Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 21-08-2023 Uruchomiony przez Oskar (administrator) OSKAR (Hewlett-Packard HP 250 G3 Notebook PC) (22-08-2023 21:57:30) Uruchomiony z C:\Users\Oskar\Downloads\FRST64(1).exe Załadowane profile: Oskar & Ansgar Platforma: Microsoft Windows 8.1 z usługą Bing (Update) (X64) Język: Polski (Polska) Domyślna przeglądarka: Edge Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (explorer.exe ->) (Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\hkcmd.exe (explorer.exe ->) (Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxpers.exe (explorer.exe ->) (Lexmark International, Inc. -> ) C:\Program Files (x86)\Lexmark 2400 Series\lxcrmon.exe (explorer.exe ->) (Lexmark International, Inc. -> Lexmark International Inc.) C:\Program Files (x86)\Lexmark 2400 Series\ezprint.exe (explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\assistant\browser_assistant.exe <2> (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Andrea Electronics -> Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe (services.exe ->) (Bluestack Systems, Inc. -> BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe (services.exe ->) (Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe (services.exe ->) (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe (services.exe ->) (Huawei Technologies Co., Ltd. -> ) C:\ProgramData\MobileBrServ\mbbService.exe (services.exe ->) (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (services.exe ->) (Lexmark International, Inc. -> ) C:\Windows\System32\lxcrcoms.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe (services.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (svchost.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (svchost.exe ->) (CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe (svchost.exe ->) (Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxsrvc.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7510896 2014-01-14] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2803440 2013-12-13] (Synaptics Incorporated -> Synaptics Incorporated) HKLM\...\Run: [lxcrmon.exe] => C:\Program Files (x86)\Lexmark 2400 Series\lxcrmon.exe [291496 2009-05-01] (Lexmark International, Inc. -> ) HKLM\...\Run: [EzPrint] => C:\Program Files (x86)\Lexmark 2400 Series\ezprint.exe [82600 2009-05-01] (Lexmark International, Inc. -> Lexmark International Inc.) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc. -> Apple Inc.) HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2015-12-09] (Apple Inc.) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [Opera Browser Assistant] => C:\Program Files (x86)\Opera\assistant\browser_assistant.exe [4094672 2021-08-25] (Opera Software AS -> Opera Software) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Ograniczenia <==== UWAGA HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Ograniczenia <==== UWAGA HKU\S-1-5-21-3486298909-2668279709-3669421771-1001\...\Run: [NokiaSuite.exe] => C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe [1092448 2014-11-19] (Nokia -> Nokia) HKU\S-1-5-21-3486298909-2668279709-3669421771-1001\...\Run: [Sony PC Companion] => C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [457088 2015-09-23] (Sony Mobile Communications AB -> Sony) [Brak podpisu cyfrowego] HKU\S-1-5-21-3486298909-2668279709-3669421771-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4468056 2015-06-18] (Disc Soft Ltd -> Disc Soft Ltd) HKU\S-1-5-21-3486298909-2668279709-3669421771-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [41584544 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) HKU\S-1-5-21-3486298909-2668279709-3669421771-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [112191904 2021-12-06] (Skype Software Sarl -> Skype Technologies S.A.) HKU\S-1-5-21-3486298909-2668279709-3669421771-1001\...\Run: [MicrosoftEdgeAutoLaunch_3CA2D981C7A8A76DF66CC681714E3FC8] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4188608 2023-06-10] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-3486298909-2668279709-3669421771-1001\...\MountPoints2: {714a2876-22ee-11e5-826e-c0389687e08c} - "F:\AutoRun.exe" HKLM\...\Windows x64\Print Processors\Lexmark 2400 Series Print Processor: C:\Windows\System32\spool\prtprocs\x64\lxcrpp6c.dll [144896 2006-11-27] (Microsoft Windows Hardware Compatibility Publisher -> ) HKLM\...\Print\Monitors\2400 Series Port: C:\Windows\system32\lxcrlmpm.dll [487424 2006-11-06] (Microsoft Windows Hardware Compatibility Publisher -> ) HKLM\...\Print\Monitors\HP Universal Port Monitor: C:\Windows\system32\hpbprtmon.dll [404992 2013-08-10] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard) HKLM\Software\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\System32\Rundll32.exe C:\Windows\System32\mscories.dll,Install HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\109.0.5414.149\Installer\chrmstp.exe [2023-06-15] (Google LLC -> Google LLC) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install HKLM\Software\...\Authentication\Credential Providers: [{538C240D-3DEE-4032-AB4C-08A3A6EB0861}] -> C:\Program Files (x86)\CyberLink\YouCam\CLCredProv\x64\CLCredProv.dll [2014-03-07] (CyberLink Corp. -> CyberLink) ==================== Zaplanowane zadania (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {2265755D-A27D-478C-9228-00894FBDC793} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564152 2023-04-03] (Adobe Inc. -> Adobe Inc.) Task: {93927A0E-0A3C-4757-BB2C-345F5D1DE669} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-oskaruus99@outlook.com => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {8E454B48-AAD1-4AA1-8626-31CC9C650580} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {E3B253B7-F021-4AA3-865C-17FFEA5536E8} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "94d55e45-edba-4a08-81b3-cfde18070c16" --version "6.15.10623" --silent Task: {CE92466D-B4D1-4F2A-B40B-5FD7312638D8} - System32\Tasks\CCleanerSkipUAC - Oskar => C:\Program Files\CCleaner\CCleaner.exe [34687904 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {1B32F904-F52F-4E5C-B9A1-F1D075566B2E} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [339008 2013-03-12] (CyberLink Corp. -> CyberLink Corp.) Task: {BDA32A71-0EB8-4E52-A19D-C5EA03F06DB6} - System32\Tasks\GenericSettingsHandler\Windows-Credentials\RetrySyncTask_for_S-1-5-21-3486298909-2668279709-3669421771-1001 => {F063A606-6748-4B89-82A0-3D19D94CE8D3} C:\Windows\System32\VaultRoaming.dll [92672 2014-10-29] (Microsoft Windows -> Microsoft) Task: {553BAA15-02BA-4B53-98C1-A2E741F878C2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-04-19] (Google Inc -> Google Inc.) Task: {6DD35B80-A8B0-4032-A49D-746C0CAE3F9F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-04-19] (Google Inc -> Google Inc.) Task: {838CA121-6006-4734-BF66-6E813AC17F2E} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [25128 2017-11-17] (HP Inc. -> ) Task: {7EBE6ED4-B426-41E1-BE1A-B1F434E1FBF4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1506648 2020-08-20] (HP Inc. -> HP Inc.) Task: {BF01F496-BECD-4118-97FD-046BA6287B3A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [136304 2021-03-30] (HP Inc. -> HP Inc.) Task: {0080DC45-1C8C-4BF8-AA86-8F1305E02506} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2020-08-07] (HP Inc. -> HP Inc.) Task: {CCD651F6-FCE4-4038-B5F4-26A015AB2169} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2020-08-07] (HP Inc. -> HP Inc.) Task: {075EDFD6-2DFE-483A-A253-1DDBA9A12B14} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - resources updates => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2020-08-07] (HP Inc. -> HP Inc.) Task: {72C6378B-0E7E-4D3F-99FD-146AE9ECABB1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1506648 2020-08-20] (HP Inc. -> HP Inc.) Task: {7BD9BCDC-24E2-46C5-8354-9087A400C2E3} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis Install => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1506648 2020-08-20] (HP Inc. -> HP Inc.) Task: {573CC29D-5F29-439D-9F4F-D5213E10B667} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [326320 2021-06-16] (HP Inc. -> HP Inc.) Task: {6D5147C6-1808-490B-8B03-9A8C55E9485D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1136984 2020-09-17] (HP Inc. -> HP Inc.) Task: {8C96E440-5D08-404B-A21A-3A1DA63FC24A} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-3486298909-2668279709-3669421771-1001 => C:\Users\Oskar\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe [257224 2016-08-18] (Microsoft Corporation -> Microsoft Corporation) Task: {41FEC2D2-9BAF-47A8-A813-8BDD147E3036} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1} Task: {8747BAA5-FA28-41E4-A89E-D11BA12AC2EF} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [686496 2023-08-04] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {5C32D3C5-C237-4D55-95F0-16212A1198D7} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [724384 2023-08-04] (Mozilla Corporation -> Mozilla Foundation) Task: {94CCD6B0-621B-49DD-94DB-6E77A69E6C97} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2803440 2013-12-13] (Synaptics Incorporated -> Synaptics Incorporated) Task: {6E78CA9B-D8CD-481B-B44B-F38DF94CA419} - System32\Tasks\YCMServiceAgent => C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [267224 2014-03-07] (CyberLink Corp. -> CyberLink Corp.) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe Task: C:\Windows\Tasks\HPCeeScheduleForOskar.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1 Tcpip\..\Interfaces\{5F378D1A-A266-4809-A59D-47DF451B0FC5}: [DhcpNameServer] 192.168.8.1 192.168.8.1 Tcpip\..\Interfaces\{AB2CED5A-6AAC-41CE-86EB-9E636472CAAB}: [DhcpNameServer] 192.168.1.1 192.168.1.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\Oskar\AppData\Local\Microsoft\Edge\User Data\Default [2023-08-22] Edge Extension: (Edge relevant text changes) - C:\Users\Oskar\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-08-09] FireFox: ======== FF DefaultProfile: s9z8vrye.default FF ProfilePath: C:\Users\Oskar\AppData\Roaming\Mozilla\Firefox\Profiles\s9z8vrye.default [2023-08-22] FF Notifications: Mozilla\Firefox\Profiles\s9z8vrye.default -> hxxp://poczta.onet.pl; hxxps://www.tanikredyt.pl; hxxps://ktomalek.pl FF Extension: (ADB Helper) - C:\Users\Oskar\AppData\Roaming\Mozilla\Firefox\Profiles\s9z8vrye.default\Extensions\adbhelper@mozilla.org.xpi [2018-08-08] [Przestarzałe] FF Extension: (Valence) - C:\Users\Oskar\AppData\Roaming\Mozilla\Firefox\Profiles\s9z8vrye.default\Extensions\fxdevtools-adapters@mozilla.org [2017-08-03] [Przestarzałe] FF Extension: (Video DownloadHelper) - C:\Users\Oskar\AppData\Roaming\Mozilla\Firefox\Profiles\s9z8vrye.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2023-07-13] FF Extension: (YouTube Video and Audio Downloader (Dev Edt.)) - C:\Users\Oskar\AppData\Roaming\Mozilla\Firefox\Profiles\s9z8vrye.default\Extensions\{f73df109-8fb4-453e-8373-f59e61ca4da3}.xpi [2022-02-10] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1224194.dll [2016-02-19] (Adobe Systems, Inc.) [Brak podpisu cyfrowego] FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @nokia.com/EnablerPlugin -> C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll [2014-11-19] (Nokia -> ) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2023-08-01] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR Profile: C:\Users\Oskar\AppData\Local\Google\Chrome\User Data\Default [2023-08-22] CHR Notifications: Default -> hxxps://ktomalek.pl CHR Extension: (Tampermonkey) - C:\Users\Oskar\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2023-06-02] CHR Extension: (Dokumenty Google offline) - C:\Users\Oskar\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-06-02] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Oskar\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-03-11] CHR Extension: (Profile Picture Viewer) - C:\Users\Oskar\AppData\Local\Google\Chrome\User Data\Default\Extensions\olhdholihhioakdjhfhligfehfjjfeoc [2022-11-13] Opera: ======= OPR Profile: C:\Users\Oskar\AppData\Roaming\Opera Software\Opera Stable [2023-08-22] OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding} OPR Extension: (Rich Hints Agent) - C:\Users\Oskar\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2022-11-13] OPR Extension: (Amazon Assistant Promotion) - C:\Users\Oskar\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-10-30] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-04-03] (Adobe Inc. -> Adobe Inc.) R2 AERTFilters; C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE [98208 2009-11-18] (Andrea Electronics -> Andrea Electronics Corporation) S3 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [433784 2015-06-16] (Bluestack Systems, Inc. -> BlueStack Systems, Inc.) S3 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [413304 2015-06-16] (Bluestack Systems, Inc. -> BlueStack Systems, Inc.) R2 BstHdUpdaterSvc; C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [831096 2015-07-21] (Bluestack Systems, Inc. -> BlueStack Systems, Inc.) S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1268568 2015-06-18] (Disc Soft Ltd -> Disc Soft Ltd) R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [379736 2020-08-20] (HP Inc. -> HP Inc.) R2 HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [1039160 2013-10-08] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) R2 Huawei E3372; C:\ProgramData\MobileBrServ\mbbservice.exe [240720 2014-03-07] (Huawei Technologies Co., Ltd. -> ) R2 lxcr_device; C:\Windows\system32\lxcrcoms.exe [566192 2006-12-11] (Lexmark International, Inc. -> ) R2 lxcr_device; C:\Windows\SysWOW64\lxcrcoms.exe [537520 2006-12-11] (Lexmark International, Inc. -> ) S3 Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [155520 2015-06-10] (Sony Mobile Communications AB -> Avanquest Software) [Brak podpisu cyfrowego] S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation) U2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [112144 2021-05-18] (Microsoft Corporation -> Microsoft Corporation) ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [145528 2015-06-16] (Bluestack Systems, Inc. -> BlueStack Systems) R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2015-09-18] (Disc Soft Ltd -> Disc Soft Ltd) S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [80160 2015-02-13] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, Inc.) R3 MpKsl0c387e45; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{6B7D234B-1E9A-4463-9D94-3A777E32C8DD}\MpKslDrv.sys [54528 2023-08-17] (Microsoft Windows -> Microsoft Corporation) S3 nmwcd; C:\Windows\system32\drivers\ccdcmbx64.sys [19968 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia) S3 nmwcdc; C:\Windows\system32\drivers\ccdcmbox64.sys [27136 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia) S3 pccsmcfd; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [26112 2012-10-17] (Microsoft Windows Hardware Compatibility Publisher -> Nokia) S3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [291544 2014-01-04] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.) R3 rtbth; C:\Windows\System32\drivers\rtbth.sys [1204424 2013-12-25] (Mediatek Inc. -> Ralink Technology, Corp.) S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [9216 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia) S3 UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [9216 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation) S3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [31840 2016-03-24] (Hewlett-Packard Company -> HP) R3 WirelessButtonDriver64; C:\Windows\system32\DRIVERS\WirelessButtonDriver64.sys [31840 2016-03-24] (Hewlett-Packard Company -> HP) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-08-22 20:14 - 2023-08-22 20:14 - 000030846 _____ C:\cc_20230822_201404.reg 2023-08-22 14:44 - 2023-08-22 14:44 - 000001419 _____ C:\Users\Oskar\Downloads\MBAM_raport.txt 2023-08-22 14:09 - 2023-08-22 14:10 - 000000000 ____D C:\Program Files\Malwarebytes 2023-08-22 14:03 - 2023-08-22 14:03 - 000000000 ____D C:\Users\Oskar\Downloads\FRST-OlderVersion 2023-08-11 20:26 - 2023-08-11 20:26 - 000000000 ____D C:\Users\Oskar\AppData\Roaming\Other 2023-08-11 20:25 - 2023-08-11 20:25 - 000000000 ____D C:\Users\Oskar\AppData\Roaming\AMS Software 2023-08-09 20:08 - 2023-08-09 20:08 - 007208327 _____ C:\Users\Oskar\Downloads\download-1.zip 2023-08-07 22:56 - 2023-08-07 22:56 - 000009801 _____ C:\Users\Oskar\AppData\Local\recently-used.xbel 2023-08-02 09:47 - 2023-08-08 09:51 - 000000000 ____D C:\Program Files\Mozilla Firefox ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-08-22 21:58 - 2016-08-05 12:02 - 000024305 _____ C:\Users\Oskar\Downloads\FRST.txt 2023-08-22 21:58 - 2016-08-05 12:01 - 000000000 ____D C:\FRST 2023-08-22 21:56 - 2015-07-13 14:26 - 007195136 ___SH C:\Users\Oskar\Downloads\Thumbs.db 2023-08-22 21:55 - 2016-08-05 12:03 - 000042406 _____ C:\Users\Oskar\Downloads\Addition.txt 2023-08-22 20:50 - 2015-06-25 16:05 - 000003600 _____ C:\Windows\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3486298909-2668279709-3669421771-1001 2023-08-22 20:20 - 2016-03-23 16:27 - 000000000 ____D C:\ProgramData\Malwarebytes 2023-08-22 20:16 - 2016-07-15 13:13 - 000000000 ____D C:\Program Files\CCleaner 2023-08-22 20:15 - 2022-11-24 22:17 - 000003326 _____ C:\Windows\system32\Tasks\CCleanerCrashReporting 2023-08-22 20:15 - 2022-09-30 12:19 - 000000760 _____ C:\Windows\Tasks\CCleanerCrashReporting.job 2023-08-22 20:15 - 2022-04-15 02:52 - 000003870 _____ C:\Windows\system32\Tasks\CCleaner Update 2023-08-22 20:15 - 2015-06-25 20:21 - 001401344 ___SH C:\Users\Oskar\Desktop\Thumbs.db 2023-08-22 20:12 - 2015-07-02 20:30 - 000000000 ____D C:\Users\Oskar\AppData\Roaming\Microsoft\Office 2023-08-22 20:11 - 2021-09-06 21:25 - 000000000 ____D C:\Users\Oskar\AppData\Local\CrashDumps 2023-08-22 19:56 - 2015-06-25 16:17 - 000003972 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{298FFAE4-EFED-4514-80D0-91C6901F527E} 2023-08-22 19:02 - 2015-06-25 16:04 - 000000000 ____D C:\Users\Oskar\Documents\Youcam 2023-08-22 18:26 - 2017-04-27 17:03 - 000000000 ____D C:\Program Files (x86)\Google 2023-08-22 18:22 - 2022-02-11 18:05 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2023-08-22 14:48 - 2015-06-25 17:07 - 000000000 ____D C:\Users\Oskar\AppData\Local\Adobe 2023-08-22 14:03 - 2021-09-07 00:34 - 002385408 _____ (Farbar) C:\Users\Oskar\Downloads\FRST64(1).exe 2023-08-21 21:44 - 2016-05-06 22:20 - 000000000 ____D C:\Users\Oskar\Documents\FIFA 14 2023-08-20 16:29 - 2015-06-25 16:04 - 000000000 __RDO C:\Users\Oskar\OneDrive 2023-08-20 13:17 - 2015-07-02 20:30 - 000000000 ____D C:\Users\Oskar\AppData\Roaming\Microsoft\Word 2023-08-09 14:48 - 2022-10-13 12:30 - 000002086 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader.lnk 2023-08-08 23:38 - 2015-06-25 15:56 - 000000000 ____D C:\Users\Oskar 2023-08-08 16:55 - 2017-04-15 18:53 - 000000000 ____D C:\Users\Oskar\Downloads\Arkadiusz Głowacki_pliki 2023-08-08 11:02 - 2015-06-29 22:00 - 000000000 ____D C:\Windows\system32\MRT 2023-08-08 10:28 - 2015-06-29 22:00 - 173351160 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2023-08-08 09:52 - 2013-08-22 16:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2023-08-08 09:51 - 2015-06-25 16:19 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2023-08-07 23:06 - 2016-08-22 19:04 - 000000000 ____D C:\Users\Oskar\.gimp-2.8 2023-08-07 22:56 - 2016-08-22 19:11 - 000000000 ____D C:\Users\Oskar\AppData\Local\gtk-2.0 2023-08-04 09:29 - 2021-10-09 17:38 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla 2023-08-02 10:17 - 2018-04-19 15:01 - 000003778 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA 2023-08-02 10:17 - 2018-04-19 15:01 - 000003650 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore 2023-07-27 03:59 - 2015-07-26 17:24 - 000918960 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe ==================== Pliki w katalogu głównym wybranych folderów ======== 2016-03-16 17:01 - 2022-01-19 23:32 - 000009216 _____ () C:\Users\Oskar\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2022-04-15 10:00 - 2022-04-15 17:44 - 000000205 _____ () C:\Users\Oskar\AppData\Local\oobelibMkey.log 2023-08-07 22:56 - 2023-08-07 22:56 - 000009801 _____ () C:\Users\Oskar\AppData\Local\recently-used.xbel 2016-07-16 22:42 - 2016-07-16 22:42 - 000007597 _____ () C:\Users\Oskar\AppData\Local\Resmon.ResmonCfg 2021-01-04 21:19 - 2021-01-04 21:19 - 000000000 _____ () C:\Users\Oskar\AppData\Local\{3EF1A8D0-0B93-4725-B8B0-15CACF23386D} 2020-04-02 12:53 - 2020-04-02 12:53 - 000000000 _____ () C:\Users\Oskar\AppData\Local\{6796E6BB-ACBA-438B-B2DB-0E1933C3FDEC} ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)