Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 09-10-2019 01 Uruchomiony przez SYSTEM MININT-DTP0NJ8 (11-10-2019 22:16:09) Uruchomiony z F:\ Platform: Windows 7 Professional Service Pack 1 (X64) Język: Polski (Polska) Internet Explorer Wersja 11 Tryb startu: Recovery Domyślne: ControlSet001 [b]UWAGA!:=====> Jeśli system uruchamia się, FRST należy uruchomić z poziomu Trybu awaryjnego lub normalnego w celu utworzenia kompletnego raportu.[/b] Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Rejestr (filtrowane) =========================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [Energy Manager] => C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [16094704 2015-06-19] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) HKLM\...\Run: [Lenovo Utility] => C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [10843120 2015-06-19] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1353680 2016-11-14] (Microsoft Corporation -> Microsoft Corporation) HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\ecmdS.exe [180448 2019-07-25] (ESET, spol. s r.o. -> ESET) HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2014-04-10] (Intel Corporation - Software and Firmware Products -> Intel Corporation) HKU\Lenovo\...\Run: [XperiaCompanionAgent] => C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanionAgent.exe [2102112 2017-11-09] (Sony Mobile Communications AB -> Sony) HKU\Lenovo\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [83524968 2019-09-12] (Skype Software Sarl -> Skype Technologies S.A.) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0568B270-79A3-4A5A-8B90-733DA1A30A1F} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfigAndContent Task: {0568B270-79A3-4A5A-8B90-733DA1A30A1F} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => Command(2): C:\Windows\system32\GWX\GWXDetector.exe [343040 [343040 2015-07-04]] (Microsoft Corporation) Task: {0CC138D0-9CCC-4880-8DBE-547496729865} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [271960 2017-04-09] (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {15BBE43D-9CBC-4A15-BE12-373E6E5E8007} - \Microsoft\Windows\Windows Activation Technologies\ValidationTask -> Brak pliku <==== UWAGA Task: {2F57269B-1E09-4E2D-AB1E-B0FDAC7D279C} - \Microsoft\Windows\WindowsBackup\ConfigNotification -> Brak pliku <==== UWAGA Task: {46A16321-0972-470F-AD54-B7D29B6AAB05} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-06-19] (Google Inc -> Google Inc.) Task: {5F31E6E6-FBE4-4C97-9483-51CFD5D683F0} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfig Task: {5F31E6E6-FBE4-4C97-9483-51CFD5D683F0} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => Command(2): C:\Windows\system32\GWX\GWXDetector.exe [343040 [343040 2015-07-04]] (Microsoft Corporation) Task: {5F3831A4-7401-47C2-930C-FC06076AC719} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-06-19] (Google Inc -> Google Inc.) Task: {680E9372-ED46-4554-8C59-8F718DD4FDE9} - System32\Tasks\e-pity2016a_styczen => C:\Program Files (x86)\e-file\e-pity\Assets\signxml.exe [2251720 2019-04-11] (e-file sp. z o.o. -> e-file sp. z o.o. sp. k.) Task: {73465440-16F8-4774-AFAB-F961A6BAD57A} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfig Task: {73465440-16F8-4774-AFAB-F961A6BAD57A} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(2): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshContent Task: {73465440-16F8-4774-AFAB-F961A6BAD57A} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(3): C:\Windows\system32\GWX\GWXDetector.exe [343040 [343040 2015-07-04]] (Microsoft Corporation) Task: {A5E02463-17C7-4072-93F0-47A83E01D6DE} - System32\Tasks\e-pity2017_kwiecien => C:\Program Files (x86)\e-file\e-pity\Assets\signxml.exe [2251720 2019-04-11] (e-file sp. z o.o. -> e-file sp. z o.o. sp. k.) Task: {A97234DF-FC41-4DCC-BE34-3FEC49944F44} - System32\Tasks\e-pity2018_kwiecien => C:\Program Files (x86)\e-file\e-pity\Assets\signxml.exe [2251720 2019-04-11] (e-file sp. z o.o. -> e-file sp. z o.o. sp. k.) Task: {AC4E5ACF-89F7-4220-BA21-81EE183975E2} - \Microsoft\Windows\Application Experience\AitAgent -> Brak pliku <==== UWAGA Task: {B5E87CC8-587A-4641-B375-CA61FA9D6EE1} - System32\Tasks\e-pity2018_styczen => C:\Program Files (x86)\e-file\e-pity\Assets\signxml.exe [2251720 2019-04-11] (e-file sp. z o.o. -> e-file sp. z o.o. sp. k.) Task: {B743D337-9ED4-4C6A-8318-D79AD8A724F3} - System32\Tasks\e-pity2016a_kwiecien => C:\Program Files (x86)\e-file\e-pity\Assets\signxml.exe [2251720 2019-04-11] (e-file sp. z o.o. -> e-file sp. z o.o. sp. k.) Task: {BC4F86B8-13A1-4B51-BC4E-EEC49F0BA54E} - System32\Tasks\GoogleUpdateTaskMachineUA1d0e429ad55da2 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-06-19] (Google Inc -> Google Inc.) Task: {C0169DF1-7183-410A-9F79-A2503078806A} - System32\Tasks\Odkurzacz => C:\Program Files (x86)\Odkurzacz\odkurzacz.exe [1046528 2016-04-06] (FranmoSoftware) <==== UWAGA Task: {C42BC989-2F68-4A83-8A93-82DA430460F4} - System32\Tasks\ReimageUpdater => C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe <==== UWAGA Task: {CA2A10AB-5942-4D65-87FE-1812B8AD2806} - System32\Tasks\GoogleUpdateTaskMachineCore1d0e429a5e7e34 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-06-19] (Google Inc -> Google Inc.) Task: {CE960704-F8DE-4E6E-BD4F-C93B244B9358} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\\MpCmdRun.exe [410784 2016-11-14] (Microsoft Corporation -> Microsoft Corporation) Task: {CEE64558-E1A7-4D9D-80A7-2001912BE5B5} - \Microsoft\Windows\MemoryDiagnostic\CorruptionDetector -> Brak pliku <==== UWAGA Task: {D5D7B16D-1131-4D1E-AE29-A346FD5B189B} - System32\Tasks\Games\UpdateCheck_S-1-5-21-1363840168-2206756307-1032839220-1000 => {CA22F5B1-E06F-4A2B-94FC-21E87FE53781} C:\Windows\System32\gameux.dll [2746368 2012-12-07] (Microsoft Corporation) Task: {E256725E-D794-47B3-B624-419FD9E13002} - \Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline -> Brak pliku <==== UWAGA Task: {F8C22889-4F0A-41E9-8778-28CAD6C85592} - System32\Tasks\e-pity2017_styczen => C:\Program Files (x86)\e-file\e-pity\Assets\signxml.exe [2251720 2019-04-11] (e-file sp. z o.o. -> e-file sp. z o.o. sp. k.) Task: {FA2BC0A6-8D4B-458A-85C8-2B8C72487513} - \Microsoft\Windows\MemoryDiagnostic\DecompressionFailureDetector -> Brak pliku <==== UWAGA Task: {FDD89584-D4C6-4B16-81C2-09876589FAEF} - System32\Tasks\{07042746-C38E-4874-9D00-1E89D877FC0B} => C:\Program Files\Mozilla Firefox\firefox.exe (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Usługi (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1687680 2016-05-25] (Skype Software Sarl -> Microsoft Corporation) S2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2428848 2019-07-25] (ESET, spol. s r.o. -> ESET) S3 ekrnEpfw; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2428848 2019-07-25] (ESET, spol. s r.o. -> ESET) S2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [346976 2011-03-14] (HUAWEI Technologies Co., Ltd. -> ) S2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [318568 2014-11-13] (Intel Corporation - pGFX -> Intel Corporation) S2 Mobile Broadband HL Service; C:\ProgramData\MobileBrServ\mbbservice.exe [242264 2014-11-20] (Huawei Technologies Co.,Ltd. -> ) S2 Mobile Partner. RunOuc; C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe [655744 2012-09-22] (HUAWEI Technologies Co., Ltd. -> ) S2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation -> Microsoft Corporation) S3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation -> Microsoft Corporation) S2 valWBFPolicyService; C:\Windows\system32\valWBFPolicyService.exe [49040 2014-07-24] (Validity Sensors, Inc -> Synaptics Incorporated) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) S2 XperiaCompanionService; C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe [2201440 2017-11-09] (Sony Mobile Communications AB -> Sony) ===================== Sterowniki (filtrowane) ====================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 AcpiPmi; C:\Windows\system32\drivers\acpipmi.sys [12800 2010-11-21] (Microsoft Corporation) S1 AFD; C:\Windows\system32\drivers\afd.sys [496128 2017-04-04] (Microsoft Corporation) S3 AmdK8; C:\Windows\system32\drivers\amdk8.sys [64512 2019-08-29] (Microsoft Corporation) S3 amdkmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [13936128 2014-03-27] (Advanced Micro Devices, Inc.) S3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [628224 2014-03-27] (Advanced Micro Devices, Inc.) S0 amdkmpfd; C:\Windows\System32\DRIVERS\amdkmpfd.sys [36608 2013-12-14] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) S3 AmdPPM; C:\Windows\system32\drivers\amdppm.sys [60928 2019-08-29] (Microsoft Corporation) S3 AppID; C:\Windows\system32\drivers\appid.sys [62464 2019-08-29] (Microsoft Corporation) S1 Beep; C:\Windows\System32\Drivers\Beep.sys [6656 2009-07-14] (Microsoft Corporation) S3 bowser; C:\Windows\System32\DRIVERS\bowser.sys [90112 2018-07-18] (Microsoft Corporation) S3 BrFiltLo; C:\Windows\system32\drivers\BrFiltLo.sys [18432 2009-06-10] (Brother Industries, Ltd.) S3 BrFiltUp; C:\Windows\system32\drivers\BrFiltUp.sys [8704 2009-06-10] (Brother Industries, Ltd.) S3 Brserid; C:\Windows\System32\Drivers\Brserid.sys [286720 2009-07-14] (Brother Industries Ltd.) S3 BrSerWdm; C:\Windows\System32\Drivers\BrSerWdm.sys [47104 2009-06-10] (Brother Industries Ltd.) S3 BrUsbMdm; C:\Windows\System32\Drivers\BrUsbMdm.sys [14976 2009-06-10] (Brother Industries Ltd.) S3 BrUsbSer; C:\Windows\System32\Drivers\BrUsbSer.sys [14720 2009-06-10] (Brother Industries Ltd.) S3 BthEnum; C:\Windows\system32\drivers\BthEnum.sys [41984 2019-07-30] (Microsoft Corporation) S3 BTHMODEM; C:\Windows\system32\drivers\bthmodem.sys [72192 2009-07-14] (Microsoft Corporation) S3 BthPan; C:\Windows\system32\drivers\bthpan.sys [119296 2017-07-06] (Microsoft Corporation) S3 BTHPORT; C:\Windows\System32\Drivers\BTHport.sys [556032 2019-07-30] (Microsoft Corporation) S3 BTHUSB; C:\Windows\System32\Drivers\BTHUSB.sys [80384 2019-07-30] (Microsoft Corporation) S4 cdfs; C:\Windows\System32\DRIVERS\cdfs.sys [92672 2019-02-10] (Microsoft Corporation) S3 circlass; C:\Windows\system32\drivers\circlass.sys [45568 2009-07-14] (Microsoft Corporation) S3 CompositeBus; C:\Windows\System32\DRIVERS\CompositeBus.sys [38912 2010-11-21] (Microsoft Corporation) S1 CSC; C:\Windows\System32\drivers\csc.sys [516096 2018-06-29] (Microsoft Corporation) S1 DfsC; C:\Windows\System32\Drivers\dfsc.sys [115200 2018-04-25] (Microsoft Corporation) S1 discache; C:\Windows\System32\drivers\discache.sys [40448 2009-07-14] (Microsoft Corporation) S3 dmvsc; C:\Windows\system32\drivers\dmvsc.sys [71168 2010-11-21] (Microsoft Corporation) S3 drmkaud; C:\Windows\system32\drivers\drmkaud.sys [5632 2015-12-08] (Microsoft Corporation) S1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [149144 2019-07-25] (ESET, spol. s r.o. -> ESET) S0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [102464 2019-07-25] (ESET, spol. s r.o. -> ESET) S1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [189232 2019-07-25] (ESET, spol. s r.o. -> ESET) S2 ekbdflt; C:\Windows\System32\DRIVERS\ekbdflt.sys [50488 2019-07-25] (ESET, spol. s r.o. -> ESET) S1 epfw; C:\Windows\System32\DRIVERS\epfw.sys [76896 2019-07-25] (ESET, spol. s r.o. -> ESET) S1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [61360 2019-07-25] (ESET, spol. s r.o. -> ESET) S1 epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [113336 2019-07-25] (ESET, spol. s r.o. -> ESET) S3 ErrDev; C:\Windows\system32\drivers\errdev.sys [9728 2018-02-10] (Microsoft Corporation) S3 exfat; C:\Windows\System32\Drivers\exfat.sys [195584 2019-02-10] (Microsoft Corporation) S3 fastfat; C:\Windows\System32\Drivers\fastfat.sys [205312 2019-02-10] (Microsoft Corporation) S3 hcw85cir; C:\Windows\system32\drivers\hcw85cir.sys [31232 2009-06-10] (Hauppauge Computer Works, Inc.) S3 HdAudAddService; C:\Windows\system32\drivers\HdAudio.sys [350208 2019-08-27] (Microsoft Corporation) S3 HidBth; C:\Windows\system32\drivers\hidbth.sys [100864 2009-07-14] (Microsoft Corporation) S3 HidIr; C:\Windows\system32\drivers\hidir.sys [46592 2009-07-14] (Microsoft Corporation) S3 HidUsb; C:\Windows\system32\drivers\hidusb.sys [30208 2019-03-05] (Microsoft Corporation) S3 HTTP; C:\Windows\System32\drivers\HTTP.sys [754176 2018-01-01] (Microsoft Corporation) S0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2013-08-30] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) S3 intelppm; C:\Windows\system32\drivers\intelppm.sys [62464 2019-08-29] (Microsoft Corporation) S3 IpFilterDriver; C:\Windows\System32\DRIVERS\ipfltdrv.sys [82944 2010-11-21] (Microsoft Corporation) S3 IPNAT; C:\Windows\System32\drivers\ipnat.sys [116224 2009-07-14] (Microsoft Corporation) S3 IRENUM; C:\Windows\System32\drivers\irenum.sys [17920 2009-07-14] (Microsoft Corporation) S2 lltdio; C:\Windows\System32\DRIVERS\lltdio.sys [60928 2009-07-14] (Microsoft Corporation) S2 luafv; C:\Windows\system32\drivers\luafv.sys [114688 2019-03-29] (Microsoft Corporation) S3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [99288 2013-12-19] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) S3 Modem; C:\Windows\System32\drivers\modem.sys [40448 2009-07-14] (Microsoft Corporation) S3 monitor; C:\Windows\System32\DRIVERS\monitor.sys [30208 2009-07-14] (Microsoft Corporation) S0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation -> Microsoft Corporation) S3 mpsdrv; C:\Windows\System32\drivers\mpsdrv.sys [77312 2018-08-10] (Microsoft Corporation) S3 MRxDAV; C:\Windows\system32\drivers\mrxdav.sys [142336 2016-09-08] (Microsoft Corporation) S3 mrxsmb; C:\Windows\System32\DRIVERS\mrxsmb.sys [161280 2019-08-29] (Microsoft Corporation) S3 mrxsmb10; C:\Windows\System32\DRIVERS\mrxsmb10.sys [291328 2019-08-29] (Microsoft Corporation) S3 mrxsmb20; C:\Windows\System32\DRIVERS\mrxsmb20.sys [129536 2019-08-29] (Microsoft Corporation) S1 Msfs; C:\Windows\System32\Drivers\Msfs.sys [26112 2019-02-03] (Microsoft Corporation) S3 mshidkmdf; C:\Windows\System32\drivers\mshidkmdf.sys [8192 2009-07-14] (Microsoft Corporation) S3 NativeWifiP; C:\Windows\System32\DRIVERS\nwifi.sys [324608 2017-09-13] (Microsoft Corporation) S3 NdisCap; C:\Windows\System32\DRIVERS\ndiscap.sys [35328 2009-07-14] (Microsoft Corporation) S3 NdisTapi; C:\Windows\System32\DRIVERS\ndistapi.sys [24064 2018-12-08] (Microsoft Corporation) S3 Ndisuio; C:\Windows\System32\DRIVERS\ndisuio.sys [56832 2010-11-21] (Microsoft Corporation) S3 NDProxy; C:\Windows\System32\Drivers\NDProxy.sys [58368 2018-12-08] (Microsoft Corporation) S1 NetBIOS; C:\Windows\System32\DRIVERS\netbios.sys [45056 2018-01-01] (Microsoft Corporation) S1 NetBT; C:\Windows\System32\DRIVERS\netbt.sys [262656 2019-02-21] (Microsoft Corporation) S3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation -> Microsoft Corporation) S1 Npfs; C:\Windows\System32\Drivers\Npfs.sys [44544 2019-08-29] (Microsoft Corporation) S1 nsiproxy; C:\Windows\System32\drivers\nsiproxy.sys [26112 2017-08-11] (Microsoft Corporation) S2 PEAUTH; C:\Windows\System32\drivers\peauth.sys [663552 2019-06-12] (Microsoft Corporation) S3 Processor; C:\Windows\system32\drivers\processr.sys [60928 2019-08-29] (Microsoft Corporation) S1 Psched; C:\Windows\System32\DRIVERS\pacer.sys [131584 2018-01-01] (Microsoft Corporation) S3 qcusbser; C:\Windows\System32\DRIVERS\qcusbser.sys [254520 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated) S3 QWAVEdrv; C:\Windows\system32\drivers\qwavedrv.sys [46592 2009-07-14] (Microsoft Corporation) S1 rdbss; C:\Windows\System32\DRIVERS\rdbss.sys [317440 2017-10-12] (Microsoft Corporation) S3 rdpbus; C:\Windows\System32\DRIVERS\rdpbus.sys [24064 2009-07-14] (Microsoft Corporation) S1 RDPCDD; C:\Windows\System32\DRIVERS\RDPCDD.sys [7680 2009-07-14] (Microsoft Corporation) S3 RDPDR; C:\Windows\System32\drivers\rdpdr.sys [165888 2010-11-21] (Microsoft Corporation) S1 RDPENCDD; C:\Windows\System32\drivers\rdpencdd.sys [7680 2009-07-14] (Microsoft Corporation) S1 RDPREFMP; C:\Windows\System32\drivers\rdprefmp.sys [8192 2009-07-14] (Microsoft Corporation) S3 RDPWD; C:\Windows\System32\Drivers\RDPWD.sys [212480 2014-07-17] (Microsoft Corporation) S3 RFCOMM; C:\Windows\System32\DRIVERS\rfcomm.sys [158720 2009-07-14] (Microsoft Corporation) S2 rspndr; C:\Windows\System32\DRIVERS\rspndr.sys [76800 2009-07-14] (Microsoft Corporation) S3 s3cap; C:\Windows\system32\drivers\vms3cap.sys [6656 2010-11-21] (Microsoft Corporation) S3 scfilter; C:\Windows\System32\DRIVERS\scfilter.sys [29696 2010-11-21] (Microsoft Corporation) S4 secdrv; C:\Windows\System32\Drivers\secdrv.sys [23040 2009-06-10] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) S3 sffdisk; C:\Windows\system32\drivers\sffdisk.sys [14336 2009-07-14] (Microsoft Corporation) S3 sffp_mmc; C:\Windows\system32\drivers\sffp_mmc.sys [13824 2009-07-14] (Microsoft Corporation) S3 sffp_sd; C:\Windows\system32\drivers\sffp_sd.sys [14336 2010-11-21] (Microsoft Corporation) S3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [34544 2014-04-08] (Synaptics Incorporated -> Synaptics Incorporated) S3 srv; C:\Windows\System32\DRIVERS\srv.sys [464384 2019-08-29] (Microsoft Corporation) S3 srv2; C:\Windows\System32\DRIVERS\srv2.sys [406016 2019-08-29] (Microsoft Corporation) S3 srvnet; C:\Windows\System32\DRIVERS\srvnet.sys [169984 2019-08-29] (Microsoft Corporation) S2 tcpipreg; C:\Windows\System32\drivers\tcpipreg.sys [45568 2012-10-03] (Microsoft Corporation) S3 TDPIPE; C:\Windows\System32\drivers\tdpipe.sys [15872 2009-07-14] (Microsoft Corporation) S3 TDTCP; C:\Windows\System32\drivers\tdtcp.sys [23552 2012-02-17] (Microsoft Corporation) S1 tdx; C:\Windows\System32\DRIVERS\tdx.sys [117248 2017-07-29] (Microsoft Corporation) S3 tssecsrv; C:\Windows\System32\DRIVERS\tssecsrv.sys [40448 2017-08-13] (Microsoft Corporation) S3 TsUsbFlt; C:\Windows\System32\drivers\tsusbflt.sys [59392 2010-11-21] (Microsoft Corporation) S3 TsUsbGD; C:\Windows\system32\drivers\TsUsbGD.sys [31232 2010-11-21] (Microsoft Corporation) S3 tunnel; C:\Windows\System32\DRIVERS\tunnel.sys [125440 2010-11-21] (Microsoft Corporation) S4 udfs; C:\Windows\System32\DRIVERS\udfs.sys [328192 2019-02-10] (Microsoft Corporation) S3 usbaudio; C:\Windows\System32\drivers\usbaudio.sys [109824 2013-07-12] (Microsoft Corporation) S3 usbccgp; C:\Windows\system32\drivers\usbccgp.sys [99840 2018-05-02] (Microsoft Corporation) S3 usbcir; C:\Windows\system32\drivers\usbcir.sys [100864 2013-07-12] (Microsoft Corporation) S3 usbehci; C:\Windows\system32\drivers\usbehci.sys [56320 2018-05-02] (Microsoft Corporation) S3 usbhub; C:\Windows\system32\drivers\usbhub.sys [344064 2018-05-02] (Microsoft Corporation) S3 usbohci; C:\Windows\system32\drivers\usbohci.sys [25600 2018-05-02] (Microsoft Corporation) S3 usbprint; C:\Windows\System32\DRIVERS\usbprint.sys [25088 2009-07-14] (Microsoft Corporation) S3 usbscan; C:\Windows\System32\DRIVERS\usbscan.sys [42496 2013-07-03] (Microsoft Corporation) S3 USBSTOR; C:\Windows\System32\DRIVERS\USBSTOR.SYS [91648 2016-02-03] (Microsoft Corporation) S3 usbuhci; C:\Windows\system32\drivers\usbuhci.sys [30720 2018-05-02] (Microsoft Corporation) S3 usbvideo; C:\Windows\System32\Drivers\usbvideo.sys [185344 2013-07-12] (Microsoft Corporation) S3 usb_rndisx; C:\Windows\System32\DRIVERS\usb8023x.sys [19968 2013-02-12] (Microsoft Corporation) S3 vga; C:\Windows\System32\DRIVERS\vgapnp.sys [29184 2009-07-14] (Microsoft Corporation) S3 vwifibus; C:\Windows\System32\DRIVERS\vwifibus.sys [24576 2009-07-14] (Microsoft Corporation) S1 vwififlt; C:\Windows\System32\DRIVERS\vwififlt.sys [59904 2009-07-14] (Microsoft Corporation) S3 vwifimp; C:\Windows\System32\DRIVERS\vwifimp.sys [17920 2009-07-14] (Microsoft Corporation) S3 WANARP; C:\Windows\System32\DRIVERS\wanarp.sys [88576 2018-12-08] (Microsoft Corporation) S1 Wanarpv6; C:\Windows\System32\DRIVERS\wanarp.sys [88576 2018-12-08] (Microsoft Corporation) S1 WfpLwf; C:\Windows\System32\DRIVERS\wfplwf.sys [12800 2009-07-14] (Microsoft Corporation) S3 WinUsb; C:\Windows\System32\DRIVERS\WinUSB.sys [41984 2010-11-21] (Microsoft Corporation) S3 WmiAcpi; C:\Windows\system32\drivers\wmiacpi.sys [14336 2018-02-10] (Microsoft Corporation) S4 ws2ifsl; C:\Windows\system32\drivers\ws2ifsl.sys [22016 2019-08-20] (Microsoft Corporation) S3 WudfPf; C:\Windows\System32\drivers\WudfPf.sys [87040 2012-07-26] (Microsoft Corporation) S3 WUDFRd; C:\Windows\System32\DRIVERS\WUDFRd.sys [198656 2012-07-26] (Microsoft Corporation) S3 cpuz134; \??\C:\Users\Lenovo\AppData\Local\Temp\cpuz134\cpuz134_x64.sys [X] <==== UWAGA ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-10-11 22:15 - 2019-10-11 22:16 - 000000000 ____D C:\FRST 2019-10-10 15:50 - 2019-10-10 15:50 - 006397939 _____ C:\Users\Lenovo\Downloads\Zarządzenie Nr 56 2018 Burmistrza Siechnic.pdf 2019-10-10 15:46 - 2019-10-10 15:47 - 009073640 _____ C:\Users\Lenovo\Downloads\Procedury.pdf 2019-10-08 10:23 - 2019-10-11 21:12 - 000000000 ____D C:\Program Files (x86)\GUM41DF.tmp 2019-09-29 20:24 - 2019-09-29 20:24 - 000217408 _____ C:\Users\Lenovo\Downloads\3859_17.pdf 2019-09-20 21:33 - 2019-09-20 21:33 - 001586315 _____ C:\Users\Lenovo\Downloads\SKMBT_C28019092009320.pdf 2019-09-18 21:28 - 2019-09-18 21:28 - 000000000 ____D C:\Users\Lenovo\Desktop\Nowy folder (2) ==================== Jeden miesiąc (zmodyfikowane) ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-10-11 21:12 - 2015-07-02 12:39 - 000000000 ___SD C:\Windows\System32\GWX 2019-10-11 21:12 - 2015-06-19 09:43 - 000000000 ____D C:\users\Lenovo 2019-10-11 21:12 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\PolicyDefinitions 2019-10-11 21:12 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf 2019-10-11 21:12 - 2009-07-14 04:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared 2019-10-11 21:11 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\registration 2019-10-11 07:15 - 2015-06-19 21:06 - 000000000 ____D C:\ProgramData\Validity 2019-10-10 18:15 - 2015-07-07 16:54 - 000000000 ____D C:\Windows\System32\MRT 2019-10-10 17:48 - 2016-11-18 20:07 - 000000000 ____D C:\Users\Lenovo\AppData\LocalLow\Mozilla 2019-10-10 17:13 - 2015-06-19 12:14 - 000000000 __SHD C:\Users\Lenovo\IntelGraphicsProfiles 2019-10-08 12:28 - 2017-10-28 22:11 - 000008157 _____ C:\Users\Lenovo\Downloads\FW Poczta służbowa.eml 2019-10-08 12:28 - 2017-10-28 20:38 - 000491352 _____ C:\Users\Lenovo\Downloads\zdj�cie.eml 2019-10-08 10:28 - 2015-06-19 09:51 - 000000000 ____D C:\Program Files (x86)\Google 2019-10-08 10:22 - 2015-06-19 12:33 - 000000000 ____D C:\ProgramData\Energy Manager 2019-10-08 10:09 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2019-09-29 21:08 - 2009-07-14 05:45 - 000031312 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2019-09-29 21:08 - 2009-07-14 05:45 - 000031312 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2019-09-29 20:03 - 2011-04-12 14:21 - 000744772 _____ C:\Windows\System32\perfh015.dat 2019-09-29 20:03 - 2011-04-12 14:21 - 000157720 _____ C:\Windows\System32\perfc015.dat 2019-09-29 20:03 - 2009-07-14 06:13 - 001681520 _____ C:\Windows\System32\PerfStringBackup.INI 2019-09-23 16:18 - 2015-06-19 21:47 - 000000000 ____D C:\Users\Lenovo\AppData\Local\Microsoft Help 2019-09-21 20:51 - 2019-09-06 15:54 - 000000000 ____D C:\Program Files\Mozilla Firefox 2019-09-21 20:51 - 2017-04-07 21:34 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2019-09-20 13:29 - 2015-06-19 09:53 - 000002189 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2019-09-15 11:08 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\rescache 2019-09-15 09:36 - 2009-07-14 06:08 - 000032608 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2019-09-11 15:48 - 2009-07-14 05:45 - 000420104 _____ C:\Windows\System32\FNTCACHE.DAT 2019-09-11 15:42 - 2015-07-01 16:41 - 000000000 ___SD C:\Windows\System32\CompatTel ==================== FLock ================ 2019-10-11 07:14 C:\hiberfil.sys ==================== KnownDLLs (filtrowane) ========================= ==================== SigCheck =============================== (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) C:\Windows\System32\winlogon.exe [2019-09-10 19:22] - [2019-08-14 05:52] - 000455680 _____ (Microsoft Corporation) CA0E2DF49879C57652531331EF5AE632 C:\Windows\System32\wininit.exe => MD5 jest poprawne C:\Windows\SysWOW64\wininit.exe => MD5 jest poprawne C:\Windows\explorer.exe => MD5 jest poprawne C:\Windows\SysWOW64\explorer.exe => MD5 jest poprawne C:\Windows\System32\svchost.exe => MD5 jest poprawne C:\Windows\SysWOW64\svchost.exe => MD5 jest poprawne C:\Windows\System32\services.exe => MD5 jest poprawne C:\Windows\System32\User32.dll [2019-09-10 19:22] - [2019-08-13 23:16] - 001009664 _____ (Microsoft Corporation) A6505B03A525F0BD9739888C16FA0CD1 C:\Windows\SysWOW64\User32.dll [2019-09-10 19:22] - [2019-08-13 23:13] - 000833536 _____ (Microsoft Corporation) F2A052601B4F2AB910E667AB0877C147 C:\Windows\System32\userinit.exe => MD5 jest poprawne C:\Windows\SysWOW64\userinit.exe => MD5 jest poprawne C:\Windows\System32\rpcss.dll [2019-08-30 07:38] - [2019-07-30 03:20] - 000517632 _____ (Microsoft Corporation) 6903B7516D5A766E4690CF6F31A20F7F C:\Windows\System32\dnsapi.dll => MD5 jest poprawne C:\Windows\SysWOW64\dnsapi.dll => MD5 jest poprawne C:\Windows\System32\dllhost.exe => MD5 jest poprawne C:\Windows\SysWOW64\dllhost.exe => MD5 jest poprawne C:\Windows\System32\Drivers\volsnap.sys => MD5 jest poprawne ==================== Powiązania plików (filtrowane) ============= ==================== Punkty Przywracania systemu ========================= Data punktu przywracania: 2019-09-02 18:49 Data punktu przywracania: 2019-09-09 17:21 Data punktu przywracania: 2019-09-15 18:00 Data punktu przywracania: 2019-09-22 20:05 Data punktu przywracania: 2019-09-29 19:08 Data punktu przywracania: 2019-10-08 10:29 Data punktu przywracania: 2019-10-11 07:16 ==================== Statystyki pamięci =========================== Procent pamięci w użyciu: 19% Całkowita pamięć fizyczna: 4024.36 MB Dostępna pamięć fizyczna: 3247.3 MB Całkowita pamięć wirtualna: 4022.56 MB Dostępna pamięć wirtualna: 3225.71 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:931.41 GB) (Free:852.7 GB) NTFS Drive e: (CD_ROM) (CDROM) (Total:3.72 GB) (Free:0 GB) UDF Drive f: () (Removable) (Total:14.65 GB) (Free:10.84 GB) NTFS Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS Drive y: (Zastrzeżone przez system) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[system z komponentami startowymi (pozyskano odczytując dysk)] ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 2F7D3698) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 14.6 GB) (Disk ID: CAD4EBEA) Partition 00: (Active) - (Size=0) - (Type=00) UWAGA ===> 0 byte partition bootkit. Partition 3: (Active) - (Size=14.6 GB) - (Type=07 NTFS) LastRegBack: 2019-10-08 12:14 ==================== Koniec FRST.txt ============================