Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 11-12-2021 Uruchomiony przez Mateusz (administrator) DESKTOP-SJLASJ7 (LENOVO 81LL) (21-12-2021 20:00:11) Uruchomiony z C:\Users\Mateusz\Downloads Załadowane profile: Mateusz Platform: Microsoft Windows 10 Pro Wersja 21H2 19044.1415 (X64) Język: Polski (Polska) Domyślna przeglądarka: Edge Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Discord Inc. -> Discord Inc.) C:\Users\Mateusz\AppData\Local\Discord\app-1.0.9003\Discord.exe <6> (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe (INTEL CORP) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3407.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe (INTEL CORP) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3407.0_x64__8j3eq9eme6ctt\IGCC.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_f222132bfa8270de\RstMwService.exe (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\avp.exe (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\avpui.exe (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\plugins_nms.exe (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksdeui.exe (Lenovo (Beijing) Limited -> Lenovo Group Limited) C:\Users\Mateusz\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSB.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <18> (Microsoft Corporation -> Microsoft Corporation) C:\Users\Mateusz\AppData\Local\Microsoft\OneDrive\21.230.1107.0004\FileCoAuth.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2111.12605.0_x64__8wekyb3d8bbwe\Cortana.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2111.12605.0_x64__8wekyb3d8bbwe\Win32Bridge.Server.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.721.12013.0_x64__8wekyb3d8bbwe\GameBar.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.721.12013.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\fodhelper.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.1371_none_7e1bd7147c8285b0\TiWorker.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe (Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvlti.inf_amd64_8e4063952396e92b\Display.NvContainer\NVDisplay.Container.exe <2> (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.185.0.12\OverwolfHelper.exe (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.185.0.12\OverwolfHelper64.exe (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Overwolf\0.185.0.12\OverwolfBrowser.exe <5> (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Overwolf\old_Overwolf.exe (Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe <6> ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [1076728 2020-03-24] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [CL-26-1821762B-771F-4A16-99F9-A0EBC9508B34] => "C:\Program Files\Common Files\Bitdefender\SetupInformation\CL-26-1821762B-771F-4A16-99F9-A0EBC9508B34\setuplauncher.exe" /run:Installer.exe /args:"/setup-folder:"CL-26-1821762B-771F-4A16-99F9-A0EBC95 (dane wartości zawierają 7 znaków więcej). (Brak pliku) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-09-27] (Oracle America, Inc. -> Oracle Corporation) HKU\S-1-5-21-1753307546-4265785499-2913151106-1001\...\Run: [Discord] => C:\Users\Mateusz\AppData\Local\Discord\Update.exe [1512608 2021-09-21] (Discord Inc. -> GitHub) HKU\S-1-5-21-1753307546-4265785499-2913151106-1001\...\Run: [kpm.exe] => "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm.exe" autoStart (Brak pliku) HKU\S-1-5-21-1753307546-4265785499-2913151106-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33618400 2021-12-15] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-1753307546-4265785499-2913151106-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1802072 2021-12-15] (Overwolf Ltd -> Overwolf Ltd.) HKU\S-1-5-21-1753307546-4265785499-2913151106-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Mateusz\AppData\Local\Microsoft\Teams\Update.exe [2459304 2021-12-17] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\96.0.4664.110\Installer\chrmstp.exe [2021-12-16] (Google LLC -> Google LLC) ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {02A4000C-4993-40B8-AB4E-E7A426A262DC} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation) Task: {095A00F9-FB2F-4794-90DD-5F6F7E6CA44A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-11-27] (Google LLC -> Google LLC) Task: {0EA83329-11A4-4D2C-9239-206F6BA88CCA} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758792 2021-09-22] (Lenovo -> ) Task: {0FC82DE7-AB40-4134-8BEA-CEC0AB6384DE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {0FEF12BB-7DB1-42B6-B7E8-F34BB1B2B890} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {386F2CB7-D315-493F-B61F-605789FFE3B7} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649216 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation) Task: {4267C8BC-7967-4868-9588-BA2D3D540E81} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {43066705-4216-42F0-B8CD-6A7B2A4A4A25} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [904904 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation) Task: {4C71176D-97D2-4F75-ABE1-8ED2D9B0D791} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {4D61BA97-CC5D-46D5-8C02-82733C6B19C1} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2484056 2021-12-15] (Overwolf Ltd -> Overwolf LTD) Task: {62FFB273-8FBF-4189-B4C5-8AB288086306} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [904904 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation) Task: {80D6895D-5E19-441A-B822-74675F2480D4} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-1753307546-4265785499-2913151106-1001 => C:\Users\Mateusz\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe [87896 2021-10-30] (Lenovo (Beijing) Limited -> Lenovo Group Limited) Task: {95B7F1AB-999F-4D5C-BB34-38B19B4F30E3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-11-27] (Google LLC -> Google LLC) Task: {96AA3C9A-BC1D-4E51-A482-1E606E590602} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-11-16] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {C7EF1CF6-39DE-4775-8EDA-87491474812C} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation) Task: {CA4F9E03-72DD-4860-9332-53460A9B7996} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3341312 2021-12-09] (Nvidia Corporation -> NVIDIA Corporation) Task: {D6BB798D-B831-4B99-A26B-E02F66567BFC} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation) Task: {F0BD892C-6F23-40B9-887E-D018080F3D80} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation) Task: {FA1A2EAC-4E22-484F-8E56-174E1C0B7049} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758792 2021-09-22] (Lenovo -> ) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{955931da-4a48-4329-b42d-44420ad61760}: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{a218af73-4ccb-4cdd-9fac-627fedeb04fa}: [DhcpNameServer] 192.168.0.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\Mateusz\AppData\Local\Microsoft\Edge\User Data\Default [2021-12-21] Edge Extension: (Kaspersky Protection) - C:\Users\Mateusz\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2021-11-24] Edge Extension: (NoScript) - C:\Users\Mateusz\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\debdhlbmgmkkfjpcglcbjadbhhekgfjh [2021-11-27] Edge Extension: (Kaspersky Password Manager) - C:\Users\Mateusz\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\eolheccophlcbnkkbelcgminoojochgj [2021-12-15] Edge Extension: (HTTPS Everywhere) - C:\Users\Mateusz\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fchjpkplmbeeeaaogdbhjbgbknjobohb [2021-11-27] Edge Extension: (Ghostery – Bloker reklam chroniący prywatność) - C:\Users\Mateusz\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fclbdkbhjlgkbpfldjodgjncejkkjcme [2021-11-27] Edge Extension: (BetterTTV) - C:\Users\Mateusz\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\icllegkipkooaicfmdfaloehobmglglb [2021-12-15] Edge Extension: (AdBlock — najlepszy bloker reklam) - C:\Users\Mateusz\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2021-12-05] Edge HKU\S-1-5-21-1753307546-4265785499-2913151106-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee] FireFox: ======== FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\FFExt\light_plugin_firefox\addon.xpi => nie znaleziono FF HKLM-x32\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\FFExt\light_plugin_firefox\addon.xpi => nie znaleziono FF Plugin: @java.com/DTPlugin,version=11.311.2 -> C:\Program Files\Java\jre1.8.0_311\bin\dtplugin\npDeployJava1.dll [2021-11-09] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.311.2 -> C:\Program Files\Java\jre1.8.0_311\bin\plugin2\npjp2.dll [2021-11-09] (Oracle America, Inc. -> Oracle Corporation) Chrome: ======= CHR Profile: C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default [2021-12-17] CHR Extension: (Prezentacje) - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-11-26] CHR Extension: (Kaspersky Protection) - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2021-11-26] CHR Extension: (Dokumenty) - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-11-26] CHR Extension: (Dysk Google) - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-11-26] CHR Extension: (YouTube) - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-11-26] CHR Extension: (Arkusze) - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-11-26] CHR Extension: (Dokumenty Google offline) - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-11-26] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-26] CHR Extension: (Gmail) - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-11-26] CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AVP21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\avp.exe [184768 2021-11-24] (Kaspersky Lab JSC -> AO Kaspersky Lab) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8901968 2021-10-23] (BattlEye Innovations e.K. -> ) S4 DolbyDAXAPI; C:\Windows\system32\dolbyaposvc\DAX3API.exe [1926600 2019-09-02] (Dolby Laboratories, Inc. -> ) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [818304 2021-10-23] (EasyAntiCheat Oy -> Epic Games, Inc) S4 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029472 2021-10-21] (Epic Games Inc. -> Epic Games, Inc.) S4 FMAPOService; C:\Windows\System32\FMService64.exe [359808 2019-08-15] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) S3 klvssbridge64_21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\x64\vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R2 KSDE5.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe [447104 2021-11-24] (Kaspersky Lab JSC -> AO Kaspersky Lab) S4 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2484056 2021-12-15] (Overwolf Ltd -> Overwolf LTD) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6138112 2021-12-15] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe [2876152 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe [128360 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation) S2 kpm_launch_service; "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe" [X] R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvlti.inf_amd64_8e4063952396e92b\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvlti.inf_amd64_8e4063952396e92b\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [250032 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klbackupdisk; C:\Windows\system32\DRIVERS\klbackupdisk.sys [110336 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [211704 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [126216 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [41656 2021-02-19] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab) R1 klflt; C:\Windows\system32\DRIVERS\klflt.sys [514840 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klgse; C:\Windows\System32\DRIVERS\klgse.sys [689976 2021-11-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [1507648 2021-11-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klids; C:\ProgramData\Kaspersky Lab\AVP21.3\Bases\klids.sys [272168 2021-12-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [1042712 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klim6; C:\Windows\system32\DRIVERS\klim6.sys [98040 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [112392 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [112904 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [85256 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klpnpflt; C:\Windows\system32\DRIVERS\klpnpflt.sys [96008 2021-11-24] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 kltap; C:\Windows\System32\drivers\kltap.sys [55592 2021-02-19] (AnchorFree Inc -> The OpenVPN Project) R0 klupd_klif_arkmon; C:\Windows\System32\Drivers\klupd_klif_arkmon.sys [276064 2021-11-25] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klupd_klif_klark; C:\Windows\System32\Drivers\klupd_klif_klark.sys [314040 2021-11-25] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R0 klupd_klif_klbg; C:\Windows\System32\Drivers\klupd_klif_klbg.sys [113976 2021-11-25] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klupd_klif_mark; C:\Windows\System32\Drivers\klupd_klif_mark.sys [225648 2021-11-26] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [155912 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [327936 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [300808 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [48552 2021-11-26] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation) R0 pwdrvio; C:\Windows\System32\pwdrvio.sys [37336 2021-03-09] (MiniTool Solution Ltd -> ) S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2019-11-08] (MiniTool Solution Ltd -> ) S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [48536 2021-12-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [435432 2021-12-16] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [86248 2021-12-16] (Microsoft Windows -> Microsoft Corporation) U4 npcap_wifi; Brak ImagePath S3 semav6msr64; \??\C:\Windows\system32\drivers\semav6msr64.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Trzy miesiące (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-12-21 20:00 - 2021-12-21 20:00 - 000023614 _____ C:\Users\Mateusz\Downloads\FRST.txt 2021-12-21 19:59 - 2021-12-21 20:00 - 000000000 ____D C:\FRST 2021-12-21 19:59 - 2021-12-21 19:59 - 000000000 ____D C:\Users\Mateusz\Downloads\FRST-OlderVersion 2021-12-21 19:58 - 2021-12-21 19:59 - 002311168 _____ (Farbar) C:\Users\Mateusz\Downloads\FRST64.exe 2021-12-21 19:25 - 2021-12-21 19:25 - 000000000 ____D C:\Program Files\Malwarebytes 2021-12-21 19:24 - 2021-12-21 19:24 - 002910904 _____ (Malwarebytes) C:\Users\Mateusz\Downloads\MBSetup.exe 2021-12-15 19:28 - 2021-12-15 19:28 - 000000000 ____D C:\Windows\SystemTemp 2021-12-15 19:08 - 2021-12-15 19:08 - 000272384 _____ C:\Windows\system32\TpmTool.exe 2021-12-15 19:08 - 2021-12-15 19:08 - 000223744 _____ C:\Windows\SysWOW64\TpmTool.exe 2021-12-15 19:08 - 2021-12-15 19:08 - 000011979 _____ C:\Windows\system32\DrtmAuthTxt.wim 2021-12-15 07:23 - 2021-12-15 07:23 - 000000000 ___HD C:\$WinREAgent 2021-12-12 14:09 - 2021-11-27 18:08 - 001466808 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2021-12-12 14:09 - 2021-11-27 18:08 - 001206400 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2021-12-12 14:09 - 2021-11-27 18:05 - 000802232 _____ C:\Windows\system32\nvofapi64.dll 2021-12-12 14:09 - 2021-11-27 18:05 - 000658360 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll 2021-12-12 14:09 - 2021-11-27 18:05 - 000636856 _____ C:\Windows\SysWOW64\nvofapi.dll 2021-12-12 14:09 - 2021-11-27 18:04 - 002116536 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2021-12-12 14:09 - 2021-11-27 18:04 - 001599416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2021-12-12 14:09 - 2021-11-27 18:04 - 001523328 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2021-12-12 14:09 - 2021-11-27 18:04 - 001172608 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2021-12-12 14:09 - 2021-11-27 18:04 - 000981120 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2021-12-12 14:09 - 2021-11-27 18:04 - 000795104 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2021-12-12 14:09 - 2021-11-27 18:04 - 000707712 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe 2021-12-12 14:09 - 2021-11-27 18:04 - 000678328 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll 2021-12-12 14:09 - 2021-11-27 18:04 - 000564352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll 2021-12-12 14:09 - 2021-11-27 18:03 - 008725928 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2021-12-12 14:09 - 2021-11-27 18:03 - 007845816 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2021-12-12 14:09 - 2021-11-27 18:03 - 005728384 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2021-12-12 14:09 - 2021-11-27 18:03 - 004938880 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2021-12-12 14:09 - 2021-11-27 18:03 - 002850432 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2021-12-12 14:09 - 2021-11-27 18:03 - 000452208 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe 2021-12-12 14:09 - 2021-11-27 18:02 - 000849016 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe 2021-12-12 14:09 - 2021-11-27 18:01 - 006434528 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2021-12-12 14:09 - 2021-11-26 20:16 - 000085718 _____ C:\Windows\system32\nvinfo.pb 2021-12-12 13:54 - 2021-12-12 14:13 - 000000000 ____D C:\Users\Mateusz\AppData\Local\NVIDIA 2021-12-12 13:54 - 2021-12-12 13:54 - 000000000 ____D C:\Users\Mateusz\ansel 2021-12-12 13:52 - 2021-12-12 13:52 - 000000000 ____D C:\Windows\system32\lxss 2021-12-12 13:49 - 2021-11-26 20:16 - 000043408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\NvModuleTracker.sys 2021-12-12 13:48 - 2021-11-27 18:08 - 001874648 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe 2021-12-12 13:48 - 2021-11-27 18:08 - 001874648 _____ C:\Windows\system32\vulkaninfo.exe 2021-12-12 13:48 - 2021-11-27 18:08 - 001450200 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2021-12-12 13:48 - 2021-11-27 18:08 - 001450200 _____ C:\Windows\SysWOW64\vulkaninfo.exe 2021-12-12 13:48 - 2021-11-27 18:08 - 001111272 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll 2021-12-12 13:48 - 2021-11-27 18:08 - 001111272 _____ C:\Windows\system32\vulkan-1.dll 2021-12-12 13:48 - 2021-11-27 18:08 - 000966416 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll 2021-12-12 13:48 - 2021-11-27 18:08 - 000966416 _____ C:\Windows\SysWOW64\vulkan-1.dll 2021-12-12 13:48 - 2021-11-27 18:02 - 007582680 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2021-12-11 19:46 - 2021-12-11 19:46 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1753307546-4265785499-2913151106-1001 2021-12-10 21:14 - 2021-12-10 21:14 - 000000000 ____D C:\Users\Mateusz\AppData\LocalLow\Innersloth 2021-12-10 14:22 - 2021-12-10 14:22 - 000000000 ____D C:\Program Files\Google 2021-12-09 17:39 - 2021-12-17 12:54 - 000002378 _____ C:\Users\Mateusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk 2021-12-09 17:39 - 2021-12-09 17:39 - 000000000 ____D C:\Users\Mateusz\AppData\Roaming\Teams 2021-12-05 19:08 - 2021-12-05 19:08 - 000000000 ____D C:\Users\Mateusz\AppData\Roaming\java 2021-12-04 20:46 - 2021-12-04 20:47 - 000000000 ____D C:\ProgramData\samg 2021-12-04 20:34 - 2021-12-04 20:34 - 000000000 ____D C:\ProgramData\sclg 2021-12-04 20:34 - 2021-12-04 20:34 - 000000000 ____D C:\ProgramData\s3lk 2021-12-04 20:31 - 2021-12-04 20:31 - 000000000 ____D C:\ProgramData\se6c 2021-12-04 20:31 - 2021-12-04 20:31 - 000000000 ____D C:\ProgramData\s7so 2021-12-04 20:31 - 2021-12-04 20:31 - 000000000 ____D C:\ProgramData\s110 2021-12-03 12:30 - 2021-12-21 14:44 - 000000000 ____D C:\Zdjęcia 2021-11-27 19:12 - 2021-11-27 19:12 - 000162816 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe 2021-11-27 12:50 - 2021-11-27 12:50 - 000003570 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA 2021-11-27 12:50 - 2021-11-27 12:50 - 000003446 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore 2021-11-26 16:26 - 2021-12-21 19:55 - 000000000 ____D C:\Program Files (x86)\Google 2021-11-26 16:26 - 2021-11-26 16:27 - 000000000 ____D C:\Users\Mateusz\AppData\Local\Google 2021-11-25 14:03 - 2021-11-25 14:03 - 000314040 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_klark.sys 2021-11-25 14:02 - 2021-11-26 15:47 - 000225648 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_mark.sys 2021-11-25 14:02 - 2021-11-25 14:02 - 000276064 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_arkmon.sys 2021-11-25 14:02 - 2021-11-25 14:02 - 000113976 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_klbg.sys 2021-11-24 19:34 - 2021-11-24 19:35 - 000000000 ____D C:\ProgramData\Kaspersky Lab 2021-11-24 19:34 - 2021-11-24 19:35 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab 2021-11-24 19:34 - 2021-11-24 19:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky VPN 2021-11-24 19:34 - 2021-11-24 19:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security 2021-11-24 19:34 - 2021-02-19 21:09 - 000110176 _____ (Kaspersky Lab ZAO) C:\Windows\system32\klfphc.dll 2021-11-24 19:34 - 2021-02-19 21:08 - 001042712 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klif.sys 2021-11-24 19:34 - 2021-02-19 21:08 - 000514840 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klflt.sys 2021-11-24 19:33 - 2021-11-24 19:33 - 000105912 _____ C:\ProgramData\vpn.uninstall.1637778744.bdinstall.v2.bin 2021-11-24 19:33 - 2021-11-24 19:33 - 000090040 _____ C:\ProgramData\agent.uninstall.1637778789.bdinstall.v2.bin 2021-11-24 19:32 - 2021-11-24 19:32 - 000427516 _____ C:\ProgramData\cl.uninstall.1637778672.bdinstall.v2.bin 2021-11-22 08:42 - 2021-11-22 08:42 - 000249584 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxNetLwf.sys 2021-11-22 08:42 - 2021-11-22 08:42 - 000239672 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxNetAdp6.sys 2021-11-14 17:56 - 2021-12-21 19:27 - 000000000 ____D C:\Users\Mateusz\AppData\Local\CrashDumps 2021-11-09 19:47 - 2021-11-09 19:47 - 000060928 _____ C:\Windows\system32\runexehelper.exe 2021-11-09 19:29 - 2021-11-09 19:29 - 000000000 ____D C:\Users\Mateusz\AppData\Local\Tvsukernel 2021-11-09 19:26 - 2021-11-09 19:26 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf 2021-11-09 18:37 - 2021-12-16 19:28 - 000004308 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-11-09 18:37 - 2021-12-16 19:28 - 000003976 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-11-09 18:37 - 2021-12-16 19:28 - 000003940 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-11-09 18:37 - 2021-12-16 19:28 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-11-09 18:37 - 2021-12-16 19:28 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-11-09 18:37 - 2021-12-16 19:28 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-11-09 18:37 - 2021-12-16 19:28 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-11-09 18:37 - 2021-12-08 08:19 - 002851840 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll 2021-11-09 18:37 - 2021-12-08 08:19 - 002197504 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll 2021-11-09 18:37 - 2021-12-08 08:19 - 001294024 _____ (NVIDIA Corporation) C:\Windows\system32\NvRtmpStreamer64.dll 2021-11-09 18:37 - 2021-11-16 19:36 - 000001951 _____ C:\Windows\NvContainerRecovery.bat 2021-11-09 18:37 - 2021-11-09 18:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2021-11-09 18:37 - 2021-09-27 12:19 - 000078544 _____ C:\Windows\system32\FvSDK_x64.dll 2021-11-09 18:37 - 2021-09-27 12:19 - 000068296 _____ C:\Windows\SysWOW64\FvSDK_x86.dll 2021-11-09 18:36 - 2021-12-16 19:28 - 000003894 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-11-09 18:36 - 2021-12-16 19:28 - 000003654 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-11-09 18:36 - 2021-12-16 19:28 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2021-11-09 18:36 - 2021-11-26 20:16 - 000067464 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvhci.sys 2021-11-09 18:36 - 2021-11-26 20:16 - 000048552 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys 2021-11-09 18:36 - 2021-11-23 08:38 - 000168648 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll 2021-11-09 18:36 - 2021-11-23 08:38 - 000144584 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll 2021-11-09 18:34 - 2021-11-13 13:31 - 000000000 ____D C:\Windows\TempInst 2021-11-09 18:34 - 2021-11-09 18:34 - 000000000 ____D C:\Windows\system32\Tasks\TVT 2021-11-09 18:34 - 2021-11-09 18:34 - 000000000 ____D C:\Users\Mateusz\AppData\Local\LenovoServiceBridge 2021-11-09 18:34 - 2021-11-09 18:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\lenovo 2021-11-09 18:34 - 2021-11-09 18:34 - 000000000 ____D C:\ProgramData\Lenovo 2021-11-09 18:34 - 2021-11-09 18:34 - 000000000 ____D C:\Program Files (x86)\Lenovo 2021-11-09 18:33 - 2021-11-09 18:33 - 000000000 ____D C:\Users\Mateusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo 2021-11-07 17:46 - 2021-11-09 18:27 - 000191832 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll 2021-11-07 17:46 - 2021-11-07 17:46 - 000000000 ____D C:\Users\Mateusz\AppData\LocalLow\Oracle 2021-11-07 17:46 - 2021-11-07 17:46 - 000000000 ____D C:\ProgramData\Sun 2021-11-07 17:45 - 2021-12-21 12:40 - 000000000 ____D C:\Users\Mateusz\AppData\Roaming\.minecraft 2021-11-07 17:45 - 2021-12-21 12:33 - 000000000 ____D C:\Users\Mateusz\AppData\Roaming\.tlauncher 2021-11-07 17:45 - 2021-11-09 18:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2021-11-07 17:45 - 2021-11-09 18:26 - 000000000 ____D C:\Program Files\Java 2021-11-07 17:45 - 2021-11-07 17:45 - 000000000 ____D C:\Users\Mateusz\AppData\LocalLow\Sun 2021-11-07 17:45 - 2021-11-07 17:45 - 000000000 ____D C:\ProgramData\Oracle 2021-11-07 17:45 - 2021-11-07 17:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TLauncher 2021-11-07 13:40 - 2021-11-07 13:40 - 000000000 ____D C:\Windows\Firmware 2021-11-07 13:40 - 2019-09-12 05:51 - 002730448 _____ (Sunplus Innovation Technology Inc.) C:\Windows\system32\SPITDevMft64.dll 2021-11-06 15:14 - 2021-11-07 13:53 - 000000000 ____D C:\Windows\Minidump 2021-11-05 18:46 - 2021-11-05 18:46 - 000000000 ____D C:\Users\Mateusz\AppData\Local\NPE 2021-11-05 18:46 - 2021-11-05 18:46 - 000000000 ____D C:\ProgramData\Norton 2021-11-01 18:22 - 2021-12-21 19:30 - 000000000 ____D C:\ProgramData\Malwarebytes 2021-11-01 18:22 - 2021-11-01 18:30 - 000000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable) 2021-11-01 18:22 - 2021-11-01 18:22 - 000255928 _____ (Malwarebytes) C:\Windows\system32\Drivers\462357B1.sys 2021-11-01 17:55 - 2021-11-01 17:55 - 000000000 ___HD C:\$SysReset 2021-11-01 12:35 - 2021-11-01 12:35 - 000000000 ____H C:\Users\Mateusz\OneDrive\Dokumenty\Default.rdp 2021-11-01 11:53 - 2021-11-01 11:53 - 000000000 ____D C:\Windows\system32\Tasks\Agent Activation Runtime 2021-10-30 18:09 - 2021-10-30 18:09 - 000640768 _____ (Bitdefender) C:\Windows\system32\Drivers\trufosalt.sys 2021-10-30 12:39 - 2021-10-30 12:39 - 000001146 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk 2021-10-30 12:39 - 2021-10-30 12:39 - 000000000 ____D C:\Program Files\PCHealthCheck 2021-10-26 17:12 - 2021-10-26 17:12 - 000007605 _____ C:\Users\Mateusz\AppData\Local\Resmon.ResmonCfg 2021-10-25 13:39 - 2021-10-25 13:39 - 000170524 _____ C:\ProgramData\agent.update.1635165577.bdinstall.v2.bin 2021-10-25 12:32 - 2021-03-09 16:41 - 000037336 _____ C:\Windows\system32\pwdrvio.sys 2021-10-25 12:32 - 2019-11-08 08:15 - 003600896 _____ C:\Windows\system32\pwNative.exe 2021-10-25 12:32 - 2019-11-08 08:15 - 000012504 _____ C:\Windows\system32\pwdspio.sys 2021-10-25 12:31 - 2021-10-25 12:40 - 000000000 ____D C:\Program Files\MiniTool ShadowMaker 2021-10-25 12:31 - 2021-10-25 12:39 - 000000000 ____D C:\Program Files\MiniTool Partition Wizard 12 2021-10-24 19:30 - 2021-10-24 19:30 - 000000000 ____D C:\Users\Mateusz\AppData\Local\riot-repair-tool-updater 2021-10-24 19:04 - 2021-10-24 19:04 - 000000000 ____D C:\Users\Mateusz\AppData\Local\mbam 2021-10-24 10:16 - 2021-10-24 10:16 - 000000000 ___SH C:\Users\Public\Shared Files 2021-10-24 10:15 - 2021-10-24 10:15 - 000000000 __SHD C:\Users\Public\Libraries 2021-10-24 10:09 - 2021-10-24 10:09 - 000000000 ____D C:\Users\Mateusz\AppData\Local\DBG 2021-10-23 20:59 - 2021-10-23 21:05 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat 2021-10-23 20:59 - 2021-10-23 20:59 - 000000000 ____D C:\Users\Mateusz\AppData\Roaming\EasyAntiCheat 2021-10-23 20:59 - 2021-10-23 20:59 - 000000000 ____D C:\Users\Mateusz\AppData\Local\FortniteGame 2021-10-23 20:59 - 2021-10-23 20:59 - 000000000 ____D C:\Users\Mateusz\AppData\Local\CrashReportClient 2021-10-23 20:52 - 2021-10-23 20:52 - 000213084 _____ C:\ProgramData\vpn.1635018742.bdinstall.v2.bin 2021-10-23 20:49 - 2021-10-23 20:49 - 000606836 _____ C:\ProgramData\cl.1635018492.bdinstall.v2.bin 2021-10-23 20:49 - 2021-10-23 20:49 - 000105144 _____ C:\ProgramData\cl.kit.1635018490.bdinstall.v2.bin 2021-10-23 20:49 - 2021-10-23 20:49 - 000000000 ____D C:\ProgramData\Gemma 2021-10-23 20:49 - 2021-10-23 20:49 - 000000000 ____D C:\ProgramData\Atc 2021-10-23 20:49 - 2021-10-23 20:49 - 000000000 ____D C:\ProgramData\48C4687D-9760-4F5B-BAB3-60351B0841E4 2021-10-23 20:48 - 2021-11-24 19:35 - 000000000 ____D C:\Program Files\Bitdefender 2021-10-23 20:48 - 2021-10-23 20:48 - 000000000 ____D C:\Windows\system32\elambkup 2021-10-23 20:48 - 2021-10-23 20:48 - 000000000 ____D C:\ProgramData\BDLogging 2021-10-23 20:45 - 2021-10-23 20:45 - 000225180 _____ C:\ProgramData\agent.1635018313.bdinstall.v2.bin 2021-10-23 20:45 - 2021-10-23 20:45 - 000022036 _____ C:\ProgramData\agent.1635018315.bdinstall.v2.bin 2021-10-23 20:45 - 2021-10-23 20:45 - 000000000 ____D C:\ProgramData\Bitdefender Agent 2021-10-23 14:11 - 2021-10-23 14:11 - 000000000 ____D C:\Users\Mateusz\AppData\Local\PeerDistRepub 2021-10-23 11:30 - 2021-12-21 19:31 - 000000000 ____D C:\Program Files (x86)\Overwolf 2021-10-23 11:30 - 2021-10-23 11:30 - 000004382 _____ C:\Windows\system32\Tasks\Overwolf Updater Task 2021-10-23 11:30 - 2021-10-23 11:30 - 000000000 ____D C:\Users\Mateusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf 2021-10-23 11:30 - 2021-10-23 11:30 - 000000000 ____D C:\ProgramData\Overwolf 2021-10-23 11:29 - 2021-12-21 19:10 - 000000000 ____D C:\Users\Mateusz\AppData\Local\Overwolf 2021-10-23 10:43 - 2021-12-10 21:10 - 000000000 ____D C:\Program Files\Epic Games 2021-10-21 20:00 - 2021-10-21 20:00 - 000000000 ____D C:\Users\Mateusz\AppData\Roaming\NVIDIA 2021-10-21 18:55 - 2021-10-21 18:55 - 000000000 ____D C:\Users\Mateusz\OneDrive\Dokumenty\League of Legends 2021-10-21 18:54 - 2021-10-21 18:54 - 000000000 ____D C:\Users\Mateusz\OneDrive\Dokumenty\Kaspersky Password Manager 2021-10-21 18:44 - 2021-12-21 19:56 - 000000000 ____D C:\ProgramData\Riot Games 2021-10-21 18:44 - 2021-11-14 17:54 - 000000000 ____D C:\Riot Games 2021-10-21 18:44 - 2021-10-21 18:55 - 000000000 ____D C:\Users\Mateusz\AppData\Local\Riot Games 2021-10-20 19:57 - 2021-12-15 19:28 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2021-10-20 19:57 - 2021-10-30 14:28 - 000000000 ___SD C:\Windows\system32\AppV 2021-10-20 19:57 - 2021-10-20 20:01 - 000000000 ____D C:\Windows\CSC 2021-10-20 19:57 - 2021-10-20 19:57 - 000000000 __SHD C:\Windows\BitLockerDiscoveryVolumeContents 2021-10-20 19:57 - 2021-10-20 19:57 - 000000000 ____D C:\Windows\RemotePackages 2021-10-20 18:51 - 2021-10-20 18:51 - 000000000 ___HD C:\$Windows.~WS 2021-10-20 18:04 - 2021-10-20 19:19 - 000001908 _____ C:\Windows\diagwrn.xml 2021-10-20 18:04 - 2021-10-20 19:19 - 000001908 _____ C:\Windows\diagerr.xml 2021-10-20 15:16 - 2019-12-07 10:10 - 000030831 _____ C:\Windows\Professional.xml 2021-10-18 19:46 - 2021-11-09 18:33 - 000000000 ____D C:\Windows\system32\Tasks\Lenovo 2021-10-18 14:43 - 2021-10-18 14:43 - 000000000 ___HD C:\OneDriveTemp 2021-10-18 14:16 - 2021-12-15 19:24 - 000000000 __RHD C:\Users\Public\AccountPictures 2021-10-17 18:15 - 2021-12-12 16:24 - 000000000 ____D C:\Users\Mateusz\AppData\Local\NVIDIA Corporation 2021-10-17 18:15 - 2021-12-12 14:08 - 000000000 ____D C:\ProgramData\Package Cache 2021-10-17 18:15 - 2021-10-17 18:15 - 000000000 ____D C:\Users\Mateusz\AppData\Local\EOSUserHelper 2021-10-17 18:14 - 2021-12-10 21:14 - 000000000 ____D C:\Users\Mateusz\AppData\Local\Epic Games 2021-10-17 18:14 - 2021-12-05 14:11 - 000000000 ____D C:\Users\Mateusz\AppData\Local\UnrealEngine 2021-10-17 18:14 - 2021-10-17 18:15 - 000000000 ____D C:\ProgramData\Epic 2021-10-17 18:14 - 2021-10-17 18:14 - 000000000 ____D C:\Users\Mateusz\AppData\Local\UnrealEngineLauncher 2021-10-17 18:14 - 2021-10-17 18:14 - 000000000 ____D C:\Users\Mateusz\AppData\Local\EpicGamesLauncher 2021-10-17 18:14 - 2021-10-17 18:14 - 000000000 ____D C:\Program Files (x86)\Epic Games 2021-10-17 17:58 - 2021-10-17 17:58 - 000000000 ____D C:\Users\Mateusz\AppData\Local\Kaspersky Lab 2021-10-17 17:50 - 2021-10-17 17:50 - 000000000 ____D C:\Users\Default\AppData\Local\Kaspersky Lab 2021-10-17 17:49 - 2021-11-24 19:34 - 000000000 ____D C:\Program Files\Common Files\AV 2021-10-17 17:47 - 2021-10-17 17:47 - 000000000 ____D C:\Users\Mateusz\AppData\Local\OneDrive 2021-10-17 17:42 - 2021-10-17 17:42 - 000000000 ____D C:\Windows\SysWOW64\XPSViewer 2021-10-17 17:42 - 2021-10-17 17:42 - 000000000 ____D C:\Program Files\Reference Assemblies 2021-10-17 17:42 - 2021-10-17 17:42 - 000000000 ____D C:\Program Files\MSBuild 2021-10-17 17:42 - 2021-10-17 17:42 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies 2021-10-17 17:42 - 2021-10-17 17:42 - 000000000 ____D C:\Program Files (x86)\MSBuild 2021-10-17 17:40 - 2021-10-22 15:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games 2021-10-17 17:40 - 2021-10-17 17:40 - 000000000 ____D C:\Users\Mateusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Riot Games 2021-10-17 17:40 - 2021-10-17 17:40 - 000000000 ____D C:\Users\Mateusz\AppData\Local\CEF 2021-10-17 17:36 - 2021-12-21 20:02 - 000000000 ____D C:\Users\Mateusz\AppData\Roaming\discord 2021-10-17 17:36 - 2021-12-21 19:10 - 000000000 ____D C:\Users\Mateusz\AppData\Local\Discord 2021-10-17 17:36 - 2021-12-12 14:04 - 000000000 ____D C:\Users\Mateusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc 2021-10-17 17:36 - 2021-12-09 17:39 - 000000000 ____D C:\Users\Mateusz\AppData\Local\SquirrelTemp 2021-10-17 13:11 - 2021-10-17 13:11 - 002371072 _____ C:\Windows\system32\rdpnano.dll 2021-10-17 13:11 - 2021-10-17 13:11 - 001687040 _____ C:\Windows\system32\libcrypto.dll 2021-10-17 13:11 - 2021-10-17 13:11 - 000672768 _____ C:\Windows\system32\FsNVSDeviceSource.dll 2021-10-17 13:11 - 2021-10-17 13:11 - 000203264 _____ C:\Windows\system32\uwfcfgmgmt.dll 2021-10-17 13:11 - 2021-10-17 13:11 - 000170496 _____ C:\Windows\system32\DeviceUpdateCenterCsp.dll 2021-10-17 13:11 - 2021-10-17 13:11 - 000158208 _____ C:\Windows\system32\uwfcsp.dll 2021-10-17 13:11 - 2021-10-17 13:11 - 000040960 _____ C:\Windows\system32\uwfservicingapi.dll 2021-10-17 13:10 - 2021-10-17 13:10 - 002295296 _____ (Digimarc) C:\Windows\system32\DMRCDecoder.dll 2021-10-17 13:10 - 2021-10-17 13:10 - 002260992 _____ C:\Windows\system32\TextInputMethodFormatter.dll 2021-10-17 13:10 - 2021-10-17 13:10 - 002260480 _____ (The ICU Project) C:\Windows\system32\icu.dll 2021-10-17 13:10 - 2021-10-17 13:10 - 002111488 _____ (Digimarc) C:\Windows\SysWOW64\DMRCDecoder.dll 2021-10-17 13:10 - 2021-10-17 13:10 - 001864192 _____ (The ICU Project) C:\Windows\SysWOW64\icu.dll 2021-10-17 13:10 - 2021-10-17 13:10 - 001333760 _____ C:\Windows\SysWOW64\TextInputMethodFormatter.dll 2021-10-17 13:10 - 2021-10-17 13:10 - 001164288 _____ C:\Windows\system32\MBR2GPT.EXE 2021-10-17 13:10 - 2021-10-17 13:10 - 000706536 _____ C:\Windows\system32\TextShaping.dll 2021-10-17 13:10 - 2021-10-17 13:10 - 000657464 _____ C:\Windows\system32\WindowManagementAPI.dll 2021-10-17 13:10 - 2021-10-17 13:10 - 000611960 _____ C:\Windows\SysWOW64\TextShaping.dll 2021-10-17 13:10 - 2021-10-17 13:10 - 000468440 _____ C:\Windows\SysWOW64\WindowManagementAPI.dll 2021-10-17 13:10 - 2021-10-17 13:10 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll 2021-10-17 13:10 - 2021-10-17 13:10 - 000287232 _____ C:\Windows\system32\CoreMas.dll 2021-10-17 13:10 - 2021-10-17 13:10 - 000098304 _____ C:\Windows\system32\Drivers\cimfs.sys 2021-10-17 13:10 - 2021-10-17 13:10 - 000013312 _____ C:\Windows\system32\agentactivationruntimestarter.exe 2021-10-17 13:06 - 2021-12-21 19:10 - 000000000 ____D C:\ProgramData\NVIDIA 2021-10-17 13:05 - 2021-12-16 19:28 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2021-10-17 13:05 - 2021-12-16 19:28 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2021-10-17 13:05 - 2021-12-12 13:52 - 000000000 ____D C:\Windows\system32\Drivers\NVIDIA Corporation 2021-10-17 13:05 - 2021-10-24 09:26 - 000000134 _____ C:\Windows\system32\regtest.txt 2021-10-17 13:05 - 2021-10-17 13:05 - 000000000 ____D C:\Program Files\Common Files\Dolby 2021-10-17 13:05 - 2020-03-24 05:59 - 005834712 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPOU64.dll 2021-10-17 13:05 - 2020-03-24 05:59 - 001145672 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtCOM64.dll 2021-10-17 13:05 - 2020-03-24 05:59 - 001076728 _____ (Realtek Semiconductor) C:\Windows\system32\RtkAudUService64.exe 2021-10-17 13:05 - 2020-03-24 05:59 - 000845096 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64U.dll 2021-10-17 13:05 - 2020-03-24 05:59 - 000495496 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll 2021-10-17 13:05 - 2020-03-24 05:59 - 000224480 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll 2021-10-17 13:04 - 2021-12-12 13:50 - 000000000 ____D C:\ProgramData\Intel 2021-10-17 13:04 - 2021-10-17 13:05 - 000000000 ____D C:\Windows\system32\dolbyaposvc 2021-10-17 13:04 - 2020-03-24 05:58 - 007321896 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys 2021-10-17 13:04 - 2020-03-24 02:48 - 039059952 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT 2021-10-17 13:04 - 2019-08-15 22:42 - 000005476 _____ C:\Windows\system32\Drivers\SAMSfpa_17AA382710EC0257.dat 2021-10-17 13:04 - 2019-08-15 22:42 - 000000098 _____ C:\Windows\system32\Drivers\RTMICAR_17AA382710EC0257.dat 2021-10-17 13:03 - 2021-12-12 13:51 - 000000000 ____D C:\Users\Mateusz\AppData\Local\Intel 2021-10-17 13:03 - 2021-10-25 12:02 - 000000000 __SHD C:\Users\Mateusz\IntelGraphicsProfiles 2021-10-17 13:03 - 2021-10-24 09:26 - 000000000 ____D C:\Intel 2021-10-17 13:03 - 2021-10-17 13:03 - 000000000 ____D C:\Users\Mateusz\AppData\LocalLow\Intel 2021-10-17 13:03 - 2021-10-17 13:03 - 000000000 _____ C:\Windows\system32\GfxValDisplayLog.bin 2021-10-17 13:01 - 2021-12-03 11:15 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2021-10-17 13:01 - 2021-07-22 19:05 - 026677048 _____ (Intel Corporation) C:\Windows\system32\mfxplugin64_hw.dll 2021-10-17 13:01 - 2021-07-22 19:05 - 013520184 _____ (Intel Corporation) C:\Windows\SysWOW64\mfxplugin32_hw.dll 2021-10-17 13:01 - 2021-07-22 19:05 - 000462632 _____ C:\Windows\system32\ze_loader.dll 2021-10-17 13:01 - 2021-07-22 19:05 - 000305984 _____ C:\Windows\system32\libmfxhw64.dll 2021-10-17 13:01 - 2021-07-22 19:05 - 000254512 _____ C:\Windows\SysWOW64\libmfxhw32.dll 2021-10-17 13:01 - 2021-07-22 19:05 - 000171456 _____ (Intel Corporation) C:\Windows\system32\intel_gfx_api-x64.dll 2021-10-17 13:01 - 2021-07-22 19:05 - 000148776 _____ C:\Windows\system32\ze_validation_layer.dll 2021-10-17 13:01 - 2021-07-22 19:05 - 000146744 _____ (Intel Corporation) C:\Windows\SysWOW64\intel_gfx_api-x86.dll 2021-10-17 13:00 - 2021-12-15 18:58 - 000000000 ____D C:\Windows\system32\MRT 2021-10-17 12:59 - 2020-03-29 22:48 - 001269184 _____ (ELAN Microelectronics Corp.) C:\Windows\system32\ETDCtrl.exe 2021-10-17 12:59 - 2020-03-29 22:48 - 000743872 _____ (ELAN Microelectronics Corp.) C:\Windows\system32\Drivers\ETD.sys 2021-10-17 12:59 - 2020-03-29 22:48 - 000642496 _____ (ELAN Microelectronics Corp.) C:\Windows\system32\ETDCmds.dll 2021-10-17 12:59 - 2020-03-29 22:48 - 000509376 _____ (ELAN Microelectronic Corp.) C:\Windows\system32\ETDApix.dll 2021-10-17 12:59 - 2020-03-29 22:48 - 000470976 _____ (ELAN Microelectronics Corp.) C:\Windows\system32\ETDFavorite.dll 2021-10-17 12:59 - 2020-03-29 22:48 - 000464832 _____ (ELAN Microelectronics Corp.) C:\Windows\system32\ETDUn_inst.exe 2021-10-17 12:59 - 2020-03-29 22:48 - 000431040 _____ (ELAN Microelectronic Corp.) C:\Windows\system32\ETDApi.dll 2021-10-17 12:59 - 2020-03-29 22:48 - 000427456 _____ (ELAN Microelectronics Corp.) C:\Windows\system32\LenovoAPI.dll 2021-10-17 12:59 - 2020-03-29 22:48 - 000399296 _____ (ELAN Microelectronics Corp.) C:\Windows\system32\ETDCtrlHelper.exe 2021-10-17 12:59 - 2020-03-29 22:48 - 000254912 _____ (ELAN Microelectronics Corp.) C:\Windows\system32\ETDService.exe 2021-10-17 12:59 - 2020-03-29 22:48 - 000134080 _____ (ELAN Microelectronics Corp.) C:\Windows\system32\ETDTouch.exe 2021-10-17 12:06 - 2021-10-23 14:11 - 000000000 ____D C:\Windows\Panther 2021-10-17 11:19 - 2021-10-17 11:19 - 000000000 ____D C:\Users\Mateusz\AppData\Local\Comms 2021-10-17 11:18 - 2021-10-17 11:18 - 000000000 ____D C:\Windows\system32\Intel 2021-10-17 11:18 - 2021-10-17 11:18 - 000000000 ____D C:\Windows\system32\cAVS 2021-10-17 11:17 - 2021-12-10 19:54 - 000000000 ____D C:\Users\Mateusz\AppData\Local\PlaceholderTileLogoFolder 2021-10-17 11:17 - 2021-12-02 10:48 - 000000000 ____D C:\Users\Mateusz\AppData\Local\ElevatedDiagnostics 2021-10-17 11:17 - 2021-10-17 11:17 - 000000000 ____D C:\ProgramData\Realtek 2021-10-17 11:17 - 2019-08-13 18:21 - 001123512 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcOED.sys 2021-10-17 11:17 - 2019-08-13 18:21 - 000271544 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcAudioBus.sys 2021-10-17 11:17 - 2019-08-13 18:09 - 000587948 _____ C:\Windows\system32\Drivers\dsp_fw_release.bin 2021-10-17 11:17 - 2019-05-22 22:18 - 000305760 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaLPSS2_UART2.sys 2021-10-17 11:17 - 2019-05-22 22:18 - 000128608 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaLPSS2_GPIO2.sys 2021-10-17 11:16 - 2020-03-29 22:48 - 000030144 _____ (ELAN Microelectronics Corp.) C:\Windows\system32\Drivers\ETDHCF.sys 2021-10-17 11:15 - 2021-12-12 14:01 - 000000000 ____D C:\Users\Mateusz\AppData\Local\D3DSCache 2021-10-17 11:14 - 2021-12-21 19:10 - 000000000 ___RD C:\Users\Mateusz\OneDrive 2021-10-17 11:14 - 2021-12-02 10:09 - 000003384 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1753307546-4265785499-2913151106-1001 2021-10-17 11:13 - 2021-12-20 17:07 - 001768228 _____ C:\Windows\system32\PerfStringBackup.INI 2021-10-17 11:13 - 2021-10-17 11:13 - 000000000 ____D C:\ProgramData\Microsoft OneDrive 2021-10-17 11:12 - 2021-12-09 18:42 - 000000000 ____D C:\Users\Mateusz\AppData\Local\ConnectedDevicesPlatform 2021-10-17 11:12 - 2021-11-27 18:51 - 000000000 ____D C:\ProgramData\Packages 2021-10-17 11:12 - 2021-10-31 17:21 - 000000000 ____D C:\Users\Mateusz\AppData\Local\Packages 2021-10-17 11:12 - 2021-10-17 13:04 - 000000000 ____D C:\Users\Mateusz\AppData\Local\Publishers 2021-10-17 11:12 - 2021-10-17 11:12 - 000000000 ___RD C:\Users\Mateusz\3D Objects 2021-10-17 11:12 - 2021-10-17 11:12 - 000000000 ____D C:\Users\Mateusz\AppData\Local\VirtualStore 2021-10-17 11:11 - 2021-12-12 13:54 - 000000000 ____D C:\Users\Mateusz 2021-10-17 11:11 - 2021-12-02 10:09 - 000002433 _____ C:\Users\Mateusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-10-17 11:11 - 2021-10-17 11:11 - 000000020 ___SH C:\Users\Mateusz\ntuser.ini 2021-10-17 11:11 - 2021-10-17 11:11 - 000000000 _SHDL C:\Users\Mateusz\Ustawienia lokalne 2021-10-17 11:11 - 2021-10-17 11:11 - 000000000 _SHDL C:\Users\Mateusz\Szablony 2021-10-17 11:11 - 2021-10-17 11:11 - 000000000 _SHDL C:\Users\Mateusz\Moje dokumenty 2021-10-17 11:11 - 2021-10-17 11:11 - 000000000 _SHDL C:\Users\Mateusz\Menu Start 2021-10-17 11:11 - 2021-10-17 11:11 - 000000000 _SHDL C:\Users\Mateusz\Dane aplikacji 2021-10-17 11:11 - 2021-10-17 11:11 - 000000000 _SHDL C:\Users\Mateusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2021-10-17 11:11 - 2021-10-17 11:11 - 000000000 _SHDL C:\Users\Mateusz\AppData\Local\Tymczasowe pliki internetowe 2021-10-17 11:11 - 2021-10-17 11:11 - 000000000 _SHDL C:\Users\Mateusz\AppData\Local\Historia 2021-10-17 11:11 - 2021-10-17 11:11 - 000000000 _SHDL C:\Users\Mateusz\AppData\Local\Dane aplikacji 2021-10-17 11:08 - 2021-10-17 11:08 - 000000000 _SHDL C:\Users\Default\Ustawienia lokalne 2021-10-17 11:08 - 2021-10-17 11:08 - 000000000 _SHDL C:\Users\Default\Szablony 2021-10-17 11:08 - 2021-10-17 11:08 - 000000000 _SHDL C:\Users\Default\Moje dokumenty 2021-10-17 11:08 - 2021-10-17 11:08 - 000000000 _SHDL C:\Users\Default\Menu Start 2021-10-17 11:08 - 2021-10-17 11:08 - 000000000 _SHDL C:\Users\Default\Dane aplikacji 2021-10-17 11:08 - 2021-10-17 11:08 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2021-10-17 11:08 - 2021-10-17 11:08 - 000000000 _SHDL C:\Users\Default\AppData\Local\Tymczasowe pliki internetowe 2021-10-17 11:08 - 2021-10-17 11:08 - 000000000 _SHDL C:\Users\Default\AppData\Local\Historia 2021-10-17 11:08 - 2021-10-17 11:08 - 000000000 _SHDL C:\Users\Default\AppData\Local\Dane aplikacji 2021-10-17 11:08 - 2021-10-17 11:08 - 000000000 _SHDL C:\ProgramData\Szablony 2021-10-17 11:08 - 2021-10-17 11:08 - 000000000 _SHDL C:\ProgramData\Pulpit 2021-10-17 11:08 - 2021-10-17 11:08 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programy 2021-10-17 11:08 - 2021-10-17 11:08 - 000000000 _SHDL C:\ProgramData\Menu Start 2021-10-17 11:08 - 2021-10-17 11:08 - 000000000 _SHDL C:\ProgramData\Dokumenty 2021-10-17 11:08 - 2021-10-17 11:08 - 000000000 _SHDL C:\ProgramData\Dane aplikacji 2021-10-17 11:08 - 2021-10-17 11:08 - 000000000 _SHDL C:\Documents and Settings 2021-10-17 11:07 - 2021-12-20 16:59 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2021-10-17 11:07 - 2021-12-18 12:09 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-10-17 11:07 - 2021-12-16 14:55 - 000000000 ____D C:\Windows\system32\Drivers\wd 2021-10-17 11:07 - 2021-12-11 09:31 - 000003510 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-10-17 11:07 - 2021-12-11 09:31 - 000003386 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-10-17 11:06 - 2021-12-21 15:22 - 000000000 ____D C:\Windows\system32\SleepStudy 2021-10-17 11:06 - 2021-12-20 16:59 - 000008192 ___SH C:\DumpStack.log.tmp 2021-10-17 11:06 - 2021-11-27 21:23 - 000258584 _____ C:\Windows\system32\FNTCACHE.DAT 2021-10-17 11:06 - 2021-10-17 11:06 - 000000000 ____D C:\Windows\ServiceProfiles ==================== Trzy miesiące (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-12-21 19:54 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-12-21 19:30 - 2019-12-07 10:14 - 000000000 ___HD C:\Windows\ELAMBKUP 2021-12-21 08:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness 2021-12-20 17:07 - 2019-12-07 16:08 - 000787108 _____ C:\Windows\system32\perfh015.dat 2021-12-20 17:07 - 2019-12-07 16:08 - 000152952 _____ C:\Windows\system32\perfc015.dat 2021-12-20 17:07 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF 2021-12-20 16:59 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ServiceState 2021-12-20 12:16 - 2019-12-07 10:03 - 000524288 _____ C:\Windows\system32\config\BBI 2021-12-20 12:13 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-12-17 22:29 - 2019-12-07 10:03 - 000032768 _____ C:\Windows\system32\config\ELAM 2021-12-15 19:28 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources 2021-12-15 19:28 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\setup 2021-12-15 19:28 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe 2021-12-15 19:28 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr 2021-12-15 19:14 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp 2021-11-27 21:23 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2021-11-27 21:23 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lv-LV 2021-11-27 21:23 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lt-LT 2021-11-27 21:23 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\et-EE 2021-11-27 21:23 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\es-MX 2021-11-27 21:23 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Provisioning 2021-11-27 21:23 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\PolicyDefinitions 2021-11-24 19:39 - 2021-02-19 21:09 - 000096008 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klpnpflt.sys ==================== Pliki w katalogu głównym wybranych folderów ======== 2021-10-26 17:12 - 2021-10-26 17:12 - 000007605 _____ () C:\Users\Mateusz\AppData\Local\Resmon.ResmonCfg 2021-11-04 19:18 - 2021-11-04 19:18 - 000000000 _____ () C:\Users\Mateusz\AppData\Local\zenmap.exe.log ==================== SigCheckExt ========================= 2021-10-25 12:32 - 2019-11-08 08:15 - 003600896 _____ C:\Windows\system32\pwNative.exe 2021-12-21 19:58 - 2021-12-21 19:59 - 002311168 _____ (Farbar) C:\Users\Mateusz\Downloads\FRST64.exe ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== BCD ================================ Firmware Boot Manager --------------------- identifier {fwbootmgr} displayorder {bootmgr} {92c347b0-418a-11ec-89b6-806e6f6e6963} {0ed79646-2f3a-11ec-a916-c25e795deb9c} {0ed79647-2f3a-11ec-a916-c25e795deb9c} {0ed79648-2f3a-11ec-a916-c25e795deb9c} timeout 0 Windows Boot Manager -------------------- identifier {bootmgr} device partition=\Device\HarddiskVolume1 path \EFI\Microsoft\Boot\bootmgfw.efi description Windows Boot Manager locale pl-PL inherit {globalsettings} isolatedcontext Yes default {current} resumeobject {0ed7964c-2f3a-11ec-a916-c25e795deb9c} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Firmware Application (101fffff) ------------------------------- identifier {0ed79646-2f3a-11ec-a916-c25e795deb9c} description EFI USB Device isolatedcontext Yes Firmware Application (101fffff) ------------------------------- identifier {0ed79647-2f3a-11ec-a916-c25e795deb9c} description EFI DVD/CDROM isolatedcontext Yes Firmware Application (101fffff) ------------------------------- identifier {0ed79648-2f3a-11ec-a916-c25e795deb9c} description EFI Network isolatedcontext Yes Firmware Application (101fffff) ------------------------------- identifier {0ed79649-2f3a-11ec-a916-c25e795deb9c} description EFI PXE 0 for IPv4 (00-2B-67-CC-35-43) isolatedcontext Yes Firmware Application (101fffff) ------------------------------- identifier {0ed7964a-2f3a-11ec-a916-c25e795deb9c} description EFI PXE 0 for IPv6 (00-2B-67-CC-35-43) isolatedcontext Yes Firmware Application (101fffff) ------------------------------- identifier {92c347b0-418a-11ec-89b6-806e6f6e6963} device partition=\Device\HarddiskVolume1 path \EFI\Microsoft\Boot\bootmgfw.efi description Windows Boot Manager isolatedcontext Yes Windows Boot Loader ------------------- identifier {current} device partition=C: path \Windows\system32\winload.efi description Windows 10 locale pl-PL inherit {bootloadersettings} displaymessageoverride Recovery recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \Windows resumeobject {0ed7964c-2f3a-11ec-a916-c25e795deb9c} nx OptIn bootmenupolicy Standard Resume from Hibernate --------------------- identifier {0ed7964c-2f3a-11ec-a916-c25e795deb9c} device partition=C: path \Windows\system32\winresume.efi description Windows Resume Application locale pl-PL inherit {resumeloadersettings} recoveryenabled No isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Windows Memory Tester --------------------- identifier {memdiag} device partition=\Device\HarddiskVolume1 path \EFI\Microsoft\Boot\memtest.efi description Diagnostyka pami©ci systemu Windows locale pl-PL inherit {globalsettings} badmemoryaccess Yes isolatedcontext Yes EMS Settings ------------ identifier {emssettings} bootems No isolatedcontext Yes Debugger Settings ----------------- identifier {dbgsettings} debugtype Local isolatedcontext Yes RAM Defects ----------- identifier {badmemory} isolatedcontext Yes Global Settings --------------- identifier {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} integrityservices Enable isolatedcontext Yes Boot Loader Settings -------------------- identifier {bootloadersettings} inherit {globalsettings} {hypervisorsettings} isolatedcontext Yes Hypervisor Settings ------------------- identifier {hypervisorsettings} isolatedcontext Yes hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 Resume Loader Settings ---------------------- identifier {resumeloadersettings} inherit {globalsettings} isolatedcontext Yes ==================== Koniec FRST.txt ========================