Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 05-03-2023 Uruchomiony przez divof (administrator) DESKTOP-S9D4C4O (HP OMEN by HP Laptop 15-dc0xxx) (08-03-2023 19:20:05) Uruchomiony z D:\Pobrane Załadowane profile: divof Platform: Microsoft Windows 11 Home Wersja 22H2 22621.1265 (X64) Język: Polski (Polska) Domyślna przeglądarka: Opera Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (C:\Program Files\Tablet\Wacom\WacomHost.exe ->) (Wacom Co., Ltd. -> Wacom Co. Ltd.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe (C:\Program Files\Tablet\Wacom\WTabletServicePro.exe ->) (Wacom Co., Ltd. -> ) C:\Program Files\Tablet\Wacom\Wacom_UpdateUtil.exe (C:\Program Files\Tablet\Wacom\WTabletServicePro.exe ->) (Wacom Co., Ltd. -> Wacom Co. Ltd.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe (C:\Program Files\Tablet\Wacom\WTabletServicePro.exe ->) (Wacom Co., Ltd. -> Wacom Co. Ltd.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe (C:\Program Files\Tablet\Wacom\WTabletServicePro.exe ->) (Wacom Technology Corp. -> Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe (C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2210.4.0_x64__v10z8vjag6ke6\win32\OmenCommandCenterBackground.exe ->) (HP Inc.) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2210.4.0_x64__v10z8vjag6ke6\win32\omenmqtt.exe (DriverStore\FileRepository\cui_dc_comp.inf_amd64_16eb18b0e2526e57\igfxCUIService.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dc_comp.inf_amd64_16eb18b0e2526e57\igfxEM.exe (explorer.exe ->) (Win32) [Brak podpisu cyfrowego] C:\ProgramData\Win32 Home System\Win32 Home.exe (HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.2.15.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityHost.exe (HP Inc.) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2210.4.0_x64__v10z8vjag6ke6\win32\OmenCommandCenterBackground.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (services.exe ->) (Conexant Systems LLC -> Conexant Systems LLC.) C:\Windows\System32\CxAudioSvc.exe (services.exe ->) (Conexant Systems LLC -> Synaptics Incorporated.) C:\Windows\System32\SynAudSrv.exe (services.exe ->) (DTS, Inc. -> ) C:\Windows\System32\DTS\PC\APO3x\DTSAPO3Service.exe (services.exe ->) (geek software GmbH -> geek software GmbH) C:\Program Files\PDF24\pdf24.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_f23fc423d26e5d79\x64\TouchpointAnalyticsClientService.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_844fe58f152c16a8\x64\AppHelperCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_844fe58f152c16a8\x64\DiagsCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_844fe58f152c16a8\x64\NetworkCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_844fe58f152c16a8\x64\SysInfoCap.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpomencustomcapcomp.inf_amd64_e711c85c03558fc4\x64\OmenCap\OmenCap.exe (services.exe ->) (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe (services.exe ->) (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe (services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_7aa6ca9dbb25bff8\jhi_service.exe (services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dc_comp.inf_amd64_16eb18b0e2526e57\igfxCUIService.exe (services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dc_base.inf_amd64_34b321cc84ec642b\IntelCpHDCPSvc.exe (services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dc_base.inf_amd64_34b321cc84ec642b\IntelCpHeciSvc.exe (services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_a9a8972288e9f3b5\RstMwService.exe (services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\NisSrv.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\Sgrm\SgrmBroker.exe (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvhmig.inf_amd64_02942c7e340ddcd3\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2> (services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe (services.exe ->) (Wacom Co., Ltd. -> Wacom Co. Ltd.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe (svchost.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\SystemOptimizer\SystemOptimizer.exe (svchost.exe ->) (Intel Corporation -> Intel Corporation) C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\amd64\MoUsoCoreWorker.exe (SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [878368 2019-05-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [321112 2019-07-29] (Intel(R) Rapid Storage Technology -> Intel Corporation) HKLM\...\Run: [PDF24] => C:\Program Files\PDF24\pdf24.exe [589560 2022-03-25] (geek software GmbH -> geek software GmbH) HKLM-x32\...\Run: [ControlCenter3] => C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe [114688 2008-12-24] (Brother Industries, Ltd.) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2629632 2012-09-25] (Brother Industries, Ltd.) [Brak podpisu cyfrowego] HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\System32\OneDriveSetup.exe [50312608 2022-05-07] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\System32\OneDriveSetup.exe [50312608 2022-05-07] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-3658810115-1074333133-829773096-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4253032 2023-02-14] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-3658810115-1074333133-829773096-1001\...\Run: [Win32 Home] => C:\ProgramData\Win32 Home System\Win32 Home.exe [1331744256 2023-03-08] (Win32) [Brak podpisu cyfrowego] HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\110.1.48.171\Installer\chrmstp.exe [2023-02-24] (Brave Software, Inc. -> Brave Software, Inc.) HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {03F17A87-3F15-42C2-AAC4-1FB23C05827D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MpCmdRun.exe [1592184 2023-02-15] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {219F2AAF-7827-4F3B-9162-52AEF1ABF256} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1145440 2022-01-20] (HP Inc. -> HP Inc.) Task: {2D687F70-161B-4ED9-9CFE-373CDCA5F826} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [136368 2022-01-20] (HP Inc. -> HP Inc.) Task: {3B833B8E-F8DE-44AA-BD23-2DEC0387C809} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [165120 2022-05-29] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {4B4D9027-0ACE-4359-AD2D-6DC1D280EC97} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3075936 2021-07-21] (Intel Corporation -> Intel Corporation) Task: {6A67AF6E-DB98-4DBF-8BC2-730BE2BBD587} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [165120 2022-05-29] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {6F8169C5-24A6-458C-A1BD-AD557E7A76AF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1145440 2022-01-20] (HP Inc. -> HP Inc.) Task: {8064D098-BA65-4AE8-A73F-96D925FEA119} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [29464 2023-02-01] (Garmin International, Inc. -> ) Task: {84A20B3D-66CE-480F-9DAC-670BDCB0E97E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MpCmdRun.exe [1592184 2023-02-15] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {96A3CBD6-8EA6-4683-B408-0A26063BD3A4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MpCmdRun.exe [1592184 2023-02-15] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {9EA46E17-5728-4062-9AC7-3EE6DA3BD317} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3075936 2021-07-21] (Intel Corporation -> Intel Corporation) Task: {C94C39ED-06C0-4683-AD99-4BF2AE87EEDB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MpCmdRun.exe [1592184 2023-02-15] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {DE7F5545-95BB-4D53-B3D1-DDC41D549A93} - System32\Tasks\SystemOptimizer => C:\Program Files\HP\SystemOptimizer\SystemOptimizer.exe [117848 2022-02-23] (HP Inc. -> HP Inc.) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.8.1 Tcpip\..\Interfaces\{c3f21f21-51d9-45ac-9dbb-a7598ff9e64e}: [DhcpNameServer] 192.168.8.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\divof\AppData\Local\Microsoft\Edge\User Data\Default [2023-03-07] FireFox: ======== FF Plugin-x32: @java.com/DTPlugin,version=11.361.2 -> C:\Program Files (x86)\Java\jre1.8.0_361\bin\dtplugin\npDeployJava1.dll [2023-01-09] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.361.2 -> C:\Program Files (x86)\Java\jre1.8.0_361\bin\plugin2\npjp2.dll [2023-01-09] (Oracle America, Inc. -> Oracle Corporation) Opera: ======= OPR Profile: C:\Users\divof\AppData\Roaming\Opera Software\Opera Stable [2023-03-08] OPR DefaultSearchURL: Opera Stable -> hxxps://cashback.opera.com OPR DefaultSuggestURL: Opera Stable -> hxxps://ac.duckduckgo.com/ac/?q={searchTerms}&type=list&t={opera:vpnClient} OPR Session Restore: Opera Stable -> [funkcja włączona] OPR Extension: (Free Download Manager) - C:\Users\divof\AppData\Roaming\Opera Software\Opera Stable\Extensions\ahmpjcflkgiildlgicmcieglgoilbfdp [2022-01-16] OPR Extension: (Translator) - C:\Users\divof\AppData\Roaming\Opera Software\Opera Stable\Extensions\cnbpedcoekjafichoehopgaaldogogch [2022-01-16] OPR Extension: (Video Downloader VeeVee – Pobieracz wideo) - C:\Users\divof\AppData\Roaming\Opera Software\Opera Stable\Extensions\egpogpoknnogeldpjkieeniplgipljpg [2023-02-05] OPR Extension: (Rich Hints Agent) - C:\Users\divof\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2022-10-27] OPR Extension: (Opera Wallet) - C:\Users\divof\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2023-02-27] OPR Extension: (Amazon Assistant Promotion) - C:\Users\divof\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2022-01-16] OPR Extension: (Zainstaluj rozszerzenia Chrome) - C:\Users\divof\AppData\Roaming\Opera Software\Opera Stable\Extensions\kipjbhgniklcnglfaldilecjomjaddfi [2022-01-16] OPR Extension: (Opera Cashback) - C:\Users\divof\AppData\Roaming\Opera Software\Opera Stable\Extensions\nooloojkiejfplbmfiflikencpiaapoi [2023-03-01] Brave: ======= BRA Profile: C:\Users\divof\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2023-03-07] BRA DefaultSearchURL: Default -> hxxps://search.brave.com/search?q={searchTerms}&source=desktop BRA DefaultSearchKeyword: Default -> :br BRA DefaultSuggestURL: Default -> hxxps://search.brave.com/api/suggest?q={searchTerms} BRA Extension: (Tłumacz Google) - C:\Users\divof\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2022-05-29] BRA Extension: (Free Download Manager) - C:\Users\divof\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\ahmpjcflkgiildlgicmcieglgoilbfdp [2022-05-29] BRA Extension: (Video Downloader Professional) - C:\Users\divof\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2023-02-11] BRA Extension: (Opera Cashback) - C:\Users\divof\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\kfkddcifiihcdaaambaijmopndkgpdkh [2023-02-11] BRA Profile: C:\Users\divof\AppData\Local\BraveSoftware\Brave-Browser\User Data\System Profile [2023-03-07] BRA Extension: (Brave Local Data Files Updater) - C:\Users\divof\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2023-02-27] BRA Extension: (Brave NTP background images) - C:\Users\divof\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2022-09-03] BRA Extension: (Wallet Data Files Updater) - C:\Users\divof\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2023-02-27] BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\divof\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2022-11-06] BRA Extension: (Brave Tor Client Updater (Windows)) - C:\Users\divof\AppData\Local\BraveSoftware\Brave-Browser\User Data\cpoalefficncklhjfpglfiplenlpccdb [2023-02-19] BRA Extension: (Brave Ads Resources) - C:\Users\divof\AppData\Local\BraveSoftware\Brave-Browser\User Data\feeklcgpaolphdiamjaolkkcpbeihkbh [2023-02-19] BRA Extension: (Brave Ads Resources) - C:\Users\divof\AppData\Local\BraveSoftware\Brave-Browser\User Data\fojhemdeemkcacelmecilmibcjallejo [2022-05-29] BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\divof\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2023-01-21] BRA Extension: (Brave NTP sponsored images) - C:\Users\divof\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodhafecfemgejckecbnmpobnhmoaoag [2023-02-27] BRA Extension: (Brave Ad Block Updater (Default (plaintext))) - C:\Users\divof\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2023-02-27] BRA Extension: (Brave SpeedReader Updater) - C:\Users\divof\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2022-05-29] BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\divof\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2022-12-21] BRA Extension: (Brave Ad Block Updater (Oficjalne Polskie Filtry do AdBlocka, uBlocka Origin i AdGuarda (plaintext))) - C:\Users\divof\AppData\Local\BraveSoftware\Brave-Browser\User Data\ngcohbdfildjnmfnicgdipopmlhdcokg [2023-02-19] BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\divof\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2023-02-26] BRA Extension: (Brave Ad Block Updater (Oficjalne Polskie Filtry do AdBlocka, uBlocka Origin i AdGuarda)) - C:\Users\divof\AppData\Local\BraveSoftware\Brave-Browser\User Data\paoecjnjjbclkgbempaeemcbeldldlbo [2022-11-06] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [165120 2022-05-29] (Brave Software, Inc. -> BraveSoftware Inc.) S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [165120 2022-05-29] (Brave Software, Inc. -> BraveSoftware Inc.) S3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [245760 2010-01-25] (Brother Industries, Ltd.) [Brak podpisu cyfrowego] R2 DTSAPO3Service; C:\WINDOWS\System32\DTS\PC\APO3x\DTSAPO3Service.exe [207472 2019-05-23] (DTS, Inc. -> ) R2 HPAppHelperCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_844fe58f152c16a8\x64\AppHelperCap.exe [797600 2023-01-19] (HP Inc. -> HP Inc.) R2 HPDiagsCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_844fe58f152c16a8\x64\DiagsCap.exe [796584 2023-01-19] (HP Inc. -> HP Inc.) R2 HPNetworkCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_844fe58f152c16a8\x64\NetworkCap.exe [792984 2023-01-19] (HP Inc. -> HP Inc.) R2 HPOmenCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpomencustomcapcomp.inf_amd64_e711c85c03558fc4\x64\OmenCap\OmenCap.exe [775136 2022-11-04] (HP Inc. -> HP Inc.) R2 HPSysInfoCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_844fe58f152c16a8\x64\SysInfoCap.exe [796576 2023-01-19] (HP Inc. -> HP Inc.) R2 HpTouchpointAnalyticsService; C:\WINDOWS\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_f23fc423d26e5d79\x64\TouchpointAnalyticsClientService.exe [493712 2022-12-19] (HP Inc. -> HP Inc.) S3 InventorySvc; C:\WINDOWS\system32\inventorysvc.dll [304480 2022-10-12] (Microsoft Windows -> Microsoft Corporation) R2 PDF24; C:\Program Files\PDF24\pdf24.exe [589560 2022-03-25] (geek software GmbH -> geek software GmbH) R2 SgrmBroker; C:\WINDOWS\system32\Sgrm\SgrmBroker.exe [414632 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation) R2 TextInputManagementService; C:\WINDOWS\System32\TabSvc.dll [266240 2022-10-12] (Microsoft Windows -> Microsoft Corporation) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\NisSrv.exe [3191256 2023-02-15] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MsMpEng.exe [133576 2023-02-15] (Microsoft Windows Publisher -> Microsoft Corporation) R3 wuauserv; C:\WINDOWS\system32\wuauserv.dll [137600 2023-02-14] (Microsoft Windows -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvhmig.inf_amd64_02942c7e340ddcd3\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvhmig.inf_amd64_02942c7e340ddcd3\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 bfs; C:\WINDOWS\system32\drivers\bfs.sys [91480 2022-10-12] (Microsoft Windows -> Microsoft Corporation) S3 CH341SER_A64; C:\WINDOWS\System32\Drivers\CH341S64.SYS [78328 2021-08-25] (Microsoft Windows Hardware Compatibility Publisher -> www.winchiphead.com) S0 GenPass; C:\WINDOWS\System32\DriverStore\FileRepository\genpass.inf_amd64_bef88a423225ecdc\genpass.sys [62800 2022-05-07] (Microsoft Windows -> Microsoft Corporation) S3 HidGuardian; C:\WINDOWS\System32\drivers\HidGuardian.sys [26736 2017-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Benjamin Höglinger-Stelzer) R3 HPCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_a955fa431e522f5e\x64\hpcustomcapdriver.sys [25592 2021-09-16] (HP Inc. -> HP Inc.) R3 HPOmenCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpomencustomcapdriver.inf_amd64_326f2e1d16385daf\x64\hpomencustomcapdriver.sys [33464 2018-12-19] (HP Inc. -> HP Inc.) R2 HpReadHWData; C:\WINDOWS\system32\drivers\HpReadHWData.sys [49744 2022-10-11] (HP Inc. -> Windows (R) Win 7 DDK provider) R3 MpKsl518e0e43; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{AD2AF849-1F8F-4499-AB08-A57ACC92E846}\MpKslDrv.sys [214280 2023-03-08] (Microsoft Windows -> Microsoft Corporation) S0 pvscsi; C:\WINDOWS\System32\drivers\pvscsii.sys [45408 2022-05-07] (Microsoft Windows -> VMware, Inc.) S3 RoutePolicy; C:\WINDOWS\System32\drivers\RoutePolicy.sys [98304 2022-05-07] (Microsoft Windows -> ) R3 rtcx21; C:\WINDOWS\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek) R1 rtf64; C:\WINDOWS\system32\DRIVERS\rtf64x64.sys [70560 2020-12-02] (Realtek Semiconductor Corp. -> Realtek) R0 sptd2; C:\WINDOWS\System32\Drivers\sptd2.sys [207344 2022-11-23] (Disc Soft Ltd -> Duplex Secure Ltd) R3 ViGEmBus; C:\WINDOWS\System32\DriverStore\FileRepository\vigembus.inf_amd64_e84845c70c38fbe7\x64\ViGEmBus.sys [74648 2018-08-01] (HP Inc. -> Benjamin Höglinger-Stelzer) S3 WacHidRouterPro; C:\WINDOWS\System32\drivers\wachidrouter.sys [137304 2022-11-18] (WDKTestCert dant,133088663242323546 -> Wacom Co. Ltd.) S3 wacomrouterfilter; C:\WINDOWS\System32\drivers\wacomrouterfilter.sys [31288 2022-11-18] (WDKTestCert dant,133093294545578878 -> Wacom Co. Ltd.) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49576 2023-02-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [473336 2023-02-15] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99576 2023-02-15] (Microsoft Windows -> Microsoft Corporation) R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [40104 2022-06-17] (HP Inc. -> HP) R2 wtd; C:\WINDOWS\System32\drivers\wtd.sys [118784 2022-12-02] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-03-08 19:17 - 2023-03-08 19:17 - 000800970 _____ C:\WINDOWS\system32\perfh015.dat 2023-03-08 19:17 - 2023-03-08 19:17 - 000749084 _____ C:\WINDOWS\system32\perfh007.dat 2023-03-08 19:17 - 2023-03-08 19:17 - 000158968 _____ C:\WINDOWS\system32\perfc015.dat 2023-03-08 19:17 - 2023-03-08 19:17 - 000157266 _____ C:\WINDOWS\system32\perfc007.dat 2023-03-08 19:14 - 2023-03-08 19:14 - 000041920 _____ C:\WINDOWS\system32\Drivers\truesight.sys 2023-03-08 19:09 - 2023-03-08 19:09 - 000000000 ____D C:\ProgramData\Win32 Home System 2023-03-07 17:55 - 2023-03-08 19:20 - 000000000 ____D C:\FRST 2023-03-07 17:34 - 2023-03-07 17:34 - 000000000 ____D C:\AdwCleaner 2023-03-07 17:27 - 2023-03-07 17:27 - 000000000 ____D C:\Users\divof\AppData\Local\mbam 2023-03-07 17:15 - 2023-03-07 17:15 - 000001426 _____ C:\WINDOWS\system32\default_error_stack-000054-000000.txt 2023-03-07 17:10 - 2023-03-07 17:10 - 000000758 _____ C:\Users\divof\temp.zip 2023-02-21 19:02 - 2023-02-21 19:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 7.5 2023-02-21 19:02 - 2023-02-21 19:02 - 000000000 ____D C:\Program Files\LibreOffice 2023-02-21 16:55 - 2023-02-21 16:55 - 000000000 ____D C:\Program Files\Portrait Displays 2023-02-19 12:23 - 2023-02-19 12:27 - 000000000 ____D C:\Program Files\Delta Media Player 2023-02-15 23:17 - 2023-02-15 23:17 - 000001405 _____ C:\Users\divof\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Przeglądarka Opera.lnk 2023-02-14 21:11 - 2023-02-14 21:11 - 000000000 ___HD C:\$WinREAgent ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-03-08 19:17 - 2022-10-11 20:42 - 002702402 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2023-03-08 19:17 - 2022-05-07 06:22 - 000000000 ____D C:\WINDOWS\INF 2023-03-08 19:14 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemTemp 2023-03-08 19:13 - 2022-12-06 18:56 - 000000000 ____D C:\Users\divof\AppData\Roaming\WTablet 2023-03-08 19:13 - 2022-10-11 20:41 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2023-03-08 19:13 - 2022-06-30 15:21 - 000012288 ___SH C:\DumpStack.log.tmp 2023-03-08 19:13 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ServiceState 2023-03-08 19:13 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-03-08 19:13 - 2022-01-15 12:09 - 000000000 __SHD C:\Users\divof\IntelGraphicsProfiles 2023-03-08 19:13 - 2022-01-15 10:24 - 000000000 ____D C:\ProgramData\NVIDIA 2023-03-08 19:12 - 2022-05-07 06:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2023-03-08 19:11 - 2022-01-15 15:01 - 000000000 ____D C:\Program Files (x86)\Steam 2023-03-08 19:02 - 2022-01-19 11:31 - 000000000 ____D C:\Users\divof\AppData\Roaming\Telegram Desktop 2023-03-08 18:03 - 2022-01-15 13:46 - 000000000 ____D C:\Users\divof\AppData\Local\OGH 2023-03-07 20:00 - 2022-10-11 20:37 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2023-03-07 19:59 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy 2023-03-07 19:59 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy 2023-03-07 18:25 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\CbsTemp 2023-03-07 18:22 - 2022-01-15 10:11 - 000000000 ____D C:\Users\divof\AppData\Local\D3DSCache 2023-03-07 18:15 - 2023-01-30 21:34 - 000000000 ____D C:\Users\divof\AppData\Roaming\TeamViewer 2023-03-07 18:15 - 2022-10-10 20:19 - 000000000 ___DC C:\WINDOWS\Panther 2023-03-07 18:15 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2023-03-07 18:15 - 2022-02-20 11:36 - 000000000 ____D C:\Users\divof\AppData\Roaming\inkscape 2023-03-07 18:15 - 2022-01-25 11:15 - 000000000 ____D C:\Users\divof\AppData\Roaming\FileZilla 2023-03-07 17:33 - 2022-05-07 06:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2023-03-07 17:10 - 2022-10-11 20:13 - 000000000 ____D C:\Users\divof 2023-03-07 15:11 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\AppReadiness 2023-03-04 14:31 - 2022-05-07 06:24 - 000000000 ___HD C:\Program Files\WindowsApps 2023-03-04 14:31 - 2022-01-15 09:03 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-03-01 14:46 - 2022-10-11 20:41 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2023-03-01 14:46 - 2022-10-11 20:41 - 000003442 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2023-02-24 19:53 - 2022-05-29 09:30 - 000002380 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk 2023-02-21 19:48 - 2022-10-11 20:37 - 000493800 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2023-02-19 17:35 - 2023-02-05 17:34 - 000000000 ____D C:\Users\divof\AppData\Local\Garmin 2023-02-15 21:30 - 2022-01-15 12:56 - 000000000 ____D C:\WINDOWS\system32\MRT 2023-02-15 21:28 - 2022-01-15 12:56 - 149955784 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2023-02-15 20:03 - 2022-01-15 09:03 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2023-02-14 21:16 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2023-02-14 21:16 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\UUS 2023-02-14 21:16 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemResources 2023-02-14 21:16 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\setup 2023-02-14 21:16 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\oobe 2023-02-14 21:16 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2023-02-14 21:16 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\bcastdvr 2023-02-14 21:13 - 2022-10-11 20:38 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll ==================== Pliki w katalogu głównym wybranych folderów ======== 2023-01-11 17:13 - 2023-01-11 17:13 - 000000218 _____ () C:\Users\divof\AppData\Local\recently-used.xbel 2022-01-15 16:03 - 2022-02-24 22:51 - 000007605 _____ () C:\Users\divof\AppData\Local\Resmon.ResmonCfg ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================