Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 31.07.2024 Uruchomiony przez Oskar (administrator) OSKAR (Hewlett-Packard HP 250 G3 Notebook PC) (31-07-2024 23:05:10) Uruchomiony z C:\Users\Oskar\Downloads\FRST64(1).exe Załadowane profile: Oskar Platforma: Microsoft Windows 8.1 z usługą Bing (Update) (X64) Język: Polski (Polska) Domyślna przeglądarka: Edge Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (explorer.exe ->) (Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\hkcmd.exe (explorer.exe ->) (Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxpers.exe (explorer.exe ->) (Lexmark International, Inc. -> ) C:\Program Files (x86)\Lexmark 2400 Series\lxcrmon.exe (explorer.exe ->) (Lexmark International, Inc. -> Lexmark International Inc.) C:\Program Files (x86)\Lexmark 2400 Series\ezprint.exe (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\109.0.1518.140\msedge.exe <12> (explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Gen Digital Inc. -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe (Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\assistant\browser_assistant.exe <2> (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Andrea Electronics -> Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe (services.exe ->) (Bluestack Systems, Inc. -> BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe (services.exe ->) (Gen Digital Inc. -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe (services.exe ->) (Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe (services.exe ->) (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe (services.exe ->) (Huawei Technologies Co., Ltd. -> ) C:\ProgramData\MobileBrServ\mbbService.exe (services.exe ->) (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (services.exe ->) (Lexmark International, Inc. -> ) C:\Windows\System32\lxcrcoms.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe (services.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (svchost.exe ->) (CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe (svchost.exe ->) (Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxsrvc.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.20617_none_faf6123cb423a35e\TiWorker.exe (svchost.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7510896 2014-01-14] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2803440 2013-12-13] (Synaptics Incorporated -> Synaptics Incorporated) HKLM\...\Run: [lxcrmon.exe] => C:\Program Files (x86)\Lexmark 2400 Series\lxcrmon.exe [291496 2009-05-01] (Lexmark International, Inc. -> ) HKLM\...\Run: [EzPrint] => C:\Program Files (x86)\Lexmark 2400 Series\ezprint.exe [82600 2009-05-01] (Lexmark International, Inc. -> Lexmark International Inc.) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe" (Brak pliku) HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc. -> Apple Inc.) HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2015-12-09] (Apple Inc.) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [Opera Browser Assistant] => C:\Program Files (x86)\Opera\assistant\browser_assistant.exe [4094672 2021-08-25] (Opera Software AS -> Opera Software) HKU\S-1-5-21-3486298909-2668279709-3669421771-1001\...\Run: [NokiaSuite.exe] => C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe [1092448 2014-11-19] (Nokia -> Nokia) HKU\S-1-5-21-3486298909-2668279709-3669421771-1001\...\Run: [Sony PC Companion] => C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [457088 2015-09-23] (Sony Mobile Communications AB -> Sony) [Brak podpisu cyfrowego] HKU\S-1-5-21-3486298909-2668279709-3669421771-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4468056 2015-06-18] (Disc Soft Ltd -> Disc Soft Ltd) HKU\S-1-5-21-3486298909-2668279709-3669421771-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [44970408 2024-07-16] (Gen Digital Inc. -> Piriform Software Ltd) HKU\S-1-5-21-3486298909-2668279709-3669421771-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [112191904 2021-12-06] (Skype Software Sarl -> Skype Technologies S.A.) HKU\S-1-5-21-3486298909-2668279709-3669421771-1001\...\Run: [MicrosoftEdgeAutoLaunch_3CA2D981C7A8A76DF66CC681714E3FC8] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4188624 2023-09-14] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-3486298909-2668279709-3669421771-1001\...\MountPoints2: {714a2876-22ee-11e5-826e-c0389687e08c} - "F:\AutoRun.exe" HKLM\...\Windows x64\Print Processors\Lexmark 2400 Series Print Processor: C:\Windows\System32\spool\prtprocs\x64\lxcrpp6c.dll [144896 2006-11-27] (Microsoft Windows Hardware Compatibility Publisher -> ) HKLM\...\Print\Monitors\2400 Series Port: C:\Windows\system32\lxcrlmpm.dll [487424 2006-11-06] (Microsoft Windows Hardware Compatibility Publisher -> ) HKLM\...\Print\Monitors\HP Universal Port Monitor: C:\Windows\system32\hpbprtmon.dll [404992 2013-08-10] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\109.0.5414.168\Installer\chrmstp.exe [2023-10-11] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{538C240D-3DEE-4032-AB4C-08A3A6EB0861}] -> C:\Program Files (x86)\CyberLink\YouCam\CLCredProv\x64\CLCredProv.dll [2014-03-07] (CyberLink Corp. -> CyberLink) ==================== Zaplanowane zadania (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {E09FC5B9-80EC-4B8D-924C-2AE34BC08619} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1558984 2024-06-25] (Adobe Inc. -> Adobe Inc.) Task: {93927A0E-0A3C-4757-BB2C-345F5D1DE669} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-oskaruus99@outlook.com => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {41A39635-42FA-489C-8087-9B2D14201C64} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [829408 2024-07-16] (Gen Digital Inc. -> Gen Digital Inc.) Task: {0AE0F0B0-1ABD-4EEF-A8EE-F28603A21294} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5074848 2024-07-16] (Gen Digital Inc. -> Gen Digital Inc. All rights reserved.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "94d55e45-edba-4a08-81b3-cfde18070c16" --version "6.26.11169" --silent Task: {CE92466D-B4D1-4F2A-B40B-5FD7312638D8} - System32\Tasks\CCleanerSkipUAC - Oskar => C:\Program Files\CCleaner\CCleaner.exe [38931368 2024-07-16] (Gen Digital Inc. -> Piriform Software Ltd) Task: {1B32F904-F52F-4E5C-B9A1-F1D075566B2E} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [339008 2013-03-12] (CyberLink Corp. -> CyberLink Corp.) Task: {BDA32A71-0EB8-4E52-A19D-C5EA03F06DB6} - System32\Tasks\GenericSettingsHandler\Windows-Credentials\RetrySyncTask_for_S-1-5-21-3486298909-2668279709-3669421771-1001 => {F063A606-6748-4B89-82A0-3D19D94CE8D3} C:\Windows\System32\VaultRoaming.dll [92672 2014-10-29] (Microsoft Windows -> Microsoft) Task: {553BAA15-02BA-4B53-98C1-A2E741F878C2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-04-19] (Google Inc -> Google Inc.) Task: {6DD35B80-A8B0-4032-A49D-746C0CAE3F9F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-04-19] (Google Inc -> Google Inc.) Task: {838CA121-6006-4734-BF66-6E813AC17F2E} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [25128 2017-11-17] (HP Inc. -> ) -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\-task -source HPSA Task: {7EBE6ED4-B426-41E1-BE1A-B1F434E1FBF4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1506648 2020-08-20] (HP Inc. -> HP Inc.) -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\\/taskrestart Task: {BF01F496-BECD-4118-97FD-046BA6287B3A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [136304 2021-03-30] (HP Inc. -> HP Inc.) Task: {0080DC45-1C8C-4BF8-AA86-8F1305E02506} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2020-08-07] (HP Inc. -> HP Inc.) -> C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\\/u Task: {CCD651F6-FCE4-4038-B5F4-26A015AB2169} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2020-08-07] (HP Inc. -> HP Inc.) -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\\/r /m Task: {075EDFD6-2DFE-483A-A253-1DDBA9A12B14} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - resources updates => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2020-08-07] (HP Inc. -> HP Inc.) -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\\/r Task: {72C6378B-0E7E-4D3F-99FD-146AE9ECABB1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1506648 2020-08-20] (HP Inc. -> HP Inc.) -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\\/L Analysis Task: {7BD9BCDC-24E2-46C5-8354-9087A400C2E3} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis Install => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1506648 2020-08-20] (HP Inc. -> HP Inc.) -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\\/L InstallUpdates Task: {573CC29D-5F29-439D-9F4F-D5213E10B667} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [326320 2021-06-16] (HP Inc. -> HP Inc.) -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\\/noreport Task: {6D5147C6-1808-490B-8B03-9A8C55E9485D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1136984 2020-09-17] (HP Inc. -> HP Inc.) Task: {8C96E440-5D08-404B-A21A-3A1DA63FC24A} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-3486298909-2668279709-3669421771-1001 => C:\Users\Oskar\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe [257224 2016-08-18] (Microsoft Corporation -> Microsoft Corporation) Task: {41FEC2D2-9BAF-47A8-A813-8BDD147E3036} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1} Task: {8747BAA5-FA28-41E4-A89E-D11BA12AC2EF} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [688200 2024-07-09] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (dane wartości zawierają 6 znaków więcej). Task: {90C0D08A-C9BD-45A7-97BC-E2DBFEEEEFF4} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [725576 2024-07-09] (Mozilla Corporation -> Mozilla Foundation) Task: {94CCD6B0-621B-49DD-94DB-6E77A69E6C97} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2803440 2013-12-13] (Synaptics Incorporated -> Synaptics Incorporated) Task: {6E78CA9B-D8CD-481B-B44B-F38DF94CA419} - System32\Tasks\YCMServiceAgent => C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [267224 2014-03-07] (CyberLink Corp. -> CyberLink Corp.) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe Task: C:\Windows\Tasks\HPCeeScheduleForOskar.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1 Tcpip\..\Interfaces\{AB2CED5A-6AAC-41CE-86EB-9E636472CAAB}: [DhcpNameServer] 192.168.1.1 192.168.1.1 Tcpip\..\Interfaces\{AB2CED5A-6AAC-41CE-86EB-9E636472CAAB}: [DhcpDomain] homerouter.cpe Tcpip\..\Interfaces\{AB2CED5A-6AAC-41CE-86EB-9E636472CAAB}\14E64627F69646140514649344: [DhcpNameServer] 192.168.174.129 Tcpip\..\Interfaces\{AB2CED5A-6AAC-41CE-86EB-9E636472CAAB}\261383D22307D23777965647C6963616: [DhcpNameServer] 153.19.72.237 153.19.64.1 Tcpip\..\Interfaces\{AB2CED5A-6AAC-41CE-86EB-9E636472CAAB}\261383D22307D23777965647C6963616: [DhcpDomain] uck.gda.pl Tcpip\..\Interfaces\{AB2CED5A-6AAC-41CE-86EB-9E636472CAAB}\2623D22307D2E6566627F6: [DhcpNameServer] 192.168.15.254 Tcpip\..\Interfaces\{AB2CED5A-6AAC-41CE-86EB-9E636472CAAB}\4505D2C496E6B6F554874756E6465627: [DhcpNameServer] 192.168.0.254 Tcpip\..\Interfaces\{AB2CED5A-6AAC-41CE-86EB-9E636472CAAB}\B42757B6: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{AB2CED5A-6AAC-41CE-86EB-9E636472CAAB}\B42757B6: [DhcpDomain] home Tcpip\..\Interfaces\{D41367BC-958B-4F39-AF5D-568574F9F27B}: [DhcpNameServer] 192.168.8.1 192.168.8.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\Oskar\AppData\Local\Microsoft\Edge\User Data\Default [2024-07-31] Edge Extension: (Edge relevant text changes) - C:\Users\Oskar\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24] FireFox: ======== FF DefaultProfile: s9z8vrye.default FF ProfilePath: C:\Users\Oskar\AppData\Roaming\Mozilla\Firefox\Profiles\s9z8vrye.default [2024-07-31] FF Notifications: Mozilla\Firefox\Profiles\s9z8vrye.default -> hxxp://poczta.onet.pl; hxxps://www.tanikredyt.pl; hxxps://ktomalek.pl FF Extension: (ADB Helper) - C:\Users\Oskar\AppData\Roaming\Mozilla\Firefox\Profiles\s9z8vrye.default\Extensions\adbhelper@mozilla.org.xpi [2018-08-08] [Przestarzałe] FF Extension: (Valence) - C:\Users\Oskar\AppData\Roaming\Mozilla\Firefox\Profiles\s9z8vrye.default\Extensions\fxdevtools-adapters@mozilla.org [2017-08-03] [Przestarzałe] FF Extension: (Video DownloadHelper) - C:\Users\Oskar\AppData\Roaming\Mozilla\Firefox\Profiles\s9z8vrye.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2024-06-21] FF Extension: (YouTube Video and Audio Downloader (Dev Edt.)) - C:\Users\Oskar\AppData\Roaming\Mozilla\Firefox\Profiles\s9z8vrye.default\Extensions\{f73df109-8fb4-453e-8373-f59e61ca4da3}.xpi [2022-02-10] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1224194.dll [2016-02-19] (Adobe Systems, Inc.) [Brak podpisu cyfrowego] FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @nokia.com/EnablerPlugin -> C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll [2014-11-19] (Nokia -> ) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2024-06-27] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR Profile: C:\Users\Oskar\AppData\Local\Google\Chrome\User Data\Default [2024-02-18] CHR Notifications: Default -> hxxps://ktomalek.pl CHR Extension: (Tampermonkey) - C:\Users\Oskar\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2023-06-02] CHR Extension: (Dokumenty Google offline) - C:\Users\Oskar\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-06-02] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Oskar\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-03-11] CHR Extension: (Profile Picture Viewer) - C:\Users\Oskar\AppData\Local\Google\Chrome\User Data\Default\Extensions\olhdholihhioakdjhfhligfehfjjfeoc [2023-10-30] Opera: ======= OPR Profile: C:\Users\Oskar\AppData\Roaming\Opera Software\Opera Stable [2024-07-31] OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding} OPR Extension: (Rich Hints Agent) - C:\Users\Oskar\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2023-09-18] OPR Extension: (Amazon Assistant Promotion) - C:\Users\Oskar\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-10-30] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-06-25] (Adobe Inc. -> Adobe Inc.) R2 AERTFilters; C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE [98208 2009-11-18] (Andrea Electronics -> Andrea Electronics Corporation) S3 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [433784 2015-06-16] (Bluestack Systems, Inc. -> BlueStack Systems, Inc.) S3 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [413304 2015-06-16] (Bluestack Systems, Inc. -> BlueStack Systems, Inc.) R2 BstHdUpdaterSvc; C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [831096 2015-07-21] (Bluestack Systems, Inc. -> BlueStack Systems, Inc.) R3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1085864 2024-07-16] (Gen Digital Inc. -> Piriform Software Ltd) S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1268568 2015-06-18] (Disc Soft Ltd -> Disc Soft Ltd) S2 gupdate; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-04-19] (Google Inc -> Google Inc.) S3 gupdatem; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-04-19] (Google Inc -> Google Inc.) R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [379736 2020-08-20] (HP Inc. -> HP Inc.) R2 HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [1039160 2013-10-08] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) R2 Huawei E3372; C:\ProgramData\MobileBrServ\mbbservice.exe [240720 2014-03-07] (Huawei Technologies Co., Ltd. -> ) R2 lxcr_device; C:\Windows\system32\lxcrcoms.exe [566192 2006-12-11] (Lexmark International, Inc. -> ) R2 lxcr_device; C:\Windows\SysWOW64\lxcrcoms.exe [537520 2006-12-11] (Lexmark International, Inc. -> ) S3 Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [155520 2015-06-10] (Sony Mobile Communications AB -> Avanquest Software) [Brak podpisu cyfrowego] R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation) R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [112144 2021-05-18] (Microsoft Corporation -> Microsoft Corporation) ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [145528 2015-06-16] (Bluestack Systems, Inc. -> BlueStack Systems) R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2015-09-18] (Disc Soft Ltd -> Disc Soft Ltd) S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [80160 2015-02-13] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, Inc.) S3 nmwcd; C:\Windows\system32\drivers\ccdcmbx64.sys [19968 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia) S3 nmwcdc; C:\Windows\system32\drivers\ccdcmbox64.sys [27136 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia) S3 pccsmcfd; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [26112 2012-10-17] (Microsoft Windows Hardware Compatibility Publisher -> Nokia) S3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [291544 2014-01-04] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.) R3 rtbth; C:\Windows\System32\drivers\rtbth.sys [1204424 2013-12-25] (Mediatek Inc. -> Ralink Technology, Corp.) S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [9216 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia) S3 UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [9216 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia) S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation) S3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [31840 2016-03-24] (Hewlett-Packard Company -> HP) R3 WirelessButtonDriver64; C:\Windows\system32\DRIVERS\WirelessButtonDriver64.sys [31840 2016-03-24] (Hewlett-Packard Company -> HP) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2024-07-28 21:23 - 2024-07-28 21:23 - 002126976 _____ () C:\Users\Oskar\Downloads\RuwPiTeU.exe.part 2024-07-26 15:28 - 2024-07-26 15:29 - 012696481 _____ C:\Users\Oskar\Downloads\uchwala_5_2024.pdf 2024-07-25 17:50 - 2024-07-25 17:50 - 001478783 _____ C:\Users\Oskar\Downloads\PED_doktorat-wieczorek_recenzja-nawrot-borowska.pdf 2024-07-25 17:49 - 2024-07-25 17:49 - 000297880 _____ C:\Users\Oskar\Downloads\adodot,+{$userGroup},+4.pdf 2024-07-24 01:16 - 2024-07-24 01:16 - 000293124 _____ C:\Users\Oskar\Documents\Działalność edukacyjno-wychowawcza Muzeum Marynarki Wojennej w Gdyni.pdf 2024-07-11 18:51 - 2024-07-11 18:51 - 000050169 _____ C:\Users\Oskar\Downloads\TA_PdfFileTitle_20240711_185148.pdf 2024-07-09 18:11 - 2024-07-31 18:11 - 000000666 _____ C:\Windows\Tasks\CCleanerCrashReporting.job 2024-07-09 18:11 - 2024-07-30 09:28 - 000003232 _____ C:\Windows\system32\Tasks\CCleanerCrashReporting 2024-07-09 18:05 - 2024-07-10 16:44 - 000000000 ____D C:\Program Files\Mozilla Firefox ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2024-07-31 23:11 - 2016-08-05 12:02 - 000026194 _____ C:\Users\Oskar\Downloads\FRST.txt 2024-07-31 23:10 - 2016-08-05 12:01 - 000000000 ____D C:\FRST 2024-07-31 23:03 - 2015-06-25 16:17 - 000003972 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{298FFAE4-EFED-4514-80D0-91C6901F527E} 2024-07-31 23:02 - 2023-08-22 14:03 - 000000000 ____D C:\Users\Oskar\Downloads\FRST-OlderVersion 2024-07-31 23:02 - 2021-09-07 00:34 - 002397184 _____ (Farbar) C:\Users\Oskar\Downloads\FRST64(1).exe 2024-07-31 23:02 - 2015-07-13 14:26 - 007913472 ___SH C:\Users\Oskar\Downloads\Thumbs.db 2024-07-31 22:42 - 2022-02-11 18:05 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2024-07-31 22:38 - 2015-06-25 16:04 - 000000000 __RDO C:\Users\Oskar\OneDrive 2024-07-31 22:16 - 2017-04-27 17:03 - 000000000 ____D C:\Program Files (x86)\Google 2024-07-31 21:22 - 2015-06-25 20:21 - 001570816 ___SH C:\Users\Oskar\Desktop\Thumbs.db 2024-07-31 18:50 - 2016-07-15 13:13 - 000000000 ____D C:\Program Files\CCleaner 2024-07-31 18:50 - 2015-07-02 20:30 - 000000000 ____D C:\Users\Oskar\AppData\Roaming\Microsoft\Office 2024-07-31 18:49 - 2021-09-06 21:25 - 000000000 ____D C:\Users\Oskar\AppData\Local\CrashDumps 2024-07-31 17:17 - 2015-06-25 16:04 - 000000000 ____D C:\Users\Oskar\Documents\Youcam 2024-07-31 09:21 - 2015-06-25 17:07 - 000000000 ____D C:\Users\Oskar\AppData\Local\Adobe 2024-07-30 09:28 - 2022-04-15 02:52 - 000003870 _____ C:\Windows\system32\Tasks\CCleaner Update 2024-07-29 10:00 - 2023-03-12 19:21 - 000003466 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2024-07-29 10:00 - 2023-03-12 19:21 - 000003338 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2024-07-28 12:52 - 2014-05-04 07:09 - 000834740 _____ C:\Windows\system32\perfh015.dat 2024-07-28 12:52 - 2014-05-04 07:09 - 000177768 _____ C:\Windows\system32\perfc015.dat 2024-07-28 12:52 - 2014-03-18 11:53 - 001963876 _____ C:\Windows\system32\PerfStringBackup.INI 2024-07-28 12:52 - 2013-08-22 15:36 - 000000000 ____D C:\Windows\Inf 2024-07-27 16:00 - 2017-09-17 08:49 - 000000000 ____D C:\Users\Oskar\Desktop\Photos 2024-07-23 20:09 - 2015-07-02 20:30 - 000000000 ____D C:\Users\Oskar\AppData\Roaming\Microsoft\Word 2024-07-12 01:29 - 2015-06-25 15:56 - 000000000 ____D C:\Users\Oskar 2024-07-11 18:04 - 2013-08-22 16:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2024-07-10 23:01 - 2016-05-06 22:20 - 000000000 ____D C:\Users\Oskar\Documents\FIFA 14 2024-07-10 16:44 - 2015-06-25 16:19 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2024-07-10 15:52 - 2021-10-09 17:38 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla 2024-07-01 17:13 - 2015-06-25 16:05 - 000003600 _____ C:\Windows\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3486298909-2668279709-3669421771-1001 ==================== Pliki w katalogu głównym wybranych folderów ======== 2016-03-16 17:01 - 2022-01-19 23:32 - 000009216 _____ () C:\Users\Oskar\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2022-04-15 10:00 - 2022-04-15 17:44 - 000000205 _____ () C:\Users\Oskar\AppData\Local\oobelibMkey.log 2024-03-08 21:31 - 2024-03-08 21:31 - 000001766 _____ () C:\Users\Oskar\AppData\Local\recently-used.xbel 2016-07-16 22:42 - 2016-07-16 22:42 - 000007597 _____ () C:\Users\Oskar\AppData\Local\Resmon.ResmonCfg 2021-01-04 21:19 - 2021-01-04 21:19 - 000000000 _____ () C:\Users\Oskar\AppData\Local\{3EF1A8D0-0B93-4725-B8B0-15CACF23386D} 2020-04-02 12:53 - 2020-04-02 12:53 - 000000000 _____ () C:\Users\Oskar\AppData\Local\{6796E6BB-ACBA-438B-B2DB-0E1933C3FDEC} ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) LastRegBack: 2024-07-31 13:04 ==================== Koniec FRST.txt ========================