Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x86) Wersja: 25-02-2019 01 Uruchomiony przez Piotr (administrator) JEŻ (25-02-2019 20:08:15) Uruchomiony z E:\downloads Załadowane profile: Piotr (Dostępne profile: Piotr & Administrator & DefaultAppPool) Platform: Microsoft Windows 10 Home Wersja 1803 17134.590 (X86) Język: Polski (Polska) Domyślna przeglądarka: FF Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\Internet Security Essentials\isesrv.exe (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\mqsvc.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (Gigabyte Technology CO., LTD.) [Brak podpisu cyfrowego] C:\Program Files\GIGABYTE\smart6\timelock\TimeMgmtDaemon.exe (DEVGURU CO LTD -> DEVGURU Co., LTD.) C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\snmp.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\snmptrap.exe (Wondershare software CO., LIMITED -> Wondershare) C:\Program Files\Wondershare\WAF\2.3.1.204\WsAppService.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cistray.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe (Microsoft Corporation) [Brak podpisu cyfrowego] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.222.0_x86__kzf8qxf38zg5c\SkypeApp.exe () [Brak podpisu cyfrowego] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.222.0_x86__kzf8qxf38zg5c\SkypeBackgroundHost.exe () [Brak podpisu cyfrowego] C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x86__8wekyb3d8bbwe\Video.UI.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\Internet Security Essentials\vkise.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe (Rainy -> ) C:\Program Files\Rainlendar2\Rainlendar2.exe (Gigabyte Technology CO., LTD.) [Brak podpisu cyfrowego] C:\Program Files\GIGABYTE\smart6\timelock\AlarmClock.exe (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe (Microsoft Windows -> Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe ==================== Rejestr (filtrowane) =========================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [486816 2018-04-11] (Microsoft Windows -> Microsoft Corporation) HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2403104 2014-07-25] (NVIDIA Corporation -> NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap.dll [1126480 2014-07-25] (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [Brak podpisu cyfrowego] HKLM\...\Run: [PrnStatusMX] => C:\Program Files\Hewlett-Packard\PrnStatusMX\PrnStatusMX.exe [1077248 2012-07-04] (Microsoft Windows Hardware Compatibility Publisher -> Marvell Semiconductor, Inc.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [16557512 2018-08-01] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [IseUI] => C:\Program Files\COMODO\Internet Security Essentials\vkise.exe [4260040 2018-06-22] (Comodo Security Solutions, Inc. -> COMODO) HKLM\...\Run: [COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10}] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1491648 2018-12-17] (Comodo Security Solutions, Inc. -> COMODO) HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle America, Inc. -> Oracle Corporation) HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [516608 2018-04-11] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [516608 2018-04-11] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-21-2399471354-2781755390-4139130681-1000\...\Run: [Rainlendar2] => C:\Program Files\Rainlendar2\Rainlendar2.exe [2739240 2015-11-13] (Rainy -> ) HKU\S-1-5-21-2399471354-2781755390-4139130681-1000\...\Run: [Legimi dla Kindle] => C:\Users\Piotr\AppData\Local\Programs\Legimi dla Kindle\Legimi dla Kindle.exe [1135008 2017-11-27] (Legimi -> Legimi sp. z o.o.) [Brak podpisu cyfrowego] HKU\S-1-5-21-2399471354-2781755390-4139130681-1000\...\Run: [ISUSPM Startup] => C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [249856 2005-08-11] (Macrovision Corporation) [Brak podpisu cyfrowego] HKU\S-1-5-21-2399471354-2781755390-4139130681-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [14679256 2019-01-10] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-2399471354-2781755390-4139130681-1000\...\Run: [QNPlus] => [X] HKU\S-1-5-21-2399471354-2781755390-4139130681-1000\...\MountPoints2: {f36089be-a7b5-11e0-ad3a-806e6f6e6963} - "D:\Autorun.exe" HKLM\...\Drivers32: [vidc.XVID] => C:\WINDOWS\system32\xvidvfw.dll [179200 2009-01-25] () [Brak podpisu cyfrowego] HKLM\Software\...\AppCompatFlags\Custom\Acrobat.exe: [{f8c4cc07-6dc4-418f-b72b-304fcdb64052}.sdb] -> EMET_Database HKLM\Software\...\AppCompatFlags\Custom\AcroRd32.exe: [{f8c4cc07-6dc4-418f-b72b-304fcdb64052}.sdb] -> EMET_Database HKLM\Software\...\AppCompatFlags\Custom\EXCEL.EXE: [{f8c4cc07-6dc4-418f-b72b-304fcdb64052}.sdb] -> EMET_Database HKLM\Software\...\AppCompatFlags\Custom\iexplore.exe: [{f8c4cc07-6dc4-418f-b72b-304fcdb64052}.sdb] -> EMET_Database HKLM\Software\...\AppCompatFlags\Custom\INFOPATH.EXE: [{f8c4cc07-6dc4-418f-b72b-304fcdb64052}.sdb] -> EMET_Database HKLM\Software\...\AppCompatFlags\Custom\java.exe: [{f8c4cc07-6dc4-418f-b72b-304fcdb64052}.sdb] -> EMET_Database HKLM\Software\...\AppCompatFlags\Custom\javaw.exe: [{f8c4cc07-6dc4-418f-b72b-304fcdb64052}.sdb] -> EMET_Database HKLM\Software\...\AppCompatFlags\Custom\javaws.exe: [{f8c4cc07-6dc4-418f-b72b-304fcdb64052}.sdb] -> EMET_Database HKLM\Software\...\AppCompatFlags\Custom\LYNC.EXE: [{f8c4cc07-6dc4-418f-b72b-304fcdb64052}.sdb] -> EMET_Database HKLM\Software\...\AppCompatFlags\Custom\MSACCESS.EXE: [{f8c4cc07-6dc4-418f-b72b-304fcdb64052}.sdb] -> EMET_Database HKLM\Software\...\AppCompatFlags\Custom\MSPUB.EXE: [{f8c4cc07-6dc4-418f-b72b-304fcdb64052}.sdb] -> EMET_Database HKLM\Software\...\AppCompatFlags\Custom\OIS.EXE: [{f8c4cc07-6dc4-418f-b72b-304fcdb64052}.sdb] -> EMET_Database HKLM\Software\...\AppCompatFlags\Custom\OUTLOOK.EXE: [{f8c4cc07-6dc4-418f-b72b-304fcdb64052}.sdb] -> EMET_Database HKLM\Software\...\AppCompatFlags\Custom\POWERPNT.EXE: [{f8c4cc07-6dc4-418f-b72b-304fcdb64052}.sdb] -> EMET_Database HKLM\Software\...\AppCompatFlags\Custom\PPTVIEW.EXE: [{f8c4cc07-6dc4-418f-b72b-304fcdb64052}.sdb] -> EMET_Database HKLM\Software\...\AppCompatFlags\Custom\VISIO.EXE: [{f8c4cc07-6dc4-418f-b72b-304fcdb64052}.sdb] -> EMET_Database HKLM\Software\...\AppCompatFlags\Custom\VPREVIEW.EXE: [{f8c4cc07-6dc4-418f-b72b-304fcdb64052}.sdb] -> EMET_Database HKLM\Software\...\AppCompatFlags\Custom\WINWORD.EXE: [{f8c4cc07-6dc4-418f-b72b-304fcdb64052}.sdb] -> EMET_Database HKLM\Software\...\AppCompatFlags\Custom\wordpad.exe: [{f8c4cc07-6dc4-418f-b72b-304fcdb64052}.sdb] -> EMET_Database HKLM\Software\...\AppCompatFlags\InstalledSDB\{f8c4cc07-6dc4-418f-b72b-304fcdb64052}: [DatabasePath] -> C:\WINDOWS\AppPatch\Custom\{f8c4cc07-6dc4-418f-b72b-304fcdb64052}.sdb HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\72.0.3626.119\Installer\chrmstp.exe [2019-02-22] (Google LLC -> Google Inc.) HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] -> Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TP-LINK Wireless Configuration Utility.lnk [2018-09-29] ShortcutTarget: TP-LINK Wireless Configuration Utility.lnk -> C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe () [Brak podpisu cyfrowego] GroupPolicy: Ograniczenia ? <==== UWAGA ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{0288e6d6-baed-4fdd-95eb-c6d626ab2898}: [DhcpNameServer] 192.168.1.1 192.168.1.1 Tcpip\..\Interfaces\{113c6ad0-21fb-4431-b794-cbab77df596e}: [DhcpNameServer] 192.168.1.1 192.168.1.1 Tcpip\..\Interfaces\{306513f9-a9b4-445f-9f7f-7fdd11c555e3}: [DhcpNameServer] 192.168.1.1 192.168.1.1 Tcpip\..\Interfaces\{d1f0ccb7-7dbe-4109-a6d9-089cdaa00735}: [NameServer] 194.204.152.34,194.204.159.1 Tcpip\..\Interfaces\{d1f0ccb7-7dbe-4109-a6d9-089cdaa00735}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{f73c7d60-9fcd-448e-bd5c-e536e7afd138}: [DhcpNameServer] 192.168.1.1 192.168.1.1 Internet Explorer: ================== HKU\S-1-5-21-2399471354-2781755390-4139130681-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.yahoo.com/?fr=vmn&type=auslog_ya_hp SearchScopes: HKU\S-1-5-21-2399471354-2781755390-4139130681-1000 -> {93731F81-2798-4460-A356-E16E18DB266F} URL = hxxp://www.allegro.pl/search.php?sg=0&string={searchTerms} SearchScopes: HKU\S-1-5-21-2399471354-2781755390-4139130681-1000 -> {FF37A499-90B8-4284-A336-CE9927E12330} URL = hxxp://www.google.com/search?hl=pl&q={searchTerms} BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_201\bin\ssv.dll [2019-02-15] (Oracle America, Inc. -> Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_201\bin\jp2ssv.dll [2019-02-15] (Oracle America, Inc. -> Oracle Corporation) FireFox: ======== FF DefaultProfile: k7pq1yoi.default-1515323035174 FF ProfilePath: C:\Users\Piotr\AppData\Roaming\Mozilla\Firefox\Profiles\k7pq1yoi.default-1515323035174 [2019-02-25] FF Homepage: Mozilla\Firefox\Profiles\k7pq1yoi.default-1515323035174 -> hxxps://www.google.pl/ FF Extension: (React Developer Tools) - C:\Users\Piotr\AppData\Roaming\Mozilla\Firefox\Profiles\k7pq1yoi.default-1515323035174\Extensions\@react-devtools.xpi [2019-01-15] FF Extension: (ADB Helper) - C:\Users\Piotr\AppData\Roaming\Mozilla\Firefox\Profiles\k7pq1yoi.default-1515323035174\Extensions\adbhelper@mozilla.org.xpi [2018-08-09] [Przestarzałe] FF Extension: (Awesome Screenshot - Capture, Annotate & More) - C:\Users\Piotr\AppData\Roaming\Mozilla\Firefox\Profiles\k7pq1yoi.default-1515323035174\Extensions\jid0-GXjLLfbCoAx0LcltEdFrEkQdQPI@jetpack.xpi [2018-12-27] FF Extension: (English (GB) Language Pack) - C:\Users\Piotr\AppData\Roaming\Mozilla\Firefox\Profiles\k7pq1yoi.default-1515323035174\Extensions\langpack-en-GB@firefox.mozilla.org.xpi [2019-02-12] FF Extension: (Polish Spellchecker Dictionary) - C:\Users\Piotr\AppData\Roaming\Mozilla\Firefox\Profiles\k7pq1yoi.default-1515323035174\Extensions\pl@dictionaries.addons.mozilla.org.xpi [2018-11-29] FF Extension: (PerfectPixel by WellDoneCode) - C:\Users\Piotr\AppData\Roaming\Mozilla\Firefox\Profiles\k7pq1yoi.default-1515323035174\Extensions\{4c47d1b1-c33d-4b05-908f-90c05bf6e2ab}.xpi [2018-11-29] FF Extension: (ColorZilla) - C:\Users\Piotr\AppData\Roaming\Mozilla\Firefox\Profiles\k7pq1yoi.default-1515323035174\Extensions\{6AC85730-7D0F-4de0-B3FA-21142DD85326}.xpi [2018-04-26] FF Extension: (OurStickys - Sticky Notes on every page) - C:\Users\Piotr\AppData\Roaming\Mozilla\Firefox\Profiles\k7pq1yoi.default-1515323035174\Extensions\{980500da-0b6d-4de9-ad90-93d17605276b}.xpi [2018-04-05] FF Extension: (Web Developer) - C:\Users\Piotr\AppData\Roaming\Mozilla\Firefox\Profiles\k7pq1yoi.default-1515323035174\Extensions\{c45c406e-ab73-11d8-be73-000a95be3b12}.xpi [2018-01-11] FF ProfilePath: C:\Users\Piotr\AppData\Roaming\Mozilla\Firefox\Profiles\kih9jpwe.dev-edition-default [2019-02-25] FF HKLM\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.8.0.50\coFFAddon => nie znaleziono FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_30_0_0_134.dll [2018-07-11] (Adobe Systems Incorporated -> ) FF Plugin: @cuminas.jp/DjVuPlugin -> C:\Program Files\Cuminas\Document Express DjVu Plug-in\npdjvu.dll [2015-05-08] (Cuminas Corporation -> Cuminas Corporation) FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [Brak pliku] FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [Brak pliku] FF Plugin: @java.com/DTPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll [2019-02-15] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\plugin2\npjp2.dll [2019-02-15] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc -> Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc -> Google Inc.) FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-02-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.) StartMenuInternet: Firefox-CA9422711AE1A81C - C:\Program Files\Firefox Developer Edition\firefox.exe Chrome: ======= CHR Profile: C:\Users\Piotr\AppData\Local\Google\Chrome\User Data\Default [2019-02-25] CHR Extension: (Dokumenty) - C:\Users\Piotr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-02-20] CHR Extension: (Note Anywhere) - C:\Users\Piotr\AppData\Local\Google\Chrome\User Data\Default\Extensions\bohahkiiknkelflnjjlipnaeapefmjbh [2018-04-05] CHR Extension: (PerfectPixel by WellDoneCode) - C:\Users\Piotr\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkaagdgjmgdmbnecmcefdhjekcoceebi [2019-01-03] CHR Extension: (Awesome Screenshot: Screen Video Recorder) - C:\Users\Piotr\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlipoenfbbikpbjkfpfillcgkoblgpmj [2019-01-03] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Piotr\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-05] CHR Extension: (e-pity - dodatek) - C:\Users\Piotr\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofoeigeaodhbjogdigckajfhjbonaofg [2018-04-30] CHR Extension: (Chrome Media Router) - C:\Users\Piotr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-02-19] CHR HKLM\...\Chrome\Extension: [ofoeigeaodhbjogdigckajfhjbonaofg] - hxxps://clients2.google.com/service/update2/crx ==================== Usługi (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [8536280 2019-02-11] (Comodo Security Solutions, Inc. -> COMODO) S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2080448 2018-12-17] (Comodo Security Solutions, Inc. -> COMODO) S2 DrvCovEx; C:\WINDOWS\System32\DrvCovEx.exe [45056 2016-02-19] () [Brak podpisu cyfrowego] S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [Brak podpisu cyfrowego] R2 isesrv; C:\Program Files\COMODO\Internet Security Essentials\isesrv.exe [1041608 2018-06-22] (Comodo Security Solutions, Inc. -> COMODO) S3 jswpsapi; C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\WPS\jswpsapi.exe [954368 2016-02-09] (Wireless) [Brak podpisu cyfrowego] R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1720608 2014-07-25] (NVIDIA Corporation -> NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [17536800 2014-07-25] (NVIDIA Corporation -> NVIDIA Corporation) R2 Smart TimeLock; C:\Program Files\GIGABYTE\Smart6\Timelock\TimeMgmtDaemon.exe [114688 2009-10-13] (Gigabyte Technology CO., LTD.) [Brak podpisu cyfrowego] R2 ss_conn_service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2017-03-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\NisSrv.exe [3287728 2018-07-31] (Microsoft Corporation -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\MsMpEng.exe [91648 2018-07-31] (Microsoft Corporation -> Microsoft Corporation) R2 WsAppService; C:\Program Files\Wondershare\WAF\2.3.1.204\WsAppService.exe [437392 2016-12-14] (Wondershare software CO., LIMITED -> Wondershare) ===================== Sterowniki (filtrowane) ====================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S0 cmdboot; C:\WINDOWS\System32\DRIVERS\cmdboot.sys [14872 2018-05-23] (Microsoft Windows Early Launch Anti-malware Publisher -> COMODO) R1 cmderd; C:\WINDOWS\System32\DRIVERS\cmderd.sys [39264 2018-05-23] (Comodo Security Solutions, Inc. -> COMODO) R1 cmdGuard; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [653328 2018-05-23] (Comodo Security Solutions, Inc. -> COMODO) R1 cmdhlp; C:\WINDOWS\system32\DRIVERS\cmdhlp.sys [46040 2018-05-23] (Comodo Security Solutions, Inc. -> COMODO) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [90008 2017-03-22] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.(www.devguru.co.kr)) S3 EraserUtilDrv11720; C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilDrv11720.sys [126592 2017-07-25] (Symantec Corporation -> Symantec Corporation) S3 gdrv; C:\Windows\gdrv.sys [17488 2018-11-25] (Giga-Byte Technology -> Windows (R) 2000 DDK provider) S3 GVTDrv; C:\Windows\system32\Drivers\GVTDrv.sys [24944 2011-08-07] (GIGA-BYTE TECHNOLOGY CO., LTD -> ) R3 HECI; C:\WINDOWS\System32\drivers\HECI.sys [41088 2009-09-17] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) R1 HWiNFO; C:\WINDOWS\system32\drivers\HWiNFO32.SYS [48272 2018-11-10] (Martin Malik - REALiX -> REALiX(tm)) R1 inspect; C:\WINDOWS\system32\DRIVERS\inspect.sys [113496 2018-05-23] (Comodo Security Solutions, Inc. -> COMODO) R1 isedrv; C:\WINDOWS\system32\drivers\isedrv.sys [49640 2017-12-13] (Comodo Security Solutions, Inc. -> COMODO) R1 jswpslwf; C:\WINDOWS\system32\DRIVERS\jswpslwf.sys [20384 2016-02-09] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.) S3 mpszfilt; C:\WINDOWS\System32\DRIVERS\mpszfilt.sys [10752 2016-02-19] (Generic) [Brak podpisu cyfrowego] R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19232 2014-07-25] (NVIDIA Corporation -> NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad32v.sys [53616 2018-08-01] (NVIDIA Corporation -> NVIDIA Corporation) S3 RimVSerPort; C:\WINDOWS\System32\DRIVERS\RimSerial.sys [35840 2015-06-20] (Microsoft Windows Hardware Compatibility Publisher -> Research in Motion Ltd) R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [958176 2018-08-01] (Realtek Semiconductor Corp. -> Realtek ) R3 RtlWlanu; C:\WINDOWS\system32\DRIVERS\rtwlanu.sys [7569824 2018-09-17] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation ) S3 SG762_XP; C:\WINDOWS\System32\DRIVERS\WlanBZXP.sys [402432 2006-01-19] (ZyDAS Technology Corporation) [Brak podpisu cyfrowego] R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [26792 2016-12-24] (Synaptics Incorporated -> Synaptics Incorporated) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [184216 2017-03-22] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.(www.devguru.co.kr)) U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [4096 2010-07-04] () [Brak podpisu cyfrowego] S3 USBAAPL; C:\WINDOWS\System32\Drivers\usbaapl.sys [45056 2016-12-14] (Shenzhen Wondershare Information Technology Co., Ltd. -> Apple, Inc.) R3 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [185464 2018-08-14] (Oracle Corporation -> Oracle Corporation) R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [193264 2018-08-14] (Oracle Corporation -> Oracle Corporation) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [38904 2018-07-31] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [279592 2018-07-31] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [46120 2018-07-31] (Microsoft Windows -> Microsoft Corporation) S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [189952 2018-04-11] (Microsoft Windows -> Microsoft Corporation) U3 aswbdisk; Brak ImagePath ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-02-25 20:05 - 2019-02-25 20:05 - 000000066 _____ C:\WINDOWS\system32\DrvLog-2019-02-25-20-05-57.txt 2019-02-25 20:03 - 2019-02-25 20:08 - 000000000 ____D C:\FRST 2019-02-25 19:56 - 2019-02-25 19:56 - 000000066 _____ C:\WINDOWS\system32\DrvLog-2019-02-25-19-56-12.txt 2019-02-25 19:54 - 2019-02-25 19:58 - 000000000 ____D C:\Users\Piotr\AppData\Roaming\DriverFinder 2019-02-25 19:40 - 2019-02-25 19:40 - 000000066 _____ C:\WINDOWS\system32\DrvLog-2019-02-25-19-40-34.txt 2019-02-23 12:36 - 2019-02-23 12:50 - 000011711 _____ C:\Users\Piotr\Desktop\UP.odt 2019-02-23 12:35 - 2019-02-23 12:35 - 000000000 ____D C:\Users\Piotr\AppData\LocalLow\uTorrent 2019-02-21 20:44 - 2019-02-21 20:44 - 000000066 _____ C:\WINDOWS\system32\DrvLog-2019-02-21-20-44-50.txt 2019-02-21 07:05 - 2019-02-21 07:05 - 000000066 _____ C:\WINDOWS\system32\DrvLog-2019-02-21-07-05-17.txt 2019-02-20 19:34 - 2019-02-20 19:34 - 000000066 _____ C:\WINDOWS\system32\DrvLog-2019-02-20-19-34-47.txt 2019-02-20 18:35 - 2019-02-20 18:35 - 000000066 _____ C:\WINDOWS\system32\DrvLog-2019-02-20-18-35-49.txt 2019-02-20 15:14 - 2019-02-20 15:14 - 000000066 _____ C:\WINDOWS\system32\DrvLog-2019-02-20-15-14-36.txt 2019-02-20 07:59 - 2019-02-20 07:59 - 000000066 _____ C:\WINDOWS\system32\DrvLog-2019-02-20-07-59-09.txt 2019-02-20 00:30 - 2019-02-20 00:30 - 000000066 _____ C:\WINDOWS\system32\DrvLog-2019-02-20-00-30-32.txt 2019-02-19 23:22 - 2019-02-19 23:22 - 000000066 _____ C:\WINDOWS\system32\DrvLog-2019-02-19-23-22-15.txt 2019-02-19 17:06 - 2019-02-19 17:06 - 013488321 _____ C:\Users\Piotr\Documents\Philip K. Dick.7z 2019-02-19 17:05 - 2019-02-19 17:05 - 033490099 _____ C:\Users\Piotr\Documents\Włoski.7z 2019-02-19 17:05 - 2019-02-19 17:05 - 003417938 _____ C:\Users\Piotr\Documents\kucharskie robocze.7z 2019-02-19 15:00 - 2019-02-19 15:00 - 000000066 _____ C:\WINDOWS\system32\DrvLog-2019-02-19-15-00-55.txt 2019-02-19 08:01 - 2019-02-19 08:01 - 000000066 _____ C:\WINDOWS\system32\DrvLog-2019-02-19-08-01-34.txt 2019-02-18 19:33 - 2019-02-18 19:33 - 000000066 _____ C:\WINDOWS\system32\DrvLog-2019-02-18-19-33-35.txt 2019-02-18 16:57 - 2019-02-18 16:57 - 000000066 _____ C:\WINDOWS\system32\DrvLog-2019-02-18-16-57-41.txt 2019-02-18 09:06 - 2019-02-18 09:06 - 000000066 _____ C:\WINDOWS\system32\DrvLog-2019-02-18-09-06-39.txt 2019-02-17 06:19 - 2019-02-17 06:19 - 000000066 _____ C:\WINDOWS\system32\DrvLog-2019-02-17-06-19-58.txt 2019-02-15 12:28 - 2019-02-15 12:28 - 000000000 ____D C:\Program Files\Common Files\Java 2019-02-15 12:27 - 2019-02-15 12:27 - 000000000 ____D C:\Program Files\Common Files\Oracle 2019-02-15 12:00 - 2019-02-15 12:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auslogics 2019-02-15 12:00 - 2019-02-15 12:00 - 000000000 ____D C:\Program Files\Auslogics 2019-02-15 11:42 - 2019-02-15 11:42 - 000000066 _____ C:\WINDOWS\system32\DrvLog-2019-02-15-11-42-21.txt 2019-02-15 10:34 - 2019-02-15 10:34 - 000000066 _____ C:\WINDOWS\system32\DrvLog-2019-02-15-10-34-12.txt 2019-02-14 16:06 - 2019-02-14 16:06 - 000000523 _____ C:\Users\Piotr\.gitconfig 2019-02-14 15:42 - 2019-02-14 15:42 - 000000066 _____ C:\WINDOWS\system32\DrvLog-2019-02-14-15-42-25.txt 2019-02-14 09:56 - 2019-02-14 09:56 - 000000066 _____ C:\WINDOWS\system32\DrvLog-2019-02-14-09-56-48.txt 2019-02-14 07:47 - 2019-02-06 04:00 - 006572416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2019-02-14 07:47 - 2019-02-06 03:52 - 022014464 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2019-02-14 07:47 - 2019-02-06 03:37 - 004515840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2019-02-14 07:46 - 2019-02-06 08:11 - 001465504 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll 2019-02-14 07:46 - 2019-02-06 07:57 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll 2019-02-14 07:46 - 2019-02-06 07:53 - 001082880 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll 2019-02-14 07:46 - 2019-02-06 07:52 - 004053504 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll 2019-02-14 07:46 - 2019-02-06 07:52 - 002891776 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2019-02-14 07:46 - 2019-02-06 07:52 - 001470976 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll 2019-02-14 07:46 - 2019-02-06 04:01 - 001989040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll 2019-02-14 07:46 - 2019-02-06 04:01 - 000720480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll 2019-02-14 07:46 - 2019-02-06 04:01 - 000307000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys 2019-02-14 07:46 - 2019-02-06 04:01 - 000033576 _____ (Microsoft Corporation) C:\WINDOWS\system32\NtlmShared.dll 2019-02-14 07:46 - 2019-02-06 04:00 - 006683448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2019-02-14 07:46 - 2019-02-06 04:00 - 002144056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2019-02-14 07:46 - 2019-02-06 04:00 - 002030904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys 2019-02-14 07:46 - 2019-02-06 04:00 - 000100712 _____ (Microsoft Corporation) C:\WINDOWS\system32\smss.exe 2019-02-14 07:46 - 2019-02-06 04:00 - 000037176 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe 2019-02-14 07:46 - 2019-02-06 03:45 - 019404288 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2019-02-14 07:46 - 2019-02-06 03:42 - 003711488 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2019-02-14 07:46 - 2019-02-06 03:41 - 005307392 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll 2019-02-14 07:46 - 2019-02-06 03:40 - 005792256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2019-02-14 07:46 - 2019-02-06 03:40 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys 2019-02-14 07:46 - 2019-02-06 03:40 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll 2019-02-14 07:46 - 2019-02-06 03:39 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\exfat.sys 2019-02-14 07:46 - 2019-02-06 03:39 - 000205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys 2019-02-14 07:46 - 2019-02-06 03:39 - 000144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll 2019-02-14 07:46 - 2019-02-06 03:38 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll 2019-02-14 07:46 - 2019-02-06 03:38 - 000561152 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll 2019-02-14 07:46 - 2019-02-06 03:38 - 000260096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys 2019-02-14 07:46 - 2019-02-06 03:37 - 000625664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys 2019-02-14 07:46 - 2019-02-06 03:37 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll 2019-02-14 07:46 - 2019-02-06 03:37 - 000440832 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll 2019-02-14 07:46 - 2019-02-06 03:37 - 000289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll 2019-02-14 07:46 - 2019-02-06 03:36 - 000675840 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll 2019-02-14 07:46 - 2019-02-06 03:35 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll 2019-02-14 07:46 - 2019-02-06 03:34 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cdfs.sys 2019-02-14 07:46 - 2019-01-12 03:28 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrd3x40.dll 2019-02-14 07:46 - 2019-01-09 12:08 - 000254776 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2019-02-14 07:46 - 2019-01-09 11:02 - 000636872 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll 2019-02-14 07:46 - 2019-01-09 10:55 - 011919872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2019-02-14 07:46 - 2019-01-09 10:55 - 003257856 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll 2019-02-14 07:46 - 2019-01-09 10:55 - 000150016 _____ (Microsoft Corporation) C:\WINDOWS\system32\itss.dll 2019-02-14 07:46 - 2019-01-09 10:53 - 000958976 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe 2019-02-14 07:46 - 2019-01-09 10:51 - 002094080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll 2019-02-14 07:46 - 2019-01-09 06:53 - 000480056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys 2019-02-14 07:46 - 2019-01-09 06:48 - 000994264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe 2019-02-14 07:46 - 2019-01-09 06:48 - 000074040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys 2019-02-14 07:46 - 2019-01-09 06:44 - 000078688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll 2019-02-14 07:46 - 2019-01-09 06:43 - 006043496 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll 2019-02-14 07:46 - 2019-01-09 06:43 - 004789944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2019-02-14 07:46 - 2019-01-09 06:43 - 002253480 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2019-02-14 07:46 - 2019-01-09 06:43 - 001990056 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2019-02-14 07:46 - 2019-01-09 06:43 - 001617152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll 2019-02-14 07:46 - 2019-01-09 06:43 - 000986936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys 2019-02-14 07:46 - 2019-01-09 06:43 - 000949856 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2019-02-14 07:46 - 2019-01-09 06:43 - 000831528 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2019-02-14 07:46 - 2019-01-09 06:43 - 000607376 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll 2019-02-14 07:46 - 2019-01-09 06:43 - 000358904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys 2019-02-14 07:46 - 2019-01-09 06:43 - 000287640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll 2019-02-14 07:46 - 2019-01-09 06:43 - 000221496 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll 2019-02-14 07:46 - 2019-01-09 06:43 - 000195576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys 2019-02-14 07:46 - 2019-01-09 06:43 - 000129088 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll 2019-02-14 07:46 - 2019-01-09 06:43 - 000127744 _____ (Microsoft Corporation) C:\WINDOWS\system32\rmclient.dll 2019-02-14 07:46 - 2019-01-09 06:43 - 000071456 _____ (Microsoft Corporation) C:\WINDOWS\system32\svchost.exe 2019-02-14 07:46 - 2019-01-09 06:42 - 001190496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2019-02-14 07:46 - 2019-01-09 06:42 - 001051032 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2019-02-14 07:46 - 2019-01-09 06:42 - 000371192 _____ (Microsoft Corporation) C:\WINDOWS\system32\halmacpi.dll 2019-02-14 07:46 - 2019-01-09 06:42 - 000371192 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll 2019-02-14 07:46 - 2019-01-09 06:42 - 000140792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys 2019-02-14 07:46 - 2019-01-09 06:32 - 013878272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2019-02-14 07:46 - 2019-01-09 06:26 - 002966016 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll 2019-02-14 07:46 - 2019-01-09 06:25 - 003255296 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll 2019-02-14 07:46 - 2019-01-09 06:24 - 002808320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2019-02-14 07:46 - 2019-01-09 06:24 - 001834496 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe 2019-02-14 07:46 - 2019-01-09 06:24 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\spacebridge.dll 2019-02-14 07:46 - 2019-01-09 06:23 - 001657856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll 2019-02-14 07:46 - 2019-01-09 06:23 - 001361408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll 2019-02-14 07:46 - 2019-01-09 06:23 - 001189888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll 2019-02-14 07:46 - 2019-01-09 06:23 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll 2019-02-14 07:46 - 2019-01-09 06:22 - 000684032 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll 2019-02-14 07:46 - 2019-01-09 06:22 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll 2019-02-14 07:46 - 2019-01-09 06:22 - 000333824 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll 2019-02-14 07:46 - 2019-01-09 06:22 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll 2019-02-14 07:46 - 2019-01-09 06:22 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll 2019-02-14 07:46 - 2019-01-09 06:21 - 001752064 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll 2019-02-14 07:46 - 2019-01-09 06:21 - 000491008 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll 2019-02-14 07:46 - 2019-01-09 06:21 - 000196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManager.dll 2019-02-14 07:46 - 2019-01-09 06:21 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.NetworkOperators.HotspotAuthentication.dll 2019-02-14 07:46 - 2019-01-09 06:20 - 001272832 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll 2019-02-14 07:46 - 2019-01-09 06:20 - 001000448 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll 2019-02-14 07:46 - 2019-01-09 06:20 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll 2019-02-14 07:46 - 2019-01-09 06:20 - 000135680 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreenps.dll 2019-02-14 07:46 - 2019-01-09 06:19 - 000678400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll 2019-02-14 07:46 - 2019-01-09 06:19 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll 2019-02-14 07:46 - 2019-01-09 06:18 - 000195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll 2019-02-14 07:46 - 2019-01-09 05:01 - 000806320 _____ C:\WINDOWS\system32\locale.nls 2019-02-14 07:46 - 2019-01-08 04:06 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msjet40.dll 2019-02-14 07:46 - 2019-01-08 04:06 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrd2x40.dll 2019-02-14 07:46 - 2019-01-08 04:06 - 000000072 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin 2019-02-14 07:19 - 2019-02-14 07:19 - 000000066 _____ C:\WINDOWS\system32\DrvLog-2019-02-14-07-19-15.txt 2019-02-12 22:01 - 2019-02-12 22:01 - 000000066 _____ C:\WINDOWS\system32\DrvLog-2019-02-12-22-01-51.txt 2019-02-05 02:34 - 2019-02-05 02:34 - 000000000 ____D C:\ProgramData\Mozilla 2019-02-04 02:20 - 2019-02-04 02:20 - 000000000 ____D C:\Users\Piotr\AppData\Local\ASP.NET 2019-02-04 02:01 - 2019-02-04 02:01 - 000000066 _____ C:\WINDOWS\system32\DrvLog-2019-02-04-02-01-15.txt 2019-02-04 01:40 - 2019-02-04 02:20 - 000000000 ____D C:\Users\Piotr\.dotnet 2019-02-04 01:34 - 2019-02-14 10:24 - 000000000 ____D C:\Program Files\dotnet 2019-02-01 15:04 - 2018-09-20 05:33 - 001499960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll 2019-02-01 07:56 - 2019-02-01 07:57 - 000000134 _____ C:\Users\Piotr\Desktop\fuero.bat 2019-02-01 07:56 - 2019-02-01 07:56 - 000000134 _____ C:\Users\Piotr\Desktop\fuero.txt 2019-01-28 15:59 - 2019-01-28 15:59 - 000000066 _____ C:\WINDOWS\system32\DrvLog-2019-01-28-15-59-13.txt 2019-01-28 15:51 - 2019-01-28 15:51 - 000000066 _____ C:\WINDOWS\system32\DrvLog-2019-01-28-15-51-16.txt 2019-01-27 09:41 - 2019-01-27 09:41 - 000001190 _____ C:\Users\Piotr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\e-pity 2018 - program, pity roczne, e-deklaracje.lnk 2019-01-27 09:41 - 2019-01-27 09:41 - 000001160 _____ C:\Users\Piotr\Desktop\e-pity 2018 - program, pity roczne, e-deklaracje.lnk ==================== Jeden miesiąc (zmodyfikowane) ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-02-25 20:12 - 2016-11-19 19:09 - 000000000 ____D C:\Users\Piotr\AppData\LocalLow\Mozilla 2019-02-25 20:07 - 2014-08-18 13:26 - 000000000 ____D C:\Users\Piotr\.rainlendar2 2019-02-25 20:06 - 2018-04-11 21:36 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2019-02-25 20:05 - 2018-05-09 18:57 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2019-02-25 20:05 - 2018-04-11 13:45 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2019-02-25 20:04 - 2018-07-31 11:56 - 001474832 _____ C:\WINDOWS\system32\Drivers\sfi.dat 2019-02-25 19:59 - 2018-04-11 21:31 - 000000000 ____D C:\WINDOWS\INF 2019-02-25 19:59 - 2016-12-21 22:02 - 000000000 ____D C:\Users\Piotr\AppData\Local\CrashDumps 2019-02-25 19:59 - 2016-06-04 08:14 - 000000000 ____D C:\Users\Piotr\AppData\Roaming\uTorrent 2019-02-25 19:40 - 2018-05-20 22:11 - 000000000 ____D C:\Program Files\Firefox Developer Edition 2019-02-25 19:40 - 2018-05-09 18:30 - 000000000 ____D C:\Users\Piotr 2019-02-25 19:40 - 2018-05-09 18:21 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2019-02-25 19:40 - 2015-10-14 20:16 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service 2019-02-25 19:04 - 2018-10-11 16:26 - 000000000 ____D C:\Users\Piotr\.VirtualBox 2019-02-25 19:04 - 2018-08-24 13:11 - 000000000 ____D C:\Users\Piotr\AppData\Roaming\Code 2019-02-25 18:25 - 2018-04-11 21:36 - 000000000 ____D C:\WINDOWS\AppReadiness 2019-02-25 07:18 - 2018-05-20 22:11 - 000001291 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox Developer Edition.lnk 2019-02-25 07:09 - 2018-04-11 21:36 - 000000000 ___HD C:\Program Files\WindowsApps 2019-02-23 10:01 - 2012-07-26 22:24 - 000000000 ____D C:\Users\Piotr\AppData\Roaming\foobar2000 2019-02-22 19:14 - 2018-02-17 17:32 - 000002284 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2019-02-22 19:14 - 2015-12-19 14:29 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2019-02-19 18:09 - 2019-01-22 17:45 - 000000000 ____D C:\Users\Piotr\AppData\Roaming\Conceptworld 2019-02-19 17:45 - 2019-01-07 18:31 - 000000000 ____D C:\Program Files\Core Temp 2019-02-19 17:22 - 2014-11-14 11:47 - 000000000 ____D C:\Users\Piotr\Documents\Historyki 2019-02-19 17:20 - 2018-03-17 19:12 - 000000000 ___RD C:\Users\Piotr\Documents\Scanned Documents 2019-02-19 17:17 - 2018-01-12 18:30 - 000000000 ____D C:\Users\Piotr\Documents\efile-backup 2019-02-19 17:08 - 2018-04-11 21:36 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2019-02-19 08:33 - 2018-08-24 13:07 - 000000000 ____D C:\Program Files\Microsoft VS Code 2019-02-19 08:32 - 2018-08-24 13:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio Code 2019-02-17 21:04 - 2016-12-27 12:23 - 000000266 __RSH C:\ProgramData\ntuser.pol 2019-02-17 06:26 - 2018-05-09 18:25 - 001998262 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2019-02-17 06:26 - 2018-04-12 06:04 - 000869958 _____ C:\WINDOWS\system32\perfh015.dat 2019-02-17 06:26 - 2018-04-12 06:04 - 000189146 _____ C:\WINDOWS\system32\perfc015.dat 2019-02-15 12:29 - 2017-11-24 12:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2019-02-15 12:29 - 2017-11-24 12:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit 2019-02-15 12:29 - 2015-10-14 19:43 - 000000000 ____D C:\Program Files\Java 2019-02-15 12:26 - 2018-02-06 17:24 - 000300920 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe 2019-02-15 12:26 - 2017-11-24 12:23 - 000097144 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll 2019-02-15 10:43 - 2017-10-01 09:32 - 000000000 ____D C:\Program Files\rempl 2019-02-15 08:25 - 2018-08-14 07:25 - 000000129 _____ C:\Users\Piotr\Desktop\unamo.bat 2019-02-14 10:45 - 2018-07-22 14:56 - 000000000 ____D C:\WINDOWS\Minidump 2019-02-14 10:24 - 2016-12-21 16:19 - 000000000 ____D C:\ProgramData\Package Cache 2019-02-14 10:20 - 2016-11-15 18:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller 2019-02-14 09:57 - 2018-05-09 18:21 - 000524904 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2019-02-14 09:08 - 2018-04-11 21:36 - 000000000 ___SD C:\WINDOWS\system32\F12 2019-02-14 09:08 - 2018-04-11 21:36 - 000000000 ___RD C:\Program Files\Windows Defender 2019-02-14 09:08 - 2018-04-11 21:36 - 000000000 ____D C:\WINDOWS\TextInput 2019-02-14 09:08 - 2018-04-11 21:36 - 000000000 ____D C:\WINDOWS\ShellExperiences 2019-02-14 09:08 - 2018-04-11 21:36 - 000000000 ____D C:\WINDOWS\bcastdvr 2019-02-14 07:55 - 2018-04-11 21:25 - 000000000 ____D C:\WINDOWS\CbsTemp 2019-02-14 07:45 - 2013-08-18 18:44 - 000000000 ____D C:\WINDOWS\system32\MRT 2019-02-14 07:41 - 2011-07-06 15:28 - 126228304 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2019-02-14 07:19 - 2015-11-08 09:44 - 000000000 ____D C:\Program Files\Mozilla Firefox 2019-02-13 15:05 - 2018-05-09 18:30 - 000000000 ____D C:\Users\DefaultAppPool 2019-02-13 15:05 - 2018-05-09 18:30 - 000000000 ____D C:\Users\Administrator 2019-02-13 13:41 - 2018-05-09 18:30 - 000002444 _____ C:\Users\Piotr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2019-02-13 13:41 - 2015-12-17 22:24 - 000000000 ___RD C:\Users\Piotr\OneDrive 2019-02-13 10:14 - 2018-06-19 08:46 - 000000000 ____D C:\ProgramData\Packages 2019-02-13 10:12 - 2015-10-14 20:16 - 000001221 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2019-02-12 22:01 - 2018-01-04 22:38 - 000000000 ____D C:\Program Files\CCleaner 2019-02-12 22:00 - 2018-04-11 21:36 - 000000000 ____D C:\WINDOWS\system32\NDF 2019-02-04 02:20 - 2018-08-10 13:36 - 000216844 _____ C:\WINDOWS\system32\Drivers\fvstore.dat 2019-02-04 02:01 - 2011-07-07 23:12 - 000000000 ____D C:\Program Files\Mozilla Thunderbird 2019-02-02 23:53 - 2018-11-14 15:02 - 000835480 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe 2019-02-02 23:53 - 2018-11-14 15:02 - 000179600 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl 2019-02-01 11:46 - 2016-08-20 22:00 - 000000000 ____D C:\Users\Piotr\AppData\Local\ConnectedDevicesPlatform 2019-01-31 09:54 - 2011-10-18 12:47 - 000001271 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk 2019-01-29 23:15 - 2019-01-22 17:04 - 000019909 _____ C:\Users\Piotr\Desktop\html 5.15.2.odt 2019-01-29 14:56 - 2018-02-06 20:34 - 000000000 ____D C:\Users\Piotr\AppData\Roaming\npm 2019-01-27 10:53 - 2018-03-28 08:24 - 000000000 ____D C:\Users\Piotr\Documents\Ania 2019-01-27 09:41 - 2017-03-27 08:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\e-pity 2019-01-26 18:25 - 2018-05-20 12:32 - 000000000 ____D C:\ProgramData\AVAST Software ==================== Pliki w katalogu głównym wybranych folderów ======= 2012-05-18 07:24 - 2012-07-21 20:57 - 000006144 _____ () C:\Users\Piotr\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2019-01-23 20:52 - 2019-01-23 20:52 - 000000001 _____ () C:\Users\Piotr\AppData\Local\llftool.4.40.agreement 2018-01-26 17:14 - 2018-01-26 17:14 - 000000218 _____ () C:\Users\Piotr\AppData\Local\recently-used.xbel 2018-09-30 19:11 - 2018-09-30 19:11 - 000000017 _____ () C:\Users\Piotr\AppData\Local\resmon.resmoncfg 2018-06-02 17:34 - 2018-06-02 17:34 - 000000003 _____ () C:\Users\Piotr\AppData\Local\updater.log 2018-06-02 17:34 - 2018-10-26 11:18 - 000000059 _____ () C:\Users\Piotr\AppData\Local\UserProducts.xml ==================== Bamital & volsnap ====================== (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) C:\WINDOWS\explorer.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\winlogon.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\wininit.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\svchost.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\services.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\User32.dll => Plik podpisany cyfrowo C:\WINDOWS\system32\userinit.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\rpcss.dll => Plik podpisany cyfrowo C:\WINDOWS\system32\dnsapi.dll => Plik podpisany cyfrowo C:\WINDOWS\system32\dllhost.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo LastRegBack: 2018-05-09 18:21 ==================== Koniec FRST.txt ============================