Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 21-08-2021 Uruchomiony przez Fujitsu (administrator) LIFEBOOK-E554 (FUJITSU LIFEBOOK E554) (25-08-2021 16:03:33) Uruchomiony z C:\Users\Fujitsu\Desktop Załadowane profile: Fujitsu Platform: Windows 10 Home Wersja 21H1 19043.1165 (X64) Język: Polski (Polska) Domyślna przeglądarka: Chrome Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <13> (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Ivaylo Beltchev -> IvoSoft) [Brak podpisu cyfrowego] C:\Program Files\Classic Shell\ClassicStartMenu.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\NisSrv.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2> (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3573696 2019-01-09] (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163640 2017-08-13] (Ivaylo Beltchev -> IvoSoft) [Brak podpisu cyfrowego] HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322120 2017-04-19] (Intel(R) Rapid Storage Technology -> Intel Corporation) HKLM\...\Run: [MouseDriver] => TiltWheelMouse.exe HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18381792 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_DTS] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1489920 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_DTS_SWVOL] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1489920 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [SteelSeriesGG] => C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesGG.exe [14516560 2021-08-06] (SteelSeries ApS -> SteelSeries ApS) HKLM-x32\...\Run: [FUJ02B1_Apps] => C:\Program Files (x86)\Fujitsu\FUJ02B1\CheckBatteryPack.exe [376128 2018-09-06] (FUJITSU CLIENT COMPUTING LIMITED -> FUJITSU CLIENT COMPUTING LIMITED) HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [146584 2017-11-07] (Brother Industries, Ltd. -> Brother Industries, Ltd.) HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2976256 2018-01-19] (Brother Industries, Ltd.) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [BrHelp] => C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe [2009088 2013-01-18] (Brother Industries, Ltd.) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [114671912 2021-02-10] (Microsoft Corporation -> Microsoft Corporation) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706288 2021-04-09] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226728 2019-07-21] (Kilonova LLC -> ) HKLM-x32\...\Run: [Intel Driver & Support Assistant] => C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe [288184 2021-08-10] (Intel Corporation -> Intel) HKU\S-1-5-21-2981095-1784054871-3565307091-1001\...\Run: [Service for Navitel Navigator Update Center] => C:\Program Files (x86)\CNT\Navitel Navigator update center\NavitelUpdaterService.exe [1673232 2021-03-31] (NAVITEL s.r.o. -> ) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\92.0.4515.159\Installer\chrmstp.exe [2021-08-21] (Google LLC -> Google LLC) Policies: C:\ProgramData\NTUSER.pol: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {04F2F4E1-9C5C-4748-953D-47A5E373C9AE} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23253888 2021-08-06] (Microsoft Corporation -> Microsoft Corporation) Task: {113BF2E2-7636-4EA5-8C80-BFB9EDFD99C2} - System32\Tasks\Opera scheduled Autoupdate 1622157893 => C:\Users\Fujitsu\AppData\Local\Programs\Opera\launcher.exe Task: {13746016-FB1E-49E0-98E2-154D6DB180E1} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs" Task: {23F8CAA0-8508-4FB5-9E4A-0D84B0D7B668} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [139112 2021-08-22] (Microsoft Corporation -> Microsoft Corporation) Task: {2777BB88-CE00-49FF-8781-D64285A21769} - System32\Tasks\PostponeDeviceSetupToast_S-1-5-21-2981095-1784054871-3565307091-1001_3 => {5ded83ef-1e99-48cf-bf83-676d2a6db408} C:\Windows\System32\oobe\UserOOBE.dll [421376 2021-06-13] (Microsoft Windows -> Microsoft Corporation) Task: {2D1913C6-6A05-4156-9C44-22353305E1E9} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [139112 2021-08-22] (Microsoft Corporation -> Microsoft Corporation) Task: {2FFDD8D0-40B1-4AC4-96CE-577305353490} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [2064744 2021-01-19] (Intel(R) Production Software -> Intel Corporation) Task: {3BE1C00A-9B90-4D84-B0B1-DE65041EB21A} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23253888 2021-08-06] (Microsoft Corporation -> Microsoft Corporation) Task: {530F5CFF-DFCA-4D74-A657-A760D7972AD3} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe Task: {56DA41B9-9473-4874-8232-16D7542582F8} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5722536 2021-08-22] (Microsoft Corporation -> Microsoft Corporation) Task: {715D656A-6038-4F00-B934-983749F3212F} - System32\Tasks\Opera scheduled assistant Autoupdate 1622157905 => C:\Users\Fujitsu\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Fujitsu\AppData\Local\Programs\Opera\assistant" $(Arg0) Task: {8E2A9821-046E-4A21-8AE3-3213D5DEAE20} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MpCmdRun.exe [673816 2021-08-15] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {98B7DFEE-EF9E-4D2D-B0A4-6F70E24DD81F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.) Task: {9F4B7C1C-DCD2-473C-BD71-6586086BBE94} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MpCmdRun.exe [673816 2021-08-15] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {A0BF6C75-1FFF-4592-9DB1-3E733922B1B9} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3075936 2021-07-21] (Intel Corporation -> Intel Corporation) Task: {AE0A1C8D-948F-4512-A38D-02371095A0FF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-07-27] (Google Inc -> Google Inc.) Task: {B93E0FDD-4D2E-4C25-B09F-E1AAC64BDCD1} - System32\Tasks\ACC => C:\Program Files\DriverSetupUtility\FUB\FUB_Send.bat Task: {BD43F7C8-E7EF-42D6-ADDF-08D0F704B10F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-07-27] (Google Inc -> Google Inc.) Task: {C3F235C6-3E31-4CE4-B812-30230231601F} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: ) Task: {D836342F-0F8E-4471-8FEA-E93333A00584} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MpCmdRun.exe [673816 2021-08-15] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {D8500E72-6D42-46C7-A42F-D5E9D6EEBB91} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1546112 2021-08-22] (Microsoft Corporation -> Microsoft Corporation) Task: {E14C4B86-E1F6-45AD-9FA1-EA3B5FCD1634} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MpCmdRun.exe [673816 2021-08-15] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {ECDC3322-05AC-4AE3-B91E-FAAB4AB006C1} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3075936 2021-07-21] (Intel Corporation -> Intel Corporation) Task: {F735446B-9653-4C97-9243-7B0E0EC4C834} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5722536 2021-08-22] (Microsoft Corporation -> Microsoft Corporation) Task: {FB4B523A-9782-4B77-9C89-C4D5AA986E68} - System32\Tasks\update-S-1-5-21-2981095-1784054871-3565307091-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: ) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\update-S-1-5-21-2981095-1784054871-3565307091-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.8.1 192.168.8.1 Tcpip\..\Interfaces\{9e9ce35f-0362-4624-a3e1-817b1ac1f0db}: [NameServer] 8.8.8.8,8.8.4.4 Tcpip\..\Interfaces\{9e9ce35f-0362-4624-a3e1-817b1ac1f0db}: [DhcpNameServer] 192.168.8.1 192.168.8.1 Tcpip\..\Interfaces\{d45a1ef6-4bdb-40e4-9334-9fdd0065b62f}: [DhcpNameServer] 192.168.8.1 192.168.8.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\Fujitsu\AppData\Local\Microsoft\Edge\User Data\Default [2021-08-25] FireFox: ======== FF Plugin: @java.com/DTPlugin,version=11.291.2 -> C:\Program Files\Java\jre1.8.0_291\bin\dtplugin\npDeployJava1.dll [2021-05-08] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.291.2 -> C:\Program Files\Java\jre1.8.0_291\bin\plugin2\npjp2.dll [2021-05-08] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-05-26] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-05-26] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-05-26] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.) Chrome: ======= CHR DefaultProfile: Profile 1 CHR Profile: C:\Users\Fujitsu\AppData\Local\Google\Chrome\User Data\Guest Profile [2018-08-14] CHR Profile: C:\Users\Fujitsu\AppData\Local\Google\Chrome\User Data\Profile 1 [2021-08-25] CHR Extension: (Prezentacje) - C:\Users\Fujitsu\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-08-14] CHR Extension: (Dokumenty) - C:\Users\Fujitsu\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2018-08-14] CHR Extension: (Dysk Google) - C:\Users\Fujitsu\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-25] CHR Extension: (YouTube) - C:\Users\Fujitsu\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-08-14] CHR Extension: (Adblock Plus - darmowy adblocker) - C:\Users\Fujitsu\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-07-28] CHR Extension: (uBlock Origin) - C:\Users\Fujitsu\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2021-07-29] CHR Extension: (Arkusze) - C:\Users\Fujitsu\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-08-14] CHR Extension: (Dokumenty Google offline) - C:\Users\Fujitsu\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-06-24] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Fujitsu\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-03-28] CHR Extension: (Gmail) - C:\Users\Fujitsu\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-22] CHR Extension: (Chrome Media Router) - C:\Users\Fujitsu\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-07-27] CHR Profile: C:\Users\Fujitsu\AppData\Local\Google\Chrome\User Data\System Profile [2018-08-14] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.) S3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [314368 2018-01-18] (Brother Industries, Ltd.) [Brak podpisu cyfrowego] R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9142128 2021-08-05] (Microsoft Corporation -> Microsoft Corporation) S2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [36792 2021-08-10] (Intel Corporation -> Intel) S3 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [176568 2021-08-10] (Intel Corporation -> Intel) S2 Fuj02e3DriverUtilityService; C:\WINDOWS\System32\DriverStore\FileRepository\fuj02e3.inf_amd64_1c41b5ae1124caab\fuj02e3-utility.exe [146536 2018-05-16] (FUJITSU CLIENT COMPUTING LIMITED -> FUJITSU CLIENT COMPUTING LIMITED) S2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2020-11-26] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) R2 ss_conn_service2; C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [919992 2020-11-26] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) S3 SteelSeriesUpdateService; C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesUpdateService.exe [31568 2021-08-06] (SteelSeries ApS -> ) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\NisSrv.exe [2727416 2021-08-15] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MsMpEng.exe [136656 2021-08-15] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego] R3 FUJ02B1; C:\WINDOWS\system32\DRIVERS\FUJ02B1.sys [68536 2018-09-06] (FUJITSU LIMITED -> FUJITSU LIMITED) R3 fuj02e3; C:\WINDOWS\System32\DriverStore\FileRepository\fuj02e3.inf_amd64_1c41b5ae1124caab\fuj02e3.sys [42592 2018-05-16] (FUJITSU CLIENT COMPUTING LIMITED -> FUJITSU CLIENT COMPUTING LIMITED) R3 guardian2; C:\WINDOWS\System32\Drivers\oz776x64.sys [108456 2019-06-04] (BayHub Technology Inc. -> O2Micro) R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-08-18] (Martin Malik - REALiX -> REALiX(tm)) R3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [48848 2021-03-03] (SteelSeries ApS -> SteelSeries ApS) R3 sshid; C:\WINDOWS\system32\DRIVERS\sshid.sys [57440 2020-10-09] (SteelSeries ApS -> SteelSeries ApS) S3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [44896 2020-06-09] (TEFINCOM S.A. -> The OpenVPN Project) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49568 2021-08-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [434424 2021-08-15] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [78072 2021-08-15] (Microsoft Windows -> Microsoft Corporation) S3 SWDUMon; \SystemRoot\system32\DRIVERS\SWDUMon.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-08-25 16:03 - 2021-08-25 16:04 - 000019995 _____ C:\Users\Fujitsu\Desktop\FRST.txt 2021-08-25 15:52 - 2021-08-25 15:52 - 000011453 _____ C:\Users\Fujitsu\Desktop\Fixlog.txt 2021-08-25 15:52 - 2021-08-25 15:52 - 000000008 __RSH C:\ProgramData\ntuser.pol 2021-08-25 15:45 - 2021-08-25 15:49 - 000000000 ____D C:\AdwCleaner 2021-08-25 15:44 - 2021-08-25 15:44 - 008553680 _____ (Malwarebytes) C:\Users\Fujitsu\Desktop\adwcleaner_8.3.0.exe 2021-08-23 17:41 - 2021-08-23 17:41 - 000003670 _____ C:\WINDOWS\system32\Tasks\USER_ESRV_SVC_QUEENCREEK 2021-08-23 17:41 - 2021-07-23 11:36 - 000041816 _____ C:\WINDOWS\system32\Drivers\semav6msr64.sys 2021-08-23 17:40 - 2021-08-23 17:40 - 000001510 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver & Support Assistant.lnk 2021-08-23 17:15 - 2021-08-25 16:03 - 000000000 ____D C:\FRST 2021-08-23 17:14 - 2021-08-23 17:15 - 002300928 _____ (Farbar) C:\Users\Fujitsu\Desktop\FRST64.exe 2021-08-23 17:03 - 2021-08-23 17:03 - 000000000 ____D C:\Users\Fujitsu\AppData\Local\ECRSC 2021-08-23 16:58 - 2021-08-23 17:02 - 010196520 _____ (ESTsoft Corp.) C:\Users\Fujitsu\Desktop\ALZip851_www.INSTALKI.pl.exe 2021-08-23 15:16 - 2021-08-23 15:16 - 000004028 _____ C:\WINDOWS\system32\Tasks\PostponeDeviceSetupToast_S-1-5-21-2981095-1784054871-3565307091-1001_3 2021-08-21 01:17 - 2021-08-21 01:17 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2021-08-21 01:17 - 2021-08-21 01:17 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2021-08-21 01:17 - 2021-08-21 01:17 - 001823280 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2021-08-21 01:17 - 2021-08-21 01:17 - 001393480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2021-08-21 01:17 - 2021-08-21 01:17 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll 2021-08-21 01:17 - 2021-08-21 01:17 - 000011347 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-08-21 01:16 - 2021-08-21 01:16 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll 2021-08-21 01:04 - 2021-08-21 01:04 - 000000000 ___HD C:\$WinREAgent 2021-08-21 00:24 - 2021-08-21 00:24 - 000001426 _____ C:\WINDOWS\system32\default_error_stack-000009-000000.txt 2021-08-15 18:22 - 2021-08-15 18:22 - 000001425 _____ C:\WINDOWS\system32\default_error_stack-000008-000000.txt 2021-07-28 18:06 - 2021-07-28 18:06 - 000000000 _____ C:\Users\Fujitsu\Desktop\Nowy dokument tekstowy (2).txt ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-08-25 15:58 - 2021-04-11 11:18 - 001769860 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-08-25 15:58 - 2019-12-07 17:08 - 000785436 _____ C:\WINDOWS\system32\perfh015.dat 2021-08-25 15:58 - 2019-12-07 17:08 - 000152296 _____ C:\WINDOWS\system32\perfc015.dat 2021-08-25 15:58 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2021-08-25 15:55 - 2021-05-07 01:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung 2021-08-25 15:55 - 2021-05-07 01:57 - 000000000 ____D C:\Users\Fujitsu\AppData\Roaming\Samsung 2021-08-25 15:55 - 2021-05-07 01:56 - 000000000 ____D C:\Program Files (x86)\Samsung 2021-08-25 15:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-08-25 15:54 - 2018-07-27 16:08 - 000000000 ____D C:\Program Files (x86)\Google 2021-08-25 15:53 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-08-25 15:52 - 2021-07-10 22:33 - 000000000 ____D C:\Users\Fujitsu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc 2021-08-25 15:52 - 2021-06-15 17:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R 2021-08-25 15:52 - 2021-04-11 11:19 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-08-25 15:52 - 2021-04-11 11:12 - 000008192 ___SH C:\DumpStack.log.tmp 2021-08-25 15:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy 2021-08-25 15:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState 2021-08-25 15:52 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2021-08-25 15:52 - 2018-07-27 14:55 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2021-08-25 15:52 - 2018-07-27 14:55 - 000000000 __SHD C:\Users\Fujitsu\IntelGraphicsProfiles 2021-08-25 15:52 - 2018-04-12 01:38 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy 2021-08-25 15:45 - 2018-07-27 16:10 - 000000000 ____D C:\Users\Fujitsu\AppData\Local\ClassicShell 2021-08-24 16:24 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-08-24 16:23 - 2019-03-11 03:39 - 000000000 ____D C:\ProgramData\Riot Games 2021-08-24 16:22 - 2018-07-27 14:51 - 000000000 ____D C:\Users\Fujitsu\AppData\Local\Packages 2021-08-24 16:10 - 2021-04-11 11:19 - 000003834 _____ C:\WINDOWS\system32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 2021-08-23 17:41 - 2021-04-11 11:19 - 000003762 _____ C:\WINDOWS\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 2021-08-23 17:41 - 2021-04-11 11:19 - 000003528 _____ C:\WINDOWS\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon 2021-08-23 17:41 - 2018-08-18 19:22 - 000000000 ____D C:\ProgramData\Package Cache 2021-08-23 17:40 - 2018-07-27 14:55 - 000000000 ____D C:\Program Files (x86)\Intel 2021-08-23 17:03 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Resources 2021-08-23 15:42 - 2021-04-11 11:12 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-08-23 15:21 - 2021-04-11 11:19 - 000003374 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2981095-1784054871-3565307091-1001 2021-08-23 15:21 - 2021-04-11 10:49 - 000002425 _____ C:\Users\Fujitsu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-08-22 16:41 - 2021-04-11 19:14 - 000000000 ____D C:\Program Files\Microsoft Office 2021-08-22 16:41 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2021-08-22 16:13 - 2021-04-11 14:09 - 000000000 ____D C:\Users\Fujitsu\AppData\Roaming\Blitz 2021-08-22 16:12 - 2021-05-18 16:46 - 000000032 _____ C:\Users\Fujitsu\AppData\Roaming\.machineId 2021-08-21 18:04 - 2021-05-28 01:35 - 000000000 ____D C:\Users\Fujitsu\AppData\Local\CrashDumps 2021-08-21 17:02 - 2018-07-27 14:53 - 000000000 ___RD C:\Users\Fujitsu\OneDrive 2021-08-21 16:50 - 2021-04-11 11:12 - 000449752 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-08-21 06:09 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP 2021-08-21 06:09 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-08-21 06:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2021-08-21 06:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources 2021-08-21 06:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-08-21 06:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2021-08-21 06:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents 2021-08-21 06:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-08-21 06:09 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing 2021-08-21 01:21 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-08-21 01:20 - 2020-06-27 18:51 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-08-21 01:20 - 2020-06-27 18:51 - 000002286 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2021-08-21 01:14 - 2021-04-13 01:26 - 000003416 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d72eb39e98ab63 2021-08-21 01:14 - 2021-04-11 11:19 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-08-21 00:22 - 2018-07-27 16:09 - 000002307 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2021-08-21 00:22 - 2018-07-27 16:09 - 000002266 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2021-08-21 00:12 - 2020-09-21 01:04 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2021-08-21 00:11 - 2018-08-03 08:44 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-08-21 00:08 - 2018-08-03 08:44 - 133215968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-08-15 18:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF 2021-08-15 17:08 - 2018-07-27 14:43 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2021-08-08 16:08 - 2021-04-11 11:19 - 000003570 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2021-08-08 16:08 - 2021-04-11 11:19 - 000003446 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2021-07-27 07:03 - 2021-04-11 14:09 - 000000000 ____D C:\Users\Fujitsu\AppData\Local\blitz-updater ==================== Pliki w katalogu głównym wybranych folderów ======== 2021-05-18 16:46 - 2021-08-22 16:12 - 000000032 _____ () C:\Users\Fujitsu\AppData\Roaming\.machineId 2018-07-27 14:55 - 2018-07-27 14:55 - 000007605 _____ () C:\Users\Fujitsu\AppData\Local\Resmon.ResmonCfg 2021-07-10 21:52 - 2021-07-10 21:52 - 000000003 _____ () C:\Users\Fujitsu\AppData\Local\updater.log 2021-07-10 21:52 - 2021-07-10 21:52 - 000000424 _____ () C:\Users\Fujitsu\AppData\Local\UserProducts.xml ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================