Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 02.08.2018
Uruchomiony przez krzysztof (administrator)  DESKTOP-5I2ARRE (17-08-2018 16:41:26)
Uruchomiony z C:\Users\krzysztof\Desktop\diagnostyka
Załadowane profile: krzysztof (Dostępne profile: defaultuser0 & krzysztof)
Platform: Windows 10 Pro Wersja 1803 17134.165 (X64) Język: Polski (Polska)
Internet Explorer Wersja 11 (Domyślna przeglądarka: FF)
Tryb startu: Normal
Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesy (filtrowane) =================

(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.30\aaHMSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.00.01\atkexComSvc.exe
() C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\1.09.08\AsusFanControlService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1807.18075-0\MsMpEng.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe
() C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
() C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe
() C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1807.18075-0\NisSrv.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
() C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe
() C:\Program Files (x86)\RivaTuner Statistics Server\EncoderServer.exe
() C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooksLoader64.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(ASUSTeK COMPUTER INC.) C:\Program Files\ASUSTeKcomputer.Inc\Sonic Suite 3\Foundation\SS3Svc32.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe
(Corsair Components, Inc.) C:\Program Files (x86)\Corsair\Corsair Utility Engine\CUE.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(GIGABYTE Technology Co.,Ltd.) C:\Program Files (x86)\GIGABYTE\AORUS GRAPHICS ENGINE\AORUS.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(ASUSTeK COMPUTER INC.) C:\Program Files\ASUSTeKcomputer.Inc\Sonic Suite 3\Foundation\x64\SS3Svc64.exe
(Samsung Electronics Co. Ltd.) C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe
() C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\AsPowerBar.exe
() C:\Program Files (x86)\GIGABYTE\AORUS GRAPHICS ENGINE\MBLed.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(Farbar) C:\Users\krzysztof\Desktop\diagnostyka\tsrf64.exe

==================== Rejestr (filtrowane) ===========================

(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Corporation)
HKLM\...\Run: [Sonic Studio 3] => C:\Program Files\ASUSTeKcomputer.Inc\Sonic Suite 3\Foundation\SS3svc32.exe [1234432 2018-02-06] (ASUSTeK COMPUTER INC.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9246656 2018-01-03] (Realtek Semiconductor)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX2] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNMNSST2.exe [270912 2015-06-17] (CANON INC.)
HKLM-x32\...\Run: [Corsair Utility Engine] => C:\Program Files (x86)\Corsair\Corsair Utility Engine\CUE.exe [21430992 2018-03-27] (Corsair Components, Inc.)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-21-518638446-864889298-562796940-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3206432 2018-08-09] (Valve Corporation)
HKU\S-1-5-21-518638446-864889298-562796940-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [10024624 2017-11-08] (Piriform Ltd)
HKU\S-1-5-21-518638446-864889298-562796940-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [729704 2018-06-20] (Disc Soft Ltd)
HKU\S-1-5-21-518638446-864889298-562796940-1001\...\MountPoints2: {78402889-97db-11e8-9168-6045cb9ef056} - "F:\setup.exe" 
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2018-07-06]
ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS)
Startup: C:\Users\krzysztof\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GIGABYTE AORUS GRAPHICS ENGINE.lnk [2017-09-02]
ShortcutTarget: GIGABYTE AORUS GRAPHICS ENGINE.lnk -> C:\Program Files (x86)\GIGABYTE\AORUS GRAPHICS ENGINE\autorun.exe ()
Startup: C:\Users\krzysztof\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GRAPHICS ENGINE.lnk [2018-04-22]
ShortcutTarget: GRAPHICS ENGINE.lnk -> C:\Program Files (x86)\GIGABYTE\AORUS GRAPHICS ENGINE\autorun.exe ()

==================== Internet (filtrowane) ====================

(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 0.0.0.0
Tcpip\..\Interfaces\{5735a7e5-3dfd-4690-a156-6f159c3202a6}: [DhcpNameServer] 192.168.137.1
Tcpip\..\Interfaces\{9459adc4-4c76-4a5b-8dc4-50fbba7b1d22}: [DhcpNameServer] 192.168.1.1 0.0.0.0

Internet Explorer:
==================

FireFox:
========
FF DefaultProfile: l0etyn9k.default-1533490597172
FF ProfilePath: C:\Users\krzysztof\AppData\Roaming\Mozilla\Firefox\Profiles\l0etyn9k.default-1533490597172 [2018-08-17]
FF Session Restore: Mozilla\Firefox\Profiles\l0etyn9k.default-1533490597172 -> [funkcja włączona]
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-07-30] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-07-30] (NVIDIA Corporation)

==================== Usługi (filtrowane) ====================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.00.01\atkexComSvc.exe [382424 2018-02-06] (ASUSTeK Computer Inc.)
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.30\aaHMSvc.exe [975832 2017-01-24] (ASUSTeK Computer Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2017-09-01] () [Brak podpisu cyfrowego]
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.09.08\AsusFanControlService.exe [610776 2017-01-24] (ASUSTeK Computer Inc.)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [3606632 2018-06-20] (Disc Soft Ltd)
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [382504 2017-09-01] (EasyAntiCheat Ltd)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4737448 2018-04-12] (Microsoft Corporation)
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] ()
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10942704 2017-11-03] (TeamViewer GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\NisSrv.exe [3905952 2018-07-31] (Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\MsMpEng.exe [110944 2018-07-31] (Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Sterowniki (filtrowane) ======================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

R3 amdgpio2; C:\WINDOWS\System32\drivers\amdgpio2.sys [34696 2017-10-10] (Advanced Micro Devices, Inc)
R3 amdgpio3; C:\WINDOWS\System32\drivers\amdgpio3.sys [33144 2017-10-16] (Advanced Micro Devices, Inc)
S3 amdkmcsp; C:\WINDOWS\system32\DRIVERS\amdkmcsp.sys [95080 2017-06-12] (Advanced Micro Devices, Inc. )
R3 AMDPCIDev; C:\WINDOWS\System32\drivers\AMDPCIDev.sys [31592 2018-04-25] (Advanced Micro Devices)
R0 amdpsp; C:\WINDOWS\System32\drivers\amdpsp.sys [137104 2017-11-08] (Advanced Micro Devices, Inc. )
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-09-09] ()
S3 AsrDrv101; C:\Windows\SysWOW64\Drivers\AsrDrv101.sys [22280 2017-03-17] (ASRock Incorporation)
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2014-02-24] ()
R3 CorsairVBusDriver; C:\WINDOWS\System32\drivers\CorsairVBusDriver.sys [45528 2018-02-05] (Corsair)
R3 CorsairVHidDriver; C:\WINDOWS\System32\drivers\CorsairVHidDriver.sys [21968 2018-02-05] (Corsair)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2017-09-01] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2017-09-01] (Disc Soft Ltd)
R3 e1rexpress; C:\WINDOWS\system32\DRIVERS\e1r65x64.sys [540112 2017-09-01] (Intel Corporation)
S3 GLCKIO; C:\Program Files (x86)\ASUS\AURA\690b33e1-0462-4e84-9bea-c7552b45432a.sys [14976 2017-09-01] ()
R4 IOMap; C:\WINDOWS\system32\drivers\IOMap64.sys [35352 2017-01-26] (ASUSTeK Computer Inc.)
R1 netfilter2; C:\WINDOWS\System32\drivers\netfilter2.sys [79504 2016-09-18] (Windows (R) Win 7 DDK provider)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_52ac7eb8f32780d5\nvlddmkm.sys [17211376 2018-08-01] (NVIDIA Corporation)
R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [14024 2016-10-24] ()
R3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [46896 2018-04-23] ()
R2 SSGDIO; C:\Windows\SysWOW64\DRIVERS\ssgdio64.sys [14608 2017-03-18] (ATI Technologies Inc.)
R3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [47944 2018-07-02] (SteelSeries ApS)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46584 2018-07-31] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [340008 2018-07-31] (Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [151184 2016-07-15] (MBB)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [61992 2018-07-31] (Microsoft Corporation)

==================== NetSvcs (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)


==================== Jeden miesiąc - utworzone pliki i foldery ========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2018-08-17 15:35 - 2018-08-17 16:37 - 078118912 _____ C:\WINDOWS\system32\config\SOFTWARE
2018-08-17 15:27 - 2018-08-17 15:35 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware
2018-08-17 15:13 - 2018-08-17 15:14 - 000285872 _____ C:\WINDOWS\ntbtlog.txt
2018-08-17 15:13 - 2018-08-17 15:13 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2018-08-17 15:08 - 2018-08-17 15:08 - 000325632 _____ C:\WINDOWS\SysWOW64\Win32GetLastError.idb
2018-08-17 15:06 - 2018-08-17 16:41 - 000000000 ____D C:\FRST
2018-08-17 14:18 - 2018-08-17 14:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2018-08-17 14:17 - 2018-07-30 19:50 - 000132488 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2018-08-17 14:15 - 2018-08-01 11:50 - 004352880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2018-08-17 14:15 - 2018-08-01 11:50 - 003769016 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2018-08-17 14:15 - 2018-08-01 11:50 - 002002448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6439882.dll
2018-08-17 14:15 - 2018-08-01 11:50 - 001565048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2018-08-17 14:15 - 2018-08-01 11:50 - 001467920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6439882.dll
2018-08-17 14:15 - 2018-08-01 11:50 - 001420576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2018-08-17 14:15 - 2018-08-01 11:50 - 001218528 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2018-08-17 14:15 - 2018-08-01 11:50 - 001094128 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2018-08-17 14:15 - 2018-08-01 11:50 - 000749936 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2018-08-17 14:15 - 2018-08-01 11:50 - 000628920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2018-08-17 14:15 - 2018-08-01 11:50 - 000608544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2018-08-17 14:15 - 2018-08-01 11:50 - 000518488 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2018-08-17 14:15 - 2018-08-01 11:49 - 040346808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2018-08-17 14:15 - 2018-08-01 11:49 - 035250008 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2018-08-17 14:15 - 2018-08-01 11:49 - 031250184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2018-08-17 14:15 - 2018-08-01 11:49 - 025966552 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2018-08-17 14:15 - 2018-08-01 11:49 - 011273816 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2018-08-17 14:15 - 2018-08-01 11:49 - 000906808 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2018-08-17 14:15 - 2018-08-01 11:49 - 000816392 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2018-08-17 14:15 - 2018-08-01 11:49 - 000654760 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2018-08-17 14:15 - 2018-08-01 11:49 - 000635968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2018-08-17 14:15 - 2018-08-01 11:48 - 015170808 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2018-08-17 14:15 - 2018-08-01 11:48 - 001358720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFThevc.dll
2018-08-17 14:15 - 2018-08-01 11:48 - 001349384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2018-08-17 14:15 - 2018-08-01 11:48 - 001071568 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFThevc.dll
2018-08-17 14:15 - 2018-08-01 11:48 - 001065688 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2018-08-17 14:12 - 2018-08-17 14:12 - 000000000 ____D C:\NVIDIA
2018-08-17 13:55 - 2018-08-17 14:10 - 513789768 _____ (NVIDIA Corporation) C:\Users\krzysztof\Downloads\398.82-desktop-win10-64bit-international-whql.exe
2018-08-17 13:30 - 2018-08-17 15:08 - 000000000 ____D C:\WINDOWS\{C0DBEF00-2BEB-4F04-B2D3-8007390D5C0B}
2018-08-07 10:52 - 2018-08-08 20:25 - 000000000 ____D C:\WINDOWS\{9313CB30-7832-4851-AF74-A21456C4EF2A}
2018-08-05 22:25 - 2018-08-07 00:25 - 000000000 ____D C:\WINDOWS\{7CB0BBD3D374-4DEA-9751-2D08BC721AA7}
2018-08-05 19:40 - 2018-08-05 19:40 - 000001814 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2018-08-05 19:39 - 2018-08-05 19:40 - 000000000 ____D C:\Program Files\DAEMON Tools Lite
2018-08-05 19:35 - 2018-08-17 14:35 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-08-05 19:35 - 2018-08-17 14:19 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2018-08-05 19:35 - 2018-08-17 14:19 - 000000000 ____D C:\Program Files\Mozilla Firefox
2018-08-05 19:35 - 2018-08-05 19:42 - 000000000 ____D C:\Users\krzysztof\AppData\Local\Disc_Soft_Ltd
2018-08-05 19:35 - 2018-08-05 19:35 - 000000993 _____ C:\Users\Public\Desktop\Firefox.lnk
2018-08-05 19:34 - 2018-08-05 19:34 - 000313912 _____ (Mozilla) C:\Users\krzysztof\Downloads\Firefox Installer.exe
2018-08-05 19:30 - 2018-08-05 19:30 - 000011072 _____ C:\Users\krzysztof\Desktop\bookmarks-2018-08-05.json
2018-08-05 14:17 - 2018-08-17 14:40 - 000000000 ____D C:\Users\krzysztof\AppData\Roaming\uTorrent
2018-08-03 18:08 - 2018-08-03 18:08 - 000000909 _____ C:\Users\krzysztof\Desktop\World of Tanks - Common Test.lnk
2018-08-03 18:06 - 2018-08-03 18:06 - 004169424 _____ (Wargaming.net ) C:\Users\krzysztof\Desktop\WoT_internet_install_ct.exe
2018-08-03 14:33 - 2018-08-03 14:34 - 016186744 _____ C:\Users\krzysztof\Desktop\ksiazka_mazda5.pdf
2018-07-26 18:21 - 2018-07-26 18:25 - 134681360 _____ (Aslain ) C:\Users\krzysztof\Desktop\Aslains_WoT_Modpack_Installer_v.1.0.2.3_04.exe
2018-07-25 12:50 - 2018-07-26 18:46 - 000000920 _____ C:\Users\krzysztof\Desktop\Aslains WoT Logs Archiver.lnk

==================== Jeden miesiąc - zmodyfikowane pliki i foldery ========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2018-08-17 16:41 - 2018-05-21 12:44 - 000004228 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{D1C09996-D190-4C0E-A125-ACEA6CCE6CE2}
2018-08-17 16:41 - 2017-03-19 22:04 - 000000000 ____D C:\Users\krzysztof\Desktop\diagnostyka
2018-08-17 16:38 - 2017-07-26 14:00 - 000026192 _____ (Windows (R) Server 2003 DDK provider) C:\WINDOWS\gdrv.sys
2018-08-17 16:38 - 2017-03-18 17:26 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2018-08-17 16:38 - 2017-03-18 17:25 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2018-08-17 16:38 - 2017-03-18 16:59 - 000000000 ____D C:\Program Files (x86)\Steam
2018-08-17 16:38 - 2017-03-17 22:43 - 000000000 ____D C:\Users\krzysztof\AppData\LocalLow\Mozilla
2018-08-17 16:37 - 2018-05-21 12:44 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-08-17 16:37 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-08-17 16:37 - 2018-04-11 23:04 - 000262144 _____ C:\WINDOWS\system32\config\BBI
2018-08-17 16:37 - 2017-07-26 13:47 - 000000000 ____D C:\ProgramData\NVIDIA
2018-08-17 16:37 - 2017-03-18 15:47 - 000000008 __RSH C:\ProgramData\ntuser.pol
2018-08-17 16:36 - 2018-05-21 12:41 - 000000000 ____D C:\Users\krzysztof
2018-08-17 16:36 - 2016-07-16 13:47 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2018-08-17 15:17 - 2018-05-21 12:46 - 001763504 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-08-17 15:17 - 2018-04-12 17:54 - 000782334 _____ C:\WINDOWS\system32\perfh015.dat
2018-08-17 15:17 - 2018-04-12 17:54 - 000151496 _____ C:\WINDOWS\system32\perfc015.dat
2018-08-17 15:17 - 2018-04-12 01:36 - 000000000 ____D C:\WINDOWS\INF
2018-08-17 15:15 - 2018-03-10 10:05 - 000000184 _____ C:\Users\krzysztof\Desktop\HWiNFO64.INI
2018-08-17 15:09 - 2018-05-21 12:44 - 000003150 _____ C:\WINDOWS\System32\Tasks\MSIAfterburner
2018-08-17 15:02 - 2018-04-12 01:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-08-17 15:02 - 2017-03-18 16:37 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-08-17 15:00 - 2017-03-18 16:37 - 137343192 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-08-17 14:56 - 2018-05-21 12:44 - 000000000 ____D C:\Users\krzysztof\AppData\Local\D3DSCache
2018-08-17 14:18 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-08-17 14:17 - 2018-05-29 09:20 - 000003926 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-17 14:17 - 2018-05-29 09:20 - 000003926 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-17 14:17 - 2018-05-29 09:20 - 000003926 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-17 14:17 - 2018-05-21 12:44 - 000003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-17 14:17 - 2018-05-21 12:44 - 000003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-17 14:17 - 2018-05-21 12:44 - 000003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-17 14:17 - 2018-05-21 12:44 - 000003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-17 14:17 - 2017-12-03 00:06 - 000000000 ____D C:\Users\krzysztof\AppData\Local\NVIDIA
2018-08-17 14:17 - 2017-07-26 13:47 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2018-08-17 14:17 - 2017-03-23 11:08 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2018-08-17 13:49 - 2018-04-12 01:38 - 000000000 ___HD C:\Program Files\WindowsApps
2018-08-08 21:43 - 2018-05-21 12:40 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-08-07 22:21 - 2018-05-27 17:03 - 000000000 ____D C:\WINDOWS\Minidump
2018-08-07 21:15 - 2017-07-30 19:17 - 000000000 ____D C:\Users\krzysztof\AppData\Local\CrashDumps
2018-08-06 17:19 - 2018-04-12 01:41 - 000836480 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2018-08-06 17:19 - 2018-04-12 01:41 - 000181120 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2018-08-05 19:39 - 2017-09-01 19:20 - 000000000 ____D C:\ProgramData\DAEMON Tools Lite
2018-08-05 19:35 - 2017-09-01 19:20 - 000000000 ____D C:\Users\krzysztof\AppData\Roaming\DAEMON Tools Lite
2018-08-05 19:35 - 2017-03-17 22:26 - 000000000 ____D C:\Users\krzysztof\AppData\Roaming\Mozilla
2018-08-05 15:25 - 2018-05-27 19:01 - 000000000 ____D C:\Users\krzysztof\AppData\Local\Deployment
2018-08-05 10:54 - 2017-05-28 18:52 - 000820928 _____ (EasyAntiCheat Oy) C:\WINDOWS\system32\Drivers\EasyAntiCheat.sys
2018-08-02 17:50 - 2018-07-10 18:58 - 000000000 ____D C:\ProgramData\Packages
2018-08-01 11:49 - 2018-05-29 09:18 - 013728728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2018-08-01 11:49 - 2018-05-29 09:18 - 001159120 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2018-08-01 11:48 - 2018-05-29 09:18 - 017756224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2018-08-01 11:47 - 2017-11-02 13:40 - 004858224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2018-08-01 11:47 - 2017-11-02 13:40 - 004128280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2018-07-31 16:00 - 2018-03-02 12:27 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2018-07-30 21:14 - 2017-11-02 13:40 - 000044271 _____ C:\WINDOWS\system32\nvinfo.pb
2018-07-30 21:14 - 2017-07-26 13:48 - 000001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
2018-07-30 19:41 - 2017-07-26 13:48 - 005947600 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2018-07-30 19:41 - 2017-07-26 13:48 - 002612264 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2018-07-30 19:41 - 2017-07-26 13:48 - 001767632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2018-07-30 19:41 - 2017-07-26 13:48 - 000634352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2018-07-30 19:41 - 2017-07-26 13:48 - 000450768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2018-07-30 19:41 - 2017-07-26 13:48 - 000124216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2018-07-30 19:41 - 2017-07-26 13:48 - 000082800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2018-07-30 19:24 - 2017-03-18 17:01 - 000000000 ____D C:\Users\krzysztof\AppData\Roaming\steelseries-engine-3-client
2018-07-30 10:08 - 2017-03-26 11:18 - 000001349 _____ C:\Users\krzysztof\Desktop\WoTLauncher — skrót .lnk
2018-07-29 09:34 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2018-07-26 21:15 - 2017-11-02 12:37 - 000000000 ____D C:\Users\krzysztof\AppData\Roaming\discord
2018-07-25 16:06 - 2018-05-21 12:40 - 000263464 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-07-24 11:03 - 2017-07-26 13:48 - 008253772 _____ C:\WINDOWS\system32\nvcoproc.bin
2018-07-21 23:49 - 2017-10-10 16:25 - 000000000 ____D C:\Users\krzysztof\AppData\Roaming\TS3Client

==================== Pliki w katalogu głównym wybranych folderów =======

2017-03-17 22:11 - 2018-06-25 17:22 - 000007604 _____ () C:\Users\krzysztof\AppData\Local\Resmon.ResmonCfg

==================== Bamital & volsnap ======================

(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)

C:\WINDOWS\system32\winlogon.exe => Plik podpisany cyfrowo
C:\WINDOWS\system32\wininit.exe => Plik podpisany cyfrowo
C:\WINDOWS\explorer.exe => Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\explorer.exe => Plik podpisany cyfrowo
C:\WINDOWS\system32\svchost.exe => Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\svchost.exe => Plik podpisany cyfrowo
C:\WINDOWS\system32\services.exe => Plik podpisany cyfrowo
C:\WINDOWS\system32\User32.dll => Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\User32.dll => Plik podpisany cyfrowo
C:\WINDOWS\system32\userinit.exe => Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\userinit.exe => Plik podpisany cyfrowo
C:\WINDOWS\system32\rpcss.dll => Plik podpisany cyfrowo
C:\WINDOWS\system32\dnsapi.dll => Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo
C:\WINDOWS\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo

LastRegBack: 2018-05-21 12:40

==================== Koniec  FRST.txt ============================