Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x86) Wersja: 02-12-2019 Uruchomiony przez kasia (administrator) KIANO_SLIMNOTE (Kiano SlimNote 14.2) (03-12-2019 14:01:27) Uruchomiony z C:\Users\kasia\AppData\Local\Temp\scoped_dir7316_1869696113 Załadowane profile: kasia (Dostępne profile: kasia) Platform: Microsoft Windows 10 Home Wersja 1803 17134.1069 (X86) Język: Polski (Polska) Domyślna przeglądarka: Edge Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Huawei Technologies Co.,Ltd. -> ) C:\Program Files\DatacardService\HWDeviceService.exe (Huawei Technologies Co.,Ltd. -> ) C:\ProgramData\Internet Manager\OnlineUpdate\ouc.exe (Huawei Technologies Co.,Ltd. -> Huawei Technologies Co., Ltd.) C:\Program Files\DatacardService\DCSHelper.exe (IDSA Production signing key -> Intel) C:\Program Files\Intel\Driver and Support Assistant\DSAService.exe (IDSA Production signing key -> Intel) C:\Program Files\Intel\Driver and Support Assistant\DSATray.exe (IDSA Production signing key -> Intel) C:\Program Files\Intel\Driver and Support Assistant\DSAUpdateService.exe (Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe (Intel(R) Software -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe (Intel(R) Software -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Users\kasia\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19071.17920.0_x86__8wekyb3d8bbwe\Microsoft.Photos.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19101.10711.0_x86__8wekyb3d8bbwe\Video.UI.exe (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe (Microsoft Windows Hardware Compatibility Publisher -> Alcor) C:\Windows\WebCam\S6000\S6000Mnt.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1910.4-0\MsMpEng.exe (Opera Software AS -> Opera Software) C:\Users\kasia\AppData\Local\Programs\Opera\65.0.3467.48\opera.exe (Opera Software AS -> Opera Software) C:\Users\kasia\AppData\Local\Programs\Opera\65.0.3467.48\opera.exe (Opera Software AS -> Opera Software) C:\Users\kasia\AppData\Local\Programs\Opera\65.0.3467.48\opera.exe (Opera Software AS -> Opera Software) C:\Users\kasia\AppData\Local\Programs\Opera\65.0.3467.48\opera.exe (Opera Software AS -> Opera Software) C:\Users\kasia\AppData\Local\Programs\Opera\65.0.3467.48\opera.exe (Opera Software AS -> Opera Software) C:\Users\kasia\AppData\Local\Programs\Opera\65.0.3467.48\opera.exe (Opera Software AS -> Opera Software) C:\Users\kasia\AppData\Local\Programs\Opera\65.0.3467.48\opera.exe (Opera Software AS -> Opera Software) C:\Users\kasia\AppData\Local\Programs\Opera\65.0.3467.48\opera.exe (Opera Software AS -> Opera Software) C:\Users\kasia\AppData\Local\Programs\Opera\65.0.3467.48\opera.exe (Opera Software AS -> Opera Software) C:\Users\kasia\AppData\Local\Programs\Opera\65.0.3467.48\opera.exe (Opera Software AS -> Opera Software) C:\Users\kasia\AppData\Local\Programs\Opera\65.0.3467.48\opera.exe (Opera Software AS -> Opera Software) C:\Users\kasia\AppData\Local\Programs\Opera\65.0.3467.48\opera.exe (Opera Software AS -> Opera Software) C:\Users\kasia\AppData\Local\Programs\Opera\65.0.3467.48\opera.exe (Opera Software AS -> Opera Software) C:\Users\kasia\AppData\Local\Programs\Opera\65.0.3467.48\opera_crashreporter.exe (Realtek Semiconductor Corp -> ) C:\Program Files\REALTEK\REALTEK Bluetooth\BTDevMgr.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [486816 2018-04-11] (Microsoft Windows -> Microsoft Corporation) HKLM\...\Run: [Intel Driver & Support Assistant] => C:\Program Files\Intel\Driver and Support Assistant\DSATray.exe [139624 2019-11-14] (IDSA Production signing key -> Intel) HKLM\...\Run: [S6000Mnt] => C:\WINDOWS\WebCam\S6000\S6000Mnt.exe [507904 2014-09-01] (Microsoft Windows Hardware Compatibility Publisher -> Alcor) HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [516608 2018-04-11] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [516608 2018-04-11] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-21-3661806415-3354029717-332980536-1002\...\Run: [Discord] => C:\Users\kasia\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.) HKLM\Software\...\AppCompatFlags\InstalledSDB\{49cd2afd-8679-48a5-90ab-e7044bee2465}: [DatabasePath] -> C:\WINDOWS\AppPatch\CustomSDB\{49cd2afd-8679-48a5-90ab-e7044bee2465}.sdb [2018-04-04] ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0C2A33A7-89FF-4AC5-9064-5F6C2AC10AB6} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [20681800 2019-11-21] (Microsoft Corporation -> Microsoft Corporation) Task: {0F276509-D3B4-4EC9-A833-71EB9858ED40} - System32\Tasks\Opera scheduled Autoupdate 1570467129 => C:\Users\kasia\AppData\Local\Programs\Opera\launcher.exe [1346584 2019-11-20] (Opera Software AS -> Opera Software) Task: {13E901F6-FB51-4FBC-910E-C170C0DB07D7} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [114000 2019-11-27] (Microsoft Corporation -> Microsoft Corporation) Task: {1CF79676-F200-481D-B18A-D44FF94568AB} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_32_0_0_293_pepper.exe [1453112 2019-12-02] (Adobe Inc. -> Adobe) Task: {3AE63DE0-64B4-4E76-8770-8701C30B233F} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1423248 2019-11-27] (Microsoft Corporation -> Microsoft Corporation) Task: {55424FE0-3403-4F00-AD5B-8C9E3EC77CB8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [405896 2019-11-02] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {66855A72-8942-43DD-9454-9808204954DB} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1423248 2019-11-27] (Microsoft Corporation -> Microsoft Corporation) Task: {8FEB8526-52DB-4933-81A7-DD812D7CCDAD} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [20681800 2019-11-21] (Microsoft Corporation -> Microsoft Corporation) Task: {CDEA7DCC-3386-4D9F-BF33-B460C0AF913B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [405896 2019-11-02] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {D516F80A-92B9-4A81-BD6D-57B41490E453} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-12-02] (Adobe Inc. -> Adobe) Task: {DB84E8F4-8EB2-4FB1-B448-10BC97016F89} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [405896 2019-11-02] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {E8687E99-E11A-46BE-A379-12AC99D8BB3B} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [114000 2019-11-27] (Microsoft Corporation -> Microsoft Corporation) Task: {FDCB77EE-D284-4F23-8ACC-65B2C22503D0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [405896 2019-11-02] (Microsoft Windows Publisher -> Microsoft Corporation) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{0f3343c1-2d63-4a2f-9b6a-c9ae0adff046}: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{9c6a4118-e1f5-4ceb-bf70-b9e55fe41ebc}: [NameServer] 213.158.199.1 213.158.199.5 Internet Explorer: ================== HKU\S-1-5-21-3661806415-3354029717-332980536-1002\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.kiano.pl/ Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-11-02] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-11-02] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-11-02] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-11-02] (Microsoft Corporation -> Microsoft Corporation) FireFox: ======== FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-10-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin HKU\S-1-5-21-3661806415-3354029717-332980536-1002: @zoom.us/ZoomVideoPlugin -> C:\Users\kasia\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2018-02-20] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 BTDevManager; C:\Program Files\REALTEK\REALTEK Bluetooth\BTDevMgr.exe [147160 2015-08-03] (Realtek Semiconductor Corp -> ) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [7423048 2019-11-21] (Microsoft Corporation -> Microsoft Corporation) S3 cphs; C:\WINDOWS\system32\IntelCpHeciSvc.exe [292832 2016-12-21] (Intel(R) pGFX -> Intel Corporation) R2 DSAService; C:\Program Files\Intel\Driver and Support Assistant\DSAService.exe [37736 2019-11-14] (IDSA Production signing key -> Intel) R3 DSAUpdateService; C:\Program Files\Intel\Driver and Support Assistant\DSAUpdateService.exe [142696 2019-11-14] (IDSA Production signing key -> Intel) R2 esifsvc; C:\WINDOWS\System32\Intel\DPTF\esif_uf.exe [1259184 2015-08-31] (Intel(R) Software -> Intel Corporation) R2 HWDeviceService.exe; C:\Program Files\DatacardService\HWDeviceService.exe [276112 2016-03-24] (Huawei Technologies Co.,Ltd. -> ) R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [310752 2016-12-21] (Intel(R) pGFX -> Intel Corporation) S2 Internet Manager. RunOuc; C:\Program Files\T-Mobile\InternetManager_H\UpdateDog\ouc.exe [682072 2015-02-24] (Huawei Technologies Co.,Ltd. -> ) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\NisSrv.exe [2258536 2019-11-02] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MsMpEng.exe [85032 2019-11-02] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 camera; C:\WINDOWS\system32\DRIVERS\iacamera32.sys [764416 2016-03-10] (Intel(R) Intel_ICG -> Intel(R) Corporation) R3 dptf_acpi; C:\WINDOWS\System32\drivers\dptf_acpi.sys [51712 2015-08-31] (Intel(R) Software -> Intel Corporation) R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [48640 2015-08-31] (Intel(R) Software -> Intel Corporation) R3 esif_lf; C:\WINDOWS\System32\drivers\esif_lf.sys [228864 2015-08-31] (Intel(R) Software -> Intel Corporation) R3 HidEventFilter; C:\WINDOWS\System32\drivers\HidEventFilter.sys [20992 2015-07-10] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) S3 HID_PCI; C:\WINDOWS\System32\drivers\HID_PCI.sys [42296 2015-11-11] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel) R3 iaisp; C:\WINDOWS\System32\drivers\iaisp32.sys [34304 2016-03-10] (Intel(R) Intel_ICG -> Intel(R) Corporation) R3 iaspie; C:\WINDOWS\System32\drivers\iaspie.sys [50176 2015-07-10] (Microsoft Windows Hardware Compatibility Publisher -> Intel(R) Corporation) R3 iauarte; C:\WINDOWS\System32\drivers\iauarte.sys [89088 2015-07-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel(R) Corporation) R3 igfxLP; C:\WINDOWS\system32\DRIVERS\igdkmd32lp.sys [6666208 2016-12-21] (Intel(R) pGFX -> Intel Corporation) R3 IntelBatteryManagement; C:\WINDOWS\System32\drivers\IntelBatteryManagement.sys [88568 2015-12-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) R3 IntelSST; C:\WINDOWS\system32\drivers\isstrtc.sys [634872 2016-02-03] (Microsoft Windows Hardware Compatibility Publisher -> ) S3 ISH; C:\WINDOWS\System32\drivers\ISH.sys [120120 2015-11-11] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel) S3 ISH_BusDriver; C:\WINDOWS\System32\drivers\ISH_BusDriver.sys [64824 2015-11-11] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel) R0 MBI; C:\WINDOWS\System32\drivers\MBI.sys [26592 2015-07-10] (Intel(R) CherryTrail Windows -> Intel(R) Corporation) R3 PMIC; C:\WINDOWS\System32\drivers\PMIC.sys [84480 2015-07-10] (Microsoft Windows Hardware Compatibility Publisher -> Intel(R) Corporation) R3 rtii2sac; C:\WINDOWS\system32\DRIVERS\rtii2sac.sys [555728 2016-10-14] (WDKTestCert flove,130958729131105350 -> Realtek Semiconductor Corp.) R3 RtkUart; C:\WINDOWS\System32\drivers\RtkUart.sys [691632 2018-04-12] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation) R3 RtlWlans; C:\WINDOWS\System32\drivers\rtwlans.sys [6628256 2018-08-22] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation ) R3 S6000KNT; C:\WINDOWS\System32\Drivers\S6000KNT.sys [808192 2014-10-06] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) R3 TXEI; C:\WINDOWS\System32\drivers\TXEI.sys [131896 2015-07-02] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) S3 UrsSynopsys; C:\WINDOWS\System32\drivers\urssynopsys.sys [21920 2018-04-11] (Microsoft Windows -> Microsoft Corporation) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [38280 2019-11-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [275680 2019-11-02] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [38624 2019-11-02] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) =================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-12-03 14:00 - 2019-12-03 14:02 - 000000000 ____D C:\FRST 2019-12-03 14:00 - 2019-12-03 14:00 - 001991680 _____ (Farbar) C:\Users\kasia\Desktop\FRST.exe 2019-12-02 20:10 - 2019-12-02 20:12 - 000004656 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player PPAPI Notifier 2019-12-02 20:10 - 2019-12-02 20:12 - 000004480 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player Updater 2019-12-02 20:10 - 2019-12-02 20:12 - 000000000 ___DC C:\Users\kasia\AppData\Local\Adobe 2019-12-02 20:09 - 2019-12-02 20:09 - 001207336 _____ (Adobe Inc) C:\Users\kasia\Desktop\flashplayer32pp_fa_install.exe 2019-12-02 13:32 - 2019-12-02 13:32 - 000001920 _____ C:\Users\Public\Desktop\Demolidores.lnk 2019-12-02 13:32 - 2019-12-02 13:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Demolidores 2019-12-02 13:32 - 2019-12-02 13:32 - 000000000 ____D C:\Program Files\Demolidores 2019-12-02 13:30 - 2019-12-02 13:31 - 001313072 _____ () C:\Users\kasia\Desktop\setupdem.exe 2019-12-01 14:32 - 2019-12-01 14:32 - 000000000 ____D C:\Users\kasia\Downloads\Gunzodus1220 2019-12-01 14:31 - 2019-12-01 14:32 - 104847858 _____ C:\Users\kasia\Downloads\Gunzodus1220.zip 2019-12-01 12:02 - 2019-12-01 12:14 - 000000000 ____D C:\WINDOWS\Panther 2019-11-30 19:16 - 2019-11-30 19:16 - 000000000 ____D C:\Users\kasia\Downloads\TypowyMt2_01 2019-11-29 20:57 - 2019-11-29 20:57 - 000000000 ____D C:\ProgramData\TEMP 2019-11-29 20:56 - 2019-11-29 20:56 - 000000000 ____D C:\Users\kasia\Downloads\Rexia.PL 2019-11-29 20:45 - 2019-11-29 20:45 - 000000074 _____ C:\Users\kasia\Downloads\Rexia.pl_konto_5194088.txt 2019-11-27 18:48 - 2019-11-27 18:48 - 000000000 ____D C:\Users\kasia\Downloads\Evolunia 2019-11-27 00:35 - 2019-11-30 18:48 - 000000000 ____D C:\Program Files\Mediummt2 2019-11-26 22:05 - 2019-12-01 14:25 - 000000000 ___DC C:\Users\kasia\AppData\Roaming\Tibia 2019-11-26 11:28 - 2019-11-26 11:28 - 000000000 ___DC C:\Users\kasia\AppData\Roaming\Macromedia 2019-11-26 11:18 - 2019-11-26 11:18 - 000000000 ____D C:\WINDOWS\LastGood.Tmp 2019-11-26 11:06 - 2019-11-26 11:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip 2019-11-26 11:06 - 2019-11-26 11:06 - 000000000 ____D C:\Program Files\7-Zip 2019-11-26 11:05 - 2019-11-26 11:06 - 001185968 ____C (Igor Pavlov) C:\Users\kasia\Desktop\7z1900.exe 2019-11-26 10:00 - 2019-11-26 10:00 - 000000000 ___DC C:\Users\kasia\AppData\Local\cloud 2019-11-26 09:58 - 2019-11-26 10:03 - 000000000 ___DC C:\Users\kasia\AppData\Roaming\DriverPack Cloud 2019-11-26 09:52 - 2019-11-26 09:52 - 000000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin 2019-11-26 09:48 - 2019-11-26 09:48 - 000000000 ____D C:\Users\kasia\.cache 2019-11-26 09:45 - 2019-11-26 09:54 - 000000000 ___DC C:\Users\kasia\AppData\Roaming\DRPSu 2019-11-26 09:09 - 2019-12-01 04:51 - 000000000 ___DC C:\Users\kasia\AppData\Local\D3DSCache 2019-11-26 08:48 - 2019-11-27 01:52 - 000000000 ____D C:\ProgramData\Package Cache 2019-11-26 08:48 - 2019-11-26 08:49 - 000001435 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver & Support Assistant.lnk 2019-11-26 08:48 - 2019-11-26 08:48 - 000000000 ____D C:\ProgramData\Intel 2019-11-26 08:47 - 2019-11-26 08:47 - 002399504 ____C (Intel) C:\Users\kasia\Desktop\Intel-Driver-and-Support-Assistant-Installer.exe 2019-11-26 08:43 - 2019-11-26 08:43 - 000001390 ____C C:\Users\kasia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Przeglądarka Opera.lnk 2019-11-26 08:38 - 2019-11-26 08:57 - 000000000 ____D C:\WINDOWS\UpdateAssistant 2019-11-15 09:26 - 2018-08-22 07:18 - 006628256 _____ (Realtek Semiconductor Corporation ) C:\WINDOWS\system32\Drivers\rtwlans.sys 2019-11-15 09:26 - 2018-04-26 19:01 - 000040263 _____ C:\WINDOWS\system32\Drivers\rtldata.txt 2019-11-15 09:24 - 2014-10-06 15:29 - 000808192 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\S6000KNT.sys 2019-11-15 09:24 - 2014-10-06 14:19 - 000004086 _____ C:\WINDOWS\system32\AmUCam.ini 2019-11-15 09:24 - 2014-08-21 14:42 - 000029696 _____ (Alcor Micro, Corp.) C:\WINDOWS\system32\S6000DIF.dll 2019-11-15 09:06 - 2016-12-21 22:39 - 000242168 _____ C:\WINDOWS\system32\igfxCPL.cpl 2019-11-15 09:06 - 2016-12-21 14:06 - 000082032 _____ C:\WINDOWS\system32\iglhxs32lp.vp 2019-11-15 09:04 - 2016-12-21 22:41 - 000696312 _____ (Intel Corporation) C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll 2019-11-15 09:04 - 2016-12-21 22:41 - 000095224 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD32.dll 2019-11-15 09:04 - 2016-12-21 22:40 - 000327672 _____ (Intel Corporation) C:\WINDOWS\system32\igfxOSP.dll 2019-11-15 09:04 - 2016-12-21 22:40 - 000309744 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL32.dll 2019-11-15 09:04 - 2016-12-21 22:40 - 000178672 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v4568.dll 2019-11-15 09:04 - 2016-12-21 22:40 - 000102904 _____ ( ) C:\WINDOWS\system32\igfxSDKLibv2_0.dll 2019-11-15 09:04 - 2016-12-21 22:40 - 000092152 _____ ( ) C:\WINDOWS\system32\igfxSDKLib.dll 2019-11-15 09:04 - 2016-12-21 22:40 - 000013816 _____ ( ) C:\WINDOWS\system32\igfxLHMLibv2_0.dll 2019-11-15 09:04 - 2016-12-21 22:40 - 000013808 _____ ( ) C:\WINDOWS\system32\igfxLHMLib.dll 2019-11-15 09:04 - 2016-12-21 22:39 - 001169912 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit32.dll 2019-11-15 09:04 - 2016-12-21 22:39 - 000207352 _____ (Intel Corporation) C:\WINDOWS\system32\igfxDTCM.dll 2019-11-15 09:04 - 2016-12-21 22:39 - 000089072 _____ C:\WINDOWS\system32\igfxCUIServicePS.dll 2019-11-15 09:04 - 2016-12-21 22:39 - 000086512 _____ ( ) C:\WINDOWS\system32\igfxDHLibv2_0.dll 2019-11-15 09:04 - 2016-12-21 22:39 - 000075768 _____ ( ) C:\WINDOWS\system32\igfxDHLib.dll 2019-11-15 09:04 - 2016-12-21 22:39 - 000020472 _____ ( ) C:\WINDOWS\system32\igfxDILibv2_0.dll 2019-11-15 09:04 - 2016-12-21 22:39 - 000020464 _____ ( ) C:\WINDOWS\system32\igfxDILib.dll 2019-11-15 09:04 - 2016-12-21 22:39 - 000018928 _____ ( ) C:\WINDOWS\system32\igfxEMLibv2_0.dll 2019-11-15 09:04 - 2016-12-21 22:39 - 000018928 _____ ( ) C:\WINDOWS\system32\igfxEMLib.dll 2019-11-15 09:04 - 2016-12-21 22:38 - 001789744 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip32.dll 2019-11-15 09:04 - 2016-12-21 22:38 - 000194864 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp32.dll 2019-11-15 09:04 - 2016-12-21 22:38 - 000150176 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt32.dll 2019-11-15 09:04 - 2016-12-21 22:38 - 000150176 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt32.dll 2019-11-15 09:04 - 2016-12-21 22:38 - 000047928 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll 2019-11-15 09:03 - 2016-12-21 22:39 - 004357112 _____ (Intel Corporation) C:\WINDOWS\system32\igdrcl32.dll 2019-11-15 09:03 - 2016-12-21 22:39 - 003962872 _____ (Intel Corporation) C:\WINDOWS\system32\igdmcl32.dll 2019-11-15 09:03 - 2016-12-21 22:39 - 000216568 _____ (Intel Corporation) C:\WINDOWS\system32\igdfcl32.dll 2019-11-15 09:03 - 2016-12-21 22:38 - 001833928 _____ (Intel Corporation) C:\WINDOWS\system32\igdmd32.dll 2019-11-15 09:02 - 2016-12-21 22:38 - 004194536 _____ (Intel Corporation) C:\WINDOWS\system32\igd12umd32.dll 2019-11-15 09:02 - 2016-12-21 22:38 - 000379896 _____ (Intel Corporation) C:\WINDOWS\system32\igdbcl32.dll 2019-11-15 09:02 - 2016-12-21 22:38 - 000171528 _____ (Intel Corporation) C:\WINDOWS\system32\igdde32.dll 2019-11-15 09:02 - 2016-12-21 22:38 - 000164848 _____ (Intel Corporation) C:\WINDOWS\system32\igdail32.dll 2019-11-15 09:02 - 2016-12-21 22:37 - 000285848 _____ (Intel Corporation) C:\WINDOWS\system32\igd10idpp32.dll 2019-11-15 09:01 - 2016-12-21 22:40 - 000861664 _____ C:\WINDOWS\system32\igfxSDK.exe 2019-11-15 09:01 - 2016-12-21 22:40 - 000348128 _____ (Intel Corporation) C:\WINDOWS\system32\IntelCpHDCPSvc.exe 2019-11-15 09:01 - 2016-12-21 22:40 - 000292832 _____ (Intel Corporation) C:\WINDOWS\system32\IntelCpHeciSvc.exe 2019-11-15 09:01 - 2016-12-21 22:40 - 000190944 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe 2019-11-15 09:01 - 2016-12-21 22:38 - 010320888 _____ (Intel Corporation) C:\WINDOWS\system32\ig8icd32.dll 2019-11-15 09:01 - 2016-12-21 22:38 - 008477688 _____ (Intel Corporation) C:\WINDOWS\system32\GfxResources.dll 2019-11-15 09:01 - 2016-12-21 22:38 - 000959968 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv4_0.exe 2019-11-15 09:01 - 2016-12-21 22:38 - 000956384 _____ (Intel Corporation) C:\WINDOWS\system32\Gfxv2_0.exe 2019-11-15 09:01 - 2016-12-21 22:38 - 000413152 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIEx.exe 2019-11-15 09:01 - 2016-12-21 22:38 - 000232920 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyApp.exe 2019-11-15 09:01 - 2016-12-21 22:38 - 000224224 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyAppv2_0.exe 2019-11-15 09:01 - 2016-12-21 22:37 - 019852792 _____ (Intel Corporation) C:\WINDOWS\system32\common_clang32.dll 2019-11-15 09:01 - 2016-12-21 22:37 - 013358608 _____ (Intel Corporation) C:\WINDOWS\system32\igc32.dll 2019-11-15 09:01 - 2016-12-21 14:06 - 005799386 _____ C:\WINDOWS\system32\igdclbif.bin 2019-11-15 09:01 - 2016-12-21 14:06 - 000703802 _____ C:\WINDOWS\system32\DisplayAudiox86.cab 2019-11-10 07:43 - 2016-02-03 21:44 - 000634872 _____ C:\WINDOWS\system32\Drivers\isstrtc.sys 2019-11-10 07:43 - 2016-02-03 21:44 - 000157256 _____ (Intel(R) Corporation) C:\WINDOWS\system32\IsstProxyApo.dll 2019-11-10 07:43 - 2016-02-03 21:43 - 000524800 _____ (Intel(R) Corporation) C:\WINDOWS\system32\IsstPropPage.dll 2019-11-10 07:43 - 2016-01-12 04:21 - 000949956 _____ C:\WINDOWS\system32\Drivers\realtek_fw_sst.bin ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-12-03 14:00 - 2018-04-11 21:31 - 000000000 ____D C:\WINDOWS\INF 2019-12-03 13:58 - 2018-04-11 21:36 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2019-12-03 13:53 - 2018-07-21 01:41 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2019-12-03 08:23 - 2018-04-11 21:36 - 000000000 ___HD C:\Program Files\WindowsApps 2019-12-03 08:23 - 2018-04-11 21:36 - 000000000 ____D C:\WINDOWS\AppReadiness 2019-12-03 08:22 - 2018-07-21 02:18 - 000760500 _____ C:\WINDOWS\system32\perfh019.dat 2019-12-03 08:22 - 2018-07-21 02:18 - 000151344 _____ C:\WINDOWS\system32\perfc019.dat 2019-12-03 08:22 - 2018-07-21 01:55 - 002673638 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2019-12-03 08:22 - 2018-04-12 06:04 - 000785012 _____ C:\WINDOWS\system32\perfh015.dat 2019-12-03 08:22 - 2018-04-12 06:04 - 000152122 _____ C:\WINDOWS\system32\perfc015.dat 2019-12-03 08:17 - 2019-11-02 09:13 - 000000000 ___DC C:\Users\kasia\AppData\Roaming\Discord 2019-12-03 08:16 - 2018-07-21 01:59 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2019-12-03 08:16 - 2018-02-13 22:18 - 000000000 __SHD C:\Users\kasia\IntelGraphicsProfiles 2019-12-03 08:16 - 2017-06-15 15:36 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2019-12-03 08:15 - 2018-04-11 13:45 - 001310720 _____ C:\WINDOWS\system32\config\BBI 2019-12-02 20:11 - 2018-04-11 21:36 - 000000000 ____D C:\WINDOWS\system32\Macromed 2019-11-27 18:41 - 2019-10-07 17:52 - 000001400 ____C C:\Users\kasia\Desktop\Przeglądarka Opera.lnk 2019-11-27 16:49 - 2017-04-20 18:12 - 000000000 ____D C:\Program Files\Microsoft Office 2019-11-27 16:45 - 2018-07-21 01:59 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3661806415-3354029717-332980536-1002 2019-11-27 16:45 - 2018-07-21 01:44 - 000002414 ____C C:\Users\kasia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2019-11-27 16:45 - 2018-02-13 22:22 - 000000000 ___RD C:\Users\kasia\OneDrive 2019-11-27 00:06 - 2018-04-11 21:36 - 000000000 ____D C:\WINDOWS\system32\NDF 2019-11-26 17:03 - 2018-02-15 07:41 - 000000000 ___DC C:\Users\kasia\AppData\Local\Google 2019-11-26 17:03 - 2018-02-15 07:41 - 000000000 ____D C:\Program Files\Google 2019-11-26 14:26 - 2019-03-19 09:40 - 000000000 ___HD C:\$WINDOWS.~BT 2019-11-26 13:58 - 2018-02-15 20:48 - 000000000 ____D C:\WINDOWS\system32\MRT 2019-11-26 13:53 - 2018-02-15 20:48 - 125283176 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2019-11-26 10:39 - 2018-04-11 21:36 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2019-11-26 10:29 - 2018-02-16 07:23 - 000000000 ___DC C:\Users\kasia\AppData\Local\ElevatedDiagnostics 2019-11-26 09:53 - 2018-04-11 21:36 - 000000000 ____D C:\WINDOWS\System 2019-11-26 09:53 - 2017-04-20 18:11 - 000000000 ____D C:\Program Files\Intel 2019-11-26 09:52 - 2017-04-20 18:56 - 000000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat 2019-11-26 09:48 - 2018-07-21 01:44 - 000000000 ____D C:\Users\kasia 2019-11-26 08:44 - 2019-10-07 17:52 - 000004242 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1570467129 2019-11-26 08:41 - 2018-04-11 21:36 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2019-11-26 08:37 - 2018-02-14 20:14 - 000613944 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe ==================== Pliki w katalogu głównym wybranych folderów ======== 2019-10-10 10:07 - 2019-10-10 10:07 - 000000047 ____C () C:\Users\kasia\AppData\Roaming\.crystalinst ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================