Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 06-10-2023 Uruchomiony przez Waldemar (administrator) DESKTOP-9CBFOTP (Hewlett-Packard HP 2000 Notebook PC) (08-10-2023 13:34:43) Uruchomiony z C:\Users\Waldemar\Downloads\FRST64.exe Załadowane profile: Waldemar Platforma: Microsoft Windows 10 Home Wersja 22H2 19045.3448 (X64) Język: Polski (Polska) Domyślna przeglądarka: Chrome Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) () [Brak podpisu cyfrowego] C:\Program Files (x86)\HP\HP UT\bin\hppusg.exe (atiesrxx.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe (C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2> (C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <12> (explorer.exe ->) (Hewlett-Packard Company) [Brak podpisu cyfrowego] C:\Program Files (x86)\HP\hp laserjet m1522\hppfaxprintersrv.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler64.exe (Hewlett-Packard Co.) [Brak podpisu cyfrowego] C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5> (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (services.exe ->) (Advanced Micro Devices, Inc.) [Brak podpisu cyfrowego] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe (services.exe ->) (Andrea Electronics -> Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe <2> (services.exe ->) (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe (services.exe ->) (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe (services.exe ->) (Panda Security S.L. -> Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe (services.exe ->) (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe (services.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21580.0_x64__8wekyb3d8bbwe\HxTsr.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\PrintIsolationHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe (svchost.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3954352 2016-04-28] (Synaptics Incorporated -> Synaptics Incorporated) HKLM\...\Run: [HP LaserJet M1522 MFP Series Fax] => C:\Program Files (x86)\HP\hp LaserJet M1522\hppfaxprintersrv.exe [3700736 2009-09-22] (Hewlett-Packard Company) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation -> Microsoft Corporation) HKLM-x32\...\Run: [PSUAMain] => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe [153808 2018-12-19] (Panda Security S.L. -> Panda Security, S.L.) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-08-21] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [ToolBoxFX] => C:\Program Files (x86)\HP\ToolBoxFX\bin\HPTLBXFX.exe [53248 2010-03-03] (HP) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [49152 2005-02-16] (Hewlett-Packard Co.) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [HPUsageTracking] => "C:\Program Files (x86)\HP\HP UT\bin\hppusg.exe" "C:\Program Files (x86)\HP\HP UT\" [0 0000-00-00] () <==== UWAGA [zerobajtowy plik/folder] HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Ograniczenia <==== UWAGA HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Ograniczenia <==== UWAGA HKU\S-1-5-21-2097700949-4190923544-1588180462-1001\...\Run: [MicrosoftEdgeAutoLaunch_8F040480AB28E2364718DD33D96EAF2E] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4210232 2023-10-06] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-2097700949-4190923544-1588180462-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [42614688 2023-09-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) HKLM\...\Windows x64\Print Processors\hpcpp093: C:\Windows\System32\spool\prtprocs\x64\hpcpp093.DLL [300032 2009-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation) HKLM\...\Windows x64\Print Processors\hpcpp230: C:\Windows\System32\spool\prtprocs\x64\hpcpp230.dll [797832 2019-05-24] (HP Inc. -> HP Inc.) HKLM\...\Print\Monitors\HP Fax Port: C:\WINDOWS\system32\hppfaxprintermon5.dll [22016 2009-09-22] (Hewlett-Packard Company) [Brak podpisu cyfrowego] HKLM\...\Print\Monitors\HP Standard TCP/IP Port: C:\WINDOWS\system32\HpTcpMon.dll [331264 2007-12-17] (Hewlett Packard) [Brak podpisu cyfrowego] HKLM\...\Print\Monitors\HP Universal Print Monitor: C:\WINDOWS\system32\HPMPW082.DLL [127624 2019-05-24] (HP Inc. -> HP Inc.) HKLM\...\Print\Monitors\HPMLM225: C:\WINDOWS\system32\hpmlm225.dll [315528 2019-05-24] (HP Inc. -> HP Inc.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\117.0.5938.149\Installer\chrmstp.exe [2023-10-08] (Google LLC -> Google LLC) ==================== Zaplanowane zadania (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {106DB05D-3F45-4C13-8A5C-E416DE0FA299} - Brak ścieżki do pliku. <==== UWAGA Task: {30E61A2C-AF69-4920-A4AA-DDD92B5EA5F2} - Brak ścieżki do pliku. <==== UWAGA Task: {3FA60671-CB29-44D6-AE5D-D3AEB19BFCD1} - Brak ścieżki do pliku. <==== UWAGA Task: {40D3DE1B-98E1-4E9D-A400-796FE4DB79A2} - Brak ścieżki do pliku. <==== UWAGA Task: {74E142BE-6FA3-420A-85D3-70C9DBE4A0CB} - Brak ścieżki do pliku. <==== UWAGA Task: {7D4E4D35-C086-4FC3-BCD5-0A6DCCEA0B43} - Brak ścieżki do pliku. <==== UWAGA Task: {94EF6A03-19A8-4414-9BFE-4292DF314D5F} - \Microsoft\Windows\Windows Media Sharing\UpdateLibrary -> Brak pliku <==== UWAGA Task: {A7E0C5EF-F90A-4E5F-B9C2-42782821CB89} - Brak ścieżki do pliku. <==== UWAGA Task: {B185A14D-1595-4628-93F1-EC1FAE9F0C5E} - Brak ścieżki do pliku. <==== UWAGA Task: {BC469C6D-32A6-4E10-8A63-E9E024C04274} - Brak ścieżki do pliku. <==== UWAGA Task: {E5A492F9-9920-4E97-844B-15C4E8B45173} - Brak ścieżki do pliku. <==== UWAGA Task: {B0CEF4B2-302F-4573-B0CA-B53555568B28} - System32\Tasks\CCleanerSkipUAC - Waldemar => C:\Program Files\CCleaner\CCleaner.exe [35675552 2023-09-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {3A361134-A7FF-4BD9-AE82-23119183B026} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-05-22] (Google Inc -> Google LLC) Task: {EDABC895-6D1C-48AE-8C7A-5A0091D77CFC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-05-22] (Google Inc -> Google LLC) Task: {239DB6BD-C080-439C-BC55-7361C898EB4A} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_ERROR_HB => C:\Windows\system32\MRT.exe [177941912 2023-09-17] (Microsoft Windows -> Microsoft Corporation) Task: {199E28B5-E8E8-4599-9961-59096763BCB9} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-07-03] (Realtek Semiconductor Corp -> Realtek Semiconductor) Task: {C1E634A4-4E86-4E8F-8702-B83263CDD899} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8505088 2015-07-03] (Realtek Semiconductor Corp -> Realtek Semiconductor) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.8.1 Tcpip\..\Interfaces\{01fce6cb-5a35-4512-a369-aab37cb78791}: [DhcpNameServer] 192.168.42.129 Tcpip\..\Interfaces\{d849c9a0-b57a-450e-a1ab-de2f53a05278}: [DhcpNameServer] 192.168.8.1 Edge: ======= Edge Extension: (Brak nazwy) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [nie znaleziono] Edge Extension: (Brak nazwy) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [nie znaleziono] Edge Extension: (Brak nazwy) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [nie znaleziono] Edge Extension: (Brak nazwy) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [nie znaleziono] Edge DefaultProfile: Default Edge Profile: C:\Users\Waldemar\AppData\Local\Microsoft\Edge\User Data\Default [2023-10-08] Edge Extension: (Dokumenty Google offline) - C:\Users\Waldemar\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-17] Edge Extension: (Edge relevant text changes) - C:\Users\Waldemar\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-17] FireFox: ======== FF DefaultProfile: fvgcxhb9.default FF ProfilePath: C:\Users\Waldemar\AppData\Roaming\Mozilla\Firefox\Profiles\fvgcxhb9.default [2019-05-22] FF ProfilePath: C:\Users\Waldemar\AppData\Roaming\Mozilla\Firefox\Profiles\sh4yojxu.default-release [2023-10-08] FF Homepage: Mozilla\Firefox\Profiles\sh4yojxu.default-release -> hxxps://www.google.pl/?gws_rd=ssl FF Notifications: Mozilla\Firefox\Profiles\sh4yojxu.default-release -> hxxps://mail.google.com Chrome: ======= CHR Profile: C:\Users\Waldemar\AppData\Local\Google\Chrome\User Data\Default [2023-10-08] CHR Extension: (Dokumenty Google offline) - C:\Users\Waldemar\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-17] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Waldemar\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-18] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AERTFilters; C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE [106952 2015-07-03] (Andrea Electronics -> Andrea Electronics Corporation) R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2015-08-21] (Advanced Micro Devices, Inc.) [Brak podpisu cyfrowego] S2 HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [136192 2010-03-03] (HP) [Brak podpisu cyfrowego] R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [230352 2023-09-17] (HP Inc. -> HP Inc.) R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [217088 2007-03-11] (Hewlett-Packard Co.) [Brak podpisu cyfrowego] R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [131072 2007-03-11] (Hewlett-Packard Co.) [Brak podpisu cyfrowego] R2 NanoServiceMain; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe [109536 2019-03-04] (Panda Security S.L. -> Panda Security, S.L.) S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2019-02-01] (HP Inc.) [Brak podpisu cyfrowego] S3 Panda VPN Service; C:\Program Files (x86)\Panda Security\Panda Security Protection\Hydra.Sdk.Windows.Service.exe [320848 2017-11-20] (AnchorFree Inc -> ) R2 PandaAgent; C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe [84176 2019-02-19] (Panda Security S.L. -> Panda Security, S.L.) S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2019-02-01] (HP Inc.) [Brak podpisu cyfrowego] R2 PSUAService; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe [48784 2019-03-04] (Panda Security S.L. -> Panda Security, S.L.) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 aftap0901; C:\WINDOWS\System32\drivers\aftap0901.sys [48624 2017-11-16] (AnchorFree Inc -> The OpenVPN Project) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego] S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego] R1 NNSALPC; C:\WINDOWS\system32\DRIVERS\NNSALPC.sys [111384 2019-03-05] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSDNS; C:\WINDOWS\system32\DRIVERS\NNSDNS.sys [104728 2019-03-05] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSHTTP; C:\WINDOWS\system32\DRIVERS\NNSHTTP.sys [211736 2019-03-05] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSHTTPS; C:\WINDOWS\system32\DRIVERS\NNSHTTPS.sys [125720 2019-03-06] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSIDS; C:\WINDOWS\system32\DRIVERS\NNSIDS.sys [132888 2019-03-05] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSNAHSL; C:\WINDOWS\system32\DRIVERS\NNSNAHSL.sys [95472 2018-07-16] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSPICC; C:\WINDOWS\system32\DRIVERS\NNSPICC.sys [149784 2019-03-05] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSPIHSW; C:\WINDOWS\system32\DRIVERS\NNSPIHSW.sys [95000 2019-03-05] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSPOP3; C:\WINDOWS\system32\DRIVERS\NNSPOP3.sys [135448 2019-03-05] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSPROT; C:\WINDOWS\system32\DRIVERS\NNSPROT.sys [346392 2019-03-05] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSPRV; C:\WINDOWS\system32\DRIVERS\NNSPRV.sys [290072 2019-03-25] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSSMTP; C:\WINDOWS\system32\DRIVERS\NNSSMTP.sys [123160 2019-03-05] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSSTRM; C:\WINDOWS\system32\DRIVERS\NNSSTRM.sys [295192 2019-03-05] (Panda Security S.L. -> Panda Security, S.L.) R1 NNSTLSC; C:\WINDOWS\system32\DRIVERS\NNSTLSC.sys [132376 2019-03-05] (Panda Security S.L. -> Panda Security, S.L.) R2 PSINAflt; C:\WINDOWS\system32\DRIVERS\PSINAflt.sys [198424 2019-03-04] (Panda Security S.L. -> Panda Security, S.L.) R2 PSINFile; C:\WINDOWS\System32\DRIVERS\PSINFile.sys [160536 2019-03-04] (Panda Security S.L. -> Panda Security, S.L.) R1 PSINKNC; C:\WINDOWS\system32\DRIVERS\PSINKNC.sys [215320 2019-03-04] (Panda Security S.L. -> Panda Security, S.L.) R2 PSINProc; C:\WINDOWS\System32\DRIVERS\PSINProc.sys [147224 2019-03-04] (Panda Security S.L. -> Panda Security, S.L.) R2 PSINProt; C:\WINDOWS\system32\DRIVERS\PSINProt.sys [159512 2019-03-04] (Panda Security S.L. -> Panda Security, S.L.) R2 PSINReg; C:\WINDOWS\system32\DRIVERS\PSINReg.sys [129304 2019-03-04] (Panda Security S.L. -> Panda Security, S.L.) R3 PSKMAD; C:\WINDOWS\System32\DRIVERS\PSKMAD.sys [72648 2017-05-22] (Panda Security S.L. -> Panda Security, S.L.) R3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [310528 2015-06-29] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation) R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [34944 2018-05-11] (HP Inc. -> HP) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-10-08 13:34 - 2023-10-08 13:34 - 000000000 ___HD C:\$WinREAgent 2023-10-08 13:04 - 2023-10-08 13:04 - 000030608 _____ C:\Users\Waldemar\Downloads\Shortcut.txt 2023-10-08 12:59 - 2023-10-08 13:04 - 000028123 _____ C:\Users\Waldemar\Downloads\Addition.txt 2023-10-08 12:50 - 2023-10-08 13:38 - 000018977 _____ C:\Users\Waldemar\Downloads\FRST.txt 2023-10-08 12:48 - 2023-10-08 13:37 - 000000000 ____D C:\FRST 2023-10-08 12:45 - 2023-10-08 12:45 - 002383360 _____ (Farbar) C:\Users\Waldemar\Downloads\FRST64.exe 2023-10-08 12:41 - 2023-10-08 12:41 - 000371282 _____ C:\Users\Waldemar\Downloads\gmer.zip 2023-10-08 12:29 - 2023-10-08 12:30 - 000000390 _____ C:\DelFix.txt 2023-10-08 11:32 - 2023-10-08 11:32 - 000000000 ____D C:\Users\Waldemar\AppData\Local\CrashDumps 2023-10-08 10:54 - 2023-10-08 10:54 - 000000000 ____D C:\Users\Waldemar\AppData\Local\mbam 2023-10-08 10:52 - 2023-10-08 12:42 - 000003048 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting 2023-10-08 10:52 - 2023-10-08 12:14 - 000000000 ____D C:\Program Files\CCleaner 2023-10-08 10:52 - 2023-10-08 10:52 - 000002916 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Waldemar 2023-10-08 10:52 - 2023-10-08 10:52 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk 2023-10-08 10:52 - 2023-10-08 10:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2023-10-08 10:47 - 2023-10-08 10:50 - 058311208 _____ (Piriform Software Ltd) C:\Users\Waldemar\Downloads\ccsetup616.exe 2023-10-08 10:43 - 2023-10-08 10:43 - 002606880 _____ (Malwarebytes) C:\Users\Waldemar\Downloads\MBSetup.exe 2023-10-08 10:16 - 2023-10-08 12:42 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2023-10-08 10:16 - 2023-10-08 11:25 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2023-10-08 10:16 - 2023-10-08 10:16 - 000002222 _____ C:\Users\Waldemar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Firefox — tryb prywatny.lnk 2023-10-01 21:17 - 2023-10-01 21:17 - 000000000 ____D C:\Users\Waldemar\Documents\My Scans 2023-10-01 21:12 - 2023-10-01 21:12 - 000000000 ____D C:\Users\Waldemar\AppData\Roaming\HP 2023-10-01 21:10 - 2023-10-01 21:10 - 000002068 _____ C:\Users\Public\Desktop\Zakup materiałów eksploatacyjnych HP.lnk 2023-10-01 21:10 - 2023-10-01 21:10 - 000000000 ____D C:\ProgramData\HPSSUPPLY 2023-10-01 21:09 - 2023-10-01 21:09 - 000000608 ___SH C:\WINDOWS\system32\winzvprt5.sys 2023-10-01 21:09 - 2023-10-01 21:09 - 000000198 _____ C:\WINDOWS\system32\hppfaxprinter5.ini 2023-10-01 21:09 - 2023-10-01 21:09 - 000000000 ____D C:\Users\Public\Documents\HP 2023-10-01 21:09 - 2009-09-22 19:44 - 000022016 ____N (Hewlett-Packard Company) C:\WINDOWS\system32\hppfaxprintermon5.dll 2023-10-01 21:09 - 2009-09-22 19:44 - 000016384 ____N (Hewlett-Packard Company) C:\WINDOWS\system32\hppfaxprintermonui5.dll 2023-10-01 21:06 - 2023-10-01 21:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP 2023-10-01 21:05 - 2023-10-01 21:05 - 000000281 _____ C:\WINDOWS\system32\AddPort.ini 2023-10-01 21:05 - 2009-02-25 17:32 - 000060440 _____ (Hewlett-Packard) C:\WINDOWS\system32\fxcompchannel_x64.dll 2023-10-01 21:04 - 2023-10-01 21:05 - 000000751 _____ C:\WINDOWS\hpntwksetup.ini 2023-10-01 14:02 - 2023-10-01 21:11 - 000000000 ____D C:\Program Files (x86)\HP 2023-10-01 14:01 - 2023-10-01 21:15 - 000160247 _____ C:\WINDOWS\hppins08.dat 2023-10-01 14:01 - 2023-10-01 21:10 - 000160206 _____ C:\WINDOWS\system32\hppins08.dat 2023-10-01 14:01 - 2008-10-20 22:48 - 000001116 ____N C:\WINDOWS\hppmdl08.dat 2023-10-01 13:57 - 2023-10-01 13:57 - 000000000 ____D C:\HP Universal Print Driver 2023-10-01 13:54 - 2023-10-01 14:01 - 023526864 _____ C:\Users\Waldemar\Downloads\pcl6-usb-x64-7.1.0.25570.exe 2023-10-01 13:40 - 2023-10-01 13:40 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP 2023-10-01 13:28 - 2023-10-01 13:29 - 017143200 _____ C:\Users\Waldemar\Downloads\HPEasyStart_16_1_9.exe 2023-10-01 13:28 - 2023-10-01 13:28 - 000000000 ____D C:\Users\Waldemar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikacje Chrome 2023-10-01 13:28 - 2023-10-01 13:28 - 000000000 ____D C:\Users\Waldemar\AppData\Local\HP 2023-10-01 13:27 - 2023-10-01 21:17 - 000000000 ____D C:\ProgramData\HP 2023-10-01 13:27 - 2023-10-01 13:35 - 000000000 ____D C:\Users\Waldemar\AppData\Roaming\HP_Easy_Start 2023-10-01 13:24 - 2023-10-01 13:24 - 000000000 ____D C:\Program Files\HPPrintScanDoctor ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-10-08 13:34 - 2023-07-21 09:14 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2023-10-08 13:16 - 2023-07-20 23:52 - 000000000 ____D C:\WINDOWS\SystemTemp 2023-10-08 13:16 - 2019-05-22 14:59 - 000000000 ____D C:\Program Files (x86)\Google 2023-10-08 13:03 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2023-10-08 12:15 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2023-10-08 12:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2023-10-08 12:13 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-10-08 12:01 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2023-10-08 11:41 - 2019-05-22 15:00 - 000002307 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2023-10-08 11:41 - 2019-05-22 15:00 - 000002266 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2023-10-08 11:15 - 2023-07-20 15:48 - 000000000 ___DC C:\WINDOWS\Panther 2023-10-08 11:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2023-10-08 10:52 - 2021-12-12 17:47 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-10-08 10:52 - 2021-12-12 17:47 - 000002286 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2023-10-08 10:21 - 2019-05-22 11:04 - 000000000 ____D C:\Users\Waldemar\AppData\Local\D3DSCache 2023-10-08 10:16 - 2021-12-02 17:15 - 000000000 ____D C:\Program Files\Mozilla Firefox 2023-10-08 10:16 - 2019-05-22 13:28 - 000000000 ____D C:\Users\Waldemar\AppData\LocalLow\Mozilla 2023-10-08 10:15 - 2019-05-22 13:28 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2023-10-01 21:17 - 2019-05-22 11:10 - 000000000 ____D C:\Users\Waldemar\AppData\Roaming\Microsoft\Spelling 2023-10-01 21:17 - 2018-09-15 09:31 - 000000202 _____ C:\WINDOWS\win.ini 2023-10-01 21:12 - 2019-07-10 21:18 - 000000000 ____D C:\ProgramData\Hewlett-Packard 2023-10-01 18:08 - 2023-07-21 00:13 - 000002436 _____ C:\Users\Waldemar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2023-10-01 14:15 - 2019-05-22 11:27 - 000000000 ____D C:\ProgramData\Packages 2023-10-01 13:25 - 2019-05-22 11:02 - 000000000 ____D C:\Users\Waldemar\AppData\Local\Packages 2023-10-01 13:08 - 2023-07-21 09:50 - 000003864 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2023-10-01 13:08 - 2023-07-21 09:50 - 000003740 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2023-10-01 13:01 - 2023-07-21 09:38 - 001767980 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2023-10-01 13:01 - 2019-12-07 17:08 - 000785420 _____ C:\WINDOWS\system32\perfh015.dat 2023-10-01 13:01 - 2019-12-07 17:08 - 000152280 _____ C:\WINDOWS\system32\perfc015.dat 2023-10-01 12:56 - 2023-07-21 09:50 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2023-10-01 12:56 - 2023-07-21 09:14 - 000008192 ___SH C:\DumpStack.log.tmp 2023-09-26 21:03 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2023-09-26 20:57 - 2023-07-21 09:14 - 000502256 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2023-09-17 22:15 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog 2023-09-17 22:15 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2023-09-17 22:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2023-09-17 22:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources 2023-09-17 22:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2023-09-17 22:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup 2023-09-17 22:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2023-09-17 22:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz 2023-09-17 22:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser 2023-09-17 22:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences 2023-09-17 22:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2023-09-17 22:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2023-09-17 22:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\appcompat 2023-09-17 18:42 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2023-09-17 18:41 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing 2023-09-17 18:27 - 2023-07-21 09:19 - 003014144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2023-09-17 16:11 - 2021-12-07 16:59 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2023-09-17 16:08 - 2019-05-22 12:03 - 000000000 ____D C:\WINDOWS\system32\MRT 2023-09-17 15:58 - 2019-05-22 12:03 - 177941912 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe ==================== Pliki w katalogu głównym wybranych folderów ======== 2019-05-22 11:43 - 2019-05-22 11:43 - 000007606 _____ () C:\Users\Waldemar\AppData\Local\Resmon.ResmonCfg ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================