:\Program Files (x86)\Google 2022-08-26 21:20 - 2015-02-15 14:18 - 000000000 __SHD C:\Users\User\IntelGraphicsProfiles 2022-08-26 21:19 - 2015-07-31 19:24 - 000065536 _____ C:\Windows\system32\Ikeext.etl 2022-08-26 21:19 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2022-08-26 17:35 - 2022-02-11 15:07 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2022-08-26 17:34 - 2016-11-18 11:55 - 000000000 ____D C:\Users\User\AppData\LocalLow\Mozilla 2022-08-26 17:15 - 2009-07-14 06:45 - 000031536 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2022-08-26 17:15 - 2009-07-14 06:45 - 000031536 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2022-08-26 17:04 - 2014-12-09 06:53 - 000000000 ____D C:\Windows\system32\Tasks\Lenovo 2022-08-26 09:06 - 2015-05-15 15:58 - 000007887 _____ C:\Windows\BRRBCOM.INI 2022-08-25 19:00 - 2015-04-21 17:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2022-08-25 18:56 - 2009-07-14 06:45 - 000347208 _____ C:\Windows\system32\FNTCACHE.DAT 2022-08-25 17:54 - 2015-04-21 13:49 - 000090456 _____ C:\Users\User\AppData\Local\GDIPFONTCACHEV1.DAT 2022-08-25 15:39 - 2015-02-14 19:02 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2022-08-23 17:08 - 2021-10-13 10:49 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla 2022-08-23 16:22 - 2017-01-18 15:05 - 000002200 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2022-08-23 16:22 - 2015-05-30 13:03 - 000002241 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-08-23 16:07 - 2015-05-30 11:17 - 000000000 ____D C:\Users\User\AppData\Local\CrashDumps 2022-08-21 16:59 - 2014-12-09 06:13 - 000741136 _____ C:\Windows\system32\perfh015.dat 2022-08-21 16:59 - 2014-12-09 06:13 - 000156208 _____ C:\Windows\system32\perfc015.dat 2022-08-21 16:59 - 2009-07-14 07:13 - 001672612 _____ C:\Windows\system32\PerfStringBackup.INI 2022-08-21 16:59 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) LastRegBack: 2022-08-21 13:38 ==================== Koniec FRST.txt ========================