Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 06.06.2018 01 Uruchomiony przez MIla (administrator) MILA (06-06-2018 22:43:47) Uruchomiony z C:\Users\MIla\Downloads Załadowane profile: MIla (Dostępne profile: MIla) Platform: Windows 8.1 Pro (Update) (X64) Język: Polski (Polska) Internet Explorer Wersja 11 (Domyślna przeglądarka: Chrome) Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe (Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe (Paragon Software) C:\Program Files (x86)\Paragon Software\HFS+ for Windows\Paragon HFS for Windows.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe (Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe (Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe () C:\Program Files (x86)\Paragon Software\HFS+ for Windows\apmwinsrv.exe () C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe (DTS, Inc) C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe (Garmin Ltd. or its subsidiaries) C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe (McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler64.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\saUI.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Microsoft Corporation) C:\Windows\System32\StikyNot.exe () C:\Program Files\MinerGate\minergate.exe (Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe (Akamai Technologies, Inc.) C:\Users\MIla\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc.) C:\Users\MIla\AppData\Local\Akamai\netsession_win.exe (Garmin Ltd. or its subsidiaries) C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe (Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe (GIGABYTE Technology Co.,Ltd.) C:\Program Files (x86)\GIGABYTE\AORUS GRAPHICS ENGINE\AORUS.exe (Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\AcWebBrowser.exe (Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\AcWebBrowser.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe (Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\AcWebBrowser.exe () C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe (Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe (GIGABYTE Technology Co.,Ltd.) C:\Program Files (x86)\GIGABYTE\AORUS GRAPHICS ENGINE\Led\GvLedService.exe (Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\CCLibrary.exe (Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\libs\node.exe (Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Rejestr (filtrowane) =========================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [291568 2018-05-21] (AVG Technologies CZ, s.r.o.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8483032 2018-01-09] (Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_DTS] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1393880 2018-01-09] (Realtek Semiconductor) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [316392 2018-05-11] (Adobe Systems, Incorporated) HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2409424 2018-04-24] (Adobe Systems Incorporated) HKLM-x32\...\Run: [Autodesk Desktop App] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [709416 2018-03-10] (Autodesk, Inc.) HKU\S-1-5-21-3663613490-1567447372-3400514427-1001\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [479744 2014-10-29] (Microsoft Corporation) HKU\S-1-5-21-3663613490-1567447372-3400514427-1001\...\Run: [MinerGateGui] => C:\Program Files\MinerGate\minergate.exe [19579904 2017-12-07] () HKU\S-1-5-21-3663613490-1567447372-3400514427-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3200800 2018-06-01] (Valve Corporation) HKU\S-1-5-21-3663613490-1567447372-3400514427-1001\...\Run: [AdobeBridge] => [X] HKU\S-1-5-21-3663613490-1567447372-3400514427-1001\...\Run: [Akamai NetSession Interface] => C:\Users\MIla\AppData\Local\Akamai\netsession_win.exe [4490200 2017-09-08] (Akamai Technologies, Inc.) HKU\S-1-5-21-3663613490-1567447372-3400514427-1001\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [1465768 2018-04-25] (Garmin Ltd. or its subsidiaries) HKU\S-1-5-21-3663613490-1567447372-3400514427-1001\...\Run: [GoogleChromeAutoLaunch_22F2A401144CAD0C8534691346493813] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1586008 2018-05-15] (Google Inc.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2018-01-09] ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.) Startup: C:\Users\MIla\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GIGABYTE AORUS GRAPHICS ENGINE.lnk [2018-01-11] ShortcutTarget: GIGABYTE AORUS GRAPHICS ENGINE.lnk -> C:\Program Files (x86)\GIGABYTE\AORUS GRAPHICS ENGINE\autorun.exe () GroupPolicy: Ograniczenia ? <==== UWAGA ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 8.8.8.8 8.8.4.4 Tcpip\..\Interfaces\{B674A3AB-C188-44D6-B67B-797873C4F7AB}: [DhcpNameServer] 8.8.8.8 8.8.4.4 Internet Explorer: ================== HKU\S-1-5-21-3663613490-1567447372-3400514427-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pl-pl/?ocid=iehp BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2018-05-29] (McAfee, Inc.) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2018-05-29] (McAfee, Inc.) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2018-05-29] (McAfee, Inc.) Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2018-05-29] (McAfee, Inc.) FireFox: ======== FF DefaultProfile: k9erppsw.default FF ProfilePath: C:\Users\MIla\AppData\Roaming\Mozilla\Firefox\Profiles\k9erppsw.default [2018-04-16] FF Homepage: Mozilla\Firefox\Profiles\k9erppsw.default -> www.google.pl FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi FF Extension: (McAfee® WebAdvisor) - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi [2018-05-15] FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2018-04-24] (Adobe Systems) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-01-04] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-01-04] (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-21] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-21] (Google Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2018-04-24] (Adobe Systems) Chrome: ======= CHR HomePage: Default -> hxxps://www.google.pl/ CHR StartupUrls: Default -> "hxxps://www.google.pl/webhp?sourceid=chrome-instant&rlz=1C1ASUC_enPL614PL614&ion=1&espv=2&ie=UTF-8","hxxp://graphictwister.com/","hxxps://analytics.google.com/analytics/web/?hl=pl&pli=1#realtime/rt-overview/a57580854w91333518p95036958/" CHR Profile: C:\Users\MIla\AppData\Local\Google\Chrome\User Data\Default [2018-06-06] CHR Extension: (Prezentacje) - C:\Users\MIla\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-01-10] CHR Extension: (Dokumenty) - C:\Users\MIla\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-01-10] CHR Extension: (Dysk Google) - C:\Users\MIla\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-01-10] CHR Extension: (YouTube) - C:\Users\MIla\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-01-10] CHR Extension: (Muzyka Google Play) - C:\Users\MIla\AppData\Local\Google\Chrome\User Data\Default\Extensions\fahmaaghhglfmonjliepjlchgpgfmobi [2018-05-06] CHR Extension: (Arkusze) - C:\Users\MIla\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-01-10] CHR Extension: (McAfee® WebAdvisor) - C:\Users\MIla\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2018-05-21] CHR Extension: (Dokumenty Google offline) - C:\Users\MIla\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-01-12] CHR Extension: (TwitchAlerts Stream Labels) - C:\Users\MIla\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgmggmdngboajiakmbpdknfpdelbjbcg [2018-01-10] CHR Extension: (Google Hangouts) - C:\Users\MIla\AppData\Local\Google\Chrome\User Data\Default\Extensions\knipolnnllmklapflnccelgolnpehhpl [2018-05-22] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\MIla\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-04] CHR Extension: (Gmail) - C:\Users\MIla\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-01-10] CHR Extension: (Chrome Media Router) - C:\Users\MIla\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-05-06] CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx ==================== Usługi (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1374072 2018-03-10] (Autodesk Inc.) R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [818128 2018-04-24] (Adobe Systems Incorporated) R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2321384 2018-05-11] (Adobe Systems, Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2128872 2018-05-11] (Adobe Systems, Incorporated) R2 apmwinsrv; C:\Program Files (x86)\Paragon Software\HFS+ for Windows\apmwinsrv.exe [1879744 2017-10-11] () R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [936728 2013-07-03] () R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [318328 2018-05-21] (AVG Technologies CZ, s.r.o.) R3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe [7670672 2018-05-21] (AVG Technologies CZ, s.r.o.) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [6971400 2018-01-21] () S3 cfbackd; C:\Program Files (x86)\CleverFiles\Disk Drill\cfbackd.w32.exe [211520 2015-09-25] (CleverFiles) R2 DTSAudioSvc; C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe [240576 2018-01-09] (DTS, Inc) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [774272 2018-03-10] (EasyAntiCheat Ltd) R2 Garmin Device Interaction Service; C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe [1194512 2018-04-25] (Garmin Ltd. or its subsidiaries) R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [604824 2018-05-29] (McAfee, Inc.) S3 mi-raysat_3dsmax2017_64; C:\Program Files\Autodesk\3ds Max 2017\raysat_3dsmax2017_64server.exe [86016 2011-09-15] () [Brak podpisu cyfrowego] S3 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [519104 2018-01-04] (NVIDIA Corporation) S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [519104 2018-01-04] (NVIDIA Corporation) R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11293936 2018-04-03] (TeamViewer GmbH) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r ===================== Sterowniki (filtrowane) ====================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R0 apmwin; C:\Windows\System32\DRIVERS\apmwin.sys [38736 2017-10-11] (Paragon Software Group) R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2013-07-03] () R1 avgArPot; C:\Windows\System32\drivers\avgArPot.sys [189032 2018-05-21] (AVG Technologies CZ, s.r.o.) R1 avgbidsdriver; C:\Windows\System32\drivers\avgbidsdrivera.sys [220600 2018-05-21] (AVG Technologies CZ, s.r.o.) R0 avgbidsh; C:\Windows\System32\drivers\avgbidsha.sys [192536 2018-05-21] (AVG Technologies CZ, s.r.o.) R0 avgblog; C:\Windows\System32\drivers\avgbloga.sys [336848 2018-05-21] (AVG Technologies CZ, s.r.o.) R0 avgbuniv; C:\Windows\System32\drivers\avgbuniva.sys [50776 2018-05-21] (AVG Technologies CZ, s.r.o.) S3 avgHwid; C:\Windows\System32\drivers\avgHwid.sys [39352 2018-05-21] (AVG Technologies CZ, s.r.o.) R2 avgMonFlt; C:\Windows\System32\drivers\avgMonFlt.sys [151504 2018-05-21] (AVG Technologies CZ, s.r.o.) R1 avgRdr; C:\Windows\System32\drivers\avgRdr2.sys [103744 2018-05-21] (AVG Technologies CZ, s.r.o.) R0 avgRvrt; C:\Windows\System32\drivers\avgRvrt.sys [78352 2018-05-21] (AVG Technologies CZ, s.r.o.) R1 avgSnx; C:\Windows\System32\drivers\avgSnx.sys [1020112 2018-05-21] (AVG Technologies CZ, s.r.o.) R1 avgSP; C:\Windows\System32\drivers\avgSP.sys [452904 2018-05-21] (AVG Technologies CZ, s.r.o.) R2 avgStm; C:\Windows\System32\drivers\avgStm.sys [198368 2018-05-21] (AVG Technologies CZ, s.r.o.) R0 avgVmm; C:\Windows\System32\drivers\avgVmm.sys [373944 2018-05-21] (AVG Technologies CZ, s.r.o.) S2 csvol; C:\Windows\system32\DRIVERS\csvol.sys [37200 2017-10-11] (Paragon Software Group) R3 e1dexpress; C:\Windows\system32\DRIVERS\e1d64x64.sys [564216 2017-04-25] (Intel Corporation) R3 gdrv; C:\Windows\gdrv.sys [26280 2018-01-11] (GIGA-BYTE TECHNOLOGY CO., LTD.) R0 gpt_loader; C:\Windows\System32\DRIVERS\gpt_loader.sys [70480 2017-10-11] () S3 Hfsplus; C:\Windows\System32\DRIVERS\hfsplus.sys [208208 2017-10-11] (Paragon Software Group) R3 HfsplusRec; C:\Windows\System32\DRIVERS\hfsplusrec.sys [25936 2017-10-11] (Paragon Software Group) R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [129312 2014-09-30] (Intel Corporation) R3 mfesapsn; C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [111608 2017-02-14] (McAfee, Inc.) R0 mounthlp; C:\Windows\System32\DRIVERS\mounthlp.sys [55120 2017-10-11] (Paragon Software Group) S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2018-01-04] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50624 2018-01-04] (NVIDIA Corporation) R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [57792 2018-01-04] (NVIDIA Corporation) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Corporation) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc - utworzone pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2018-06-06 22:42 - 2018-06-06 22:43 - 000022385 _____ C:\Users\MIla\Downloads\FRST.txt 2018-06-06 22:42 - 2018-06-06 22:43 - 000000000 ____D C:\FRST 2018-06-06 22:36 - 2018-06-06 22:36 - 002413056 _____ (Farbar) C:\Users\MIla\Downloads\FRST64.exe 2018-06-06 22:19 - 2018-06-06 22:19 - 001329265 _____ ( ) C:\Users\MIla\Downloads\tcsetup.exe 2018-06-06 20:44 - 2018-06-06 20:44 - 000004068 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1528310656 2018-06-06 20:44 - 2018-06-06 20:44 - 000001300 _____ C:\Users\MIla\Desktop\Przeglądarka Opera.lnk 2018-06-06 20:44 - 2018-06-06 20:44 - 000001300 _____ C:\Users\MIla\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Przeglądarka Opera.lnk 2018-06-06 20:44 - 2018-06-06 20:44 - 000000000 ____D C:\Users\MIla\AppData\Roaming\Opera Software 2018-06-06 20:44 - 2018-06-06 20:44 - 000000000 ____D C:\Users\MIla\AppData\Local\Opera Software 2018-06-06 20:40 - 2018-06-06 20:40 - 002016185 _____ (Ran ) C:\Users\MIla\Downloads\HijackThis-12030-AsystentPobierania_4049700207.exe 2018-06-06 20:40 - 2018-06-06 20:40 - 000388608 _____ (Trend Micro Inc.) C:\Users\MIla\Downloads\HijackThis_2.0.4.exe 2018-06-06 20:39 - 2018-06-06 20:39 - 005660506 _____ (Swearware) C:\Users\MIla\Downloads\ComboFix.exe 2018-06-05 07:15 - 2018-06-05 07:15 - 000036486 _____ C:\Users\MIla\Downloads\Potwierdzenie_transakcji_nr_0026639323_050618.pdf 2018-06-05 07:14 - 2018-06-05 07:14 - 000037124 _____ C:\Users\MIla\Downloads\Potwierdzenie_transakcji_nr_0026639286_050618.pdf 2018-06-05 07:14 - 2018-06-05 07:14 - 000036758 _____ C:\Users\MIla\Downloads\Potwierdzenie_transakcji_nr_0026639289_050618.pdf 2018-06-03 21:49 - 2018-06-03 21:50 - 007077997 _____ C:\Users\MIla\Downloads\envy Films-Teal and Orange wedding edition LUT.cube 2018-06-03 21:09 - 2018-06-03 21:09 - 000422025 _____ C:\Users\MIla\Desktop\Teal and Orange LUT.cube 2018-06-03 20:20 - 2018-06-05 21:08 - 000204049 _____ C:\Users\MIla\Desktop\portugal.prproj 2018-06-02 16:51 - 2018-06-02 16:51 - 000000000 ____D C:\Users\MIla\AppData\Local\Tempzxpsign51df21dffc94dcc1 2018-06-02 16:46 - 2018-06-02 16:46 - 000000000 ____D C:\Users\MIla\Desktop\kaifornia 2018-05-31 23:12 - 2018-05-31 23:12 - 000000428 __RSH C:\ProgramData\ntuser.pol 2018-05-31 22:56 - 2018-05-31 22:56 - 000047831 _____ C:\Users\MIla\Downloads\Apple_HFS_Read_Only_Driver_v5.0.0.1.zip 2018-05-29 21:55 - 2018-05-29 21:55 - 001087246 _____ C:\Users\MIla\Downloads\Free Resume Template by Gioele Di Falco.rar 2018-05-29 21:51 - 2018-05-29 21:52 - 022832123 _____ C:\Users\MIla\Downloads\resume_by_antuhin-d8ak95z.zip 2018-05-29 21:30 - 2018-05-29 21:30 - 000000000 ____D C:\Users\MIla\AppData\Local\Tempzxpsignd71adefec6693ea5 2018-05-28 21:32 - 2018-05-28 21:32 - 000000000 ____D C:\Users\MIla\Documents\Garmin 2018-05-28 21:31 - 2018-05-28 21:32 - 000000000 ____D C:\ProgramData\Garmin 2018-05-28 21:31 - 2018-05-28 21:31 - 000003554 _____ C:\Windows\System32\Tasks\GarminUpdaterTask 2018-05-28 21:31 - 2018-05-28 21:31 - 000001906 _____ C:\Users\Public\Desktop\Garmin Express.lnk 2018-05-28 21:31 - 2018-05-28 21:31 - 000000000 ____D C:\Users\MIla\AppData\Roaming\Garmin 2018-05-28 21:31 - 2018-05-28 21:31 - 000000000 ____D C:\Users\MIla\AppData\Local\Garmin_Ltd._or_its_subsid 2018-05-28 21:31 - 2018-05-28 21:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin 2018-05-28 21:31 - 2018-05-28 21:31 - 000000000 ____D C:\Program Files\DIFX 2018-05-28 21:31 - 2018-05-28 21:31 - 000000000 ____D C:\Program Files (x86)\Garmin 2018-05-28 21:28 - 2018-05-28 21:29 - 087993120 _____ (Garmin Ltd or its subsidiaries) C:\Users\MIla\Downloads\GarminExpress.exe 2018-05-23 22:14 - 2018-05-23 22:14 - 000000828 _____ C:\Users\MIla\Downloads\45079574-avada-responsive-multipurpose-theme-license (1).txt 2018-05-22 23:13 - 2018-05-22 23:13 - 010113103 _____ C:\Users\MIla\Downloads\modern-resume-template-2.zip 2018-05-22 23:04 - 2018-05-22 23:04 - 009582549 _____ C:\Users\MIla\Downloads\minimal-resume-template-3.zip 2018-05-22 23:01 - 2018-05-22 23:02 - 012854782 _____ C:\Users\MIla\Downloads\Vinyl-mockup-32.zip 2018-05-22 22:58 - 2018-05-22 22:58 - 007295339 _____ C:\Users\MIla\Downloads\New-MacBook.zip 2018-05-22 22:52 - 2018-05-22 22:52 - 039039207 _____ C:\Users\MIla\Downloads\Book-Cover-Mockup.zip 2018-05-22 22:47 - 2018-05-22 22:47 - 001829852 _____ C:\Users\MIla\Downloads\cv-for-woman.rar 2018-05-22 22:31 - 2018-05-22 22:32 - 080630235 _____ C:\Users\MIla\Downloads\curved-tv-mockup.zip 2018-05-22 21:50 - 2018-05-22 21:51 - 023922179 _____ C:\Users\MIla\Downloads\LEVITATING-macbook-mockup.zip 2018-05-22 21:48 - 2018-05-22 21:50 - 116229570 _____ C:\Users\MIla\Downloads\Realistic-poster-mockup.zip 2018-05-22 21:45 - 2018-05-22 21:45 - 031287054 _____ C:\Users\MIla\Downloads\dark-macbook-mockup.zip 2018-05-22 21:39 - 2018-05-22 21:41 - 024159411 _____ C:\Users\MIla\Downloads\Levitating-Mockup-2.zip 2018-05-22 21:15 - 2018-05-22 21:16 - 027097538 _____ C:\Users\MIla\Downloads\workspace-mockup-macbook.zip 2018-05-22 20:59 - 2018-05-22 21:01 - 102514983 _____ C:\Users\MIla\Downloads\DOUBLE-POSTER.zip 2018-05-22 20:47 - 2018-05-22 20:48 - 047044099 _____ C:\Users\MIla\Downloads\MacBook-mockup-new.zip 2018-05-22 20:40 - 2018-05-22 20:41 - 031101735 _____ C:\Users\MIla\Downloads\white-top-macbook-mockup.zip 2018-05-22 20:32 - 2018-05-22 20:33 - 043658246 _____ C:\Users\MIla\Downloads\white-fornt-imac-mockup.zip 2018-05-22 20:16 - 2018-05-22 20:17 - 048295175 _____ C:\Users\MIla\Downloads\white-iMac-mockup.zip 2018-05-22 20:04 - 2018-05-22 20:04 - 000000000 ____D C:\Users\MIla\AppData\Local\Tempzxpsign5004fb3b51523e34 2018-05-22 19:52 - 2018-05-22 19:53 - 021635423 _____ C:\Users\MIla\Downloads\scena particle.zip 2018-05-22 18:59 - 2018-05-22 23:44 - 000000000 ____D C:\Users\MIla\Desktop\gumer 2018-05-21 21:50 - 2018-05-21 21:50 - 000000000 ____D C:\Users\MIla\AppData\Local\Tempzxpsigncb326987d18038a5 2018-05-21 21:09 - 2018-05-21 21:09 - 000377584 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\avgBoot.exe 2018-05-14 20:21 - 2018-05-14 20:21 - 000000000 ____D C:\Users\MIla\Desktop\na insta 2018-05-11 22:50 - 2018-05-11 22:50 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (50).zip 2018-05-11 22:49 - 2018-05-11 22:49 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (49).zip 2018-05-11 22:48 - 2018-05-11 22:49 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (48).zip 2018-05-11 22:48 - 2018-05-11 22:48 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (47).zip 2018-05-11 22:47 - 2018-05-11 22:47 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (46).zip 2018-05-11 22:47 - 2018-05-11 22:47 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (45).zip 2018-05-11 22:47 - 2018-05-11 22:47 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (44).zip 2018-05-11 22:46 - 2018-05-11 22:46 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (43).zip 2018-05-11 22:46 - 2018-05-11 22:46 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (42).zip 2018-05-11 22:46 - 2018-05-11 22:46 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (41).zip 2018-05-11 22:45 - 2018-05-11 22:45 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (40).zip 2018-05-11 22:44 - 2018-05-11 22:44 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (39).zip 2018-05-11 22:44 - 2018-05-11 22:44 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (38).zip 2018-05-11 22:43 - 2018-05-11 22:43 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (37).zip 2018-05-11 22:42 - 2018-05-11 22:42 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (36).zip 2018-05-11 22:42 - 2018-05-11 22:42 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (35).zip 2018-05-11 22:41 - 2018-05-11 22:41 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (34).zip 2018-05-11 22:41 - 2018-05-11 22:41 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (33).zip 2018-05-11 22:37 - 2018-05-11 22:37 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (32).zip 2018-05-11 22:36 - 2018-05-11 22:36 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (31).zip 2018-05-11 22:36 - 2018-05-11 22:36 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (30).zip 2018-05-11 22:35 - 2018-05-11 22:35 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (29).zip 2018-05-11 22:35 - 2018-05-11 22:35 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (28).zip 2018-05-11 22:34 - 2018-05-11 22:34 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (27).zip 2018-05-11 22:33 - 2018-05-11 22:34 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (26).zip 2018-05-11 22:32 - 2018-05-11 22:32 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (25).zip 2018-05-11 22:32 - 2018-05-11 22:32 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (24).zip 2018-05-11 22:30 - 2018-05-11 22:30 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (23).zip 2018-05-11 22:30 - 2018-05-11 22:30 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (22).zip 2018-05-11 22:29 - 2018-05-11 22:29 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (21).zip 2018-05-11 22:28 - 2018-05-11 22:28 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (20).zip 2018-05-11 22:28 - 2018-05-11 22:28 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (19).zip 2018-05-11 22:27 - 2018-05-11 22:27 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (18).zip 2018-05-11 22:27 - 2018-05-11 22:27 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (17).zip 2018-05-11 22:25 - 2018-05-11 22:25 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (16).zip 2018-05-11 22:24 - 2018-05-11 22:24 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (15).zip 2018-05-11 22:23 - 2018-05-11 22:23 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (14).zip 2018-05-11 22:22 - 2018-05-11 22:22 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (13).zip 2018-05-11 22:19 - 2018-05-11 22:19 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (12).zip 2018-05-11 22:18 - 2018-05-11 22:18 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (11).zip 2018-05-11 22:18 - 2018-05-11 22:18 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (10).zip 2018-05-11 22:17 - 2018-05-11 22:17 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (9).zip 2018-05-11 22:15 - 2018-05-11 22:15 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (8).zip 2018-05-11 22:11 - 2018-05-11 22:11 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (7).zip 2018-05-11 22:10 - 2018-05-11 22:10 - 002349306 _____ C:\Users\MIla\Downloads\Logo-kit-sample-3 (1).zip 2018-05-11 22:08 - 2018-05-11 22:08 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (6).zip 2018-05-11 22:07 - 2018-05-11 22:07 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (5).zip 2018-05-11 22:05 - 2018-05-11 22:05 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (4).zip 2018-05-11 22:03 - 2018-05-11 22:03 - 002349306 _____ C:\Users\MIla\Downloads\Logo-kit-sample-3.zip 2018-05-11 22:03 - 2018-05-11 22:03 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (3).zip 2018-05-11 22:02 - 2018-05-11 22:02 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (2).zip 2018-05-11 22:01 - 2018-05-11 22:01 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS (1).zip 2018-05-11 22:00 - 2018-05-11 22:00 - 001038757 _____ C:\Users\MIla\Downloads\COCTAILS.zip 2018-05-11 21:50 - 2018-05-11 21:50 - 000003355 _____ C:\Users\MIla\Downloads\wp-config (3).php 2018-05-11 20:57 - 2018-05-11 20:57 - 000003354 _____ C:\Users\MIla\Downloads\wp-config (2).php 2018-05-11 20:37 - 2018-04-22 11:02 - 000803696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll 2018-05-11 20:37 - 2018-04-22 10:06 - 000612600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll 2018-05-11 20:37 - 2018-04-22 10:04 - 025744896 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2018-05-11 20:37 - 2018-04-22 09:40 - 002902016 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2018-05-11 20:37 - 2018-04-22 09:38 - 000578048 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2018-05-11 20:37 - 2018-04-22 09:32 - 005779456 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2018-05-11 20:37 - 2018-04-22 09:26 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2018-05-11 20:37 - 2018-04-22 09:26 - 000794624 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2018-05-11 20:37 - 2018-04-22 09:24 - 020286464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2018-05-11 20:37 - 2018-04-22 09:04 - 000499712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2018-05-11 20:37 - 2018-04-22 09:00 - 002295296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2018-05-11 20:37 - 2018-04-22 08:57 - 001033216 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll 2018-05-11 20:37 - 2018-04-22 08:54 - 000661504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2018-05-11 20:37 - 2018-04-22 08:53 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2018-05-11 20:37 - 2018-04-22 08:51 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2018-05-11 20:37 - 2018-04-22 08:49 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2018-05-11 20:37 - 2018-04-22 08:48 - 015283200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2018-05-11 20:37 - 2018-04-22 08:46 - 002135552 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2018-05-11 20:37 - 2018-04-22 08:33 - 003241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2018-05-11 20:37 - 2018-04-22 08:32 - 000880640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll 2018-05-11 20:37 - 2018-04-22 08:31 - 004496896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2018-05-11 20:37 - 2018-04-22 08:29 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2018-05-11 20:37 - 2018-04-22 08:27 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2018-05-11 20:37 - 2018-04-22 08:27 - 000333312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2018-05-11 20:37 - 2018-04-22 08:26 - 013679616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2018-05-11 20:37 - 2018-04-22 08:26 - 002059776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2018-05-11 20:37 - 2018-04-22 08:22 - 001546240 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2018-05-11 20:37 - 2018-04-22 08:11 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2018-05-11 20:37 - 2018-04-22 08:08 - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2018-05-11 20:37 - 2018-04-22 08:04 - 001314304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2018-05-11 20:37 - 2018-04-22 08:03 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2018-05-11 20:37 - 2018-04-15 18:55 - 000669696 _____ (Microsoft Corporation) C:\Windows\system32\hhctrl.ocx 2018-05-11 20:37 - 2018-04-15 18:16 - 000536576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hhctrl.ocx 2018-05-11 20:37 - 2018-04-11 03:03 - 007406936 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2018-05-11 20:37 - 2018-04-11 03:02 - 001676056 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi 2018-05-11 20:37 - 2018-04-11 03:02 - 001536112 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe 2018-05-11 20:37 - 2018-04-10 20:51 - 004169216 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2018-05-11 20:37 - 2018-04-10 20:27 - 000205312 _____ (Microsoft Corporation) C:\Windows\system32\itircl.dll 2018-05-11 20:37 - 2018-04-10 20:13 - 000179712 _____ (Microsoft Corporation) C:\Windows\system32\itss.dll 2018-05-11 20:37 - 2018-04-10 19:01 - 000165376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itircl.dll 2018-05-11 20:37 - 2018-04-10 18:50 - 000151040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itss.dll 2018-05-11 20:37 - 2018-04-07 18:17 - 000445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll 2018-05-11 20:37 - 2018-04-07 17:49 - 000324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll 2018-05-11 20:37 - 2018-04-07 17:41 - 000109056 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2018-05-11 20:37 - 2018-04-07 17:23 - 000084992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2018-05-11 20:37 - 2018-04-07 17:20 - 001707008 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll 2018-05-11 20:37 - 2018-04-07 17:10 - 001344512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll 2018-05-11 20:37 - 2018-04-07 17:06 - 000522752 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll 2018-05-11 20:37 - 2018-04-07 17:01 - 000414720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvut.dll 2018-05-11 20:37 - 2018-04-06 23:27 - 000376656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys 2018-05-11 20:37 - 2018-03-24 17:57 - 001101824 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll 2018-05-11 20:37 - 2018-03-24 17:40 - 001171456 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe 2018-05-11 20:37 - 2018-03-24 17:34 - 000856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll 2018-05-11 20:37 - 2018-03-24 17:22 - 001086976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe 2018-05-11 20:37 - 2018-03-24 16:56 - 007033344 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll 2018-05-11 20:37 - 2018-03-24 16:54 - 006214144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll 2018-05-11 20:37 - 2018-03-16 00:29 - 000136904 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2018-05-11 20:37 - 2018-03-10 22:55 - 000137968 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2018-05-11 20:37 - 2018-03-10 21:04 - 000120376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2018-05-11 20:37 - 2018-03-10 19:51 - 000685568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys 2018-05-11 20:37 - 2018-03-10 19:47 - 000066048 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2018-05-11 20:37 - 2018-03-10 19:47 - 000052224 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2018-05-11 20:37 - 2018-03-10 19:43 - 000015360 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll 2018-05-11 20:37 - 2018-03-10 18:46 - 000840192 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll 2018-05-11 20:37 - 2018-03-10 18:44 - 000435200 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2018-05-11 20:37 - 2018-03-10 18:35 - 000696832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll 2018-05-11 20:37 - 2018-03-10 18:35 - 000359424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2018-05-11 20:37 - 2018-03-10 18:33 - 003717632 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2018-05-11 20:37 - 2018-03-10 18:22 - 000035840 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2018-05-11 20:37 - 2018-03-10 18:21 - 000140288 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2018-05-11 20:37 - 2018-03-10 18:21 - 000029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe 2018-05-11 20:37 - 2018-03-10 18:20 - 000124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll 2018-05-11 20:37 - 2018-03-10 18:18 - 000726528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll 2018-05-11 20:37 - 2018-03-10 18:18 - 000409088 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll 2018-05-11 20:37 - 2018-03-10 18:18 - 000095744 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2018-05-11 20:37 - 2018-03-10 18:18 - 000081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll 2018-05-11 20:37 - 2018-03-10 18:17 - 002240512 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2018-05-11 20:37 - 2018-03-10 18:17 - 000897024 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2018-05-11 20:37 - 2018-03-09 20:57 - 000276816 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys 2018-05-11 20:37 - 2018-03-03 18:24 - 001725952 _____ (Microsoft Corporation) C:\Windows\system32\msdtctm.dll 2018-05-11 20:37 - 2018-03-03 18:18 - 000894976 _____ (Microsoft Corporation) C:\Windows\system32\msdtcprx.dll 2018-05-11 20:37 - 2018-03-03 18:18 - 000322048 _____ (Microsoft Corporation) C:\Windows\system32\msdtcuiu.dll 2018-05-11 20:37 - 2018-03-03 18:15 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xolehlp.dll 2018-05-11 20:37 - 2018-03-03 18:04 - 000741888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdtcprx.dll 2018-05-11 20:37 - 2018-03-03 18:04 - 000265728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdtcuiu.dll 2018-05-11 20:37 - 2018-02-14 23:45 - 001308336 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2018-05-11 20:37 - 2018-02-14 16:47 - 000747520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2018-05-11 20:33 - 2018-05-11 20:33 - 000017969 _____ C:\Users\MIla\Downloads\blog-layout (1).php 2018-05-11 20:32 - 2018-05-11 20:32 - 000017969 _____ C:\Users\MIla\Downloads\blog-layout.php 2018-05-07 21:31 - 2018-05-07 21:31 - 000000000 ____D C:\Users\MIla\AppData\Local\Tempzxpsignf5c47f8ded5268de 2018-05-07 21:28 - 2018-05-07 21:28 - 000000000 ____D C:\Users\MIla\Downloads\15.04-20180507T191035Z-001 2018-05-07 21:23 - 2018-05-07 21:24 - 066428921 _____ C:\Users\MIla\Downloads\27-29.04-20180507T192245Z-001.zip 2018-05-07 21:19 - 2018-05-07 21:20 - 051911191 _____ C:\Users\MIla\Downloads\19-25.04-20180507T191816Z-001.zip 2018-05-07 21:17 - 2018-05-07 21:19 - 069601105 _____ C:\Users\MIla\Downloads\18.04-20180507T191655Z-001.zip 2018-05-07 21:13 - 2018-05-07 21:17 - 117265969 _____ C:\Users\MIla\Downloads\17,04-20180507T191304Z-001.zip 2018-05-07 21:12 - 2018-05-07 21:13 - 019420912 _____ C:\Users\MIla\Downloads\16.04-20180507T191236Z-001.zip 2018-05-07 21:11 - 2018-05-07 21:19 - 266842313 _____ C:\Users\MIla\Downloads\15.04-20180507T191035Z-001.zip 2018-05-07 21:06 - 2018-05-07 21:08 - 126206028 _____ C:\Users\MIla\Downloads\14.04-20180507T190353Z-001.zip ==================== Jeden miesiąc - zmodyfikowane pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2018-06-06 22:41 - 2014-03-18 11:56 - 001817498 _____ C:\Windows\system32\PerfStringBackup.INI 2018-06-06 22:41 - 2014-03-18 11:28 - 000799780 _____ C:\Windows\system32\perfh015.dat 2018-06-06 22:41 - 2014-03-18 11:28 - 000160522 _____ C:\Windows\system32\perfc015.dat 2018-06-06 22:41 - 2013-08-22 15:36 - 000000000 ____D C:\Windows\Inf 2018-06-06 22:33 - 2018-01-09 14:57 - 000003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3663613490-1567447372-3400514427-1001 2018-06-06 22:28 - 2018-02-12 17:34 - 000000000 ____D C:\Program Files (x86)\Steam 2018-06-06 22:28 - 2018-01-22 19:10 - 000000000 ____D C:\Program Files (x86)\TeamViewer 2018-06-06 22:28 - 2018-01-21 17:01 - 000000000 ___RD C:\Users\MIla\Creative Cloud Files 2018-06-06 22:28 - 2018-01-21 16:55 - 000000000 ____D C:\Users\MIla\AppData\Local\Adobe 2018-06-06 22:28 - 2018-01-11 22:49 - 000000000 ____D C:\Users\MIla\AppData\Local\minergate 2018-06-06 22:28 - 2018-01-09 15:12 - 000000000 ____D C:\ProgramData\NVIDIA 2018-06-06 22:28 - 2013-08-22 16:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2018-06-06 22:22 - 2018-01-09 16:40 - 000000000 ____D C:\ProgramData\Package Cache 2018-06-06 22:19 - 2018-01-21 17:39 - 000000000 ____D C:\Users\MIla\AppData\Local\CrashDumps 2018-06-06 21:26 - 2018-04-06 19:37 - 000000000 ____D C:\Users\MIla\AppData\Local\Akamai 2018-06-06 20:28 - 2018-01-09 16:25 - 000003964 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{EA2A4247-5BC6-41BD-988A-351D302ACF48} 2018-06-05 22:13 - 2018-01-23 04:58 - 000000000 ____D C:\Users\MIla\Desktop\Adobe Premiere Pro Auto-Save 2018-06-05 21:56 - 2018-01-23 20:13 - 000000000 ____D C:\Users\MIla\Desktop\Adobe Premiere Pro Audio Previews 2018-06-05 21:56 - 2018-01-21 17:27 - 000000000 ____D C:\ProgramData\regid.1986-12.com.adobe 2018-06-05 21:13 - 2018-02-01 21:35 - 000000000 ____D C:\Program Files (x86)\McAfee 2018-06-03 01:01 - 2013-08-22 15:25 - 000262144 ___SH C:\Windows\system32\config\BBI 2018-06-02 19:25 - 2018-01-21 17:35 - 000001496 _____ C:\Users\MIla\AppData\Local\Adobe Zapisz dla Internetu 13.0 Prefs 2018-05-31 23:06 - 2013-08-22 17:36 - 000000000 ___HD C:\Windows\system32\GroupPolicy 2018-05-31 22:59 - 2018-01-09 14:48 - 000000000 ____D C:\Users\MIla 2018-05-31 21:09 - 2018-01-09 15:02 - 000004174 _____ C:\Windows\System32\Tasks\Antivirus Emergency Update 2018-05-29 21:55 - 2018-03-03 21:01 - 000000033 _____ C:\Users\MIla\AppData\Roaming\AdobeWLCMCache.dat 2018-05-24 19:25 - 2018-02-01 21:35 - 000000000 ____D C:\Users\MIla\AppData\Roaming\FileZilla 2018-05-22 18:40 - 2018-01-09 15:00 - 000000000 ____D C:\Users\MIla\AppData\Local\Avg 2018-05-22 18:39 - 2018-01-09 15:00 - 000000000 ____D C:\ProgramData\Avg 2018-05-22 18:39 - 2018-01-09 15:00 - 000000000 ____D C:\Program Files (x86)\AVG 2018-05-21 23:38 - 2018-01-24 20:18 - 000000000 ____D C:\Users\MIla\AppData\Roaming\TS3Client 2018-05-21 21:23 - 2018-01-10 22:34 - 000002250 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2018-05-21 21:23 - 2018-01-10 22:34 - 000002209 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2018-05-21 21:17 - 2018-01-10 22:33 - 000003482 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2018-05-21 21:17 - 2018-01-10 22:33 - 000003354 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2018-05-21 21:09 - 2018-01-09 15:02 - 001020112 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSnx.sys 2018-05-21 21:09 - 2018-01-09 15:02 - 000452904 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSP.sys 2018-05-21 21:09 - 2018-01-09 15:02 - 000373944 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgVmm.sys 2018-05-21 21:09 - 2018-01-09 15:02 - 000336848 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbloga.sys 2018-05-21 21:09 - 2018-01-09 15:02 - 000220600 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsdrivera.sys 2018-05-21 21:09 - 2018-01-09 15:02 - 000198368 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgStm.sys 2018-05-21 21:09 - 2018-01-09 15:02 - 000192536 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsha.sys 2018-05-21 21:09 - 2018-01-09 15:02 - 000189032 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgArPot.sys 2018-05-21 21:09 - 2018-01-09 15:02 - 000151504 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgMonFlt.sys 2018-05-21 21:09 - 2018-01-09 15:02 - 000103744 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRdr2.sys 2018-05-21 21:09 - 2018-01-09 15:02 - 000078352 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRvrt.sys 2018-05-21 21:09 - 2018-01-09 15:02 - 000050776 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbuniva.sys 2018-05-21 21:09 - 2018-01-09 15:02 - 000039352 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgHwid.sys 2018-05-14 04:32 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\rescache 2018-05-13 18:31 - 2018-01-10 22:31 - 000421296 _____ C:\Windows\system32\FNTCACHE.DAT 2018-05-11 23:54 - 2013-08-22 17:20 - 000000000 ____D C:\Windows\CbsTemp 2018-05-11 23:53 - 2018-01-09 15:16 - 000000000 ____D C:\Windows\system32\MRT 2018-05-11 23:52 - 2018-01-09 15:16 - 141696960 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe 2018-05-11 23:52 - 2018-01-09 15:16 - 141696960 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2018-05-09 21:04 - 2013-08-22 17:36 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2018-05-09 20:47 - 2018-04-12 19:40 - 000000000 ____D C:\Users\MIla\Desktop\button ==================== Pliki w katalogu głównym wybranych folderów ======= 2018-03-03 21:01 - 2018-05-29 21:55 - 000000033 _____ () C:\Users\MIla\AppData\Roaming\AdobeWLCMCache.dat 2018-01-21 17:35 - 2018-06-02 19:25 - 000001496 _____ () C:\Users\MIla\AppData\Local\Adobe Zapisz dla Internetu 13.0 Prefs Niektóre pliki w TEMP: ==================== 2018-04-06 21:00 - 2016-02-22 23:10 - 000066496 _____ (Autodesk, Inc.) C:\Users\MIla\AppData\Local\Temp\AcDeltree.exe 2018-01-09 15:12 - 2017-10-27 18:06 - 000874368 _____ (NVIDIA Corporation) C:\Users\MIla\AppData\Local\Temp\nvSCPAPI64.dll 2018-01-09 16:50 - 2017-10-27 18:06 - 000370296 _____ (NVIDIA Corporation) C:\Users\MIla\AppData\Local\Temp\nvStInst.exe ==================== Bamital & volsnap ====================== (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) C:\Windows\system32\winlogon.exe => Plik podpisany cyfrowo C:\Windows\system32\wininit.exe => Plik podpisany cyfrowo C:\Windows\explorer.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\explorer.exe => Plik podpisany cyfrowo C:\Windows\system32\svchost.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\svchost.exe => Plik podpisany cyfrowo C:\Windows\system32\services.exe => Plik podpisany cyfrowo C:\Windows\system32\User32.dll => Plik podpisany cyfrowo C:\Windows\SysWOW64\User32.dll => Plik podpisany cyfrowo C:\Windows\system32\userinit.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\userinit.exe => Plik podpisany cyfrowo C:\Windows\system32\rpcss.dll => Plik podpisany cyfrowo C:\Windows\system32\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo LastRegBack: 2018-06-04 19:24 ==================== Koniec FRST.txt ============================