Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 14-11-2021 Uruchomiony przez Kamil (administrator) DESKTOP-B17IUO1 (Micro-Star International Co., Ltd. GL72 7RD) (17-11-2021 13:04:12) Uruchomiony z C:\Users\Kamil\Desktop Załadowane profile: Kamil Platform: Microsoft Windows 10 Home Wersja 21H1 19043.1348 (X64) Język: Polski (Polska) Domyślna przeglądarka: Opera Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\WirelessKB850NotificationService.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCopyAccelerator.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2> (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmii.inf_amd64_b32ce94116e244cf\Display.NvContainer\NVDisplay.Container.exe <2> (Opera Software AS -> Opera Software) C:\Program Files\Opera GX\80.0.4170.91\opera_crashreporter.exe (Opera Software AS -> Opera Software) C:\Program Files\Opera GX\opera.exe <39> (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [SCM] => C:\Program Files (x86)\SCM\SCM.exe [301848 2017-06-08] (Micro-Star International CO., LTD. -> ) [Brak podpisu cyfrowego] HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9230312 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [Nahimic2UILauncher] => C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2UILauncher.exe [734904 2017-07-04] (A-Volute -> Nahimic) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [321112 2019-07-29] (Intel(R) Rapid Storage Technology -> Intel Corporation) HKLM-x32\...\Run: [Intel Driver & Support Assistant] => C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe [288184 2021-08-10] (Intel Corporation -> Intel) HKLM-x32\...\Run: [Opera GX Browser Assistant] => C:\Program Files\Opera GX\assistant\browser_assistant.exe [3291288 2021-02-01] (Opera Software AS -> Opera Software) HKU\S-1-5-21-210618190-10895605-1632868096-1001\...\Run: [Steam] => D:\Steam\steam.exe [4267928 2021-10-13] (Valve -> Valve Corporation) HKU\S-1-5-21-210618190-10895605-1632868096-1001\...\Run: [Battle.net] => D:\Battle.net\Battle.net.exe [1087376 2021-11-14] (Blizzard Entertainment, Inc. -> Blizzard Entertainment) HKU\S-1-5-21-210618190-10895605-1632868096-1001\...\Run: [GalaxyClient] => [X] HKU\S-1-5-21-210618190-10895605-1632868096-1001\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [13926752 2021-10-03] (GOG Sp. z o.o. -> GOG.com) HKU\S-1-5-21-210618190-10895605-1632868096-1001\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2144704 2021-11-15] (Wargaming.net Limited -> Wargaming.net) HKU\S-1-5-21-210618190-10895605-1632868096-1001\...\Run: [Discord] => C:\Users\Kamil\AppData\Local\Discord\Update.exe [1512104 2021-05-24] (Discord Inc. -> GitHub) HKU\S-1-5-21-210618190-10895605-1632868096-1001\...\MountPoints2: G - G:\HiSuiteDownLoader.exe HKU\S-1-5-21-210618190-10895605-1632868096-1001\...\MountPoints2: {757220aa-74ac-11ea-9d4e-e8113242b3a6} - F:\HiSuiteDownLoader.exe HKU\S-1-5-21-210618190-10895605-1632868096-1001\...\MountPoints2: {86613b55-fc90-11e9-9ca2-e8113242b3a6} - F:\HiSuiteDownLoader.exe HKU\S-1-5-21-210618190-10895605-1632868096-1001\...\MountPoints2: {da129d61-2474-11ec-9ed3-10f0051295c0} - "I:\HiSuiteDownLoader.exe" HKLM\Software\...\AppCompatFlags\Custom\S3.EXE: [{1673baf1-fccd-4fa6-a1a1-0ce069442897}.sdb] -> GOG.com The Settlers 3 HKLM\Software\...\AppCompatFlags\Custom\S3_multi.EXE: [{1673baf1-fccd-4fa6-a1a1-0ce069442897}.sdb] -> GOG.com The Settlers 3 HKLM\Software\...\AppCompatFlags\Custom\S4Editor.exe: [{7df9aee9-805b-4a69-b372-ea6022cb47ff}.sdb] -> GOG.com The Settlers 4 GOLD HKLM\Software\...\AppCompatFlags\Custom\S4_Main.exe: [{7df9aee9-805b-4a69-b372-ea6022cb47ff}.sdb] -> GOG.com The Settlers 4 GOLD HKLM\Software\...\AppCompatFlags\InstalledSDB\{1673baf1-fccd-4fa6-a1a1-0ce069442897}: [DatabasePath] -> C:\Windows\AppPatch\CustomSDB\{1673baf1-fccd-4fa6-a1a1-0ce069442897}.sdb [2021-09-18] HKLM\Software\...\AppCompatFlags\InstalledSDB\{7df9aee9-805b-4a69-b372-ea6022cb47ff}: [DatabasePath] -> C:\Windows\AppPatch\CustomSDB\{7df9aee9-805b-4a69-b372-ea6022cb47ff}.sdb [2021-09-18] Startup: C:\Users\Kamil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GameRanger.lnk [2021-09-19] ShortcutTarget: GameRanger.lnk -> C:\Users\Kamil\AppData\Roaming\GameRanger\GameRanger\GameRanger.exe (GameRanger Technologies -> GameRanger Pty Ltd) ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {023506E8-0A58-4B1A-BD4C-FAAF2A44F325} - System32\Tasks\Nahimic2Svc32Run => C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2Svc32.exe [4412088 2017-07-04] (A-Volute -> ) Task: {12B015A5-FF73-4111-869D-2DB452BE0345} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-07] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {137B74F9-570F-4652-8680-ED90381F55B9} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-10-21] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log Task: {17D6695F-65E7-43E1-8C6D-926914F75B19} - System32\Tasks\Dragon_Center_updater => C:\ProgramData\MSI\Dragon [Argument = Center\DragonCenter_Updater.exe DragonCenter] Task: {27B6BD43-08DC-41DC-BB70-5EB3634AD08A} - System32\Tasks\Nahimic2Svc64Run => C:\Program Files\Nahimic\Nahimic2\UserInterface\x64\Nahimic2Svc64.exe [520376 2017-07-04] (A-Volute -> ) Task: {2DC07DA0-ECB8-410A-A241-3E9C51464E62} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-10-21] (NVIDIA Corporation -> NVIDIA Corporation) Task: {5B1DED2D-1CDC-420C-BDDD-648E5498D771} - System32\Tasks\Nahimic2UILauncherRun => C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2UILauncher.exe [734904 2017-07-04] (A-Volute -> Nahimic) Task: {77B02040-24DA-4FC0-8012-2A8FFF3E2CFC} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-10-21] (NVIDIA Corporation -> NVIDIA Corporation) Task: {7C8545D1-E848-4B3E-A577-E6CA93DAB6B0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-07] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {8D1C6ECE-16CD-4F5D-B692-C072D5A5FB3A} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel(R) Software Asset Manager -> Intel Corporation) Task: {9D19EA53-D84B-4421-9722-ECF6881F7F75} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-10-21] (NVIDIA Corporation -> NVIDIA Corporation) Task: {A1BCAE32-841F-4DF9-9A6F-91E4D2DF032B} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-10-21] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {AAAAC193-1F5A-45E6-A074-71DBD76359EA} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339120 2021-10-21] (NVIDIA Corporation -> NVIDIA Corporation) Task: {AC014396-F7C0-4BB2-84AF-DC0603B27FE2} - System32\Tasks\MSI_Dragon Center => C:\Program Files (x86)\MSI\Dragon Center\Dragon Center.exe [5603096 2018-01-24] (Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.) [Brak podpisu cyfrowego] Task: {B000D67F-67EA-45FB-8FEC-2A6350E99FD9} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-10-21] (NVIDIA Corporation -> NVIDIA Corporation) Task: {C00F68C7-C8E3-44EF-841E-FB3F92EDEF84} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-10-21] (NVIDIA Corporation -> NVIDIA Corporation) Task: {C2710CA6-B4DB-4657-BB9E-3DC888B8706F} - System32\Tasks\MSI_Help_Desk_Agent => C:\Program Files (x86)\MSI\Help Desk\MSI Update Agent.exe (Brak pliku) Task: {C6134AD8-CA9A-41E2-A395-CB1221CD24CD} - System32\Tasks\Opera GX scheduled assistant Autoupdate 1633081723 => C:\Program Files\Opera GX\launcher.exe [46162128 2021-11-04] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Program Files\Opera GX\assistant" $(Arg0) Task: {DD964A42-13D7-4F72-8691-EA11DCDF6B09} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-07] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {DE719CF0-CCBA-4A3F-BA31-ABB454400409} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-10-21] (NVIDIA Corporation -> NVIDIA Corporation) Task: {F08C4AFE-C410-4520-8666-2920750B29DE} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (Brak pliku) Task: {F30989EB-5054-43CC-A5CE-4FDF58DAA17E} - System32\Tasks\Opera GX scheduled Autoupdate 1631950149 => C:\Program Files\Opera GX\launcher.exe [46162128 2021-11-04] (Opera Software AS -> Opera Software) Task: {F6A8D134-D7A4-428D-A107-BCC44ECB1490} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-10-21] (NVIDIA Corporation -> NVIDIA Corporation) Task: {FC3E8CA9-85BA-4FA9-8EAB-D119C667582A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-11-07] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {FD759A4A-EB7A-4072-A0FC-4472E5361199} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\Windows\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs" Task: {FF8A22D5-316F-44BE-8590-D44EE9DE414F} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel(R) Software Asset Manager -> Intel Corporation) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{d180ff4c-bb53-40c6-9f36-10d1858b3301}: [DhcpNameServer] 192.168.1.254 Edge: ======= Edge Profile: C:\Users\Kamil\AppData\Local\Microsoft\Edge\User Data\Default [2021-11-16] FireFox: ======== FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN) Opera: ======= StartMenuInternet: (HKLM) Opera GXStable - C:\Program Files\Opera GX\Launcher.exe ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [36792 2021-08-10] (Intel Corporation -> Intel) S3 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [176568 2021-08-10] (Intel Corporation -> Intel) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2021-09-22] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1990496 2021-10-03] (GOG Sp. z o.o. -> GOG.com) S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6484832 2021-08-19] (GOG Sp. z o.o. -> GOG.com) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7848632 2021-11-14] (Malwarebytes Inc -> Malwarebytes) S2 Micro Star SCM; C:\Windows\SysWOW64\MSIService.exe [160768 2009-07-09] (Micro-Star International Co., Ltd.) [Brak podpisu cyfrowego] S2 MSI_ActiveX_Service; C:\Program Files (x86)\MSI\Dragon Center\MSI_ActiveX_Service.exe [61880 2017-08-28] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe [2872024 2021-11-07] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe [128376 2021-11-07] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WirelessKB850NotificationService; C:\Windows\system32\WirelessKB850NotificationService.exe [176624 2018-05-14] (Microsoft Corporation -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvmii.inf_amd64_b32ce94116e244cf\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvmii.inf_amd64_b32ce94116e244cf\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [210352 2021-11-15] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [19912 2021-09-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2021-11-14] (Malwarebytes Inc -> Malwarebytes) S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [48520 2021-11-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [435424 2021-11-07] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [86240 2021-11-07] (Microsoft Windows -> Microsoft Corporation) R3 WINIO; C:\Program Files (x86)\MSI\Dragon Center\winio64.sys [15160 2015-06-11] (Micro-Star Int'l Co. Ltd. -> ) R3 WirelessKeyboardFilter; C:\Windows\System32\drivers\WirelessKeyboardFilter.sys [49336 2018-03-11] (Microsoft Corporation -> Microsoft Corporation) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-11-17 13:04 - 2021-11-17 13:04 - 000017847 _____ C:\Users\Kamil\Desktop\FRST.txt 2021-11-17 13:03 - 2021-11-17 13:04 - 000000000 ____D C:\FRST 2021-11-17 13:03 - 2021-11-17 13:03 - 002311680 _____ (Farbar) C:\Users\Kamil\Desktop\FRST64.exe 2021-11-17 12:55 - 2021-11-17 12:55 - 008553680 _____ (Malwarebytes) C:\Users\Kamil\Desktop\adwcleaner_8.3.0.exe 2021-11-17 12:49 - 2021-11-17 12:49 - 000000000 ____D C:\Users\Kamil\Documents\Might & Magic Heroes VI 2021-11-17 12:49 - 2021-11-17 12:49 - 000000000 ____D C:\Users\Kamil\AppData\Roaming\Might & Magic Heroes VI 2021-11-17 12:48 - 2021-11-17 12:48 - 000000000 ____D C:\Windows\SysWOW64\XPSViewer 2021-11-17 12:48 - 2021-11-17 12:48 - 000000000 ____D C:\Program Files\Reference Assemblies 2021-11-17 12:48 - 2021-11-17 12:48 - 000000000 ____D C:\Program Files\MSBuild 2021-11-17 12:48 - 2021-11-17 12:48 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies 2021-11-17 12:48 - 2021-11-17 12:48 - 000000000 ____D C:\Program Files (x86)\MSBuild 2021-11-17 12:39 - 2021-11-17 12:39 - 004022105 _____ C:\Users\Kamil\Desktop\UplinkPatch-1.55.zip 2021-11-17 12:39 - 2021-11-17 12:39 - 000000000 ____D C:\Users\Kamil\Desktop\UplinkPatch-1.55 2021-11-16 10:11 - 2021-11-16 10:11 - 000000202 _____ C:\Users\Kamil\Desktop\Heroes of Might & Magic III - HD Edition.url 2021-11-16 02:37 - 2021-11-16 02:37 - 000000202 _____ C:\Users\Kamil\Desktop\Might & Magic Heroes VII.url 2021-11-16 02:36 - 2021-11-16 02:36 - 000000202 _____ C:\Users\Kamil\Desktop\Might & Magic Heroes VII – Trial by Fire.url 2021-11-16 02:36 - 2021-11-16 02:36 - 000000202 _____ C:\Users\Kamil\Desktop\Cossacks 3.url 2021-11-16 02:36 - 2021-11-16 02:36 - 000000201 _____ C:\Users\Kamil\Desktop\Might & Magic Heroes VI.url 2021-11-15 23:37 - 2021-11-15 23:37 - 000210352 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys 2021-11-15 16:47 - 2021-11-15 16:47 - 000272384 _____ C:\Windows\system32\TpmTool.exe 2021-11-15 16:47 - 2021-11-15 16:47 - 000223744 _____ C:\Windows\SysWOW64\TpmTool.exe 2021-11-15 16:47 - 2021-11-15 16:47 - 000060928 _____ C:\Windows\system32\runexehelper.exe 2021-11-15 16:47 - 2021-11-15 16:47 - 000011363 _____ C:\Windows\system32\DrtmAuthTxt.wim 2021-11-15 16:42 - 2021-11-15 16:43 - 000000000 ___HD C:\$WinREAgent 2021-11-14 16:03 - 2021-11-14 16:03 - 000000202 _____ C:\Users\Kamil\Desktop\DRAGON BALL Z KAKAROT.url 2021-11-14 00:27 - 2021-11-14 00:27 - 000248992 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys 2021-10-30 01:01 - 2021-10-30 01:12 - 1098719232 _____ C:\Users\Kamil\Downloads\Win11_Polish_x64.iso 2021-10-30 00:54 - 2021-10-30 00:54 - 000000000 ____D C:\Users\Kamil\Documents\Paradox Interactive 2021-10-30 00:54 - 2021-10-30 00:54 - 000000000 ____D C:\Users\Kamil\AppData\Roaming\Paradox Interactive 2021-10-30 00:53 - 2021-10-30 00:54 - 000000000 ____D C:\Users\Kamil\AppData\Local\Paradox Interactive 2021-10-30 00:48 - 2021-10-30 00:48 - 014221312 _____ C:\Users\Kamil\Downloads\WindowsPCHealthCheckSetup.msi 2021-10-30 00:48 - 2021-10-30 00:48 - 000001341 _____ C:\Users\Kamil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk 2021-10-30 00:48 - 2021-10-30 00:48 - 000000000 ____D C:\Users\Kamil\AppData\Local\PCHealthCheck 2021-10-30 00:06 - 2021-10-30 00:06 - 000000202 _____ C:\Users\Kamil\Desktop\Hearts of Iron IV.url 2021-10-29 23:56 - 2021-10-21 18:49 - 001874648 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe 2021-10-29 23:56 - 2021-10-21 18:49 - 001874648 _____ C:\Windows\system32\vulkaninfo.exe 2021-10-29 23:56 - 2021-10-21 18:49 - 001464952 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2021-10-29 23:56 - 2021-10-21 18:49 - 001450232 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2021-10-29 23:56 - 2021-10-21 18:49 - 001450232 _____ C:\Windows\SysWOW64\vulkaninfo.exe 2021-10-29 23:56 - 2021-10-21 18:49 - 001206384 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2021-10-29 23:56 - 2021-10-21 18:49 - 001111256 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll 2021-10-29 23:56 - 2021-10-21 18:49 - 001111256 _____ C:\Windows\system32\vulkan-1.dll 2021-10-29 23:56 - 2021-10-21 18:49 - 000965336 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll 2021-10-29 23:56 - 2021-10-21 18:49 - 000965336 _____ C:\Windows\SysWOW64\vulkan-1.dll 2021-10-29 23:56 - 2021-10-21 18:45 - 001523336 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2021-10-29 23:56 - 2021-10-21 18:45 - 001172608 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2021-10-29 23:56 - 2021-10-21 18:45 - 000800368 _____ C:\Windows\system32\nvofapi64.dll 2021-10-29 23:56 - 2021-10-21 18:45 - 000707728 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe 2021-10-29 23:56 - 2021-10-21 18:45 - 000676480 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll 2021-10-29 23:56 - 2021-10-21 18:45 - 000656512 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll 2021-10-29 23:56 - 2021-10-21 18:45 - 000635000 _____ C:\Windows\SysWOW64\nvofapi.dll 2021-10-29 23:56 - 2021-10-21 18:45 - 000564352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll 2021-10-29 23:56 - 2021-10-21 18:44 - 008724080 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2021-10-29 23:56 - 2021-10-21 18:44 - 007843984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2021-10-29 23:56 - 2021-10-21 18:44 - 004938896 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2021-10-29 23:56 - 2021-10-21 18:44 - 002850416 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2021-10-29 23:56 - 2021-10-21 18:44 - 002114688 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2021-10-29 23:56 - 2021-10-21 18:44 - 001597584 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2021-10-29 23:56 - 2021-10-21 18:44 - 000981112 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2021-10-29 23:56 - 2021-10-21 18:44 - 000792208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2021-10-29 23:56 - 2021-10-21 18:44 - 000452216 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe 2021-10-29 23:56 - 2021-10-21 18:43 - 005727376 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2021-10-29 23:56 - 2021-10-21 18:43 - 000849016 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe 2021-10-29 23:56 - 2021-10-21 18:39 - 006430824 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2021-10-29 23:56 - 2021-10-21 01:48 - 000085748 _____ C:\Windows\system32\nvinfo.pb 2021-10-29 23:53 - 2021-10-29 23:55 - 871597168 _____ (NVIDIA Corporation) C:\Users\Kamil\Downloads\496.49-notebook-win10-win11-64bit-international-dch-whql.exe ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-11-17 12:55 - 2021-09-18 08:17 - 000000000 ____D C:\ProgramData\NVIDIA 2021-11-17 12:51 - 2021-10-10 13:13 - 000000000 ____D C:\Users\Kamil\AppData\Local\Ubisoft Game Launcher 2021-11-17 12:49 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp 2021-11-17 12:48 - 2019-12-07 16:08 - 000786654 _____ C:\Windows\system32\perfh015.dat 2021-11-17 12:48 - 2019-12-07 16:08 - 000153012 _____ C:\Windows\system32\perfc015.dat 2021-11-17 12:48 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\MUI 2021-11-17 12:48 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\MUI 2021-11-17 12:48 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF 2021-11-17 12:46 - 2021-09-18 18:01 - 000000000 ____D C:\Users\Kamil\AppData\Local\CrashDumps 2021-11-17 12:33 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness 2021-11-17 12:24 - 2021-09-18 09:22 - 000000000 ____D C:\Users\Kamil\AppData\Local\Battle.net 2021-11-17 12:23 - 2021-09-19 21:17 - 000000000 ____D C:\Users\Kamil\AppData\Roaming\discord 2021-11-17 12:23 - 2021-09-19 21:17 - 000000000 ____D C:\Users\Kamil\AppData\Local\Discord 2021-11-17 12:22 - 2021-09-18 17:05 - 000000000 __SHD C:\Users\Kamil\IntelGraphicsProfiles 2021-11-17 12:22 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-11-17 12:21 - 2021-09-18 16:44 - 000003510 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-11-17 12:21 - 2021-09-18 16:44 - 000003386 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-11-16 13:54 - 2021-09-18 16:44 - 000000000 ____D C:\Windows\system32\SleepStudy 2021-11-16 10:11 - 2021-09-18 10:21 - 000000000 ____D C:\Users\Kamil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2021-11-15 23:41 - 2021-09-18 16:51 - 001681656 _____ C:\Windows\system32\PerfStringBackup.INI 2021-11-15 23:37 - 2021-09-18 17:03 - 000000000 ____D C:\Intel 2021-11-15 23:37 - 2021-09-18 16:44 - 000008192 ___SH C:\DumpStack.log.tmp 2021-11-15 23:37 - 2021-09-18 16:44 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2021-11-15 23:36 - 2021-09-18 08:28 - 000000000 ____D C:\Program Files\Opera GX 2021-11-15 23:36 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\DiagSvcs 2021-11-15 23:36 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources 2021-11-15 23:36 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe 2021-11-15 23:36 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr 2021-11-15 23:36 - 2019-12-07 10:03 - 000524288 _____ C:\Windows\system32\config\BBI 2021-11-15 16:42 - 2021-09-18 19:37 - 000000000 ____D C:\Windows\system32\MRT 2021-11-15 16:40 - 2021-09-18 19:37 - 141529560 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2021-11-15 14:39 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-11-14 15:59 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\NDF 2021-11-14 00:25 - 2021-09-18 16:44 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-11-07 20:09 - 2021-09-18 08:29 - 000004012 _____ C:\Windows\system32\Tasks\Opera GX scheduled Autoupdate 1631950149 2021-11-07 20:09 - 2021-09-18 08:29 - 000001142 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Przeglądarka Opera GX.lnk 2021-11-07 20:07 - 2021-09-18 16:51 - 000003374 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-210618190-10895605-1632868096-1001 2021-11-07 20:07 - 2021-09-18 16:48 - 000002419 _____ C:\Users\Kamil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-11-07 20:06 - 2021-09-18 16:44 - 000000000 ____D C:\Windows\system32\Drivers\wd 2021-11-01 12:30 - 2021-09-18 11:30 - 000000000 ____D C:\Users\Kamil\AppData\Local\D3DSCache 2021-10-30 11:31 - 2021-09-18 16:44 - 000453944 _____ C:\Windows\system32\FNTCACHE.DAT 2021-10-30 11:30 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2021-10-30 11:30 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\setup 2021-10-30 11:30 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Dism 2021-10-30 11:30 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\setup 2021-10-30 11:30 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Dism 2021-10-30 11:30 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellExperiences 2021-10-30 11:30 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\servicing 2021-10-30 00:53 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2021-10-30 00:04 - 2021-09-18 08:17 - 000000000 ____D C:\Users\Kamil\AppData\Local\NVIDIA 2021-10-30 00:02 - 2021-09-18 08:16 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2021-10-30 00:00 - 2021-10-13 14:44 - 000001439 _____ C:\Users\Public\Desktop\GeForce Experience.lnk 2021-10-30 00:00 - 2021-09-18 09:21 - 000004308 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-10-30 00:00 - 2021-09-18 09:21 - 000004106 _____ C:\Windows\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-10-30 00:00 - 2021-09-18 09:21 - 000003976 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-10-30 00:00 - 2021-09-18 09:21 - 000003940 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-10-30 00:00 - 2021-09-18 09:21 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-10-30 00:00 - 2021-09-18 09:21 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-10-30 00:00 - 2021-09-18 09:21 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-10-30 00:00 - 2021-09-18 09:21 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-10-30 00:00 - 2021-09-18 09:20 - 000003894 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-10-30 00:00 - 2021-09-18 09:20 - 000003654 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-10-30 00:00 - 2021-09-18 08:17 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2021-10-30 00:00 - 2021-09-18 08:14 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2021-10-29 12:54 - 2021-09-18 21:14 - 000000000 ____D C:\Users\Kamil\AppData\Local\ElevatedDiagnostics 2021-10-29 12:02 - 2021-09-18 16:49 - 000000000 ____D C:\Users\Kamil\AppData\Local\Packages 2021-10-21 18:39 - 2021-09-18 09:11 - 007578560 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2021-10-21 01:48 - 2021-09-18 09:22 - 002838384 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll 2021-10-21 01:48 - 2021-09-18 09:22 - 002186608 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll 2021-10-21 01:48 - 2021-09-18 09:22 - 001293680 _____ (NVIDIA Corporation) C:\Windows\system32\NvRtmpStreamer64.dll 2021-10-21 01:48 - 2021-09-18 09:21 - 000078192 _____ C:\Windows\system32\FvSDK_x64.dll 2021-10-21 01:48 - 2021-09-18 09:21 - 000067952 _____ C:\Windows\SysWOW64\FvSDK_x86.dll 2021-10-21 01:48 - 2021-09-18 09:21 - 000001951 _____ C:\Windows\NvContainerRecovery.bat 2021-10-21 01:48 - 2021-09-18 09:20 - 000168304 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll 2021-10-21 01:48 - 2021-09-18 09:20 - 000144240 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll ==================== Pliki w katalogu głównym wybranych folderów ======== 2021-09-18 08:14 - 2021-09-18 08:14 - 000000000 _____ () C:\Users\Kamil\AppData\Local\Driver_AR8171Present.flag ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================