Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 27-12-2021 Uruchomiony przez Dominik (administrator) LAPTOP-4BLRKC6G (HP HP Pavilion Laptop 15-eg0xxx) (08-01-2022 14:23:55) Uruchomiony z C:\Users\dompa\Downloads Załadowane profile: Dominik Platform: Microsoft Windows 10 Home Wersja 20H2 19042.1415 (X64) Język: Polski (Polska) Domyślna przeglądarka: Chrome Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <61> (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_87bd97ebe57d6f93\x64\TouchpointAnalyticsClientService.exe (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_c702a0363e0b94e9\x64\AppHelperCap.exe (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_c702a0363e0b94e9\x64\BridgeCommunication.exe (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_c702a0363e0b94e9\x64\DiagsCap.exe (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_c702a0363e0b94e9\x64\NetworkCap.exe (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_c702a0363e0b94e9\x64\SysInfoCap.exe (HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.2.11.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityHost.exe (HP Inc.) C:\Program Files\WindowsApps\AD2F1837.myHP_1.10.53217.0_x64__v10z8vjag6ke6\HP.myHP.exe (HP Inc.) C:\Program Files\WindowsApps\AD2F1837.myHP_1.10.53217.0_x64__v10z8vjag6ke6\win32\HPBackgroundProcess.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_ca344d3091c489b2\igfxCUIServiceN.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_ca344d3091c489b2\igfxEMN.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_df46a4623d1872e5\esif_uf.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorvd.inf_amd64_a5ea1b1d8db1527e\RstMwService.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_f83b924791f3a52a\OneApp.IGCC.WinService.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_14d6d9e2312c79ae\IntelCpHDCPSvc.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe (Intel Corporation -> Intel) C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_783e291a8960d8a8\AS\IAS\IntelAudioService.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (McAfee LLC.) C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy\mcafee-security.exe (McAfee LLC.) C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy\Win32\mcafee-security-ft.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation) [Brak podpisu cyfrowego] C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (Nektra S.A.) [Brak podpisu cyfrowego] C:\Program Files (x86)\IVONA\IVONA Reader\integr\OutlookExpress\IROElauncher.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvhm.inf_amd64_6f7f22b0a5610d99\Display.NvContainer\NVDisplay.Container.exe <2> (OpenVPN Inc. -> The OpenVPN Project) C:\Program Files\OpenVPN\bin\openvpnserv.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_197c8c184d9f8b39\RtkAudUService64.exe <3> (Solid Documents -> Solid Documents, LLC) C:\Program Files (x86)\SolidDocuments\SolidPDFCreator\SPC\SolidPdfServicex64.exe (Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\SECOMN64.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\tv_w32.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\tv_x64.exe (Unified Intents AB -> Unified Intents AB) C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508240 2015-08-05] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3426560 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [AdobeCS5.5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [1523360 2011-01-12] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [105280 2020-02-23] (Elaborate Bytes AG -> Elaborate Bytes AG) HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-09-27] (Oracle America, Inc. -> Oracle Corporation) HKU\S-1-5-21-3133839560-3129128905-3125803066-1001\...\Run: [IVONA Reader] => C:\Program Files (x86)\IVONA\IVONA Reader\IVONA Reader.exe [1524584 2010-11-01] (IVO Software Sp. z o.o. -> IVO Software Sp. z o.o.) [Brak podpisu cyfrowego] HKU\S-1-5-21-3133839560-3129128905-3125803066-1001\...\Run: [IROElauncher] => C:\Program Files (x86)\IVONA\IVONA Reader\integr\OutlookExpress\IROElauncher.exe [94720 2008-09-26] (Nektra S.A.) [Brak podpisu cyfrowego] HKU\S-1-5-21-3133839560-3129128905-3125803066-1001\...\Run: [Shortcutor] => "C:\Program Files\Coode Software\Shortcutor\Shortcutor.exe" (Brak pliku) HKU\S-1-5-21-3133839560-3129128905-3125803066-1001\...\Run: [Unified Remote V3] => C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe [3245752 2021-11-22] (Unified Intents AB -> Unified Intents AB) HKU\S-1-5-21-3133839560-3129128905-3125803066-1001\...\Policies\Explorer: [] HKU\S-1-5-21-3133839560-3129128905-3125803066-1001\...\MountPoints2: {47e7f30d-51f6-11eb-a527-83158df69c8d} - "D:\setup.exe" HKU\S-1-5-21-3133839560-3129128905-3125803066-1001\...\MountPoints2: {786fe6d6-573e-11eb-a534-bc110e2e87a0} - "D:\AutoRun.exe" HKLM\...\Windows x64\Print Processors\HP1100PrintProc: C:\Windows\System32\spool\prtprocs\x64\HP1100PP.DLL [74240 2012-08-31] () [Brak podpisu cyfrowego] HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [109288 2018-10-12] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation) HKLM\...\Print\Monitors\HP1100LM: HP1100LM.DLL HKLM\...\Print\Monitors\Solid PDF Port Monitor: C:\windows\system32\solidlocalmon.dll [30968 2015-03-03] (Solid Documents -> ) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\97.0.4692.71\Installer\chrmstp.exe [2022-01-05] (Google LLC -> Google LLC) HKLM\Software\Microsoft\Active Setup\Installed Components: [{BC880EA3-5D52-A6F4-7018-664DEC485F43}] -> reg add HKCU\Software\Microsoft\Windows\CurrentVersion\Run /f /v OPENVPN-GUI /t REG_SZ /d "C:\Program Files\OpenVPN\bin\openvpn-gui.exe" ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {102A204E-F110-4CC7-ABE0-54B60CB34D29} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3426560 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {11944C88-DCBD-4727-BD9B-F45C078EC7D8} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BatteryStatusTest => cmd /c start hpdiags://BatteryStatusTest Task: {1EE5CC73-2AE1-49C0-B8DB-5CCE52C4A706} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BatteryStatusError => cmd /c start hpdiags://BatteryStatusError Task: {205A6085-664F-42AD-965C-6F87A6154A5F} - System32\Tasks\Hewlett-Packard\HP Diagnostics\SmartCheckTest => cmd /c start hpdiags://SmartCheckTest Task: {34DA98A4-5F69-4AFC-B765-B47AC7D28692} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BHM1 => cmd /c start hpdiags://BHM1 Task: {3B3D366D-7A26-4734-BB88-A8F7102D94D8} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-08-03] (NVIDIA Corporation -> NVIDIA Corporation) Task: {3CBAE7D6-219B-47B7-AE63-7006376DD3F7} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.) Task: {4BBF289E-08E6-41AE-B63A-61F6B7559C74} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3293168 2020-08-03] (NVIDIA Corporation -> NVIDIA Corporation) Task: {50CB5196-C4DE-4572-A045-E86FD54DACAF} - System32\Tasks\Hewlett-Packard\HP Diagnostics\ABO => cmd /c start hpdiags://ABO Task: {5E0B997B-22CE-49DE-BDC5-C56F9EBB6D2A} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-08-03] (NVIDIA Corporation -> NVIDIA Corporation) Task: {5E4C4358-623D-4532-9F56-0B5C23D82BF4} - System32\Tasks\HP\Consent Manager Launcher => sc start hptouchpointanalyticsservice Task: {65C94543-EFED-4013-9EF5-734BC45F7B4C} - System32\Tasks\RtkAudUService64_BG => C:\windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_197c8c184d9f8b39\RtkAudUService64.exe [1263160 2021-06-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {671CA185-AC5D-4CB5-94A2-66199F974D77} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-05] (Google LLC -> Google LLC) Task: {73A005BE-35DD-4DFC-88B4-306BCBEC04AB} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [257928 2021-01-14] (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {76E2DA0C-6DE4-4C09-AD1F-98819D051D1A} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [850928 2020-08-03] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {7D5246F4-4F0E-47D1-9C40-124992F564FC} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646456 2020-08-03] (NVIDIA Corporation -> NVIDIA Corporation) Task: {7E1ED987-09EF-48BA-9B33-DF0429A0301F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-05] (Google LLC -> Google LLC) Task: {8277D735-8133-4AF9-910D-F92F701B07A6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [136368 2021-12-14] (HP Inc. -> HP Inc.) Task: {849DA8EB-3E34-4702-9DD0-A090277784AA} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-08-03] (NVIDIA Corporation -> NVIDIA Corporation) Task: {8B5F4B2C-CA6C-4EA0-8484-49CE5E3187D8} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1144496 2021-12-14] (HP Inc. -> HP Inc.) Task: {96FB590E-E395-48DD-AC65-359733C5F951} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1144496 2021-12-14] (HP Inc. -> HP Inc.) Task: {9A33C31E-271E-4A76-B77B-0C952C7A86FB} - System32\Tasks\MicrosoftEdgeShadowStackRollbackTask => C:\Program Files (x86)\Microsoft\Edge\Application\97.0.1072.55\Installer\setup.exe [3118472 2022-01-07] (Microsoft Corporation -> Microsoft Corporation) Task: {9B7D0AA9-AF08-420E-8939-8145EC6518B2} - System32\Tasks\Hewlett-Packard\HP Diagnostics\ShowUI => cmd /c start hpdiags: Task: {A18F669E-710D-4F8D-B60A-5BB6EE4DAF20} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BHM2 => cmd /c start hpdiags://BHM2 Task: {A9985704-EF71-4F13-9E3C-F88C9A870849} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-08-03] (NVIDIA Corporation -> NVIDIA Corporation) Task: {A99D47B2-113F-40DB-A04E-FD082AE8422E} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-08-03] (NVIDIA Corporation -> NVIDIA Corporation) Task: {AAB096E1-B8B8-4D47-91C7-46E131CDCBA2} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-08-03] (NVIDIA Corporation -> NVIDIA Corporation) Task: {C05B56C3-EBCD-4E48-90DB-E070C9D6E5FE} - System32\Tasks\Hewlett-Packard\HP Diagnostics\LaunchUI => cmd /c start hpdiags://LaunchUI Task: {CD327FFF-FC1C-4005-B4E0-D0A467CE155A} - System32\Tasks\Hewlett-Packard\HP Diagnostics\SmartCheckError => cmd /c start hpdiags://SmartCheckError Task: {D6DE4E48-5E1D-4B4F-8FB1-4BAEF6B4AAE4} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BCF => cmd /c start hpdiags://BCF Task: {DEBA0C92-8984-4D87-93E4-A6BA27148558} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [850928 2020-08-03] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log Task: {E718D044-8F6E-48E7-953D-85D8F0FF19E2} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3133839560-3129128905-3125803066-500 => C:\Users\dompa\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Brak pliku) Task: {F0E70F72-3088-48BC-88D8-FC1756143D05} - System32\Tasks\AdobeAAMUpdater-1.0-LAPTOP-4BLRKC6G-Dominik => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508240 2015-08-05] (Adobe Systems Incorporated -> Adobe Systems Incorporated) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.) Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{ff518672-2120-460c-a844-aab33c88f172}: [DhcpNameServer] 192.168.0.1 Edge: ======= Edge Profile: C:\Users\dompa\AppData\Local\Microsoft\Edge\User Data\Default [2021-12-30] Edge Extension: (MyJDownloader Browser Extension) - C:\Users\dompa\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fbcohnmimjicjdomonkcbcpbpnhggkip [2021-10-23] FireFox: ======== FF HKLM-x32\...\Firefox\Extensions: [quickprint@hp.com] - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\QPExtension FF Extension: (SmartPrintButton) - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\QPExtension [2011-01-26] [Przestarzałe] [Brak podpisu cyfrowego] FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll [2021-01-14] (Adobe Systems Incorporated -> ) FF Plugin: @java.com/DTPlugin,version=11.311.2 -> C:\Program Files\Java\jre1.8.0_311\bin\dtplugin\npDeployJava1.dll [2021-10-25] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.311.2 -> C:\Program Files\Java\jre1.8.0_311\bin\plugin2\npjp2.dll [2021-10-25] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-10-05] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-08-06] (Adobe Systems Incorporated -> Adobe Systems) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll [2021-01-14] (Adobe Systems Incorporated -> ) FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw.dll [2013-12-05] (Adobe Systems, Inc.) [Brak podpisu cyfrowego] FF Plugin-x32: @java.com/DTPlugin,version=11.311.2 -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\dtplugin\npDeployJava1.dll [2021-10-25] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.311.2 -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\plugin2\npjp2.dll [2021-10-25] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-08-06] (Adobe Systems Incorporated -> Adobe Systems) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\dompa\AppData\Local\Google\Chrome\User Data\Default [2022-01-08] CHR Extension: (Prezentacje) - C:\Users\dompa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-01-05] CHR Extension: (Dokumenty) - C:\Users\dompa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-01-05] CHR Extension: (Dysk Google) - C:\Users\dompa\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-01-05] CHR Extension: (YouTube) - C:\Users\dompa\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-01-05] CHR Extension: (MyJDownloader Browser Extension) - C:\Users\dompa\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbcohnmimjicjdomonkcbcpbpnhggkip [2021-06-28] CHR Extension: (Arkusze) - C:\Users\dompa\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-01-05] CHR Extension: (Dokumenty Google offline) - C:\Users\dompa\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-11-30] CHR Extension: (Usługa zwrotu gotówki LetyShops) - C:\Users\dompa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lphicbbhfmllgmomkkhjfkpbdlncafbn [2022-01-01] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\dompa\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR Extension: (Gmail) - C:\Users\dompa\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-01-05] CHR Profile: C:\Users\dompa\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-10-01] CHR Profile: C:\Users\dompa\AppData\Local\Google\Chrome\User Data\Profile 1 [2021-11-03] CHR Extension: (Prezentacje) - C:\Users\dompa\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-10-01] CHR Extension: (Dokumenty) - C:\Users\dompa\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2021-10-01] CHR Extension: (Dysk Google) - C:\Users\dompa\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-10-01] CHR Extension: (YouTube) - C:\Users\dompa\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-10-01] CHR Extension: (Adobe Acrobat) - C:\Users\dompa\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-10-23] CHR Extension: (Arkusze) - C:\Users\dompa\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-10-01] CHR Extension: (Dokumenty Google offline) - C:\Users\dompa\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-10-23] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\dompa\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-10-01] CHR Extension: (Gmail) - C:\Users\dompa\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-10-01] CHR Profile: C:\Users\dompa\AppData\Local\Google\Chrome\User Data\System Profile [2021-10-01] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.) S3 AdobeFlashPlayerUpdateSvc; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [257928 2021-01-14] (Adobe Systems Incorporated -> Adobe Systems Incorporated) R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3849472 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3617024 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated) S2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [31192 2014-02-07] (Autodesk, Inc -> Autodesk, Inc.) R2 HPAppHelperCap; C:\windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_c702a0363e0b94e9\x64\AppHelperCap.exe [755720 2021-11-05] (HP Inc. -> HP Inc.) R2 HPDiagsCap; C:\windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_c702a0363e0b94e9\x64\DiagsCap.exe [754168 2021-11-05] (HP Inc. -> HP Inc.) R2 HPNetworkCap; C:\windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_c702a0363e0b94e9\x64\NetworkCap.exe [751088 2021-11-05] (HP Inc. -> HP Inc.) S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1149480 2018-06-07] (HP Inc. -> HP) R2 HPSysInfoCap; C:\windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_c702a0363e0b94e9\x64\SysInfoCap.exe [754680 2021-11-05] (HP Inc. -> HP Inc.) R2 HpTouchpointAnalyticsService; C:\windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_87bd97ebe57d6f93\x64\TouchpointAnalyticsClientService.exe [494688 2021-09-24] (HP Inc. -> HP Inc.) R2 IntelAudioService; C:\windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_783e291a8960d8a8\\AS\\IAS\\IntelAudioService.exe [539808 2021-06-25] (Intel Corporation -> Intel) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7848632 2022-01-08] (Malwarebytes Inc -> Malwarebytes) R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [Brak podpisu cyfrowego] R2 OpenVPNServiceInteractive; C:\Program Files\OpenVPN\bin\openvpnserv.exe [64176 2021-10-15] (OpenVPN Inc. -> The OpenVPN Project) R2 Pml Driver HPZ12; C:\windows\system32\HPZipm12.dll [69864 2018-10-12] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard) R2 SPDFCreatorReadSpool; C:\Program Files (x86)\SolidDocuments\SolidPDFCreator\SPC\SolidPdfServicex64.exe [262904 2015-03-03] (Solid Documents -> Solid Documents, LLC) S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [Brak podpisu cyfrowego] R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [14545704 2021-12-17] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe [2876152 2021-12-17] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe [128360 2021-12-17] (Microsoft Windows Publisher -> Microsoft Corporation) S2 HP Comm Recover; "C:\Program Files\HPCommRecovery\HPCommRecovery.exe" [X] R2 NVDisplay.ContainerLocalSystem; C:\windows\System32\DriverStore\FileRepository\nvhm.inf_amd64_6f7f22b0a5610d99\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\windows\System32\DriverStore\FileRepository\nvhm.inf_amd64_6f7f22b0a5610d99\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem S4 uhssvc; "C:\Program Files\Microsoft Update Health Tools\uhssvc.exe" [X] ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 dg_ssudbus; C:\windows\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 dot4; C:\windows\system32\DRIVERS\Dot4.sys [146856 2015-03-10] (BoiseTest -> Windows (R) Win 7 DDK provider) S3 Dot4Print; C:\windows\System32\drivers\Dot4Prt.sys [21928 2015-03-10] (BoiseTest -> Windows (R) Win 7 DDK provider) S3 dot4usb; C:\windows\system32\DRIVERS\dot4usb.sys [43944 2015-03-10] (BoiseTest -> Microsoft Corporation) R1 ElbyCDIO; C:\windows\System32\Drivers\ElbyCDIO.sys [42616 2017-05-14] (Microsoft Windows Hardware Compatibility Publisher -> Elaborate Bytes AG) R1 ESProtectionDriver; C:\windows\system32\drivers\mbae64.sys [160176 2022-01-08] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 HPCustomCapDriver; C:\windows\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_a955fa431e522f5e\x64\hpcustomcapdriver.sys [25592 2021-09-16] (HP Inc. -> HP Inc.) R3 iaLPSS2_GPIO2_TGL; C:\windows\System32\DriverStore\FileRepository\ialpss2_gpio2_tgl.inf_amd64_c330c09d72f3e083\iaLPSS2_GPIO2_TGL.sys [128664 2021-01-27] (Intel Corporation -> Intel Corporation) R3 iaLPSS2_I2C_TGL; C:\windows\System32\DriverStore\FileRepository\ialpss2_i2c_tgl.inf_amd64_312c3014729186bd\iaLPSS2_I2C_TGL.sys [201376 2021-01-27] (Intel Corporation -> Intel Corporation) R3 iaLPSS2_SPI_TGL; C:\windows\System32\DriverStore\FileRepository\ialpss2_spi_tgl.inf_amd64_dae60954c36e87c0\iaLPSS2_SPI_TGL.sys [155808 2021-01-27] (Intel Corporation -> Intel Corporation) R3 iaLPSS2_UART2_TGL; C:\windows\System32\DriverStore\FileRepository\ialpss2_uart2_tgl.inf_amd64_0b4251313af34984\iaLPSS2_UART2_TGL.sys [310432 2021-01-27] (Intel Corporation -> Intel Corporation) R0 iaStorVD; C:\windows\System32\drivers\iaStorVD.sys [1544912 2021-08-26] (Intel Corporation -> Intel Corporation) S3 IntcBTAu; C:\windows\System32\DriverStore\FileRepository\intcbtau.inf_amd64_919d03cd3d4592af\IntcBTAu.sys [811400 2020-12-17] ((PREPRODUCTION USE ONLY) Smart Sound Technology -> Intel(R) Corporation) S3 IntcUSB; C:\windows\System32\DriverStore\FileRepository\intcusb.inf_amd64_916a433176a06294\IntcUSB.sys [1664392 2020-12-17] ((PREPRODUCTION USE ONLY) Smart Sound Technology -> Intel(R) Corporation) R3 IntelGNA; C:\windows\System32\DriverStore\FileRepository\gna.inf_amd64_689d3d5fefeef458\gna.sys [84880 2020-11-05] (Gaussian Mixture Models and Neural Networks Accelerator -> Intel Corporation) R2 MBAMChameleon; C:\windows\System32\Drivers\MbamChameleon.sys [210352 2022-01-08] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\windows\System32\DRIVERS\MbamElam.sys [19912 2022-01-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\windows\System32\DRIVERS\farflt.sys [193448 2022-01-08] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMProtection; C:\windows\system32\DRIVERS\mbam.sys [69040 2022-01-08] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\windows\System32\Drivers\mbamswissarmy.sys [248992 2022-01-08] (Malwarebytes Inc -> Malwarebytes) R3 MBAMWebProtection; C:\windows\system32\DRIVERS\mwac.sys [149424 2022-01-08] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S3 mvusbews; C:\windows\System32\Drivers\mvusbews.sys [20480 2012-09-26] (Microsoft Windows Hardware Compatibility Publisher -> Marvell Semiconductor, Inc.) S3 ssudmdm; C:\windows\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R3 tap0901; C:\windows\System32\drivers\tap0901.sys [39920 2021-10-17] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project) R3 uvhid; C:\windows\System32\drivers\uvhid.sys [29720 2021-11-20] (Microsoft Windows Hardware Compatibility Publisher -> ) R3 VClone; C:\windows\System32\drivers\VClone.sys [44544 2020-02-22] (Microsoft Windows Hardware Compatibility Publisher -> Elaborate Bytes AG) S3 WdBoot; C:\windows\system32\drivers\wd\WdBoot.sys [48536 2021-12-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\windows\system32\drivers\wd\WdFilter.sys [435432 2021-12-17] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\windows\System32\drivers\wd\WdNisDrv.sys [86248 2021-12-17] (Microsoft Windows -> Microsoft Corporation) R3 wintun; C:\windows\System32\drivers\wintun.sys [38176 2021-10-17] (WireGuard LLC -> WireGuard LLC) R3 WirelessButtonDriver64; C:\windows\System32\drivers\WirelessButtonDriver64.sys [37280 2021-11-23] (HP Inc. -> HP) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Trzy miesiące (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2022-01-08 14:16 - 2022-01-08 14:16 - 005659583 _____ (Swearware) C:\Users\dompa\Downloads\ComboFix.exe 2022-01-08 13:53 - 2022-01-08 13:54 - 204896952 _____ (Malwarebytes) C:\Users\dompa\Downloads\MBSetup-0076911.0076911-4.4.10.144 (3).exe 2022-01-08 13:53 - 2022-01-08 13:53 - 008540344 _____ (Malwarebytes) C:\Users\dompa\Downloads\AdwCleaner (2).exe 2022-01-08 13:46 - 2022-01-08 13:46 - 000193448 _____ (Malwarebytes) C:\windows\system32\Drivers\farflt.sys 2022-01-08 13:46 - 2022-01-08 13:46 - 000149424 _____ (Malwarebytes) C:\windows\system32\Drivers\mwac.sys 2022-01-08 13:46 - 2022-01-08 13:46 - 000069040 _____ (Malwarebytes) C:\windows\system32\Drivers\mbam.sys 2022-01-08 13:46 - 2022-01-08 13:46 - 000000000 ____D C:\Users\dompa\AppData\LocalLow\IGDump 2022-01-08 13:34 - 2022-01-08 13:34 - 204896952 _____ (Malwarebytes) C:\Users\dompa\Downloads\MBSetup-0076911.0076911-4.4.10.144 (2).exe 2022-01-08 13:33 - 2022-01-08 13:33 - 008540344 _____ (Malwarebytes) C:\Users\dompa\Downloads\AdwCleaner (1).exe 2022-01-08 13:30 - 2022-01-08 13:30 - 000248992 _____ (Malwarebytes) C:\windows\system32\Drivers\mbamswissarmy.sys 2022-01-08 13:30 - 2022-01-08 13:30 - 000210352 _____ (Malwarebytes) C:\windows\system32\Drivers\MbamChameleon.sys 2022-01-08 13:30 - 2022-01-08 13:30 - 000002040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2022-01-08 13:30 - 2022-01-08 13:30 - 000002028 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2022-01-08 13:30 - 2022-01-08 13:30 - 000000000 ____D C:\Users\dompa\AppData\Local\mbam 2022-01-08 13:30 - 2022-01-08 13:29 - 000160176 _____ (Malwarebytes) C:\windows\system32\Drivers\mbae64.sys 2022-01-08 13:30 - 2022-01-08 13:29 - 000019912 _____ (Malwarebytes) C:\windows\system32\Drivers\MbamElam.sys 2022-01-08 13:29 - 2022-01-08 13:31 - 000000000 ____D C:\AdwCleaner 2022-01-08 13:29 - 2022-01-08 13:29 - 204896952 _____ (Malwarebytes) C:\Users\dompa\Downloads\MBSetup-0076911.0076911-4.4.10.144.exe 2022-01-08 13:29 - 2022-01-08 13:29 - 204896952 _____ (Malwarebytes) C:\Users\dompa\Downloads\MBSetup-0076911.0076911-4.4.10.144 (1).exe 2022-01-08 13:29 - 2022-01-08 13:29 - 008540344 _____ (Malwarebytes) C:\Users\dompa\Downloads\AdwCleaner.exe 2022-01-08 13:29 - 2022-01-08 13:29 - 000000000 ____D C:\ProgramData\Malwarebytes 2022-01-08 13:29 - 2022-01-08 13:29 - 000000000 ____D C:\Program Files\Malwarebytes 2022-01-08 13:21 - 2022-01-08 14:24 - 000033953 _____ C:\Users\dompa\Downloads\FRST.txt 2022-01-08 13:21 - 2022-01-08 13:21 - 000000000 ____D C:\Users\dompa\Downloads\FRST-OlderVersion 2022-01-08 13:20 - 2022-01-08 14:24 - 000000000 ____D C:\FRST 2022-01-08 13:20 - 2022-01-08 13:21 - 002311168 _____ (Farbar) C:\Users\dompa\Downloads\FRST64.exe 2022-01-08 13:10 - 2021-01-29 17:12 - 000799441 _____ C:\Users\dompa\Desktop\Kolos Stych.pdf 2022-01-08 13:10 - 2021-01-28 18:19 - 001204303 _____ C:\Users\dompa\Desktop\Administracja kolokwium.pdf 2022-01-08 13:10 - 2021-01-25 21:03 - 000037573 _____ C:\Users\dompa\Desktop\administracja-kolos.pdf 2022-01-06 17:41 - 2022-01-06 17:41 - 002392500 _____ C:\Users\dompa\Downloads\2020 FEDIAF Fact-Figures (2).pdf 2022-01-05 21:44 - 2022-01-07 22:28 - 000000000 ____D C:\Users\dompa\Desktop\Nowy folder 2022-01-05 20:04 - 2022-01-05 20:04 - 000219138 _____ C:\Users\dompa\Downloads\Postępownie egzekucyjne w administracji (1).pptx 2022-01-05 20:04 - 2022-01-05 20:04 - 000217490 _____ C:\Users\dompa\Downloads\Postępownie egzekucyjne w administracji (2).pptx 2022-01-05 20:04 - 2022-01-05 20:04 - 000217487 _____ C:\Users\dompa\Downloads\Postępownie egzekucyjne w administracji (3).pptx 2022-01-05 20:03 - 2022-01-05 20:03 - 000977232 _____ C:\Users\dompa\Downloads\OneDrive_1_5.01.2022.zip 2022-01-04 21:36 - 2022-01-04 21:36 - 001530698 _____ C:\Users\dompa\Downloads\Harlan Coben - Schronienie (Mickey Bolitar 01) (epub).zip 2022-01-04 21:27 - 2022-01-04 21:28 - 003354373 _____ C:\Users\dompa\Downloads\Harlan Coben - Schronienie.mobi 2022-01-04 19:00 - 2021-05-28 14:35 - 001396592 _____ C:\Users\dompa\Desktop\Pytania administracja.pdf 2022-01-02 22:13 - 2022-01-02 22:13 - 002392500 _____ C:\Users\dompa\Downloads\2020 FEDIAF Fact-Figures (1).pdf 2022-01-02 22:13 - 2022-01-02 22:13 - 000450832 _____ C:\Users\dompa\Desktop\dokument294753.pdf 2022-01-02 22:13 - 2022-01-02 22:13 - 000294757 _____ C:\Users\dompa\Desktop\Raport roczny GLW - 2019.pdf 2022-01-02 18:24 - 2022-01-02 18:24 - 002392500 _____ C:\Users\dompa\Downloads\2020 FEDIAF Fact-Figures.pdf 2022-01-02 18:15 - 2022-01-02 18:15 - 000412297 _____ C:\Users\dompa\Downloads\Zwierzęta w polskich domach.pdf 2022-01-02 14:27 - 2022-01-02 14:27 - 000294757 _____ C:\Users\dompa\Downloads\Raport roczny GLW - 2019.pdf 2022-01-01 23:55 - 2022-01-01 23:56 - 007759506 _____ C:\Users\dompa\Downloads\Watch Dogs Poradnik GRY-OnLine.pdf 2021-12-30 20:47 - 2021-12-30 20:47 - 000204260 _____ C:\Users\dompa\Downloads\lame_enc.zip 2021-12-30 20:47 - 2021-12-30 20:47 - 000000000 ____D C:\Users\dompa\Downloads\lame_enc 2021-12-30 20:27 - 2021-12-30 20:27 - 000000000 ____D C:\Users\dompa\Desktop\AudacityPortable 2021-12-29 19:30 - 2021-12-29 19:37 - 3414662060 _____ C:\Users\dompa\Downloads\Office.2019.ProPlusPL.x86.x64.rar 2021-12-28 22:57 - 2021-12-28 22:57 - 000098807 _____ C:\Users\dompa\Downloads\received_385483943328680.jpeg 2021-12-28 10:08 - 2021-12-28 10:08 - 001929355 _____ C:\Users\dompa\Downloads\Decentralizacja2.pdf 2021-12-28 10:08 - 2021-12-28 10:08 - 001155646 _____ C:\Users\dompa\Downloads\Góralczyk-kierownictwo.pdf 2021-12-28 10:08 - 2021-12-28 10:08 - 000595801 _____ C:\Users\dompa\Downloads\Koordynacja-w-prawie-administracyjnym-rafal-stankiewicz-fragment.pdf 2021-12-28 10:08 - 2021-12-28 10:08 - 000192365 _____ C:\Users\dompa\Downloads\Decentralizacja1.pdf 2021-12-27 09:40 - 2021-12-27 09:40 - 000495553 _____ C:\Users\dompa\Downloads\Owiadczenieoilociosbzamieszkujcychwlokalu.pdf 2021-12-26 22:14 - 2021-12-26 22:14 - 001540952 _____ C:\Users\dompa\Downloads\Iga Daniszewska - Szpilki z Wall Street.pdf 2021-12-26 22:12 - 2021-12-26 22:12 - 000368591 _____ C:\Users\dompa\Downloads\A B C - Agatha Christie.epub 2021-12-26 22:06 - 2021-12-26 22:06 - 000299722 _____ C:\Users\dompa\Downloads\A.B.C. - Agata Christie.mobi 2021-12-26 20:57 - 2021-12-26 20:57 - 000000000 ____D C:\Users\dompa\Desktop\VeraIcon 2021-12-26 12:41 - 2021-12-26 12:41 - 000001178 _____ C:\Users\Public\Desktop\Unified Remote.lnk 2021-12-26 12:41 - 2021-11-20 13:23 - 000029720 _____ C:\windows\system32\Drivers\uvhid.sys 2021-12-26 12:40 - 2022-01-07 20:02 - 000000000 ____D C:\ProgramData\Unified Remote 2021-12-26 12:40 - 2021-12-26 12:41 - 000000000 ____D C:\Program Files (x86)\Unified Remote 3 2021-12-26 12:40 - 2021-12-26 12:40 - 035048496 _____ (Unified Intents AB ) C:\Users\dompa\Downloads\ServerSetup-3.11.0.2483.exe 2021-12-26 12:40 - 2021-12-26 12:40 - 000000000 ____D C:\Users\dompa\Documents\Unified Remote 2021-12-26 12:40 - 2021-12-26 12:40 - 000000000 ____D C:\Users\dompa\AppData\Roaming\Unified Remote 2021-12-23 19:22 - 2021-12-23 19:22 - 000493608 _____ C:\Users\dompa\Downloads\RegulaminustalaniaopatorazrozliczaniakosztwgospodarkizasobamimieszkaniowymiilokalamiuytkowymiwSMWidok3939wKrakowieobowizujcyod1.01.2020r..pdf 2021-12-22 20:32 - 2021-12-22 20:32 - 000000233 _____ C:\Users\dompa\Desktop\Watch_Dogs.url 2021-12-20 21:27 - 2021-12-20 21:27 - 004278073 _____ C:\Users\dompa\Downloads\Katarzyna Bester - Romans pod choinkę.pdf 2021-12-20 21:27 - 2021-12-20 21:27 - 002267304 _____ C:\Users\dompa\Downloads\Romans pod choinkę - Katarzyna Bester.epub 2021-12-19 22:49 - 2021-12-19 22:49 - 000117784 _____ C:\Users\dompa\Downloads\Statystyka- postów.pages 2021-12-19 22:49 - 2021-12-19 22:49 - 000117784 _____ C:\Users\dompa\Downloads\Statystyka- postów (1).pages 2021-12-19 16:15 - 2021-12-19 16:15 - 000106122 _____ C:\Users\dompa\Downloads\23.10.2021-WYKŁAD-1.pdf 2021-12-19 16:15 - 2021-12-19 16:15 - 000095154 _____ C:\Users\dompa\Downloads\24.10.2021-WYKŁAD-2.pdf 2021-12-19 13:25 - 2021-12-19 13:25 - 002825063 _____ C:\Users\dompa\Downloads\MIevMniGjpnNPC1MYM9pfdPI8WMmK4Ah.mp4 2021-12-18 21:08 - 2013-10-18 12:32 - 000000000 ____D C:\Users\dompa\Desktop\Sniper Ghost Warrior 2 PL + Crack 2021-12-18 00:52 - 2021-12-18 21:11 - 000000000 ____D C:\Users\dompa\Downloads\Sni4er Elite 4 v1 5 0-Elamigos -darkw 2021-12-17 23:45 - 2021-12-17 23:45 - 000000000 ____D C:\windows\SystemTemp 2021-12-17 20:28 - 2021-12-17 20:28 - 000272384 _____ C:\windows\system32\TpmTool.exe 2021-12-17 20:28 - 2021-12-17 20:28 - 000223744 _____ C:\windows\SysWOW64\TpmTool.exe 2021-12-17 20:28 - 2021-12-17 20:28 - 000162816 _____ C:\windows\system32\DataStoreCacheDumpTool.exe 2021-12-17 20:28 - 2021-12-17 20:28 - 000011979 _____ C:\windows\system32\DrtmAuthTxt.wim 2021-12-17 20:22 - 2021-12-17 20:22 - 000000000 ___HD C:\$WinREAgent 2021-12-15 19:28 - 2021-12-15 19:28 - 000001984 _____ C:\Users\dompa\Downloads\meetingAttendanceReport(General).csv 2021-12-14 19:02 - 2021-12-14 19:02 - 000000000 ____D C:\Users\dompa\AppData\Local\My Games 2021-12-12 23:28 - 2021-12-12 23:28 - 000000000 ____D C:\ProgramData\Ubisoft 2021-12-12 23:27 - 2022-01-07 23:22 - 000000000 ____D C:\Users\dompa\AppData\Local\Ubisoft Game Launcher 2021-12-12 23:27 - 2021-12-12 23:27 - 000001334 _____ C:\Users\dompa\Desktop\Ubisoft Connect.lnk 2021-12-12 23:27 - 2021-12-12 23:27 - 000000000 ____D C:\Users\dompa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft 2021-12-12 23:27 - 2021-12-12 23:27 - 000000000 ____D C:\Program Files (x86)\Ubisoft 2021-12-12 23:25 - 2021-12-12 23:25 - 229003008 _____ (Ubisoft) C:\Users\dompa\Downloads\UbisoftConnectInstaller.exe 2021-12-12 17:17 - 2022-01-04 20:43 - 000000000 ____D C:\Users\dompa\Desktop\Angielski 2021-12-12 17:12 - 2021-12-12 17:12 - 000000000 ____D C:\Users\dompa\AppData\Local\SolidDocuments 2021-12-12 16:27 - 2021-12-12 16:28 - 000002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk 2021-12-03 18:36 - 2021-12-03 18:36 - 000732720 _____ C:\Users\dompa\Downloads\egazmin 0.wyniki.pdf 2021-11-24 23:03 - 2021-11-24 23:03 - 000000000 ____D C:\Users\dompa\Documents\Any Audio Converter 2021-11-24 23:01 - 2021-11-24 23:03 - 000000000 ____D C:\Users\dompa\AppData\Roaming\Anvsoft 2021-11-24 23:01 - 2021-11-24 23:01 - 000001283 _____ C:\Users\dompa\Desktop\Any Audio Converter.lnk 2021-11-24 23:01 - 2021-11-24 23:01 - 000000000 ____D C:\Program Files (x86)\Anvsoft 2021-11-24 22:57 - 2021-11-24 22:57 - 000000000 ____D C:\Users\dompa\AppData\Local\FreemakeVideoConverter 2021-11-24 22:56 - 2021-11-24 23:00 - 000000000 ____D C:\ProgramData\Freemake 2021-11-24 22:56 - 2021-11-24 23:00 - 000000000 ____D C:\Program Files (x86)\Freemake 2021-11-24 22:56 - 2021-11-24 22:57 - 000000000 ____D C:\Users\dompa\Documents\Freemake 2021-11-24 22:51 - 2021-11-24 22:53 - 000000000 ____D C:\Users\dompa\AppData\Roaming\Free Media Converter 2021-11-24 22:51 - 2021-11-24 22:51 - 000000000 ____D C:\Users\dompa\Documents\FreeMediaConverter.org 2021-11-24 22:50 - 2021-11-24 22:50 - 000000000 ____D C:\windows\SysWOW64\RelevantKnowledge Setup 2021-11-24 20:11 - 2021-11-24 20:11 - 1918807020 _____ C:\windows\MEMORY.DMP 2021-11-24 20:11 - 2021-11-24 20:11 - 007378892 _____ C:\windows\Minidump\112421-16703-01.dmp 2021-11-24 20:00 - 2021-11-24 20:00 - 000641985 _____ C:\Users\dompa\Downloads\WYKLAD-2 (1).odt 2021-11-23 17:22 - 2021-11-23 17:22 - 000000000 ____D C:\ProgramData\DigitalWave.ApplicationUpdater_files 2021-11-23 17:21 - 2021-11-24 22:47 - 000000000 ____D C:\Users\dompa\AppData\Roaming\DVDVideoSoft 2021-11-23 17:21 - 2021-11-23 17:21 - 000000000 ____D C:\Program Files (x86)\FreeCodecPack 2021-11-23 13:24 - 2021-11-23 13:24 - 000037280 _____ (HP) C:\windows\system32\Drivers\WirelessButtonDriver64.sys 2021-11-21 08:06 - 2022-01-07 22:10 - 000004782 _____ C:\windows\system32\Tasks\MicrosoftEdgeShadowStackRollbackTask 2021-11-19 20:11 - 2021-10-08 11:00 - 000160376 _____ (Samsung Electronics Co., Ltd.) C:\windows\system32\Drivers\ssudbus2.sys 2021-11-18 22:07 - 2021-11-18 22:07 - 000065880 _____ C:\Users\dompa\Downloads\Lista_stacji_sprzedajacych_Adblue062018.xlsx 2021-11-14 20:56 - 2021-11-16 20:03 - 000000000 ____D C:\Users\dompa\Documents\Euro Truck Simulator 2 2021-11-14 20:56 - 2021-11-14 20:56 - 000001420 _____ C:\Users\Public\Desktop\Euro Truck Simulator 2.lnk 2021-11-14 20:56 - 2021-11-14 20:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Euro Truck Simulator 2 2021-11-14 20:55 - 2021-11-14 20:56 - 000000000 ____D C:\Program Files (x86)\Euro Truck Simulator 2 2021-11-14 20:47 - 2021-11-14 20:47 - 000896711 _____ C:\Users\dompa\Downloads\WYKLAD-2-PDF.pdf 2021-11-12 22:55 - 2021-11-12 22:55 - 000000000 ____D C:\Users\dompa\ansel 2021-11-12 20:20 - 2021-11-12 20:20 - 000001579 _____ C:\Users\Public\Desktop\Tom Clancy's Ghost Recon - Wildlands.lnk 2021-11-12 20:19 - 2021-11-12 20:19 - 000000000 ____D C:\Users\dompa\.gstreamer-0.10 2021-11-11 22:37 - 2021-12-12 23:13 - 000000000 ____D C:\Users\dompa\Desktop\ebook 2021-11-11 22:26 - 2021-11-11 22:26 - 000060928 _____ C:\windows\system32\runexehelper.exe 2021-11-11 21:44 - 2021-12-28 16:28 - 000000000 ____D C:\Users\dompa\Desktop\Dino 2021-11-11 21:44 - 2021-11-11 21:44 - 000000000 ____D C:\Users\dompa\Desktop\Wesele i ślub 2021-11-09 22:00 - 2021-11-09 22:00 - 000001157 _____ C:\Users\dompa\Desktop\Movavi Video Editor Plus 2021.lnk 2021-11-09 08:39 - 2021-11-09 08:39 - 000001153 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk 2021-11-09 08:39 - 2021-11-09 08:39 - 000000000 ____D C:\Program Files\PCHealthCheck 2021-11-07 08:13 - 2021-11-07 08:13 - 000043894 _____ C:\Users\dompa\Desktop\Formularz na przeksie_gowanie-zwrot-klient_edit_v4.pdf 2021-11-05 17:10 - 2021-11-05 17:10 - 000001429 _____ C:\Users\dompa\Desktop\calibre — skrót.lnk 2021-11-05 17:09 - 2018-02-21 13:25 - 000000000 ____D C:\Users\dompa\Desktop\Zarys wykladu (13867) 2021-11-05 14:40 - 2021-11-05 14:40 - 000738389 _____ C:\Users\dompa\Desktop\Prawo_3_rok (N) ZIMOWY_2021_2022.pdf 2021-11-03 23:16 - 2021-11-03 23:27 - 000000132 _____ C:\Users\dompa\AppData\Roaming\Preferencje Adobe CS5 dla formatu PNG 2021-10-31 19:14 - 2021-10-18 20:37 - 000494864 _____ C:\windows\system32\libvpl.dll 2021-10-31 19:14 - 2021-10-18 20:37 - 000429632 _____ C:\windows\SysWOW64\libvpl.dll 2021-10-31 19:14 - 2021-10-18 20:36 - 001886928 _____ C:\windows\system32\vulkaninfo-1-999-0-0-0.exe 2021-10-31 19:14 - 2021-10-18 20:36 - 001886928 _____ C:\windows\system32\vulkaninfo.exe 2021-10-31 19:14 - 2021-10-18 20:36 - 001462832 _____ C:\windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2021-10-31 19:14 - 2021-10-18 20:36 - 001462832 _____ C:\windows\SysWOW64\vulkaninfo.exe 2021-10-31 19:14 - 2021-10-18 20:36 - 001115656 _____ C:\windows\system32\vulkan-1-999-0-0-0.dll 2021-10-31 19:14 - 2021-10-18 20:36 - 001115656 _____ C:\windows\system32\vulkan-1.dll 2021-10-31 19:14 - 2021-10-18 20:36 - 000969248 _____ C:\windows\SysWOW64\vulkan-1-999-0-0-0.dll 2021-10-31 19:14 - 2021-10-18 20:36 - 000969248 _____ C:\windows\SysWOW64\vulkan-1.dll 2021-10-31 19:14 - 2021-10-18 20:36 - 000959256 _____ (Intel Corporation) C:\windows\system32\libmfxhw64.dll 2021-10-31 19:14 - 2021-10-18 20:36 - 000717968 _____ (Intel Corporation) C:\windows\SysWOW64\libmfxhw32.dll 2021-10-31 19:14 - 2021-10-18 20:36 - 000459104 _____ C:\windows\system32\ze_tracing_layer.dll 2021-10-31 19:14 - 2021-10-18 20:36 - 000378208 _____ C:\windows\system32\ze_loader.dll 2021-10-31 19:14 - 2021-10-18 20:36 - 000148808 _____ C:\windows\system32\ze_validation_layer.dll 2021-10-31 19:14 - 2021-10-18 20:36 - 000048104 _____ (Intel Corporation) C:\windows\system32\intel_gfx_api-x64.dll 2021-10-31 19:14 - 2021-10-18 20:36 - 000045464 _____ (Intel Corporation) C:\windows\SysWOW64\intel_gfx_api-x86.dll 2021-10-31 19:14 - 2021-10-18 20:35 - 027896672 _____ (Intel Corporation) C:\windows\system32\mfxplugin64_hw.dll 2021-10-31 19:14 - 2021-10-18 20:35 - 020639056 _____ (Intel Corporation) C:\windows\SysWOW64\mfxplugin32_hw.dll 2021-10-31 19:14 - 2021-10-18 20:35 - 000507744 _____ (Khronos Group) C:\windows\system32\OpenCL.dll 2021-10-31 19:14 - 2021-10-18 20:35 - 000436408 _____ C:\windows\system32\ControlLib.dll 2021-10-31 19:14 - 2021-10-18 20:35 - 000370528 _____ (Khronos Group) C:\windows\SysWOW64\OpenCL.dll 2021-10-30 17:37 - 2021-11-07 12:19 - 000000000 ____D C:\Users\dompa\AppData\Roaming\Canva 2021-10-30 17:37 - 2021-10-30 17:37 - 000002224 _____ C:\Users\dompa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Canva.lnk 2021-10-30 17:37 - 2021-10-30 17:37 - 000002216 _____ C:\Users\dompa\Desktop\Canva.lnk 2021-10-30 17:37 - 2021-10-30 17:37 - 000000000 ____D C:\Users\dompa\AppData\Local\canva-updater 2021-10-30 17:36 - 2021-10-30 17:36 - 000000000 ____D C:\Users\dompa\AppData\Local\ACD Systems 2021-10-30 17:33 - 2021-10-30 17:47 - 000000000 ____D C:\Program Files (x86)\ACD Systems 2021-10-30 17:31 - 2021-10-30 17:31 - 000000000 ____D C:\Users\dompa\Documents\Canvas Symbols 2021-10-30 17:26 - 2021-10-30 17:33 - 000000000 ____D C:\Users\dompa\AppData\Local\Downloaded Installations 2021-10-30 17:26 - 2021-10-30 17:26 - 000000000 ____D C:\Users\dompa\AppData\Roaming\ACD Systems 2021-10-30 13:36 - 2021-10-30 13:36 - 000000000 ____D C:\Users\dompa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Movavi Video Editor Plus 2021 2021-10-30 13:35 - 2021-10-30 13:36 - 000000000 ____D C:\Users\dompa\AppData\Roaming\Movavi Video Editor Plus 2021 2021-10-30 13:07 - 2021-10-30 13:07 - 000012595 _____ C:\ProgramData\goyslgxe.nnn 2021-10-26 21:23 - 2021-10-26 21:23 - 000000000 ____D C:\Users\dompa\Documents\Assassin's Creed IV Black Flag 2021-10-25 18:51 - 2021-10-25 18:51 - 000191832 _____ (Oracle Corporation) C:\windows\SysWOW64\WindowsAccessBridge-64.dll 2021-10-24 20:26 - 2020-09-14 08:17 - 000205450 _____ C:\Users\dompa\Desktop\Pałka-Dominik_14-09-2020.pdf 2021-10-24 20:16 - 2021-10-24 20:18 - 000000000 ____D C:\Users\dompa\Desktop\LANoire-Gamblers 2021-10-24 16:12 - 2021-10-24 16:12 - 000000071 _____ C:\Users\dompa\Desktop\Decyzje Prezesa UODO - UODO.url 2021-10-24 10:27 - 2021-10-24 10:29 - 000000000 ____D C:\Users\dompa\Desktop\Praktyki 2021-10-24 08:42 - 2022-01-04 21:36 - 000000000 ____D C:\Users\dompa\Biblioteka calibre 2021-10-24 08:42 - 2021-10-24 08:42 - 000000000 ____D C:\Users\dompa\AppData\Local\calibre-ebook.com 2021-10-24 08:42 - 2021-10-24 08:42 - 000000000 ____D C:\Users\dompa\AppData\Local\calibre-cache 2021-10-24 08:41 - 2021-10-24 08:42 - 000000000 ____D C:\Users\dompa\AppData\Roaming\calibre 2021-10-24 08:39 - 2021-10-24 08:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre 64bit - E-book Management 2021-10-24 08:39 - 2021-10-24 08:40 - 000000000 ____D C:\Program Files\Calibre2 2021-10-23 16:34 - 2022-01-08 13:46 - 000000000 ____D C:\Program Files\TeamViewer 2021-10-23 16:34 - 2021-12-21 18:12 - 000000000 ____D C:\Users\dompa\AppData\Local\TeamViewer 2021-10-23 16:34 - 2021-10-23 16:48 - 000000000 ____D C:\Users\dompa\AppData\Roaming\TeamViewer 2021-10-23 16:34 - 2021-10-23 16:34 - 000000896 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer.lnk 2021-10-23 16:34 - 2021-10-23 16:34 - 000000884 _____ C:\Users\Public\Desktop\TeamViewer.lnk 2021-10-17 08:09 - 2021-10-17 08:09 - 000003375 _____ C:\Users\dompa\Desktop\studenci.ovpn 2021-10-17 08:08 - 2021-10-17 08:08 - 000039920 _____ (The OpenVPN Project) C:\windows\system32\Drivers\tap0901.sys 2021-10-17 08:08 - 2021-10-17 08:08 - 000038176 _____ (WireGuard LLC) C:\windows\system32\Drivers\wintun.sys 2021-10-17 08:08 - 2021-10-17 08:08 - 000002003 _____ C:\Users\Public\Desktop\OpenVPN GUI.lnk 2021-10-17 08:08 - 2021-10-17 08:08 - 000000000 ____D C:\Users\dompa\OpenVPN 2021-10-17 08:07 - 2021-10-17 08:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenVPN 2021-10-17 08:07 - 2021-10-17 08:07 - 000000000 ____D C:\Program Files\OpenVPN 2021-10-15 17:13 - 2021-10-15 17:13 - 000706536 _____ C:\windows\system32\TextShaping.dll 2021-10-15 17:13 - 2021-10-15 17:13 - 000611960 _____ C:\windows\SysWOW64\TextShaping.dll 2021-10-15 17:13 - 2021-10-15 17:13 - 000288768 _____ C:\windows\system32\Windows.Management.InprocObjects.dll 2021-10-15 17:13 - 2021-10-15 17:13 - 000098304 _____ C:\windows\system32\Drivers\cimfs.sys 2021-10-12 13:05 - 2021-10-26 20:59 - 000000000 ____D C:\Users\dompa\AppData\Local\Colossal Order 2021-10-12 13:05 - 2021-10-12 13:05 - 000000000 ____D C:\Users\dompa\AppData\Roaming\.mono 2021-10-12 13:05 - 2021-10-12 13:05 - 000000000 ____D C:\ProgramData\.mono ==================== Trzy miesiące (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2022-01-08 14:17 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-01-08 14:15 - 2021-01-05 20:59 - 000000000 ____D C:\Program Files (x86)\Google 2022-01-08 13:51 - 2020-09-05 13:28 - 000829758 _____ C:\windows\system32\perfh015.dat 2022-01-08 13:51 - 2020-09-05 13:28 - 000175356 _____ C:\windows\system32\perfc015.dat 2022-01-08 13:51 - 2020-05-06 10:03 - 001941778 _____ C:\windows\system32\PerfStringBackup.INI 2022-01-08 13:51 - 2019-12-07 10:13 - 000000000 ____D C:\windows\INF 2022-01-08 13:48 - 2020-11-02 06:15 - 000000000 ____D C:\ProgramData\NVIDIA 2022-01-08 13:46 - 2020-09-05 03:39 - 000000000 ____D C:\Intel 2022-01-08 13:46 - 2020-05-06 09:58 - 000008192 ___SH C:\DumpStack.log.tmp 2022-01-08 13:46 - 2020-05-06 09:58 - 000000006 ____H C:\windows\Tasks\SA.DAT 2022-01-08 13:46 - 2019-12-07 10:14 - 000000000 ____D C:\windows\ServiceState 2022-01-08 13:45 - 2019-12-07 10:03 - 000786432 _____ C:\windows\system32\config\BBI 2022-01-08 13:39 - 2020-11-02 06:41 - 000000000 ____D C:\ProgramData\Hewlett-Packard 2022-01-08 13:31 - 2021-01-12 08:23 - 000000000 ____D C:\Program Files (x86)\Hewlett-Packard 2022-01-08 13:31 - 2021-01-06 15:14 - 000000000 ____D C:\Users\dompa\AppData\Roaming\IObit 2022-01-08 13:31 - 2021-01-05 21:06 - 000000000 ____D C:\Users\dompa\AppData\Roaming\Hewlett-Packard 2022-01-08 13:31 - 2020-09-05 03:45 - 000000000 ____D C:\ProgramData\HP 2022-01-08 13:31 - 2020-09-05 03:45 - 000000000 ____D C:\Program Files (x86)\HP 2022-01-08 13:31 - 2020-08-19 20:28 - 000000000 ___HD C:\hp 2022-01-08 13:30 - 2019-12-07 10:14 - 000000000 ___HD C:\windows\ELAMBKUP 2022-01-08 13:10 - 2021-07-04 14:49 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData 2022-01-08 02:00 - 2021-01-06 15:45 - 000000000 ____D C:\Users\dompa\AppData\Local\Adobe 2022-01-08 02:00 - 2021-01-05 21:32 - 000004562 _____ C:\windows\system32\Tasks\Adobe Acrobat Update Task 2022-01-07 22:27 - 2020-05-06 09:58 - 000000000 ____D C:\windows\system32\SleepStudy 2022-01-07 22:10 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-01-07 22:10 - 2019-12-07 10:14 - 000000000 ____D C:\windows\AppReadiness 2022-01-05 23:17 - 2021-01-05 20:59 - 000002260 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-01-04 21:25 - 2021-06-22 22:14 - 000000000 ____D C:\Users\dompa\Desktop\Studia 2022-01-04 20:39 - 2021-01-05 21:19 - 000000000 ____D C:\Users\dompa\Desktop\Dominik 2021-12-30 22:31 - 2021-01-05 20:57 - 000000000 ____D C:\Users\dompa\AppData\Local\CrashDumps 2021-12-30 20:47 - 2021-01-06 16:58 - 000000000 ____D C:\Users\dompa\AppData\Roaming\vlc 2021-12-26 21:30 - 2021-01-17 23:05 - 000000000 ____D C:\Users\dompa\Documents\My Games 2021-12-26 21:30 - 2021-01-17 21:13 - 000000000 ____D C:\Users\dompa\AppData\Local\D3DSCache 2021-12-26 20:56 - 2021-05-08 07:47 - 000000000 ____D C:\Users\dompa\AppData\Roaming\obs-studio 2021-12-26 12:41 - 2021-01-14 22:34 - 000000000 ____D C:\ProgramData\Package Cache 2021-12-23 17:06 - 2021-01-05 21:06 - 000000000 ____D C:\windows\system32\Tasks\Hewlett-Packard 2021-12-21 16:22 - 2021-01-28 10:58 - 000000000 ____D C:\Users\dompa\AppData\Local\ElevatedDiagnostics 2021-12-18 21:08 - 2021-01-06 22:22 - 000000000 ____D C:\Users\dompa\AppData\Local\JDownloader 2.0 2021-12-17 23:45 - 2020-05-06 09:58 - 005152720 _____ C:\windows\system32\FNTCACHE.DAT 2021-12-17 23:45 - 2019-12-07 10:14 - 000000000 ___RD C:\windows\ImmersiveControlPanel 2021-12-17 23:45 - 2019-12-07 10:14 - 000000000 ____D C:\windows\SystemResources 2021-12-17 23:45 - 2019-12-07 10:14 - 000000000 ____D C:\windows\system32\setup 2021-12-17 23:45 - 2019-12-07 10:14 - 000000000 ____D C:\windows\system32\oobe 2021-12-17 23:45 - 2019-12-07 10:14 - 000000000 ____D C:\windows\system32\lv-LV 2021-12-17 23:45 - 2019-12-07 10:14 - 000000000 ____D C:\windows\system32\lt-LT 2021-12-17 23:45 - 2019-12-07 10:14 - 000000000 ____D C:\windows\system32\et-EE 2021-12-17 23:45 - 2019-12-07 10:14 - 000000000 ____D C:\windows\system32\es-MX 2021-12-17 23:45 - 2019-12-07 10:14 - 000000000 ____D C:\windows\Provisioning 2021-12-17 23:45 - 2019-12-07 10:14 - 000000000 ____D C:\windows\bcastdvr 2021-12-17 20:30 - 2019-12-07 10:03 - 000000000 ____D C:\windows\CbsTemp 2021-12-17 16:47 - 2021-07-04 14:50 - 000003522 _____ C:\windows\system32\Tasks\AdobeGCInvoker-1.0 2021-12-17 16:23 - 2021-01-06 01:50 - 000000000 ____D C:\windows\system32\MRT 2021-12-17 16:23 - 2020-05-06 09:58 - 000000000 ____D C:\windows\system32\Drivers\wd 2021-12-17 16:22 - 2021-01-06 01:50 - 137938848 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe 2021-12-15 22:13 - 2021-01-15 15:38 - 000002375 _____ C:\Users\dompa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk 2021-12-15 22:13 - 2021-01-15 15:38 - 000002367 _____ C:\Users\dompa\Desktop\Microsoft Teams.lnk 2021-12-12 23:14 - 2021-04-06 07:17 - 000000000 ____D C:\Users\dompa\Downloads\ChomikBox 2021-12-12 17:13 - 2021-01-28 21:05 - 000000000 ____D C:\Users\dompa\AppData\Roaming\IVONA Reader 2021-12-12 17:12 - 2021-01-05 20:39 - 000000000 ____D C:\Users\dompa\AppData\Roaming\Adobe 2021-12-12 16:27 - 2021-01-06 15:49 - 000000000 ____D C:\Program Files\Common Files\Adobe 2021-12-12 16:27 - 2021-01-06 15:49 - 000000000 ____D C:\Program Files\Adobe 2021-12-12 16:27 - 2021-01-05 21:31 - 000000000 ____D C:\ProgramData\Adobe 2021-12-11 11:44 - 2021-10-01 15:16 - 000000000 ____D C:\Users\dompa\Desktop\III rok 2021-12-09 20:04 - 2020-11-02 06:20 - 000003510 _____ C:\windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-12-09 20:04 - 2020-11-02 06:20 - 000003386 _____ C:\windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore ==================== Pliki w katalogu głównym wybranych folderów ======== 2021-11-03 23:16 - 2021-11-03 23:27 - 000000132 _____ () C:\Users\dompa\AppData\Roaming\Preferencje Adobe CS5 dla formatu PNG 2021-02-05 09:11 - 2021-11-28 09:31 - 000001496 _____ () C:\Users\dompa\AppData\Local\Adobe Zapisz dla Internetu 12.0 Prefs 2021-07-04 20:28 - 2021-07-04 20:28 - 000000000 _____ () C:\Users\dompa\AppData\Local\oobelibMkey.log ==================== SigCheckExt ========================= 2009-06-25 08:27 - 2009-06-25 08:27 - 000541184 _____ (Marvell Semiconductor, Inc.) C:\windows\system32\mvtcpmon.dll 2009-06-25 08:27 - 2009-06-25 08:27 - 000868864 _____ (Marvell Semiconductor, Inc.) C:\windows\system32\mvtcpui.dll 2009-06-25 08:25 - 2009-06-25 08:25 - 000144896 _____ (OpenSLP) C:\windows\system32\slp64.dll 2021-01-14 22:51 - 2021-01-14 22:51 - 001198049 _____ C:\windows\unins000.exe 2021-01-14 22:52 - 2014-01-25 13:30 - 000131072 _____ (Sereby Corporation) C:\windows\SysWOW64\AiORuntimes.dll 2021-01-14 22:52 - 2006-08-25 23:17 - 000086016 _____ (Microsoft Corporation) C:\windows\SysWOW64\atl70.dll 2021-01-14 22:52 - 2011-01-12 12:53 - 000090112 _____ (Microsoft Corporation) C:\windows\SysWOW64\atl71.dll 2021-01-14 22:52 - 2013-08-31 20:40 - 003115385 _____ (Red Hat) C:\windows\SysWOW64\cygwin1.dll 2020-02-23 14:02 - 2020-02-23 14:02 - 000144896 _____ (Elaborate Bytes AG) C:\windows\SysWOW64\ElbyVCD.dll 2021-01-14 22:52 - 2013-02-11 09:35 - 001178624 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\windows\SysWOW64\libeay32.dll 2021-01-14 22:52 - 2008-03-14 17:21 - 001008128 _____ (GnuWin32 ) C:\windows\SysWOW64\libiconv2.dll 2021-01-14 22:52 - 2005-05-06 13:52 - 000103424 _____ (GNU ) C:\windows\SysWOW64\libintl3.dll 2021-01-14 22:52 - 2008-08-26 06:40 - 000162304 _____ C:\windows\SysWOW64\libpng13.dll 2021-01-14 22:52 - 2012-04-03 16:11 - 000138752 _____ C:\windows\SysWOW64\libpng15.dll 2021-01-14 22:52 - 2013-09-19 23:00 - 000269824 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\windows\SysWOW64\libssl32.dll 2021-01-14 22:52 - 2006-08-26 00:07 - 001024000 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfc70.dll 2021-01-14 22:52 - 2006-08-26 00:15 - 000040960 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfc70chs.dll 2021-01-14 22:52 - 2006-08-26 00:15 - 000045056 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfc70cht.dll 2021-01-14 22:52 - 2006-08-26 00:15 - 000061440 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfc70deu.dll 2021-01-14 22:52 - 2006-08-26 00:15 - 000057344 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfc70enu.dll 2021-01-14 22:52 - 2006-08-26 00:15 - 000061440 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfc70esp.dll 2021-01-14 22:52 - 2006-08-26 00:15 - 000061440 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfc70fra.dll 2021-01-14 22:52 - 2006-08-26 00:15 - 000061440 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfc70ita.dll 2021-01-14 22:52 - 2006-08-26 00:15 - 000049152 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfc70jpn.dll 2021-01-14 22:52 - 2006-08-26 00:15 - 000049152 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfc70kor.dll 2021-01-14 22:52 - 2006-08-26 00:28 - 001017344 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfc70u.dll 2021-01-14 22:52 - 2011-01-12 13:19 - 001060864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfc71.dll 2021-01-14 22:52 - 2011-01-12 13:25 - 000040960 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfc71chs.dll 2021-01-14 22:52 - 2011-01-12 13:25 - 000045056 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfc71cht.dll 2021-01-14 22:52 - 2011-01-12 13:25 - 000065536 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfc71deu.dll 2021-01-14 22:52 - 2011-01-12 13:25 - 000057344 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfc71enu.dll 2021-01-14 22:52 - 2011-01-12 13:25 - 000061440 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfc71esp.dll 2021-01-14 22:52 - 2011-01-12 13:25 - 000061440 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfc71fra.dll 2021-01-14 22:52 - 2011-01-12 13:25 - 000061440 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfc71ita.dll 2021-01-14 22:52 - 2011-01-12 13:25 - 000049152 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfc71jpn.dll 2021-01-14 22:52 - 2011-01-12 13:25 - 000049152 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfc71kor.dll 2021-01-14 22:52 - 2011-01-12 13:36 - 001054208 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfc71u.dll 2011-02-28 18:01 - 2011-07-28 19:54 - 000947472 _____ (Microsoft Corporation) C:\windows\SysWOW64\msjava.dll 2021-01-14 22:52 - 2005-01-20 19:25 - 000054784 _____ (Microsoft Corporation) C:\windows\SysWOW64\msvci70.dll 2021-01-14 22:52 - 2002-01-05 05:40 - 000487424 _____ (Microsoft Corporation) C:\windows\SysWOW64\msvcp70.dll 2021-01-14 22:52 - 2007-02-01 22:13 - 000503808 _____ (Microsoft Corporation) C:\windows\SysWOW64\msvcp71.dll 2021-01-14 22:52 - 2007-01-30 22:04 - 000339968 _____ (Microsoft Corporation) C:\windows\SysWOW64\msvcr70.dll 2021-01-14 22:52 - 2007-02-01 19:11 - 000344064 _____ (Microsoft Corporation) C:\windows\SysWOW64\msvcr71.dll 2021-01-14 22:52 - 2013-02-11 09:35 - 000269824 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\windows\SysWOW64\ssleay32.dll 2021-01-14 22:52 - 1996-01-12 03:00 - 000722192 _____ (Microsoft Corporation) C:\windows\SysWOW64\vb40032.dll 2006-10-26 13:45 - 2006-10-26 13:45 - 000293376 _____ (Microsoft Corporation) C:\windows\SysWOW64\WISPTIS.EXE 2021-01-14 22:52 - 2012-06-14 14:36 - 000107520 _____ C:\windows\SysWOW64\zlib1.dll 2022-01-08 14:16 - 2022-01-08 14:16 - 005659583 _____ (Swearware) C:\Users\dompa\Downloads\ComboFix.exe 2022-01-08 13:20 - 2022-01-08 13:21 - 002311168 _____ (Farbar) C:\Users\dompa\Downloads\FRST64.exe 2021-01-18 22:53 - 2021-01-18 22:54 - 338324343 _____ ( ) C:\Users\dompa\Downloads\kam_remake_full_r6720.exe ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== BCD ================================ Firmware Boot Manager --------------------- identifier {fwbootmgr} displayorder {bootmgr} {50faa9a0-1d13-11eb-81a4-00e04c68a45d} {faa23d20-4f83-11eb-a51f-988d469c1f34} timeout 0 Windows Boot Manager -------------------- identifier {bootmgr} device partition=\Device\HarddiskVolume1 path \EFI\Microsoft\Boot\bootmgfw.efi description Windows Boot Manager locale pl-PL inherit {globalsettings} isolatedcontext Yes default {current} resumeobject {975688b9-1d13-11eb-81a4-00e04c68a45d} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Firmware Application (101fffff) ------------------------------- identifier {50faa9a0-1d13-11eb-81a4-00e04c68a45d} description EFI USB Device isolatedcontext Yes Firmware Application (101fffff) ------------------------------- identifier {faa23d20-4f83-11eb-a51f-988d469c1f34} description Internal Hard Disk or Solid State Disk isolatedcontext Yes Windows Boot Loader ------------------- identifier {5a34875a-1d1b-11eb-9b37-00e04c68a45d} device ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{5a34875b-1d1b-11eb-9b37-00e04c68a45d} path \windows\system32\winload.efi description Windows Recovery Environment locale pl-PL inherit {bootloadersettings} displaymessage Recovery isolatedcontext Yes osdevice ramdisk=[\Device\HarddiskVolume4]\Recovery\WindowsRE\Winre.wim,{5a34875b-1d1b-11eb-9b37-00e04c68a45d} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Windows Boot Loader ------------------- identifier {current} device partition=C: path \windows\system32\winload.efi description Windows 10 locale pl-PL inherit {bootloadersettings} recoverysequence {5a34875a-1d1b-11eb-9b37-00e04c68a45d} displaymessageoverride StartupRepair recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \windows resumeobject {975688b9-1d13-11eb-81a4-00e04c68a45d} nx OptIn bootmenupolicy Standard Resume from Hibernate --------------------- identifier {975688b9-1d13-11eb-81a4-00e04c68a45d} device partition=C: path \windows\system32\winresume.efi description Windows Resume Application locale pl-PL inherit {resumeloadersettings} recoverysequence {5a34875a-1d1b-11eb-9b37-00e04c68a45d} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Windows Memory Tester --------------------- identifier {memdiag} device partition=\Device\HarddiskVolume1 path \EFI\Microsoft\Boot\memtest.efi description Windows Memory Diagnostic locale pl-PL inherit {globalsettings} badmemoryaccess Yes isolatedcontext Yes EMS Settings ------------ identifier {emssettings} bootems No isolatedcontext Yes Debugger Settings ----------------- identifier {dbgsettings} debugtype Local isolatedcontext Yes RAM Defects ----------- identifier {badmemory} isolatedcontext Yes Global Settings --------------- identifier {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} isolatedcontext Yes Boot Loader Settings -------------------- identifier {bootloadersettings} inherit {globalsettings} {hypervisorsettings} isolatedcontext Yes Hypervisor Settings ------------------- identifier {hypervisorsettings} isolatedcontext Yes hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 Resume Loader Settings ---------------------- identifier {resumeloadersettings} inherit {globalsettings} isolatedcontext Yes Device options -------------- identifier {5a34875b-1d1b-11eb-9b37-00e04c68a45d} description Windows Recovery isolatedcontext Yes ramdisksdidevice partition=\Device\HarddiskVolume4 ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Koniec FRST.txt ========================