Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 06-10-2023 Uruchomiony przez 4.6.20 (administrator) LENOVO (LENOVO 81FV) (22-10-2023 12:34:17) Uruchomiony z C:\Users\4.6.20\Desktop\FRST64.exe Załadowane profile: 4.6.20 Platforma: Microsoft Windows 10 Home Wersja 22H2 19045.3448 (X64) Język: Polski (Polska) Domyślna przeglądarka: Opera Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\CCLibrary.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <4> (C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantage-(DeviceSettingsSystemAddin).exe (C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantage-(GenericMessagingAddin).exe (C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantage-(LenovoGamingSystemAddin).exe (C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantage-(VantageCoreAddin).exe (C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe ->) (OpenJS Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe (C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe (C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\CCLibrary.exe ->) (OpenJS Foundation -> Node.js) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\libs\node.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (C:\Program Files\Opera\opera.exe ->) (Opera Norway AS -> Opera Software) C:\Program Files\Opera\103.0.4928.34\opera_crashreporter.exe (cmd.exe ->) (Lenovo (Beijing) Limited -> Lenovo Group Limited) C:\Users\4.6.20\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSB.exe (DriverStore\FileRepository\cui_dch.inf_amd64_0d8dab4470c5524b\igfxCUIService.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_0d8dab4470c5524b\igfxEM.exe (explorer.exe ->) () [Brak podpisu cyfrowego] C:\Users\4.6.20\Desktop\S\MinimizeToTray 1.9\MinimizeToTray 1.9.Exe (explorer.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5185.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe (explorer.exe ->) (hxxp://www.emule-project.net) [Brak podpisu cyfrowego] C:\Program Files (x86)\eMule\emule.exe (explorer.exe ->) (Jessica Brown) [Brak podpisu cyfrowego] C:\Program Files (x86)\PopTrayU\PopTrayU.exe (explorer.exe ->) (Open Source Developer, Robin Krom -> Greenshot) C:\Program Files\Greenshot\Greenshot.exe (explorer.exe ->) (Signal Messenger, LLC -> Signal Messenger, LLC) C:\Users\4.6.20\AppData\Local\Programs\signal-desktop\Signal.exe <4> (explorer.exe ->) (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe <6> (explorer.exe ->) (www.gglite.com) [Brak podpisu cyfrowego] C:\Program Files (x86)\GG Lite\GG Lite.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe (Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (oobe\UserOOBEBroker.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\23.204.1001.0003\Microsoft.SharePoint.exe (Opera Norway AS -> Opera Software) C:\Program Files\Opera\opera.exe <29> (PWI, Inc. -> Privacyware/PWI, Inc.) C:\Program Files (x86)\Privacyware\Privatefirewall 7.0\PFGUI.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\afwServ.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe (services.exe ->) (CHENGDU YIWO Tech Development Co., Ltd. -> ) C:\Program Files (x86)\EaseUS\ENS\ensserver.exe (services.exe ->) (Dolby Laboratories, Inc. -> ) C:\Windows\System32\dolbyaposvc\DAX3API.exe <2> (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_7ecc5be6ca7b3b0d\esif_uf.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_0b214be229a13e84\jhi_service.exe (services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_0d8dab4470c5524b\igfxCUIService.exe (services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_a9a2dde7124f013f\OneApp.IGCC.WinService.exe (services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_7d90afac159f566c\IntelCpHDCPSvc.exe (services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_7d90afac159f566c\IntelCpHeciSvc.exe (services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_120314e52c04567c\RstMwService.exe (services.exe ->) (INTERNET PROJECT LLC -> Ellora Assets Corp.) C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe (services.exe ->) (Lagerkvist Teknisk Rådgivning i Borås HB -> Olof Lagerkvist) C:\Windows\System32\imdsksvc.exe (services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe (services.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2> (services.exe ->) (Microsoft Corporation) [Brak podpisu cyfrowego] C:\Program Files (x86)\Common Files\Microsoft Shared\VS7Debug\mdm.exe (services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Locator.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2> (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvlti.inf_amd64_cfec3e7de6520682\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (PWI, Inc. -> Privacyware/PWI, Inc.) C:\Program Files (x86)\Privacyware\Privatefirewall 7.0\pfsvc.exe (services.exe ->) (Qualcomm Atheros -> Qualcomm Technologies Inc.) C:\Windows\System32\drivers\QcomWlanSrvx64.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2> (services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe (svchost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5185.0_x64__8j3eq9eme6ctt\IGCC.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2307.4.0_x64__8wekyb3d8bbwe\CalculatorApp.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <6> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Softdeluxe) [Brak podpisu cyfrowego] C:\Program Files\Softdeluxe\Free Download Manager\helperservice.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [922616 2019-07-04] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-10] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\...\Run: [Greenshot] => C:\Program Files\Greenshot\Greenshot.exe [527792 2017-08-09] (Open Source Developer, Robin Krom -> Greenshot) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [255896 2023-10-04] (Avast Software s.r.o. -> AVAST Software) HKLM-x32\...\Run: [Privatefirewall] => C:\Program Files (x86)\Privacyware\Privatefirewall 7.0\PFGUI.exe [3048480 2013-12-17] (PWI, Inc. -> Privacyware/PWI, Inc.) HKLM-x32\...\Run: [TeamsMachineUninstallerLocalAppData] => C:\Users\4.6.20\AppData\Local\Microsoft\Teams\Update.exe [2453688 2021-01-26] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKLM-x32\...\Run: [QuickTime Task] => C:\WINDOWS\SysWOW64\qttask.exe [98304 2022-05-31] (Apple Computer, Inc.) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [ProductUpdater] => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [204272 2018-10-10] (INTERNET PROJECT LLC -> ) HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2023-09-28] (Adobe Inc. -> ) HKLM-x32\...\Run: [Opera Browser Assistant] => C:\Program Files\Opera\assistant\browser_assistant.exe [1752480 2023-10-06] (Opera Norway AS -> Opera Software) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Ograniczenia <==== UWAGA HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Ograniczenia <==== UWAGA HKU\S-1-5-21-1222897976-441945649-1625005035-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\4.6.20\AppData\Local\Microsoft\Teams\Update.exe [2453688 2021-01-26] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKU\S-1-5-21-1222897976-441945649-1625005035-1001\...\Run: [com.squirrel.WhatsApp.WhatsApp] => C:\Users\4.6.20\AppData\Local\WhatsApp\Update.exe [2254048 2022-11-01] (WhatsApp LLC -> ) HKU\S-1-5-21-1222897976-441945649-1625005035-1001\...\Run: [GmailNotifierPro] => C:\Program Files (x86)\Gmail Notifier Pro\GmailNotifierPro.exe [2882400 2022-06-15] (IntelliBreeze Software AB -> IntelliBreeze Software AB) HKU\S-1-5-21-1222897976-441945649-1625005035-1001\...\Run: [electron.app.BlueStacks Services] => C:\Users\4.6.20\AppData\Local\Programs\bluestacks-services\BlueStacksServices.exe [162219864 2023-05-02] (Bluestack Systems, Inc -> now.gg, Inc.) HKU\S-1-5-21-1222897976-441945649-1625005035-1001\...\Run: [MicrosoftEdgeAutoLaunch_F54B35F34C1E9C834551A5C5BFB83B59] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4187176 2023-10-20] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1222897976-441945649-1625005035-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [123166240 2023-10-17] (Skype Software Sarl -> Skype Technologies S.A.) HKU\S-1-5-21-1222897976-441945649-1625005035-1001\...\Run: [Opera Stable] => C:\Program Files\Opera\launcher.exe [2820000 2023-10-16] (Opera Norway AS -> Opera Software) HKU\S-1-5-21-1222897976-441945649-1625005035-1001\...\Run: [eMuleAutoStart] => C:\Program Files (x86)\eMule\emule.exe [5758976 2010-04-07] (hxxp://www.emule-project.net) [Brak podpisu cyfrowego] HKU\S-1-5-21-1222897976-441945649-1625005035-1001\...\MountPoints2: {2b3f4782-5a6b-11ec-a206-e86a64ad5381} - "F:\DPFMate.exe" HKU\S-1-5-21-1222897976-441945649-1625005035-1001\...\MountPoints2: {2b9d77fb-19be-11eb-9e58-f8a2d6f5a352} - "F:\HiSuiteDownLoader.exe" HKU\S-1-5-21-1222897976-441945649-1625005035-1001\...\MountPoints2: {5f53c826-b31c-11ec-a31e-e86a64ad5381} - "F:\DPFMate.exe" HKU\S-1-5-21-1222897976-441945649-1625005035-1004\...\Run: [MicrosoftEdgeAutoLaunch_118B855074FA79517D54946FF86A1A0D] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4187176 2023-10-20] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1222897976-441945649-1625005035-1004\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2588584 2023-10-21] (Microsoft Corporation -> Microsoft Corporation) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{73FA19D0-2D75-11D2-995D-00C04F98BBC9}] -> Startup: C:\Users\4.6.20\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\eM Client Pro.lnk [2020-06-05] ShortcutTarget: eM Client Pro.lnk -> C:\Program Files (x86)\eM Client\MailClient.exe (eM Client s.r.o.) [Brak podpisu cyfrowego] Startup: C:\Users\4.6.20\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GG Lite.lnk [2020-06-05] ShortcutTarget: GG Lite.lnk -> C:\Program Files (x86)\GG Lite\GG Lite.exe (www.gglite.com) [Brak podpisu cyfrowego] Startup: C:\Users\4.6.20\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Howard.lnk [2022-06-14] ShortcutTarget: Howard.lnk -> C:\Users\4.6.20\AppData\Local\Howard\Howard.exe (the sz development) [Brak podpisu cyfrowego] Startup: C:\Users\4.6.20\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MinimizeToTray 1.9.Exe — skrót .lnk [2020-06-08] ShortcutTarget: MinimizeToTray 1.9.Exe — skrót .lnk -> C:\Users\4.6.20\Desktop\S\MinimizeToTray 1.9\MinimizeToTray 1.9.Exe () [Brak podpisu cyfrowego] Startup: C:\Users\4.6.20\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PopTray.lnk [2020-06-05] ShortcutTarget: PopTray.lnk -> C:\Program Files (x86)\PopTray\PopTray.exe (Renier Crause) [Brak podpisu cyfrowego] Startup: C:\Users\4.6.20\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PopTrayU.lnk [2022-09-13] ShortcutTarget: PopTrayU.lnk -> C:\Program Files (x86)\PopTrayU\PopTrayU.exe (Jessica Brown) [Brak podpisu cyfrowego] Startup: C:\Users\4.6.20\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Signal 1.39.4.lnk [2021-01-13] ShortcutTarget: Signal 1.39.4.lnk -> C:\Users\4.6.20\AppData\Local\Programs\signal-desktop\Signal.exe (Signal Messenger, LLC -> Signal Messenger, LLC) BootExecute: autocheck autochk * SmartDefragBootTime.exe HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA HKLM\SOFTWARE\Policies\Google: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {3AEB563E-63F3-4C69-8224-E3646E53A8EE} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [5135256 2023-10-04] (Avast Software s.r.o. -> AVAST Software) Task: {59EA76C3-E9B9-4665-9C64-015F41A2998E} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2144664 2023-10-04] (Avast Software s.r.o. -> Avast Software) Task: {3676C8C5-8BD7-4F15-845E-29338D414416} - System32\Tasks\BlueStacksHelper_nxt => C:\Program Files\BlueStacks_nxt\BlueStacksHelper.exe [302968 2023-04-12] (Now.gg, INC -> BlueStack Systems, Inc.) Task: {089760E8-5291-4782-BB47-A39312E549CD} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-04-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {3F115067-5B70-46D8-AC79-0B14D22A7481} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703544 2023-04-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "d7a9014b-d5a3-422a-918b-1f462cda7994" --version "6.11.10455" --silent Task: {D75DD4AE-43F7-4281-A8C5-714439C89A05} - System32\Tasks\CCleanerSkipUAC - 4.6.20 => C:\Program Files\CCleaner\CCleaner.exe [34159416 2023-04-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {CCE160F0-F281-4658-984F-CEACAF637D98} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe [5311304 2023-09-13] (Microsoft Windows -> Microsoft Corporation) Task: {DB7C3F56-8196-4944-93EC-8836BA88EB33} - System32\Tasks\FreeDownloadManagerHelperService => C:\Program Files\Softdeluxe\Free Download Manager\helperservice.exe [129536 2023-05-19] (Softdeluxe) [Brak podpisu cyfrowego] Task: {6562881E-070F-461B-BCA5-0FB6483260BD} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [74952 2022-11-20] (Lenovo -> Lenovo Group Ltd.) Task: {B60AEAC3-B35C-4065-86C0-1AC95007FF26} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => C:\WINDOWS\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> START ImControllerService Task: {711E3FE1-1A89-4A83-9671-702D70B12662} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => C:\WINDOWS\System32\reg.exe [77312 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32 Task: {EA20CEC7-E6B2-4550-8D23-C50D6CD9FD69} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\59a5337f-1a7f-44db-9846-da44c912d0e5 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.) Task: {50598FDE-BF13-4CCC-8435-93D3EE278484} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\7471cc32-5cf1-4500-80b5-8d894a512cd9 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.) Task: {55489EE1-8A22-4C3B-B69E-842FEBE2FFD8} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\7c290ee4-b73f-40d5-9df6-d41e26d0d39d => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.) Task: {9BFE4561-045A-4080-AD2B-8E0FF6D83B76} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\db05613d-ef6f-413c-b02e-990e3b316943 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.) Task: {18E85534-2A5B-4BB6-A50F-22E49C231245} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-1222897976-441945649-1625005035-1001 => C:\Users\4.6.20\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe [89096 2023-04-10] (Lenovo (Beijing) Limited -> Lenovo Group Limited) Task: {7A0D4484-12EC-4276-9611-C0756F38D051} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => C:\WINDOWS\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> start LenovoVantageService Task: {CDC2BF0D-FD84-441C-97F0-8DE457AFEFFA} - System32\Tasks\Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo) Task: {C43EBFE7-D930-41D2-A252-B81BBD9E17B9} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo) Task: {4D805C4F-9872-4BAB-BEAE-1CA191A5BE2B} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo) Task: {266D4A34-F802-42F2-BB47-DECE5D972F13} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo) Task: {6CB40761-29D5-4B23-8BFB-C98963BA1F0C} - System32\Tasks\Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo) Task: {7C7A79E8-A505-4E8F-B25C-CE599C82149B} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo) Task: {7935901D-9FE6-4D10-BF28-CDFAA200C85F} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo) Task: {11790373-59B8-4362-8FB6-ED054575BB7B} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo) Task: {9675144E-1C34-4C98-A7D0-BA948DF7DBEB} - System32\Tasks\Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo) Task: {553DE4FC-CEB9-4090-921A-0B2ACBC76C10} - System32\Tasks\Lenovo\Vantage\Schedule\SmartPerformance.ExpireReminder => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo) Task: {37B6D661-C187-41E9-B313-68CE518898F9} - System32\Tasks\Lenovo\Vantage\Schedule\VantageCoreAddinWeekScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo) Task: {03F2E768-0E3F-4F6C-AB1C-992AE619E6C8} - System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => C:\Program Files (x86)\Lenovo\VantageService\3.6.15.0\ScheduleEventAction.exe VantageTelemetryAddinTask (Brak pliku) Task: {13736BCE-CDE1-4669-BA9B-CBD99DD07D97} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe /checkin (Brak pliku) Task: {C03E295E-C724-4845-A2CC-A9BB248ADA5C} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-15] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {9C149D2A-694C-4936-A5E2-E40C0F6025EC} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2023-01-27] (Nvidia Corporation -> NVIDIA Corporation) Task: {C252F217-4C40-4AE1-A2D5-C4A43371B0A5} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {7D22169F-F97A-47CF-A2D9-68E254354205} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {49837B81-8731-4845-A8BC-619CA99C2F2B} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {7DE73339-72CA-45E2-B9F8-37B8942F3995} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {B95537B6-623A-4481-A0A3-898743997795} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {106795BF-3536-41EB-BF78-FD48EF29086A} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {C0528D5C-2229-49F9-8BF9-BC623BE5DA2A} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {18C083D9-6A6F-4C86-AC4A-08D484B5DAF1} - System32\Tasks\Office 2019 Statique Activation Planificateur => C:\Users\4.6.20\Desktop\Microsoft Office 2019 Pro Plus\acto19\ActO19.cmd -renewalonly (Brak pliku) Task: {BDAD1836-C488-4AF7-B6EC-931EC97B0020} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130832 2023-10-21] (Microsoft Corporation -> Microsoft Corporation) Task: {9E88EAFD-DC37-4507-BC6F-CA97B2454409} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1222897976-441945649-1625005035-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130832 2023-10-21] (Microsoft Corporation -> Microsoft Corporation) Task: {8C749A98-AEDA-44E8-B615-8425E65D3760} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1222897976-441945649-1625005035-1003 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130832 2023-10-21] (Microsoft Corporation -> Microsoft Corporation) Task: {ADEC6394-2D60-418A-87D7-351650086506} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1222897976-441945649-1625005035-1004 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130832 2023-10-21] (Microsoft Corporation -> Microsoft Corporation) Task: {6ACC79E1-A959-4A42-848B-AFE39689E11F} - System32\Tasks\Opera scheduled assistant Autoupdate 1592287428 => C:\Program Files\Opera\launcher.exe [2820000 2023-10-16] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Program Files\Opera\assistant" $(Arg0) Task: {D4B54CA6-DC4E-4EDF-A5F4-01FFB4CB0E37} - System32\Tasks\Opera scheduled Autoupdate 1591337271 => C:\Program Files\Opera\launcher.exe [2820000 2023-10-16] (Opera Norway AS -> Opera Software) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{ceea3ce7-f827-40f9-8a08-0ab75159fd8b}: [DhcpNameServer] 192.168.0.1 Edge: ======= DownloadDir: C:\Users\4.6.20\Desktop Edge HomeButtonPage: HKU\S-1-5-21-1222897976-441945649-1625005035-1001 -> hxxp://www.google.pl/ Edge Extension: (Brak nazwy) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => ścieżki nie znaleziono Edge Extension: (Brak nazwy) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => ścieżki nie znaleziono Edge Extension: (Brak nazwy) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => ścieżki nie znaleziono Edge Extension: (Brak nazwy) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => ścieżki nie znaleziono Edge Profile: C:\Users\4.6.20\AppData\Local\Microsoft\Edge\User Data\Default [2023-10-12] Edge Extension: (Google Docs Offline) - C:\Users\4.6.20\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-01] Edge Extension: (Edge relevant text changes) - C:\Users\4.6.20\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-10-01] FireFox: ======== FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [Brak pliku] FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN) Opera: ======= OPR DefaultProfile: Opera Stable OPR Profile: C:\Users\4.6.20\AppData\Roaming\Opera Software\Opera Stable [2023-10-22] OPR DownloadDir: C:\Users\4.6.20\Desktop OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding} OPR Extension: (Bloker reklam AdGuard) - C:\Users\4.6.20\AppData\Roaming\Opera Software\Opera Stable\Extensions\bopfaehpakahokaelnomggbohfbimcia [2023-10-11] OPR Extension: (Rich Hints Agent) - C:\Users\4.6.20\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2023-10-16] OPR Extension: (Opera Wallet) - C:\Users\4.6.20\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2023-09-21] OPR Extension: (Aria) - C:\Users\4.6.20\AppData\Roaming\Opera Software\Opera Stable\Extensions\igpdmclhhlcpoindmhkhillbfhdgoegm [2023-10-18] OPR Extension: (Amazon Assistant Promotion) - C:\Users\4.6.20\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-08-13] OPR Extension: (Bookmarks by the Side) - C:\Users\4.6.20\AppData\Roaming\Opera Software\Opera Stable\Extensions\nfmcmkgigcijhkhpogobfhkdokdecjmb [2020-06-05] OPR Extension: (Skyload - Pobieranie muzyki i wideo) - C:\Users\4.6.20\AppData\Roaming\Opera Software\Opera Stable\Extensions\nodcmkfbncnhlbbohoalamehlohaidjo [2023-07-05] OPR Extension: (Cashback Assistant) - C:\Users\4.6.20\AppData\Roaming\Opera Software\Opera Stable\Extensions\ompjkhnkeoicimmaehlcmgmpghobbjoj [2023-10-16] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [9090968 2023-10-04] (Avast Software s.r.o. -> AVAST Software) R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [776088 2023-10-04] (Avast Software s.r.o. -> AVAST Software) R2 avast! Firewall; C:\Program Files\Avast Software\Avast\afwServ.exe [2304920 2023-10-04] (Avast Software s.r.o. -> AVAST Software) R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [796568 2023-10-04] (Avast Software s.r.o. -> AVAST Software) R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2023-10-04] (Avast Software s.r.o. -> AVAST Software) S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1063736 2023-04-26] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) R2 DolbyDAXAPI; C:\WINDOWS\system32\dolbyaposvc\DAX3API.exe [598384 2019-01-17] (Dolby Laboratories, Inc. -> ) S3 dosvc; C:\WINDOWS\System32\svchost.exe [55320 2022-07-13] (Microsoft Windows Publisher -> Microsoft Corporation) <==== UWAGA (Brak ServiceDLL) S3 dosvc; C:\WINDOWS\SysWOW64\svchost.exe [46504 2022-07-13] (Microsoft Windows Publisher -> Microsoft Corporation) <==== UWAGA (Brak ServiceDLL) S3 dosvc_bkp; C:\WINDOWS\system32\dosvc.dll [1536000 2023-08-28] (Microsoft Windows -> Microsoft Corporation) R2 EaseUS UPDATE SERVICE; C:\Program Files (x86)\EaseUS\ENS\ensserver.exe [32448 2023-05-12] (CHENGDU YIWO Tech Development Co., Ltd. -> ) R3 EPMVssEaseusProvider; C:\WINDOWS\system32\dllhost.exe /Processid:{77BB0A13-0CF1-4516-B114-8353BA237EDD} [21312 2020-10-15] (Microsoft Windows -> Microsoft Corporation) S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.204.1001.0003\FileSyncHelper.exe [3504552 2023-10-21] (Microsoft Corporation -> Microsoft Corporation) R2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [360016 2019-05-19] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) S3 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [73200 2018-10-10] (INTERNET PROJECT LLC -> Freemake) R2 FreemakeVideoCapture; C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe [15856 2018-10-10] (INTERNET PROJECT LLC -> Ellora Assets Corp.) R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.) R2 ImDskSvc; C:\WINDOWS\system32\imdsksvc.exe [34320 2021-10-30] (Lagerkvist Teknisk Rådgivning i Borås HB -> Olof Lagerkvist) R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe [34176 2023-07-14] (Lenovo -> Lenovo) S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes Corporation -> Malwarebytes) R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7Debug\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [Brak podpisu cyfrowego] S3 OfficeSvcManagerAddons; C:\WINDOWS\system32\dllhost.exe /Processid:{2CA2E202-932F-4BA2-8771-195BB86398F5} [21312 2020-10-15] (Microsoft Windows -> Microsoft Corporation) S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.204.1001.0003\OneDriveUpdaterService.exe [3841976 2023-10-21] (Microsoft Corporation -> Microsoft Corporation) R2 PFNet; C:\Program Files (x86)\Privacyware\Privatefirewall 7.0\pfsvc.exe [374600 2013-12-17] (PWI, Inc. -> Privacyware/PWI, Inc.) R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-05-22] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) S2 UsoSvc; C:\WINDOWS\system32\svchost.exe [55320 2022-07-13] (Microsoft Windows Publisher -> Microsoft Corporation) <==== UWAGA (Brak ServiceDLL) S2 UsoSvc; C:\WINDOWS\SysWOW64\svchost.exe [46504 2022-07-13] (Microsoft Windows Publisher -> Microsoft Corporation) <==== UWAGA (Brak ServiceDLL) S2 UsoSvc_bkp; C:\WINDOWS\system32\usosvc.dll [570368 2023-08-28] (Microsoft Windows -> Microsoft Corporation) S3 WaaSMedicSvc_bkp; C:\WINDOWS\System32\WaaSMedicSvc.dll [427520 2023-07-10] (Microsoft Windows -> Microsoft Corporation) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2005.5-0\NisSrv.exe [2484256 2020-06-05] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2005.5-0\MsMpEng.exe [103168 2020-06-05] (Microsoft Windows Publisher -> Microsoft Corporation) S2 wuauserv; C:\WINDOWS\system32\svchost.exe [55320 2022-07-13] (Microsoft Windows Publisher -> Microsoft Corporation) <==== UWAGA (Brak ServiceDLL) S2 wuauserv; C:\WINDOWS\SysWOW64\svchost.exe [46504 2022-07-13] (Microsoft Windows Publisher -> Microsoft Corporation) <==== UWAGA (Brak ServiceDLL) S2 wuauserv_bkp; C:\WINDOWS\system32\wuaueng.dll [3447296 2023-06-06] (Microsoft Windows -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvlti.inf_amd64_cfec3e7de6520682\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvlti.inf_amd64_cfec3e7de6520682\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [240176 2023-10-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [392984 2023-10-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [297992 2023-10-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [96064 2023-10-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [25576 2023-10-04] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software) R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [39760 2023-10-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [275168 2023-10-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [559696 2023-10-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [105248 2023-10-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [80416 2023-10-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [950696 2023-10-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [708048 2023-10-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [213192 2023-10-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [319560 2023-10-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software) R2 AWEAlloc; C:\WINDOWS\system32\DRIVERS\awealloc.sys [36304 2021-10-30] (Lagerkvist Teknisk Rådgivning i Borås HB -> Olof Lagerkvist) R2 BlueStacksDrv_nxt; C:\Program Files\BlueStacks_nxt\BstkDrv_nxt.sys [322304 2023-04-12] (Bluestack Systems, Inc -> Bluestack System Inc.) R2 DevIoDrv; C:\WINDOWS\system32\DRIVERS\deviodrv.sys [38376 2021-10-30] (Lagerkvist Teknisk Rådgivning i Borås HB -> Olof Lagerkvist) R3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 epmdkdrv; C:\WINDOWS\system32\epmdkdrv.sys [27728 2022-12-29] (Microsoft Windows Hardware Compatibility Publisher -> ) R0 EPMVolFl; C:\WINDOWS\System32\drivers\EPMVolFl.sys [30136 2022-12-29] (CHENGDU YIWO Tech Development Co., Ltd. -> Windows (R) Codename Longhorn DDK provider) R0 EUDCPEPM; C:\WINDOWS\System32\drivers\EUDCPEPM.sys [76344 2022-12-29] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd) R1 EUEDKEPM; C:\WINDOWS\system32\drivers\EUEDKEPM.sys [24656 2022-12-29] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd) R3 FBNetFilter; C:\WINDOWS\System32\drivers\FBNetFlt.sys [64832 2021-08-26] (LENOVO (UNITED STATES) INC. -> Lenovo Group Ltd.) R2 ImDisk; C:\WINDOWS\system32\DRIVERS\imdisk.sys [63976 2021-10-30] (Lagerkvist Teknisk Rådgivning i Borås HB -> Olof Lagerkvist) R2 npf; C:\WINDOWS\System32\drivers\npf.sys [35344 2011-02-11] (CACE Technologies, Inc. -> CACE Technologies, Inc.) R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation) R1 pwipf6; C:\WINDOWS\system32\DRIVERS\pwipf6.sys [133152 2013-09-29] (PWI, Inc. -> Privacyware/PWI, Inc.) R0 SmartDefragDriver; C:\WINDOWS\System32\Drivers\SmartDefragDriver.sys [30744 2017-03-09] (IObit Information Technology -> IObit) R3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45960 2020-06-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [401120 2020-06-05] (Microsoft Windows -> Microsoft Corporation) S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [151184 2016-07-15] (NGO -> MBB) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [64224 2020-06-05] (Microsoft Windows -> Microsoft Corporation) R2 WiseFs; C:\Windows\WiseFs64.sys [66128 2020-06-05] (Beijing Lang Xingda Network Technology Co., Ltd -> WiseCleaner.com) S3 EuGdiDrv; \SystemRoot\system32\EuGdiDrv.sys [X] S3 WinRing0_1_2_0; \??\C:\Users\4.6.20\AppData\Local\Temp\tmpAFA8.tmp [X] <==== UWAGA ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-10-22 12:34 - 2023-10-22 12:34 - 000042779 _____ C:\Users\4.6.20\Desktop\FRST.txt 2023-10-22 12:33 - 2023-10-22 12:34 - 000000000 ____D C:\FRST 2023-10-22 12:14 - 2023-10-22 12:33 - 002383360 _____ (Farbar) C:\Users\4.6.20\Desktop\FRST64.exe 2023-10-22 11:51 - 2023-10-22 11:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo 2023-10-22 11:51 - 2023-10-22 11:51 - 000000000 ____D C:\Program Files\CrystalDiskInfo 2023-10-21 09:01 - 2023-10-21 09:01 - 000000000 ____D C:\Users\4.6.20\Desktop\Wykup Obligacji 2023-10-21 08:59 - 2023-10-21 09:02 - 000000000 ____D C:\Users\4.6.20\Desktop\C 2023-10-21 00:38 - 2023-10-21 00:38 - 000000000 ____D C:\Users\4.6.20\Desktop\Details Kalpana 2023-10-18 17:23 - 2023-10-18 17:23 - 000001511 _____ C:\Users\4.6.20\Desktop\Greenwich — skrót .lnk 2023-10-18 09:28 - 2023-10-18 09:28 - 000000000 ____D C:\Users\4.6.20\Desktop\Wiatrak-Rachel-Wtorek 2023-10-16 19:59 - 2023-10-16 19:59 - 000001371 _____ C:\Users\4.6.20\Desktop\Stratford — skrót .lnk 2023-10-16 16:13 - 2023-10-16 16:13 - 000000000 ____D C:\Users\4.6.20\Desktop\Bakery Coupon 2023-10-12 21:53 - 2023-10-12 21:53 - 000000000 ____D C:\ProgramData\Piriform 2023-10-12 19:35 - 2023-10-12 19:35 - 000000000 ____D C:\WINDOWS\LastGood 2023-10-12 19:23 - 2023-10-06 01:19 - 001488008 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2023-10-12 19:23 - 2023-10-06 01:19 - 001227400 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2023-10-12 19:23 - 2023-10-06 01:19 - 000849088 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2023-10-12 19:23 - 2023-10-06 01:19 - 000849088 _____ C:\WINDOWS\system32\vulkaninfo.exe 2023-10-12 19:23 - 2023-10-06 01:19 - 000713912 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2023-10-12 19:23 - 2023-10-06 01:19 - 000713912 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2023-10-12 19:23 - 2023-10-06 01:19 - 000653504 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2023-10-12 19:23 - 2023-10-06 01:19 - 000653504 _____ C:\WINDOWS\system32\vulkan-1.dll 2023-10-12 19:23 - 2023-10-06 01:19 - 000637112 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2023-10-12 19:23 - 2023-10-06 01:19 - 000637112 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2023-10-12 19:23 - 2023-10-06 01:14 - 000938608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll 2023-10-12 19:23 - 2023-10-06 01:14 - 000668792 _____ C:\WINDOWS\system32\nvofapi64.dll 2023-10-12 19:23 - 2023-10-06 01:14 - 000503816 _____ C:\WINDOWS\SysWOW64\nvofapi.dll 2023-10-12 19:23 - 2023-10-06 01:13 - 002168456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2023-10-12 19:23 - 2023-10-06 01:13 - 001621624 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2023-10-12 19:23 - 2023-10-06 01:13 - 001538080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2023-10-12 19:23 - 2023-10-06 01:13 - 001195016 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2023-10-12 19:23 - 2023-10-06 01:13 - 000992368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll 2023-10-12 19:23 - 2023-10-06 01:13 - 000778888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe 2023-10-12 19:23 - 2023-10-06 01:13 - 000768648 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2023-10-12 19:23 - 2023-10-06 01:11 - 000459912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe 2023-10-12 19:23 - 2023-10-06 01:10 - 014520864 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2023-10-12 19:23 - 2023-10-06 01:10 - 012066424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2023-10-12 19:23 - 2023-10-06 01:10 - 006190624 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2023-10-12 19:23 - 2023-10-06 01:10 - 005855752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll 2023-10-12 19:23 - 2023-10-06 01:10 - 005550088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll 2023-10-12 19:23 - 2023-10-06 01:10 - 003482744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2023-10-12 19:23 - 2023-10-06 01:10 - 000853000 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe 2023-10-12 19:23 - 2023-10-06 01:08 - 006738664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll 2023-10-12 19:23 - 2023-10-05 00:56 - 000108232 _____ C:\WINDOWS\system32\nvinfo.pb 2023-10-12 17:51 - 2023-10-12 17:52 - 000001447 _____ C:\Users\4.6.20\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk 2023-10-12 17:51 - 2023-10-12 17:51 - 000000000 ____D C:\Users\4.6.20\AppData\Local\ESET 2023-10-12 17:37 - 2023-10-12 18:43 - 000000000 ____D C:\Users\eight\AppData\Local\Lenovo 2023-10-12 17:37 - 2023-10-12 17:37 - 000000000 ____D C:\Users\eight\AppData\Local\DBG 2023-10-10 07:53 - 2023-10-10 07:53 - 000000000 ____D C:\Users\4.6.20\Desktop\Photoshop & 2023-10-07 07:20 - 2023-10-07 07:20 - 000002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Premium Security.lnk 2023-10-07 07:20 - 2023-10-04 21:04 - 000313240 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe 2023-10-04 23:47 - 2023-10-04 23:47 - 000000000 ____D C:\Users\eight\AppData\Local\CEF 2023-10-04 23:37 - 2023-10-12 18:43 - 000000000 ____D C:\Users\eight\AppData\Roaming\Microsoft\Spelling 2023-10-04 23:36 - 2023-10-12 18:42 - 000000000 ____D C:\Users\eight\AppData\Local\Comms 2023-10-04 23:36 - 2023-10-04 23:36 - 000000000 ____D C:\Users\eight\AppData\Local\Privatefirewall 2023-10-04 23:35 - 2023-10-21 00:36 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1222897976-441945649-1625005035-1004 2023-10-04 23:35 - 2023-10-04 23:35 - 000000000 ____D C:\Users\eight\AppData\Roaming\Avast Software 2023-10-04 23:34 - 2023-10-12 18:43 - 000000000 ____D C:\Users\eight\AppData\Roaming\Greenshot 2023-10-04 23:34 - 2023-10-04 23:34 - 000000000 ____D C:\Users\eight\AppData\Local\Greenshot 2023-10-04 23:33 - 2023-10-04 23:38 - 000000000 ____D C:\Users\eight\AppData\Local\D3DSCache 2023-10-04 23:33 - 2023-10-04 23:37 - 000000000 ____D C:\Users\eight\AppData\Local\Publishers 2023-10-04 23:33 - 2023-10-04 23:33 - 000002390 _____ C:\Users\eight\Desktop\Microsoft Edge.lnk 2023-10-04 23:33 - 2023-10-04 23:33 - 000000000 ___RD C:\Users\eight\3D Objects 2023-10-04 23:33 - 2023-10-04 23:33 - 000000000 ____D C:\Users\eight\AppData\Roaming\Adobe 2023-10-04 23:33 - 2023-10-04 23:33 - 000000000 ____D C:\Users\eight\AppData\LocalLow\Intel 2023-10-04 23:32 - 2023-10-12 18:40 - 000000000 __SHD C:\Users\eight\IntelGraphicsProfiles 2023-10-04 23:32 - 2023-10-12 17:36 - 000000000 ____D C:\Users\eight\AppData\Local\NVIDIA Corporation 2023-10-04 23:32 - 2023-10-04 23:38 - 000000000 ____D C:\Users\eight\AppData\Local\Packages 2023-10-04 23:32 - 2023-10-04 23:36 - 000000000 ____D C:\Users\eight\AppData\Local\ConnectedDevicesPlatform 2023-10-04 23:32 - 2023-10-04 23:33 - 000000000 ____D C:\Users\eight\AppData\Local\NVIDIA 2023-10-04 23:32 - 2023-10-04 23:33 - 000000000 ____D C:\Users\eight\AppData\Local\Intel 2023-10-04 23:32 - 2023-10-04 23:32 - 000000020 ___SH C:\Users\eight\ntuser.ini 2023-10-04 23:32 - 2023-10-04 23:32 - 000000000 _SHDL C:\Users\eight\Ustawienia lokalne 2023-10-04 23:32 - 2023-10-04 23:32 - 000000000 _SHDL C:\Users\eight\Szablony 2023-10-04 23:32 - 2023-10-04 23:32 - 000000000 _SHDL C:\Users\eight\Moje dokumenty 2023-10-04 23:32 - 2023-10-04 23:32 - 000000000 _SHDL C:\Users\eight\Menu Start 2023-10-04 23:32 - 2023-10-04 23:32 - 000000000 _SHDL C:\Users\eight\Documents\Moje wideo 2023-10-04 23:32 - 2023-10-04 23:32 - 000000000 _SHDL C:\Users\eight\Documents\Moje obrazy 2023-10-04 23:32 - 2023-10-04 23:32 - 000000000 _SHDL C:\Users\eight\Documents\Moja muzyka 2023-10-04 23:32 - 2023-10-04 23:32 - 000000000 _SHDL C:\Users\eight\Dane aplikacji 2023-10-04 23:32 - 2023-10-04 23:32 - 000000000 _SHDL C:\Users\eight\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2023-10-04 23:32 - 2023-10-04 23:32 - 000000000 _SHDL C:\Users\eight\AppData\Local\Tymczasowe pliki internetowe 2023-10-04 23:32 - 2023-10-04 23:32 - 000000000 _SHDL C:\Users\eight\AppData\Local\Historia 2023-10-04 23:32 - 2023-10-04 23:32 - 000000000 _SHDL C:\Users\eight\AppData\Local\Dane aplikacji 2023-10-04 23:32 - 2023-10-04 23:32 - 000000000 ___SD C:\Users\eight\AppData\Roaming\Microsoft\SystemCertificates 2023-10-04 23:32 - 2023-10-04 23:32 - 000000000 ___SD C:\Users\eight\AppData\Roaming\Microsoft\Protect 2023-10-04 23:32 - 2023-10-04 23:32 - 000000000 ___SD C:\Users\eight\AppData\Roaming\Microsoft\Crypto 2023-10-04 23:32 - 2023-10-04 23:32 - 000000000 ___SD C:\Users\eight\AppData\Roaming\Microsoft\Credentials 2023-10-04 23:32 - 2023-10-04 23:32 - 000000000 ____D C:\Users\eight\AppData\Roaming\Microsoft\Vault 2023-10-04 23:32 - 2023-10-04 23:32 - 000000000 ____D C:\Users\eight\AppData\Local\VirtualStore 2023-10-04 23:32 - 2023-10-04 23:32 - 000000000 ____D C:\Users\eight\ansel 2023-10-04 23:31 - 2023-10-12 18:47 - 000000000 ____D C:\Users\eight 2023-10-04 23:31 - 2023-10-12 18:43 - 000000000 ___RD C:\Users\eight\OneDrive 2023-10-04 23:31 - 2023-10-04 23:33 - 000000000 ____D C:\Users\eight\AppData\Roaming\Microsoft\Windows 2023-10-04 23:31 - 2020-06-14 12:37 - 000000000 ____D C:\Users\eight\AppData\Roaming\Microsoft\Network 2023-10-04 23:20 - 2023-10-04 23:21 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1222897976-441945649-1625005035-1003 2023-10-04 21:06 - 2023-10-04 21:06 - 000000000 ____D C:\Users\4.6.20\AppData\Local\Avast Software 2023-10-04 20:53 - 2023-10-07 07:20 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update 2023-10-04 20:53 - 2023-10-04 20:53 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software 2023-10-04 20:53 - 2023-10-04 20:53 - 000000000 ____D C:\Users\4.6.20\AppData\Roaming\Avast Software 2023-10-04 20:52 - 2023-10-04 20:52 - 000000000 ____D C:\Program Files\Common Files\Avast Software 2023-10-04 20:52 - 2023-10-04 20:52 - 000000000 ____D C:\Program Files\Avast Software 2023-10-04 20:51 - 2023-10-22 08:09 - 000000000 ____D C:\ProgramData\Avast Software 2023-10-04 11:04 - 2023-10-04 11:04 - 000000000 ____D C:\WINDOWS\LastGood.Tmp 2023-09-28 19:36 - 2023-09-28 19:36 - 000001393 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2024.lnk 2023-09-28 19:33 - 2023-09-28 19:34 - 000000000 ____D C:\Program Files (x86)\Adobe PhotoShop 2023-09-27 20:31 - 2021-10-30 17:04 - 000128016 _____ (Olof Lagerkvist) C:\WINDOWS\SysWOW64\imdisk.cpl 2023-09-27 20:31 - 2021-10-30 17:04 - 000066048 _____ (Olof Lagerkvist) C:\WINDOWS\SysWOW64\imdisk.exe 2023-09-27 20:31 - 2021-10-30 07:56 - 000063976 _____ (Olof Lagerkvist) C:\WINDOWS\system32\Drivers\imdisk.sys 2023-09-27 20:31 - 2021-10-30 07:55 - 000140296 _____ (Olof Lagerkvist) C:\WINDOWS\system32\imdisk.cpl 2023-09-27 20:31 - 2021-10-30 07:55 - 000038376 _____ (Olof Lagerkvist) C:\WINDOWS\system32\Drivers\deviodrv.sys 2023-09-27 20:31 - 2021-10-30 07:55 - 000034320 _____ (Olof Lagerkvist) C:\WINDOWS\system32\imdsksvc.exe 2023-09-27 20:31 - 2021-10-30 07:54 - 000066048 _____ (Olof Lagerkvist) C:\WINDOWS\system32\imdisk.exe 2023-09-27 20:31 - 2021-10-30 07:54 - 000036304 _____ (Olof Lagerkvist) C:\WINDOWS\system32\Drivers\awealloc.sys 2023-09-27 20:31 - 2016-08-23 22:57 - 000001547 _____ C:\WINDOWS\system32\uninstall_imdisk.cmd 2023-09-27 14:56 - 2023-09-27 14:56 - 000000000 ____D C:\Program Files\Google 2023-09-27 14:50 - 2023-09-27 14:50 - 000000000 ____D C:\Users\4.6.20\Desktop\Palec 2023-09-27 10:28 - 2023-09-27 10:28 - 000000000 ____D C:\Users\4.6.20\AppData\Local\UXP 2023-09-24 19:47 - 2023-09-24 19:47 - 000000000 ____D C:\Users\4.6.20\AppData\Roaming\com.adobe.dunamis ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-10-22 12:33 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Registration 2023-10-22 12:25 - 2020-06-05 07:38 - 000000000 ____D C:\ProgramData\NVIDIA 2023-10-22 12:21 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-10-22 12:14 - 2023-04-24 20:09 - 000002107 _____ C:\Users\4.6.20\Desktop\TokFm x2.lnk 2023-10-22 12:12 - 2020-06-05 15:29 - 000000000 ____D C:\Program Files\CCleaner 2023-10-22 11:53 - 2020-06-05 13:56 - 000000000 ___RD C:\Users\4.6.20\Desktop\S 2023-10-22 11:47 - 2020-06-14 12:34 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2023-10-22 08:55 - 2021-12-14 17:17 - 000000000 ___RD C:\Users\4.6.20\Desktop\E 2023-10-22 08:27 - 2020-08-07 16:46 - 000002480 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-10-22 08:27 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2023-10-22 08:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2023-10-22 08:10 - 2021-01-13 11:19 - 000000000 ____D C:\Users\4.6.20\AppData\Roaming\Signal 2023-10-22 08:09 - 2020-06-05 16:20 - 000000000 ____D C:\Users\4.6.20\AppData\Roaming\Microsoft\Skype for Desktop 2023-10-22 08:09 - 2020-06-05 07:22 - 000000000 __SHD C:\Users\4.6.20\IntelGraphicsProfiles 2023-10-22 08:08 - 2020-06-14 12:40 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2023-10-22 08:08 - 2020-06-05 07:39 - 000000134 _____ C:\WINDOWS\system32\regtest.txt 2023-10-22 08:08 - 2020-06-05 07:22 - 000000000 ____D C:\Intel 2023-10-22 08:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState 2023-10-21 23:56 - 2019-12-07 10:03 - 001310720 _____ C:\WINDOWS\system32\config\BBI 2023-10-21 23:25 - 2021-04-03 11:27 - 000001566 _____ C:\Users\4.6.20\Desktop\Bx2&S.txt 2023-10-21 18:55 - 2020-06-05 16:57 - 000000000 ____D C:\Users\4.6.20\AppData\Roaming\Microsoft\Word 2023-10-21 17:07 - 2020-06-05 17:28 - 000000000 ____D C:\Users\4.6.20\AppData\Roaming\avidemux 2023-10-21 15:06 - 2020-06-05 07:07 - 000000000 ____D C:\Program Files\Opera 2023-10-21 10:24 - 2021-01-13 13:42 - 000000000 ____D C:\Users\4.6.20\AppData\Roaming\Mp3tag 2023-10-21 08:01 - 2021-12-16 09:11 - 000000000 ____D C:\Program Files\Microsoft OneDrive 2023-10-21 08:01 - 2020-06-05 15:53 - 000000000 ____D C:\Users\4.6.20\AppData\Local\Greenshot 2023-10-21 00:36 - 2021-12-13 20:48 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2023-10-21 00:36 - 2021-12-13 20:48 - 000002168 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2023-10-21 00:36 - 2021-12-13 16:50 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1222897976-441945649-1625005035-1001 2023-10-19 21:55 - 2023-09-12 15:46 - 000000000 ___RD C:\Users\4.6.20\Desktop\Translator 2023-10-19 17:49 - 2020-06-14 12:44 - 002001394 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2023-10-19 17:49 - 2020-06-05 16:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2023-10-19 17:49 - 2019-12-07 16:08 - 000858500 _____ C:\WINDOWS\system32\perfh015.dat 2023-10-19 17:49 - 2019-12-07 16:08 - 000182458 _____ C:\WINDOWS\system32\perfc015.dat 2023-10-19 17:49 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF 2023-10-18 21:02 - 2020-08-06 16:15 - 000000000 ____D C:\Users\4.6.20\AppData\Local\CrashDumps 2023-10-18 08:48 - 2020-06-05 15:39 - 000000000 ____D C:\Users\4.6.20\AppData\Roaming\eM Client 2023-10-18 08:00 - 2020-06-14 12:40 - 000003982 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1591337271 2023-10-18 08:00 - 2020-06-05 07:07 - 000001105 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Przeglądarka Opera.lnk 2023-10-17 13:39 - 2020-06-04 21:21 - 000000000 ____D C:\Users\4.6.20\AppData\Local\D3DSCache 2023-10-16 17:32 - 2023-04-24 19:26 - 000000000 ____D C:\ProgramData\BlueStacks_nxt 2023-10-16 16:34 - 2023-04-24 19:26 - 000000000 ____D C:\ProgramData\boost_interprocess 2023-10-16 16:34 - 2020-06-05 08:23 - 000000000 ____D C:\Users\4.6.20\AppData\Local\NVIDIA 2023-10-16 09:59 - 2023-07-05 22:11 - 000000000 ___RD C:\Users\4.6.20\Desktop\Foto 2023-10-13 08:52 - 2020-06-14 12:12 - 000000000 ____D C:\Users\4.6.20 2023-10-12 19:35 - 2020-07-09 17:47 - 000000000 ____D C:\Users\4.6.20\AppData\Roaming\Microsoft\Office 2023-10-12 19:35 - 2020-06-05 17:08 - 000000000 ____D C:\Users\4.6.20\AppData\Roaming\Microsoft\Excel 2023-10-09 08:31 - 2020-06-05 15:26 - 000000000 ____D C:\Users\4.6.20\AppData\Local\ChomikBox 2023-10-09 08:30 - 2020-06-05 15:26 - 000000000 ____D C:\Users\4.6.20\.gstreamer-0.10 2023-10-08 12:28 - 2023-07-13 06:44 - 000000000 ____D C:\ProgramData\ProductData 2023-10-07 07:20 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2023-10-06 22:26 - 2020-06-16 07:03 - 000004152 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1592287428 2023-10-06 01:08 - 2020-06-05 11:08 - 007859832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll 2023-10-04 23:37 - 2020-06-05 16:46 - 000000000 ___HD C:\OneDriveTemp 2023-10-04 23:37 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog 2023-10-04 23:33 - 2020-06-04 19:58 - 000000000 __RHD C:\Users\Public\AccountPictures 2023-10-04 23:32 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2023-10-04 23:28 - 2020-06-04 20:12 - 000000000 ____D C:\ProgramData\Packages 2023-10-04 20:32 - 2020-06-04 20:27 - 000000000 ____D C:\Users\4.6.20\AppData\Roaming\Microsoft\MMC 2023-10-04 11:04 - 2020-06-05 07:38 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation 2023-09-28 19:37 - 2020-06-05 15:10 - 000000000 ____D C:\Users\4.6.20\AppData\Local\Adobe 2023-09-28 19:36 - 2020-06-05 15:12 - 000000000 ____D C:\Program Files\Common Files\Adobe 2023-09-28 19:36 - 2020-06-04 19:58 - 000000000 ____D C:\Users\4.6.20\AppData\Roaming\Adobe 2023-09-28 19:35 - 2020-06-05 15:11 - 000000000 ____D C:\Program Files\Adobe 2023-09-28 19:34 - 2023-08-06 12:39 - 000000000 ____D C:\Program Files (x86)\Adobe 2023-09-28 19:34 - 2020-06-05 15:10 - 000000000 ____D C:\ProgramData\Adobe 2023-09-28 08:29 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF 2023-09-25 21:01 - 2020-09-20 14:36 - 000000000 ____D C:\Users\4.6.20\Documents\Adobe 2023-09-25 20:56 - 2023-08-13 18:45 - 000000000 ____D C:\Users\4.6.20\AppData\LocalLow\Adobe ==================== Pliki w katalogu głównym wybranych folderów ======== 2023-09-13 09:20 - 2023-09-13 09:20 - 000000088 _____ () C:\Users\4.6.20\AppData\Roaming\epm_user.ini 2020-06-04 21:09 - 2020-06-04 21:10 - 000007602 _____ () C:\Users\4.6.20\AppData\Local\resmon.resmoncfg ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================