Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 11-07-2021 Uruchomiony przez Andman (administrator) LAPTOP-S6E15FKF (LENOVO 80SV) (12-07-2021 00:09:41) Uruchomiony z C:\Users\Andman\Desktop Załadowane profile: Andman Platform: Windows 10 Home Wersja 21H1 19043.1083 (X64) Język: Polski (Polska) Domyślna przeglądarka: "H:\Program Files H\Slimjet\slimjet.exe" -- "%1" Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe (Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe (Conexant Systems, Inc.) [Brak podpisu cyfrowego] C:\Program Files\CONEXANT\SAII\CxUtilSvc.exe (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe (Fortemedia Inc -> ) C:\Program Files\CONEXANT\ForteConfig\fmapp.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_1a33d2f73651d989\igfxCUIService.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_1a33d2f73651d989\igfxEM.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_1a33d2f73651d989\IntelCpHDCPSvc.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_1a33d2f73651d989\IntelCpHeciSvc.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_f222132bfa8270de\RstMwService.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2106.14307.0_x64__8wekyb3d8bbwe\Cortana.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\NisSrv.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [4179544 2017-03-08] (Synaptics Incorporated -> Synaptics Incorporated) HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [602968 2015-12-07] (Conexant Systems, Inc. -> Conexant Systems, Inc.) HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] (Fortemedia Inc -> ) HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1831768 2016-08-29] (Conexant Systems, Inc. -> Conexant Systems, Inc.) HKLM\...\Print\Monitors\HP D811 Status Monitor: C:\Windows\system32\hpinkstsD811LM.dll [393352 2017-04-05] (Hewlett Packard -> HP Inc.) ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {612BB8B7-43CE-4307-B1D1-9345EE911DE0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MpCmdRun.exe [644888 2021-07-09] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {66E39077-EA6D-4950-845B-69012E9B1A40} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MpCmdRun.exe [644888 2021-07-09] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {7D3FBA4B-6569-4AFC-8665-A4F2B782F966} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MpCmdRun.exe [644888 2021-07-09] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {DB58C4FE-5FCA-4581-8853-B8EC5EF5BD10} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2915685255-4076878800-3373238685-1002 => C:\Users\Andman\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe Task: {FD73CC48-9FFD-4D43-88EB-3EBB9783323E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MpCmdRun.exe [644888 2021-07-09] (Microsoft Windows Publisher -> Microsoft Corporation) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{3255ae1f-61d4-4530-8779-da53f622b2c0}: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{f569bedf-2ce5-433c-b598-3c0cc4edda4a}: [DhcpNameServer] 192.168.1.254 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\Andman\AppData\Local\Microsoft\Edge\User Data\Default [2021-07-12] Edge Extension: (uBlock Origin) - C:\Users\Andman\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\odfafepnkmbhccpbejgmiehpchacaeak [2021-06-30] FireFox: ======== FF Plugin: @videolan.org/vlc,version=3.0.11 -> H:\Program Files H\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.12 -> H:\Program Files H\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.14 -> H:\Program Files H\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.16 -> H:\Program Files H\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.8 -> H:\Program Files H\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 CxUtilSvc; C:\Program Files\Conexant\SAII\CxUtilSvc.exe [132096 2016-05-12] (Conexant Systems, Inc.) [Brak podpisu cyfrowego] S3 Origin Client Service; H:\Program Files H\Origin\OriginClientService.exe [2535000 2021-02-24] (Electronic Arts, Inc. -> Electronic Arts) S3 Origin Web Helper Service; H:\Program Files H\Origin\OriginWebHelperService.exe [3480152 2021-02-24] (Electronic Arts, Inc. -> Electronic Arts) S3 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [182128 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\NisSrv.exe [2665432 2021-07-09] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MsMpEng.exe [136640 2021-07-09] (Microsoft Windows Publisher -> Microsoft Corporation) S3 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvlti.inf_amd64_210024c92ce4e08f\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvlti.inf_amd64_210024c92ce4e08f\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [43376 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2021-07-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [425192 2021-07-09] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [76008 2021-07-09] (Microsoft Windows -> Microsoft Corporation) S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-13] (CyberLink -> "CyberLink) S3 dtlitescsibus; \SystemRoot\System32\drivers\dtlitescsibus.sys [X] S4 sptd2; System32\Drivers\sptd2.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-07-11 15:04 - 2021-07-11 15:04 - 000000000 ____D C:\WINDOWS\system32\Tasks\Agent Activation Runtime 2021-07-11 14:51 - 2021-07-11 14:51 - 000000000 ____D C:\WINDOWS\Panther 2021-07-09 22:02 - 2021-07-09 22:02 - 000000000 ____D C:\Users\Busy\AppData\Local\NVIDIA 2021-07-09 21:47 - 2021-07-09 21:47 - 000000000 ____D C:\Users\Busy\AppData\Local\Comms 2021-07-09 21:45 - 2021-07-09 21:46 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2915685255-4076878800-3373238685-1002 2021-07-09 21:45 - 2021-07-09 21:46 - 000000000 ___RD C:\Users\Busy\OneDrive 2021-07-09 21:45 - 2021-07-09 21:45 - 000000000 ____D C:\Users\Busy\AppData\Local\ElevatedDiagnostics 2021-07-09 21:44 - 2021-07-09 21:45 - 000000000 ____D C:\Users\Busy\AppData\Local\PlaceholderTileLogoFolder 2021-07-09 21:43 - 2021-07-09 22:03 - 000000000 ____D C:\Users\Busy\AppData\Local\Packages 2021-07-09 21:43 - 2021-07-09 21:43 - 000002369 _____ C:\Users\Busy\Desktop\Microsoft Edge.lnk 2021-07-09 21:43 - 2021-07-09 21:43 - 000000000 ___RD C:\Users\Busy\3D Objects 2021-07-09 21:43 - 2021-07-09 21:43 - 000000000 ____D C:\Users\Busy\AppData\Roaming\Adobe 2021-07-09 21:43 - 2021-07-09 21:43 - 000000000 ____D C:\Users\Busy\AppData\Local\VirtualStore 2021-07-09 21:43 - 2021-07-09 21:43 - 000000000 ____D C:\Users\Busy\AppData\Local\Publishers 2021-07-09 21:43 - 2021-07-09 21:43 - 000000000 ____D C:\Users\Busy\AppData\Local\D3DSCache 2021-07-09 21:42 - 2021-07-10 11:30 - 000000000 __SHD C:\Users\Busy\IntelGraphicsProfiles 2021-07-09 21:42 - 2021-07-09 21:46 - 000002415 _____ C:\Users\Busy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-07-09 21:42 - 2021-07-09 21:45 - 000000000 ____D C:\Users\Busy 2021-07-09 21:42 - 2021-07-09 21:43 - 000000000 ____D C:\Users\Busy\AppData\Local\Intel 2021-07-09 21:42 - 2021-07-09 21:43 - 000000000 ____D C:\Users\Busy\AppData\Local\ConnectedDevicesPlatform 2021-07-09 21:42 - 2021-07-09 21:42 - 000000020 ___SH C:\Users\Busy\ntuser.ini 2021-07-09 21:42 - 2021-07-09 21:42 - 000000000 _SHDL C:\Users\Busy\Ustawienia lokalne 2021-07-09 21:42 - 2021-07-09 21:42 - 000000000 _SHDL C:\Users\Busy\Szablony 2021-07-09 21:42 - 2021-07-09 21:42 - 000000000 _SHDL C:\Users\Busy\Moje dokumenty 2021-07-09 21:42 - 2021-07-09 21:42 - 000000000 _SHDL C:\Users\Busy\Menu Start 2021-07-09 21:42 - 2021-07-09 21:42 - 000000000 _SHDL C:\Users\Busy\Documents\Moje wideo 2021-07-09 21:42 - 2021-07-09 21:42 - 000000000 _SHDL C:\Users\Busy\Documents\Moje obrazy 2021-07-09 21:42 - 2021-07-09 21:42 - 000000000 _SHDL C:\Users\Busy\Documents\Moja muzyka 2021-07-09 21:42 - 2021-07-09 21:42 - 000000000 _SHDL C:\Users\Busy\Dane aplikacji 2021-07-09 21:42 - 2021-07-09 21:42 - 000000000 _SHDL C:\Users\Busy\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2021-07-09 21:42 - 2021-07-09 21:42 - 000000000 _SHDL C:\Users\Busy\AppData\Local\Tymczasowe pliki internetowe 2021-07-09 21:42 - 2021-07-09 21:42 - 000000000 _SHDL C:\Users\Busy\AppData\Local\Historia 2021-07-09 21:42 - 2021-07-09 21:42 - 000000000 _SHDL C:\Users\Busy\AppData\Local\Dane aplikacji 2021-07-09 21:42 - 2019-09-16 14:10 - 000000000 ____D C:\Users\Busy\AppData\Roaming\Macromedia 2021-07-08 20:00 - 2021-07-08 20:00 - 000011351 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-07-06 00:31 - 2021-07-06 00:31 - 000000000 ____D C:\Indeks 2021-07-06 00:25 - 2021-07-06 00:25 - 000000000 ____D C:\Users\Andman\AppData\Local\Apps\2.0 2021-07-05 23:30 - 2021-07-05 23:32 - 000000089 _____ C:\Users\Andman\Desktop\Indeksowanie.txt 2021-07-05 22:02 - 2021-07-05 22:02 - 000461048 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-07-04 12:04 - 2021-07-04 12:04 - 000000000 ____D C:\WINDOWS\system32\lxss 2021-07-04 12:00 - 2021-06-22 03:25 - 001858680 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2021-07-04 12:00 - 2021-06-22 03:25 - 001858680 _____ C:\WINDOWS\system32\vulkaninfo.exe 2021-07-04 12:00 - 2021-06-22 03:25 - 001474336 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2021-07-04 12:00 - 2021-06-22 03:25 - 001438824 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2021-07-04 12:00 - 2021-06-22 03:25 - 001438824 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2021-07-04 12:00 - 2021-06-22 03:25 - 001212192 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2021-07-04 12:00 - 2021-06-22 03:25 - 001097832 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2021-07-04 12:00 - 2021-06-22 03:25 - 001097832 _____ C:\WINDOWS\system32\vulkan-1.dll 2021-07-04 12:00 - 2021-06-22 03:25 - 000951912 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2021-07-04 12:00 - 2021-06-22 03:25 - 000951912 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2021-07-04 12:00 - 2021-06-22 03:21 - 001519384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2021-07-04 12:00 - 2021-06-22 03:21 - 001170224 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2021-07-04 12:00 - 2021-06-22 03:21 - 000715568 _____ C:\WINDOWS\system32\nvofapi64.dll 2021-07-04 12:00 - 2021-06-22 03:21 - 000675088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll 2021-07-04 12:00 - 2021-06-22 03:21 - 000641328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll 2021-07-04 12:00 - 2021-06-22 03:21 - 000575792 _____ C:\WINDOWS\SysWOW64\nvofapi.dll 2021-07-04 12:00 - 2021-06-22 03:21 - 000563992 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll 2021-07-04 12:00 - 2021-06-22 03:20 - 002111264 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2021-07-04 12:00 - 2021-06-22 03:20 - 001594656 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2021-07-04 12:00 - 2021-06-22 03:20 - 000917280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll 2021-07-04 12:00 - 2021-06-22 03:20 - 000748832 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2021-07-04 12:00 - 2021-06-22 03:20 - 000704792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe 2021-07-04 12:00 - 2021-06-21 10:43 - 000082968 _____ C:\WINDOWS\system32\nvinfo.pb 2021-07-04 11:59 - 2021-06-22 03:19 - 008852760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2021-07-04 11:59 - 2021-06-22 03:19 - 007918872 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2021-07-04 11:59 - 2021-06-22 03:19 - 004986648 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2021-07-04 11:59 - 2021-06-22 03:19 - 002924304 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2021-07-04 11:59 - 2021-06-22 03:19 - 000446744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe 2021-07-04 11:59 - 2021-06-22 03:18 - 000848672 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe 2021-07-04 11:59 - 2021-06-22 03:17 - 006215312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll 2021-07-04 10:35 - 2021-07-04 10:37 - 000000000 ____D C:\Users\Andman\Desktop\GiveMePower 2021-07-04 10:05 - 2021-07-04 10:05 - 000000000 ____D C:\Users\Andman\Desktop\ETS 2021-07-04 01:02 - 2021-07-04 01:02 - 000000000 ____D C:\Users\Andman\Desktop\SetACL 2021-07-03 23:44 - 2021-07-12 00:09 - 000000000 ____D C:\Users\Andman\Desktop\FRST-OlderVersion 2021-07-03 23:44 - 2021-07-06 01:00 - 000001516 _____ C:\Users\Andman\Desktop\Fixlog.txt 2021-07-03 20:06 - 2021-07-03 22:10 - 000000441 _____ C:\Users\Andman\Desktop\odpowiedź.txt 2021-07-02 17:25 - 2021-07-05 20:47 - 000045555 _____ C:\Users\Andman\Desktop\Shortcut.txt 2021-07-02 17:22 - 2021-07-05 20:47 - 000026834 _____ C:\Users\Andman\Desktop\Addition.txt 2021-07-02 17:14 - 2021-07-12 00:11 - 000010890 _____ C:\Users\Andman\Desktop\FRST.txt 2021-07-01 22:55 - 2021-07-01 22:55 - 008553680 _____ (Malwarebytes) C:\Users\Andman\Desktop\adwcleaner_8.3.0.exe 2021-07-01 12:31 - 2021-07-01 12:31 - 002371072 _____ C:\WINDOWS\system32\rdpnano.dll 2021-07-01 12:31 - 2021-07-01 12:31 - 001314128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2021-07-01 12:31 - 2021-07-01 12:31 - 000570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2021-07-01 12:31 - 2021-07-01 12:31 - 000452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2021-07-01 12:31 - 2021-07-01 12:31 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl 2021-07-01 12:31 - 2021-07-01 12:31 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl 2021-07-01 12:30 - 2021-07-01 12:30 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll 2021-07-01 12:30 - 2021-07-01 12:30 - 001823304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2021-07-01 12:30 - 2021-07-01 12:30 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2021-07-01 12:30 - 2021-07-01 12:30 - 000097792 _____ C:\WINDOWS\system32\Drivers\cimfs.sys 2021-07-01 12:30 - 2021-07-01 12:30 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe 2021-06-19 12:01 - 2021-06-30 17:31 - 000000695 _____ C:\Users\Public\Desktop\VLC media player.lnk 2021-06-14 21:16 - 2021-06-14 21:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeePassXC 2021-06-12 10:05 - 2021-06-12 10:05 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2021-06-12 10:04 - 2021-06-12 10:04 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2021-06-12 10:04 - 2021-06-12 10:04 - 001864192 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll 2021-06-12 10:04 - 2021-06-12 10:04 - 000468440 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll 2021-06-12 10:04 - 2021-06-12 10:04 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv 2021-06-12 10:04 - 2021-06-12 10:04 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe 2021-06-12 10:03 - 2021-06-12 10:03 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll 2021-06-12 10:03 - 2021-06-12 10:03 - 000657464 _____ C:\WINDOWS\system32\WindowManagementAPI.dll 2021-06-12 10:03 - 2021-06-12 10:03 - 000563712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv 2021-06-12 10:03 - 2021-06-12 10:03 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll 2021-06-12 10:03 - 2021-06-12 10:03 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-07-12 00:10 - 2020-05-20 21:56 - 000000000 ____D C:\FRST 2021-07-12 00:09 - 2020-05-20 21:55 - 002301440 _____ (Farbar) C:\Users\Andman\Desktop\FRST64.exe 2021-07-12 00:08 - 2019-09-15 18:53 - 000000000 ____D C:\Users\Andman\AppData\LocalLow\Mozilla 2021-07-12 00:01 - 2017-10-26 04:20 - 000000000 __SHD C:\Users\Andman\IntelGraphicsProfiles 2021-07-11 15:03 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-07-11 14:51 - 2020-11-19 01:29 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-07-11 14:50 - 2021-03-12 18:46 - 000008192 ___SH C:\DumpStack.log.tmp 2021-07-11 14:50 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2021-07-11 14:13 - 2021-01-27 17:02 - 000007613 _____ C:\Users\Andman\AppData\Local\Resmon.ResmonCfg 2021-07-11 14:06 - 2020-11-19 01:31 - 000002455 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-07-11 14:06 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-07-11 14:06 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-07-11 13:59 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2021-07-10 11:53 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-07-09 21:47 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog 2021-07-09 21:43 - 2020-11-19 01:32 - 000000000 __RHD C:\Users\Public\AccountPictures 2021-07-09 21:43 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-07-09 21:16 - 2020-11-19 01:29 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2021-07-09 17:36 - 2020-07-08 15:51 - 000000000 ____D C:\Users\Andman\AppData\Local\KeePassXC 2021-07-08 20:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-07-07 12:25 - 2020-11-19 00:29 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-07-07 11:19 - 2021-03-24 13:50 - 000000000 ____D C:\Users\Andman\AppData\Local\CrashDumps 2021-07-04 21:02 - 2017-10-26 11:09 - 000000000 ____D C:\Users\Andman\AppData\LocalLow\Temp 2021-07-04 12:05 - 2020-08-11 18:15 - 000000000 ____D C:\Users\Andman\AppData\Local\NVIDIA 2021-07-04 12:04 - 2019-09-15 16:44 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation 2021-07-04 12:04 - 2019-09-15 16:44 - 000000000 ____D C:\ProgramData\NVIDIA 2021-07-04 12:01 - 2017-03-20 16:45 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2021-07-04 10:36 - 2019-09-15 17:28 - 000000000 ____D C:\Users\Andman\AppData\Local\VirtualStore 2021-07-04 00:28 - 2021-03-12 19:09 - 001767980 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-07-04 00:28 - 2019-12-07 17:08 - 000785420 _____ C:\WINDOWS\system32\perfh015.dat 2021-07-04 00:28 - 2019-12-07 17:08 - 000152280 _____ C:\WINDOWS\system32\perfc015.dat 2021-07-04 00:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources 2021-07-04 00:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2021-07-03 23:21 - 2019-09-16 15:07 - 000000000 ____D C:\Users\Andman\AppData\Local\ElevatedDiagnostics 2021-07-03 20:01 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Registration 2021-07-02 20:55 - 2017-10-26 01:28 - 000000000 ____D C:\Users\Andman\Desktop\dostęp 2021-07-02 16:46 - 2021-04-26 11:18 - 000003416 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d71761e359dcc2 2021-07-02 16:46 - 2020-11-19 01:31 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-07-01 12:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2021-07-01 12:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2021-07-01 12:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2021-07-01 12:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup 2021-07-01 12:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-07-01 12:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2021-07-01 12:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning 2021-06-30 17:32 - 2019-09-15 18:47 - 000000000 ____D C:\Users\Andman\AppData\Roaming\vlc 2021-06-22 03:17 - 2021-02-09 17:18 - 007279232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll 2021-06-21 10:11 - 2020-10-07 14:40 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2021-06-14 21:16 - 2021-01-14 17:35 - 000000000 ____D C:\Program Files\KeePassXC 2021-06-12 10:17 - 2019-09-15 18:53 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2021-06-12 10:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV 2021-06-12 10:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE 2021-06-12 10:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX 2021-06-12 10:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz 2021-06-12 10:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV 2021-06-12 10:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE 2021-06-12 10:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX 2021-06-12 09:27 - 2019-09-16 13:37 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-06-12 09:12 - 2019-09-16 13:37 - 132447432 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe ==================== Pliki w katalogu głównym wybranych folderów ======== 2021-01-27 17:02 - 2021-07-11 14:13 - 000007613 _____ () C:\Users\Andman\AppData\Local\Resmon.ResmonCfg ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================