Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 26-01-2022 Uruchomiony przez Ania Springer (administrator) DESKTOP-ST71FLJ (HP HP ProBook 450 G4) (28-01-2022 13:28:22) Uruchomiony z F:\ Załadowane profile: Ania Springer & MSSQL$SAGEPL & SQLTELEMETRY$SAGEPL Platform: Microsoft Windows 10 Pro Wersja 21H1 19043.1348 (X64) Język: Polski (Polska) Domyślna przeglądarka: Chrome Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Actian Corporation -> Actian Corporation) C:\Program Files (x86)\Actian\PSQL\bin\notifyviewer.exe (Actian Corporation -> Actian Corporation) C:\Program Files (x86)\Actian\PSQL\bin\w3dbsmgr.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <5> (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe (Conexant Systems LLC.) [Brak podpisu cyfrowego] C:\Windows\CxSvc\CxUtilSvc.exe (CryptoTech -> CryptoTech Sp. z o.o.) C:\Program Files (x86)\CryptoTech\CryptoCard\CCMonitor.exe (CyberLink Corp. -> CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe (DigitalPersona, Inc. -> Crossmatch, Inc.) C:\Program Files (x86)\HP\HP ProtectTools Security Manager\Bin\DPAgent.exe (DigitalPersona, Inc. -> Crossmatch, Inc.) C:\Program Files\HP\HP ProtectTools Security Manager\Bin\DpCardEngine.exe (DigitalPersona, Inc. -> Crossmatch, Inc.) C:\Program Files\HP\HP ProtectTools Security Manager\Bin\DpHostW.exe (DigitalPersona, Inc. -> DigitalPersona, Inc.) C:\Program Files\HP\HP ProtectTools Security Manager\Bin\DpAgent.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <3> (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\140.4.1951\QtWebEngineProcess.exe <2> (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <15> (Hewlett Packard Enterprise Company -> Hewlett Packard Enterprise Company) C:\Program Files (x86)\HP\HP Device Access Manager\HPE.DeviceAccessManager.ServiceHost.exe (Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe (HP Inc. -> ) C:\Program Files (x86)\HP\HP JumpStart Launch\HPJumpStartLaunch.exe (HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\AppHelperCap.exe (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\DiagsCap.exe (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\NetworkCap.exe (HP Inc. -> HP Inc.) C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_dea730b932418dc2\HotKeyServiceUWP.exe (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_dea730b932418dc2\HPHotkeyNotification.exe (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_dea730b932418dc2\LanWlanWwanSwitchingServiceUWP.exe (HP Inc. -> HP) C:\Program Files (x86)\HP\Shared\hpqwmiex.exe (HP Inc.) [Brak podpisu cyfrowego] C:\Program Files\HPCommRecovery\HPCommRecovery.exe (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe (Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_e6daaea9afe1e6f6\igfxCUIService.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_e6daaea9afe1e6f6\igfxEM.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_e6daaea9afe1e6f6\IntelCpHDCPSvc.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_e6daaea9afe1e6f6\IntelCpHeciSvc.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe (LiveQoS Incorporated -> ) C:\Program Files\HP\HP Velocity\SysTrayApp.exe (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\O01B802.tmp (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL13.SAGEPL\MSSQL\Binn\sqlceip.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL13.SAGEPL\MSSQL\Binn\sqlservr.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (Microsoft Windows Hardware Compatibility Publisher -> ) C:\Windows\System32\fpCSEvtSvc.exe (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Windows\System32\valWBFPolicyService.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtsCM64.exe (Sage GmbH -> Sage GmbH) C:\Program Files (x86)\Sage Update\Sage.Deployment.Desktop.exe (Sage GmbH -> Sage GmbH) C:\Program Files (x86)\Sage Update\Sage.Deployment.exe (Sage Sp. z o.o. -> Sage sp. z o.o.) C:\Program Files (x86)\Sage\Sage50c\21.10\Sage50.exe (Synaptics Incorporated -> Conexant Systems LLC.) C:\Program Files\CONEXANT\SA3\HP-NB-AIO\SmartAudio3.exe (Synaptics Incorporated -> Conexant Systems LLC.) C:\Windows\CxSvc\CxAudioSvc.exe (Synaptics Incorporated -> Conexant Systems, Inc) C:\Program Files\CONEXANT\Flow\Flow.exe (Synaptics Incorporated -> Conexant) C:\Windows\System32\MicTray64.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Synaptics Incorporated) [Brak podpisu cyfrowego] C:\Windows\System32\SynaMonApp.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [320584 2016-11-10] (Intel(R) Rapid Storage Technology -> Intel Corporation) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [157464 2021-12-23] (Avast Software s.r.o. -> AVAST Software) HKLM\...\Run: [RtsCM] => C:\WINDOWS\RTSCM64.EXE [225280 2017-03-09] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) HKLM-x32\...\Run: [CLMLServer_For_P2G8] => c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [118552 2016-06-24] (CyberLink Corp. -> CyberLink) HKLM-x32\...\Run: [CLVirtualDrive] => c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [508696 2016-06-24] (CyberLink Corp. -> CyberLink Corp.) HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard) HKLM-x32\...\Run: [Sage.Deployment] => C:\Program Files (x86)\Sage Update\Sage.Deployment.Desktop.exe [274624 2017-10-12] (Sage GmbH -> Sage GmbH) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [10585376 2022-01-19] (Dropbox, Inc -> Dropbox, Inc.) HKLM-x32\...\Run: [StatusAlerts] => C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe [329992 2015-06-17] (Hewlett-Packard Company -> HP Development Company, L.P.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601928 2018-12-15] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [RunPUMonitor] => C:\Program Files (x86)\HP\HP DesignJet Utility\DesignJet Utility\HPDesignJetUtility.exe [508928 2017-10-23] (HP Inc. -> HP Development Company, L.P.) HKLM-x32\...\Run: [CryptoCard Suite Cert Monitor] => C:\Program Files (x86)\CryptoTech\CryptoCard\CCMonitor.exe [947440 2015-07-27] (CryptoTech -> CryptoTech Sp. z o.o.) HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== UWAGA HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,c:\Program Files (x86)\HP\HP ProtectTools Security Manager\Bin\DPAgent.exe, <==== UWAGA HKU\S-1-5-21-1150028430-4238667788-138764148-1004\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35342976 2021-11-12] (Piriform Software Ltd -> Piriform Software Ltd) HKLM\...\Windows x64\Print Processors\hpippciv: C:\Windows\System32\spool\prtprocs\x64\hpippciv.dll [741888 2016-05-11] (HP) [Brak podpisu cyfrowego] HKLM\...\Windows x64\Print Processors\hpippDG9: C:\Windows\System32\spool\prtprocs\x64\hpippDG9.dll [730112 2017-10-27] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation) HKLM\...\Windows x64\Print Processors\hpippE58: C:\Windows\System32\spool\prtprocs\x64\hpippE58.dll [1116672 2018-08-31] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation) HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [230400 2009-07-14] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation) HKLM\...\Print\Monitors\HP Standard TCP/IP Port: C:\WINDOWS\system32\HpTcpMon.dll [331264 2009-09-16] (Hewlett Packard) [Brak podpisu cyfrowego] HKLM\...\Print\Monitors\LIDIL hpzllw71: C:\WINDOWS\system32\hpzllw71.dll [53248 2009-07-14] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation) HKLM\...\Print\Monitors\PDF-XChange: C:\WINDOWS\system32\pxc35pm.dll [6656 2006-01-30] (Tracker Software) [Brak podpisu cyfrowego] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\97.0.4692.99\Installer\chrmstp.exe [2022-01-24] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{733d146c-3c7f-4afc-8381-83348bf326bb}] -> C:\WINDOWS\system32\HPCredentialProvider.dll [2017-05-26] (HP Inc. -> HP) Lsa: [Notification Packages] HPPwdFilter DPPassFilter scecli Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Velocity.lnk [2017-03-18] ShortcutTarget: HP Velocity.lnk -> C:\Program Files\HP\HP Velocity\SysTrayApp.exe (LiveQoS Incorporated -> ) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP WorkWise.lnk [2017-08-01] ShortcutTarget: HP WorkWise.lnk -> C:\Program Files (x86)\HP\HP WorkWise\HPWorkWiseTray.exe (HP Inc. -> HP Inc.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Run Notification Viewer in background.lnk [2017-08-04] ShortcutTarget: Run Notification Viewer in background.lnk -> C:\Windows\Installer\{0A3238D7-AB32-1200-B717-F3E3F18B4A8C}\ico_notifyviewer.exe (Acresso Software Inc.) [Brak podpisu cyfrowego] HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA HKLM\SOFTWARE\Policies\Google: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0254C519-3F37-415F-B02B-2812C8D11D2E} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-11-12] (Piriform Software Ltd -> Piriform) Task: {09689C41-BC2E-4FCA-B10D-1D52102DACA5} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22844272 2022-01-10] (Microsoft Corporation -> Microsoft Corporation) Task: {0F8665CE-F173-49F9-9C7F-0547C717177F} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [111024 2022-01-14] (Microsoft Corporation -> Microsoft Corporation) Task: {1705C51D-ADCE-4F0F-8589-78FDF1EAC91E} - System32\Tasks\CCleanerSkipUAC - Ania Springer => C:\Program Files\CCleaner\CCleaner.exe [29417088 2021-11-12] (Piriform Software Ltd -> Piriform Software Ltd) Task: {1A6CBC1B-ACAA-4B9B-8292-265278BD40D5} - System32\Tasks\Microsoft\Windows\Conexant\MicTray => C:\Windows\System32\MicTray64.exe [5009512 2020-06-13] (Synaptics Incorporated -> Conexant) Task: {2A274EC3-0CD5-4F4F-937D-9C8EC3852407} - System32\Tasks\HP\HP Hotkey Support\Start QLBController Process => C:\Program Files (x86)\HP\HP Hotkey Support\QLBController.exe (Brak pliku) Task: {423A1B2D-29FF-4A2A-BFEB-5F21C633ADC3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-07-29] (Google Inc -> Google Inc.) Task: {4C3B383B-41F3-42EA-BAA1-850EC9589F4E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [136368 2022-01-20] (HP Inc. -> HP Inc.) Task: {62A3FAFC-214F-4927-9D9D-2343AF855FA3} - System32\Tasks\HPLJCustParticipation => C:\Program Files (x86)\HP\HPLJUT\HPLJUTSCH.exe [91400 2015-12-05] (Hewlett-Packard -> HP Development Company, L.P.) Task: {73A0C0D8-F8A0-4E9E-A19C-09C91EBD9DE3} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe /DeviceScanR6 (Brak pliku) Task: {77CB71EB-8AF9-48B5-B4CC-806887F8D633} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4969240 2021-12-23] (Avast Software s.r.o. -> AVAST Software) Task: {7CB82E53-6309-4834-866F-45B0F1E1208E} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1790184 2021-04-30] (Avast Software s.r.o. -> Avast Software) Task: {82B4B8AC-AF4E-45CC-BB8D-1D5F2FCF7E88} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [111024 2022-01-14] (Microsoft Corporation -> Microsoft Corporation) Task: {914DF004-8A29-42BE-8824-A305CE6FD84B} - System32\Tasks\HPEA3JOBS => C:\Program [Argument = Files\HP\HP ePrint\hpeprint.exe /CheckJobs] Task: {A60BB589-B636-4E16-A32C-E2EE04E8DA8D} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\Ania Springer\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [18007968 2021-10-25] (ESET, spol. s r.o. -> ESET) Task: {A8716DF6-1A36-4505-978C-91441B8D3FEC} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1171328 2022-01-14] (Microsoft Corporation -> Microsoft Corporation) Task: {B4DD57AD-7A87-445F-8667-5532574CCE46} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\Ania Springer\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [18007968 2021-10-25] (ESET, spol. s r.o. -> ESET) Task: {B7D0A8B8-6B1F-4434-96DC-B44730D95249} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.) Task: {C4DEF1E4-5A34-4A01-9FFE-46B34096B036} - System32\Tasks\Microsoft\Windows\WaaSMedic\MaintenanceWork => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32} Task: {C8F52482-B387-40BC-8B6A-6CCD2434DE49} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-07-29] (Google Inc -> Google Inc.) Task: {CCF820DC-5DC2-40AA-BBE5-A0FD7F08F721} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22844272 2022-01-10] (Microsoft Corporation -> Microsoft Corporation) Task: {E5CEEBE6-6ED8-422B-B41C-85306AFCBF9E} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.) Task: {E6C9589E-B219-42A4-9AB8-BF52E75FF899} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.) Task: {EB9DBBB4-9C46-4D44-89CC-737C7253AC56} - System32\Tasks\HPJumpStartLaunch => C:\Program Files (x86)\HP\HP JumpStart Launch\HPJumpStartLaunch.exe [456728 2016-10-25] (HP Inc. -> ) Task: {F0F8F1A8-4E9B-4C95-9C40-0A4E09996979} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /f (Brak pliku) Task: {FC348F58-32BB-49ED-BAAC-A91C34C96508} - System32\Tasks\Microsoft\Windows\Conexant\SynaMonApp => C:\Windows\System32\SynaMonApp.exe [170496 2018-10-30] (Synaptics Incorporated) [Brak podpisu cyfrowego] (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1 Tcpip\..\Interfaces\{10b4d98f-29a3-4cbe-8516-a11a6f9dddf7}: [DhcpNameServer] 192.168.1.1 192.168.1.1 Tcpip\..\Interfaces\{252b0314-678d-4364-8f70-a4850ce11407}: [DhcpNameServer] 62.21.99.94 62.21.99.95 192.168.1.1 Edge: ======= DownloadDir: C:\Users\Ania Springer\Downloads Edge Extension: (Brak nazwy) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [nie znaleziono] Edge Extension: (Brak nazwy) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [nie znaleziono] Edge Extension: (Brak nazwy) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [nie znaleziono] Edge Extension: (Brak nazwy) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [nie znaleziono] Edge DefaultProfile: Default Edge Profile: C:\Users\Ania Springer\AppData\Local\Microsoft\Edge\User Data\Default [2022-01-26] Edge DownloadDir: Default -> C:\Users\Ania Springer\Downloads FireFox: ======== FF HKLM-x32\...\Firefox\Extensions: [dpmaxz_ng@jetpack] - c:\Program Files (x86)\HP\HP ProtectTools Security Manager\Bin\BrowserExt\dpchrome => nie znaleziono FF Plugin: @java.com/DTPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll [2019-03-26] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\plugin2\npjp2.dll [2019-03-26] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-12-24] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-11-01] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR Profile: C:\Users\Ania Springer\AppData\Local\Google\Chrome\User Data\Default [2022-01-28] CHR Notifications: Default -> hxxps://inforfk.pl; hxxps://kadry-infor.os.tc; hxxps://kfc.pl; hxxps://kfcdostawa.pl; hxxps://ksiegowosc-in.os.tc; hxxps://mediamarkt.pl; hxxps://mf-infor.os.tc; hxxps://pysznosci.pl; hxxps://wtkplay.pl CHR Extension: (Dokumenty) - C:\Users\Ania Springer\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13] CHR Extension: (Dysk Google) - C:\Users\Ania Springer\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-22] CHR Extension: (YouTube) - C:\Users\Ania Springer\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-07-29] CHR Extension: (Adobe Acrobat) - C:\Users\Ania Springer\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-01-24] CHR Extension: (Dokumenty Google offline) - C:\Users\Ania Springer\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-01-18] CHR Extension: (Szafir SDK Web) - C:\Users\Ania Springer\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjalhnomhafafofonpdihihjnbafkipc [2018-06-08] CHR Extension: (Avast Online Security & Privacy) - C:\Users\Ania Springer\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2021-12-16] CHR Extension: (fillUp Formularze - dodatek) - C:\Users\Ania Springer\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlnpeeaafijaebcdgkdeojkpnkfkjdnh [2021-04-22] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Ania Springer\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR Extension: (Gmail) - C:\Users\Ania Springer\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-22] CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] CHR HKLM-x32\...\Chrome\Extension: [nlnpeeaafijaebcdgkdeojkpnkfkjdnh] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.) S2 AktualizujPP; C:\Program Files (x86)\Asseco Poland SA\Płatnik\ASSECO.AKTUALIZUJ.PP.exe [46584 2017-09-18] (Asseco Poland SA -> Asseco Poland S.A.) R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8480848 2021-12-23] (Avast Software s.r.o. -> AVAST Software) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [452888 2021-12-23] (Avast Software s.r.o. -> AVAST Software) R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [452888 2021-12-23] (Avast Software s.r.o. -> AVAST Software) R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-06-01] (Avast Software s.r.o. -> AVAST Software) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12119432 2022-01-10] (Microsoft Corporation -> Microsoft Corporation) R2 CxAudioSvc; C:\WINDOWS\CxSvc\CxAudioSvc.exe [96432 2020-09-08] (Synaptics Incorporated -> Conexant Systems LLC.) R2 CxUtilSvc; C:\WINDOWS\CxSvc\CxUtilSvc.exe [166400 2019-06-25] (Conexant Systems LLC.) [Brak podpisu cyfrowego] S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-11] (Dropbox, Inc -> Dropbox, Inc.) R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44328 2022-01-19] (Dropbox, Inc -> Dropbox, Inc.) R2 DpHost; c:\Program Files\HP\HP ProtectTools Security Manager\Bin\DpHostW.exe [524736 2016-08-24] (DigitalPersona, Inc. -> Crossmatch, Inc.) S3 FLCDLOCK; c:\windows\SysWOW64\flcdlock.exe [568216 2016-09-16] (Hewlett Packard Enterprise Company -> Hewlett-Packard Company) R2 fpCsEvtSvc; C:\WINDOWS\system32\fpCSEvtSvc.exe [29544 2018-07-19] (Microsoft Windows Hardware Compatibility Publisher -> ) R2 HotKeyServiceUWP; C:\WINDOWS\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_dea730b932418dc2\HotKeyServiceUWP.exe [1512544 2021-10-30] (HP Inc. -> HP Inc.) R2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [1309184 2016-10-07] (HP Inc.) [Brak podpisu cyfrowego] S2 HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [176128 2014-06-24] (HP) [Brak podpisu cyfrowego] R2 HPAppHelperCap; C:\Program Files\HP\HP Enabling Services\AppHelperCap.exe [756216 2021-12-14] (HP Inc. -> HP Inc.) R2 HpDamServiceHost; c:\Program Files (x86)\HP\HP Device Access Manager\HPE.DeviceAccessManager.ServiceHost.exe [20560 2016-09-09] (Hewlett Packard Enterprise Company -> Hewlett Packard Enterprise Company) R2 HPDiagsCap; C:\Program Files\HP\HP Enabling Services\DiagsCap.exe [755192 2021-12-14] (HP Inc. -> HP Inc.) R2 HPJumpStartBridge; c:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe [469016 2016-10-25] (HP Inc. -> HP Inc.) R2 HPNetworkCap; C:\Program Files\HP\HP Enabling Services\NetworkCap.exe [753184 2021-12-14] (HP Inc. -> HP Inc.) R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [299680 2021-11-02] (HP Inc. -> HP Inc.) R3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1077752 2016-09-28] (HP Inc. -> HP) R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [379736 2020-08-20] (HP Inc. -> HP Inc.) R2 HPSysInfoCap; C:\Program Files\HP\HP Enabling Services\SysInfoCap.exe [755192 2021-12-14] (HP Inc. -> HP Inc.) S2 HPTouchpointAnalyticsService; C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe [332216 2017-11-22] (HP Inc. -> HP Inc.) S2 HPWorkWise; C:\Program Files (x86)\HP\HP WorkWise\HPWorkWiseService.exe [559096 2017-05-26] (HP Inc. -> HP) R2 LanWlanWwanSwitchingServiceUWP; C:\WINDOWS\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_dea730b932418dc2\LanWlanWwanSwitchingServiceUWP.exe [591968 2021-10-30] (HP Inc. -> HP Inc.) R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [971912 2022-01-28] (McAfee, LLC -> McAfee, LLC) R2 MSSQL$SAGEPL; C:\Program Files\Microsoft SQL Server\MSSQL13.SAGEPL\MSSQL\Binn\sqlservr.exe [392896 2016-10-29] (Microsoft Corporation -> Microsoft Corporation) R2 psqlWGE; C:\Program Files (x86)\Actian\PSQL\bin\w3dbsmgr.exe [440256 2014-11-26] (Actian Corporation -> Actian Corporation) R2 Sage.Deployment; C:\Program Files (x86)\Sage Update\Sage.Deployment.exe [56008 2017-10-12] (Sage GmbH -> Sage GmbH) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6103464 2021-11-12] (Microsoft Windows Publisher -> Microsoft Corporation) S2 SQLAgent$SAGEPL; C:\Program Files\Microsoft SQL Server\MSSQL13.SAGEPL\MSSQL\Binn\SQLAGENT.EXE [565952 2016-10-29] (Microsoft Corporation -> Microsoft Corporation) R2 SQLTELEMETRY$SAGEPL; C:\Program Files\Microsoft SQL Server\MSSQL13.SAGEPL\MSSQL\Binn\sqlceip.exe [249032 2016-10-29] (Microsoft Corporation -> Microsoft Corporation) R2 valWBFPolicyService; C:\WINDOWS\system32\valWBFPolicyService.exe [90976 2018-07-19] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 Accelerometer; C:\WINDOWS\System32\drivers\Accelerometer.sys [50616 2021-11-24] (WDKTestCert VssAdministrator,132811656475919983 -> HP) R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [36784 2021-12-23] (Avast Software s.r.o. -> AVAST Software) R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [223176 2021-12-23] (Avast Software s.r.o. -> AVAST Software) R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [369216 2021-12-23] (Avast Software s.r.o. -> AVAST Software) R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [252992 2021-12-23] (Avast Software s.r.o. -> AVAST Software) R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [100416 2021-12-23] (Avast Software s.r.o. -> AVAST Software) R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [21936 2021-09-28] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software) R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42416 2021-12-23] (Avast Software s.r.o. -> AVAST Software) R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [186280 2021-12-23] (Avast Software s.r.o. -> AVAST Software) R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [540056 2021-12-23] (Avast Software s.r.o. -> AVAST Software) R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [108912 2021-12-23] (Avast Software s.r.o. -> AVAST Software) R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [83976 2021-12-23] (Avast Software s.r.o. -> AVAST Software) R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [853800 2021-12-23] (Avast Software s.r.o. -> AVAST Software) R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [545176 2021-12-23] (Avast Software s.r.o. -> AVAST Software) R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [215432 2021-12-23] (Avast Software s.r.o. -> AVAST Software) R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [318760 2021-12-23] (Avast Software s.r.o. -> AVAST Software) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego] S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego] S3 DAMDrv; C:\WINDOWS\system32\DRIVERS\DAMDrv64.sys [75800 2016-09-09] (Hewlett Packard Enterprise Company -> Hewlett-Packard Enterpise Company) R0 hpdskflt; C:\WINDOWS\System32\drivers\hpdskflt.sys [60448 2021-11-24] (WDKTestCert VssAdministrator,132811656475919983 -> HP) R1 IPeakLWF; C:\WINDOWS\system32\DRIVERS\ipeaklwf.sys [439160 2016-11-21] (LiveQoS Incorporated -> LiveQoS Incorporated) S4 RsFx0410; C:\WINDOWS\System32\DRIVERS\RsFx0410.sys [261840 2016-10-20] (Microsoft Corporation -> Microsoft Corporation) R3 SensorsSimulatorDriver; C:\WINDOWS\System32\drivers\WUDFRd.sys [315392 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 SPUVCbv; C:\WINDOWS\System32\Drivers\SPUVCbv64.sys [883264 2017-08-28] (SUNPLUS INNOVATION TECHNOLOGY INC. -> Sunplus Innovation Technology Inc.) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [37280 2021-11-23] (HP Inc. -> HP) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2022-01-28 13:27 - 2022-01-28 13:28 - 000000000 ____D C:\FRST 2022-01-28 10:32 - 2022-01-28 10:32 - 000000000 ___HD C:\$WinREAgent 2022-01-27 16:11 - 2022-01-27 16:11 - 000286842 _____ C:\Users\Ania Springer\Downloads\wniosek-w-sprawie-odroczenia-zaplaty-zobowiazania-podatkowego.gofin 2022-01-26 11:25 - 2022-01-26 11:25 - 000145253 _____ C:\Users\Ania Springer\Downloads\Wypowiedzenie umowy najmu - wzór.pdf 2022-01-24 11:18 - 2022-01-24 11:18 - 000013455 _____ C:\Users\Ania Springer\Desktop\Harmonogram tydzień 3 2022.xlsx 2022-01-23 18:05 - 2022-01-23 18:05 - 000051682 _____ C:\Users\Ania Springer\Downloads\zalacznik - Zaproszenie.pdf 2022-01-22 18:30 - 2022-01-22 18:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2022-01-19 13:47 - 2022-01-19 13:48 - 000356940 _____ C:\Users\Ania Springer\Downloads\wyciag_9211_20211231.pdf 2022-01-19 11:16 - 2022-01-19 11:16 - 000018449 _____ C:\Users\Ania Springer\Desktop\BILANS 31 12 2021.xlsx 2022-01-19 11:14 - 2022-01-19 11:14 - 000015313 _____ C:\Users\Ania Springer\Desktop\RZiS 31 12 2021.xlsx 2022-01-19 01:17 - 2022-01-19 01:17 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys 2022-01-19 01:17 - 2022-01-19 01:17 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys 2022-01-19 01:17 - 2022-01-19 01:17 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys 2022-01-19 01:17 - 2022-01-19 01:17 - 000044328 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe 2022-01-18 14:14 - 2022-01-18 14:14 - 000001813 _____ C:\Users\Ania Springer\Downloads\Anna Katarzyna.Springer.20220118_20240118.cer 2022-01-18 14:05 - 2022-01-18 14:05 - 000000064 _____ C:\Users\Ania Springer\external_providers.xml 2022-01-18 13:15 - 2022-01-18 13:15 - 000034543 _____ C:\Users\Ania Springer\Downloads\transfer_20220118.pdf 2022-01-18 08:44 - 2022-01-18 08:44 - 000000000 ____D C:\ProgramData\Conexant 2022-01-18 08:43 - 2021-12-09 00:34 - 000914920 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SEHDRA32.dll 2022-01-18 08:43 - 2021-12-09 00:33 - 001542744 _____ (Synaptics Inc.) C:\WINDOWS\system32\CX64Proxy.dll 2022-01-18 08:43 - 2021-12-09 00:33 - 001517384 _____ (Synaptics Incorporated.) C:\WINDOWS\system32\CX64APO.dll 2022-01-18 08:43 - 2021-12-09 00:33 - 001078568 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SEHDHF32.dll 2022-01-18 08:43 - 2021-12-09 00:33 - 001061456 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SECOMN32.dll 2022-01-18 08:43 - 2021-12-09 00:33 - 000969248 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SEAPO32.dll 2022-01-18 08:43 - 2021-12-09 00:33 - 000715272 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\CX64APO2.dll 2022-01-18 08:43 - 2021-12-09 00:33 - 000543984 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\CX64APOre32.dll 2022-01-18 08:43 - 2021-12-09 00:33 - 000411712 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\CSpkExt64.dll 2022-01-17 16:46 - 2022-01-17 16:46 - 000034123 _____ C:\Users\Ania Springer\Downloads\transfer_20220117.pdf 2022-01-17 16:46 - 2022-01-17 16:46 - 000034038 _____ C:\Users\Ania Springer\Downloads\transfer_20220117 (1).pdf 2022-01-14 11:17 - 2022-01-14 11:17 - 000740371 _____ C:\Users\Ania Springer\Downloads\PIT-11_rok_2021_(2021-02-18_-_2021-08-10)_Janaszak_Jakub_00230907498.pdf 2022-01-14 11:15 - 2022-01-14 11:15 - 000740387 _____ C:\Users\Ania Springer\Downloads\PIT-11_rok_2021_(2021-01-01_-_2021-07-09)_Sura_Jakub_98042808072.pdf 2022-01-14 11:14 - 2022-01-14 11:14 - 000612659 _____ C:\Users\Ania Springer\Downloads\PIT-4R_rok_2021.pdf 2022-01-12 16:08 - 2022-01-12 16:08 - 000195357 _____ C:\Users\Ania Springer\Downloads\zaproszenie_szk_k6sW1q.pdf 2022-01-05 14:36 - 2022-01-05 14:36 - 000292096 _____ C:\Users\Ania Springer\Downloads\wyciag_9216_20211231.pdf 2022-01-04 11:25 - 2022-01-04 11:25 - 000288169 _____ C:\Users\Ania Springer\Downloads\wyciag_8908_20211231.pdf 2021-12-29 18:00 - 2022-01-27 10:54 - 000000000 ____D C:\Users\SQLTELEMETRY$SAGEPL\AppData\Local\CrashDumps 2021-12-29 12:26 - 2021-12-29 12:26 - 000810226 _____ C:\Users\Ania Springer\Desktop\confi-dso-20.12.2021 (1).pdf 2021-12-29 12:26 - 2021-12-29 12:26 - 000026944 _____ C:\Users\Ania Springer\Desktop\Zamówienie obce MKJ - ZOPO 21 12 136_SECURA.PDF ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2022-01-28 13:23 - 2018-01-09 21:55 - 000000000 ____D C:\Users\Ania Springer\Documents\Pliki programu Outlook 2022-01-28 13:22 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-01-28 13:05 - 2017-07-29 11:52 - 000000000 ____D C:\Program Files (x86)\Google 2022-01-28 12:03 - 2017-12-11 21:38 - 000000000 ____D C:\Users\Ania Springer\AppData\Local\Packages 2022-01-28 12:01 - 2017-11-07 21:49 - 000000000 ____D C:\Users\Ania Springer\Desktop\prywatny 2022-01-28 11:40 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-01-28 11:40 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2022-01-28 10:50 - 2021-01-12 22:18 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-01-28 10:48 - 2017-08-31 15:03 - 000000000 ____D C:\Program Files\CCleaner 2022-01-28 10:38 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2022-01-28 10:31 - 2018-05-07 12:01 - 000000000 ____D C:\Users\Ania Springer\AppData\Local\Dropbox 2022-01-28 10:30 - 2017-07-28 15:39 - 000000000 __SHD C:\Users\Ania Springer\IntelGraphicsProfiles 2022-01-27 18:49 - 2017-07-28 16:45 - 000000000 ____D C:\ProgramData\Synaptics 2022-01-27 16:11 - 2017-09-22 09:38 - 000000000 ____D C:\Users\Ania Springer\AppData\Roaming\GofinDruki 2022-01-27 14:43 - 2018-07-31 12:17 - 000000000 ____D C:\Users\Ania Springer\AppData\Local\CrashDumps 2022-01-27 10:47 - 2021-01-12 22:31 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update 2022-01-26 15:20 - 2021-09-15 10:05 - 000130765 _____ C:\Users\Ania Springer\Desktop\należności i zbowiązania 2 .xlsx 2022-01-26 14:11 - 2021-12-13 13:52 - 000000000 ____D C:\WINDOWS\Minidump 2022-01-26 10:03 - 2021-01-18 07:00 - 000003416 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6e929c9200934 2022-01-26 10:03 - 2021-01-12 22:31 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-01-25 09:17 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF 2022-01-25 09:09 - 2021-12-12 17:56 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1150028430-4238667788-138764148-1004 2022-01-25 09:09 - 2021-01-12 22:31 - 000003394 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1150028430-4238667788-138764148-1004 2022-01-25 09:09 - 2021-01-12 22:20 - 000002500 _____ C:\Users\Ania Springer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-01-24 13:14 - 2021-12-21 16:02 - 000000000 ____D C:\Users\Ania Springer\Documents\ERBUD OLEŚNICA 2022-01-24 07:19 - 2018-06-15 10:30 - 000000000 ____D C:\Users\Ania Springer\Documents\KADRY SP.Z.O.O SP.K 2022-01-24 07:11 - 2017-07-29 11:53 - 000002314 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-01-22 18:31 - 2018-05-07 12:01 - 000000000 ____D C:\Program Files (x86)\Dropbox 2022-01-22 18:28 - 2021-01-12 22:31 - 000003570 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2022-01-22 18:28 - 2021-01-12 22:31 - 000003446 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2022-01-22 18:27 - 2020-06-07 17:10 - 000002455 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-01-20 09:29 - 2021-01-12 22:28 - 001923918 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2022-01-20 09:29 - 2019-12-07 16:09 - 000824676 _____ C:\WINDOWS\system32\perfh015.dat 2022-01-20 09:29 - 2019-12-07 16:09 - 000171658 _____ C:\WINDOWS\system32\perfc015.dat 2022-01-20 09:22 - 2021-01-12 22:31 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-01-20 09:22 - 2021-01-12 22:20 - 000000000 ____D C:\Users\SQLTELEMETRY$SAGEPL 2022-01-20 09:22 - 2021-01-12 22:20 - 000000000 ____D C:\Users\MSSQL$SAGEPL 2022-01-20 09:22 - 2021-01-12 22:18 - 000008192 ___SH C:\DumpStack.log.tmp 2022-01-20 09:22 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState 2022-01-20 09:22 - 2017-03-18 00:12 - 000000000 ____D C:\Intel 2022-01-18 19:06 - 2020-06-19 12:42 - 000000000 ____D C:\Program Files\CONEXANT 2022-01-18 19:06 - 2017-07-28 16:44 - 000000000 ____D C:\WINDOWS\CxSvc 2022-01-18 19:05 - 2017-07-28 16:44 - 001705080 _____ (TODO: ) C:\WINDOWS\SysWOW64\RebootPrompt.exe 2022-01-18 19:04 - 2017-08-04 15:38 - 000000000 ____D C:\ProgramData\AVAST Software 2022-01-18 17:47 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2022-01-18 17:46 - 2021-01-12 22:20 - 000000000 ____D C:\Users\Ania Springer 2022-01-18 10:10 - 2020-12-10 14:30 - 000000000 ____D C:\Users\Ania Springer\Documents\Pruszcz Gdański 2022-01-18 08:25 - 2016-07-30 22:10 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2022-01-17 15:13 - 2018-09-21 10:19 - 000078834 _____ C:\Users\Ania Springer\Desktop\należności i zbowiązania .xlsx 2022-01-17 10:52 - 2021-10-25 11:44 - 000003890 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onLogOn 2022-01-17 10:52 - 2021-10-25 11:44 - 000003448 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onTime 2022-01-17 10:52 - 2021-10-25 10:41 - 000001439 _____ C:\Users\Ania Springer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk 2022-01-13 12:33 - 2021-12-13 08:26 - 000002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk 2022-01-13 12:33 - 2021-12-13 08:26 - 000002068 _____ C:\Users\Public\Desktop\Adobe Acrobat DC.lnk 2022-01-13 12:33 - 2021-01-12 22:31 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2022-01-13 12:19 - 2018-05-07 12:01 - 000001198 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job 2022-01-13 12:19 - 2018-05-07 12:01 - 000001194 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job 2022-01-12 10:31 - 2019-08-12 17:45 - 000153017 _____ C:\Users\Ania Springer\Documents\Polisa samochodu Vw Golf.xlsx 2022-01-12 08:09 - 2017-08-01 16:53 - 000000000 ____D C:\WINDOWS\system32\MRT 2022-01-12 08:04 - 2017-08-01 16:53 - 145765912 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2022-01-11 16:24 - 2021-12-08 07:41 - 000002268 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Ania Springer 2022-01-11 16:24 - 2021-01-12 22:31 - 000003610 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA 2022-01-11 16:24 - 2021-01-12 22:31 - 000003386 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore 2022-01-11 16:24 - 2021-01-12 22:31 - 000003214 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2022-01-11 16:24 - 2021-01-12 22:31 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2022-01-11 16:24 - 2021-01-12 22:31 - 000002544 _____ C:\WINDOWS\system32\Tasks\HPLJCustParticipation 2022-01-11 16:24 - 2021-01-12 22:31 - 000002500 _____ C:\WINDOWS\system32\Tasks\HPEA3JOBS 2022-01-11 16:24 - 2021-01-12 22:31 - 000002302 _____ C:\WINDOWS\system32\Tasks\HPJumpStartLaunch 2022-01-11 16:24 - 2021-01-12 22:31 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software 2022-01-10 16:10 - 2021-01-12 22:20 - 000000000 ____D C:\Users\aspri 2021-12-29 18:21 - 2018-01-20 13:11 - 000002248 ____H C:\Users\Ania Springer\Documents\Default.rdp 2021-12-29 18:15 - 2019-12-07 16:10 - 000000000 ____D C:\WINDOWS\system32\FxsTmp ==================== Pliki w katalogu głównym wybranych folderów ======== 2020-08-04 10:20 - 2020-08-04 10:20 - 027979984 _____ (TeamViewer Germany GmbH) C:\Users\Ania Springer\teamviewer-15-8-3-0.exe ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================