Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 19-05-2021 Uruchomiony przez Admin (administrator) DESKTOP-GH23FUV (LENOVO 20252) (19-05-2021 22:15:11) Uruchomiony z C:\Users\Admin\AppData\Local\Temp\scoped_dir2180_1201449069 Załadowane profile: Admin Platform: Windows 10 Home Wersja 20H2 19042.928 (X64) Język: Polski (Polska) Domyślna przeglądarka: Chrome Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe (Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe (Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\IJ Scan Utility\SETEVENT.exe (Huawei Technologies Co., Ltd. -> ) [Brak podpisu cyfrowego] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe (Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <8> (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows Hardware Compatibility Publisher -> Vimicro) C:\Program Files (x86)\USB Camera\VM331STI.EXE (Opera Software AS -> Opera Software) C:\Program Files\Opera\76.0.4017.123\opera.exe <17> (Opera Software AS -> Opera Software) C:\Program Files\Opera\76.0.4017.123\opera_crashreporter.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-06-03] (Synaptics Incorporated -> Synaptics Incorporated) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-04-10] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [331BigDog] => C:\Program Files (x86)\USB Camera\VM331STI.EXE [571928 2015-09-03] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro) HKLM-x32\...\Run: [Opera Browser Assistant] => C:\Program Files\Opera\assistant\browser_assistant.exe [4042904 2021-05-12] (Opera Software AS -> Opera Software) HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA HKU\S-1-5-21-2922760720-4043368837-1713385151-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [83524968 2019-09-12] (Skype Software Sarl -> Skype Technologies S.A.) HKU\S-1-5-21-2922760720-4043368837-1713385151-1001\...\Run: [MiPhoneManager] => C:\Users\Admin\AppData\Local\MiPhoneManager\main\MiPhoneHelper.exe [146224 2019-10-25] (Xiaomi Technology Inc -> ) HKU\S-1-5-21-2922760720-4043368837-1713385151-1001\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2142544 2021-05-19] (Wargaming.net Limited -> Wargaming.net) HKU\S-1-5-21-2922760720-4043368837-1713385151-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [33698888 2021-04-22] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-2922760720-4043368837-1713385151-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Admin\AppData\Local\Microsoft\Teams\Update.exe [2452112 2021-05-06] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKU\S-1-5-21-2922760720-4043368837-1713385151-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4087528 2021-05-15] (Valve -> Valve Corporation) HKLM\...\Windows x64\Print Processors\Canon G2010 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDEG.DLL [482816 2017-08-22] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ Language Monitor G2010 series: C:\WINDOWS\system32\CNMLMEG.DLL [1303040 2017-08-22] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\HP B011 Status Monitor: C:\WINDOWS\system32\hpinkstsB011LM.dll [328552 2012-01-11] (Hewlett Packard -> Hewlett-Packard Co.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\90.0.4430.93\Installer\chrmstp.exe [2021-04-27] (Google LLC -> Google LLC) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\$McRebootA5E6DEAA56$.lnk [2021-05-19] ShortcutTarget: $McRebootA5E6DEAA56$.lnk -> (Brak pliku) HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA HKLM\SOFTWARE\Policies\Google: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {04350E95-0670-4F03-A44B-3AA0D4B92C90} - System32\Tasks\Opera scheduled Autoupdate 1561638999 => C:\Program Files\Opera\launcher.exe [2199704 2021-05-12] (Opera Software AS -> Opera Software) Task: {07AB4B4B-AAD1-4DD2-85E6-17D7BCB1918A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-06-27] (Google Inc -> Google LLC) Task: {2C359DE3-E6A4-4C8F-99CB-2C43DC848D5E} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_pepper.exe [1499704 2020-12-28] (Adobe Inc. -> Adobe) Task: {2DAD4043-3D2E-4EE5-8CD7-3BA8525E9459} - System32\Tasks\bookingDesktopAppUpdateTaskMachineUA => C:\Program Files (x86)\bookingDesktopApp\Update\bookingDesktopAppUpdate.exe [102400 2019-09-09] (bookingDesktopApp.) [Brak podpisu cyfrowego] Task: {2FD83DE2-357F-4026-9711-745325CE0640} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe [1504312 2020-12-10] (Adobe Inc. -> Adobe) Task: {3508C44E-E90A-43BF-A15D-F1B30D4381A2} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1722880 2019-06-25] () [Brak podpisu cyfrowego] Task: {350BFACD-3656-4265-AEA8-4CE2AE0E1123} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe Task: {56C4B0E6-6C6D-42A1-B965-6D55F2692789} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.) Task: {5E6E6AC6-9851-4CB6-9F5B-9E31CFFBDCAA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-06-27] (Google Inc -> Google LLC) Task: {695B4D13-6A3A-43F2-AACF-20D2871782A0} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-04-22] (Piriform Software Ltd -> Piriform) Task: {8D20FBD7-3920-4290-A92D-962636A3882D} - System32\Tasks\bookingDesktopAppUpdateTaskMachineCore => C:\Program Files (x86)\bookingDesktopApp\Update\bookingDesktopAppUpdate.exe [102400 2019-09-09] (bookingDesktopApp.) [Brak podpisu cyfrowego] Task: {94F5B32A-4E7F-4988-A686-8B115BBDE95D} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-2922760720-4043368837-1713385151-1001 => C:\Users\Admin\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe [87848 2021-05-03] (Lenovo (Beijing) Limited -> Lenovo Group Limited) Task: {B039A52D-73D0-42A6-9FC1-85F3030233C0} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe Task: {B69F120A-E906-4BC5-AFFF-F90538DC1D51} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-28] (Adobe Inc. -> Adobe) Task: {E022A970-01CA-45AE-90B0-2084D1C39B95} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [28082760 2021-04-22] (Piriform Software Ltd -> Piriform Software Ltd) Task: {E3A9D93F-56F5-498C-94F6-89319B4AB45A} - System32\Tasks\ByteFence => c:\program files\bytefence\ByteFence.exe <==== UWAGA (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe Task: C:\WINDOWS\Tasks\Opera scheduled assistant Autoupdate 1576857290.job => C:\Program Files\Opera\launcher.exe Task: C:\WINDOWS\Tasks\Opera scheduled Autoupdate 1561638999.job => C:\Program Files\Opera\launcher.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.31.1 Tcpip\..\Interfaces\{858e7d08-9dd6-4a85-b981-f6ba59fb61b7}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{8d0b9b56-16bc-4216-b03d-fae09264db33}: [DhcpNameServer] 192.168.31.1 Edge: ======= Edge HomeButtonPage: HKU\S-1-5-21-2922760720-4043368837-1713385151-1001 -> hxxp://www.global-pl.com/ Edge Extension: (Brak nazwy) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [nie znaleziono] Edge Extension: (Brak nazwy) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [nie znaleziono] Edge Extension: (Brak nazwy) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [nie znaleziono] Edge Extension: (Brak nazwy) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [nie znaleziono] Edge DefaultProfile: Default Edge Profile: C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default [2021-05-19] FireFox: ======== FF DefaultProfile: qiptt4zh.default FF ProfilePath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\qiptt4zh.default [2019-06-27] FF ProfilePath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\6z2zwmem.default-release [2021-05-19] FF Homepage: Mozilla\Firefox\Profiles\6z2zwmem.default-release -> hxxp://www.global-pl.com/ FF Extension: (Avast Online Security) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\6z2zwmem.default-release\Extensions\wrc@avast.com.xpi [2019-09-09] FF Extension: (Adblock Plus - darmowy adblocker) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\6z2zwmem.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-06-27] FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll [2020-12-10] (Adobe Inc. -> ) FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2020-06-08] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2020-06-08] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll [2020-12-10] (Adobe Inc. -> ) FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2017-10-17] (CANON INC.) [Brak podpisu cyfrowego] FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-04-27] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default [2021-05-19] CHR HomePage: Default -> hxxp://www.global-pl.com/ CHR StartupUrls: Default -> "hxxp://www.global-pl.com/" CHR DefaultSearchURL: Default -> hxxps://pl.search.yahoo.com/search?fr=mcafee_uninternational&type=E210PL91105G0&p={searchTerms} CHR DefaultSearchKeyword: Default -> mcafee CHR Extension: (Prezentacje) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-07-05] CHR Extension: (Dokumenty) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-07-05] CHR Extension: (Dysk Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-10] CHR Extension: (YouTube) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-07-05] CHR Extension: (Arkusze) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-07-05] CHR Extension: (McAfee® WebAdvisor) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2021-05-19] CHR Extension: (Dokumenty Google offline) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-05-19] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-06] CHR Extension: (Gmail) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-10] CHR Extension: (Chrome Media Router) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-05-06] CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-02-14] CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\System Profile [2021-02-14] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] Opera: ======= OPR Profile: C:\Users\Admin\AppData\Roaming\Opera Software\Opera Stable [2021-05-19] OPR Notifications: Opera Stable -> hxxps://50style.pl; hxxps://ccc.eu; hxxps://domodi.pl; hxxps://mediamarkt.pl; hxxps://pakuten.pl; hxxps://royalfashion-pl-03.salesmanagopush.com; hxxps://ruslar.pro; hxxps://www.eobuwie.com.pl; hxxps://www.gamesbs.com; hxxps://www.ipla.tv; hxxps://www.mediaexpert.pl; hxxps://www.onet.pl; hxxps://www.otomoto.pl; hxxps://www.taniaksiazka.pl OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding} OPR Extension: (AdBlock) - C:\Users\Admin\AppData\Roaming\Opera Software\Opera Stable\Extensions\aobdicepooefnbaeokijohmhjlleamfj [2019-07-22] OPR Extension: (Rich Hints Agent) - C:\Users\Admin\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-05-19] OPR Extension: (Zainstaluj rozszerzenia Chrome) - C:\Users\Admin\AppData\Roaming\Opera Software\Opera Stable\Extensions\kipjbhgniklcnglfaldilecjomjaddfi [2020-04-10] OPR Extension: (Netflix Party is now Teleparty) - C:\Users\Admin\AppData\Roaming\Opera Software\Opera Stable\Extensions\oocalimimngaihdkbihfgmpkcpnmlaoa [2021-05-05] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.) S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-28] (Adobe Inc. -> Adobe) S2 bookingdesktopapp; C:\Program Files (x86)\bookingDesktopApp\Update\bookingDesktopAppUpdate.exe [102400 2019-09-09] (bookingDesktopApp.) [Brak podpisu cyfrowego] S3 bookingdesktopappm; C:\Program Files (x86)\bookingDesktopApp\Update\bookingDesktopAppUpdate.exe [102400 2019-09-09] (bookingDesktopApp.) [Brak podpisu cyfrowego] R2 CIJSRegister; C:\Program Files (x86)\Canon\IJ Scan Utility\SETEVENT.exe [153736 2017-03-02] (Canon Inc. -> CANON INC.) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [818288 2021-02-07] (EasyAntiCheat Oy -> Epic Games, Inc) R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2019-07-03] (Huawei Technologies Co., Ltd. -> ) [Brak podpisu cyfrowego] R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [398784 2019-04-22] (Canon Inc. -> ) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 vm331avs; C:\WINDOWS\System32\Drivers\vm331avs.sys [648872 2015-09-03] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro Corporation) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-05-19 22:08 - 2021-05-19 22:20 - 000000000 ____D C:\FRST 2021-05-19 22:06 - 2021-05-19 22:06 - 002299904 _____ (Farbar) C:\Users\Admin\Downloads\FRST64.exe 2021-05-19 21:09 - 2021-05-19 21:09 - 000000616 _____ C:\WINDOWS\Tasks\Opera scheduled assistant Autoupdate 1576857290.job 2021-05-19 21:05 - 2021-05-19 21:05 - 000000000 ____D C:\WINDOWS\LastGood.Tmp 2021-05-19 20:56 - 2021-05-19 20:56 - 005383074 _____ C:\Users\Admin\Downloads\SDI_R2102.zip 2021-05-19 20:51 - 2021-05-19 20:52 - 579983616 _____ (NVIDIA Corporation) C:\Users\Admin\Downloads\425.31-notebook-win10-64bit-international-whql.exe 2021-05-19 20:38 - 2021-05-19 20:41 - 000914828 _____ C:\WINDOWS\Minidump\051921-84578-01.dmp 2021-05-19 20:32 - 2021-05-19 20:32 - 000000000 _____ C:\WINDOWS\Minidump\051921-55046-01.dmp 2021-05-19 20:27 - 2021-05-19 21:38 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2021-05-19 20:12 - 2021-05-19 20:12 - 000000000 ____D C:\Users\Admin\Desktop\a 2021-05-19 20:10 - 2021-05-19 20:10 - 000000000 _____ C:\WINDOWS\Minidump\051921-79484-01.dmp 2021-05-19 20:07 - 2021-05-19 21:02 - 000000000 ____D C:\AdwCleaner 2021-05-19 20:07 - 2021-05-19 20:07 - 008534696 _____ (Malwarebytes) C:\Users\Admin\Downloads\adwcleaner_8.2.exe 2021-05-19 19:55 - 2021-05-19 20:25 - 000000000 ____D C:\ProgramData\boost_interprocess 2021-05-19 19:53 - 2021-05-19 21:38 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2021-05-19 19:47 - 2021-05-19 19:49 - 332216712 _____ (Lenovo Group Limited ) C:\Users\Admin\Downloads\0fg101af.exe 2021-05-19 19:33 - 2021-05-19 19:33 - 006700635 _____ C:\Users\Admin\Downloads\CrystalDiskInfo8_12_0.zip 2021-05-19 19:21 - 2021-05-19 19:21 - 001250414 _____ C:\Users\Admin\Downloads\[Guru3D.com]-DDU.zip 2021-05-19 19:20 - 2021-05-19 19:20 - 000000000 ____D C:\Users\Admin\AppData\Local\OneDrive 2021-05-19 18:58 - 2021-05-19 18:59 - 008794806 _____ C:\Users\Admin\Downloads\hwi_704.zip 2021-05-19 18:55 - 2021-05-19 18:55 - 001414608 _____ (CPUID, Inc. ) C:\Users\Admin\Downloads\hwmonitor_1.44.exe 2021-05-19 18:55 - 2021-05-19 18:55 - 000000975 _____ C:\Users\Public\Desktop\CPUID HWMonitor.lnk 2021-05-19 18:55 - 2021-05-19 18:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID 2021-05-19 18:55 - 2021-05-19 18:55 - 000000000 ____D C:\Program Files\CPUID 2021-05-19 18:47 - 2021-05-19 18:47 - 000000456 _____ C:\WINDOWS\Tasks\Opera scheduled Autoupdate 1561638999.job 2021-05-19 18:43 - 2021-05-19 20:45 - 000556736 _____ C:\WINDOWS\ntbtlog.txt 2021-05-19 18:43 - 2021-05-19 20:45 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job 2021-05-19 18:35 - 2021-05-19 18:42 - 001335796 _____ C:\WINDOWS\Minidump\051921-79906-01.dmp 2021-05-19 18:13 - 2021-05-19 18:13 - 000000000 _____ C:\WINDOWS\Minidump\051921-66718-01.dmp 2021-05-10 10:16 - 2021-05-10 10:16 - 000000000 _____ C:\Users\Admin\AppData\Local\{D91464FB-1E08-4DE6-B1BB-527EBCB1D4D9} 2021-05-08 19:44 - 2021-05-19 20:38 - 520782177 _____ C:\WINDOWS\MEMORY.DMP 2021-05-08 19:44 - 2021-05-19 20:38 - 000000000 ____D C:\WINDOWS\Minidump 2021-05-02 21:06 - 2021-05-02 21:06 - 000000000 ____D C:\ProgramData\Microsoft OneDrive 2021-05-02 21:03 - 2021-05-02 21:08 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate 2021-05-02 21:01 - 2021-05-02 21:01 - 000000020 ___SH C:\Users\Admin\ntuser.ini 2021-05-02 20:58 - 2021-05-19 21:25 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-05-02 20:58 - 2021-05-19 20:29 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2021-05-02 20:58 - 2021-05-19 18:30 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update 2021-05-02 20:58 - 2021-05-08 19:02 - 000003822 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player PPAPI Notifier 2021-05-02 20:58 - 2021-05-08 19:02 - 000003810 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player NPAPI Notifier 2021-05-02 20:58 - 2021-05-08 19:02 - 000003504 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player Updater 2021-05-02 20:58 - 2021-05-08 19:02 - 000003496 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2021-05-02 20:58 - 2021-05-08 19:02 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2021-05-02 20:58 - 2021-05-08 19:02 - 000003476 _____ C:\WINDOWS\system32\Tasks\bookingDesktopAppUpdateTaskMachineUA 2021-05-02 20:58 - 2021-05-08 19:02 - 000003438 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-05-02 20:58 - 2021-05-08 19:02 - 000003348 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1561638999 2021-05-02 20:58 - 2021-05-08 19:02 - 000003272 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2021-05-02 20:58 - 2021-05-08 19:02 - 000003252 _____ C:\WINDOWS\system32\Tasks\bookingDesktopAppUpdateTaskMachineCore 2021-05-02 20:58 - 2021-05-08 19:02 - 000003214 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-05-02 20:58 - 2021-05-08 19:02 - 000003182 _____ C:\WINDOWS\system32\Tasks\klcp_update 2021-05-02 20:58 - 2021-05-08 19:02 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2922760720-4043368837-1713385151-1001 2021-05-02 20:58 - 2021-05-08 19:02 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software 2021-05-02 20:58 - 2021-05-05 06:11 - 000002238 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC 2021-05-02 20:58 - 2021-05-04 18:27 - 000003362 _____ C:\WINDOWS\system32\Tasks\ByteFence 2021-05-02 20:58 - 2021-05-02 21:02 - 000000000 ____D C:\WINDOWS\ServiceProfiles 2021-05-02 20:58 - 2021-05-02 20:58 - 000008192 _____ C:\WINDOWS\system32\config\userdiff 2021-05-02 20:58 - 2021-05-02 20:58 - 000000000 _SHDL C:\Users\Default\AppData\Local\Tymczasowe pliki internetowe 2021-05-02 20:58 - 2021-05-02 20:58 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo 2021-05-02 20:55 - 2021-05-02 20:57 - 000007623 _____ C:\WINDOWS\diagwrn.xml 2021-05-02 20:55 - 2021-05-02 20:57 - 000007623 _____ C:\WINDOWS\diagerr.xml 2021-05-02 20:51 - 2021-05-02 20:51 - 000000000 ____D C:\ProgramData\ssh 2021-05-02 20:40 - 2021-05-02 20:40 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr 2021-05-02 20:40 - 2021-05-02 20:40 - 000095744 _____ C:\WINDOWS\system32\VirtualMonitorManager.dll 2021-05-02 20:39 - 2021-05-19 20:53 - 000005810 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-05-02 20:39 - 2021-05-02 20:39 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2021-05-02 20:39 - 2021-05-02 20:39 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr 2021-05-02 20:39 - 2021-05-02 20:39 - 000575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx 2021-05-02 20:39 - 2021-05-02 20:39 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl 2021-05-02 20:39 - 2021-05-02 20:39 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax 2021-05-02 20:39 - 2021-05-02 20:39 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mpg2splt.ax 2021-05-02 20:39 - 2021-05-02 20:39 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VBICodec.ax 2021-05-02 20:39 - 2021-05-02 20:39 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl 2021-05-02 20:39 - 2021-05-02 20:39 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx 2021-05-02 20:39 - 2021-05-02 20:39 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl 2021-05-02 20:39 - 2021-05-02 20:39 - 000053760 _____ C:\WINDOWS\SysWOW64\BWContextHandler.dll 2021-05-02 20:38 - 2021-05-02 20:38 - 003860832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpltfm.dll 2021-05-02 20:38 - 2021-05-02 20:38 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2021-05-02 20:38 - 2021-05-02 20:38 - 001314128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2021-05-02 20:38 - 2021-05-02 20:38 - 000980320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpal.dll 2021-05-02 20:38 - 2021-05-02 20:38 - 000915296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmcodecs.dll 2021-05-02 20:38 - 2021-05-02 20:38 - 000732000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ortcengine.dll 2021-05-02 20:38 - 2021-05-02 20:38 - 000729600 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx 2021-05-02 20:38 - 2021-05-02 20:38 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl 2021-05-02 20:38 - 2021-05-02 20:38 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax 2021-05-02 20:38 - 2021-05-02 20:38 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpg2splt.ax 2021-05-02 20:38 - 2021-05-02 20:38 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\VBICodec.ax 2021-05-02 20:38 - 2021-05-02 20:38 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx 2021-05-02 20:38 - 2021-05-02 20:38 - 000067072 _____ C:\WINDOWS\system32\BWContextHandler.dll 2021-05-02 20:38 - 2021-05-02 20:38 - 000055376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmmvrortc.dll 2021-05-02 20:38 - 2021-05-02 20:38 - 000045880 _____ C:\WINDOWS\system32\HvSocket.dll 2021-05-02 20:38 - 2021-05-02 20:38 - 000011357 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-05-02 20:37 - 2021-05-02 20:37 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll 2021-05-02 20:37 - 2021-05-02 20:37 - 000611952 _____ C:\WINDOWS\SysWOW64\TextShaping.dll 2021-05-02 20:37 - 2021-05-02 20:37 - 000455680 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll 2021-05-02 20:37 - 2021-05-02 20:37 - 000446976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl 2021-05-02 20:37 - 2021-05-02 20:37 - 000235520 _____ C:\WINDOWS\SysWOW64\HeatCore.dll 2021-05-02 20:37 - 2021-05-02 20:37 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthprops.cpl 2021-05-02 20:37 - 2021-05-02 20:37 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl 2021-05-02 20:37 - 2021-05-02 20:37 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\activeds.tlb 2021-05-02 20:37 - 2021-05-02 20:37 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncpa.cpl 2021-05-02 20:37 - 2021-05-02 20:37 - 000047472 _____ C:\WINDOWS\SysWOW64\umpdc.dll 2021-05-02 20:37 - 2021-05-02 20:37 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll 2021-05-02 20:36 - 2021-05-02 20:36 - 004898144 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpltfm.dll 2021-05-02 20:36 - 2021-05-02 20:36 - 001354080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpal.dll 2021-05-02 20:36 - 2021-05-02 20:36 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE 2021-05-02 20:36 - 2021-05-02 20:36 - 001091936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmcodecs.dll 2021-05-02 20:36 - 2021-05-02 20:36 - 001032544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ortcengine.dll 2021-05-02 20:36 - 2021-05-02 20:36 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv 2021-05-02 20:36 - 2021-05-02 20:36 - 000330752 _____ C:\WINDOWS\SysWOW64\ssdm.dll 2021-05-02 20:36 - 2021-05-02 20:36 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll 2021-05-02 20:36 - 2021-05-02 20:36 - 000240640 _____ C:\WINDOWS\SysWOW64\CoreMas.dll 2021-05-02 20:36 - 2021-05-02 20:36 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\timedate.cpl 2021-05-02 20:36 - 2021-05-02 20:36 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncpa.cpl 2021-05-02 20:36 - 2021-05-02 20:36 - 000056672 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmmvrortc.dll 2021-05-02 20:36 - 2021-05-02 20:36 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msacm32.drv 2021-05-02 20:36 - 2021-05-02 20:36 - 000010752 _____ C:\WINDOWS\SysWOW64\agentactivationruntimestarter.exe 2021-05-02 20:35 - 2021-05-02 20:35 - 002254336 _____ C:\WINDOWS\system32\dwmscene.dll 2021-05-02 20:35 - 2021-05-02 20:35 - 001823304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2021-05-02 20:35 - 2021-05-02 20:35 - 001394024 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2021-05-02 20:35 - 2021-05-02 20:35 - 000544768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl 2021-05-02 20:35 - 2021-05-02 20:35 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthprops.cpl 2021-05-02 20:35 - 2021-05-02 20:35 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl 2021-05-02 20:35 - 2021-05-02 20:35 - 000190976 _____ C:\WINDOWS\system32\BthpanContextHandler.dll 2021-05-02 20:35 - 2021-05-02 20:35 - 000152064 _____ C:\WINDOWS\system32\EoAExperiences.exe 2021-05-02 20:35 - 2021-05-02 20:35 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\activeds.tlb 2021-05-02 20:35 - 2021-05-02 20:35 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe 2021-05-02 20:35 - 2021-05-02 20:35 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll 2021-05-02 20:35 - 2021-05-02 20:35 - 000001370 _____ C:\WINDOWS\system32\ThirdPartyNoticesBySHS.txt 2021-05-02 20:34 - 2021-05-02 20:34 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll 2021-05-02 20:34 - 2021-05-02 20:34 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll 2021-05-02 20:34 - 2021-05-02 20:34 - 000707016 _____ C:\WINDOWS\system32\TextShaping.dll 2021-05-02 20:34 - 2021-05-02 20:34 - 000643072 _____ C:\WINDOWS\system32\WindowManagementAPI.dll 2021-05-02 20:34 - 2021-05-02 20:34 - 000306688 _____ C:\WINDOWS\system32\HeatCore.dll 2021-05-02 20:34 - 2021-05-02 20:34 - 000231248 _____ C:\WINDOWS\system32\containerdevicemanagement.dll 2021-05-02 20:34 - 2021-05-02 20:34 - 000091136 _____ C:\WINDOWS\system32\Drivers\cimfs.sys 2021-05-02 20:34 - 2021-05-02 20:34 - 000029696 _____ (The ICU Project) C:\WINDOWS\system32\icuuc.dll 2021-05-02 20:34 - 2021-05-02 20:34 - 000025088 _____ (The ICU Project) C:\WINDOWS\system32\icuin.dll 2021-05-02 20:33 - 2021-05-02 20:33 - 004227116 _____ C:\WINDOWS\system32\DefaultHrtfs.bin 2021-05-02 20:33 - 2021-05-02 20:33 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv 2021-05-02 20:33 - 2021-05-02 20:33 - 000455168 _____ C:\WINDOWS\system32\ssdm.dll 2021-05-02 20:33 - 2021-05-02 20:33 - 000363520 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll 2021-05-02 20:33 - 2021-05-02 20:33 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll 2021-05-02 20:33 - 2021-05-02 20:33 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl 2021-05-02 20:33 - 2021-05-02 20:33 - 000197632 _____ C:\WINDOWS\system32\IHDS.dll 2021-05-02 20:33 - 2021-05-02 20:33 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe 2021-05-02 20:33 - 2021-05-02 20:33 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll 2021-05-02 20:33 - 2021-05-02 20:33 - 000074240 _____ C:\WINDOWS\system32\rdsxvmaudio.dll 2021-05-02 20:33 - 2021-05-02 20:33 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll 2021-05-02 20:33 - 2021-05-02 20:33 - 000064552 _____ C:\WINDOWS\system32\umpdc.dll 2021-05-02 20:33 - 2021-05-02 20:33 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msacm32.drv 2021-05-02 20:33 - 2021-05-02 20:33 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe 2021-05-02 20:30 - 2021-05-19 21:18 - 000000000 ____D C:\Users\Admin 2021-05-02 20:30 - 2021-05-02 20:30 - 000000000 _SHDL C:\Users\Admin\Ustawienia lokalne 2021-05-02 20:30 - 2021-05-02 20:30 - 000000000 _SHDL C:\Users\Admin\Szablony 2021-05-02 20:30 - 2021-05-02 20:30 - 000000000 _SHDL C:\Users\Admin\Moje dokumenty 2021-05-02 20:30 - 2021-05-02 20:30 - 000000000 _SHDL C:\Users\Admin\Menu Start 2021-05-02 20:30 - 2021-05-02 20:30 - 000000000 _SHDL C:\Users\Admin\Documents\Moje wideo 2021-05-02 20:30 - 2021-05-02 20:30 - 000000000 _SHDL C:\Users\Admin\Documents\Moje obrazy 2021-05-02 20:30 - 2021-05-02 20:30 - 000000000 _SHDL C:\Users\Admin\Documents\Moja muzyka 2021-05-02 20:30 - 2021-05-02 20:30 - 000000000 _SHDL C:\Users\Admin\Dane aplikacji 2021-05-02 20:30 - 2021-05-02 20:30 - 000000000 _SHDL C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2021-05-02 20:30 - 2021-05-02 20:30 - 000000000 _SHDL C:\Users\Admin\AppData\Local\Tymczasowe pliki internetowe 2021-05-02 20:30 - 2021-05-02 20:30 - 000000000 _SHDL C:\Users\Admin\AppData\Local\Historia 2021-05-02 20:30 - 2021-05-02 20:30 - 000000000 _SHDL C:\Users\Admin\AppData\Local\Dane aplikacji 2021-05-02 20:30 - 2019-12-07 11:10 - 000001105 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-05-02 20:27 - 2016-11-01 23:05 - 000103952 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL 2021-05-02 20:27 - 2016-11-01 23:05 - 000099848 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL 2021-05-02 20:22 - 2021-05-19 21:54 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-05-02 20:22 - 2021-05-02 20:23 - 000355064 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-05-02 20:21 - 2021-05-02 20:21 - 000000112 ___SH C:\bootTel.dat 2021-05-02 20:09 - 2021-05-19 21:25 - 000008192 ___SH C:\DumpStack.log.tmp 2021-05-02 20:06 - 2021-05-02 20:06 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer 2021-05-02 20:06 - 2021-05-02 20:06 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies 2021-05-02 20:06 - 2021-05-02 20:06 - 000000000 ____D C:\Program Files (x86)\MSBuild 2021-05-02 20:05 - 2021-05-02 20:05 - 000000000 ____D C:\Program Files\Reference Assemblies 2021-05-02 20:05 - 2021-05-02 20:05 - 000000000 ____D C:\Program Files\MSBuild 2021-04-27 16:18 - 2021-05-19 21:55 - 000000000 ___DC C:\WINDOWS\Panther 2021-04-26 10:10 - 2021-04-26 09:54 - 000062153 _____ C:\Users\Admin\Desktop\ZW_5446076-1.pdf 2021-04-26 10:10 - 2021-04-26 09:52 - 000062026 _____ C:\Users\Admin\Desktop\etykieta-P6NX-2021.pdf 2021-04-26 09:54 - 2021-04-26 09:54 - 000062153 _____ C:\Users\Admin\Downloads\ZW_5446076-1.pdf 2021-04-26 09:52 - 2021-04-26 09:52 - 000062026 _____ C:\Users\Admin\Downloads\etykieta-P6NX-2021.pdf 2021-04-24 17:04 - 2021-04-24 17:41 - 000000000 ____D C:\Users\Admin\Desktop\Nowy folder 2021-04-24 16:58 - 2021-04-24 16:58 - 000000000 ____D C:\Users\Admin\telefon 2021-04-22 11:34 - 2021-04-22 11:34 - 000000000 ___HD C:\$WinREAgent ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-05-19 22:17 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-05-19 22:17 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-05-19 22:08 - 2019-06-18 17:39 - 000000000 ____D C:\Users\Admin\AppData\Local\Packages 2021-05-19 22:07 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-05-19 21:56 - 2020-06-08 11:07 - 000000000 ____D C:\Users\Admin\AppData\Roaming\.minecraft 2021-05-19 21:55 - 2020-06-08 11:09 - 000000000 ____D C:\Users\Admin\AppData\Roaming\.tlauncher 2021-05-19 21:51 - 2020-07-26 13:25 - 000000000 ____D C:\Program Files\CCleaner 2021-05-19 21:38 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Help 2021-05-19 21:37 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2021-05-19 21:26 - 2019-06-27 13:30 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2021-05-19 21:26 - 2019-06-27 13:30 - 000000000 __SHD C:\Users\Admin\IntelGraphicsProfiles 2021-05-19 21:14 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2021-05-19 21:09 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2021-05-19 20:53 - 2019-12-07 17:08 - 000931332 _____ C:\WINDOWS\system32\perfh015.dat 2021-05-19 20:53 - 2019-12-07 17:08 - 000196006 _____ C:\WINDOWS\system32\perfc015.dat 2021-05-19 19:54 - 2019-06-27 15:17 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2021-05-19 19:31 - 2021-02-07 12:13 - 000000000 ____D C:\Program Files (x86)\Steam 2021-05-19 19:25 - 2019-09-09 12:50 - 000000000 ____D C:\ProgramData\AVAST Software 2021-05-19 19:25 - 2019-06-27 14:36 - 000000000 ____D C:\Program Files\Opera 2021-05-19 18:47 - 2019-06-27 14:36 - 000001195 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Przeglądarka Opera.lnk 2021-05-19 18:10 - 2019-06-27 13:17 - 000000000 ____D C:\Users\Admin\AppData\Local\D3DSCache 2021-05-06 19:38 - 2019-09-05 19:32 - 000000000 ____D C:\ProgramData\CanonIJPLM 2021-05-06 15:30 - 2020-09-15 18:52 - 000000000 ____D C:\Users\Admin\AppData\Local\SquirrelTemp 2021-05-06 15:29 - 2020-09-15 18:53 - 000002368 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk 2021-05-06 15:29 - 2020-09-15 18:53 - 000002360 _____ C:\Users\Admin\Desktop\Microsoft Teams.lnk 2021-05-05 13:50 - 2020-10-01 16:53 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2021-05-05 13:49 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-05-04 16:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\appcompat 2021-05-03 12:06 - 2019-09-13 10:16 - 000000000 ____D C:\Users\Admin\AppData\Local\LenovoServiceBridge 2021-05-03 08:17 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog 2021-05-02 21:08 - 2021-02-07 12:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam 2021-05-02 21:08 - 2020-07-26 13:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2021-05-02 21:08 - 2020-06-08 11:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2021-05-02 21:08 - 2020-05-30 11:17 - 000000000 ____D C:\Program Files\UNP 2021-05-02 21:08 - 2019-12-07 11:14 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template 2021-05-02 21:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed 2021-05-02 21:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase 2021-05-02 21:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\spool 2021-05-02 21:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF 2021-05-02 21:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Macromed 2021-05-02 21:08 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2021-05-02 21:08 - 2019-09-05 19:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon G2010 series Podręcznik ekranowy 2021-05-02 21:08 - 2019-08-11 15:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HiSuite 2021-05-02 21:08 - 2019-06-27 14:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2021-05-02 21:08 - 2019-06-27 14:47 - 000000000 ____D C:\WINDOWS\SHELLNEW 2021-05-02 21:08 - 2019-06-27 14:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIMP3 2021-05-02 21:08 - 2019-06-27 14:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2021-05-02 21:08 - 2019-06-27 14:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2021-05-02 21:08 - 2019-06-27 14:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack 2021-05-02 21:08 - 2019-06-27 14:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2021-05-02 21:08 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated 2021-05-02 21:08 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\MsDtc 2021-05-02 21:07 - 2019-12-07 11:18 - 000000000 ____D C:\WINDOWS\Setup 2021-05-02 21:03 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-05-02 21:03 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\USOPrivate 2021-05-02 21:03 - 2019-09-05 19:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities 2021-05-02 21:03 - 2019-06-27 13:31 - 000000000 ____D C:\Program Files\Synaptics 2021-05-02 21:03 - 2019-06-27 13:30 - 000000000 ____D C:\Program Files\Intel 2021-05-02 21:03 - 2019-06-27 13:19 - 000000000 ____D C:\ProgramData\Packages 2021-05-02 21:02 - 2019-06-18 17:39 - 000000000 __RHD C:\Users\Public\AccountPictures 2021-05-02 21:02 - 2019-06-18 17:39 - 000000000 ___RD C:\Users\Admin\3D Objects 2021-05-02 20:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-05-02 20:58 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows NT 2021-05-02 20:58 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows Defender 2021-05-02 20:55 - 2021-04-15 18:07 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-05-02 20:55 - 2021-04-15 18:07 - 000002286 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2021-05-02 20:51 - 2019-12-07 17:11 - 000000000 ____D C:\Program Files\Windows Photo Viewer 2021-05-02 20:51 - 2019-12-07 17:11 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2021-05-02 20:51 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12 2021-05-02 20:51 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs 2021-05-02 20:51 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP 2021-05-02 20:51 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\F12 2021-05-02 20:51 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2021-05-02 20:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2021-05-02 20:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2021-05-02 20:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation 2021-05-02 20:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2021-05-02 20:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz 2021-05-02 20:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords 2021-05-02 20:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2021-05-02 20:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com 2021-05-02 20:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers 2021-05-02 20:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources 2021-05-02 20:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2021-05-02 20:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2021-05-02 20:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2021-05-02 20:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep 2021-05-02 20:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences 2021-05-02 20:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup 2021-05-02 20:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation 2021-05-02 20:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz 2021-05-02 20:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV 2021-05-02 20:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT 2021-05-02 20:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Keywords 2021-05-02 20:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE 2021-05-02 20:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX 2021-05-02 20:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2021-05-02 20:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Com 2021-05-02 20:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser 2021-05-02 20:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers 2021-05-02 20:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences 2021-05-02 20:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents 2021-05-02 20:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning 2021-05-02 20:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2021-05-02 20:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\IME 2021-05-02 20:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\DiagTrack 2021-05-02 20:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-05-02 20:51 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System 2021-05-02 20:51 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender 2021-05-02 20:51 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing 2021-05-02 20:49 - 2019-12-07 17:11 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll 2021-05-02 20:49 - 2019-12-07 17:11 - 000020908 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml 2021-05-02 20:43 - 2019-12-07 11:14 - 000000000 __RSD C:\WINDOWS\Media 2021-05-02 20:43 - 2019-12-07 11:14 - 000000000 __RHD C:\Users\Public\Libraries 2021-05-02 20:39 - 2019-06-27 14:37 - 000002307 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2021-05-02 20:39 - 2019-06-27 14:37 - 000002266 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2021-05-02 20:33 - 2021-02-07 13:54 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2021-05-02 20:33 - 2020-10-27 12:59 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom 2021-05-02 20:33 - 2020-05-30 13:11 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wargaming.net 2021-05-02 20:33 - 2019-07-18 14:44 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo 2021-05-02 20:33 - 2019-06-27 14:37 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2021-05-02 20:31 - 2019-10-25 11:41 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Xiaomi 2021-05-02 20:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\System 2021-05-02 20:28 - 2019-06-27 13:19 - 000000000 ____D C:\Program Files (x86)\USB Camera 2021-05-02 20:27 - 2019-06-27 13:30 - 000000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat 2021-05-02 20:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState 2021-05-02 20:06 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI 2021-05-02 20:06 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\MUI 2021-04-29 14:51 - 2019-06-18 17:42 - 000000000 ___RD C:\Users\Admin\OneDrive ==================== Pliki w katalogu głównym wybranych folderów ======== 2019-09-17 14:02 - 2020-06-19 13:35 - 000000036 _____ () C:\Users\Admin\AppData\Roaming\WB.CFG 2020-11-20 13:50 - 2020-11-20 13:50 - 000000000 _____ () C:\Users\Admin\AppData\Local\BIT42E0.tmp 2020-11-23 14:02 - 2020-11-23 14:02 - 000000000 _____ () C:\Users\Admin\AppData\Local\BIT664A.tmp 2020-11-23 14:02 - 2020-11-23 14:02 - 000000000 _____ () C:\Users\Admin\AppData\Local\BIT667A.tmp 2020-05-27 13:02 - 2020-05-27 13:02 - 000000000 _____ () C:\Users\Admin\AppData\Local\BITA0F5.tmp 2020-05-27 13:02 - 2020-05-27 13:02 - 000000000 _____ () C:\Users\Admin\AppData\Local\BITA125.tmp 2020-11-21 14:02 - 2020-11-21 14:02 - 000000000 _____ () C:\Users\Admin\AppData\Local\BITAFC2.tmp 2020-11-20 13:51 - 2020-11-20 13:51 - 000000000 _____ () C:\Users\Admin\AppData\Local\BITE51D.tmp 2020-11-24 16:08 - 2020-11-24 16:08 - 000000000 _____ () C:\Users\Admin\AppData\Local\BITF8F2.tmp 2020-03-25 14:02 - 2020-03-25 14:02 - 000000000 _____ () C:\Users\Admin\AppData\Local\{51DC152E-6800-49B9-8823-4BA25FC74CA7} 2021-05-10 10:16 - 2021-05-10 10:16 - 000000000 _____ () C:\Users\Admin\AppData\Local\{D91464FB-1E08-4DE6-B1BB-527EBCB1D4D9} ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================