Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 11-12-2021 Uruchomiony przez Michał (administrator) DESKTOP-BCFSAUI (Dell Inc. Latitude E6430) (16-12-2021 23:21:55) Uruchomiony z C:\Users\Michał\Downloads Załadowane profile: Michał Platform: Microsoft Windows 10 Pro Wersja 21H2 19044.1415 (X64) Język: Polski (Polska) Domyślna przeglądarka: Chrome Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) () <==== UWAGA [zerobajtowy plik/folder] C:\Users\MICHA~1\AppData\Local\Temp\1xq0MkKMTM0YtEl1JnXJ2x0ArfP\dll-propagation.exe <3> (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (ALPS ELECTRIC CO., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe (ALPS ELECTRIC CO., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe (ALPS ELECTRIC CO., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\HidMonitorSvc.exe (Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe (Dell Inc -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\egui.exe (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe (Google LLC -> ) C:\Program Files\Google\Drive File Stream\53.0.8.0\crashpad_handler.exe <2> (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <13> (Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\53.0.8.0\GoogleDriveFS.exe <7> (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxTray.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2> (Microsoft Corporation) [Brak podpisu cyfrowego] [Plik w użyciu] C:\Users\Michał\AppData\Roaming\.dllbackups\dllruntime.exe (Microsoft Corporation) [Brak podpisu cyfrowego] C:\Users\MICHA~1\AppData\Local\Temp\1y6QaG1dVqmqkzRvawVNVxn3bhE\dllservices.exe <4> (Microsoft Corporation) [Brak podpisu cyfrowego] C:\Users\Michał\AppData\Roaming\.dllbackups\data\modules\dll-propagation\dll-propagation_2.9.8.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe (PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCD\SupportAssist\Dsapi.exe (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [779376 2019-05-10] (ALPS ELECTRIC CO., LTD. -> Alps Electric Co., Ltd.) HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [167496 2021-12-09] (ESET, spol. s r.o. -> ESET) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [8807712 2021-11-29] (Dropbox, Inc -> Dropbox, Inc.) HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc. -> Apple Inc.) HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\53.0.8.0\GoogleDriveFS.exe [54402392 2021-11-19] (Google LLC -> Google, Inc.) HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\53.0.8.0\GoogleDriveFS.exe [54402392 2021-11-19] (Google LLC -> Google, Inc.) HKU\S-1-5-21-3660899758-607036233-2879557839-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35373696 2021-12-07] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-3660899758-607036233-2879557839-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\53.0.8.0\GoogleDriveFS.exe [54402392 2021-11-19] (Google LLC -> Google, Inc.) HKU\S-1-5-21-3660899758-607036233-2879557839-1001\...\Run: [electron.app.dllservices] => C:\Users\Michał\AppData\Roaming\.dllbackups\dllruntime.exe [63924677 2021-12-01] (Microsoft Corporation) [Brak podpisu cyfrowego] [Plik w użyciu] HKU\S-1-5-21-3660899758-607036233-2879557839-1001\...\Policies\Explorer: [] HKU\S-1-5-21-3660899758-607036233-2879557839-1001\...\MountPoints2: {709845aa-7618-11eb-82a3-f01faf07be54} - "F:\HiSuiteDownLoader.exe" HKU\S-1-5-21-3660899758-607036233-2879557839-1001\...\MountPoints2: {7a86a6d5-add8-11eb-82b5-f01faf07be54} - "F:\HiSuiteDownLoader.exe" HKU\S-1-5-21-3660899758-607036233-2879557839-1001\...\MountPoints2: {8e1e8be7-42cf-11eb-8298-f01faf07be54} - "D:\HiSuiteDownLoader.exe" HKU\S-1-5-21-3660899758-607036233-2879557839-1001\...\MountPoints2: {8e1e9291-42cf-11eb-8298-f01faf07be54} - "F:\HiSuiteDownLoader.exe" HKU\S-1-5-21-3660899758-607036233-2879557839-1001\...\MountPoints2: {98279402-3f03-11eb-8298-806e6f6e6963} - "D:\HiSuiteDownLoader.exe" HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\53.0.8.0\GoogleDriveFS.exe [54402392 2021-11-19] (Google LLC -> Google, Inc.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\96.0.4664.110\Installer\chrmstp.exe [2021-12-16] (Google LLC -> Google LLC) GroupPolicy: Ograniczenia ? <==== UWAGA Policies: C:\ProgramData\NTUSER.pol: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0AF53B5F-58A6-4E38-A9F5-09CDEDA2CC10} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.) Task: {0FF3590F-24C2-4950-BDA0-9A2975FE5965} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation) Task: {2AE778E1-821E-42AD-805F-667FB05772E0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-08] (Google LLC -> Google LLC) Task: {361FFE5F-B1B7-4971-9F1A-766C6DF1D129} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistInstaller.exe [1060384 2021-11-15] (Dell Inc -> Dell Inc.) Task: {6782CC52-FABD-45F4-A184-E4E69ADC61F0} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [855352 2016-02-19] (Intel(R) Trusted Connect Service -> Intel(R) Corporation) Task: {69D0FB8B-12AC-4A40-BA16-A21F7FFC08C7} - System32\Tasks\AutoKMS => C:\WINDOWS\AutoKMS\AutoKMS.exe [3738624 2020-12-09] () [Brak podpisu cyfrowego] Task: {70CDA7FC-3A40-4262-B3A8-C946920F7C69} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation) Task: {7CDC2580-B50C-4421-A6DB-EBF300FB8286} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.) Task: {869393CD-2EB6-4014-B916-06C3908AAA84} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.) Task: {9164FEDA-B34C-45A4-9FE5-D3E30BB33487} - System32\Tasks\e-pity2020_kwiecien => C:\Program Files (x86)\e-file\e-pity\Assets\signxml.exe [37168 2021-02-22] (e-file sp. z o.o. sp. k. -> e-file sp. z o.o. sp. k.) Task: {A28ED615-9282-4D26-9618-6CB56ABBAF0D} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {B1154B14-521C-4FBE-B1CB-A1CA5B0CA99B} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB" Task: {C5EABDB4-9968-4C65-BD2C-FA5A5A5D6939} - System32\Tasks\CCleanerSkipUAC - Michał => C:\Program Files\CCleaner\CCleaner.exe [29442688 2021-12-07] (Piriform Software Ltd -> Piriform Software Ltd) Task: {CE404047-679C-4206-8B52-724E4C5CAE81} - System32\Tasks\e-pity2020_styczen => C:\Program Files (x86)\e-file\e-pity\Assets\signxml.exe [37168 2021-02-22] (e-file sp. z o.o. sp. k. -> e-file sp. z o.o. sp. k.) Task: {DA58FE15-BE83-49D8-AE29-169CAA81B151} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-08] (Google LLC -> Google LLC) Task: {E4842356-DE09-464C-9DB9-63E8F8683B72} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-12-07] (Piriform Software Ltd -> Piriform) Task: {FF8D1559-7571-4EF1-890C-8CD042FF7552} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1626328 2014-01-23] (Microsoft Corporation -> Microsoft Corporation) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt Tcpip\Parameters: [DhcpNameServer] 31.11.173.2 89.228.4.126 Tcpip\..\Interfaces\{c3b5d0ba-4731-429d-bd57-0cfbc7ce424a}: [DhcpNameServer] 31.11.173.2 89.228.4.126 Edge: ======= Edge Extension: (Brak nazwy) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [nie znaleziono] Edge Extension: (Brak nazwy) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [nie znaleziono] Edge Extension: (Brak nazwy) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [nie znaleziono] Edge Extension: (Brak nazwy) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [nie znaleziono] Edge Profile: C:\Users\Michał\AppData\Local\Microsoft\Edge\User Data\Default [2021-12-02] FireFox: ======== FF DefaultProfile: wurwicx6.default FF ProfilePath: C:\Users\Michał\AppData\Roaming\Mozilla\Firefox\Profiles\wurwicx6.default [2021-04-18] FF ProfilePath: C:\Users\Michał\AppData\Roaming\Mozilla\Firefox\Profiles\bdvb9a5n.default-release-1638912781362 [2021-12-16] FF Homepage: Mozilla\Firefox\Profiles\bdvb9a5n.default-release-1638912781362 -> hxxp://www.gazeta.pl/0,0.html?p=190 FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-21] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-10-05] (Adobe Inc. -> Adobe Systems Inc.) FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2021-12-16] Chrome: ======= CHR Profile: C:\Users\Michał\AppData\Local\Google\Chrome\User Data\Default [2021-12-16] CHR Notifications: Default -> hxxps://www.facebook.com CHR HomePage: Default -> hxxp://192.168.186.1/ CHR StartupUrls: Default -> "","hxxp://www.google.com","hxxps://uk.search.yahoo.com/?type=779227&fr=yo-yhp-ch","hxxp://www.gazeta.pl/0,0.html?p=190" CHR Extension: (Just Black) - C:\Users\Michał\AppData\Local\Google\Chrome\User Data\Default\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2020-12-08] CHR Extension: (Dysk Google) - C:\Users\Michał\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-12-08] CHR Extension: (YouTube) - C:\Users\Michał\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-12-08] CHR Extension: (Adblock Plus - darmowy adblocker) - C:\Users\Michał\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-11-26] CHR Extension: (Lightshot (narzędzie do zrzutów ekranu)) - C:\Users\Michał\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbniclmhobmnbdlbpiphghaielnnpgdp [2020-12-08] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Michał\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30] CHR Extension: (Gmail) - C:\Users\Michał\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-12-08] CHR HKU\S-1-5-21-3660899758-607036233-2879557839-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] CHR HKLM-x32\...\Chrome\Extension: [ofoeigeaodhbjogdigckajfhjbonaofg] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.) R2 ApHidMonitorService; C:\Program Files\DellTPad\HidMonitorSvc.exe [104840 2019-05-10] (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.) R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44328 2021-11-29] (Dropbox, Inc -> Dropbox, Inc.) R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [436256 2021-09-29] (Dell Technologies Inc. -> Dell Technologies Inc.) R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3847712 2021-09-29] (Dell Technologies Inc. -> Dell Technologies Inc.) R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [462880 2021-09-29] (Dell Technologies Inc. -> Dell Technologies Inc.) R2 Dell Hardware Support; C:\Program Files\Dell\SupportAssistAgent\PCD\SupportAssist\Dsapi.exe [1024680 2021-09-01] (PC-Doctor, Inc. -> PC-Doctor, Inc.) R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [38600 2021-11-11] (Dell Inc -> ) R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [3141480 2021-12-09] (ESET, spol. s r.o. -> ESET) R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [3141480 2021-12-09] (ESET, spol. s r.o. -> ESET) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6138112 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation) R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [39968 2021-11-15] (Dell Inc -> Dell Inc.) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego] S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego] R3 DBUtilDrv2; C:\WINDOWS\System32\drivers\DBUtilDrv2.sys [24968 2021-12-16] (Microsoft Windows Hardware Compatibility Publisher -> Dell) R3 DDDriver; C:\WINDOWS\System32\drivers\dddriver64Dcsa.sys [43400 2021-09-09] (Microsoft Windows Hardware Compatibility Publisher -> Dell Technologies) R3 DellRbtn; C:\WINDOWS\System32\drivers\DellRbtn.sys [19440 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> OSR Open Systems Resources, Inc.) R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [183408 2021-10-21] (ESET, spol. s r.o. -> ESET) R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [124496 2021-10-21] (ESET, spol. s r.o. -> ESET) S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15824 2021-03-15] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET) R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [201984 2021-10-21] (ESET, spol. s r.o. -> ESET) R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [43920 2021-10-21] (ESET, spol. s r.o. -> ESET) R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [69736 2021-10-21] (ESET, spol. s r.o. -> ESET) R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [107456 2021-10-21] (ESET, spol. s r.o. -> ESET) R1 googledrivefs3525; C:\WINDOWS\System32\DRIVERS\googledrivefs3525.sys [389640 2021-09-09] (Google LLC -> Google, Inc.) R0 stdcfltn; C:\WINDOWS\System32\DRIVERS\stdcfltn.sys [30352 2016-10-07] (STMICROELECTRONICS S.R.L. -> ST Microelectronics) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-12-16 23:07 - 2021-12-16 23:08 - 000040555 _____ C:\Users\Michał\Downloads\Addition.txt 2021-12-16 23:04 - 2021-12-16 23:22 - 000000000 ____D C:\FRST 2021-12-16 23:04 - 2021-12-16 23:04 - 002311168 _____ (Farbar) C:\Users\Michał\Downloads\FRST64.exe 2021-12-16 23:04 - 2021-12-16 23:04 - 000000000 ____D C:\Users\Michał\Downloads\FRST-OlderVersion 2021-12-16 22:45 - 2021-12-16 22:46 - 000000000 ____D C:\ProgramData\mks_vir 2021-12-16 22:45 - 2021-12-16 22:45 - 037099280 _____ (mks_vir) C:\Users\Michał\Downloads\mks_vir_online.exe 2021-12-16 22:45 - 2021-12-16 22:45 - 000000955 _____ C:\Users\Michał\Desktop\mks_vir skaner online.lnk 2021-12-16 22:43 - 2021-12-16 23:23 - 000021050 _____ C:\Users\Michał\Downloads\FRST.txt 2021-12-16 22:34 - 2021-12-16 22:35 - 000017409 _____ C:\Users\Michał\Downloads\[Electro-Torrent.pl] Mistrz (2020) [1080p] [WEB-DL] [x264-KiT] [Film polski].torrent 2021-12-16 17:39 - 2021-12-16 17:39 - 000000000 ____D C:\Users\Michał\AppData\Roaming\Apple Computer 2021-12-16 16:12 - 2021-12-16 16:12 - 000000000 ____D C:\Users\Michał\Desktop\Recovered data 12-16 16_12_03 2021-12-16 16:03 - 2021-12-16 16:03 - 000018417 _____ C:\Users\Michał\Downloads\[Electro-Torrent.pl] Wondershare Recoverit [v10.0.1.6] (x64) Portable Cracked {CracksHash} [Patryczek29].torrent 2021-12-16 16:01 - 2021-12-16 16:01 - 000000000 ____D C:\Users\Michał\AppData\Local\FoneLab 2021-12-16 16:00 - 2021-12-16 16:01 - 002052352 _____ ( ) C:\Users\Michał\Downloads\data-retriever.exe 2021-12-16 15:59 - 2021-12-16 15:59 - 000000000 ____D C:\Users\Michał\AppData\Local\Apple 2021-12-16 15:58 - 2021-12-16 15:58 - 041896256 _____ (Apple Inc.) C:\Users\Michał\Downloads\QuickTimeInstaller.exe 2021-12-16 15:58 - 2021-12-16 15:58 - 000000000 ____D C:\Users\Michał\AppData\LocalLow\Apple Computer 2021-12-16 15:58 - 2021-12-16 15:58 - 000000000 ____D C:\ProgramData\Apple 2021-12-16 15:54 - 2021-12-16 16:00 - 000000000 ____D C:\Users\Michał\Desktop\Jaselka 2021-12-16 15:38 - 2021-12-16 15:38 - 000000000 ____D C:\WINDOWS\SystemTemp 2021-12-16 15:35 - 2021-12-16 15:35 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe 2021-12-16 15:35 - 2021-12-16 15:35 - 000011979 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-12-16 15:34 - 2021-12-16 15:34 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe 2021-12-16 15:32 - 2021-12-16 15:32 - 000000000 ____D C:\ProgramData\ALLPlayer 2021-12-16 15:30 - 2021-12-16 15:31 - 115463952 _____ (ALLPlayer Ltd. ) C:\Users\Michał\Downloads\ALLPlayerPL.exe 2021-12-16 15:27 - 2021-12-16 15:27 - 042762464 _____ C:\Users\Michał\Downloads\vlc-3.0.16-win64.exe 2021-12-16 15:24 - 2021-12-16 15:24 - 000014169 _____ C:\Users\Michał\Downloads\[Electro-Torrent.pl] EaseUS Data Recovery Wizard Technician 12.8.0 (x32_x64)[PL][Keygen].torrent 2021-12-16 15:24 - 2021-12-16 15:24 - 000000000 ___HD C:\$WinREAgent 2021-12-16 15:12 - 2021-12-16 15:12 - 007638224 _____ (Piriform Software Ltd) C:\Users\Michał\Downloads\rcsetup153 (2).exe 2021-12-16 15:12 - 2021-12-16 15:12 - 007638224 _____ (Piriform Software Ltd) C:\Users\Michał\Downloads\rcsetup153 (1).exe 2021-12-16 14:58 - 2021-12-16 14:58 - 000024968 _____ (Dell) C:\WINDOWS\system32\Drivers\DBUtilDrv2.sys 2021-12-16 14:23 - 2021-12-16 14:23 - 2832804604 _____ C:\Users\Michał\Downloads\_SC_0643.MOV 2021-12-07 22:33 - 2021-12-07 22:33 - 000000000 ____D C:\Users\Michał\Desktop\Stare dane programu Firefox 2021-12-07 22:21 - 2021-12-07 22:21 - 000000000 ____D C:\Users\Michał\AppData\Roaming\Ookla 2021-12-02 23:22 - 2021-12-02 23:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2021-12-01 21:24 - 2021-12-01 21:24 - 000000000 ____D C:\Users\Michał\AppData\Roaming\SketchUp 2021-12-01 21:24 - 2021-12-01 21:24 - 000000000 ____D C:\Users\Michał\AppData\Local\SketchUp 2021-12-01 21:24 - 2021-12-01 21:24 - 000000000 ____D C:\ProgramData\Reprise 2021-12-01 21:22 - 2021-12-01 21:22 - 000000108 _____ C:\Users\Michał\Desktop\Nowy dokument tekstowy.txt 2021-12-01 21:21 - 2021-12-16 23:22 - 000000000 ____D C:\Users\Michał\AppData\Roaming\dll-propagation 2021-12-01 21:21 - 2021-12-16 15:43 - 000000000 ____D C:\ProgramData\SketchUp 2021-12-01 21:20 - 2021-12-02 18:02 - 000000000 ___HD C:\Users\Michał\AppData\Roaming\.dllbackups 2021-12-01 21:19 - 2021-12-16 17:40 - 000000000 ____D C:\Users\Michał\AppData\Roaming\dllservices 2021-12-01 21:05 - 2021-12-01 21:05 - 000013586 _____ C:\Users\Michał\Downloads\[Electro-Torrent.pl] SketchUp Pro 2020 v20.0.363 + Crack (1).torrent 2021-12-01 21:04 - 2021-12-01 21:04 - 000017279 _____ C:\Users\Michał\Downloads\[Electro-Torrent.pl] SketchUp Pro 2021 v21.1.279 [ENG] [cracked].torrent 2021-12-01 21:03 - 2021-12-01 21:03 - 000013586 _____ C:\Users\Michał\Downloads\[Electro-Torrent.pl] SketchUp Pro 2020 v20.0.363 + Crack.torrent 2021-12-01 20:34 - 2021-12-01 20:34 - 000000000 _____ C:\WINDOWS\SysWOW64\wsmand.log.lock 2021-11-30 17:24 - 2021-11-30 17:24 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe 2021-11-29 16:10 - 2021-11-29 16:10 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys 2021-11-29 16:10 - 2021-11-29 16:10 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys 2021-11-29 16:10 - 2021-11-29 16:10 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys 2021-11-29 16:10 - 2021-11-29 16:10 - 000044328 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe 2021-11-28 15:03 - 2021-11-28 15:03 - 000605778 _____ C:\Users\Michał\Downloads\pge-oswiadczenie-o-wskazaniach-licznika-zmiana-30_12_2020_.pdf 2021-11-26 20:17 - 2021-11-26 20:17 - 007638224 _____ (Piriform Software Ltd) C:\Users\Michał\Downloads\rcsetup153.exe 2021-11-26 20:17 - 2021-11-26 20:17 - 002068816 _____ C:\Users\Michał\Downloads\DRW_Ad_Google_Installer_20211126.27590a135655.exe 2021-11-19 20:08 - 2021-11-19 20:08 - 001559836 _____ C:\WINDOWS\Minidump\111921-12453-01.dmp 2021-11-18 17:28 - 2021-11-18 17:28 - 000025449 _____ C:\Users\Michał\Downloads\POTWIERDZENIE_ZLOZENIA_ZLECENIA_DOTYCZACEGO_USLUGI_E-MAIL.pdf 2021-11-18 16:46 - 2021-12-01 20:32 - 000354064 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-11-17 23:30 - 2021-11-17 23:30 - 000000000 ____D C:\Users\Michał\Documents\Dell 2021-11-16 21:51 - 2021-11-16 21:51 - 000019461 _____ C:\Users\Michał\Downloads\[Electro-Torrent.pl] EaseUS Partition Master 16.0 Wszystkie wersje [Multi-PL] [Keymaker] PORTER78.torrent 2021-11-16 21:49 - 2021-11-16 21:49 - 000042277 _____ C:\Users\Michał\Downloads\[Electro-Torrent.pl] AOMEI Backupper v6.6 (WSZYSTKIE WERSJE) + Fix [Patryczek29].torrent ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-12-16 23:02 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-12-16 22:48 - 2020-12-08 23:53 - 000000000 ____D C:\Program Files (x86)\Google 2021-12-16 22:42 - 2020-12-08 23:47 - 000000000 ____D C:\Users\Michał\AppData\Local\Packages 2021-12-16 22:42 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-12-16 22:42 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-12-16 22:32 - 2021-04-18 11:14 - 000000000 ____D C:\Users\Michał\AppData\LocalLow\Mozilla 2021-12-16 22:31 - 2020-12-13 10:52 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-12-16 17:44 - 2020-12-13 11:01 - 002001858 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-12-16 17:44 - 2019-12-07 16:09 - 000857158 _____ C:\WINDOWS\system32\perfh015.dat 2021-12-16 17:44 - 2019-12-07 16:09 - 000182132 _____ C:\WINDOWS\system32\perfc015.dat 2021-12-16 17:44 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF 2021-12-16 17:43 - 2020-12-13 10:59 - 000003804 _____ C:\WINDOWS\system32\Tasks\AutoKMS 2021-12-16 17:41 - 2021-01-14 18:37 - 000000000 ____D C:\Program Files\CCleaner 2021-12-16 17:39 - 2021-01-13 21:37 - 000000000 ___RD C:\Users\Michał\Dysk Google 2021-12-16 17:39 - 2020-12-13 10:59 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-12-16 17:39 - 2020-12-13 10:52 - 000008192 ___SH C:\DumpStack.log.tmp 2021-12-16 17:39 - 2020-12-08 23:48 - 000000000 __SHD C:\Users\Michał\IntelGraphicsProfiles 2021-12-16 16:31 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2021-12-16 16:30 - 2021-01-03 16:23 - 000000000 ____D C:\Users\Michał\AppData\Roaming\uTorrent 2021-12-16 16:18 - 2021-01-03 16:24 - 000000000 ____D C:\Users\Michał\AppData\Local\BitTorrentHelper 2021-12-16 15:38 - 2019-12-07 16:12 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2021-12-16 15:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources 2021-12-16 15:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup 2021-12-16 15:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-12-16 15:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-12-16 15:38 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-12-16 15:37 - 2020-12-13 10:54 - 000000000 ____D C:\Users\Michał 2021-12-16 15:24 - 2020-12-09 00:03 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-12-16 15:20 - 2021-01-14 18:37 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2021-12-16 15:12 - 2020-12-09 00:03 - 137938848 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-12-16 15:09 - 2020-12-09 19:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 2021-12-16 15:03 - 2020-12-13 08:25 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-12-16 15:03 - 2020-12-13 08:25 - 000002286 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2021-12-16 14:57 - 2020-12-08 23:53 - 000002253 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2021-12-16 14:57 - 2020-12-08 23:53 - 000002212 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2021-12-11 15:17 - 2021-04-18 11:14 - 000000000 ____D C:\ProgramData\Mozilla 2021-12-09 22:08 - 2020-12-09 00:06 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2021-12-09 20:13 - 2020-12-13 10:59 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-12-09 20:13 - 2020-12-13 10:59 - 000003386 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-12-07 22:33 - 2021-08-15 21:30 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2021-12-02 23:22 - 2021-01-12 17:09 - 000000000 ____D C:\Program Files (x86)\Dropbox 2021-12-01 21:22 - 2021-01-14 00:11 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2021-12-01 21:20 - 2020-12-09 00:19 - 000000000 ____D C:\ProgramData\Package Cache 2021-12-01 20:31 - 2020-12-08 23:53 - 000000000 ____D C:\Users\Michał\AppData\Local\Google 2021-12-01 20:31 - 2020-12-08 23:53 - 000000000 ____D C:\Program Files\Google 2021-12-01 20:15 - 2021-04-29 21:35 - 000000000 ____D C:\ProgramData\Autodesk 2021-12-01 20:10 - 2021-04-29 21:40 - 000000000 ____D C:\Program Files\Common Files\Autodesk Shared 2021-12-01 20:07 - 2021-04-29 21:42 - 000000000 ____D C:\Users\Michał\AppData\Roaming\Autodesk 2021-11-30 17:49 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-11-30 17:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV 2021-11-30 17:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT 2021-11-30 17:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE 2021-11-30 17:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX 2021-11-30 17:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning 2021-11-30 17:49 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2021-11-23 18:55 - 2021-09-24 06:21 - 000002057 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk 2021-11-23 18:55 - 2021-09-24 06:21 - 000001899 _____ C:\Users\Default\Desktop\Google Slides.lnk 2021-11-23 18:55 - 2021-09-24 06:21 - 000001899 _____ C:\Users\Default\Desktop\Google Sheets.lnk 2021-11-23 18:55 - 2021-09-24 06:21 - 000001887 _____ C:\Users\Default\Desktop\Google Docs.lnk 2021-11-22 16:05 - 2020-12-09 00:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell 2021-11-22 16:05 - 2020-12-09 00:13 - 000000000 ____D C:\Program Files\Dell 2021-11-22 16:03 - 2020-12-13 10:59 - 000003920 _____ C:\WINDOWS\system32\Tasks\Dell SupportAssistAgent AutoUpdate 2021-11-19 20:48 - 2020-12-09 00:04 - 000000000 ____D C:\ProgramData\Packages 2021-11-19 20:08 - 2021-11-02 19:24 - 727116812 _____ C:\WINDOWS\MEMORY.DMP 2021-11-19 20:08 - 2021-02-17 13:27 - 000000000 ____D C:\WINDOWS\Minidump 2021-11-19 00:14 - 2018-04-28 08:56 - 000000871 _____ C:\Users\Michał\Desktop\Ważne ustawienia.txt 2021-11-18 16:46 - 2021-02-17 09:21 - 000000000 ____D C:\WINDOWS\Panther ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================