Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 04-12-2022 Uruchomiony przez Fujitsu (administrator) LIFEBOOK-E554 (FUJITSU LIFEBOOK E554) (05-12-2022 17:12:54) Uruchomiony z C:\Users\Fujitsu\Desktop Załadowane profile: Fujitsu Platform: Microsoft Windows 10 Home Wersja 21H2 19044.2251 (X64) Język: Polski (Polska) Domyślna przeglądarka: Chrome Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe (C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe ->) (Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe (C:\Program Files\Elantech\ETDCtrl.exe ->) (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe (C:\Program Files\Elantech\ETDService.exe ->) (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe (C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\apps\engine\SteelSeriesEngine.exe (C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\apps\prismSyncV2\SteelSeriesPrismSync.exe (C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCopyAccelerator.exe (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <15> (explorer.exe ->) (Ivaylo Beltchev -> IvoSoft) [Brak podpisu cyfrowego] C:\Program Files\Classic Shell\ClassicStartMenu.exe (explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\mspaint.exe (explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2> (explorer.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe (Intel(R) pGFX 2020 -> ) C:\Windows\System32\igfxTray.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxHK.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Brother Industries, Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Browny02\BrYNSvc.exe (services.exe ->) (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe (services.exe ->) (FUJITSU CLIENT COMPUTING LIMITED -> FUJITSU CLIENT COMPUTING LIMITED) C:\Windows\System32\DriverStore\FileRepository\fuj02e3.inf_amd64_1c41b5ae1124caab\fuj02e3-utility.exe (services.exe ->) (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe (services.exe ->) (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe (services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe (services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe (services.exe ->) (Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe (services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\NisSrv.exe (services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe (services.exe ->) (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22092.214.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3573696 2019-01-09] (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163640 2017-08-13] (Ivaylo Beltchev -> IvoSoft) [Brak podpisu cyfrowego] HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322120 2017-04-19] (Intel(R) Rapid Storage Technology -> Intel Corporation) HKLM\...\Run: [MouseDriver] => TiltWheelMouse.exe (Brak pliku) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18381792 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_DTS] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1489920 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_DTS_SWVOL] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1489920 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [SteelSeriesGG] => C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe [12891520 2022-12-02] (SteelSeries ApS -> SteelSeries ApS) HKLM-x32\...\Run: [FUJ02B1_Apps] => C:\Program Files (x86)\Fujitsu\FUJ02B1\CheckBatteryPack.exe [376128 2018-09-06] (FUJITSU CLIENT COMPUTING LIMITED -> FUJITSU CLIENT COMPUTING LIMITED) HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [146584 2017-11-07] (Brother Industries, Ltd. -> Brother Industries, Ltd.) HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2976256 2018-01-19] (Brother Industries, Ltd.) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [BrHelp] => C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe [2009088 2013-01-18] (Brother Industries, Ltd.) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [114671912 2021-02-10] (Microsoft Corporation -> Microsoft Corporation) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706288 2021-04-09] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [Intel Driver & Support Assistant] => C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe [292120 2022-10-26] (Intel Corporation -> Intel) HKU\S-1-5-21-2981095-1784054871-3565307091-1001\...\Run: [com.blitz.app] => C:\Users\Fujitsu\AppData\Local\Programs\Blitz\Blitz.exe [130395848 2022-12-04] (Swift Media Entertainment, Inc. -> Blitz, Inc.) HKU\S-1-5-21-2981095-1784054871-3565307091-1001\...\Run: [Service for Navitel Navigator Update Center] => C:\Program Files (x86)\CNT\Navitel Navigator update center\NavitelUpdaterService.exe [1676824 2022-06-27] (NAVITEL s.r.o. -> ) HKU\S-1-5-21-2981095-1784054871-3565307091-1001\...\MountPoints2: {22b346b0-50f5-11ec-a234-801934c13e3b} - "D:\HiSuiteDownLoader.exe" HKU\S-1-5-21-2981095-1784054871-3565307091-1001\...\MountPoints2: {a4b101b7-be0f-11ea-a9a2-801934c13e3b} - "E:\HiSuiteDownLoader.exe" HKU\S-1-5-21-2981095-1784054871-3565307091-1001\...\MountPoints2: {a4b101bf-be0f-11ea-a9a2-801934c13e3b} - "E:\HiSuiteDownLoader.exe" HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\108.0.5359.73\Installer\chrmstp.exe [2022-12-04] (Google LLC -> Google LLC) ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {06A6521B-AB59-4CF9-A6CA-E7AA940B2A37} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-12] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {08C3A0CA-D75B-43D9-9EF6-7D9D8CBADF87} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-12] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {113BF2E2-7636-4EA5-8C80-BFB9EDFD99C2} - System32\Tasks\Opera scheduled Autoupdate 1622157893 => C:\Users\Fujitsu\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (Brak pliku) Task: {2AB514D4-169C-41B0-9CB2-8BEC9876D54F} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3464168 2022-11-09] (Intel Corporation -> Intel Corporation) Task: {2FFDD8D0-40B1-4AC4-96CE-577305353490} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [2064744 2021-01-19] (Intel(R) Production Software -> Intel Corporation) Task: {30DC7692-F631-4663-B24E-6E797B7F533A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-12] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {3DAEF1AD-CD45-4C5A-82F3-7F633D4B9E2E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1552376 2022-09-26] (Adobe Inc. -> Adobe Inc.) Task: {40C817B0-CF2C-4361-9C2C-7A7D50FDFA1B} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144280 2022-11-11] (Microsoft Corporation -> Microsoft Corporation) Task: {410129C6-D1F7-48A8-9826-9F34F42730CE} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26154376 2022-11-11] (Microsoft Corporation -> Microsoft Corporation) Task: {4142F244-C9AF-49F6-8770-01C88BB15F26} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144280 2022-11-11] (Microsoft Corporation -> Microsoft Corporation) Task: {52013F98-E4BE-4F90-92A9-D44489B6032C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8576000 2022-11-05] (Microsoft Corporation -> Microsoft Corporation) Task: {530F5CFF-DFCA-4D74-A657-A760D7972AD3} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (Brak pliku) Task: {715D656A-6038-4F00-B934-983749F3212F} - System32\Tasks\Opera scheduled assistant Autoupdate 1622157905 => C:\Users\Fujitsu\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Fujitsu\AppData\Local\Programs\Opera\assistant" $(Arg0) Task: {7FDA5349-813B-490C-99F2-08BDE2AFE4C1} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26154376 2022-11-11] (Microsoft Corporation -> Microsoft Corporation) Task: {86AB0543-FCD9-4C3E-B54D-619C4850FE83} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8576000 2022-11-05] (Microsoft Corporation -> Microsoft Corporation) Task: {96F73839-9A66-4506-8A18-5154A6886DB3} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [999376 2022-11-11] (Microsoft Corporation -> Microsoft Corporation) Task: {9BD620C8-ED14-41C3-B38D-8CD4439EA899} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MpCmdRun.exe [1567360 2022-11-12] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {AE0A1C8D-948F-4512-A38D-02371095A0FF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-07-27] (Google Inc -> Google Inc.) Task: {B93E0FDD-4D2E-4C25-B09F-E1AAC64BDCD1} - System32\Tasks\ACC => C:\Program Files\DriverSetupUtility\FUB\FUB_Send.bat (Brak pliku) Task: {BD43F7C8-E7EF-42D6-ADDF-08D0F704B10F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-07-27] (Google Inc -> Google Inc.) Task: {C3F235C6-3E31-4CE4-B812-30230231601F} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: ) Task: {DBC38417-0914-402D-B201-AF7A50DEA882} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs" Task: {DF6DAF0E-DC75-40D8-A5A8-60E713CC8E43} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [66936 2022-11-05] (Microsoft Corporation -> Microsoft Corporation) Task: {E46563F8-5C69-403D-9E9F-0470473A9165} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3464168 2022-11-09] (Intel Corporation -> Intel Corporation) Task: {FB4B523A-9782-4B77-9C89-C4D5AA986E68} - System32\Tasks\update-S-1-5-21-2981095-1784054871-3565307091-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: ) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\update-S-1-5-21-2981095-1784054871-3565307091-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{9e9ce35f-0362-4624-a3e1-817b1ac1f0db}: [NameServer] 8.8.8.8,8.8.4.4 Tcpip\..\Interfaces\{9e9ce35f-0362-4624-a3e1-817b1ac1f0db}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{d45a1ef6-4bdb-40e4-9334-9fdd0065b62f}: [DhcpNameServer] 10.10.100.254 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\Fujitsu\AppData\Local\Microsoft\Edge\User Data\Default [2022-09-26] Edge Extension: (AdBlock — najlepszy bloker reklam) - C:\Users\Fujitsu\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2022-09-26] FireFox: ======== FF Plugin: @java.com/DTPlugin,version=11.291.2 -> C:\Program Files\Java\jre1.8.0_291\bin\dtplugin\npDeployJava1.dll [2021-05-08] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.291.2 -> C:\Program Files\Java\jre1.8.0_291\bin\plugin2\npjp2.dll [2021-05-08] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-11-05] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-11-05] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-11-05] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.) Chrome: ======= CHR DefaultProfile: Profile 1 CHR Profile: C:\Users\Fujitsu\AppData\Local\Google\Chrome\User Data\Guest Profile [2018-08-14] CHR Profile: C:\Users\Fujitsu\AppData\Local\Google\Chrome\User Data\Profile 1 [2022-12-05] CHR Extension: (uBlock Origin) - C:\Users\Fujitsu\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2022-11-21] CHR Extension: (Dokumenty Google offline) - C:\Users\Fujitsu\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-12-02] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Fujitsu\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-03-28] CHR Profile: C:\Users\Fujitsu\AppData\Local\Google\Chrome\User Data\System Profile [2018-08-14] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2022-09-26] (Adobe Inc. -> Adobe Inc.) R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [314368 2018-01-18] (Brother Industries, Ltd.) [Brak podpisu cyfrowego] R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12515768 2022-11-11] (Microsoft Corporation -> Microsoft Corporation) R2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [41240 2022-10-26] (Intel Corporation -> Intel) R3 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [201496 2022-10-26] (Intel Corporation -> Intel) R2 Fuj02e3DriverUtilityService; C:\WINDOWS\System32\DriverStore\FileRepository\fuj02e3.inf_amd64_1c41b5ae1124caab\fuj02e3-utility.exe [146536 2018-05-16] (FUJITSU CLIENT COMPUTING LIMITED -> FUJITSU CLIENT COMPUTING LIMITED) R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2020-11-26] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) R2 ss_conn_service2; C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [919992 2020-11-26] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) S3 SteelSeriesUpdateService; C:\Program Files\SteelSeries\GG\SteelSeriesUpdateService.exe [35200 2022-12-02] (SteelSeries ApS -> ) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\NisSrv.exe [3191272 2022-11-12] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe [133544 2022-11-12] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 AmUStor; C:\WINDOWS\system32\drivers\AmUStorU.sys [136760 2019-05-07] (Alcorlink Corp. -> ) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [161288 2020-12-09] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2021-06-03] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.) R3 FUJ02B1; C:\WINDOWS\system32\DRIVERS\FUJ02B1.sys [68536 2018-09-06] (FUJITSU LIMITED -> FUJITSU LIMITED) R3 fuj02e3; C:\WINDOWS\System32\DriverStore\FileRepository\fuj02e3.inf_amd64_1c41b5ae1124caab\fuj02e3.sys [42592 2018-05-16] (FUJITSU CLIENT COMPUTING LIMITED -> FUJITSU CLIENT COMPUTING LIMITED) R3 guardian2; C:\WINDOWS\System32\Drivers\oz776x64.sys [108456 2019-06-04] (BayHub Technology Inc. -> O2Micro) R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-08-18] (Martin Malik - REALiX -> REALiX(tm)) U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2021-06-03] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.) R3 MpKsla816f6d7; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{68F099D4-FF4B-43FA-B435-C8DD9774EAA5}\MpKslDrv.sys [214280 2022-12-05] (Microsoft Windows -> Microsoft Corporation) R3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [48848 2021-03-03] (SteelSeries ApS -> SteelSeries ApS) R3 sshid; C:\WINDOWS\system32\DRIVERS\sshid.sys [43960 2022-08-18] (Microsoft Windows Hardware Compatibility Publisher -> SteelSeries ApS) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [168968 2020-12-09] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R3 SteelSeries_Sonar_VAD; C:\WINDOWS\System32\DriverStore\FileRepository\steelseries-sonar-vad.inf_amd64_889fe0b3603163e3\SteelSeries-Sonar-VAD.sys [92312 2022-11-08] (SteelSeries ApS -> Windows (R) Win 7 DDK provider) S3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [44896 2020-06-09] (TEFINCOM S.A. -> The OpenVPN Project) S3 usbscan; C:\WINDOWS\system32\DRIVERS\usbscan.sys [49152 2021-04-11] (Microsoft Corporation) [Brak podpisu cyfrowego] S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49616 2022-11-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [469288 2022-11-12] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [95520 2022-11-12] (Microsoft Windows -> Microsoft Corporation) S3 SWDUMon; \SystemRoot\system32\DRIVERS\SWDUMon.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2022-12-05 17:09 - 2022-12-05 17:13 - 000024571 _____ C:\Users\Fujitsu\Desktop\FRST.txt 2022-12-05 17:08 - 2022-12-05 17:08 - 002375680 _____ (Farbar) C:\Users\Fujitsu\Desktop\FRST64.exe 2022-12-05 16:57 - 2022-12-05 16:58 - 000000000 ____D C:\Users\Fujitsu\Desktop\Socjologia 2022-12-04 12:05 - 2022-12-04 12:05 - 000803517 _____ C:\Users\Fujitsu\Desktop\Powtórzenie 09.06.pptx 2022-12-02 17:33 - 2022-12-02 17:33 - 000003670 _____ C:\WINDOWS\system32\Tasks\USER_ESRV_SVC_QUEENCREEK 2022-12-02 17:33 - 2022-11-11 18:08 - 000047240 _____ C:\WINDOWS\system32\Drivers\semav6msr64.sys 2022-11-11 18:32 - 2022-11-11 18:32 - 000001426 _____ C:\WINDOWS\system32\default_error_stack-000035-000000.txt 2022-11-11 17:48 - 2022-11-11 17:48 - 000688128 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll 2022-11-11 17:48 - 2022-11-11 17:48 - 000073216 _____ C:\WINDOWS\system32\nettraceex.dll 2022-11-11 17:47 - 2022-11-11 17:47 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll 2022-11-11 17:47 - 2022-11-11 17:47 - 000012253 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2022-11-11 17:38 - 2022-11-11 17:38 - 000000000 ___HD C:\$WinREAgent 2022-11-06 19:23 - 2022-11-06 19:23 - 000001427 _____ C:\WINDOWS\system32\default_error_stack-000034-000000.txt ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2022-12-05 17:13 - 2021-08-23 16:15 - 000000000 ____D C:\FRST 2022-12-05 17:11 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF 2022-12-05 17:08 - 2018-07-27 15:08 - 000000000 ____D C:\Program Files (x86)\Google 2022-12-05 16:58 - 2018-07-27 13:51 - 000000000 ____D C:\Users\Fujitsu\AppData\Local\Packages 2022-12-05 16:54 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-12-05 15:59 - 2022-04-22 16:34 - 000000000 ____D C:\Users\Fujitsu\AppData\Roaming\Blitz 2022-12-05 15:48 - 2019-03-11 02:39 - 000000000 ____D C:\ProgramData\Riot Games 2022-12-05 15:46 - 2021-05-18 15:46 - 000000032 _____ C:\Users\Fujitsu\AppData\Roaming\.machineId 2022-12-05 13:46 - 2021-04-11 10:12 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-12-05 10:05 - 2018-07-27 13:55 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2022-12-05 10:05 - 2018-07-27 13:55 - 000000000 __SHD C:\Users\Fujitsu\IntelGraphicsProfiles 2022-12-04 19:59 - 2018-07-27 15:10 - 000000000 ____D C:\Users\Fujitsu\AppData\Local\ClassicShell 2022-12-04 17:59 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-12-04 17:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2022-12-04 12:01 - 2021-07-20 16:08 - 000000000 ____D C:\Users\Fujitsu\AppData\Roaming\steelseries-gg-client 2022-12-04 12:00 - 2018-07-27 15:09 - 000002307 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-12-04 12:00 - 2018-07-27 15:09 - 000002266 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2022-12-04 11:59 - 2021-04-11 10:27 - 000000000 ____D C:\ProgramData\SteelSeries 2022-12-02 17:35 - 2021-12-13 15:19 - 000003580 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2981095-1784054871-3565307091-1001 2022-12-02 17:35 - 2021-04-11 10:19 - 000003374 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2981095-1784054871-3565307091-1001 2022-12-02 17:35 - 2021-04-11 09:49 - 000002425 _____ C:\Users\Fujitsu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-12-02 17:33 - 2021-04-11 10:19 - 000003762 _____ C:\WINDOWS\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 2022-12-02 17:33 - 2021-04-11 10:19 - 000003528 _____ C:\WINDOWS\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon 2022-12-02 17:31 - 2020-06-27 17:51 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-12-02 17:31 - 2020-06-27 17:51 - 000002286 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2022-11-26 01:34 - 2021-04-11 10:18 - 001769860 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2022-11-26 01:34 - 2019-12-07 16:08 - 000785436 _____ C:\WINDOWS\system32\perfh015.dat 2022-11-26 01:34 - 2019-12-07 16:08 - 000152296 _____ C:\WINDOWS\system32\perfc015.dat 2022-11-20 19:28 - 2022-04-22 16:34 - 000002219 _____ C:\Users\Fujitsu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blitz.lnk 2022-11-20 19:28 - 2022-04-22 16:34 - 000002211 _____ C:\Users\Fujitsu\Desktop\Blitz.lnk 2022-11-12 19:02 - 2018-07-27 13:43 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2022-11-12 19:00 - 2021-04-11 10:19 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-11-12 19:00 - 2021-04-11 10:19 - 000003442 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2022-11-12 18:57 - 2021-04-11 10:19 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-11-12 18:57 - 2021-04-11 10:12 - 000449752 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2022-11-12 18:57 - 2021-04-11 10:12 - 000008192 ___SH C:\DumpStack.log.tmp 2022-11-12 18:57 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState 2022-11-11 18:32 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP 2022-11-11 18:32 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2022-11-11 18:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2022-11-11 18:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources 2022-11-11 18:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2022-11-11 18:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2022-11-11 18:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2022-11-11 18:32 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2022-11-11 17:51 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2022-11-11 17:47 - 2021-04-11 10:13 - 003014656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2022-11-11 17:36 - 2018-08-03 07:44 - 000000000 ____D C:\WINDOWS\system32\MRT 2022-11-11 17:31 - 2018-08-03 07:44 - 146960040 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2022-11-11 16:35 - 2021-04-11 18:14 - 000000000 ____D C:\Program Files\Microsoft Office 2022-11-10 17:37 - 2021-07-10 20:52 - 000000059 _____ C:\Users\Fujitsu\AppData\Local\UserProducts.xml 2022-11-10 17:37 - 2021-07-10 20:52 - 000000000 ____D C:\Program Files (x86)\Skillbrains 2022-11-10 17:37 - 2018-08-18 18:13 - 000000000 ____D C:\Program Files (x86)\Pro Evolution Soccer 2017 ==================== Pliki w katalogu głównym wybranych folderów ======== 2021-05-18 15:46 - 2022-12-05 15:46 - 000000032 _____ () C:\Users\Fujitsu\AppData\Roaming\.machineId 2021-11-02 20:56 - 2021-11-02 20:56 - 000003877 _____ () C:\Users\Fujitsu\AppData\Roaming\cd3f232e-44c9-4ae0-8404-c6c3fdd8eead.tmp 2018-07-27 13:55 - 2018-07-27 13:55 - 000007605 _____ () C:\Users\Fujitsu\AppData\Local\Resmon.ResmonCfg 2021-07-10 20:52 - 2021-07-10 20:52 - 000000003 _____ () C:\Users\Fujitsu\AppData\Local\updater.log 2021-07-10 20:52 - 2022-11-10 17:37 - 000000059 _____ () C:\Users\Fujitsu\AppData\Local\UserProducts.xml ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================