Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 28-02-2021 Uruchomiony przez HP (administrator) LAPTOP-3H111V6U (HP HP 250 G6 Notebook PC) (13-03-2021 10:12:02) Uruchomiony z C:\Users\HP\Downloads Załadowane profile: HP Platform: Windows 10 Pro Wersja 2004 19041.867 (X64) Język: Polski (Polska) Domyślna przeglądarka: Chrome Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) () [Brak podpisu cyfrowego] [Plik w użyciu] C:\Users\HP\AppData\Roaming\ohp1xv2o1uk\zute0okliib.exe () [Brak podpisu cyfrowego] C:\Users\HP\AppData\Local\Temp\is-4FQ2C.tmp\zute0okliib.tmp (Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <2> (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler64.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <18> (HP Inc -> HP Inc.) C:\Program Files\HP\HP DeskJet 5000 series\Bin\HPNetworkCommunicatorCom.exe (HP Inc -> HP Inc.) C:\Program Files\HP\HP DeskJet 5000 series\Bin\ScanToPCActivationApp.exe (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe (HP Inc.) [Brak podpisu cyfrowego] C:\Program Files\HPPrintScanDoctor\HPSUPD-Win32Exe.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki135422.inf_amd64_819df826076efbf4\igfxCUIService.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki135422.inf_amd64_819df826076efbf4\igfxEM.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki135422.inf_amd64_819df826076efbf4\IntelCpHDCPSvc.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki135422.inf_amd64_819df826076efbf4\IntelCpHeciSvc.exe (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe (Microsoft Corporation -> Microsoft Corporation) C:\Users\HP\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2102.8653.0_x64__8wekyb3d8bbwe\Cortana.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2101.10.0_x64__8wekyb3d8bbwe\Calculator.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20688.0_x64__8wekyb3d8bbwe\HxOutlook.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20688.0_x64__8wekyb3d8bbwe\HxTsr.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.521.2012.0_x64__8wekyb3d8bbwe\GameBar.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.521.2012.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.3-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.3-0\NisSrv.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7> (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11235928 2020-04-23] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [SimplySignDesktop] => C:\Program Files\Certum\SimplySign Desktop\SimplySignDesktop.exe [1184336 2020-04-16] (Asseco Data Systems S.A. -> Asseco Data Systems S.A.) HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [709160 2018-05-22] (HP Inc. -> HP Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-12-09] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [TeamsMachineUninstallerLocalAppData] => C:\Users\HP\AppData\Local\Microsoft\Teams\Update.exe [1790192 2019-08-05] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKLM-x32\...\Run: [TeamsMachineUninstallerProgramData] => %ProgramData%\Microsoft\Teams\Update.exe --uninstall --msiUninstall --source=default HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA HKU\S-1-5-21-957804742-2659285250-3441441853-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3412696 2021-02-13] (Valve -> Valve Corporation) HKU\S-1-5-21-957804742-2659285250-3441441853-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32952800 2021-03-10] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-957804742-2659285250-3441441853-1001\...\Run: [launchOnStartup] => C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1747528 2020-04-30] (GOG Sp. z o.o. -> GOG.com) HKU\S-1-5-21-957804742-2659285250-3441441853-1001\...\Run: [HP DeskJet 5000 (NET)] => C:\Program Files\HP\HP DeskJet 5000 series\Bin\ScanToPCActivationApp.exe [4064160 2019-03-18] (HP Inc -> HP Inc.) HKU\S-1-5-21-957804742-2659285250-3441441853-1001\...\Run: [3851954] => C:\Users\HP\AppData\Roaming\ohp1xv2o1uk\zute0okliib.exe [550467 2021-03-11] () [Brak podpisu cyfrowego] [Plik w użyciu] HKLM\...\Windows x64\Print Processors\Canon MB5100 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDD2.DLL [30720 2018-07-17] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ FAX Language Monitor MB5100 series: C:\WINDOWS\system32\CNCALD2.DLL [254464 2015-11-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ Language Monitor MB5100 series: C:\WINDOWS\system32\CNMLMD2.DLL [436736 2018-07-17] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\89.0.4389.82\Installer\chrmstp.exe [2021-03-11] (Google LLC -> Google LLC) GroupPolicy: Ograniczenia - Chrome <==== UWAGA Policies: C:\ProgramData\NTUSER.pol: Ograniczenia <==== UWAGA HKLM\SOFTWARE\Policies\Google: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {1BAA9D7E-F6BE-41A7-87FA-5036C7A6953B} - System32\Tasks\klcp_update => CodecTweakTool.exe Task: {1CC1A6E3-48CA-4575-AE73-1B6E2B8EEF5A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - resources updates => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe Task: {4F4DF897-5459-4D2C-B0E5-1F02F083133E} - System32\Tasks\TR_FastScan_AtLogon => C:\Program Files (x86)\Trojan Remover\Trjscan.exe [6499736 2021-02-27] (Simply Super Software -> Simply Super Software) Task: {5E136CBC-2238-4B9F-B80E-2BDA4CEB27AD} - System32\Tasks\TR_AntiHijack => C:\Program Files (x86)\Trojan Remover\TRAntiHJ.exe Task: {694D8208-E1AC-48BF-8BDE-142CE7511579} - System32\Tasks\LcZhPeAJKeJCEQEZW => C:\WINDOWS\Temp\MPwnmQHPJsxPyvvF\FRtjRUOVUNaENkx\tJWYbtV.exe [7039488 2021-03-11] () [Brak podpisu cyfrowego] <==== UWAGA Task: {6E04041B-C1FA-4F46-AD26-F831B9DE37DC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\MpCmdRun.exe [566376 2021-03-07] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {7DAD269C-8143-4F17-89E0-1FCD990032AB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-03-11] (Google LLC -> Google LLC) Task: {87C9D8D8-9B3F-4FEC-AA3A-D69F4A6EFA5D} - System32\Tasks\TR_Updater => C:\Program Files (x86)\Trojan Remover\Trupd.exe [6480784 2020-10-05] (Simply Super Software -> Simply Super Software) Task: {8A8CF2A8-ACBC-45E2-8D46-90FA2DE370E9} - System32\Tasks\spuDXCffWsXf => C:\Users\HP\AppData\Local\Temp\KqiMQoGdYmOaiPVmA\KMCWgNza\BReVnfF.exe [7039488 2021-03-11] () [Brak podpisu cyfrowego] <==== UWAGA Task: {8FC30897-55EA-42DA-97AB-6ED97B726730} - System32\Tasks\Services\Diagnostic => C:\Users\HP\AppData\Local\Disk\AutoIt3\AutoIt3_x64.exe -> "C:\Users\HP\AppData\Local\Disk\AutoIt3\Settings.au3" Task: {92724D78-BCED-4AE6-A3A3-E6A64E74324C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\MpCmdRun.exe [566376 2021-03-07] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {962F5EAB-DB4F-4FFA-9C22-A381CDF01180} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe Task: {9A6362D6-5577-4153-9D8D-75DEF81E961D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe Task: {9EB32595-87EA-4FBA-A959-704B9465BDF7} - System32\Tasks\TR_FastScan_Daily_HP => C:\Program Files (x86)\Trojan Remover\Trjscan.exe [6499736 2021-02-27] (Simply Super Software -> Simply Super Software) Task: {A0FAF324-4918-4672-AF40-BBDA594934B5} - System32\Tasks\HPCustParticipation HP DeskJet 5000 series => C:\Program Files\HP\HP DeskJet 5000 series\Bin\HPCustPartic.exe [6659488 2019-03-18] (HP Inc -> HP Inc.) Task: {B0F1F582-D2D6-4DBC-9A35-6189B6CD8063} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\MpCmdRun.exe [566376 2021-03-07] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {B7E744F2-C49B-4EEE-8E10-C9FC04D53C59} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe Task: {C3666BC5-2747-4DD1-8641-B672CF6119A2} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe Task: {CD34685E-EC2E-44B4-8AD7-58ED4AD9B7CF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe Task: {CD918B63-E449-4E91-8887-4E96B90B1844} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2021-03-11] (Google LLC -> Google LLC) Task: {D1888C4F-A4FD-437D-8725-A59A0434F92C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe Task: {D3E03A73-5638-462B-BCC5-75673598B226} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1190424 2018-08-14] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Task: {D4253EA2-0E47-4D6C-8BD1-C879AD80F1F1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\MpCmdRun.exe [566376 2021-03-07] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {D9BE386E-B792-4DD9-8621-2709EB4753DA} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe Task: {FD131C4D-8A3F-496B-BA07-AECA23B6366D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\LcZhPeAJKeJCEQEZW.job => C:\WINDOWS\Temp\MPwnmQHPJsxPyvvF\FRtjRUOVUNaENkx\tJWYbtV.exe <==== UWAGA ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{45c81699-95d1-4e59-b8d4-e08d8e0b6521}: [DhcpNameServer] 192.168.0.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\HP\AppData\Local\Microsoft\Edge\User Data\Default [2021-03-11] FireFox: ======== FF DefaultProfile: 7qhmt6l8.default FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\7qhmt6l8.default [2021-03-11] FF Notifications: Mozilla\Firefox\Profiles\7qhmt6l8.default -> hxxps://mail-notification.info FF Plugin: @java.com/DTPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\dtplugin\npDeployJava1.dll [2021-02-07] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\plugin2\npjp2.dll [2021-02-07] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-09-20] (Adobe Systems, Incorporated -> Adobe Systems Inc.) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default [2021-03-13] CHR StartupUrls: Default -> "hxxp://www.google.pl/" CHR Extension: (Prezentacje) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-11-13] CHR Extension: (Safe Torrent Scanner) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2021-03-09] CHR Extension: (Dokumenty) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-11-13] CHR Extension: (Dysk Google) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-25] CHR Extension: (YouTube) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-11-13] CHR Extension: (Adblock Plus - darmowy adblocker) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-01-29] CHR Extension: (Arkusze) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-11-13] CHR Extension: (Google Translate) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\fiogdnnnljjlfjgkifccooilblmjflkm [2021-03-11] CHR Extension: (Dokumenty Google offline) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-03-11] CHR Extension: (Szafir SDK Web) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjalhnomhafafofonpdihihjnbafkipc [2018-11-17] CHR Extension: (HP Network Check Launcher) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkfpchpiljkaemlpmpebnglgkomamfeo [2018-11-23] CHR Extension: (Gra WGT Golf) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpedbpkelbhcbkdaglillalioeeekbpb [2018-11-17] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR Extension: (Gmail) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-22] CHR Extension: (Chrome Media Router) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-03-11] CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-03-11] CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\System Profile [2021-03-11] CHR Notifications: System Profile -> hxxps://mail-notification.info CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb] CHR HKLM-x32\...\Chrome\Extension: [jkfpchpiljkaemlpmpebnglgkomamfeo] CHR HKLM-x32\...\Chrome\Extension: [ofoeigeaodhbjogdigckajfhjbonaofg] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [83984 2018-08-14] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8403672 2019-03-15] (BattlEye Innovations e.K. -> ) S4 DialogBlockingService; C:\WINDOWS\System32\DialogBlockingService.dll [76288 2021-03-10] (Microsoft Windows -> Microsoft Corporation) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [781440 2019-02-04] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1747528 2020-04-30] (GOG Sp. z o.o. -> GOG.com) S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6821960 2020-02-24] (GOG Sp. z o.o. -> GOG.com) R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [284808 2021-02-04] (HP Inc. -> HP Inc.) S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1031704 2016-06-03] (Hewlett-Packard Company -> HP) R2 HPWMISVC; C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [628768 2017-07-13] (HP Inc. -> HP Inc.) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5352528 2021-03-10] (Microsoft Windows Publisher -> Microsoft Corporation) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\NisSrv.exe [2483624 2021-03-07] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\MsMpEng.exe [128392 2021-03-07] (Microsoft Windows Publisher -> Microsoft Corporation) S2 HPSupportSolutionsFrameworkService; "C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe" [X] ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.) R3 MpKsl089d6d74; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{35B717B8-5BEB-4826-BA04-866822132275}\MpKslDrv.sys [90360 2021-03-13] (Microsoft Windows -> Microsoft Corporation) S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [41008 2021-02-04] (McAfee, LLC. -> The OpenVPN Project) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49544 2021-03-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [420088 2021-03-07] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [72952 2021-03-07] (Microsoft Windows -> Microsoft Corporation) R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [35392 2020-06-08] (HP Inc. -> HP) U3 aspnet_state; Brak ImagePath ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-03-11 21:19 - 2021-03-11 21:19 - 000041206 _____ C:\Users\HP\Downloads\Shortcut.txt 2021-03-11 21:18 - 2021-03-11 21:19 - 000034866 _____ C:\Users\HP\Downloads\Addition.txt 2021-03-11 21:15 - 2021-03-13 10:13 - 000023421 _____ C:\Users\HP\Downloads\FRST.txt 2021-03-11 21:14 - 2021-03-13 10:12 - 000000000 ____D C:\FRST 2021-03-11 21:14 - 2021-03-11 21:14 - 002301440 _____ (Farbar) C:\Users\HP\Downloads\FRST64.exe 2021-03-11 20:18 - 2021-03-11 20:33 - 000000000 ____D C:\AdwCleaner 2021-03-11 20:04 - 2021-03-11 19:56 - 000000030 _____ C:\AVScanner.ini 2021-03-11 19:56 - 2021-03-11 19:56 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2021-03-11 19:56 - 2021-03-11 19:56 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2021-03-11 19:42 - 2021-03-11 19:42 - 000003568 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2021-03-11 19:42 - 2021-03-11 19:42 - 000003444 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2021-03-11 19:42 - 2021-03-11 19:42 - 000002332 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2021-03-11 19:42 - 2021-03-11 19:42 - 000002291 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2021-03-11 19:42 - 2021-03-11 19:42 - 000000000 ____D C:\Program Files\Google 2021-03-11 19:23 - 2021-03-11 19:36 - 000000000 ____D C:\ProgramData\TEMP 2021-03-11 19:21 - 2021-03-11 19:21 - 000004130 _____ C:\WINDOWS\system32\Tasks\TR_FastScan_Daily_HP 2021-03-11 19:21 - 2021-03-11 19:21 - 000003950 _____ C:\WINDOWS\system32\Tasks\TR_Updater 2021-03-11 19:21 - 2021-03-11 19:21 - 000000000 ____D C:\Users\HP\Documents\Simply Super Software 2021-03-11 19:20 - 2021-03-11 19:20 - 000004004 _____ C:\WINDOWS\system32\Tasks\TR_FastScan_AtLogon 2021-03-11 19:20 - 2021-03-11 19:20 - 000003786 _____ C:\WINDOWS\system32\Tasks\TR_AntiHijack 2021-03-11 19:20 - 2021-03-11 19:20 - 000001274 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Trojan Remover Updater.lnk 2021-03-11 19:20 - 2021-03-11 19:20 - 000001223 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Trojan Remover.lnk 2021-03-11 19:20 - 2021-03-11 19:20 - 000001204 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Trojan Remover FastScan.lnk 2021-03-11 19:20 - 2021-03-11 19:20 - 000000000 ____D C:\ProgramData\Simply Super Software 2021-03-11 19:20 - 2021-03-11 19:20 - 000000000 ____D C:\Program Files (x86)\Trojan Remover 2021-03-11 19:00 - 2021-03-11 19:33 - 000000000 ____D C:\Users\HP\AppData\Roaming\WinHost 2021-03-11 18:57 - 2021-03-11 18:57 - 001246160 _____ (Mozilla Foundation) C:\ProgramData\nss3.dll 2021-03-11 18:57 - 2021-03-11 18:57 - 000334288 _____ (Mozilla Foundation) C:\ProgramData\freebl3.dll 2021-03-11 18:57 - 2021-03-11 18:57 - 000144848 _____ (Mozilla Foundation) C:\ProgramData\softokn3.dll 2021-03-11 18:57 - 2021-03-11 18:57 - 000137168 _____ (Mozilla Foundation) C:\ProgramData\mozglue.dll 2021-03-11 18:57 - 2021-03-11 18:57 - 000000000 ____D C:\ProgramData\WGJ2QSSXGELNSTFG0N12E37YB 2021-03-11 18:57 - 2021-03-11 18:57 - 000000000 ____D C:\ProgramData\MEZNXED8R092EKP2E2532OPN9 2021-03-11 18:56 - 2021-03-11 18:56 - 000000000 ____D C:\ProgramData\ONKLAXSQXD16FOVHECJFPDIT7 2021-03-11 18:54 - 2021-03-11 18:54 - 000000000 ____D C:\ProgramData\YDGCFC7FTC6EQCBAOG39OZ0HQ 2021-03-11 18:54 - 2021-03-11 18:54 - 000000000 ____D C:\ProgramData\X7YE8W4UMVJUGIMBLU8MYGF8W 2021-03-11 18:54 - 2021-03-11 18:54 - 000000000 ____D C:\ProgramData\IRMSCQ35V4JJ7VWZX3B3XICIF 2021-03-11 18:54 - 2021-03-11 18:54 - 000000000 ____D C:\ProgramData\3PHN9NJG48PO0XQE1O8D20S9A 2021-03-11 18:50 - 2021-03-11 18:53 - 000000000 ____D C:\ProgramData\Z4FEDI5SF0372AYLKU37059L1 2021-03-11 18:50 - 2021-03-11 18:53 - 000000000 ____D C:\ProgramData\r1p3s5p9x9p3s5p9x9 2021-03-11 18:50 - 2021-03-11 18:53 - 000000000 ____D C:\ProgramData\0UE3LX9SU7XDBWNXFX7IBE1IX 2021-03-11 18:49 - 2021-03-11 18:52 - 000000000 ____D C:\Program Files (x86)\Aged-Feather 2021-03-11 18:48 - 2021-03-11 18:50 - 000000000 ____D C:\ProgramData\KGAHXNIPAQSTLS2I0FNX4MRBX 2021-03-11 18:48 - 2021-03-11 18:50 - 000000000 ____D C:\ProgramData\3SDLNLSYWDHJ5IKP39SXY4GM3 2021-03-11 18:48 - 2021-03-11 18:48 - 000003414 _____ C:\WINDOWS\system32\Tasks\spuDXCffWsXf 2021-03-11 18:47 - 2021-03-11 18:47 - 000000876 _____ C:\Users\HP\AppData\LocalLow\outlook.txt 2021-03-11 18:47 - 2021-03-11 18:47 - 000000000 ____D C:\Users\HP\AppData\LocalLow\cR1dL5pE5dG6mD5k 2021-03-11 18:44 - 2021-03-11 18:44 - 000000000 ____D C:\ProgramData\EN6ZH7FSJU48R6F1JR0H0R7ID 2021-03-11 18:44 - 2021-03-11 18:44 - 000000000 ____D C:\ProgramData\8ZDCVRBH7HUVZZ8437CD2TA0F 2021-03-11 18:42 - 2021-03-11 18:42 - 000000000 ____D C:\ProgramData\JLBG4JIFOT23N1N7OCFGH9WDP 2021-03-11 18:38 - 2021-03-11 18:40 - 000000000 ____D C:\ProgramData\QV5ETF2187L2NBC6END3H35MW 2021-03-11 18:38 - 2021-03-11 18:38 - 000000000 ____D C:\Program Files\NIZBZVNXMX 2021-03-11 18:38 - 2021-03-11 18:38 - 000000000 ____D C:\Program Files (x86)\Cold-Sound 2021-03-11 18:37 - 2021-03-11 18:37 - 000000000 ____D C:\Users\HP\AppData\Roaming\ohp1xv2o1uk 2021-03-11 18:37 - 2021-03-11 18:37 - 000000000 ____D C:\Program Files (x86)\Misty-Pond 2021-03-11 18:36 - 2021-03-11 18:58 - 000000454 _____ C:\WINDOWS\Tasks\LcZhPeAJKeJCEQEZW.job 2021-03-11 18:36 - 2021-03-11 18:36 - 000002996 _____ C:\WINDOWS\system32\Tasks\LcZhPeAJKeJCEQEZW 2021-03-11 18:35 - 2021-03-11 18:35 - 000000000 ____D C:\ProgramData\LPEH97N1MFFD32QTYJ4TW7Y7X 2021-03-11 18:25 - 2021-03-11 18:25 - 000000000 __SHD C:\Users\HP\AppData\Roaming\WinCFG 2021-03-11 18:23 - 2021-03-11 18:24 - 000000000 ____D C:\Program Files (x86)\Wild-Sun 2021-03-11 18:23 - 2021-03-11 18:23 - 000000000 ____D C:\Users\HP\AppData\Roaming\zKDVYPIPaKeobY 2021-03-11 18:22 - 2021-03-11 18:37 - 000005372 __RSH C:\ProgramData\ntuser.pol 2021-03-11 18:22 - 2021-03-11 18:22 - 000000000 ____D C:\Users\HP\Documents\VlcpVideoV1.0.1 2021-03-11 18:22 - 2021-03-11 18:22 - 000000000 ____D C:\ProgramData\7YD6KLJ2B28W7WEG944PBWD8P 2021-03-11 18:20 - 2021-03-11 18:57 - 000000000 ____D C:\Users\HP\AppData\Roaming\erZTBpGmkGyxeWgAa 2021-03-11 13:52 - 2021-03-11 13:53 - 683148288 _____ C:\Users\HP\Desktop\SK PRIV backup.pst 2021-03-11 13:49 - 2021-03-11 13:53 - 1135690752 _____ C:\Users\HP\Desktop\SK ZORIA backup.pst 2021-03-10 22:46 - 2021-03-10 22:46 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2021-03-10 22:46 - 2021-03-10 22:46 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2021-03-10 22:46 - 2021-03-10 22:46 - 001822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2021-03-10 22:46 - 2021-03-10 22:46 - 001394024 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2021-03-10 22:46 - 2021-03-10 22:46 - 001314128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2021-03-10 22:46 - 2021-03-10 22:46 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE 2021-03-10 22:46 - 2021-03-10 22:46 - 000611952 _____ C:\WINDOWS\SysWOW64\TextShaping.dll 2021-03-10 22:46 - 2021-03-10 22:46 - 000480256 _____ C:\WINDOWS\system32\AssignedAccessCsp.dll 2021-03-10 22:46 - 2021-03-10 22:46 - 000231248 _____ C:\WINDOWS\system32\containerdevicemanagement.dll 2021-03-10 22:46 - 2021-03-10 22:46 - 000091136 _____ C:\WINDOWS\system32\Drivers\cimfs.sys 2021-03-10 22:46 - 2021-03-10 22:46 - 000011359 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-03-10 22:45 - 2021-03-10 22:45 - 000707016 _____ C:\WINDOWS\system32\TextShaping.dll 2021-03-10 20:16 - 2021-03-10 20:27 - 2184766464 _____ C:\Users\HP\Desktop\P2P SK backup.pst 2021-03-10 19:43 - 2021-03-10 19:43 - 000000000 ____D C:\Program Files\HPPrintScanDoctor 2021-03-10 19:07 - 2021-03-10 19:07 - 000000000 ____D C:\Users\HP\AppData\Local\OneDrive 2021-03-09 21:56 - 2021-03-11 18:17 - 000000000 ____D C:\Users\HP\AppData\Local\BitTorrentHelper 2021-03-09 21:55 - 2021-03-11 18:18 - 000000000 ____D C:\Users\HP\AppData\LocalLow\BitTorrent 2021-03-09 21:36 - 2021-03-11 18:23 - 000000000 ____D C:\Users\HP\AppData\Roaming\BitTorrent 2021-03-09 21:36 - 2021-03-09 21:36 - 000000920 _____ C:\Users\HP\Desktop\BitTorrent.lnk 2021-03-09 21:36 - 2021-03-09 21:36 - 000000900 _____ C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\BitTorrent.lnk 2021-03-09 21:35 - 2021-03-09 21:35 - 000000000 ____D C:\Users\HP\AppData\Local\Adaware 2021-03-09 21:33 - 2021-03-09 21:33 - 004710896 _____ (BitTorrent Inc.) C:\Users\HP\Downloads\BitTorrent.exe 2021-03-09 18:30 - 2021-03-09 18:30 - 000000000 ___HD C:\OneDriveTemp 2021-03-09 18:26 - 2021-03-09 18:26 - 000000000 ____D C:\ProgramData\Riate 2021-03-09 18:25 - 2021-03-09 18:25 - 000000000 ____D C:\ProgramData\Posse 2021-03-09 18:24 - 2021-03-09 18:24 - 000000000 ____D C:\WINDOWS\system32\Tasks\Services 2021-03-09 18:20 - 2021-03-09 18:20 - 000000000 ____D C:\Users\HP\AppData\Roaming\Butilok 2021-03-07 13:51 - 2021-03-07 13:52 - 000277532 _____ C:\Users\HP\Downloads\ilovepdf_merged (16).pdf 2021-03-07 13:51 - 2021-03-07 13:51 - 000230167 _____ C:\Users\HP\Downloads\1..pdf 2021-03-07 13:50 - 2021-03-07 13:50 - 000048004 _____ C:\Users\HP\Downloads\faktura_od_20210201_do_20210228.pdf 2021-03-07 13:50 - 2021-03-07 13:50 - 000002144 _____ C:\Users\HP\Downloads\zestawienie_uslug_od_20210201_do_20210228.csv 2021-03-07 13:47 - 2021-03-07 13:47 - 008658354 _____ C:\Users\HP\Downloads\Skanuj 07 mar 2021 (1).pdf 2021-03-07 13:47 - 2021-03-07 13:47 - 002877704 _____ C:\Users\HP\Downloads\Skanuj 07 mar 2021 (2).pdf 2021-03-07 13:47 - 2021-03-07 13:47 - 000205933 _____ C:\Users\HP\Downloads\Skanuj 07 mar 2021 (3).pdf 2021-03-05 14:42 - 2021-03-05 14:49 - 000000000 ____D C:\Users\HP\Desktop\Palisander 2021-03-04 21:10 - 2021-03-04 21:10 - 004994158 _____ C:\Users\HP\Downloads\Scan_20210301_114938 (1).pdf 2021-03-04 21:09 - 2021-03-04 21:09 - 009154542 _____ C:\Users\HP\Downloads\Scan_20210301_114938.pdf 2021-03-03 19:54 - 2021-03-03 19:54 - 000037966 _____ C:\Users\HP\Downloads\ZUS_ZLA_507462332.pdf.pdf 2021-03-03 19:53 - 2021-03-03 19:53 - 000038255 _____ C:\Users\HP\Downloads\ZUS_ZLA_507020275.pdf.pdf 2021-02-28 15:54 - 2021-02-28 15:54 - 000019412 _____ C:\Users\HP\Desktop\Godziny Luty 2021 Pracownia Ziel.xlsx 2021-02-28 11:07 - 2021-02-28 11:07 - 000000000 ____D C:\Program Files (x86)\e-Deklaracje 2021-02-28 11:06 - 2021-02-28 11:06 - 000000000 ____D C:\Users\Default\AppData\Roaming\Macromedia 2021-02-28 10:34 - 2021-02-28 10:34 - 000418015 _____ C:\Users\HP\Downloads\PIT-11 UA.pdf 2021-02-28 10:32 - 2021-02-28 10:32 - 000306628 _____ C:\Users\HP\Downloads\PIT-11 PL druk.pdf 2021-02-27 18:16 - 2021-02-27 18:16 - 000381483 _____ C:\Users\HP\Downloads\ilovepdf_extracted-pages.zip 2021-02-27 18:16 - 2021-02-27 18:16 - 000381483 _____ C:\Users\HP\Downloads\ilovepdf_extracted-pages (1).zip 2021-02-27 18:16 - 2021-02-27 18:16 - 000116725 _____ C:\Users\HP\Downloads\PIT-11 Piotr Grądalski.pdf 2021-02-27 18:12 - 2021-02-27 18:12 - 000118714 _____ C:\Users\HP\Downloads\PIT-11 Adam Antolak.pdf 2021-02-27 18:08 - 2021-02-27 18:08 - 000116304 _____ C:\Users\HP\Downloads\PIT-11 Roman Ożga.pdf 2021-02-27 17:24 - 2021-02-27 17:24 - 001413429 _____ C:\Users\HP\Downloads\Skanuj 27 lut 2021 (2).pdf 2021-02-27 17:24 - 2021-02-27 17:24 - 000395511 _____ C:\Users\HP\Downloads\PORR Protokół przekazania materiału.pdf 2021-02-27 12:27 - 2021-02-27 12:27 - 008590694 _____ C:\Users\HP\Downloads\Skanuj 27 lut 2021.pdf 2021-02-27 12:27 - 2021-02-27 12:27 - 004732349 _____ C:\Users\HP\Downloads\Skanuj 27 lut 2021 (1).pdf 2021-02-25 19:35 - 2021-03-04 08:14 - 000000000 ____D C:\Users\HP\Desktop\Zdjęcia do przepustek 2021-02-23 15:43 - 2021-03-01 11:05 - 000000031 _____ C:\Users\HP\Desktop\opole nocleg.txt 2021-02-21 19:27 - 2021-02-21 19:27 - 000382288 _____ C:\Users\HP\Downloads\ilovepdf_merged (15).pdf 2021-02-21 19:27 - 2021-02-21 19:27 - 000381619 _____ C:\Users\HP\Downloads\ilovepdf_merged (14).pdf 2021-02-21 19:25 - 2021-02-21 19:25 - 000035335 _____ C:\Users\HP\Downloads\faktura-vat-03-02-2021.pdf 2021-02-21 19:25 - 2021-02-21 19:25 - 000034668 _____ C:\Users\HP\Downloads\faktura-vat-01-01-2021.pdf 2021-02-21 19:23 - 2021-02-21 19:23 - 000382377 _____ C:\Users\HP\Downloads\ilovepdf_merged (13).pdf 2021-02-21 19:22 - 2021-02-21 19:22 - 000035306 _____ C:\Users\HP\Downloads\faktura-vat-02-01-2021 (2).pdf 2021-02-19 17:43 - 2021-02-19 17:43 - 000006538 _____ C:\Users\HP\Desktop\Nowy Arkusz programu Microsoft Excel.xlsx 2021-02-17 12:27 - 2021-02-17 12:27 - 000506908 _____ C:\Users\HP\Downloads\Skanuj 17 lut 2021.pdf 2021-02-16 10:05 - 2021-02-16 10:05 - 003239632 _____ C:\Users\HP\Downloads\Skanuj 15 lut 2021.pdf 2021-02-16 10:05 - 2021-02-16 10:05 - 003239632 _____ C:\Users\HP\Downloads\Skanuj 15 lut 2021 (3).pdf 2021-02-16 10:05 - 2021-02-16 10:05 - 000352527 _____ C:\Users\HP\Downloads\Skanuj 15 lut 2021 (1).pdf 2021-02-16 10:05 - 2021-02-16 10:05 - 000352408 _____ C:\Users\HP\Downloads\Skanuj 15 lut 2021 (2).pdf 2021-02-15 19:41 - 2021-02-15 19:41 - 000035394 _____ C:\Users\HP\Downloads\FV112021-2021-01-29.pdf 2021-02-15 18:52 - 2021-02-15 18:57 - 000378057 _____ C:\Users\HP\Downloads\Protokół przekazania PORR.pdf 2021-02-12 10:49 - 2021-02-12 10:49 - 000367636 _____ C:\Users\HP\Downloads\regulamin-polaczony-POvVU (1).pdf ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-03-13 10:05 - 2020-09-06 16:24 - 000004218 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{A2910BC3-0F94-492F-AB21-69AF363BB88D} 2021-03-13 10:01 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-03-13 09:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-03-13 09:18 - 2020-06-11 07:49 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-03-13 09:18 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-03-13 09:17 - 2019-11-22 20:45 - 000000000 ____D C:\Program Files (x86)\Steam 2021-03-13 09:17 - 2018-10-29 11:45 - 000000000 ___RD C:\Users\HP\OneDrive 2021-03-13 09:17 - 2018-10-29 11:43 - 000000000 __SHD C:\Users\HP\IntelGraphicsProfiles 2021-03-11 22:23 - 2020-09-06 16:14 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-03-11 21:05 - 2020-09-06 16:24 - 001836538 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-03-11 21:05 - 2019-12-07 16:09 - 000787066 _____ C:\WINDOWS\system32\perfh015.dat 2021-03-11 21:05 - 2019-12-07 16:09 - 000152910 _____ C:\WINDOWS\system32\perfc015.dat 2021-03-11 21:05 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF 2021-03-11 20:58 - 2020-09-06 16:24 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-03-11 20:58 - 2020-09-06 16:14 - 000008192 ___SH C:\DumpStack.log.tmp 2021-03-11 20:58 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState 2021-03-11 20:58 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2021-03-11 20:45 - 2020-09-06 13:46 - 000000000 ____D C:\Users\HP 2021-03-11 20:30 - 2017-11-11 09:47 - 000000000 ____D C:\Program Files (x86)\Hewlett-Packard 2021-03-11 20:20 - 2018-10-29 11:47 - 000000000 ____D C:\Users\HP\AppData\Roaming\Hewlett-Packard 2021-03-11 20:20 - 2018-10-29 11:43 - 000000000 ____D C:\Users\HP\AppData\Local\Hewlett-Packard 2021-03-11 20:20 - 2018-04-27 22:44 - 000000000 ____D C:\Program Files (x86)\HP 2021-03-11 20:20 - 2017-11-11 09:47 - 000000000 ____D C:\ProgramData\HP 2021-03-11 20:20 - 2017-11-11 09:47 - 000000000 ____D C:\ProgramData\Hewlett-Packard 2021-03-11 20:20 - 2017-11-01 00:51 - 000000000 ___HD C:\hp 2021-03-11 20:03 - 2018-03-01 00:29 - 000000000 ____D C:\ProgramData\mcafee 2021-03-11 20:03 - 2018-03-01 00:29 - 000000000 ____D C:\Program Files\Common Files\mcafee 2021-03-11 20:03 - 2018-03-01 00:29 - 000000000 ____D C:\Program Files (x86)\McAfee 2021-03-11 20:03 - 2017-11-11 09:45 - 000000000 ____D C:\ProgramData\Package Cache 2021-03-11 19:56 - 2018-10-29 11:46 - 000000000 ____D C:\Users\HP\AppData\Local\Adobe 2021-03-11 19:55 - 2018-10-29 11:46 - 000000000 ____D C:\Program Files (x86)\Adobe 2021-03-11 19:46 - 2020-01-03 20:42 - 000000000 ____D C:\Program Files\Mozilla Firefox 2021-03-11 19:46 - 2019-06-17 21:31 - 000000000 ____D C:\ProgramData\Mozilla 2021-03-11 19:42 - 2019-06-17 21:24 - 000000000 ____D C:\Users\HP\AppData\LocalLow\Mozilla 2021-03-11 19:42 - 2018-10-29 11:52 - 000000000 ____D C:\Program Files (x86)\Google 2021-03-11 19:32 - 2020-09-06 16:14 - 000632712 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-03-11 18:45 - 2018-11-21 21:31 - 000000000 ____D C:\Users\HP\Documents\Pliki programu Outlook 2021-03-11 18:22 - 2017-09-29 14:46 - 000000000 ____D C:\WINDOWS\system32\GroupPolicy 2021-03-11 18:21 - 2019-03-30 07:27 - 000000000 ____D C:\Program Files\Java 2021-03-11 13:31 - 2018-12-02 16:52 - 000426689 _____ C:\Users\HP\Desktop\Godziny.xlsx 2021-03-11 00:12 - 2019-12-07 16:12 - 000000000 ___SD C:\WINDOWS\system32\AppV 2021-03-11 00:12 - 2019-12-07 16:12 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2021-03-11 00:12 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-03-11 00:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2021-03-11 00:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2021-03-11 00:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2021-03-11 00:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources 2021-03-11 00:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2021-03-11 00:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2021-03-11 00:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup 2021-03-11 00:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-03-11 00:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2021-03-11 00:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning 2021-03-11 00:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2021-03-11 00:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-03-10 22:48 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-03-10 22:40 - 2018-11-16 21:43 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-03-10 22:37 - 2018-11-16 21:43 - 131005360 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-03-10 19:45 - 2021-01-11 13:21 - 000418816 _____ C:\Users\HP\Desktop\ZORIA protokół BARTEX.xls 2021-03-10 19:33 - 2018-12-06 21:43 - 000050543 _____ C:\Users\HP\Desktop\al. Pokoju.xlsx 2021-03-09 21:33 - 2019-01-24 21:47 - 000000000 ____D C:\Users\HP\AppData\Local\JDownloader v2.0 2021-03-09 18:29 - 2018-10-29 11:43 - 000000000 ____D C:\Users\HP\AppData\Local\ConnectedDevicesPlatform 2021-03-09 17:38 - 2017-10-06 00:38 - 000000000 __RHD C:\Users\Public\AccountPictures 2021-03-09 07:20 - 2019-11-08 11:15 - 000056875 _____ C:\Users\HP\Desktop\Noclegi Racibórz.xlsx 2021-03-08 17:43 - 2018-10-29 11:43 - 000000000 ____D C:\Users\HP\AppData\Local\Packages 2021-03-07 12:37 - 2018-11-16 21:39 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2021-03-07 12:27 - 2020-09-06 16:24 - 000003372 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-957804742-2659285250-3441441853-1001 2021-03-07 12:27 - 2020-09-06 13:46 - 000002405 _____ C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-03-04 04:47 - 2020-09-06 16:24 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-03-04 04:47 - 2020-09-06 16:24 - 000003386 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-03-02 09:58 - 2021-01-12 09:58 - 000009902 _____ C:\Users\HP\Desktop\Remost godziny.xlsx 2021-02-28 14:09 - 2019-03-04 15:55 - 000000000 ____D C:\Users\HP\Desktop\Archiwum 2021-02-28 11:07 - 2019-03-14 20:19 - 000000999 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\e-Deklaracje.lnk 2021-02-28 11:07 - 2019-03-14 20:19 - 000000987 _____ C:\Users\Public\Desktop\e-Deklaracje.lnk 2021-02-23 19:01 - 2021-01-24 20:43 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2021-02-16 18:25 - 2020-11-09 21:13 - 000000000 ____D C:\Users\HP\Desktop\RYSUNKI 2021-02-15 10:17 - 2019-08-22 06:38 - 000000313 _____ C:\Users\HP\Desktop\Nowy dokument tekstowy.txt 2021-02-13 22:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords 2021-02-13 22:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Keywords 2021-02-13 22:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX 2021-02-13 22:23 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System 2021-02-13 22:23 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing ==================== Pliki w katalogu głównym wybranych folderów ======== 2021-03-11 18:57 - 2021-03-11 18:57 - 000334288 _____ (Mozilla Foundation) C:\ProgramData\freebl3.dll 2021-03-11 18:57 - 2021-03-11 18:57 - 000137168 _____ (Mozilla Foundation) C:\ProgramData\mozglue.dll 2021-03-11 18:57 - 2021-03-11 18:57 - 000440120 _____ (Microsoft Corporation) C:\ProgramData\msvcp140.dll 2021-03-11 18:57 - 2021-03-11 18:57 - 001246160 _____ (Mozilla Foundation) C:\ProgramData\nss3.dll 2021-03-11 18:57 - 2021-03-11 18:57 - 000144848 _____ (Mozilla Foundation) C:\ProgramData\softokn3.dll 2021-03-11 18:57 - 2021-03-11 18:57 - 000083784 _____ (Microsoft Corporation) C:\ProgramData\vcruntime140.dll 2020-11-15 14:10 - 2020-11-15 14:10 - 000281600 _____ () C:\Users\HP\AppData\Roaming\hsvrhwr 2020-11-15 14:10 - 2020-11-15 14:10 - 000271872 _____ () C:\Users\HP\AppData\Roaming\trvrhwr 2020-11-15 14:10 - 2020-11-15 14:10 - 000320202 ___SH () C:\Users\HP\AppData\Roaming\twdjhue 2020-11-15 14:10 - 2020-11-15 14:10 - 000269824 _____ () C:\Users\HP\AppData\Roaming\uhvrhwr ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================