If you like this site and you like coffee, why not buy me one. Because I love it

Click to buy coffe
avatar
Untitled

Guest 88 3rd Jan, 2023

HPKP 27.26 KB
                                           
                         Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 29-12-2022
Uruchomiony przez HP (administrator)  DESKTOP-739B6HP (HP HP EliteBook 840 G3) (03-01-2023 13:49:51)
Uruchomiony z C:\Users\HP\Downloads
Załadowane profile: HP
Platform: Microsoft Windows 10 Pro Wersja 21H2 19044.2075 (X64) Język: Angielski (Zjednoczone Królestwo) -> Polski (Polska)
Domyślna przeglądarka: Edge
Tryb startu: Normal

==================== Procesy (filtrowane) =================

(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)

(C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCopyAccelerator.exe
(C:\Windows\CxSvc\CxMonSvc.exe ->) (Conexant Systems LLC -> Conexant) C:\Windows\System32\MicTray64.exe
(Conexant Systems LLC -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\SA3\HP-NB-AIO\SmartAudio3.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_38cfab2b652e4701\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_38cfab2b652e4701\igfxEM.exe
(DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_e2143fc8249238dd\HotKeyServiceUWP.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_e2143fc8249238dd\HPHotkeyNotification.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <34>
(services.exe ->) (Conexant Systems LLC -> Conexant Systems, Inc.) C:\Windows\CxSvc\CxUtilSvc.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_e2143fc8249238dd\HotKeyServiceUWP.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_e2143fc8249238dd\LanWlanWwanSwitchingServiceUWP.exe
(services.exe ->) (HP Inc. -> HP) C:\Program Files (x86)\HP\Shared\hpqwmiex.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_38cfab2b652e4701\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_c2ac023763d5d3ad\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_51f685305808e3a5\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_51f685305808e3a5\IntelCpHeciSvc.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> ) C:\Windows\System32\fpCSEvtSvc.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Windows\System32\valWBFPolicyService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe
(services.exe ->) (Synaptics Incorporated -> Conexant Systems, Inc) C:\Windows\CxSvc\CxMonSvc.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(svchost.exe ->) (HP Inc. -> HP) C:\Program Files (x86)\HP\HP Hotkey Support\QLBController.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22072.207.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.1940_none_7dd80d767cb5c7b0\TiWorker.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

==================== Rejestr (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)

HKLM-x32\...\Run: [] => [X]
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Ograniczenia <==== UWAGA
HKU\S-1-5-21-2214248504-3475596134-4089776279-1001\...\Run: [MicrosoftEdgeAutoLaunch_AC3B7AF181558E407F159DB8A5D4AA84] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3879848 2022-12-15] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2214248504-3475596134-4089776279-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38916432 2022-12-09] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\108.1.46.144\Installer\chrmstp.exe [2022-12-15] (Brave Software, Inc. -> Brave Software, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GTS-API Process.lnk [2022-10-03]
ShortcutTarget: GTS-API Process.lnk -> C:\Program Files (x86)\Toyota Diagnostics\Techstream\bin\GTSAPI_TGD.exe () [Brak podpisu cyfrowego]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GTSdotNetChecker.lnk [2022-10-03]
ShortcutTarget: GTSdotNetChecker.lnk -> C:\Program Files (x86)\Toyota Diagnostics\GTS DataSync\DNC\GTSdotNetChecker.vbs () [Brak podpisu cyfrowego]
Startup: C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\RT-Automatyczne aktualizacje-AKP.lnk [2022-10-06]
ShortcutTarget: RT-Automatyczne aktualizacje-AKP.lnk -> C:\Ross-Tech\VCDS-AKP\VCDS.exe (Brak pliku)
Startup: C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\RT-Updater.lnk [2022-12-30]
ShortcutTarget: RT-Updater.lnk -> C:\Ross-Tech\VCDS\VCDS.EXE (Ross-Tech, LLC -> Ross-Tech, LLC)
GroupPolicy: Ograniczenia ? <==== UWAGA
Policies: C:\ProgramData\NTUSER.pol: Ograniczenia <==== UWAGA

==================== Zaplanowane zadania (filtrowane) ============

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

Task: {0AF22C04-A05F-440C-8632-3C805C12E45D} - System32\Tasks\HP\HP Hotkey Support\Start QLBController Process => C:\Program Files (x86)\HP\HP Hotkey Support\QLBController.exe [900136 2019-08-19] (HP Inc. -> HP)
Task: {2085DFC7-7E3A-4976-8164-90A86AD1A9AB} - System32\Tasks\CCleanerSkipUAC - HP => C:\Program Files\CCleaner\CCleaner.exe [32602448 2022-12-09] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {471B0862-495B-4284-A8E1-7310331018A6} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4669264 2022-12-09] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "b48745e4-e7f8-470d-8f5b-11349e42a124" --version "6.07.10191" --silent
Task: {5B4663C6-5DF6-47B8-BCBB-866B7B758D51} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-12-09] (Piriform Software Ltd -> Piriform)
Task: {792B874A-1F54-4972-BC29-5CF065E9E60A} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore{13FDFCB1-4519-4B1E-9F9A-7DDBC99EAECC} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174976 2022-08-23] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {82DE54FB-F0D7-4F7C-939D-FA5056CA5A31} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8518A9A5-7ACA-47E1-91DF-66836EFF383E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {88A544C1-7FB5-49C0-8C45-644CAAEE9CAB} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2113024 2022-08-08] () [Brak podpisu cyfrowego]
Task: {8EE115DB-6FF6-4C29-A55A-6ADA5C32882B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9545AF10-A17B-43C4-94EF-3803825192A9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {AF2A97BA-C419-4E4B-B428-3D18BF15849A} - System32\Tasks\Microsoft\Windows\Conexant\MicTray => C:\Windows\System32\MicTray64.exe [2938448 2020-07-02] (Conexant Systems LLC -> Conexant)
Task: {C49B6819-0019-4112-8AD0-D5969626A2FF} - System32\Tasks\Microsoft\Windows\Conexant\SA3 => C:\Program Files\CONEXANT\SA3\HP-NB-AIO\SACpl.exe [1832280 2017-06-07] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
Task: {F3A0918F-5556-4C13-8FDA-51E950F4E6A6} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA{94C2B4FF-E99E-4B70-A839-D5417F1C2140} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174976 2022-08-23] (Brave Software, Inc. -> BraveSoftware Inc.)

(Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.)

Task: C:\Windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe

==================== Internet (filtrowane) ====================

(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)

Tcpip\Parameters: [DhcpNameServer] 192.168.8.1
Tcpip\..\Interfaces\{2e8aa4d0-c3a4-4b20-847a-8dcb9e9bb649}: [DhcpNameServer] 192.168.8.1
Tcpip\..\Interfaces\{3afb55ba-ede0-4736-9554-cea74d5f8b36}: [DhcpNameServer] 192.168.1.1

Edge: 
=======
Edge Profile: C:\Users\HP\AppData\Local\Microsoft\Edge\User Data\Default [2023-01-03]
Edge Notifications: Default -> hxxps://hutters.click; hxxps://netolls.click; hxxps://notos.click
Edge Extension: (trigger-translation) - C:\Users\HP\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fancfknaplihpclbhbpclnmmjcjanbaf [2022-11-19]

FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)

Brave: 
=======
BRA Profile: C:\Users\HP\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2022-12-28]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\HP\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2022-12-28]
BRA Extension: (Brave NTP background images) - C:\Users\HP\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2022-08-23]
BRA Extension: (Wallet Data Files Updater) - C:\Users\HP\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2022-12-28]
BRA Extension: (Brave Ad Block Updater (Easylist-Cookie List - Filter Obtrusive Cookie Notices (plaintext))) - C:\Users\HP\AppData\Local\BraveSoftware\Brave-Browser\User Data\cdbbhgbmjhfnhnmgeddbliobbofkgdhe [2022-12-28]
BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\HP\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2022-11-19]
BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\HP\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2022-12-03]
BRA Extension: (Brave NTP Super Referrer mapping table) - C:\Users\HP\AppData\Local\BraveSoftware\Brave-Browser\User Data\heplpbhjcbmiibdlchlanmdenffpiibo [2022-08-23]
BRA Extension: (Brave NTP sponsored images) - C:\Users\HP\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodhafecfemgejckecbnmpobnhmoaoag [2022-12-28]
BRA Extension: (Brave Ad Block Updater (Default (plaintext))) - C:\Users\HP\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2022-12-28]
BRA Extension: (Brave SpeedReader Updater) - C:\Users\HP\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2022-08-23]
BRA Extension: (Brave Ad Block Updater (Easylist-Cookie List - Filter Obtrusive Cookie Notices)) - C:\Users\HP\AppData\Local\BraveSoftware\Brave-Browser\User Data\lfgnenkkneohplacnfabidofpgcdpofm [2022-11-19]
BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\HP\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2022-12-28]
BRA Extension: (Brave NTP sponsored images) - C:\Users\HP\AppData\Local\BraveSoftware\Brave-Browser\User Data\mjpbonbjgpinifgnneajcbigekbpfige [2022-10-02]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\HP\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2022-12-28]

==================== Usługi (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174976 2022-08-23] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [174976 2022-08-23] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1003344 2022-12-09] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 CxMonSvc; C:\Windows\CxSvc\CxMonSvc.exe [56496 2020-09-09] (Synaptics Incorporated -> Conexant Systems, Inc)
R2 fpCsEvtSvc; C:\Windows\System32\fpCSEvtSvc.exe [22424 2019-05-05] (Microsoft Windows Hardware Compatibility Publisher -> )
S2 GTS DataSync; C:\Program Files (x86)\Toyota Diagnostics\GTS DataSync\GTSDataSync.exe [135088 2020-05-29] (DENSO CORPORATION -> )
S4 HotKeyService; C:\Program Files (x86)\HP\HP Hotkey Support\HotkeyService.exe [971304 2019-08-19] (HP Inc. -> HP)
R2 HotKeyServiceUWP; C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_e2143fc8249238dd\HotKeyServiceUWP.exe [1556592 2022-06-14] (HP Inc. -> HP Inc.)
R3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1149480 2019-04-12] (HP Inc. -> HP)
S4 LanWlanSwitchingService; C:\Program Files (x86)\HP\HP Hotkey Support\LanWlanSwitchingService.exe [631336 2019-08-19] (HP Inc. -> HP)
R2 LanWlanWwanSwitchingServiceUWP; C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_e2143fc8249238dd\LanWlanWwanSwitchingServiceUWP.exe [602224 2022-06-14] (HP Inc. -> HP Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [224192 2022-09-30] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 valWBFPolicyService; C:\Windows\System32\valWBFPolicyService.exe [91032 2019-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe [3191264 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe [133592 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 BraveElevationService1d8e0577998572a; "C:\Program Files\BraveSoftware\Brave-Browser\Application\108.1.46.144\elevation_service.exe" [X]
S2 ComboCleaner.Guard; C:\Program Files (x86)\Combo Cleaner\ComboCleaner.Guard.exe [X]
S2 ComboCleaner.WinService; C:\Program Files (x86)\Combo Cleaner\ComboCleaner.WinService.exe [X]

===================== Sterowniki (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

S3 BdDci; C:\Windows\system32\DRIVERS\bddci.sys [802976 2020-12-04] (Bitdefender SRL -> Bitdefender)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego]
S3 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [176008 2021-09-30] (Microsoft Windows Hardware Compatibility Publisher -> BitDefender LLC)
R3 MpKslb780a3df; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{822D3358-FD6F-4635-A62B-0F3076F06CD1}\MpKslDrv.sys [214280 2023-01-03] (Microsoft Windows -> Microsoft Corporation)
S3 RT-USB; C:\Windows\system32\drivers\RT-USB64.SYS [70984 2010-06-16] (Ross-Tech, LLC -> Ross-Tech LLC)
S3 Trufos; C:\Windows\System32\DRIVERS\Trufos.sys [615840 2021-10-01] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
U5 vsock; C:\Windows\System32\Drivers\vsock.sys [105912 2020-08-10] (VMware, Inc. -> VMware, Inc.)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49568 2022-12-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [473376 2022-12-09] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [99616 2022-12-09] (Microsoft Windows -> Microsoft Corporation)
R3 WinDriver6; C:\Windows\system32\drivers\windrvr6.sys [285696 2007-06-17] (Microsoft Windows Hardware Compatibility Publisher -> Jungo)
R3 WirelessButtonDriver64; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [40104 2022-06-17] (HP Inc. -> HP)

==================== NetSvcs (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)


==================== Jeden miesiąc (utworzone) (filtrowane) =========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2023-01-03 13:45 - 2023-01-03 13:47 - 002376192 _____ (Farbar) C:\Users\HP\Downloads\FRST64.exe
2023-01-03 12:53 - 2023-01-03 13:32 - 000000000 ____D C:\Program Files (x86)\Combo Cleaner
2023-01-03 12:53 - 2023-01-03 12:53 - 003594016 _____ (RCS LT) C:\Users\HP\Downloads\CCSetup.exe
2023-01-03 12:53 - 2023-01-03 12:53 - 000001963 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Combo Cleaner.lnk
2023-01-03 12:39 - 2023-01-03 12:41 - 094350555 _____ C:\Users\HP\Downloads\e4hdcombo_GIT-22524_PKT-4030_all.zip
2023-01-03 12:34 - 2023-01-03 12:36 - 105561205 _____ C:\Users\HP\Downloads\e4hdcombo_GIT-26455_PKT-3987_all.zip
2022-12-30 18:57 - 2022-12-30 18:57 - 000000729 _____ C:\Users\HP\Desktop\VCDS Release 12.12.lnk
2022-12-29 09:01 - 2022-12-29 09:01 - 000000729 _____ C:\Users\HP\Desktop\VCDS Release 14.10.lnk
2022-12-29 08:55 - 2022-12-29 08:55 - 000000000 ____D C:\Ross-Tech
2022-12-29 08:54 - 2022-12-29 08:54 - 000000000 ____D C:\Users\HP\Desktop\Nowy folder
2022-12-26 16:08 - 2022-12-26 16:08 - 003564820 _____ C:\Users\HP\Downloads\Niepotwierdzony 826950.crdownload
2022-12-26 15:09 - 2022-12-26 16:04 - 011473904 _____ (Martin Prikryl ) C:\Users\HP\Downloads\WinSCP-5.21.6-Setup.exe
2022-12-22 06:09 - 2022-12-22 06:10 - 000000000 ____D C:\Windows\Minidump
2022-12-19 11:56 - 2022-12-19 12:04 - 000000128 _____ C:\Users\HP\AppData\Local\PUTTY.RND
2022-12-19 11:55 - 2022-12-19 11:55 - 001647912 _____ (Simon Tatham) C:\Users\HP\Downloads\putty.exe
2022-12-19 11:21 - 2022-12-19 11:21 - 000000000 ____D C:\Users\HP\Desktop\Bootmanager
2022-12-18 13:01 - 2022-12-18 13:01 - 000000378 __RSH C:\ProgramData\ntuser.pol
2022-12-18 12:07 - 2022-12-30 18:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VCDS
2022-12-04 11:03 - 2022-12-19 11:31 - 000000229 _____ C:\Users\HP\Desktop\dcc.ini
2022-12-04 10:59 - 2009-05-03 13:12 - 006640128 _____ (BernyR) C:\Users\HP\Desktop\DCC.exe
2022-12-04 10:36 - 2022-12-04 10:36 - 001629250 _____ C:\Users\HP\Downloads\Enigma2-EU-19+13+23E-PayTV.zip
2022-12-04 10:30 - 2022-12-04 10:30 - 004188532 _____ C:\Users\HP\Downloads\dcc296.zip
2022-12-04 09:17 - 2022-12-04 09:17 - 006635382 _____ C:\Users\HP\Downloads\enigma2-plugin-softcams-oscam_11.711-emu-r798_all.ipk
2022-12-04 09:11 - 2022-12-04 09:12 - 119746642 _____ C:\Users\HP\Downloads\openatv-6.4-axashistwinplus-20221113_usb.zip
2022-12-04 08:21 - 2022-12-04 08:21 - 000000017 _____ C:\Users\HP\AppData\Local\resmon.resmoncfg

==================== Jeden miesiąc (zmodyfikowane) ==================

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2023-01-03 13:50 - 2022-10-11 19:13 - 000019389 _____ C:\Users\HP\Downloads\FRST.txt
2023-01-03 13:50 - 2022-10-11 19:12 - 000000000 ____D C:\FRST
2023-01-03 13:38 - 2022-10-02 15:43 - 000785730 _____ C:\Windows\system32\perfh015.dat
2023-01-03 13:38 - 2022-10-02 15:43 - 000152590 _____ C:\Windows\system32\perfc015.dat
2023-01-03 13:38 - 2022-08-23 12:14 - 001768564 _____ C:\Windows\system32\PerfStringBackup.INI
2023-01-03 13:38 - 2019-12-07 09:13 - 000000000 ____D C:\Windows\INF
2023-01-03 13:35 - 2022-10-12 13:32 - 000000000 ____D C:\Program Files\CCleaner
2023-01-03 13:33 - 2022-10-12 13:32 - 000000760 _____ C:\Windows\Tasks\CCleanerCrashReporting.job
2023-01-03 13:33 - 2022-08-23 12:37 - 000000000 __SHD C:\Users\HP\IntelGraphicsProfiles
2023-01-03 13:33 - 2022-08-23 12:37 - 000000000 ____D C:\Intel
2023-01-03 13:33 - 2022-08-23 12:26 - 000000000 ____D C:\ProgramData\Synaptics
2023-01-03 13:33 - 2022-08-23 12:08 - 000008192 ___SH C:\DumpStack.log.tmp
2023-01-03 13:33 - 2022-08-23 12:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2023-01-03 13:33 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\ServiceState
2023-01-03 13:33 - 2019-12-07 09:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-01-03 13:32 - 2022-10-03 06:55 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2023-01-03 13:32 - 2019-12-07 09:03 - 000524288 _____ C:\Windows\system32\config\BBI
2023-01-03 11:17 - 2022-10-11 18:41 - 000000000 ____D C:\Users\HP\AppData\Local\ElevatedDiagnostics
2022-12-31 10:04 - 2022-08-23 12:08 - 000003566 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-12-31 10:04 - 2022-08-23 12:08 - 000003442 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-12-30 19:52 - 2022-10-12 13:32 - 000004210 _____ C:\Windows\system32\Tasks\CCleaner Update
2022-12-29 08:56 - 2022-10-02 20:03 - 000000000 ____D C:\Program Files\DIFX
2022-12-26 15:35 - 2022-08-23 12:08 - 000000000 ____D C:\Windows\system32\SleepStudy
2022-12-26 15:00 - 2022-11-07 15:34 - 000000128 _____ C:\Users\HP\AppData\Roaming\winscp.rnd
2022-12-23 12:57 - 2022-10-12 13:32 - 000003476 _____ C:\Windows\system32\Tasks\CCleanerCrashReporting
2022-12-22 06:09 - 2022-08-23 12:08 - 000138752 ____N C:\Windows\Minidump\122222-10265-01.dmp
2022-12-19 11:05 - 2022-11-14 18:37 - 000000000 ____D C:\Users\HP\Desktop\Nowy folder (5)
2022-12-19 10:22 - 2022-08-23 14:19 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2214248504-3475596134-4089776279-1001
2022-12-19 10:22 - 2022-08-23 12:17 - 000003374 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2214248504-3475596134-4089776279-1001
2022-12-19 10:22 - 2022-08-23 12:13 - 000002418 _____ C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-12-18 11:31 - 2019-12-07 09:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-12-18 11:31 - 2019-12-07 09:14 - 000000000 ____D C:\Windows\AppReadiness
2022-12-18 11:27 - 2022-08-23 12:08 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-12-15 17:14 - 2022-08-23 18:29 - 000002370 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2022-12-15 17:14 - 2022-08-23 18:29 - 000002329 _____ C:\Users\Public\Desktop\Brave.lnk
2022-12-14 14:18 - 2022-08-23 12:13 - 000000000 ____D C:\Users\HP
2022-12-09 22:23 - 2022-08-23 12:08 - 000000000 ____D C:\Windows\system32\Drivers\wd
2022-12-04 10:25 - 2022-11-07 15:34 - 000001142 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinSCP.lnk
2022-12-04 10:25 - 2022-11-07 15:34 - 000001130 _____ C:\Users\Public\Desktop\WinSCP.lnk
2022-12-04 10:25 - 2022-11-07 15:34 - 000000000 ____D C:\Program Files (x86)\WinSCP

==================== Pliki w katalogu głównym wybranych folderów ========

2022-11-07 15:34 - 2022-12-26 15:00 - 000000128 _____ () C:\Users\HP\AppData\Roaming\winscp.rnd
2022-10-02 20:54 - 2022-10-02 20:54 - 000000368 _____ () C:\Users\HP\AppData\Local\cx.dat
2022-12-19 11:56 - 2022-12-19 12:04 - 000000128 _____ () C:\Users\HP\AppData\Local\PUTTY.RND
2022-12-04 08:21 - 2022-12-04 08:21 - 000000017 _____ () C:\Users\HP\AppData\Local\resmon.resmoncfg
2022-10-02 21:00 - 2022-10-02 21:00 - 000000032 _____ () C:\Users\HP\AppData\Local\xc.dat

==================== SigCheck ============================

(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)

==================== Koniec  FRST.txt ========================
                      
                                       
To share this paste please copy this url and send to your friends
RAW Paste Data
Recent Pastes
Ta strona używa plików cookie w celu usprawnienia i ułatwienia dostępu do serwisu oraz prowadzenia danych statystycznych. Dalsze korzystanie z tej witryny oznacza akceptację tego stanu rzeczy.
Wykorzystywanie plików Cookie
Jak wyłączyć cookies?
ROZUMIEM