Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 12-05-2023 01 Uruchomiony przez ksawe (administrator) LAPTOP-PGIQ604F (ASUSTeK COMPUTER INC. VivoBook_ASUSLaptop X509JA_X509JA) (15-05-2023 16:56:55) Uruchomiony z C:\Users\ksawe\OneDrive\Pulpit\FRST64(1).exe Załadowane profile: ksawe Platforma: Microsoft Windows 11 Home Wersja 22H2 22621.1105 (X64) Język: Polski (Polska) Domyślna przeglądarka: FF Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSOptimization\AsusOSD.exe (C:\Program Files\WindowsApps\MicrosoftTeams_23091.406.2009.3890_x64__8wekyb3d8bbwe\msteams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\113.0.1774.42\msedgewebview2.exe <7> (C:\Windows\UUS\amd64\MoUsoCoreWorker.exe ->) (Microsoft Windows -> Dostawca sterownika DDK dla systemu Windows (R) Win 7) C:\Windows\UUS\amd64\MoNotificationUx.exe (DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSOptimization\AsusOptimization.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSOptimization\AsusOptimizationStartupTask.exe (DriverStore\FileRepository\cui_dch.inf_amd64_baf36d4852e8e257\igfxCUIServiceN.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_baf36d4852e8e257\igfxEMN.exe (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7> (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSLinkRemote\AsusLinkRemote.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\AsusAppService\AsusAppService.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSLinkNear\AsusLinkNear.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSOptimization\AsusOptimization.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSSoftwareManager\AsusSoftwareManager.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSSwitch\AsusSwitch.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSSystemAnalysis\AsusSystemAnalysis.exe (services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe (services.exe ->) (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ELANFPService.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe (services.exe ->) (ICEpower a/s -> ICEpower A/S) C:\Windows\System32\DriverStore\FileRepository\icesoundapo64.inf_amd64_a5d3270da26fb113\ICEsoundService64.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_baf36d4852e8e257\igfxCUIServiceN.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_f75fa513cf0ccec1\esif_uf.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_ba273d0ffb93e225\RstMwService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_a439e07c373809e2\OneApp.IGCC.WinService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_0a2eb8dac923ec42\IntelCpHDCPSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\piecomponent.inf_amd64_e72614dff5a8a910\Intel_PIE_Service.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\ibtsiva.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_7aa6ca9dbb25bff8\jhi_service.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2> (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (NortonLifeLock Inc. -> NortonLifelock Inc.) C:\Program Files\Norton Security\Engine\22.23.3.8\NortonSecurity.exe <2> (services.exe ->) (NortonLifeLock Inc. -> NortonLifeLock Inc.) C:\Program Files\Norton Security\Engine\22.23.3.8\nsWscSvc.exe (sihost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.4779.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe (svchost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.4779.0_x64__8j3eq9eme6ctt\IGCC.exe (svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.11600.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\printfilterpipelinesvc.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\amd64\MoUsoCoreWorker.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.22621.1626_none_e930f5a242f053dd\TiWorker.exe (svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <3> ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Ograniczenia <==== UWAGA HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Ograniczenia <==== UWAGA HKU\S-1-5-21-890246566-3225488481-3350419127-1008\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [40412984 2023-04-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) HKU\S-1-5-21-890246566-3225488481-3350419127-1008\...\Run: [ksawe] => explorer.exe hxxp://dinoraptzor.org (Brak pliku) <==== UWAGA HKU\S-1-5-21-890246566-3225488481-3350419127-1008\...\Run: [MicrosoftEdgeAutoLaunch_6B782A67104ACDA441F0CDB36E73B4B9] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4152256 2023-05-11] (Microsoft Corporation -> Microsoft Corporation) HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> Startup: C:\Users\ksawe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Wysyłanie do programu OneNote.lnk [2023-03-31] ShortcutTarget: Wysyłanie do programu OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation) ==================== Zaplanowane zadania (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {09A0144F-1089-4E86-B206-3C8A29254A66} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [732064 2023-05-13] (Mozilla Corporation -> Mozilla Foundation) Task: {0ADCF7A5-C9BA-49E6-9177-46025A3D5268} - System32\Tasks\RtkAudUService64_BG => C:\Windows\System32\RtkAudUService64.exe [1140456 2020-08-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {120A523B-718D-4644-87F3-00B0AB24B187} - System32\Tasks\CCleanerSkipUAC - ksawe => C:\Program Files\CCleaner\CCleaner.exe [34159416 2023-04-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {125669F7-F307-4159-820D-44A2B8929C7B} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-04-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {130A573B-0863-466B-848C-0F3C07B0250E} - System32\Tasks\Norton 360\Norton 360 Error Analyzer => C:\Program Files\Norton Security\Engine\22.23.3.8\SymErr.exe [379024 2023-03-24] (NortonLifeLock Inc. -> NortonLifeLock Inc.) Task: {35362317-4664-42A4-ABEA-041626A7B2AD} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\ksawe\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [21737944 2023-03-18] (ESET, spol. s r.o. -> ESET) Task: {37E018AE-54E1-4FA8-A459-49889AEDC746} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703544 2023-04-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "2ee8df4f-1042-4413-8828-310366ff9ae6" --version "6.11.10455" --silent Task: {419C1564-40D9-473B-B1D4-37CC8A6E0A84} - System32\Tasks\ksawe => C:\WINDOWS\system32\cmd.exe [323584 2022-11-15] (Microsoft Windows -> Microsoft Corporation) -> /c REG ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /f /v ksawe /t REG_SZ /d "explorer.exe hxxp://dinoraptzor.org" <==== UWAGA Task: {44CA1088-A2D0-49D5-8AB6-36A079413F1B} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [157664 2023-05-14] (Microsoft Corporation -> Microsoft Corporation) Task: {45CF73C8-9A94-47C5-8E45-347738A58FC5} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (Brak pliku) Task: {5705589E-93F9-4A32-AF9B-8E4F91E6A867} - System32\Tasks\Norton 360\Norton 360 Autofix => C:\Program Files\Norton Security\Engine\22.23.3.8\SymErr.exe [379024 2023-03-24] (NortonLifeLock Inc. -> NortonLifeLock Inc.) Task: {6C1E4EA1-6695-47A2-893B-32C84FD3B53D} - System32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSSystemAnalysis\AsusSystemAnalysis.exe [3697800 2023-04-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) Task: {7CB9AC8C-5850-4FB2-BFD4-068E21EFA0B6} - System32\Tasks\ASUS Optimization 36D18D69AFC3 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSOptimization\AsusHotkey.exe [288904 2023-04-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) Task: {943BF481-7F4D-4A38-8B27-6D743FBD014C} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton 360\Upgrade.exe [2353000 2023-03-24] (NortonLifeLock Inc. -> NortonLifeLock Inc.) Task: {9F9913BC-67D2-4BC8-922E-6F9FDB1A4BE5} - System32\Tasks\Norton 360\Norton 360 Error Processor => C:\Program Files\Norton Security\Engine\22.23.3.8\SymErr.exe [379024 2023-03-24] (NortonLifeLock Inc. -> NortonLifeLock Inc.) Task: {C1297DF8-D28C-4402-AE5D-C3115A68E322} - System32\Tasks\Microsoft\Windows\WaaSMedic\DeferredWork => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32} Task: {C4DC8994-F15D-4AB7-A71B-8C02A439EDFD} - System32\Tasks\Microsoft\Windows\WaaSMedic\MaintenanceWork => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32} Task: {C9A50640-0864-438D-9B21-916C84458B08} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26513416 2023-05-14] (Microsoft Corporation -> Microsoft Corporation) Task: {D16E6F0B-3458-4F50-850B-B4B54CAB0C8F} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [157664 2023-05-14] (Microsoft Corporation -> Microsoft Corporation) Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => C:\WINDOWS\system32\MusNotification.exe (Brak pliku) Task: {E1532DA1-C920-4456-8B08-E785F4E0BE57} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [190816 2023-04-28] (Microsoft Corporation -> Microsoft Corporation) Task: {E4208BAB-752C-44A7-AD4E-BFA9E8171B30} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\ksawe\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [21737944 2023-03-18] (ESET, spol. s r.o. -> ESET) Task: {E50E5CCB-590A-479C-A8A4-D5103D6B9600} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676768 2023-05-13] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {EAE9E20F-6D5A-432B-B836-793F3410F1B8} - System32\Tasks\ASUS Update Checker 2.0 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSSoftwareManager\AsusUpdateChecker.exe [797832 2023-04-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) Task: {F07F8F95-8046-424C-8E98-E7B70C6C1AC1} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security\Engine\22.23.3.8\WSCStub.exe [646520 2023-03-24] (NortonLifeLock Inc. -> NortonLifeLock Inc.) Task: {F463E4C8-7EDF-4CC2-8D09-20612D1F6155} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26513416 2023-05-14] (Microsoft Corporation -> Microsoft Corporation) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{44b2b6c9-95fc-48fd-b02e-8c0baefb7ec8}: [DhcpNameServer] 192.168.1.254 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\ksawe\AppData\Local\Microsoft\Edge\User Data\Default [2023-05-15] Edge Extension: (Edge relevant text changes) - C:\Users\ksawe\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-05-12] FireFox: ======== FF DefaultProfile: p5fjy0vw.default FF ProfilePath: C:\Users\ksawe\AppData\Roaming\Mozilla\Firefox\Profiles\j62qrl0g.default-release-1-1679095974736 [2023-05-14] FF Extension: (Language: Polski (Polish)) - C:\Users\ksawe\AppData\Roaming\Mozilla\Firefox\Profiles\j62qrl0g.default-release-1-1679095974736\Extensions\langpack-pl@firefox.mozilla.org.xpi [2023-03-18] FF ProfilePath: C:\Users\ksawe\AppData\Roaming\Mozilla\Firefox\Profiles\p5fjy0vw.default [2022-10-31] FF ProfilePath: C:\Users\ksawe\AppData\Roaming\Mozilla\Firefox\Profiles\mlsr7h7d.default-release [2023-05-15] FF Homepage: Mozilla\Firefox\Profiles\mlsr7h7d.default-release -> chrome://browser/content/blanktab.html FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-11-03] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-10-16] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-11-03] (Microsoft Corporation -> Microsoft Corporation) ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2022-09-27] (Adobe Inc. -> Adobe Inc.) R2 AsusAppService; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\AsusAppService\AsusAppService.exe [1159264 2023-04-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R2 ASUSLinkNear; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSLinkNear\AsusLinkNear.exe [1335432 2023-04-19] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) R2 ASUSLinkRemote; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSLinkRemote\AsusLinkRemote.exe [764552 2023-04-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.​) R2 ASUSOptimization; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSOptimization\AsusOptimization.exe [458848 2023-04-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R2 ASUSSoftwareManager; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSSoftwareManager\AsusSoftwareManager.exe [1091720 2023-04-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R2 ASUSSwitch; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSSwitch\AsusSwitch.exe [635528 2023-04-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R2 ASUSSystemAnalysis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSSystemAnalysis\AsusSystemAnalysis.exe [3697800 2023-04-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R2 ASUSSystemDiagnosis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe [829064 2023-04-19] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [15044872 2023-03-10] (BattlEye Innovations e.K. -> ) S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1063736 2023-04-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11749376 2023-05-14] (Microsoft Corporation -> Microsoft Corporation) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [811496 2023-04-07] (EasyAntiCheat Oy -> Epic Games, Inc) S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029456 2023-05-09] (Epic Games Inc. -> Epic Games, Inc.) R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [229328 2023-05-14] (HP Inc. -> HP Inc.) R2 NortonSecurity; C:\Program Files\Norton Security\Engine\22.23.3.8\NortonSecurity.exe [344888 2023-03-24] (NortonLifeLock Inc. -> NortonLifelock Inc.) R2 nsWscSvc; C:\Program Files\Norton Security\Engine\22.23.3.8\nsWscSvc.exe [1059176 2023-03-24] (NortonLifeLock Inc. -> NortonLifeLock Inc.) S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [2703192 2022-12-27] (Rockstar Games, Inc. -> Rockstar Games) S3 TwitchService; C:\Program Files\Common Files\Twitch\TwitchService.exe [345400 2023-04-27] (Twitch Interactive, Inc. -> ) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [2909208 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [128376 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 AsusPTPDrv; C:\WINDOWS\System32\DriverStore\FileRepository\asusptpfilter.inf_amd64_314b5cb6bf57f471\AsusPTPFilter.sys [116712 2021-12-02] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) R3 AsusSAIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSSystemAnalysis\AsusSAIO.sys [46736 2023-04-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R1 ATKWMIACPIIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_e66da585a80ae7c5\ASUSOptimization\AsusWmiAcpi.sys [48776 2023-04-19] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) R1 BHDrvx64; C:\Program Files\Norton Security\NortonData\22.21.10.40\Definitions\BASHDefs\20230511.001\BHDrvx64.sys [1696736 2023-03-05] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R1 ccSet_NGC; C:\WINDOWS\System32\drivers\NGCx64\1617030.008\ccSetx64.sys [198280 2023-03-24] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [527864 2022-10-31] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [159720 2022-11-01] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R3 iaLPSS2_GPIO2_ICL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_icl.inf_amd64_90beccc7e046abab\iaLPSS2_GPIO2_ICL.sys [132872 2020-04-27] (Intel Corporation -> Intel Corporation) R3 iaLPSS2_I2C_ICL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_icl.inf_amd64_c8c0638291b9b209\iaLPSS2_I2C_ICL.sys [200456 2020-04-27] (Intel Corporation -> Intel Corporation) R3 iaLPSS2_SPI_ICL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_spi_icl.inf_amd64_66a759065dfa6f64\iaLPSS2_SPI_ICL.sys [160024 2020-04-27] (Intel Corporation -> Intel Corporation) R3 iaLPSS2_UART2_ICL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_uart2_icl.inf_amd64_b535659b9405201a\iaLPSS2_UART2_ICL.sys [312600 2020-04-27] (Intel Corporation -> Intel Corporation) R1 IDSVia64; C:\Program Files\Norton Security\NortonData\22.21.10.40\Definitions\IPSDefs\20230512.061\IDSvia64.sys [1527816 2023-02-22] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) S3 nsvst_NGC; C:\WINDOWS\System32\drivers\NGCx64\1617030.008\nsvst.sys [57120 2023-03-24] (NortonLifeLock Inc. -> NortonLifeLock Inc.) R3 SRTSP; C:\WINDOWS\System32\drivers\NGCx64\1617030.008\SRTSP64.SYS [956048 2023-03-24] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R1 SRTSPX; C:\WINDOWS\System32\drivers\NGCx64\1617030.008\SRTSPX64.SYS [52872 2023-03-24] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [65144 2021-10-08] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated) R0 SymEFASI; C:\WINDOWS\System32\drivers\NGCx64\1617030.008\SYMEFASI64.SYS [2180248 2023-03-24] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) S0 SymELAM; C:\WINDOWS\System32\drivers\NGCx64\1617030.008\SymELAM.sys [36016 2023-03-24] (Microsoft Windows Early Launch Anti-malware Publisher -> Broadcom) R3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS [100328 2022-11-02] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R3 SymEvnt; C:\Program Files\Norton Security\NortonData\22.21.10.40\SymPlatform\SymEvnt.sys [722400 2022-07-11] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R1 SymIRON; C:\WINDOWS\System32\drivers\NGCx64\1617030.008\Ironx64.SYS [306824 2023-03-24] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) R1 SymNetS; C:\WINDOWS\System32\drivers\NGCx64\1617030.008\symnets.sys [492728 2023-03-24] (Microsoft Windows Hardware Compatibility Publisher -> Broadcom) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [48536 2022-05-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [438544 2022-05-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [90384 2022-05-07] (Microsoft Windows -> Microsoft Corporation) R1 wpCtrlDrv_NGC; C:\WINDOWS\System32\drivers\NGCx64\1617030.008\wpCtrlDrv.sys [1016792 2023-03-24] (NortonLifeLock Inc. -> NortonLifeLock Inc.) S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-05-15 14:26 - 2023-05-15 14:26 - 000000000 ____D C:\WINDOWS\system32\Tasks\Remediation 2023-05-14 12:07 - 2023-05-14 12:07 - 000800970 _____ C:\WINDOWS\system32\perfh015.dat 2023-05-14 12:07 - 2023-05-14 12:07 - 000158968 _____ C:\WINDOWS\system32\perfc015.dat 2023-05-14 11:31 - 2023-05-15 16:57 - 000000000 ____D C:\FRST 2023-05-14 11:31 - 2023-05-14 11:31 - 000000000 ____D C:\Users\ksawe\Downloads\FRST-OlderVersion 2023-05-14 11:13 - 2023-05-14 11:13 - 015274968 _____ (ESET) C:\Users\ksawe\Downloads\esetonlinescanner(1).exe 2023-05-14 11:08 - 2023-05-14 11:08 - 000000000 ____D C:\WINDOWS\Panther 2023-05-14 11:07 - 2023-05-14 11:08 - 000000000 ___HD C:\$WinREAgent 2023-05-13 10:43 - 2023-05-13 12:37 - 000000000 ____D C:\Program Files\Mozilla Firefox 2023-04-29 16:23 - 2023-04-29 16:23 - 000000000 ____D C:\Users\ksawe\AppData\Roaming\urc 2023-04-29 16:22 - 2023-04-29 16:22 - 000000000 ____D C:\Users\ksawe\OneDrive\Dokumenty\Fortnite Projects 2023-04-25 19:11 - 2023-04-25 19:11 - 000000000 ____D C:\Users\ksawe\AppData\LocalLow\Unity 2023-04-22 13:34 - 2023-04-22 13:34 - 000027048 _____ (EasyAntiCheat Oy) C:\WINDOWS\system32\eac_usermode_53710692999428.dll 2023-04-21 07:18 - 2023-05-14 12:03 - 000012288 ___SH C:\DumpStack.log.tmp ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-05-15 16:57 - 2022-11-15 02:46 - 000003752 _____ C:\WINDOWS\system32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 2023-05-15 16:55 - 2022-10-31 19:02 - 000000000 ____D C:\Program Files\CCleaner 2023-05-15 16:55 - 2022-10-31 18:35 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2023-05-15 16:55 - 2022-10-16 20:30 - 000000000 __SHD C:\Users\ksawe\IntelGraphicsProfiles 2023-05-15 16:52 - 2022-10-31 19:26 - 000000000 ____D C:\Program Files (x86)\Steam 2023-05-15 15:07 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-05-15 14:08 - 2022-10-31 18:35 - 000000000 ____D C:\Users\ksawe\AppData\Local\D3DSCache 2023-05-15 14:07 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp 2023-05-14 20:44 - 2023-04-08 16:02 - 000000000 ____D C:\WINDOWS\system32\Tasks\Norton 360 2023-05-14 20:40 - 2019-10-23 03:12 - 000000000 ____D C:\Program Files\Microsoft Office 2023-05-14 17:42 - 2022-11-02 14:34 - 000000000 ____D C:\Users\ksawe\AppData\Local\GameAnalytics 2023-05-14 12:12 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness 2023-05-14 12:07 - 2022-11-15 02:51 - 001797768 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2023-05-14 12:07 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF 2023-05-14 12:03 - 2022-11-15 02:46 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2023-05-14 12:03 - 2022-11-15 02:42 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2023-05-14 12:03 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState 2023-05-14 12:03 - 2022-05-07 07:17 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2023-05-14 12:03 - 2020-08-03 11:12 - 000000000 ___HD C:\Intel 2023-05-14 11:45 - 2022-10-31 19:30 - 000000000 ____D C:\ProgramData\Package Cache 2023-05-14 11:14 - 2023-03-18 02:08 - 000001380 _____ C:\Users\ksawe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk 2023-05-14 11:10 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp 2023-05-14 11:09 - 2022-10-31 18:31 - 000000000 ____D C:\Users\ksawe\AppData\Local\Packages 2023-05-14 11:06 - 2022-10-21 17:19 - 000000000 ____D C:\Users\ksawe\AppData\LocalLow\Norton 2023-05-14 10:41 - 2022-10-31 13:31 - 000000000 ___HD C:\$SysReset 2023-05-14 10:22 - 2022-11-05 12:37 - 000000000 ____D C:\Users\ksawe\AppData\Local\CrashDumps 2023-05-14 10:10 - 2022-11-23 12:03 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP 2023-05-14 10:10 - 2022-11-23 12:03 - 000000000 ____D C:\Program Files\HPPrintScanDoctor 2023-05-14 10:10 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps 2023-05-13 19:13 - 2022-10-31 13:53 - 000002450 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-05-13 12:55 - 2022-11-15 02:46 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-890246566-3225488481-3350419127-1008 2023-05-13 12:55 - 2022-10-31 18:32 - 000002425 _____ C:\Users\ksawe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2023-05-13 12:37 - 2023-03-18 02:05 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2023-05-13 11:05 - 2023-03-18 02:05 - 000001007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2023-05-13 09:16 - 2023-02-08 00:11 - 002794960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll 2023-05-13 09:16 - 2023-02-08 00:11 - 000488912 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll 2023-05-13 09:16 - 2023-02-08 00:11 - 000247248 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll 2023-05-13 09:16 - 2023-02-08 00:11 - 000202192 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll 2023-05-13 09:16 - 2023-02-08 00:11 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll 2023-05-13 09:16 - 2023-02-08 00:11 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll 2023-05-13 09:16 - 2023-02-08 00:11 - 000079312 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe 2023-05-13 09:16 - 2023-02-08 00:11 - 000062968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe 2023-05-13 09:07 - 2022-11-15 02:46 - 000003642 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA{047F4581-6686-4C5C-900F-CB62617E7692} 2023-05-13 09:07 - 2022-11-15 02:46 - 000003518 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore{FD8E26F9-90EA-4121-A751-E05D31CD4594} 2023-05-12 16:36 - 2022-10-31 21:04 - 000000000 ____D C:\Users\ksawe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2023-05-12 16:07 - 2022-10-31 22:17 - 000000000 ____D C:\Users\ksawe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox 2023-05-12 15:58 - 2022-05-07 07:17 - 000008192 _____ C:\WINDOWS\system32\config\ELAM 2023-05-11 12:46 - 2022-10-31 22:17 - 000000000 ____D C:\Users\ksawe\AppData\Local\Roblox 2023-05-09 20:43 - 2022-10-31 18:31 - 000000000 ____D C:\WINDOWS\system32\MRT 2023-05-09 20:42 - 2022-10-31 18:31 - 159583304 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2023-05-06 10:56 - 2022-11-15 02:46 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-890246566-3225488481-3350419127-1008 2023-05-04 08:13 - 2022-11-01 11:10 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job 2023-05-03 20:48 - 2022-11-01 11:40 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2023-05-02 19:02 - 2022-11-15 02:46 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2023-05-02 19:02 - 2022-11-15 02:46 - 000003474 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting 2023-04-30 17:50 - 2023-03-18 09:46 - 000003858 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onLogOn 2023-04-30 17:50 - 2023-03-18 09:46 - 000003416 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onTime 2023-04-29 10:06 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth 2023-04-27 17:10 - 2022-11-22 17:37 - 000000000 ____D C:\Users\ksawe\AppData\Roaming\Twitch Studio 2023-04-27 17:07 - 2022-11-22 17:38 - 000000000 ____D C:\Program Files\Common Files\Twitch 2023-04-26 19:37 - 2022-11-15 02:46 - 000004122 _____ C:\WINDOWS\system32\Tasks\ASUS Update Checker 2.0 2023-04-26 19:37 - 2022-11-15 02:46 - 000003756 _____ C:\WINDOWS\system32\Tasks\ASUS Optimization 36D18D69AFC3 2023-04-23 15:01 - 2022-11-15 02:43 - 000000000 ____D C:\Users\ksawe 2023-04-20 07:53 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\LiveKernelReports ==================== Pliki w katalogu głównym wybranych folderów ======== 2023-03-29 20:56 - 2023-03-29 20:56 - 000001018 _____ () C:\Users\ksawe\AppData\Local\recently-used.xbel 2022-10-31 18:49 - 2022-10-31 18:49 - 000000017 _____ () C:\Users\ksawe\AppData\Local\resmon.resmoncfg ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================