Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 01.12.2018 Uruchomiony przez Misiek (administrator) DESKTOP-63SFBDV (01-12-2018 14:06:08) Uruchomiony z C:\Users\Misiek\Desktop\antywirus Załadowane profile: Misiek (Dostępne profile: Misiek) Platform: Windows 10 Home Wersja 1803 17134.165 (X64) Język: Polski (Polska) Internet Explorer Wersja 11 (Domyślna przeglądarka: Chrome) Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (Qihoo 360 Technology Co. Ltd.) C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe () C:\Windows\SysWOW64\PnkBstrA.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe () C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe (LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe (QIHU 360 SOFTWARE CO. LIMITED) C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Malwarebytes) C:\Users\Misiek\Desktop\anty wirus 2.0\adwcleaner_7.2.5.0.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x64__kzf8qxf38zg5c\SkypeApp.exe () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe (Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe (Microsoft Corporation) C:\Windows\System32\smartscreen.exe (AVAST Software) E:\setup\instup.exe (TeamSpeak Systems GmbH) F:\Nowy folder\ts3client_win64.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe () E:\MagicTune Premium\GammaTray.exe (LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (Mega Limited) C:\Users\Misiek\AppData\Local\MEGAsync\MEGAsync.exe (Qihoo 360 Technology Co. Ltd.) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.17134.400_none_eb2ff40c1d41442d\TiWorker.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\asulaunch.exe (Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe ==================== Rejestr (filtrowane) =========================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Corporation) HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [290064 2018-11-30] (AVG Technologies CZ, s.r.o.) HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5885352 2018-05-30] (LogMeIn Inc.) HKLM-x32\...\Run: [QHSafeTray] => C:\Program Files (x86)\360\Total Security\safemon\360Tray.exe [669248 2018-10-29] (Qihoo 360 Technology Co. Ltd.) HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation) HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation) HKU\S-1-5-21-3987034880-1914500478-1472409243-1001\...\Run: [Steam] => "F:\Steam\steam.exe" -silent HKU\S-1-5-21-3987034880-1914500478-1472409243-1001\...\Run: [Wargaming.net Game Center] => E:\Wargaming.net\GameCenter\wgc.exe [2549624 2018-11-20] (Wargaming.net) HKU\S-1-5-21-3987034880-1914500478-1472409243-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 HKU\S-1-5-21-3987034880-1914500478-1472409243-1001\...\MountPoints2: {26270fa8-9ed8-11e8-9c71-4ccc6aaf10dc} - "G:\HiSuiteDownLoader.exe" HKU\S-1-5-21-3987034880-1914500478-1472409243-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\SysWOW64\launcher.scr [2417936 2018-01-31] () Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GammaTray.exe.lnk [2018-04-01] ShortcutTarget: GammaTray.exe.lnk -> E:\MagicTune Premium\GammaTray.exe () Startup: C:\Users\Misiek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2018-11-25] ShortcutTarget: MEGAsync.lnk -> C:\Users\Misiek\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited) Startup: C:\Users\Misiek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Xfire.lnk [2018-08-05] ShortcutTarget: Xfire.lnk -> E:\Star wars empire at war\Xfire\Xfire.exe (Xfire Inc.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.8.1 Tcpip\..\Interfaces\{0f430916-4bb7-49ba-b8e8-d7637463feed}: [DhcpNameServer] 192.168.43.1 Tcpip\..\Interfaces\{1fda1051-f16c-4541-bbab-d2ab9dd31460}: [DhcpNameServer] 192.168.8.1 Tcpip\..\Interfaces\{4d714cda-6702-4786-8bb1-9af335ee5bd1}: [DhcpNameServer] 192.168.42.129 Internet Explorer: ================== BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2018-10-24] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\ssv.dll [2017-10-21] (Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\jp2ssv.dll [2017-10-21] (Oracle Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-10-04] (Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-10-04] (Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-10-04] (Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-10-04] (Microsoft Corporation) FireFox: ======== FF Plugin: @videolan.org/vlc,version=3.0.1 -> E:\VLC\npvlc.dll [2018-02-27] (VideoLAN) FF Plugin-x32: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2017-10-21] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2017-10-21] (Oracle Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2018-09-14] (Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-11-16] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-11-16] (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.) Chrome: ======= CHR NewTab: Default -> Not-active:"chrome-extension://imhlianhlhdicjchlbmbfaefhhjencbe/newtab.html" CHR Profile: C:\Users\Misiek\AppData\Local\Google\Chrome\User Data\Default [2018-12-01] CHR Extension: (Prezentacje) - C:\Users\Misiek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13] CHR Extension: (Dokumenty) - C:\Users\Misiek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13] CHR Extension: (Dysk Google) - C:\Users\Misiek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-10-06] CHR Extension: (MEGA) - C:\Users\Misiek\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2018-11-25] CHR Extension: (YouTube) - C:\Users\Misiek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-10-06] CHR Extension: (Tampermonkey) - C:\Users\Misiek\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2018-11-25] CHR Extension: (Arkusze) - C:\Users\Misiek\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13] CHR Extension: (Dokumenty Google offline) - C:\Users\Misiek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-20] CHR Extension: (360 Internet Protection) - C:\Users\Misiek\AppData\Local\Google\Chrome\User Data\Default\Extensions\glcimepnljoholdmjchkloafkggfoijh [2018-11-29] CHR Extension: (MyJSCript) - C:\Users\Misiek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpabpfikknflecblchhfkpkcpilbkfcd [2018-11-25] CHR Extension: (NewTab) - C:\Users\Misiek\AppData\Local\Google\Chrome\User Data\Default\Extensions\imhlianhlhdicjchlbmbfaefhhjencbe [2018-04-16] CHR Extension: (AVG SafePrice | Porównania, promocje, kupony) - C:\Users\Misiek\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbckjcfnjmoiinpgddefodcighgikkgn [2018-11-30] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Misiek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03] CHR Extension: (Gmail) - C:\Users\Misiek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-10-06] CHR Extension: (Chrome Media Router) - C:\Users\Misiek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-11-01] CHR HKLM-x32\...\Chrome\Extension: [glcimepnljoholdmjchkloafkggfoijh] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [imhlianhlhdicjchlbmbfaefhhjencbe] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn] - hxxps://clients2.google.com/service/update2/crx Opera: ======= OPR Extension: (Tampermonkey) - C:\Users\Misiek\AppData\Roaming\Opera Software\Opera Stable\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2018-11-25] OPR Extension: (MyJSCript) - C:\Users\Misiek\AppData\Roaming\Opera Software\Opera Stable\Extensions\gpabpfikknflecblchhfkpkcpilbkfcd [2018-11-25] ==================== Usługi (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 aswbIDSAgent; E:\x64\aswidsagenta.exe [8188768 2018-11-27] (AVAST Software) S2 avast! Antivirus; E:\AvastSvc.exe [324000 2018-11-27] (AVAST Software) R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [324048 2018-11-30] (AVG Technologies CZ, s.r.o.) S3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\x64\aswidsagenta.exe [8237160 2018-11-30] (AVG Technologies CZ, s.r.o.) S3 AvgWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [110048 2018-11-30] (AVG Technologies CZ, s.r.o.) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [7361312 2018-10-03] () R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9669920 2018-11-02] (Microsoft Corporation) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [780928 2018-11-09] (EasyAntiCheat Ltd) S3 GalaxyClientService; E:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [686664 2018-08-30] (GOG.com) S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [8942664 2018-08-30] (GOG.com) R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3346856 2018-05-30] (LogMeIn Inc.) S3 HiPatchService; E:\HiPatchService.exe [9728 2018-03-28] (Hi-Rez Studios) [Brak podpisu cyfrowego] R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2018-04-20] () [Brak podpisu cyfrowego] S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [Brak podpisu cyfrowego] R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc.) S3 mracsvc; C:\WINDOWS\System32\mracsvc.exe [10654992 2018-06-21] (LLC Mail.Ru) R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [786800 2018-11-16] (NVIDIA Corporation) S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [786800 2018-11-16] (NVIDIA Corporation) R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [75136 2018-08-14] () R2 QHActiveDefense; C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe [965184 2018-10-29] (Qihoo 360 Technology Co. Ltd.) S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] () S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\NisSrv.exe [3917016 2018-10-23] (Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MsMpEng.exe [114208 2018-10-23] (Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r S3 Windows Driver System Updater; "C:\Program Files\System Updates\Windows Driver System Update\Windows Driver System Updater.exe" /runservice [X] ===================== Sterowniki (filtrowane) ====================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R1 360AntiHacker; C:\WINDOWS\System32\Drivers\360AntiHacker64.sys [199360 2018-10-29] (360.cn) S3 360AvFlt; C:\WINDOWS\System32\DRIVERS\360AvFlt.sys [95232 2018-10-29] (360.cn) R1 360Box64; C:\WINDOWS\System32\DRIVERS\360Box64.sys [340976 2018-10-29] (360.cn) S3 360Camera; C:\WINDOWS\System32\Drivers\360Camera64.sys [57848 2018-10-29] (360.cn) R1 360FsFlt; C:\WINDOWS\System32\DRIVERS\360FsFlt.sys [459424 2018-10-29] (360.cn) R1 360netmon; C:\WINDOWS\System32\DRIVERS\360netmon.sys [96424 2018-10-29] (360.cn) R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [201240 2018-11-27] (AVAST Software) R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdrivera.sys [230344 2018-11-27] (AVAST Software) R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsha.sys [201768 2018-11-27] (AVAST Software) R0 aswblog; C:\WINDOWS\System32\drivers\aswbloga.sys [346592 2018-11-27] (AVAST Software) R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniva.sys [59496 2018-11-27] (AVAST Software) R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [15360 2018-11-27] (AVAST Software) R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [239840 2018-11-29] (AVAST Software) S3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [46384 2018-11-27] (AVAST Software) R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42288 2018-11-27] (AVAST Software) R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [163208 2018-11-27] (AVAST Software) R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [111800 2018-11-27] (AVAST Software) R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [87432 2018-11-27] (AVAST Software) R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1028680 2018-11-27] (AVAST Software) R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [469272 2018-11-27] (AVAST Software) R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [208472 2018-11-27] (AVAST Software) R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [380464 2018-11-27] (AVAST Software) S3 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [201504 2018-11-30] (AVG Technologies CZ, s.r.o.) S3 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdrivera.sys [231104 2018-11-30] (AVG Technologies CZ, s.r.o.) S3 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsha.sys [202528 2018-11-30] (AVG Technologies CZ, s.r.o.) S3 avgblog; C:\WINDOWS\System32\drivers\avgbloga.sys [346840 2018-11-30] (AVG Technologies CZ, s.r.o.) S3 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniva.sys [59744 2018-11-30] (AVG Technologies CZ, s.r.o.) R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [15344 2018-11-30] (AVG Technologies CZ, s.r.o.) S3 avgHwid; C:\WINDOWS\System32\drivers\avgHwid.sys [46648 2018-11-30] (AVG Technologies CZ, s.r.o.) R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [42552 2018-11-30] (AVG Technologies CZ, s.r.o.) R2 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [163496 2018-11-30] (AVG Technologies CZ, s.r.o.) S3 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [112040 2018-11-30] (AVG Technologies CZ, s.r.o.) R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [87680 2018-11-30] (AVG Technologies CZ, s.r.o.) S3 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [1028920 2018-11-30] (AVG Technologies CZ, s.r.o.) R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [469520 2018-11-30] (AVG Technologies CZ, s.r.o.) S3 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [208712 2018-11-30] (AVG Technologies CZ, s.r.o.) S3 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [380704 2018-11-30] (AVG Technologies CZ, s.r.o.) R1 BAPIDRV; C:\WINDOWS\System32\DRIVERS\BAPIDRV64.sys [218824 2018-10-29] (360.cn) S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2018-04-20] (Huawei Technologies Co., Ltd.) S3 FairplayKD; C:\ProgramData\MTA San Andreas All\Common\temp\FairplayKD.sys [92168 2018-11-25] (Multi Theft Auto) R3 Hamachi; C:\WINDOWS\System32\drivers\Hamdrv.sys [45680 2017-06-29] (LogMeIn Inc.) U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2018-04-20] (Huawei Technologies Co., Ltd.) R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115448 2013-11-21] (EZB Systems, Inc.) R1 MagicTune; C:\WINDOWS\system32\drivers\MTiCtwl.sys [23096 2008-11-04] (Samsung Electronics, Inc. ) S3 mracdrv; C:\WINDOWS\System32\drivers\mracdrv.sys [9871128 2018-06-21] (LLC Mail.Ru) R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_e59b844303b9907e\nvlddmkm.sys [20395400 2018-11-16] (NVIDIA Corporation) S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2018-10-25] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [70024 2018-10-01] (NVIDIA Corporation) R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [74576 2018-10-01] (NVIDIA Corporation) R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [604160 2018-04-12] (Realtek ) R3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [45928 2017-10-06] (SteelSeries ApS) S3 TTDrv; E:\KOPLAYER\vbox\TTDrv.sys [281672 2018-06-19] (Oracle Corporation) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46184 2018-10-23] (Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [328696 2018-10-23] (Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [60408 2018-10-23] (Microsoft Corporation) R1 YSDrv; C:\Program Files (x86)\Bignox\BigNoxVM\RT\YSDrv.sys [310536 2018-08-13] (BigNox Corporation) U3 avgbdisk; Brak ImagePath S3 BstkDrv; \??\C:\Program Files (x86)\BlueStacks\BstkDrv.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc - utworzone pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2018-12-01 14:04 - 2018-11-27 20:54 - 000378584 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe 2018-12-01 14:01 - 2018-12-01 14:02 - 000000000 ____D C:\AdwCleaner 2018-12-01 14:00 - 2018-12-01 14:01 - 000000000 ____D C:\Users\Misiek\Desktop\anty wirus 2.0 2018-12-01 13:57 - 2018-12-01 14:06 - 000000000 ____D C:\FRST 2018-12-01 13:56 - 2018-12-01 13:58 - 000000000 ____D C:\Users\Misiek\Desktop\antywirus 2018-11-30 22:35 - 2018-11-30 22:36 - 000000000 ____D C:\Users\Misiek\AppData\Roaming\MMFApplications 2018-11-30 22:11 - 2018-12-01 14:03 - 000004266 _____ C:\WINDOWS\System32\Tasks\Antivirus Emergency Update 2018-11-30 22:11 - 2018-11-30 22:11 - 000001890 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG AntiVirus FREE.lnk 2018-11-30 22:11 - 2018-11-30 22:11 - 000000000 ____D C:\WINDOWS\System32\Tasks\AVG 2018-11-30 22:11 - 2018-11-30 22:11 - 000000000 ____D C:\Users\Misiek\AppData\Roaming\AVG 2018-11-30 22:11 - 2018-11-30 22:11 - 000000000 ____D C:\Users\Misiek\AppData\Local\AVG 2018-11-30 22:06 - 2018-11-30 22:06 - 001028920 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSnx.sys 2018-11-30 22:06 - 2018-11-30 22:06 - 000469520 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSP.sys 2018-11-30 22:06 - 2018-11-30 22:06 - 000380704 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgVmm.sys 2018-11-30 22:06 - 2018-11-30 22:06 - 000378640 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe 2018-11-30 22:06 - 2018-11-30 22:06 - 000346840 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbloga.sys 2018-11-30 22:06 - 2018-11-30 22:06 - 000231104 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsdrivera.sys 2018-11-30 22:06 - 2018-11-30 22:06 - 000208712 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgStm.sys 2018-11-30 22:06 - 2018-11-30 22:06 - 000202528 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsha.sys 2018-11-30 22:06 - 2018-11-30 22:06 - 000201504 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArPot.sys 2018-11-30 22:06 - 2018-11-30 22:06 - 000163496 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgMonFlt.sys 2018-11-30 22:06 - 2018-11-30 22:06 - 000112040 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRdr2.sys 2018-11-30 22:06 - 2018-11-30 22:06 - 000087680 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRvrt.sys 2018-11-30 22:06 - 2018-11-30 22:06 - 000059744 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbuniva.sys 2018-11-30 22:06 - 2018-11-30 22:06 - 000046648 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgHwid.sys 2018-11-30 22:06 - 2018-11-30 22:06 - 000042552 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgKbd.sys 2018-11-30 22:06 - 2018-11-30 22:06 - 000015344 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgElam.sys 2018-11-30 22:06 - 2018-11-30 22:06 - 000000000 ____D C:\Program Files\Common Files\AVG 2018-11-30 22:03 - 2018-11-30 22:03 - 005660510 _____ (Swearware) C:\ComboFix.exe 2018-11-30 21:20 - 2018-11-30 21:20 - 000000000 ___HD C:\$SysReset 2018-11-30 21:20 - 2018-11-30 21:20 - 000000000 ____D C:\$Windows.~BT 2018-11-30 20:08 - 2018-11-16 00:29 - 000133160 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe 2018-11-30 20:02 - 2018-11-16 20:40 - 019712744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2018-11-30 20:02 - 2018-11-16 20:40 - 016989208 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2018-11-30 20:02 - 2018-11-16 20:40 - 015909720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll 2018-11-30 20:02 - 2018-11-16 20:40 - 013203592 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll 2018-11-30 20:02 - 2018-11-16 20:40 - 004257568 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll 2018-11-30 20:02 - 2018-11-16 20:40 - 001471632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFThevc.dll 2018-11-30 20:02 - 2018-11-16 20:40 - 001462416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll 2018-11-30 20:02 - 2018-11-16 20:40 - 001167792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll 2018-11-30 20:02 - 2018-11-16 20:40 - 001152008 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFThevc.dll 2018-11-30 20:02 - 2018-11-16 20:40 - 001145928 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll 2018-11-30 20:02 - 2018-11-16 20:40 - 000914608 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll 2018-11-30 20:02 - 2018-11-16 20:40 - 000822584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll 2018-11-30 20:02 - 2018-11-16 20:40 - 000794840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll 2018-11-30 20:02 - 2018-11-16 20:40 - 000637688 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2018-11-30 20:02 - 2018-11-16 19:43 - 000047384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll 2018-11-30 20:02 - 2018-11-16 16:44 - 000978128 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2018-11-30 20:02 - 2018-11-16 16:44 - 000978128 _____ C:\WINDOWS\system32\vulkan-1.dll 2018-11-30 20:02 - 2018-11-16 16:44 - 000845008 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2018-11-30 20:02 - 2018-11-16 16:44 - 000845008 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2018-11-30 20:02 - 2018-11-16 16:44 - 000552144 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2018-11-30 20:02 - 2018-11-16 16:44 - 000456904 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2018-11-30 20:02 - 2018-11-16 16:44 - 000267984 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2018-11-30 20:02 - 2018-11-16 16:44 - 000267984 _____ C:\WINDOWS\system32\vulkaninfo.exe 2018-11-30 20:02 - 2018-11-16 16:44 - 000243408 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2018-11-30 20:02 - 2018-11-16 16:44 - 000243408 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2018-11-30 20:02 - 2018-11-16 16:42 - 002003424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2018-11-30 20:02 - 2018-11-16 16:42 - 001460128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2018-11-30 20:02 - 2018-11-16 16:42 - 001126280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2018-11-30 20:02 - 2018-11-16 16:42 - 000631392 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll 2018-11-30 20:02 - 2018-11-16 16:42 - 000521472 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll 2018-11-30 20:02 - 2018-11-16 16:41 - 040256992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll 2018-11-30 20:02 - 2018-11-16 16:41 - 035154400 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll 2018-11-30 20:02 - 2018-11-16 16:41 - 004945288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2018-11-30 20:02 - 2018-11-16 16:41 - 004316040 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2018-11-30 20:02 - 2018-11-16 16:41 - 002017536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6441701.dll 2018-11-30 20:02 - 2018-11-16 16:41 - 001510656 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2018-11-30 20:02 - 2018-11-16 16:41 - 001468192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6441701.dll 2018-11-30 20:02 - 2018-11-16 16:41 - 000750472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll 2018-11-30 20:02 - 2018-11-16 16:41 - 000609056 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll 2018-11-30 20:02 - 2018-11-16 02:25 - 000048138 _____ C:\WINDOWS\system32\nvinfo.pb 2018-11-30 09:13 - 2018-11-30 09:14 - 006467136 _____ (Wargaming.net (c) 2009-2018 ) C:\Users\Misiek\Documents\world_of_warships_install_eu_bq6k95ykgcl8.exe 2018-11-29 18:33 - 2018-11-30 20:08 - 000000000 ____D C:\WINDOWS\LastGood.Tmp 2018-11-29 18:27 - 2018-11-29 18:27 - 000002148 _____ C:\Users\Misiek\Desktop\Czyszczenie.lnk 2018-11-29 18:26 - 2018-11-29 18:26 - 000000000 ____D C:\WINDOWS\system32\CleanLog 2018-11-29 17:47 - 2018-11-30 17:49 - 000000000 ____D C:\Users\Misiek\AppData\Roaming\360DrvMgr 2018-11-29 17:42 - 2018-11-30 21:36 - 000000000 __SHD C:\$360Section 2018-11-29 17:42 - 2018-11-29 17:42 - 000000000 ____D C:\WINDOWS\Tasks\360Disabled 2018-11-29 17:40 - 2018-11-30 21:36 - 000000000 ____D C:\ProgramData\360Quarant 2018-11-29 17:39 - 2018-12-01 14:04 - 000000000 ____D C:\Users\Misiek\AppData\LocalLow\360WD 2018-11-29 17:39 - 2018-11-30 23:58 - 000000000 ____D C:\ProgramData\360safe 2018-11-29 17:39 - 2018-11-30 21:18 - 000000000 ____D C:\ProgramData\360TotalSecurity 2018-11-29 17:39 - 2018-11-29 18:36 - 000000000 ____D C:\Users\Misiek\AppData\Roaming\360safe 2018-11-29 17:39 - 2018-11-29 18:28 - 000000000 ____D C:\Users\Misiek\AppData\Roaming\360TotalSecurity 2018-11-29 17:39 - 2018-11-29 17:39 - 000001226 _____ C:\Users\Public\Desktop\360 Total Security.lnk 2018-11-29 17:39 - 2018-11-29 17:39 - 000000000 _RSHD C:\360SANDBOX 2018-11-29 17:39 - 2018-11-29 17:39 - 000000000 ____D C:\Users\Misiek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\360 Security Center 2018-11-29 17:39 - 2018-11-29 17:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\360 Security Center 2018-11-29 17:39 - 2018-11-29 17:39 - 000000000 ____D C:\ProgramData\1543509552_00000000_base 2018-11-29 17:39 - 2018-11-29 17:39 - 000000000 ____D C:\Program Files (x86)\360 2018-11-29 17:39 - 2018-10-29 07:07 - 000459424 _____ (360.cn) C:\WINDOWS\system32\Drivers\360FsFlt.sys 2018-11-29 17:39 - 2018-10-29 07:07 - 000340976 _____ (360.cn) C:\WINDOWS\system32\Drivers\360Box64.sys 2018-11-29 17:39 - 2018-10-29 07:07 - 000218824 _____ (360.cn) C:\WINDOWS\system32\Drivers\BAPIDRV64.sys 2018-11-29 17:39 - 2018-10-29 07:07 - 000199360 _____ (360.cn) C:\WINDOWS\system32\Drivers\360AntiHacker64.sys 2018-11-29 17:39 - 2018-10-29 07:07 - 000096424 _____ (360.cn) C:\WINDOWS\system32\Drivers\360netmon.sys 2018-11-29 17:39 - 2018-10-29 07:07 - 000095232 _____ (360.cn) C:\WINDOWS\system32\Drivers\360AvFlt.sys 2018-11-29 17:39 - 2018-10-29 07:07 - 000057848 _____ (360.cn) C:\WINDOWS\system32\Drivers\360Camera64.sys 2018-11-29 17:37 - 2018-11-29 17:37 - 001530472 _____ (QIHU 360 SOFTWARE CO. LIMITED) C:\Users\Misiek\Documents\360TS_Setup_US_ADW_0002_6.6.0.1046.exe 2018-11-29 17:25 - 2018-11-29 17:46 - 000000000 ____D C:\Users\Misiek\AppData\LocalLow\uTorrent 2018-11-29 16:25 - 2018-11-29 16:25 - 000000000 ___HD C:\OneDriveTemp 2018-11-27 21:08 - 2018-12-01 14:03 - 000000000 _____ C:\WINDOWS\SysWOW64\last.dump 2018-11-27 21:08 - 2018-11-30 21:34 - 000003920 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update 2018-11-27 21:08 - 2018-11-27 21:08 - 000000000 ____D C:\WINDOWS\System32\Tasks\Avast Software 2018-11-27 21:01 - 2018-11-29 17:34 - 000239840 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys 2018-11-27 21:01 - 2018-11-27 20:54 - 001028680 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys 2018-11-27 21:01 - 2018-11-27 20:54 - 000469272 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys 2018-11-27 21:01 - 2018-11-27 20:54 - 000380464 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys 2018-11-27 21:01 - 2018-11-27 20:54 - 000346592 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbloga.sys 2018-11-27 21:01 - 2018-11-27 20:54 - 000230344 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdrivera.sys 2018-11-27 21:01 - 2018-11-27 20:54 - 000208472 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys 2018-11-27 21:01 - 2018-11-27 20:54 - 000201768 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsha.sys 2018-11-27 21:01 - 2018-11-27 20:54 - 000201240 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys 2018-11-27 21:01 - 2018-11-27 20:54 - 000163208 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys 2018-11-27 21:01 - 2018-11-27 20:54 - 000111800 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys 2018-11-27 21:01 - 2018-11-27 20:54 - 000087432 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys 2018-11-27 21:01 - 2018-11-27 20:54 - 000059496 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniva.sys 2018-11-27 21:01 - 2018-11-27 20:54 - 000046384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys 2018-11-27 21:01 - 2018-11-27 20:54 - 000042288 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys 2018-11-27 21:01 - 2018-11-27 20:54 - 000015360 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys 2018-11-27 20:54 - 2018-11-27 20:54 - 000000000 ____D C:\Program Files\Common Files\AVAST Software 2018-11-27 20:53 - 2018-11-27 20:54 - 000000000 ____D C:\ProgramData\AVAST Software 2018-11-26 21:52 - 2018-11-26 21:52 - 000000000 ____D C:\Users\Misiek\AppData\Roaming\HelloGames 2018-11-25 22:11 - 2018-11-25 22:11 - 000000000 ____D C:\Users\Misiek\AppData\Local\Skyrim 2018-11-25 22:11 - 2018-11-25 22:11 - 000000000 ____D C:\ProgramData\Steam 2018-11-25 19:57 - 2018-11-25 19:57 - 000000002 _____ C:\Users\Misiek\AppData\Local\imw.ini 2018-11-25 19:56 - 2018-11-29 18:26 - 000002896 _____ C:\WINDOWS\System32\Tasks\{74C5D15A-BE9F-F7A8-E2BE-0879946C602D} 2018-11-25 19:49 - 2018-11-29 18:27 - 000000000 ____D C:\Program Files (x86)\UltraISO 2018-11-25 19:49 - 2018-11-25 19:49 - 000000000 ____D C:\Users\Misiek\Documents\My ISO Files 2018-11-25 19:49 - 2018-11-25 19:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UltraISO 2018-11-25 17:50 - 2018-11-25 17:50 - 000000000 ____D C:\Users\Misiek\AppData\Local\Skyrim Special Edition 2018-11-25 17:39 - 2018-11-25 22:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bethesda Softworks 2018-11-25 16:49 - 2018-11-25 16:49 - 000000000 ___RD C:\Users\Misiek\Documents\MEGAsync 2018-11-25 16:41 - 2018-11-25 16:41 - 000000000 ____D C:\WINDOWS\System32\Tasks\MEGA 2018-11-25 16:41 - 2018-11-25 16:41 - 000000000 ____D C:\Users\Misiek\AppData\Local\Mega Limited 2018-11-25 16:40 - 2018-11-25 16:40 - 000000000 ____D C:\Users\Misiek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MEGAsync 2018-11-25 16:40 - 2018-11-25 16:40 - 000000000 ____D C:\Users\Misiek\AppData\Local\MEGAsync 2018-11-23 00:48 - 2018-11-23 00:48 - 000751259 _____ C:\Users\Misiek\Downloads\sztosik-stronka.zip 2018-11-23 00:48 - 2018-11-23 00:48 - 000000000 ____D C:\Users\Misiek\Desktop\strona internetowy 2018-11-10 08:26 - 2018-11-10 08:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Europa Universalis IV Dharma 2018-11-10 02:28 - 2018-11-10 02:35 - 2706411504 _____ C:\Users\Misiek\Downloads\Europa.Universalis.IV.Dharma.rar 2018-11-10 01:20 - 2018-11-10 01:20 - 000000000 ____D C:\Users\Misiek\AppData\Local\GameAnalytics 2018-11-09 14:35 - 2018-11-10 01:20 - 000000000 ____D C:\Users\Misiek\AppData\Roaming\EasyAntiCheat 2018-11-07 13:23 - 2018-11-07 13:23 - 000000000 ____D C:\Users\Misiek\AppData\LocalLow\Circle Empires 2018-11-07 13:22 - 2018-11-07 13:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Circle Empires [GOG.com] 2018-11-07 13:21 - 2018-11-07 13:21 - 000000000 ____D C:\GOG Games 2018-11-07 13:20 - 2018-11-07 13:20 - 205355706 _____ C:\Users\Misiek\Downloads\Circle.Empires.Apex.Monsters.v1.2.1.GOG.rar 2018-11-06 17:06 - 2018-11-06 17:06 - 000000000 ____D C:\Users\Misiek\AppData\LocalLow\Klei 2018-11-06 16:51 - 2018-11-06 16:52 - 527775325 _____ C:\Users\Misiek\Downloads\Oxygen.Not.Included.v291640.rar 2018-11-05 00:00 - 2018-11-29 17:42 - 000000000 ____D C:\ProgramData\Performance Tool 2018-11-02 17:15 - 2018-11-02 17:15 - 000074042 _____ C:\Users\Misiek\Downloads\The Forest Co-op Crack.rar 2018-11-02 17:14 - 2018-11-02 17:14 - 000000000 ____D C:\Users\Misiek\AppData\LocalLow\SKS 2018-11-02 17:13 - 2018-11-02 17:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Forest ==================== Jeden miesiąc - zmodyfikowane pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2018-12-01 14:06 - 2017-10-06 20:10 - 000000000 ____D C:\ProgramData\NVIDIA 2018-12-01 14:05 - 2017-10-26 13:41 - 000000000 ____D C:\Users\Misiek\AppData\Local\LogMeIn Hamachi 2018-12-01 14:04 - 2018-04-12 00:38 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2018-12-01 14:04 - 2017-10-06 18:23 - 000000000 ____D C:\Users\Misiek\AppData\Roaming\TS3Client 2018-12-01 14:03 - 2018-05-20 22:17 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2018-12-01 14:03 - 2018-04-12 00:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2018-12-01 14:03 - 2018-04-11 22:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2018-12-01 13:55 - 2017-10-06 18:12 - 000000000 ____D C:\Users\Misiek\AppData\Local\Spotify 2018-12-01 13:55 - 2017-10-06 18:10 - 000000000 ____D C:\Users\Misiek\AppData\Roaming\Spotify 2018-12-01 13:40 - 2018-05-20 22:10 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2018-12-01 13:40 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\AppReadiness 2018-11-30 23:58 - 2018-07-27 22:00 - 000000000 ____D C:\Users\Misiek\Desktop\Geometry.Dash.Update.19.07.2018 2018-11-30 22:46 - 2018-03-13 16:38 - 000000000 ____D C:\ProgramData\AVG 2018-11-30 22:07 - 2018-03-13 22:33 - 000002242 _____ C:\Users\Misiek\Desktop\Discord.lnk 2018-11-30 21:36 - 2018-04-12 00:38 - 000000000 ___HD C:\Program Files\WindowsApps 2018-11-30 21:36 - 2017-12-29 16:59 - 000000000 ____D C:\Users\Misiek\AppData\Local\Packages 2018-11-30 21:26 - 2018-05-20 22:20 - 001763504 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2018-11-30 21:26 - 2018-04-12 16:51 - 000782334 _____ C:\WINDOWS\system32\perfh015.dat 2018-11-30 21:26 - 2018-04-12 16:51 - 000151496 _____ C:\WINDOWS\system32\perfc015.dat 2018-11-30 21:26 - 2018-04-12 00:36 - 000000000 ____D C:\WINDOWS\INF 2018-11-30 21:20 - 2017-10-06 20:10 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2018-11-30 20:18 - 2017-10-06 17:35 - 000000000 ____D C:\Users\Misiek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2018-11-30 20:08 - 2017-10-06 20:10 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2018-11-30 20:08 - 2017-10-06 18:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2018-11-30 20:06 - 2017-10-06 20:10 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2018-11-30 20:06 - 2017-10-06 18:38 - 000000000 ____D C:\Users\Misiek\AppData\Local\NVIDIA 2018-11-30 18:09 - 2017-10-22 09:51 - 000000000 ____D C:\Users\Misiek\AppData\Roaming\.minecraft 2018-11-29 18:34 - 2018-05-25 15:54 - 000003976 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2018-11-29 18:34 - 2018-05-25 15:54 - 000003940 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2018-11-29 18:34 - 2018-05-20 22:17 - 000004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2018-11-29 18:34 - 2018-05-20 22:17 - 000004106 _____ C:\WINDOWS\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2018-11-29 18:34 - 2017-10-06 18:38 - 000000000 ____D C:\Users\Misiek\AppData\Local\NVIDIA Corporation 2018-11-29 18:33 - 2018-05-25 15:54 - 000003926 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2018-11-29 18:33 - 2018-05-25 15:54 - 000003926 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2018-11-29 18:33 - 2018-05-25 15:54 - 000003926 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2018-11-29 18:33 - 2018-05-20 22:17 - 000003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2018-11-29 18:33 - 2018-05-20 22:17 - 000003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2018-11-29 18:33 - 2018-05-20 22:17 - 000003016 _____ C:\WINDOWS\System32\Tasks\nvtmrep_{b2fe1952-0186-46c3-baec-a80aa35ac5b8} 2018-11-29 18:33 - 2018-05-20 22:17 - 000002898 _____ C:\WINDOWS\System32\Tasks\nvtmmon_{b2fe1952-0186-46c3-baec-a80aa35ac5b8} 2018-11-29 18:27 - 2018-04-01 14:24 - 000000000 ____D C:\Users\Misiek\AppData\Roaming\uTorrent 2018-11-29 18:27 - 2017-10-25 20:32 - 000000000 ____D C:\Users\Misiek\AppData\Local\Downloaded Installations 2018-11-29 18:27 - 2017-10-21 10:51 - 000000000 ____D C:\Users\Misiek\AppData\Local\CrashDumps 2018-11-29 18:26 - 2018-06-17 13:17 - 000003606 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater 2018-11-29 18:26 - 2018-05-20 22:17 - 000003556 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2018-11-29 18:26 - 2018-05-20 22:17 - 000003332 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2018-11-29 18:25 - 2018-08-30 18:09 - 000000000 ____D C:\Program Files (x86)\SkinMinerNv 2018-11-29 17:42 - 2018-06-17 13:17 - 000004010 _____ C:\WINDOWS\System32\Tasks\adobe flash player ppapi notifier 2018-11-29 17:42 - 2018-04-15 22:50 - 000000000 ___RD C:\Users\Misiek\Desktop\Coś czego nie wiem 2018-11-29 17:42 - 2017-10-16 21:38 - 000000000 ____D C:\Users\Misiek\Desktop\gry 2018-11-29 17:28 - 2018-05-20 22:17 - 000003380 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3987034880-1914500478-1472409243-1001 2018-11-29 17:28 - 2018-05-20 22:13 - 000002414 _____ C:\Users\Misiek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2018-11-29 17:28 - 2017-10-06 16:08 - 000000000 ___RD C:\Users\Misiek\OneDrive 2018-11-29 17:25 - 2018-10-27 10:41 - 000000007 _____ C:\ProgramData\version_changelog.txt 2018-11-28 21:43 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\NDF 2018-11-27 16:28 - 2018-05-21 16:42 - 000000000 ____D C:\Users\Misiek\AppData\Local\D3DSCache 2018-11-27 00:37 - 2017-10-06 16:18 - 000002307 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2018-11-26 19:26 - 2017-10-12 17:32 - 000000000 ____D C:\Users\Misiek\AppData\Local\UnrealEngine 2018-11-26 19:15 - 2018-05-10 19:59 - 000000000 ____D C:\Users\Misiek\AppData\Local\PlaceholderTileLogoFolder 2018-11-26 15:16 - 2018-08-06 14:11 - 000003688 _____ C:\WINDOWS\System32\Tasks\BlueStacksHelper 2018-11-26 14:53 - 2018-04-12 00:30 - 000000000 ____D C:\WINDOWS\CbsTemp 2018-11-26 14:35 - 2017-11-02 17:38 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2018-11-25 22:04 - 2017-10-15 18:07 - 000000000 ____D C:\Users\Misiek\Documents\My Games 2018-11-25 19:56 - 2018-05-20 22:13 - 000000000 ____D C:\Users\Misiek 2018-11-22 19:38 - 2018-03-20 19:26 - 000000115 _____ C:\Users\Misiek\Desktop\Hasło do lola.txt 2018-11-20 17:56 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed 2018-11-20 17:56 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\Macromed 2018-11-20 08:17 - 2018-03-07 13:48 - 000000000 ____D C:\ProgramData\boost_interprocess 2018-11-16 20:40 - 2017-11-09 04:25 - 004999080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll 2018-11-16 19:43 - 2017-11-09 04:38 - 001682896 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll 2018-11-16 19:43 - 2017-11-09 04:38 - 000227896 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys 2018-11-16 14:55 - 2017-10-06 19:23 - 000000000 ____D C:\Program Files\rempl 2018-11-16 12:55 - 2018-05-25 15:54 - 002864496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll 2018-11-16 12:55 - 2018-05-25 15:54 - 002264432 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll 2018-11-16 12:55 - 2018-05-25 15:54 - 001322864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll 2018-11-16 00:24 - 2017-10-06 20:10 - 005338424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll 2018-11-16 00:24 - 2017-10-06 20:10 - 002620272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll 2018-11-16 00:24 - 2017-10-06 20:10 - 001767736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll 2018-11-16 00:24 - 2017-10-06 20:10 - 000651064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll 2018-11-16 00:24 - 2017-10-06 20:10 - 000450416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll 2018-11-16 00:24 - 2017-10-06 20:10 - 000124784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll 2018-11-16 00:24 - 2017-10-06 20:10 - 000082984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll 2018-11-15 20:28 - 2017-10-06 18:38 - 000001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat 2018-11-15 15:39 - 2017-10-06 19:22 - 000000000 ____D C:\WINDOWS\system32\MRT 2018-11-15 15:37 - 2017-10-06 19:22 - 137810048 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2018-11-14 06:56 - 2017-10-06 20:10 - 008416032 _____ C:\WINDOWS\system32\nvcoproc.bin 2018-11-09 12:43 - 2018-08-23 13:07 - 000000000 ____D C:\Users\Misiek\AppData\LocalLow\Mozilla 2018-11-06 17:06 - 2017-11-01 21:53 - 000000000 ____D C:\Users\Misiek\Documents\Klei 2018-11-02 09:09 - 2018-07-11 20:05 - 000000000 ____D C:\ProgramData\Packages ==================== Pliki w katalogu głównym wybranych folderów ======= 2018-04-12 00:34 - 2018-04-12 00:34 - 000178688 ____N (Microsoft Corporation) C:\Users\Misiek\ieiiEX.exe 2018-04-12 00:34 - 2018-04-12 00:34 - 000059904 ____N (Microsoft Corporation) C:\Users\Misiek\LSuLul.exe 2018-01-28 16:18 - 2018-01-28 16:18 - 000009979 _____ () C:\Users\Misiek\AppData\Roaming\.freeciv-client-rc-2.5 2018-07-17 20:43 - 2018-07-17 20:43 - 039293312 _____ () C:\Users\Misiek\AppData\Roaming\gameboxsetup.exe 2018-11-25 19:57 - 2018-11-25 19:57 - 000000002 _____ () C:\Users\Misiek\AppData\Local\imw.ini 2018-06-07 12:09 - 2018-06-07 12:09 - 000000855 _____ () C:\Users\Misiek\AppData\Local\recently-used.xbel Niektóre pliki w TEMP: ==================== 2018-05-25 16:23 - 2018-05-22 21:09 - 000638760 _____ (NVIDIA Corporation) C:\Users\Misiek\AppData\Local\Temp\nvSCPAPI.dll 2018-05-25 16:23 - 2018-05-22 21:09 - 000728360 _____ (NVIDIA Corporation) C:\Users\Misiek\AppData\Local\Temp\nvSCPAPI64.dll 2018-11-30 20:03 - 2018-05-22 21:09 - 000395048 _____ (NVIDIA Corporation) C:\Users\Misiek\AppData\Local\Temp\nvStInst.exe ==================== Bamital & volsnap ====================== (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) C:\WINDOWS\system32\winlogon.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\wininit.exe => Plik podpisany cyfrowo C:\WINDOWS\explorer.exe => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\explorer.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\svchost.exe => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\svchost.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\services.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\User32.dll => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\User32.dll => Plik podpisany cyfrowo C:\WINDOWS\system32\userinit.exe => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\userinit.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\rpcss.dll => Plik podpisany cyfrowo C:\WINDOWS\system32\dnsapi.dll => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo C:\WINDOWS\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo LastRegBack: 2018-05-20 22:10 ==================== Koniec FRST.txt ============================