Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 15-06-2023 Uruchomiony przez Kasia (administrator) LAPTOP-UUDVTVH9 (LENOVO 80K6) (16-06-2023 23:06:34) Uruchomiony z C:\Users\Kasia\Downloads\FRST-OlderVersion\FRST64.exe Załadowane profile: Kasia Platforma: Microsoft Windows 10 Home Wersja 22H2 19045.3086 (X64) Język: Polski (Polska) Domyślna przeglądarka: Edge Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (atiesrxx.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe (C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe ->) (Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantage-(VantageCoreAddin).exe (C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\iCloudServices.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Microsoft Corporation) C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\WebView2\msedgewebview2.exe <7> (C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe <2> (C:\Users\Kasia\AppData\Local\Programs\Opera\launcher.exe ->) (Opera Norway AS -> Opera Software) C:\Users\Kasia\AppData\Local\Programs\Opera\assistant\assistant_installer.exe <2> (C:\Windows\SoftwareDistribution\Download\Install\AM_Delta_Patch_1.391.1646.0.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\MpSigStub.exe (C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TextInputHost.exe ->) (Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe (C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TextInputHost.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe (C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TextInputHost.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (explorer.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc) C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\iCloudCKKS.exe (explorer.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\iCloudPhotos.exe (explorer.exe ->) (Discord Inc. -> Discord Inc.) C:\Users\Kasia\AppData\Local\Discord\app-0.0.305\Discord.exe <2> (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <31> (explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe (explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <3> (explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\QUEENCREEK\esrv.exe <4> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wscript.exe (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe (services.exe ->) (Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe (services.exe ->) (Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (services.exe ->) (Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (services.exe ->) (Intel Corporation-Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (services.exe ->) (Intel(R) Software Development Products -> ) C:\Program Files\Intel Driver Update Utility\SUR\SurSvc.exe (services.exe ->) (Intel(R) Software Development Products -> Intel(R) Corporation) C:\Program Files (x86)\Common Files\Intel\RSDCM\bin\win32\RealSenseDCM.exe (services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe (services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe (services.exe ->) (Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\NisSrv.exe (services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe (Sun Microsystems, Inc. -> Sun Microsystems, Inc.) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (svchost.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\APSDaemon.exe (svchost.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\iCloudServices.exe (svchost.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple, Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.1.108.0_x64__nzyj5cx40ttqa\iCloud\secd.exe (svchost.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (svchost.exe ->) (Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (svchost.exe ->) (LENOVO -> Lenovo) C:\Program Files (x86)\Lenovo\REACHit\REACHitAgent.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe <2> (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21480.0_x64__8wekyb3d8bbwe\HxTsr.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\Kasia\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (svchost.exe ->) (Opera Norway AS -> Opera Software) C:\Users\Kasia\AppData\Local\Programs\Opera\launcher.exe (wuauclt.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\Install\AM_Delta_Patch_1.391.1646.0.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13876952 2015-05-20] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1393880 2015-04-28] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1393880 2015-04-28] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1393880 2015-04-28] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-06-24] (Intel Corporation - Rapid Storage Technology -> Intel Corporation) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3947704 2015-12-27] (Synaptics Incorporated -> Synaptics Incorporated) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [366944 2022-12-08] (Apple Inc. -> Apple Inc.) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-07-07] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [EaseUS EPM tray] => C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.8\bin\EpmNews.exe [2089056 2015-09-16] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [11327200 2023-06-13] (Dropbox, Inc -> Dropbox, Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [248552 2010-05-14] (Sun Microsystems, Inc. -> Sun Microsystems, Inc.) HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [318128 2016-11-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) HKU\S-1-5-21-235775072-929627425-4113765149-1001\...\Run: [Sony PC Companion] => C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [457088 2015-09-23] (Sony Mobile Communications AB -> Sony) [Brak podpisu cyfrowego] HKU\S-1-5-21-235775072-929627425-4113765149-1001\...\Run: [ChomikBox] => C:\Program Files (x86)\ChomikBox\ChomikBox.exe [3941376 2017-03-05] () [Brak podpisu cyfrowego] HKU\S-1-5-21-235775072-929627425-4113765149-1001\...\Run: [Plex Media Server] => C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe [2699344 2011-11-26] (Plex, Inc. -> Plex, Inc.) HKU\S-1-5-21-235775072-929627425-4113765149-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27832264 2017-10-06] (Skype Software Sarl -> Skype Technologies S.A.) HKU\S-1-5-21-235775072-929627425-4113765149-1001\...\Run: [TomTom MySports Connect.exe] => C:\Program Files (x86)\TomTom\MySportsConnect\TomTom MySports Connect.exe [638464 2018-09-03] (TomTom) [Brak podpisu cyfrowego] HKU\S-1-5-21-235775072-929627425-4113765149-1001\...\Run: [Discord] => C:\Users\Kasia\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.) HKU\S-1-5-21-235775072-929627425-4113765149-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [40454048 2023-05-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) HKU\S-1-5-21-235775072-929627425-4113765149-1001\...\Run: [Chromium] => "c:\users\kasia\appdata\local\chromium\application\chrome.exe" --auto-launch-at-startup --profile-directory="Default" --restore-last-session [1662976 2019-10-18] (The Chromium Authors) [Brak podpisu cyfrowego] HKU\S-1-5-21-235775072-929627425-4113765149-1001\...\Run: [GoogleChromeAutoLaunch_885FF892201E91CED25075EED4534BDF] => "C:\Users\Kasia\AppData\Local\chromium\Application\chrome.exe" --no-startup-window /prefetch:5 [1662976 2019-10-18] (The Chromium Authors) [Brak podpisu cyfrowego] HKU\S-1-5-21-235775072-929627425-4113765149-1001\...\Run: [com.squirrel.Teams.Teams] => C:\ProgramData\Kasia\Microsoft\Teams\Update.exe [2460864 2022-01-27] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKU\S-1-5-21-235775072-929627425-4113765149-1001\...\Run: [MicrosoftEdgeAutoLaunch_A79870606730BA64FE7C0152F4EB1332] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4113872 2023-06-08] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-235775072-929627425-4113765149-1001\...\Run: [Opera Browser Assistant] => C:\Users\Kasia\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3970456 2023-05-16] (Opera Norway AS -> Opera Software) HKLM\...\Windows x64\Print Processors\Canon iP2700 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDA4.DLL [30208 2012-03-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\114.0.5735.134\Installer\chrmstp.exe [2023-06-16] (Google LLC -> Google LLC) ==================== Zaplanowane zadania (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0BE8A1BB-752F-46EC-975E-3501ED27BB8D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-14] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {0F56D2BD-8C4C-4D2B-90F6-4CC6CDEAEF36} - System32\Tasks\Opera scheduled assistant Autoupdate 1596658507 => C:\Users\Kasia\AppData\Local\Programs\Opera\launcher.exe [2708376 2023-06-07] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Kasia\AppData\Local\Programs\Opera\assistant" $(Arg0) Task: {1AE5BF2B-E52F-45C6-8A32-BE3FFC10E5E0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-27] (Google Inc -> Google Inc.) Task: {3750A0BB-7F8C-4C32-87B4-EA128C2E12D2} - System32\Tasks\CCleanerSkipUAC - Kasia => C:\Program Files\CCleaner\CCleaner.exe [34264480 2023-05-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {43BA79CE-A425-4EA8-9C21-09CC06CB9164} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [157552 2023-06-16] (Microsoft Corporation -> Microsoft Corporation) Task: {466E90F0-993F-47A5-BE7F-CBED9574F8B6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-14] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {4970A1F6-0EBE-4C9F-8D26-6B9D784A8C66} - System32\Tasks\CyberLink\Photo Master Gadget startup => C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterWorker.exe backgroundagent (Brak pliku) Task: {529C210A-2D2F-41E3-BCFF-557DE444D533} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-14] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {586C24CB-91B9-4DE0-89E4-268CB0C7AFCB} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe [818008 2021-09-15] (Intel Corporation -> Intel(R) Corporation) Task: {5F73B2D8-C19C-4815-97DE-BEA2BFB758F7} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-05-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {634A8E79-0729-401A-9EBF-5F355436CCBA} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [16832 2015-07-08] (LENOVO -> Lenovo) Task: {6551D303-8F0D-435E-B829-F0C3D8C9DED3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-14] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {6ACB1BE2-D744-4FFE-A52A-433B42FF7174} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-27] (Google Inc -> Google Inc.) Task: {6FA0A6B1-41E3-4680-8307-CFC19DDAD6F3} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [680352 2023-06-12] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {775A3219-3597-4721-9090-EF05C4A66591} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.) Task: {7C0E53DE-5B8B-450B-9A68-D2E744453001} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => C:\WINDOWS\System32\Wscript.exe [170496 2021-10-20] (Microsoft Windows -> Microsoft Corporation) -> //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\task.vbs" Task: {806DE9DD-AB63-4BD9-BE3E-5FD44C4DB8C7} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [170456 2023-06-06] (Microsoft Corporation -> Microsoft Corporation) Task: {8291F05B-D243-496A-BE8F-C565994620F9} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26557376 2023-06-16] (Microsoft Corporation -> Microsoft Corporation) Task: {82999B27-FA0E-483F-AE6D-B002BA726E68} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [732064 2023-06-12] (Mozilla Corporation -> Mozilla Foundation) Task: {82B80964-2B0E-495D-BCBF-DC519908A29C} - System32\Tasks\Lenovo\Experience Improvement => "C:\Program Files\Lenovo\ExperienceImprovement\LenovoExperienceImprovement.exe" (Brak pliku) Task: {831CBD7A-9097-4189-9359-82A606492795} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask -> Brak pliku <==== UWAGA Task: {86571A97-6C0F-4F74-8406-ED0FF9B651C5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564152 2023-04-03] (Adobe Inc. -> Adobe Inc.) Task: {887EFA22-6C40-4B61-9B7C-1E287ED91930} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => C:\WINDOWS\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> start LenovoVantageService Task: {8C043820-9394-452B-AE92-A54B519D0B1B} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-05-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "6b0f3baf-fbc7-4d37-9f02-f4ee0d8b32c1" --version "6.12.10490" --silent Task: {9179782D-0170-4769-9D7C-5EDB326FFC81} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.) Task: {9B5B7BAF-6116-436C-8CA6-73E69D5EC836} - \Lenovo\ImController\TimeBasedEvents\abbf05de-9d76-4079-af27-9e942a967402 -> Brak pliku <==== UWAGA Task: {A83F9DEC-E4CC-4FA9-8006-611BC8184663} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [157552 2023-06-16] (Microsoft Corporation -> Microsoft Corporation) Task: {AA75FD8B-E25E-488A-AA49-BBA260F97BC4} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.) Task: {AC4AA166-C30D-4F4F-A296-44D752B15908} - System32\Tasks\Lenovo\REACHit Agent Update => C:\Program Files (x86)\Lenovo\REACHit\REACHitAgent.exe [676176 2016-05-18] (LENOVO -> Lenovo) Task: {B0DCCF5A-F34F-4860-A352-C57AD1E79369} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.) Task: {B3515330-0340-47A0-A629-B6AB9F995812} - \Lenovo\ImController\Lenovo iM Controller Monitor -> Brak pliku <==== UWAGA Task: {B37D423B-EC9E-4DB4-B427-498E14B73B6B} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.) Task: {BD24E1D9-5C1E-4A18-A4C1-7DA705D296E0} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.) Task: {C09C18BA-E124-4651-9D00-BE15E96E3D18} - System32\Tasks\Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.) Task: {C4629BCE-DF32-4853-99AE-47CBE77C370E} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [1741576 2016-03-17] (Intel(R) Software -> Intel Corporation) Task: {C5753659-35FB-415E-A121-BCD033DD61E9} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.) Task: {C97F1F39-CFF7-4FFD-A092-D74A192332AB} - \Lenovo\ImController\TimeBasedEvents\0d5f0a5f-81d1-486f-8383-b3ff2a8b8f9d -> Brak pliku <==== UWAGA Task: {CF34A432-4516-47BA-B021-6DD2914C9FAB} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> Brak pliku <==== UWAGA Task: {CF789E05-5BD3-463A-AAC1-1E0E4B8317FF} - \Lenovo\ImController\TimeBasedEvents\3a516bd2-66d6-428e-bd2a-9f0d98d00c1f -> Brak pliku <==== UWAGA Task: {D65E6227-4D76-400E-B06E-508A0CF82CE5} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26557376 2023-06-16] (Microsoft Corporation -> Microsoft Corporation) Task: {D8A677B5-9E90-4B61-B1A5-A6890EC631F9} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1} Task: {D9616BDB-864F-4BE7-B963-FC292DF624DC} - \Lenovo\ImController\TimeBasedEvents\091acfe8-984b-4a38-ae02-14eda650889d -> Brak pliku <==== UWAGA Task: {DC1DD58F-A7BE-485F-9BEB-02DF4551DA23} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.) Task: {F2AEEC0B-CEEB-44A9-905F-47A85A742303} - System32\Tasks\Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.) Task: {F2E49489-C1B3-46AA-B77F-FDE6C830207A} - System32\Tasks\Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.) Task: {F8C28DBB-E4CC-43CA-90D4-25BF7855F455} - System32\Tasks\Lenovo\REACHit Agent Startup => C:\Program Files (x86)\Lenovo\REACHit\REACHitAgent.exe [676176 2016-05-18] (LENOVO -> Lenovo) Task: {FE207B05-1EF6-4F3E-97E8-8BA3FAADAF1D} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [617096 2022-02-25] (Apple Inc. -> Apple Inc.) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 217.113.224.35 217.113.224.134 Tcpip\..\Interfaces\{ac900820-191a-4a56-9837-94a447afbef3}: [DhcpNameServer] 217.113.224.35 217.113.224.134 Edge: ======= DownloadDir: C:\Users\Kasia\Downloads Edge Notifications: HKU\S-1-5-21-235775072-929627425-4113765149-1001 -> hxxps://www.dobreprogramy.pl; hxxps://poczta.onet.pl; hxxps://www.vidtomp3.com; hxxps://multikino.pl; hxxps://4f.com.pl Edge Extension: (Brak nazwy) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [nie znaleziono] Edge Extension: (Brak nazwy) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [nie znaleziono] Edge Extension: (Brak nazwy) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [nie znaleziono] Edge Extension: (Brak nazwy) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [nie znaleziono] Edge DefaultProfile: Default Edge Profile: C:\Users\Kasia\AppData\Local\Microsoft\Edge\User Data\Default [2023-06-16] Edge DownloadDir: Default -> C:\Users\Kasia\Downloads Edge Notifications: Default -> hxxps://4f.com.pl; hxxps://allowsuccess.org; hxxps://multikino.pl; hxxps://nbsklep.pl; hxxps://poczta.onet.pl; hxxps://www.dobreprogramy.pl; hxxps://www.vidtomp3.com; hxxps://www2.news-back.org Edge HomePage: Default -> hxxps://www.google.pl/ Edge StartupUrls: Default -> "hxxp://www.google.pl/" Edge DefaultSearchURL: Default -> hxxps://www.google.pl/search?q={searchTerms}&ie={inputEncoding?}&oe={outputEncoding?} Edge Extension: (Edge relevant text changes) - C:\Users\Kasia\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-05-14] FireFox: ======== FF DefaultProfile: lutbpjgj.default FF ProfilePath: C:\Users\Kasia\AppData\Roaming\Mozilla\Firefox\Profiles\lutbpjgj.default [2023-06-16] FF Extension: (Avast Online Security) - C:\Users\Kasia\AppData\Roaming\Mozilla\Firefox\Profiles\lutbpjgj.default\Extensions\wrc@avast.com.xpi [2020-09-09] [UpdateUrl:hxxps://firefoxext.avcdn.net/firefoxext/avast/aos/update.json] FF Extension: (Add-ons Restricted Domains) - C:\Users\Kasia\AppData\Roaming\Mozilla\Firefox\Profiles\lutbpjgj.default\features\{85a68728-7792-4b49-9ba3-baebc0232f74}\addons-restricted-domains@mozilla.com.xpi [2023-06-15] FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-11-02] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google Inc -> Google, Inc.) FF Plugin-x32: @java.com/JavaPlugin -> C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll [2016-10-22] (Sun Microsystems, Inc.) [Brak podpisu cyfrowego] FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-11-02] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN -> VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2023-05-04] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR Profile: C:\Users\Kasia\AppData\Local\Google\Chrome\User Data\Default [2023-06-16] CHR HomePage: Default -> hxxp://www.google.com/ CHR Extension: (Adobe Acrobat: edycja plików PDF, konwertowanie, narzędzia podpisywania) - C:\Users\Kasia\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-06-15] CHR Extension: (Zakładki iCloud) - C:\Users\Kasia\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2023-01-07] CHR Extension: (Dokumenty Google offline) - C:\Users\Kasia\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-06-04] CHR Extension: (Avast Online Security & Privacy) - C:\Users\Kasia\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2023-02-08] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Kasia\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-07] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] Opera: ======= OPR Profile: C:\Users\Kasia\AppData\Roaming\Opera Software\Opera Stable [2023-06-16] OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding} OPR Extension: (Rich Hints Agent) - C:\Users\Kasia\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2020-10-29] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-04-03] (Adobe Inc. -> Adobe Inc.) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [103280 2022-09-01] (Apple Inc. -> Apple Inc.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11774392 2023-06-06] (Microsoft Corporation -> Microsoft Corporation) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.) R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [46824 2023-06-13] (Dropbox, Inc -> Dropbox, Inc.) R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [230352 2023-06-15] (HP Inc. -> HP Inc.) R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\\3.13.43.0\LenovoVantageService.exe [32464 ] (Lenovo -> Lenovo Group Ltd.) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2572096 2023-03-13] (Electronic Arts, Inc. -> Electronic Arts) S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3491144 2023-03-13] (Electronic Arts, Inc. -> Electronic Arts) R2 RealSenseDCM; C:\Program Files (x86)\Common Files\Intel\RSDCM\bin\win32\RealSenseDCM.exe [3663512 2015-10-15] (Intel(R) Software Development Products -> Intel(R) Corporation) S3 Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [155520 2015-06-10] (Sony Mobile Communications AB -> Avanquest Software) [Brak podpisu cyfrowego] R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-07-22] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\NisSrv.exe [3232576 2023-06-14] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe [133592 2023-06-14] (Microsoft Windows Publisher -> Microsoft Corporation) S2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.231\WsAppService.exe [493792 2017-10-24] (Wondershare Technology Co.,Ltd -> Wondershare) S3 WsDrvInst; C:\Program Files (x86)\Wondershare\New TunesGo\DriverInstall.exe [102624 2017-11-09] (Wondershare Technology Co.,Ltd -> Wondershare) S2 ImControllerService; %SystemRoot%\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [X] S2 PMBDeviceInfoProvider; "C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe" [X] S3 ShareItSvc; "C:\Program Files (x86)\Lenovo\SHAREit\Shareit.Service.exe" [X] ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [18528 2014-11-18] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Brak podpisu cyfrowego] S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [10848 2014-11-18] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Brak podpisu cyfrowego] R3 IXCamera; C:\WINDOWS\system32\DRIVERS\RealSenseDCM.sys [72704 2015-12-27] (Intel(R) Software Development Products -> Intel(R) Corporation) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-06-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [275232 2023-06-16] (Malwarebytes Corporation -> Malwarebytes) S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2015-11-05] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [164992 2016-07-22] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2015-11-05] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2023-06-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [498944 2023-06-14] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99568 2023-06-14] (Microsoft Windows -> Microsoft Corporation) R3 WirelessKeyboardFilter; C:\WINDOWS\System32\drivers\WirelessKeyboardFilter.sys [49336 2018-03-11] (Microsoft Corporation -> Microsoft Corporation) S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-13] (CyberLink -> "CyberLink) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-06-16 23:34 - 2023-06-16 23:36 - 1693021545 _____ C:\Users\Kasia\Downloads\Bal 2023-20230616T213421Z-001.zip 2023-06-16 23:29 - 2023-06-16 23:29 - 000004343 _____ C:\WINDOWS\system32\default_error_stack-000041-000000.txt 2023-06-16 23:29 - 2023-06-16 23:29 - 000004341 _____ C:\WINDOWS\system32\default_error_stack-000040-000000.txt 2023-06-16 23:26 - 2023-06-16 23:26 - 000004343 _____ C:\WINDOWS\system32\default_error_stack-000039-000000.txt 2023-06-16 23:25 - 2023-06-16 23:25 - 000004343 _____ C:\WINDOWS\system32\default_error_stack-000038-000000.txt 2023-06-16 23:22 - 2023-06-16 23:22 - 000004341 _____ C:\WINDOWS\system32\default_error_stack-000037-000000.txt 2023-06-16 23:21 - 2023-06-16 23:21 - 000004341 _____ C:\WINDOWS\system32\default_error_stack-000036-000000.txt 2023-06-16 23:18 - 2023-06-16 23:18 - 000004341 _____ C:\WINDOWS\system32\default_error_stack-000035-000000.txt 2023-06-16 23:17 - 2023-06-16 23:17 - 000004343 _____ C:\WINDOWS\system32\default_error_stack-000034-000000.txt 2023-06-16 23:13 - 2023-06-16 23:17 - 1137353431 _____ C:\Users\Kasia\Downloads\2023-06-02_Bal_8_Klas_Fotobudka_OchBudka-20230616T211321Z-001.zip 2023-06-16 23:12 - 2023-06-16 23:12 - 000004341 _____ C:\WINDOWS\system32\default_error_stack-000033-000000.txt 2023-06-16 23:11 - 2023-06-16 23:11 - 000004341 _____ C:\WINDOWS\system32\default_error_stack-000032-000000.txt 2023-06-16 23:07 - 2023-06-16 23:07 - 000004341 _____ C:\WINDOWS\system32\default_error_stack-000031-000000.txt 2023-06-16 23:06 - 2023-06-16 23:06 - 000004339 _____ C:\WINDOWS\system32\default_error_stack-000030-000000.txt 2023-06-16 23:02 - 2023-06-16 23:02 - 000004343 _____ C:\WINDOWS\system32\default_error_stack-000029-000000.txt 2023-06-16 23:01 - 2023-06-16 23:01 - 000004341 _____ C:\WINDOWS\system32\default_error_stack-000028-000000.txt 2023-06-16 22:58 - 2023-06-16 22:58 - 000004343 _____ C:\WINDOWS\system32\default_error_stack-000027-000000.txt 2023-06-16 22:57 - 2023-06-16 22:57 - 000004343 _____ C:\WINDOWS\system32\default_error_stack-000026-000000.txt 2023-06-16 22:53 - 2023-06-16 22:53 - 000004343 _____ C:\WINDOWS\system32\default_error_stack-000025-000000.txt 2023-06-16 22:52 - 2023-06-16 22:52 - 000004343 _____ C:\WINDOWS\system32\default_error_stack-000024-000000.txt 2023-06-16 22:46 - 2023-06-16 22:46 - 000004341 _____ C:\WINDOWS\system32\default_error_stack-000023-000000.txt 2023-06-16 22:45 - 2023-06-16 22:45 - 000004341 _____ C:\WINDOWS\system32\default_error_stack-000022-000000.txt 2023-06-16 22:42 - 2023-06-16 22:42 - 000275232 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2023-06-16 22:41 - 2023-06-16 22:41 - 000004341 _____ C:\WINDOWS\system32\default_error_stack-000021-000000.txt 2023-06-16 22:41 - 2023-06-16 22:41 - 000002426 _____ C:\WINDOWS\system32\default_error_stack-000020-000000.txt 2023-06-16 22:39 - 2023-06-16 22:39 - 000004341 _____ C:\WINDOWS\system32\default_error_stack-000019-000000.txt 2023-06-16 22:39 - 2023-06-16 22:39 - 000002426 _____ C:\WINDOWS\system32\default_error_stack-000018-000000.txt 2023-06-16 21:23 - 2023-06-16 21:23 - 000004341 _____ C:\WINDOWS\system32\default_error_stack-000017-000000.txt 2023-06-16 21:22 - 2023-06-16 21:22 - 000004343 _____ C:\WINDOWS\system32\default_error_stack-000016-000000.txt 2023-06-16 21:19 - 2023-06-16 21:19 - 000004343 _____ C:\WINDOWS\system32\default_error_stack-000015-000000.txt 2023-06-16 21:15 - 2023-06-16 21:15 - 000004341 _____ C:\WINDOWS\system32\default_error_stack-000014-000000.txt 2023-06-16 21:15 - 2023-06-16 21:15 - 000004341 _____ C:\WINDOWS\system32\default_error_stack-000013-000000.txt 2023-06-16 21:11 - 2023-06-16 21:11 - 000004341 _____ C:\WINDOWS\system32\default_error_stack-000012-000000.txt 2023-06-16 21:10 - 2023-06-16 21:10 - 000004343 _____ C:\WINDOWS\system32\default_error_stack-000011-000000.txt 2023-06-16 21:05 - 2023-06-16 21:05 - 000004343 _____ C:\WINDOWS\system32\default_error_stack-000010-000000.txt 2023-06-16 21:05 - 2023-06-16 21:05 - 000004343 _____ C:\WINDOWS\system32\default_error_stack-000009-000000.txt 2023-06-16 20:59 - 2023-06-16 20:59 - 000004343 _____ C:\WINDOWS\system32\default_error_stack-000007-000000.txt 2023-06-16 20:59 - 2023-06-16 20:59 - 000004341 _____ C:\WINDOWS\system32\default_error_stack-000008-000000.txt 2023-06-16 20:56 - 2023-06-16 20:56 - 000000000 ___HD C:\$WinREAgent 2023-06-16 20:53 - 2023-06-16 20:53 - 000004343 _____ C:\WINDOWS\system32\default_error_stack-000006-000000.txt 2023-06-16 20:52 - 2023-06-16 20:52 - 000004343 _____ C:\WINDOWS\system32\default_error_stack-000005-000000.txt 2023-06-16 20:47 - 2023-06-16 20:47 - 000004343 _____ C:\WINDOWS\system32\default_error_stack-000004-000000.txt 2023-06-16 20:47 - 2023-06-16 20:47 - 000004343 _____ C:\WINDOWS\system32\default_error_stack-000003-000000.txt 2023-06-16 20:42 - 2023-06-16 20:43 - 008791352 _____ (Malwarebytes) C:\Users\Kasia\Downloads\adwcleaner_8.4.0.exe 2023-06-16 20:35 - 2023-06-16 20:35 - 000002426 _____ C:\WINDOWS\system32\default_error_stack-000002-000000.txt 2023-06-16 19:55 - 2023-06-16 19:55 - 000004341 _____ C:\WINDOWS\system32\default_error_stack-000001-000000.txt 2023-06-16 19:55 - 2023-06-16 19:55 - 000002426 _____ C:\WINDOWS\system32\default_error_stack-000000-000000.txt 2023-06-15 23:05 - 2023-06-15 23:05 - 000003592 _____ C:\Users\Kasia\Downloads\fixlist.txt 2023-06-15 21:13 - 2023-06-15 21:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2023-06-14 23:04 - 2023-06-14 23:04 - 000001107 _____ C:\Users\Kasia\Desktop\WinDirStat.lnk 2023-06-14 23:04 - 2023-06-14 23:04 - 000000000 ____D C:\Users\Kasia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinDirStat 2023-06-14 23:04 - 2023-06-14 23:04 - 000000000 ____D C:\Program Files (x86)\WinDirStat 2023-06-13 11:24 - 2023-06-13 11:24 - 000046824 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe 2023-06-12 20:40 - 2023-06-15 12:01 - 000000000 ____D C:\Program Files\Mozilla Firefox 2023-06-01 21:03 - 2023-06-01 21:03 - 000002551 _____ C:\Users\Public\Desktop\IKEA Home Planner.lnk 2023-06-01 21:03 - 2023-06-01 21:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IKEA HomePlanner 2023-06-01 21:03 - 2023-06-01 21:03 - 000000000 ____D C:\Program Files (x86)\IKEA HomePlanner 2023-05-29 20:53 - 2023-05-29 20:53 - 000196375 _____ C:\Users\Kasia\Downloads\Umowa - Eljot.pdf 2023-05-20 11:11 - 2023-05-20 11:11 - 000308284 _____ C:\Users\Kasia\Downloads\Wniosek - Aleksandra Łobas.pdf 2023-05-19 09:46 - 2023-05-19 09:46 - 000106881 _____ C:\Users\Kasia\Downloads\List.pdf 2023-05-17 23:05 - 2023-05-17 23:05 - 000004464 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1596658507 ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-06-16 23:33 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-06-16 23:29 - 2019-08-26 23:27 - 000000000 ____D C:\FRST 2023-06-16 23:06 - 2020-07-20 18:09 - 000000000 ____D C:\Users\Kasia\Downloads\FRST-OlderVersion 2023-06-16 22:56 - 2022-01-11 04:30 - 000000000 ____D C:\WINDOWS\SystemTemp 2023-06-16 22:56 - 2015-12-27 14:51 - 000000000 ____D C:\Program Files (x86)\Google 2023-06-16 22:48 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2023-06-16 22:47 - 2020-12-15 22:47 - 001769800 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2023-06-16 22:47 - 2019-12-07 17:08 - 000785594 _____ C:\WINDOWS\system32\perfh015.dat 2023-06-16 22:47 - 2019-12-07 17:08 - 000152454 _____ C:\WINDOWS\system32\perfc015.dat 2023-06-16 22:47 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2023-06-16 22:45 - 2023-02-16 01:27 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2023-06-16 22:45 - 2015-12-24 10:04 - 000000000 __SHD C:\Users\Kasia\IntelGraphicsProfiles 2023-06-16 22:41 - 2020-12-15 23:14 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2023-06-16 22:41 - 2020-12-15 22:19 - 000437552 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2023-06-16 22:41 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState 2023-06-16 22:40 - 2020-12-15 22:19 - 000008192 ___SH C:\DumpStack.log.tmp 2023-06-16 22:39 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2023-06-16 22:37 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2023-06-16 22:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2023-06-16 22:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources 2023-06-16 22:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2023-06-16 22:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2023-06-16 22:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz 2023-06-16 22:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences 2023-06-16 22:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2023-06-16 22:33 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2023-06-16 22:16 - 2020-12-15 22:24 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2023-06-16 21:48 - 2020-12-15 22:20 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2023-06-16 21:28 - 2017-10-16 22:34 - 000000000 ____D C:\Users\Kasia\AppData\Roaming\Samsung 2023-06-16 21:28 - 2015-12-24 10:05 - 000000000 ____D C:\Users\Kasia\AppData\Local\Lenovo 2023-06-16 21:28 - 2015-09-19 03:15 - 000000000 ____D C:\Program Files\Lenovo 2023-06-16 21:28 - 2015-09-19 03:11 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo 2023-06-16 21:28 - 2015-09-19 03:11 - 000000000 ____D C:\Program Files (x86)\Lenovo 2023-06-16 21:27 - 2020-12-15 23:14 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo 2023-06-16 21:27 - 2020-03-12 01:39 - 000000000 ____D C:\WINDOWS\Lenovo 2023-06-16 21:27 - 2016-03-14 20:21 - 000000000 ____D C:\Users\Kasia\AppData\Local\SHAREit 2023-06-16 21:27 - 2015-12-30 22:21 - 000000000 ____D C:\Program Files (x86)\Sony 2023-06-16 21:27 - 2015-09-19 04:08 - 000000000 ____D C:\ProgramData\Lenovo 2023-06-16 21:24 - 2019-08-27 19:36 - 000000000 ____D C:\AdwCleaner 2023-06-16 21:22 - 2019-05-16 23:19 - 000007597 _____ C:\Users\Kasia\AppData\Local\resmon.resmoncfg 2023-06-16 20:22 - 2016-03-29 19:32 - 000002314 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2023-06-16 20:22 - 2016-03-29 19:32 - 000002273 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2023-06-16 20:09 - 2018-01-07 22:48 - 000000000 ____D C:\Program Files\CCleaner 2023-06-16 19:53 - 2020-12-15 22:35 - 000000000 ____D C:\Users\Kasia 2023-06-16 19:50 - 2020-12-15 23:14 - 000003864 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2023-06-16 19:50 - 2020-12-15 23:14 - 000003740 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2023-06-16 11:01 - 2020-08-05 22:13 - 000000000 ____D C:\Program Files\Microsoft Office 2023-06-16 10:24 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2023-06-16 10:19 - 2016-11-01 19:38 - 000000000 ____D C:\Users\Kasia\AppData\LocalLow\Temp 2023-06-15 23:09 - 2020-12-15 23:14 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software 2023-06-15 22:57 - 2020-07-26 22:11 - 000000000 ___RD C:\Users\Kasia\iCloudDrive 2023-06-15 21:19 - 2022-11-13 10:54 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP 2023-06-15 21:19 - 2021-07-04 21:56 - 000000000 ____D C:\Program Files\HPPrintScanDoctor 2023-06-15 21:15 - 2016-06-11 09:52 - 000000000 ____D C:\Program Files (x86)\Dropbox 2023-06-15 20:47 - 2022-02-09 18:12 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2023-06-15 12:24 - 2020-12-15 23:14 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2023-06-15 12:01 - 2018-09-13 20:08 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2023-06-15 09:22 - 2015-12-24 12:48 - 000000000 ____D C:\WINDOWS\system32\MRT 2023-06-15 09:02 - 2015-12-24 12:48 - 170078616 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2023-06-14 20:22 - 2020-12-15 23:14 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2023-06-14 20:22 - 2020-12-15 23:14 - 000003442 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2023-06-14 02:53 - 2018-04-17 08:51 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2023-06-13 22:34 - 2023-03-02 22:57 - 000000404 _____ C:\Users\Kasia\Desktop\Nowy dokument tekstowy (3).txt 2023-06-13 21:43 - 2021-10-20 10:43 - 000001458 _____ C:\Users\Kasia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Przeglądarka Opera.lnk 2023-06-13 09:53 - 2018-09-13 20:08 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2023-06-11 21:55 - 2017-12-03 22:25 - 000000000 ____D C:\Users\Kasia\AppData\Local\Packages 2023-06-11 21:45 - 2021-12-13 23:56 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-235775072-929627425-4113765149-1001 2023-06-11 21:45 - 2020-12-15 23:14 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-235775072-929627425-4113765149-1001 2023-06-11 21:45 - 2020-12-15 22:35 - 000002476 _____ C:\Users\Kasia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2023-06-11 21:37 - 2020-06-06 14:27 - 000002455 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-06-11 21:37 - 2020-06-06 14:27 - 000002293 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2023-06-01 21:08 - 2016-02-07 18:38 - 000000000 ____D C:\Users\Kasia\AppData\Local\ChomikBox 2023-06-01 21:04 - 2015-12-24 10:04 - 000000000 ____D C:\Users\Kasia\AppData\Local\VirtualStore 2023-06-01 20:59 - 2016-02-07 18:40 - 000000000 ____D C:\Users\Kasia\Downloads\ChomikBox 2023-06-01 20:59 - 2016-02-07 18:38 - 000000000 ____D C:\Users\Kasia\.gstreamer-0.10 2023-05-21 22:42 - 2023-05-15 01:01 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job 2023-05-19 09:37 - 2023-05-15 01:01 - 000003472 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting ==================== Pliki w katalogu głównym wybranych folderów ======== 2016-06-11 20:54 - 2016-09-01 20:53 - 000000106 _____ () C:\Users\Kasia\AppData\Roaming\WB.CFG 2018-03-18 15:13 - 2018-03-18 16:30 - 000009216 _____ () C:\Users\Kasia\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2019-05-16 23:19 - 2023-06-16 21:22 - 000007597 _____ () C:\Users\Kasia\AppData\Local\resmon.resmoncfg 2017-02-01 19:53 - 2017-02-01 19:53 - 000003228 _____ () C:\Users\Kasia\AppData\Local\unins000.dat 2017-02-01 19:53 - 2017-02-01 19:53 - 000711640 _____ () C:\Users\Kasia\AppData\Local\unins000.exe 2017-02-01 19:53 - 2017-02-01 19:53 - 000011761 _____ () C:\Users\Kasia\AppData\Local\unins000.msg ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================