Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 04-11-2022 Uruchomiony przez zamlab (administrator) ZAMLAB-THINK (LENOVO 20C60041PB) (04-11-2022 23:12:19) Uruchomiony z C:\Users\zamlab\Desktop\fixitpc-pl\01-logi Załadowane profile: zamlab Platform: Microsoft Windows 10 Pro Wersja 21H2 19044.1826 (X64) Język: Polski (Polska) Domyślna przeglądarka: FF Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (C:\Program Files\Avira\Endpoint Protection SDK\endpointprotection.exe ->) (Avira Operations GmbH -> Avira Operations GmbH) C:\Program Files\Avira\Endpoint Protection SDK\SentryEye.exe (cmd.exe ->) (Lenovo (Beijing) Limited -> Lenovo Group Limited) C:\Users\zamlab\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSB.exe (explorer.exe ->) (Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe (Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe (Intel(R) pGFX 2020 -> ) C:\WINDOWS\System32\igfxTray.exe (Intel(R) pGFX 2020 -> Intel Corporation) C:\WINDOWS\System32\igfxHK.exe (Lenovo -> ) C:\Program Files (x86)\Lenovo\System Update\UNCServer.exe (Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\cmd.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <13> (services.exe ->) (Avira Operations GmbH -> Avira Operations GmbH) C:\Program Files\Avira\Endpoint Protection SDK\endpointprotection.exe (services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\WINDOWS\System32\igfxCUIService.exe (services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe (services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\WINDOWS\System32\ibtsiva.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2> (svchost.exe ->) (Avira Operations GmbH -> Avira Operations GmbH) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Systray.Application.exe (svchost.exe ->) (Lenovo -> Lenovo) C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\MoUsoCoreWorker.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\wlanext.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.1940_none_7dd80d767cb5c7b0\TiWorker.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RtsCM] => RTSCM64.EXE (Brak pliku) HKLM\...\Run: [BLEServicesCtrl] => C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe [184112 2012-09-17] (Intel Corporation-Mobile Wireless Group -> Intel Corporation) HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] (Fortemedia Inc -> ) HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [935104 2014-11-25] (Conexant Systems, Inc. -> Conexant Systems, Inc.) HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc. -> Conexant Systems, Inc.) HKLM\...\Run: [eduVPN] => C:\Program Files\eduVPN\Core\eduVPN.Client.exe [145832 2022-05-12] (AMEBIS, d.o.o., Kamnik -> SURF) HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [134616 2013-05-16] (Intel Corporation - Software and Firmware Products -> Intel Corporation) HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2013-10-21] (Intel Corporation - Software and Firmware Products -> Intel Corporation) HKLM-x32\...\Run: [Fastboot] => C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe [1085744 2012-11-21] (Lenovo -> Lenovo) HKLM-x32\...\Run: [Intel Driver & Support Assistant] => C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe [292120 2022-10-26] (Intel Corporation -> Intel) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Ograniczenia <==== UWAGA HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Ograniczenia <==== UWAGA HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Ograniczenia <==== UWAGA HKU\S-1-5-21-2080126910-410435711-3946886366-1000\...\Run: [MicrosoftEdgeAutoLaunch_CC18DB82D512283584024C270CC55822] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3891624 2022-10-29] (Microsoft Corporation -> Microsoft Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] -> GroupPolicy: Ograniczenia ? <==== UWAGA GroupPolicy-Firefox: Ograniczenia <==== UWAGA Policies: C:\ProgramData\NTUSER.pol: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0DA99052-17CE-488B-95E1-AC1AB944DD24} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\3.13.25.0\ScheduleEventAction.exe [28912 2022-08-28] (Lenovo -> Lenovo Group Ltd.) Task: {1324CA56-3E91-49E1-BB72-7A23841DFA56} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB" Task: {13F85E8B-DD58-4281-9174-6EBCF72232DA} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.25.0\ScheduleEventAction.exe [28912 2022-08-28] (Lenovo -> Lenovo Group Ltd.) Task: {1D842190-D509-4AF9-A47A-98E1C274DF33} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\65c0a7ce-439a-4ef0-862a-1ef81107a4b1 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.) Task: {23DCAE8A-C6EC-45FD-8358-AE3844A67BD0} - System32\Tasks\Opera scheduled assistant Autoupdate 1603434546 => C:\Users\zamlab\AppData\Local\Programs\Opera\launcher.exe [2569160 2022-10-28] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\zamlab\AppData\Local\Programs\Opera\assistant" $(Arg0) Task: {25739CDC-5B20-479D-9428-2F615EA7C1E2} - System32\Tasks\StartPowerDVDService => C:\PROGRAM FILES (x86)\Cyberlink\PowerDVD10\PDVD10Serv.exe [100712 2013-06-28] (CyberLink Corp. -> CyberLink Corp.) Task: {25D8F8C0-4AD8-4BDA-9BAE-2B5E6AC84235} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0) (Brak pliku) Task: {27F22586-54B1-4DDF-89F9-B28D0F0B1B18} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0) (Brak pliku) Task: {30474B20-A0C6-4E74-99EA-5A15A80E1011} - System32\Tasks\Opera scheduled Autoupdate 1603434543 => C:\Users\zamlab\AppData\Local\Programs\Opera\launcher.exe [2569160 2022-10-28] (Opera Norway AS -> Opera Software) Task: {346BF7AF-0933-4B7A-87CF-1A98A92976D5} - System32\Tasks\Avira_Security_Service_SCM_Watchdog => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe [258304 2022-10-10] (Avira Operations GmbH -> Avira Operations GmbH) Task: {38D057FE-6742-4011-8BA5-F21EC502222B} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe /OCURActivate (Brak pliku) Task: {38D377BD-A37F-4977-9414-7535CEF357D0} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {3BD9680D-37E2-4C6D-943D-BE2D10489367} - System32\Tasks\ISM-UpdateService-e57b59e7-5862-4250-9ce0-76fb411dc0d2-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\Bootstrap.exe [257824 2013-02-27] (Intel® Services Manager -> Intel Corporation) Task: {3EE37A58-05BF-47F8-BCF7-065A202034B2} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1900320 2022-09-16] (Lenovo -> ) Task: {3F49AD80-139C-4FAC-A92F-4353C62885BB} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe $(Arg0) (Brak pliku) Task: {469ADA71-3AA0-4778-8F73-4689F79987D9} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\f176bbd7-6bd4-44d6-abc0-fd088b97c94b => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.) Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47c2-B62A-B7C4CED925CB} Task: {48B34EC5-456B-4928-A1D5-B70DD623831D} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1900320 2022-09-16] (Lenovo -> ) Task: {49FC1AE2-666A-4F33-88C9-BC7C355964E6} - System32\Tasks\Norton Internet Security\Norton Error Analyzer => C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\SymErr.exe /analyze (Brak pliku) Task: {4D4DF2F4-9B23-47A1-BAE0-DE7195DBD911} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -MediaCenterRecoveryTask (Brak pliku) Task: {4FFE1AD1-504E-43C0-BDAE-0F1A52AF8E86} - System32\Tasks\Norton Internet Security\Norton Error Processor => C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\SymErr.exe /submit (Brak pliku) Task: {530C40CA-DAAE-4EF9-9B99-5D7C20CB7BA4} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-2080126910-410435711-3946886366-1000 => C:\Users\zamlab\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe [89096 2022-10-19] (Lenovo (Beijing) Limited -> Lenovo Group Limited) Task: {533BBF81-ED83-4C27-A44B-D890FDFE275A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1552376 2022-09-26] (Adobe Inc. -> Adobe Inc.) Task: {55EE5B33-E3E5-4435-86C6-6C60C4A4F8ED} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery (Brak pliku) Task: {57E72E2A-FC24-4ACD-A98E-48CA0CCF34D9} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe (Brak pliku) Task: {5AB894CE-6F27-41B6-B3D0-24DF8B2BBC3F} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe /DRMInit (Brak pliku) Task: {5ADA4FF6-7705-46C3-900C-21842574B726} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -ObjectStoreRecoveryTask (Brak pliku) Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A} Task: {6370DBA9-8CE1-43D0-8B96-86873BD0D765} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService Task: {671CDDC2-250F-4657-8169-29004895831B} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService Task: {6D6C9106-33BE-4EC5-9D17-B2DD69D68571} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0) (Brak pliku) Task: {7160C179-A65C-4239-B7BD-CE654ED909D0} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\WSCStub.exe /taskschd (Brak pliku) Task: {75D46999-4DCE-4F65-9795-B9DB23913905} - System32\Tasks\Avira_Security_Systray => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Systray.Application.exe [1660640 2022-10-10] (Avira Operations GmbH -> Avira Operations GmbH) Task: {78462287-303B-4619-A74F-830D58DECB85} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [149280 2022-09-23] (Lenovo -> Lenovo Group Ltd.) Task: {83852437-4BB9-4FAC-89D1-AA77CBFA3991} - System32\Tasks\Avira_Security_Maintenance => Command(1): C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe -> FallbackTelemetry Task: {83852437-4BB9-4FAC-89D1-AA77CBFA3991} - System32\Tasks\Avira_Security_Maintenance => Command(2): C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe -> ServiceWatchdog Task: {83852437-4BB9-4FAC-89D1-AA77CBFA3991} - System32\Tasks\Avira_Security_Maintenance => Command(3): C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe -> CrashCollector Task: {8822F332-B54E-4693-AEDD-A8F92EBD5F53} - System32\Tasks\AviraSystemSpeedupVerify => C:\Program Files (x86)\Avira\System Speedup\setup\avira_speedup_setup.exe [35422592 2022-10-06] (Avira Operations GmbH -> Avira Operations GmbH) Task: {8C7D7477-0C14-4C26-BF60-79AE6E15B761} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32 Task: {8D6725E6-B2BD-46D8-9E0B-530A64E3E7E6} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.25.0\ScheduleEventAction.exe [28912 2022-08-28] (Lenovo -> Lenovo Group Ltd.) Task: {8DB86A20-69F4-4156-AAD4-D9EAAC5342ED} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\Windows\system32\rundll32.exe C:\Windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)" Task: {910969C1-EEF8-4389-BE7B-EE031830F6B8} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.25.0\ScheduleEventAction.exe [28912 2022-08-28] (Lenovo -> Lenovo Group Ltd.) Task: {9425EDD6-CBFC-4AED-BC95-79F017FBF899} - System32\Tasks\CCleanerCrashReporting => C:\Users\zamlab\Desktop\nowe\ccsetup605\x64\CCleanerBugReport.exe [4669264 2022-10-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Users\zamlab\Desktop\nowe\ccsetup605\LOG" --programpath "C:\Users\zamlab\Desktop\nowe\ccsetup605" --configpath "C:\Users\zamlab\Desktop\nowe\ccsetup605\Setup" --guid "be0ef9b1-6c3f-433b-99c7-352fcaf131b3" --version "6.05.10110" --silent Task: {9467D7AF-8A48-415E-BE2B-D7ADF46FBF9D} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe /StartRecording (Brak pliku) Task: {94BEF7C4-C10C-49D8-98DF-5385708CC01E} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0) (Brak pliku) Task: {9DD7653E-C711-41EA-9C3A-198CCF6CE14C} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\4f02346c-2fbb-4bde-96b4-d36c2fb02e13 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.) Task: {A224093B-7012-4D2D-86A5-5257D8AC6633} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe /PBDADiscovery (Brak pliku) Task: {A26F6C8B-4391-4A02-BED5-6020F56AD71D} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [64256 2022-01-28] (Lenovo -> Lenovo Group Ltd.) Task: {A39B3A3E-BFB5-4E9F-AA84-3BF49CB28ADE} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport => C:\Program Files (x86)\Lenovo\VantageService\3.13.25.0\ScheduleEventAction.exe [28912 2022-08-28] (Lenovo -> Lenovo Group Ltd.) Task: {B098B33E-CC71-46AA-8722-C8400F9410A8} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe (Brak pliku) Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40b4-8963-D3C761B18371} Task: {B393EC44-E7EC-493A-8856-6D5361CDAF34} - \PMTask -> Brak pliku <==== UWAGA Task: {B73135A0-1CDE-4F08-9082-13DDF7C35427} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.13.25.0\ScheduleEventAction.exe [28912 2022-08-28] (Lenovo -> Lenovo Group Ltd.) Task: {BAC52F38-A38C-409E-A06E-A09D640D0432} - System32\Tasks\Lenovo\Power Manager\Background monitor => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe [128976 2022-05-17] (Lenovo -> Lenovo) Task: {BAD5DCE8-B203-4BBB-92A2-C20AF8329DFA} - System32\Tasks\ISM-UpdateService-e57b59e7-5862-4250-9ce0-76fb411dc0d2 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\Bootstrap.exe [257824 2013-02-27] (Intel® Services Manager -> Intel Corporation) Task: {BEED5B3E-D5F0-4C60-9D9D-BACABBC21182} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe /DoConfigureInternetTimeService (Brak pliku) Task: {BF436992-9CD5-40DD-86C7-7D7C603E9D00} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_TVSUUpdateTask_Once => C:\Program Files (x86)\Lenovo\VantageService\3.13.25.0\ScheduleEventAction.exe [28912 2022-08-28] (Lenovo -> Lenovo Group Ltd.) Task: {C0D37DCF-A763-4F8A-BFB5-4FD9B45EC0E3} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs (Brak pliku) Task: {C3720799-C372-4629-888F-E91C6A204E02} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe /RestartRecording (Brak pliku) Task: {C7D98AD4-1264-4A35-AA99-10AB6A9DFD39} - System32\Tasks\Lenovo\Power Manager\Uninstall task => C:\WINDOWS\SysWOW64\PowerMgrInst.exe [64984 2022-05-17] (Lenovo -> ) Task: {C9875F3A-ED26-47C6-998D-98639A845410} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe /DoReindexSearchRoot (Brak pliku) Task: {CB14EFA1-7CB6-4E31-8FCF-A3658882BFE8} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe /DoActivateWindowsSearch (Brak pliku) Task: {D22036A4-61B2-4AAB-8E1D-8DBBE7EC042C} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery (Brak pliku) Task: {D3F5124E-400D-4AAD-AB89-BA57A494D602} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0) (Brak pliku) Task: {DAB11F84-1C42-4FD0-87D2-5FDDA3910F8C} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -SqlLiteRecoveryTask (Brak pliku) Task: {DF6EDAF7-B32F-4DC1-A0C8-015D07759857} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969} Task: {E16D8C49-D82B-4258-87D4-EB7965003790} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43da-BFD7-FBEEA2180A1E} Task: {E374D4B2-D0AC-4EFF-9490-B8E60FC29AE2} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\avast software\overseer\overseer.exe [2250576 2022-05-25] (Avast Software s.r.o. -> Avast Software) Task: {E3768DB3-529E-4389-9526-F6971ABE79B7} - System32\Tasks\CLMLSvc => C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [110144 2013-03-06] (CyberLink Corp. -> CyberLink) Task: {E54D8E67-639E-4639-B52C-F72F0D76E262} - System32\Tasks\Avira_Security_Update => C:\WINDOWS\system32\net.exe [59904 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {E54E104B-F5BD-4F24-961C-5C1D365716F0} - System32\Tasks\CCleanerSkipUAC - zamlab => C:\Users\zamlab\Desktop\nowe\ccsetup605\CCleaner.exe [32472400 2022-10-20] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {E8A4508C-ED5C-4257-8095-7D370FEC4FA9} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4f47-879B-29A80C355D61} Task: {E9124753-0D65-491F-80C7-8E0C5A3EFD9E} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe -PvrSchedule (Brak pliku) Task: {E99D8EEF-BBE7-4FA3-9DA9-81B0B6F72906} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -PvrRecoveryTask (Brak pliku) Task: {EC75034F-5E67-4A45-9F4B-6C1CC0B06394} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDfE067B1} Task: {FA285672-0EF7-4D9E-8699-29DCD8D27CFE} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316} Task: {FA4E57F1-7583-403E-9356-FB8D4BB4049E} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe -pscn 0 (Brak pliku) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Users\zamlab\Desktop\nowe\ccsetup605\x64\CCleanerBugReport.exe Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3: <==== UWAGA (Ograniczenia - Zones) Tcpip\Parameters: [DhcpNameServer] 62.179.1.60 62.179.1.61 192.168.1.254 Tcpip\..\Interfaces\{0917C010-4807-4299-B627-2AE0D8DD7806}: [DhcpNameServer] 62.179.1.60 62.179.1.61 Tcpip\..\Interfaces\{2EAF946B-48D0-43C1-A8F8-1C3F3009CEE1}: [DhcpNameServer] 62.179.1.60 62.179.1.61 192.168.1.254 Edge: ======= Edge Extension: (Brak nazwy) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [nie znaleziono] Edge Extension: (Brak nazwy) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [nie znaleziono] Edge Extension: (Brak nazwy) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [nie znaleziono] Edge Extension: (Brak nazwy) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [nie znaleziono] Edge DefaultProfile: Default Edge Profile: C:\Users\zamlab\AppData\Local\Microsoft\Edge\User Data\Default [2022-11-03] Edge HomePage: Default -> hxxp://www.gazeta.com.pl/ Edge StartupUrls: Default -> "hxxps://www.google.pl/" Edge Extension: (Outlook) - C:\Users\zamlab\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bjhmmnoficofgoiacjaajpkfndojknpb [2020-11-03] Edge Extension: (Word) - C:\Users\zamlab\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hikhggiobiflkdfdgdajcfklmcibbopi [2020-11-03] Edge Extension: (Excel) - C:\Users\zamlab\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\leffmjdabcgaflkikcefahmlgpodjkdm [2020-11-03] Edge Extension: (PowerPoint) - C:\Users\zamlab\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\opfacbhaojodjaojgocnibmklknchehf [2020-11-03] FireFox: ======== FF DefaultProfile: lgatsy0s.default FF ProfilePath: C:\Users\zamlab\AppData\Roaming\Mozilla\Firefox\Profiles\lgatsy0s.default [2020-10-23] FF ProfilePath: C:\Users\zamlab\AppData\Roaming\Mozilla\Firefox\Profiles\sa1kevn0.default-release [2022-11-04] FF Homepage: Mozilla\Firefox\Profiles\sa1kevn0.default-release -> about:blank FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-10-16] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.5.29 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-05-16] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-05-16] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh] Opera: ======= OPR Profile: C:\Users\zamlab\AppData\Roaming\Opera Software\Opera Stable [2022-11-04] OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding} OPR Extension: (Rich Hints Agent) - C:\Users\zamlab\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2022-10-30] OPR Extension: (Opera Wallet) - C:\Users\zamlab\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2022-10-30] OPR Extension: (Amazon Assistant Promotion) - C:\Users\zamlab\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-09-16] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S4 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2022-09-26] (Adobe Inc. -> Adobe Inc.) S4 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [3004688 2022-07-22] (Avira Operations GmbH -> Avira Operations GmbH & Co. KG) S4 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [386864 2022-03-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) S4 AviraSecurity; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe [267096 2022-10-10] (Avira Operations GmbH -> Avira Operations GmbH) S4 AviraSecurityUpdater; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Common.Updater.exe [291208 2022-10-10] (Avira Operations GmbH -> Avira Operations GmbH) S4 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [41240 2022-10-26] (Intel Corporation -> Intel) S4 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [201496 2022-10-26] (Intel Corporation -> Intel) S4 eduWGManager$eduVPN; C:\Program Files\eduVPN\WireGuard\eduWGSvcHost.exe [537000 2022-05-12] (AMEBIS, d.o.o., Kamnik -> SURF) R2 EndpointProtectionService; C:\Program Files\Avira\Endpoint Protection SDK\endpointprotection.exe [8762080 2022-10-31] (Avira Operations GmbH -> Avira Operations GmbH) S3 EndpointProtectionService2; C:\Program Files\Avira\Endpoint Protection SDK\endpointprotection.exe [8762080 2022-10-31] (Avira Operations GmbH -> Avira Operations GmbH) S4 FastbootService; C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe [160048 2012-11-21] (Lenovo -> Lenovo) S4 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.) S4 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [731648 2013-02-13] (Intel(R) Corporation) [Brak podpisu cyfrowego] S4 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [182760 2013-04-15] (Intel(R) Smart Connect software -> ) S4 LENOVO.TVTVCAM; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [199160 2013-07-17] (LENOVO(JAPAN)LTD. -> Lenovo Group Limited) S4 Lenovo.VIRTSCRLSVC; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [136288 2012-08-10] (Lenovo(Japan)Ltd. -> Lenovo Group Limited) S4 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.13.25.0\LenovoVantageService.exe [32496 2022-08-28] (Lenovo -> Lenovo Group Ltd.) S4 LPlatSvc; C:\WINDOWS\System32\LPlatSvc.exe [892288 2019-12-11] (Lenovo -> Lenovo.) S4 OpenVPNServiceInteractive$eduVPN; C:\Program Files\eduVPN\OpenVPN\openvpnserv.exe [211480 2022-05-09] (AMEBIS, d.o.o., Kamnik -> The OpenVPN Project) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6232176 2022-07-20] (Microsoft Windows Publisher -> Microsoft Corporation) S4 TPHKLOAD; C:\WINDOWS\System32\DriverStore\FileRepository\fn.inf_amd64_9c4c29de89199c58\driver\TPHKLOAD.exe [473760 2021-10-22] (Lenovo -> Lenovo Group Limited) S4 valWBFPolicyService; C:\WINDOWS\system32\valWBFPolicyService.exe [77792 2018-04-25] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) S4 valWbioSyncSvc; C:\WINDOWS\system32\valWbioSyncSvc.exe [48608 2018-04-25] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2009.7-0\NisSrv.exe [2372048 2020-11-03] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2009.7-0\MsMpEng.exe [128376 2020-11-03] (Microsoft Windows Publisher -> Microsoft Corporation) S3 QuickControlService; "C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe" [X] ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R1 BdSentry; C:\WINDOWS\System32\DRIVERS\BdSentry.sys [230520 2022-06-21] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R0 Fastboot; C:\WINDOWS\System32\DRIVERS\Fastboot.sys [71472 2012-11-21] (Lenovo -> Windows (R) Win 7 DDK provider) R1 netprotection_network_filter; C:\WINDOWS\System32\drivers\netprotection_network_filter.sys [100128 2022-06-15] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R3 phantomtap; C:\WINDOWS\System32\drivers\phantomtap.sys [39448 2020-10-07] (Avira Operations GmbH & Co. KG -> The OpenVPN Project) R0 PMDRVS; C:\WINDOWS\System32\drivers\pmdrvs.sys [38160 2019-12-11] (Lenovo -> Lenovo.) S0 rtp_elam; C:\WINDOWS\System32\DRIVERS\rtp_elam.sys [26624 2022-10-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Avira Operations GmbH) R2 rtp_filesystem_filter; C:\WINDOWS\System32\DRIVERS\rtp_filesystem_filter.sys [223848 2022-10-17] (Avira Operations GmbH -> Avira Operations GmbH) R1 rtp_process_monitor; C:\WINDOWS\system32\DRIVERS\rtp_process_monitor.sys [217552 2022-10-17] (Avira Operations GmbH -> Avira Operations GmbH) R1 rtp_traverse; C:\WINDOWS\system32\DRIVERS\rtp_traverse.sys [61376 2022-10-17] (Avira Operations GmbH -> Avira Operations GmbH) R1 SMIDriverGen; C:\WINDOWS\system32\DRIVERS\smi.sys [31440 2018-04-25] (Synaptics Inc. -> Synaptics Incorporated) R3 tvtvcamd; C:\WINDOWS\system32\DRIVERS\tvtvcamd.sys [27432 2011-12-08] (Lenovo (Japan) Ltd. -> ThinkVantage Communications Utility) R3 usb3Hub; C:\WINDOWS\System32\drivers\usb3Hub.sys [207256 2013-03-05] (Intel Wireless Display -> Windows (R) Win 7 DDK provider) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2020-11-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [428264 2020-11-03] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [69864 2020-11-03] (Microsoft Windows -> Microsoft Corporation) S3 wintun; C:\WINDOWS\System32\drivers\wintun.sys [29592 2022-06-23] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC) S3 WPRO_41_2001; C:\WINDOWS\System32\drivers\WPRO_41_2001.sys [34752 2022-11-03] (Intel(R) Smart Connect software -> ) U3 idsvc; Brak ImagePath S3 netprotection_network_filter2; System32\drivers\netprotection_network_filter2.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2022-11-04 23:12 - 2022-11-04 23:12 - 000000000 ___HD C:\$WinREAgent 2022-11-04 23:11 - 2022-11-04 23:12 - 000000000 ____D C:\FRST 2022-11-04 14:39 - 2022-11-04 14:39 - 000000000 ____D C:\WINDOWS\Panther 2022-11-04 10:59 - 2022-11-04 13:38 - 000000000 ___HD C:\$WINDOWS.~BT 2022-11-04 10:28 - 2022-11-04 10:28 - 000000000 ___HD C:\$Windows.~WS 2022-11-04 09:22 - 2020-12-01 17:17 - 000397680 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe 2022-11-04 08:51 - 2022-11-04 08:51 - 000000000 ____D C:\ECRB 2022-11-03 09:02 - 2022-10-18 17:35 - 001210224 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys 2022-11-03 08:53 - 2022-11-03 08:53 - 000001521 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver & Support Assistant.lnk 2022-11-03 08:53 - 2022-11-03 08:53 - 000000000 ____D C:\Program Files\dotnet 2022-11-03 08:17 - 2022-11-03 09:09 - 000001016 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job 2022-11-03 08:17 - 2022-11-03 08:57 - 000003730 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting 2022-11-03 08:17 - 2022-11-03 08:17 - 000002964 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - zamlab 2022-11-02 12:58 - 2022-11-02 12:59 - 000329442 _____ C:\WINDOWS\ntbtlog.txt 2022-11-01 23:23 - 2022-11-02 14:34 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job 2022-11-01 23:19 - 2022-11-04 13:31 - 000000000 ____D C:\WINDOWS\system32\%systemroot 2022-11-01 22:24 - 2022-11-01 22:24 - 000000000 ____D C:\Users\zamlab\AppData\Local\ElevatedDiagnostics 2022-10-31 22:21 - 2022-11-04 22:54 - 000000000 ____D C:\Program Files\Mozilla Firefox 2022-10-31 16:00 - 2022-10-31 16:00 - 000001839 _____ C:\Users\zamlab\Desktop\CrystalDiskInfo.lnk 2022-10-31 16:00 - 2022-10-31 16:00 - 000000000 ____D C:\Program Files\CrystalDiskInfo 2022-10-31 15:52 - 2016-09-20 07:50 - 000284248 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPCo34-11.dll 2022-10-31 15:52 - 2016-09-20 07:49 - 000056920 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynRMIHID_Aux.sys 2022-10-31 15:51 - 2016-09-20 07:49 - 000419928 _____ (Synaptics Incorporated) C:\WINDOWS\SysWOW64\SynCom.dll 2022-10-31 15:51 - 2016-09-20 07:49 - 000042584 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_Intel_Aux.sys 2022-10-31 15:51 - 2016-09-20 07:49 - 000042072 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\Smb_driver_AMDASF_Aux.sys 2022-10-31 15:38 - 2022-10-31 15:38 - 000000398 _____ C:\WINDOWS\storelibdebug.txt 2022-10-31 15:36 - 2022-10-31 15:36 - 000000000 ____D C:\WINDOWS\Lenovo 2022-10-31 15:36 - 2022-01-28 20:04 - 000109312 _____ (Lenovo Group Ltd.) C:\WINDOWS\system32\ImController.CoInstaller.dll 2022-10-31 15:36 - 2022-01-28 20:04 - 000064256 _____ (Lenovo Group Ltd.) C:\WINDOWS\system32\ImController.InfInstaller.exe 2022-10-31 15:25 - 2014-06-17 20:14 - 000873688 _____ (Realtek ) C:\WINDOWS\system32\Drivers\Rt630x64.sys 2022-10-31 15:25 - 2014-06-17 20:14 - 000073800 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll 2022-10-31 15:21 - 2019-12-11 18:42 - 000892288 _____ (Lenovo.) C:\WINDOWS\system32\LPlatSvc.exe 2022-10-31 15:21 - 2019-12-11 18:42 - 000038160 _____ (Lenovo.) C:\WINDOWS\system32\Drivers\pmdrvs.sys 2022-10-31 15:20 - 2022-10-31 15:52 - 000000000 ____D C:\WINDOWS\TempInst 2022-10-31 15:19 - 2022-10-31 15:19 - 000000000 ____D C:\Users\zamlab\AppData\Local\LenovoServiceBridge 2022-10-31 15:18 - 2022-11-04 13:31 - 000000000 ____D C:\Users\zamlab\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo 2022-10-31 15:08 - 2022-10-31 15:08 - 001575742 _____ (Igor Pavlov) C:\Users\zamlab\Downloads\7z2201-x64.exe 2022-10-31 12:41 - 2022-11-01 16:07 - 000000448 __RSH C:\ProgramData\ntuser.pol 2022-10-30 22:38 - 2022-10-30 22:38 - 000000000 ____D C:\WINDOWS\system32\Tasks\Agent Activation Runtime 2022-10-30 21:05 - 2022-10-30 21:08 - 000000036 _____ C:\WINDOWS\progress.ini 2022-10-30 20:38 - 2022-10-30 21:05 - 000000000 ___HD C:\$GetCurrent 2022-10-30 20:37 - 2022-10-30 21:05 - 000000000 ____D C:\Program Files (x86)\WindowsInstallationAssistant 2022-10-30 19:41 - 2022-11-04 13:31 - 000000000 ____D C:\WINDOWS\system32\%LOCALAPPDATA% 2022-10-27 07:32 - 2022-10-27 07:32 - 000002229 _____ C:\Users\zamlab\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Firefox — tryb prywatny.lnk 2022-10-19 09:48 - 2022-10-19 09:48 - 000003888 _____ C:\WINDOWS\system32\Tasks\Avira_Security_Maintenance 2022-10-19 09:48 - 2022-10-19 09:48 - 000003428 _____ C:\WINDOWS\system32\Tasks\Avira_Security_Service_SCM_Watchdog 2022-10-19 09:48 - 2022-10-19 09:48 - 000002818 _____ C:\WINDOWS\system32\Tasks\Avira_Security_Systray 2022-10-12 12:30 - 2022-10-12 12:30 - 000568677 _____ C:\Users\zamlab\Desktop\zaswiadczanie Woźniak.pdf 2022-10-12 12:29 - 2022-10-12 12:29 - 000568677 _____ C:\Users\zamlab\Downloads\zaswiadczanie Woźniak.pdf 2022-10-11 16:38 - 2022-10-11 16:38 - 000005698 _____ C:\Users\zamlab\Downloads\certyfikat-pzemla-20221007.p12 2022-10-11 15:58 - 2022-10-26 09:38 - 000002084 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk 2022-10-11 15:58 - 2022-10-26 09:38 - 000002072 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk 2022-10-11 15:49 - 2022-10-11 15:49 - 000000000 ____D C:\Users\zamlab\AppData\Roaming\com.adobe.dunamis 2022-10-06 10:02 - 2022-10-06 10:02 - 001217330 _____ C:\Users\zamlab\Downloads\Plan zajęć_zima2022.pdf 2022-10-06 10:02 - 2022-10-06 10:02 - 001217330 _____ C:\Users\zamlab\Desktop\Plan zajęć_zima2022.pdf 2022-10-06 07:28 - 2022-10-06 07:28 - 000003790 _____ C:\WINDOWS\system32\Tasks\AviraSystemSpeedupVerify ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2022-11-04 23:14 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-11-04 22:54 - 2021-10-14 10:01 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2022-11-04 22:54 - 2020-10-23 07:25 - 000000947 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2022-11-04 22:54 - 2020-10-23 07:25 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2022-11-04 22:53 - 2020-09-27 06:33 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-11-04 22:36 - 2020-10-23 07:25 - 000000000 ____D C:\Users\zamlab\AppData\LocalLow\Mozilla 2022-11-04 22:33 - 2020-11-03 18:23 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2022-11-04 14:31 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2022-11-04 13:37 - 2020-11-03 18:27 - 001972438 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2022-11-04 13:37 - 2019-12-07 16:09 - 000857660 _____ C:\WINDOWS\system32\perfh015.dat 2022-11-04 13:37 - 2019-12-07 16:09 - 000188466 _____ C:\WINDOWS\system32\perfc015.dat 2022-11-04 13:37 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF 2022-11-04 13:33 - 2020-11-03 18:59 - 000000000 ____D C:\ProgramData\Synaptics 2022-11-04 13:33 - 2020-09-27 08:34 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-11-04 13:33 - 2020-09-27 06:33 - 000008192 ___SH C:\DumpStack.log.tmp 2022-11-04 13:33 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState 2022-11-04 13:31 - 2021-10-18 08:06 - 000000000 ____D C:\WINDOWS\SysWOW64\statReporter 2022-11-04 13:31 - 2021-05-23 17:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira 2022-11-04 13:31 - 2021-02-02 12:26 - 000000000 ____D C:\Users\zamlab\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom 2022-11-04 13:31 - 2020-11-03 20:09 - 000000000 ____D C:\WINDOWS\system32\appmgmt 2022-11-04 13:31 - 2020-11-03 18:27 - 000000000 ____D C:\Users\zamlab 2022-11-04 13:31 - 2020-10-23 09:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip 2022-11-04 13:31 - 2019-12-07 10:14 - 000000000 __SHD C:\Program Files\Windows Sidebar 2022-11-04 13:31 - 2019-12-07 10:14 - 000000000 __SHD C:\Program Files (x86)\Windows Sidebar 2022-11-04 13:31 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files 2022-11-04 13:31 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-11-04 13:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed 2022-11-04 13:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\IME 2022-11-04 13:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy 2022-11-04 13:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2022-11-04 13:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase 2022-11-04 13:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\spool 2022-11-04 13:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF 2022-11-04 13:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Macromed 2022-11-04 13:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\IME 2022-11-04 13:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Catroot2.old 2022-11-04 13:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\AppLocker 2022-11-04 13:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\schemas 2022-11-04 13:31 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2022-11-04 13:31 - 2014-10-03 15:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2022-11-04 13:31 - 2013-11-07 15:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Absolute Software 2022-11-04 13:31 - 2013-11-07 15:13 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerDVD Create 2022-11-04 13:31 - 2013-11-07 15:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo 2022-11-04 13:31 - 2013-11-07 15:07 - 000000000 ___HD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo ThinkVantage Tools 2022-11-04 13:31 - 2013-11-07 15:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby 2022-11-04 13:31 - 2013-11-07 15:01 - 000000000 ___HD C:\WINDOWS\system32\WLANProfiles 2022-11-04 13:31 - 2013-11-07 15:01 - 000000000 ____D C:\Program Files\CONEXANT 2022-11-04 13:31 - 2013-11-07 14:57 - 000000000 ____D C:\Program Files\Intel 2022-11-04 13:31 - 2013-11-07 14:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel 2022-11-04 13:31 - 2013-02-11 19:28 - 000000000 ____D C:\WINDOWS\ShellNew 2022-11-04 13:31 - 2009-07-14 04:20 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy 2022-11-04 13:31 - 2009-07-14 04:20 - 000000000 ____D C:\WINDOWS\system32\MsDtc 2022-11-04 12:31 - 2022-07-03 07:43 - 011620232 _____ C:\WINDOWS\system32\rtp.db 2022-11-04 12:31 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2022-11-04 10:59 - 2020-11-03 18:30 - 000001890 _____ C:\WINDOWS\diagwrn.xml 2022-11-04 10:59 - 2020-11-03 18:30 - 000001890 _____ C:\WINDOWS\diagerr.xml 2022-11-04 10:59 - 2020-11-03 17:42 - 000000000 ____D C:\ESD 2022-11-04 10:21 - 2020-11-03 18:23 - 000000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat 2022-11-04 10:21 - 2020-09-27 06:33 - 000453656 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2022-11-04 10:20 - 2019-12-07 16:12 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2022-11-04 10:20 - 2019-12-07 16:12 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2022-11-04 10:20 - 2019-12-07 10:15 - 000206848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll 2022-11-04 10:20 - 2019-12-07 10:14 - 000230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll 2022-11-04 10:20 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2022-11-04 10:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2022-11-04 10:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2022-11-04 10:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources 2022-11-04 10:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2022-11-04 10:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup 2022-11-04 10:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation 2022-11-04 10:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2022-11-04 10:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2022-11-04 10:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\DDFs 2022-11-04 10:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences 2022-11-04 10:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning 2022-11-04 10:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2022-11-04 10:20 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2022-11-04 09:23 - 2020-11-03 18:46 - 000000000 __SHD C:\Users\zamlab\IntelGraphicsProfiles 2022-11-03 09:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2022-11-03 09:09 - 2014-10-03 21:02 - 000034752 _____ C:\WINDOWS\system32\Drivers\WPRO_41_2001.sys 2022-11-03 09:02 - 2013-11-07 14:59 - 000000000 ____D C:\Program Files (x86)\Realtek 2022-11-03 08:53 - 2013-11-07 15:00 - 000000000 ____D C:\ProgramData\Package Cache 2022-11-03 08:53 - 2013-11-07 14:57 - 000000000 ____D C:\ProgramData\Intel 2022-11-03 08:53 - 2013-11-07 14:56 - 000000000 ____D C:\Program Files (x86)\Intel 2022-11-03 08:43 - 2013-11-07 15:00 - 000000000 ____D C:\Program Files\Common Files\Intel 2022-11-03 08:32 - 2013-11-07 14:56 - 000000000 ____D C:\Intel 2022-11-03 08:00 - 2020-11-03 19:16 - 001388432 _____ C:\Users\Public\VOIP.dat 2022-11-01 17:46 - 2022-01-18 15:00 - 000001419 _____ C:\Users\zamlab\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Przeglądarka Opera.lnk 2022-10-31 15:38 - 2020-11-03 18:30 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo 2022-10-31 15:38 - 2014-10-03 15:05 - 000000000 ____D C:\Users\zamlab\AppData\Local\Lenovo 2022-10-31 15:38 - 2013-11-07 06:55 - 000000000 ____D C:\ProgramData\Lenovo 2022-10-31 15:37 - 2020-11-03 19:09 - 000002762 _____ C:\WINDOWS\system32\InstallUtil.InstallLog 2022-10-31 15:36 - 2013-11-07 14:59 - 000000000 ____D C:\Program Files (x86)\Lenovo 2022-10-31 15:35 - 2020-11-03 18:59 - 000000000 ____D C:\Users\zamlab\AppData\Local\PlaceholderTileLogoFolder 2022-10-31 15:35 - 2020-09-27 08:38 - 000000000 ____D C:\ProgramData\Packages 2022-10-31 15:35 - 2014-10-03 15:03 - 000000000 ____D C:\Users\zamlab\AppData\Local\Packages 2022-10-31 15:20 - 2020-11-03 18:30 - 000000000 ____D C:\WINDOWS\system32\Tasks\TVT 2022-10-31 15:05 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2022-10-31 14:54 - 2019-12-07 16:11 - 000000000 ____D C:\WINDOWS\OCR 2022-10-31 12:47 - 2020-11-03 20:43 - 000000000 ____D C:\Users\zamlab\AppData\Local\D3DSCache 2022-10-30 21:27 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2022-10-30 20:04 - 2020-09-27 08:36 - 000002459 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-10-27 07:32 - 2022-02-15 08:05 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2022-10-26 09:38 - 2020-11-03 18:30 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2022-10-19 09:48 - 2020-11-03 18:30 - 000003474 _____ C:\WINDOWS\system32\Tasks\Avira_Security_Update 2022-10-17 10:50 - 2022-07-03 07:42 - 000223848 _____ (Avira Operations GmbH) C:\WINDOWS\system32\Drivers\rtp_filesystem_filter.sys 2022-10-17 10:50 - 2022-07-03 07:42 - 000217552 _____ (Avira Operations GmbH) C:\WINDOWS\system32\Drivers\rtp_process_monitor.sys 2022-10-17 10:50 - 2022-07-03 07:42 - 000061376 _____ (Avira Operations GmbH) C:\WINDOWS\system32\Drivers\rtp_traverse.sys 2022-10-17 10:50 - 2022-07-03 07:42 - 000026624 _____ (Avira Operations GmbH) C:\WINDOWS\system32\Drivers\rtp_elam.sys 2022-10-17 10:50 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2022-10-12 11:04 - 2015-09-22 16:33 - 000000000 ____D C:\WINDOWS\system32\MRT 2022-10-12 11:01 - 2015-09-22 16:33 - 147398024 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2022-10-11 15:49 - 2020-09-27 08:36 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-10-11 15:49 - 2020-09-27 08:36 - 000003442 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore ==================== Pliki w katalogu głównym wybranych folderów ======== 2020-11-03 19:16 - 2022-11-03 08:00 - 001388432 _____ () C:\Users\Public\VOIP.dat 2014-10-03 15:04 - 2015-01-29 12:43 - 000002529 _____ () C:\Users\zamlab\AppData\Roaming\AbsoluteReminder.xml ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================