Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 10-11-2019 Uruchomiony przez Dawid (administrator) DAWID (MSI MS-7850) (12-11-2019 18:45:44) Uruchomiony z D:\Pobrane Załadowane profile: Dawid (Dostępne profile: Dawid) Platform: Windows 8.1 Pro (Update) (X64) Język: Polski (Polska) Domyślna przeglądarka: Chrome Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) D:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusSGPlusBTServer64.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) D:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusSmartGestureDetector64.exe (ASUSTeK Computer Inc. -> AsusTek) D:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe (ASUSTeK Computer Inc. -> AsusTek) D:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe (ASUSTeK Computer Inc. -> AsusTek) D:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe (Cambridge Silicon Radio Ltd. -> ) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrSyncMLServer.exe (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\BtSwitcherService.exe (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrAudioguiCtrl.exe (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtAudioService.exe (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtService.exe (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrHCRPServer.exe (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\HarmonyUserStartup.exe (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\TrayApplication.exe (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\vksts.exe (Electronic Arts, Inc. -> Electronic Arts) D:\Origin\OriginWebHelperService.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SkyDrive.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Symantec Corporation -> Symantec Corporation) C:\Program Files\Norton Security\Engine\22.19.8.65\NortonSecurity.exe (Symantec Corporation -> Symantec Corporation) C:\Program Files\Norton Security\Engine\22.19.8.65\NortonSecurity.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9181696 2018-09-05] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [CsrHCRPServer] => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrHCRPServer.exe [1134288 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) HKLM\...\Run: [CsrAudioguiCtrl] => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrAudioguiCtrl.exe [511696 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) HKLM\...\Run: [CsrSyncMLServer] => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrSyncMLServer.exe [244944 2012-03-22] (Cambridge Silicon Radio Ltd. -> ) HKLM\...\Run: [vksts] => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\vksts.exe [25792 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) HKLM\...\Run: [HarmonyUserStartup] => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\HarmonyUserStartup.exe [39128 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) HKLM\...\Run: [CSRHarmonySkypePlugin] => C:\Program Files (x86)\CSR\CSR Harmony Wireless Software Stack\CSRHarmonySkypePlugin.exe [146656 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) HKLM\...\Run: [TrayApplication] => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\TrayApplication.exe [529616 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5890504 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.) HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [95135168 2019-08-14] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1072038117-1971277354-2335355041-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [731240 2018-12-17] (AVB Disc Soft, SIA -> Disc Soft Ltd) HKU\S-1-5-21-1072038117-1971277354-2335355041-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Dawid\AppData\Local\Microsoft\Teams\Update.exe [1789552 2019-09-13] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKU\S-1-5-21-1072038117-1971277354-2335355041-1001\...\MountPoints2: {0bcbf8ce-c37d-11e9-829b-4ccc6a0679b4} - "F:\HiSuiteDownLoader.exe" HKU\S-1-5-21-1072038117-1971277354-2335355041-1001\...\MountPoints2: {0bcbfd87-c37d-11e9-829b-4ccc6a0679b4} - "F:\HiSuiteDownLoader.exe" HKU\S-1-5-21-1072038117-1971277354-2335355041-1001\...\MountPoints2: {27a569c7-24a3-11e9-826b-4ccc6a0679b4} - "G:\setup.exe" HKU\S-1-5-21-1072038117-1971277354-2335355041-1001\...\MountPoints2: {66b463d3-a648-11e9-8299-4ccc6a0679b4} - "F:\HiSuiteDownLoader.exe" HKU\S-1-5-21-1072038117-1971277354-2335355041-1001\...\MountPoints2: {70e7670f-ff1b-11e9-82b3-4ccc6a0679b4} - "F:\HiSuiteDownLoader.exe" HKU\S-1-5-21-1072038117-1971277354-2335355041-1001\...\MountPoints2: {a202c0be-27a0-11e9-826b-4ccc6a0679b4} - "G:\HiSuiteDownLoader.exe" HKU\S-1-5-21-1072038117-1971277354-2335355041-1001\...\Winlogon: [Shell] %comspec% <==== UWAGA HKU\S-1-5-21-1072038117-1971277354-2335355041-1001\...\Command Processor: @mode 20,5 & tasklist /FI "IMAGENAME eq SoundMixer.exe" 2>NUL | find /I /N "SoundMixer.exe">NUL && exit & if exist "C:\Users\Dawid\AppData\Roaming\Microsoft\SoundMixer\SoundMixer.exe" ( start /MIN "" "C:\Users\Dawid\AppData\Roaming\Microsoft\SoundMixer\SoundMixer.exe" & tasklist /FI "IMAGENAME eq explorer.exe" 2>NUL | find /I /N "explorer.exe">NUL && exit & explorer.exe & exit ) else ( tasklist /FI "IMAGENAME eq explorer.exe" 2>NUL | find /I /N "explorer.exe">NUL && exit & explorer.exe & exit ) <==== UWAGA HKU\S-1-5-21-1072038117-1971277354-2335355041-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\scrnsave.scr [11776 2014-11-21] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.97\Installer\chrmstp.exe [2019-11-12] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{5355DA8C-FE32-49b4-A567-A67535C86592}] -> C:\Program Files\CSR\CSR Harmony Wireless Software Stack\BLEtokenCredentialProvider.dll [2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {19FA64B7-0990-4E4D-BFBC-27787D4915BC} - System32\Tasks\Norton Security with Backup\Norton Security Error Processor => C:\Program Files\Norton Security\Engine\22.17.0.183\SymErr.exe Task: {1E5F304D-AF97-47C7-97F1-7D3DC3E67118} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6291864 2019-10-18] (Microsoft Corporation -> Microsoft Corporation) Task: {21845FC9-B01B-4917-9F14-C5BF689B8CDE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-09-04] (Google Inc -> Google Inc.) Task: {22C31B85-98F0-489C-95BB-B318426D2DFA} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764456 2018-07-19] (NVIDIA Corporation -> NVIDIA Corporation) Task: {2D0BC7CD-E348-439C-89E2-C03E8FA43592} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [927272 2018-07-19] (NVIDIA Corporation -> NVIDIA Corporation) Task: {336BE00C-3676-4779-96BD-FBC225289EBC} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [927272 2018-07-19] (NVIDIA Corporation -> NVIDIA Corporation) Task: {3D639FE0-FFA4-40F5-9A5D-9BB34EDE8A6C} - System32\Tasks\Norton Security\Norton Security Error Processor => C:\Program Files\Norton Security\Engine\22.19.8.65\SymErr.exe [102424 2019-09-11] (Symantec Corporation -> Symantec Corporation) Task: {687A2ACF-B2E0-4DD9-AA9C-5B83D318E5AF} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27398736 2019-10-14] (Microsoft Corporation -> Microsoft Corporation) Task: {6B3AA50B-928C-4395-A236-F80761B37879} - System32\Tasks\Norton Internet Security\Norton Internet Security Error Analyzer => C:\Program Files\Norton Security\Engine\22.15.0.88\SymErr.exe Task: {6D464F81-CA5A-4A36-9E9D-7E7E417E9171} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [647720 2018-07-19] (NVIDIA Corporation -> NVIDIA Corporation) Task: {777A2F1E-ABE8-4C60-A890-D77821CBE2E4} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764456 2018-07-19] (NVIDIA Corporation -> NVIDIA Corporation) Task: {7D016548-FFD7-4B19-BAA5-7EDA72F5F1AF} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe [150256 2019-10-18] (Microsoft Corporation -> Microsoft Corporation) Task: {88BD9F1A-465C-4969-B9DA-B6E36CCB1AC4} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security\Engine\22.19.8.65\WSCStub.exe [707624 2019-09-11] (Symantec Corporation -> Symantec Corporation) Task: {8AD42948-D7FB-4295-A082-22742DE09168} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6291864 2019-10-18] (Microsoft Corporation -> Microsoft Corporation) Task: {8D876B1B-BC62-4C90-9B2C-F8A23698B0F1} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2349952 2019-10-18] (Microsoft Corporation -> Microsoft Corporation) Task: {8E2A3CB1-5845-41B2-86BC-E3318117C154} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [856616 2018-07-19] (NVIDIA Corporation -> NVIDIA Corporation) Task: {94C9BC37-6FAE-497C-8A9C-9C879ED7AC4C} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3297832 2018-07-19] (NVIDIA Corporation -> NVIDIA Corporation) Task: {95B5F6BA-953D-4555-B3B4-F665F4E86654} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [856616 2018-07-19] (NVIDIA Corporation -> NVIDIA Corporation) Task: {98582E61-F49E-45B2-A510-70C26AF8101B} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [927272 2018-07-19] (NVIDIA Corporation -> NVIDIA Corporation) Task: {9A50B464-E3F4-458D-AD61-2A1AB4357226} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2168120 2019-10-18] (Microsoft Corporation -> Microsoft Corporation) Task: {A5EBBC65-BD76-40F9-97D6-901AF7A6A4FC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-09-04] (Google Inc -> Google Inc.) Task: {ABF688D4-5C85-4A70-99E4-4656368A1E9F} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [982568 2018-07-19] (NVIDIA Corporation -> NVIDIA Corporation) Task: {AD08ADDC-7CDA-4120-B718-42EF965462A1} - System32\Tasks\Norton Security\Norton Security Error Analyzer => C:\Program Files\Norton Security\Engine\22.19.8.65\SymErr.exe [102424 2019-09-11] (Symantec Corporation -> Symantec Corporation) Task: {C7E40EC8-8F53-40A1-964C-7DE9DC7A5B0A} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [927272 2018-07-19] (NVIDIA Corporation -> NVIDIA Corporation) Task: {CF952490-15F7-4BFE-A145-2678BFD4E9EB} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe [150256 2019-10-18] (Microsoft Corporation -> Microsoft Corporation) Task: {D415FB20-73C9-4325-BEAC-48FD6DD08B8E} - System32\Tasks\ASUS Smart Gesture Launcher => D:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [18400 2017-01-09] (ASUSTeK Computer Inc. -> AsusTek) Task: {E373711B-B47A-41C1-A472-26F74E98F1C8} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27398736 2019-10-14] (Microsoft Corporation -> Microsoft Corporation) Task: {E619D185-5D8B-4171-AD4F-B40A94FE2783} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Security\Upgrade.exe [1890552 2019-09-11] (Symantec Corporation -> Symantec Corporation) Task: {E7272FDF-7BDB-44A1-AC89-E26C82B46208} - System32\Tasks\Norton Security with Backup\Norton Security Error Analyzer => C:\Program Files\Norton Security\Engine\22.17.0.183\SymErr.exe Task: {F7BCD7F1-501B-4C23-9C3E-B77CD06BB562} - System32\Tasks\Norton Internet Security\Norton Internet Security Error Processor => C:\Program Files\Norton Security\Engine\22.15.0.88\SymErr.exe Task: {FA67A3FA-BA92-4B02-AD90-10562339F0EC} - System32\Tasks\Opera scheduled Autoupdate 1558809454 => C:\Users\Dawid\AppData\Local\Programs\Opera\launcher.exe [1534488 2019-11-05] (Opera Software AS -> Opera Software) Task: {FCB9BB2C-6541-4BE5-A59F-09106E81ED58} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2168120 2019-10-18] (Microsoft Corporation -> Microsoft Corporation) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{2F1CE653-0B9A-4008-B335-4DF046D31432}: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{45995853-95B1-4090-989B-E3703BA5CC9B}: [DhcpNameServer] 10.211.254.254 8.8.8.8 Internet Explorer: ================== HKU\S-1-5-21-1072038117-1971277354-2335355041-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pl-pl/?ocid=iehp BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2019-10-15] (Microsoft Corporation -> Microsoft Corporation) BHO: Norton Password Manager -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security\Engine\22.19.8.65\coIEPlg.dll [2019-09-11] (Symantec Corporation -> Symantec Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2019-10-15] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Norton Password Manager -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security\Engine32\22.19.8.65\coIEPlg.dll [2019-09-11] (Symantec Corporation -> Symantec Corporation) Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\Engine\22.19.8.65\coIEPlg.dll [2019-09-11] (Symantec Corporation -> Symantec Corporation) Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\Engine32\22.19.8.65\coIEPlg.dll [2019-09-11] (Symantec Corporation -> Symantec Corporation) Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-10-15] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-10-15] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-10-15] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-10-15] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-10-15] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-10-15] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-10-15] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-10-15] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2011-01-19] (Skype Technologies SA -> Skype Technologies) FireFox: ======== FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-10-15] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-10-15] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2019-10-15] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-11-05] (Google Inc -> Google LLC) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-11-05] (Google Inc -> Google LLC) Chrome: ======= CHR HomePage: Default -> hxxp://isearch.omiga-plus.com/?type=hp&ts=1404338533&from=smt&uid=WDCXWD10EFRX-68PJCN0_WD-WCC4J197096970969 CHR StartupUrls: Default -> "hxxp://google.pl/","hxxp://www.google.com/","hxxp://www.mysites123.com/?type=hp&ts=1456142598&z=f64e54ef8d5ff916b715c77gez0w3q6g0z6oaw7tfb&from=amt&uid=wdcxwd10efrx-68pjcn0_wd-wcc4j197096970969" CHR NewTab: Default -> Active:"chrome-extension://laookkfknpbbblfpciffpaejjkokdgca/dashboard.html" CHR Session Restore: Default -> [funkcja włączona] CHR Profile: C:\Users\Dawid\AppData\Local\Google\Chrome\User Data\Default [2019-11-12] CHR DownloadDir: D:\Pobrane CHR Extension: (Prezentacje) - C:\Users\Dawid\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-09-04] CHR Extension: (Dokumenty) - C:\Users\Dawid\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-09-04] CHR Extension: (Dysk Google) - C:\Users\Dawid\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-09-04] CHR Extension: (YouTube) - C:\Users\Dawid\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-09-04] CHR Extension: (Infinity New Tab - produktywność i szybkie wybieranie) - C:\Users\Dawid\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbfmnekepjoapopniengjbcpnbljalfg [2019-08-07] CHR Extension: (Arkusze) - C:\Users\Dawid\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-09-04] CHR Extension: (Norton Home Page for Chrome) - C:\Users\Dawid\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfoabcdjalmeenbjjngidappmppchblc [2018-09-04] CHR Extension: (Dokumenty Google offline) - C:\Users\Dawid\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-09-04] CHR Extension: (AdBlock) - C:\Users\Dawid\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-11-10] CHR Extension: (Google Keep – notatki i listy) - C:\Users\Dawid\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2019-11-07] CHR Extension: (Momentum) - C:\Users\Dawid\AppData\Local\Google\Chrome\User Data\Default\Extensions\laookkfknpbbblfpciffpaejjkokdgca [2019-10-30] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Dawid\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03] CHR Extension: (Simple EPUB Reader) - C:\Users\Dawid\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojhbgcchcbdjdenibfmjofobklkkhofc [2018-09-04] CHR Extension: (Gmail) - C:\Users\Dawid\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-23] CHR Extension: (Chrome Media Router) - C:\Users\Dawid\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-11-06] CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] Opera: ======= OPR DownloadDir: D:\Pobrane ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 BtSwitcherService; C:\Program Files\CSR\CSR Harmony Wireless Software Stack\BtSwitcherService.exe [64216 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11595552 2019-10-14] (Microsoft Corporation -> Microsoft Corporation) R2 CSRBtAudioService; C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtAudioService.exe [465624 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) R2 CsrBtOBEXService; C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe [1041616 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) R2 CsrBtService; C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtService.exe [825032 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [3644008 2018-12-17] (AVB Disc Soft, SIA -> Disc Soft Ltd) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [781440 2018-12-08] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) S2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3361736 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.) S2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2019-08-12] (Huawei Technologies Co., Ltd. -> ) [Brak podpisu cyfrowego] S2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc. -> LogMeIn, Inc.) R2 NortonSecurity; C:\Program Files\Norton Security\Engine\22.19.8.65\NortonSecurity.exe [225608 2019-09-11] (Symantec Corporation -> Symantec Corporation) R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764456 2018-07-19] (NVIDIA Corporation -> NVIDIA Corporation) S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764456 2018-07-19] (NVIDIA Corporation -> NVIDIA Corporation) S3 Origin Client Service; D:\Origin\OriginClientService.exe [2403120 2019-10-22] (Electronic Arts, Inc. -> Electronic Arts) R2 Origin Web Helper Service; D:\Origin\OriginWebHelperService.exe [3282736 2019-10-22] (Electronic Arts, Inc. -> Electronic Arts) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 AsusVBus; C:\Windows\System32\drivers\AsusVBus.sys [39704 2017-01-09] (ASUSTeK Computer Inc. -> Windows (R) Win 7 DDK provider) R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [75576 2017-01-09] (ASUSTeK Computer Inc. -> ASUS Corporation) S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Broadcom Corporation -> Windows (R) Win 7 DDK provider) R1 BHDrvx64; C:\Program Files\Norton Security\NortonData\22.15.0.88\Definitions\BASHDefs\20191105.001\BHDrvx64.sys [1952136 2019-10-03] (Symantec Corporation -> Symantec Corporation) R1 ccSet_NGC; C:\Windows\System32\drivers\NGCx64\1613080.041\ccSetx64.sys [194416 2019-09-11] (Symantec Corporation -> Symantec Corporation) R3 csravrcp; C:\Windows\System32\drivers\csravrcp.sys [26304 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) R3 CsrBthAudioHF; C:\Windows\system32\DRIVERS\CsrBthAudioHF.sys [39120 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) R3 CsrBtPort; C:\Windows\system32\DRIVERS\CsrBtPort.sys [2784968 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) R3 csrhfgcc; C:\Windows\System32\drivers\csrhfgcc.sys [38080 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) R3 csrpan; C:\Windows\system32\DRIVERS\csrpan.sys [39616 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) R3 csrserial; C:\Windows\system32\DRIVERS\csrserial.sys [61128 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) R3 csrusb; C:\Windows\System32\Drivers\csrusb.sys [47296 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) R3 csrusbfilter; C:\Windows\System32\Drivers\csrusbfilter.sys [23752 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) R3 csr_bthav; C:\Windows\system32\drivers\csrbthav.sys [99520 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [146856 2013-06-04] (BoiseTest -> Windows (R) Win 7 DDK provider) S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [21928 2013-06-04] (BoiseTest -> Windows (R) Win 7 DDK provider) S3 dot4usb; C:\Windows\system32\DRIVERS\dot4usb.sys [43944 2013-06-04] (BoiseTest -> Microsoft Corporation) R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2018-12-14] (Disc Soft Ltd -> Disc Soft Ltd) R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [47672 2018-12-14] (Disc Soft Ltd -> Disc Soft Ltd) R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [516784 2019-10-11] (Symantec Corporation -> Symantec Corporation) R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [154288 2019-10-13] (Symantec Corporation -> Symantec Corporation) S3 EvolveVirtualAdapter; C:\Windows\system32\DRIVERS\evolve.sys [21656 2018-09-13] (Echobit, LLC -> Echobit, LLC) S3 ew_usbccgpfilter; C:\Windows\System32\drivers\ew_usbccgpfilter.sys [18944 2019-08-12] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.) R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2019-04-02] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.) U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2019-08-12] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.) R1 IDSVia64; C:\Program Files\Norton Security\NortonData\22.15.0.88\Definitions\IPSDefs\20191108.061\IDSvia64.sys [1451016 2019-08-06] (Symantec Corporation -> Symantec Corporation) R3 Neo_VPN; C:\Windows\system32\DRIVERS\Neo_VPN.sys [38088 2019-05-25] (SoftEther Corporation -> SoftEther Corporation) S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30656 2018-07-12] (NVIDIA Corporation -> NVIDIA Corporation) R3 NVVADARM; C:\Windows\system32\drivers\nvvadarm.sys [56152 2019-11-08] (NVIDIA Corporation -> NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [69544 2018-06-08] (NVIDIA Corporation -> NVIDIA Corporation) R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [66792 2019-02-20] (NVIDIA Corporation -> NVIDIA Corporation) R1 SeLow; C:\Windows\system32\DRIVERS\SeLow_x64.sys [50888 2019-05-25] (SoftEther Corporation -> SoftEther Corporation) R3 SRTSP; C:\Windows\System32\drivers\NGCx64\1613080.041\SRTSP64.SYS [885936 2019-09-11] (Symantec Corporation -> Symantec Corporation) R1 SRTSPX; C:\Windows\System32\drivers\NGCx64\1613080.041\SRTSPX64.SYS [50864 2019-09-11] (Symantec Corporation -> Symantec Corporation) R0 SymEFASI; C:\Windows\System32\drivers\NGCx64\1613080.041\SYMEFASI64.SYS [1963400 2019-09-11] (Symantec Corporation -> Symantec Corporation) S0 SymELAM; C:\Windows\System32\drivers\NGCx64\1613080.041\SymELAM.sys [25744 2019-09-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Symantec Corporation) R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [100064 2019-03-27] (Symantec Corporation -> Symantec Corporation) S3 SymEvnt; C:\Program Files\Norton Security\NortonData\22.15.0.88\SymPlatform\SymEvnt.sys [721584 2019-10-11] (Symantec Corporation -> Symantec Corporation) R1 SymIRON; C:\Windows\System32\drivers\NGCx64\1613080.041\Ironx64.SYS [316656 2019-09-11] (Symantec Corporation -> Symantec Corporation) R1 SymNetS; C:\Windows\System32\drivers\NGCx64\1613080.041\symnets.sys [573448 2019-09-11] (Symantec Corporation -> Symantec Corporation) S3 ViGEmBus; C:\Windows\System32\drivers\ViGEmBus.sys [53128 2018-01-19] (Microsoft Windows Hardware Compatibility Publisher -> Benjamin Höglinger-Stelzer) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation) S3 wpCtrlDrv_NGC; C:\Windows\System32\drivers\NGCx64\1613080.041\wpCtrlDrv.sys [1012120 2019-09-11] (Symantec Corporation -> Symantec Corporation) R3 XtuAcpiDriver; C:\Windows\System32\drivers\XtuAcpiDriver.sys [62856 2017-10-24] (Intel Corporation -> Intel Corporation) S3 AndnetBus; \SystemRoot\System32\drivers\lgandnetbus64.sys [X] S3 AndNetDiag; \SystemRoot\system32\DRIVERS\lgandnetdiag64.sys [X] S3 ANDNetModem; \SystemRoot\system32\DRIVERS\lgandnetmodem64.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) =================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-11-12 18:33 - 2019-11-12 18:45 - 000000000 ____D C:\FRST 2019-11-12 16:55 - 2019-11-08 11:05 - 001074080 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll 2019-11-12 16:55 - 2019-11-08 11:05 - 001074080 _____ C:\Windows\system32\vulkan-1.dll 2019-11-12 16:55 - 2019-11-08 11:05 - 000931744 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll 2019-11-12 16:55 - 2019-11-08 11:05 - 000931744 _____ C:\Windows\SysWOW64\vulkan-1.dll 2019-11-12 16:55 - 2019-11-08 11:05 - 000848800 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe 2019-11-12 16:55 - 2019-11-08 11:05 - 000848800 _____ C:\Windows\system32\vulkaninfo.exe 2019-11-12 16:55 - 2019-11-08 11:05 - 000706464 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2019-11-12 16:55 - 2019-11-08 11:05 - 000706464 _____ C:\Windows\SysWOW64\vulkaninfo.exe 2019-11-12 16:55 - 2019-11-08 11:05 - 000449136 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2019-11-12 16:55 - 2019-11-08 11:05 - 000427264 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll 2019-11-12 16:55 - 2019-11-08 11:05 - 000352216 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2019-11-12 16:55 - 2019-11-08 11:05 - 000056152 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvadarm.sys 2019-11-12 16:55 - 2019-11-08 11:04 - 126658464 _____ (NVIDIA Corp.) C:\Windows\system32\nvoptix.dll 2019-11-12 16:55 - 2019-11-08 11:04 - 040276896 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll 2019-11-12 16:55 - 2019-11-08 11:04 - 029926416 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl64.dll 2019-11-12 16:55 - 2019-11-08 11:04 - 029529200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2019-11-12 16:55 - 2019-11-08 11:04 - 027522936 _____ (NVIDIA Corporation) C:\Windows\system32\nvrtum64.dll 2019-11-12 16:55 - 2019-11-08 11:04 - 025235376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl32.dll 2019-11-12 16:55 - 2019-11-08 11:04 - 011841968 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll 2019-11-12 16:55 - 2019-11-08 11:04 - 010167216 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll 2019-11-12 16:55 - 2019-11-08 11:04 - 000430296 _____ C:\Windows\system32\nvofapi64.dll 2019-11-12 16:55 - 2019-11-08 11:04 - 000172672 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll 2019-11-12 16:55 - 2019-11-08 11:04 - 000152688 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll 2019-11-12 16:55 - 2019-11-08 11:03 - 040510408 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll 2019-11-12 16:55 - 2019-11-08 11:03 - 035379672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll 2019-11-12 16:55 - 2019-11-08 11:03 - 022356424 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2019-11-12 16:55 - 2019-11-08 11:03 - 017458632 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2019-11-12 16:55 - 2019-11-08 11:03 - 015028312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2019-11-12 16:55 - 2019-11-08 11:03 - 004992088 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2019-11-12 16:55 - 2019-11-08 11:03 - 004449392 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2019-11-12 16:55 - 2019-11-08 11:03 - 002073504 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2019-11-12 16:55 - 2019-11-08 11:03 - 001734256 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6444120.dll 2019-11-12 16:55 - 2019-11-08 11:03 - 001567856 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2019-11-12 16:55 - 2019-11-08 11:03 - 001492696 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6444120.dll 2019-11-12 16:55 - 2019-11-08 11:03 - 001482368 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2019-11-12 16:55 - 2019-11-08 11:03 - 001370056 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll 2019-11-12 16:55 - 2019-11-08 11:03 - 001145928 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2019-11-12 16:55 - 2019-11-08 11:03 - 001066056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll 2019-11-12 16:55 - 2019-11-08 11:03 - 000957552 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcumd.dll 2019-11-12 16:55 - 2019-11-08 11:03 - 000633984 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll 2019-11-12 16:55 - 2019-11-08 11:03 - 000545880 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2019-11-12 16:55 - 2019-11-08 11:03 - 000526976 _____ (NVIDIA Corporation) C:\Windows\system32\nvcbl64.dll 2019-11-12 16:55 - 2019-11-08 11:03 - 000524912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll 2019-11-12 16:55 - 2019-11-08 11:03 - 000475864 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2019-11-12 16:55 - 2019-11-08 11:03 - 000381536 _____ C:\Windows\SysWOW64\nvofapi.dll 2019-11-12 16:55 - 2019-11-08 11:03 - 000190024 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll 2019-11-12 16:55 - 2019-11-08 11:03 - 000177736 _____ (NVIDIA Corporation) C:\Windows\system32\nvdlistx.dll 2019-11-12 16:55 - 2019-11-08 11:03 - 000165336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll 2019-11-12 16:55 - 2019-11-08 11:03 - 000155248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvdlist.dll 2019-11-12 16:55 - 2019-11-08 11:03 - 000134272 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcaparm.dll 2019-11-12 16:55 - 2019-11-08 11:02 - 034361008 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2019-11-12 16:55 - 2019-11-08 11:02 - 022091528 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll 2019-11-12 16:55 - 2019-11-08 11:02 - 018406184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll 2019-11-12 16:55 - 2019-11-08 11:02 - 004244320 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2019-11-12 16:46 - 2019-11-12 16:46 - 000000000 ____D C:\Windows\system32\Tasks\Remediation 2019-11-04 16:24 - 2019-11-04 16:24 - 000000000 ____D C:\Windows\LastGood 2019-11-04 16:23 - 2019-10-25 10:38 - 001733672 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6444112.dll 2019-11-04 16:23 - 2019-10-25 10:38 - 001491680 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6444112.dll 2019-11-03 12:38 - 2019-11-03 12:40 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server 2019-11-03 12:38 - 2019-11-03 12:38 - 000000000 ____D C:\Users\Dawid\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server 2019-11-03 12:21 - 2019-11-11 20:30 - 000000000 ____D C:\Users\Dawid\Desktop\pendrive kopia 2019-11-02 22:46 - 2019-11-02 22:46 - 000000000 ____D C:\Windows\LastGood.Tmp 2019-11-02 22:45 - 2019-10-23 15:12 - 001733720 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6444108.dll 2019-11-02 22:45 - 2019-10-23 15:12 - 001491072 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6444108.dll 2019-11-02 22:45 - 2019-10-22 21:11 - 000000671 _____ C:\Windows\SysWOW64\nv-vk32.json 2019-11-02 22:45 - 2019-10-22 21:11 - 000000671 _____ C:\Windows\system32\nv-vk64.json 2019-11-02 21:37 - 2019-11-12 18:28 - 000032768 _____ C:\Users\Public\Documents\crash_dump.bin 2019-11-02 21:37 - 2019-11-12 18:28 - 000032768 _____ C:\ProgramData\Documents\crash_dump.bin 2019-10-30 19:25 - 2019-10-30 20:12 - 000000000 ____D C:\Users\Dawid\Desktop\zapytanie 7.1 OEG 2019-10-27 10:21 - 2019-09-25 13:34 - 000162392 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe 2019-10-27 10:21 - 2019-09-25 05:18 - 002863104 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe 2019-10-27 10:21 - 2019-09-25 05:18 - 001717760 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2019-10-27 10:21 - 2019-09-25 05:18 - 000802816 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2019-10-27 10:21 - 2019-09-25 05:18 - 000738816 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2019-10-27 10:21 - 2019-09-25 05:18 - 000634368 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2019-10-27 10:21 - 2019-09-25 05:18 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll 2019-10-27 10:21 - 2019-09-25 05:18 - 000456704 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2019-10-27 10:21 - 2019-09-25 05:18 - 000315904 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2019-10-27 10:21 - 2019-09-25 05:18 - 000257024 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll 2019-10-27 10:21 - 2019-09-19 07:21 - 000098304 _____ (Microsoft Corporation) C:\Windows\system32\setupcl.exe 2019-10-27 10:21 - 2019-09-19 07:11 - 000229888 _____ (Microsoft Corporation) C:\Windows\system32\ActionQueue.dll 2019-10-27 10:21 - 2019-09-19 07:10 - 000020992 _____ (Microsoft Corporation) C:\Windows\system32\spopk.dll 2019-10-27 10:21 - 2019-09-19 07:00 - 000169472 _____ (Microsoft Corporation) C:\Windows\system32\uxlib.dll 2019-10-27 10:21 - 2019-09-19 06:59 - 000246784 _____ (Microsoft Corporation) C:\Windows\system32\unattend.dll 2019-10-27 10:21 - 2019-09-19 06:48 - 000475648 _____ (Microsoft Corporation) C:\Windows\system32\spwizeng.dll 2019-10-27 10:21 - 2019-09-19 06:26 - 000848896 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll 2019-10-27 10:21 - 2019-09-19 06:20 - 000333312 _____ (Microsoft Corporation) C:\Windows\system32\winsku.dll 2019-10-27 10:21 - 2019-09-19 06:16 - 000712192 _____ (Microsoft Corporation) C:\Windows\system32\DismApi.dll 2019-10-27 10:21 - 2019-09-19 04:26 - 000469504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DismApi.dll 2019-10-27 10:21 - 2019-09-19 04:26 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsku.dll 2019-10-27 10:21 - 2019-09-19 02:38 - 000120824 _____ (Microsoft Corporation) C:\Windows\system32\userenv.dll 2019-10-27 10:21 - 2019-09-19 02:34 - 000098080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\userenv.dll 2019-10-27 10:21 - 2019-09-12 23:46 - 000017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spopk.dll 2019-10-27 10:21 - 2019-09-12 23:36 - 000126464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxlib.dll 2019-10-27 10:21 - 2019-09-12 23:25 - 000380928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwizeng.dll 2019-10-27 10:21 - 2019-09-10 22:34 - 000354544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fltMgr.sys 2019-10-27 10:21 - 2019-09-07 16:18 - 015441408 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll 2019-10-27 10:21 - 2019-09-07 16:09 - 013321728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll 2019-10-27 10:21 - 2019-09-06 14:17 - 000249856 _____ (Gracenote, Inc.) C:\Windows\SysWOW64\gnsdk_fp.dll 2019-10-27 10:21 - 2019-08-31 17:50 - 004169216 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2019-10-27 10:21 - 2014-11-15 20:05 - 000801584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll 2019-10-27 10:21 - 2014-11-15 07:29 - 000962216 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll 2019-10-27 10:21 - 2014-11-14 07:57 - 001027584 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll 2019-10-27 10:21 - 2014-11-14 06:03 - 000885760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll 2019-10-27 10:21 - 2014-11-08 03:03 - 000733696 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveTelemetry.dll 2019-10-27 10:21 - 2014-11-08 02:58 - 004837376 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll 2019-10-27 10:21 - 2014-11-08 02:49 - 001154048 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe 2019-10-27 10:21 - 2014-11-05 03:12 - 000211968 _____ (Microsoft Corporation) C:\Windows\system32\QSHVHOST.DLL 2019-10-27 10:21 - 2014-11-05 03:12 - 000128000 _____ (Microsoft Corporation) C:\Windows\system32\QSVRMGMT.DLL 2019-10-27 10:21 - 2014-11-05 03:06 - 000514048 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairing.dll 2019-10-27 10:21 - 2014-11-05 02:39 - 000155648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\QSHVHOST.DLL 2019-10-27 10:21 - 2014-11-05 02:39 - 000094208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\QSVRMGMT.DLL 2019-10-27 10:21 - 2014-11-05 02:33 - 000465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevicePairing.dll 2019-10-27 10:21 - 2014-11-05 02:14 - 000309760 _____ (Microsoft Corporation) C:\Windows\system32\WSDMon.dll 2019-10-27 10:21 - 2014-11-04 20:33 - 000058176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dam.sys 2019-10-27 10:21 - 2014-10-21 02:59 - 000016896 _____ (Microsoft Corporation) C:\Windows\system32\eventcls.dll 2019-10-27 10:21 - 2014-10-21 02:19 - 000015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eventcls.dll 2019-10-27 10:21 - 2014-10-21 01:50 - 000074752 _____ (Microsoft Corporation) C:\Windows\system32\vsstrace.dll 2019-10-27 10:21 - 2014-10-21 01:31 - 001574400 _____ (Microsoft Corporation) C:\Windows\system32\vssapi.dll 2019-10-27 10:21 - 2014-10-21 01:31 - 000055296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vsstrace.dll 2019-10-27 10:21 - 2014-10-21 01:20 - 001142272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vssapi.dll 2019-10-27 10:21 - 2014-10-17 05:56 - 000039744 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\intelpep.sys 2019-10-27 10:20 - 2015-10-22 18:43 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\kbdgeoqw.dll 2019-10-27 10:20 - 2015-10-22 18:43 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZST.DLL 2019-10-27 10:20 - 2015-10-22 18:43 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZEL.DLL 2019-10-27 10:20 - 2015-10-22 18:43 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZE.DLL 2019-10-27 10:20 - 2015-10-22 17:59 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kbdgeoqw.dll 2019-10-27 10:20 - 2015-10-22 17:59 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZST.DLL 2019-10-27 10:20 - 2015-10-22 17:59 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZEL.DLL 2019-10-27 10:20 - 2015-10-22 17:59 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZE.DLL 2019-10-27 10:20 - 2014-11-17 21:17 - 000672984 _____ (Microsoft Corporation) C:\Windows\system32\MDMAgent.exe 2019-10-27 10:20 - 2014-11-14 07:54 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.Handlers.dll 2019-10-15 21:30 - 2019-10-15 21:30 - 000001269 _____ C:\Users\Dawid\Desktop\Rocksmith2014.exe — skrót.lnk 2019-10-15 21:27 - 2019-10-15 21:27 - 000000000 ____D C:\Users\Dawid\AppData\Local\SKIDROW 2019-10-15 20:00 - 2019-10-15 20:00 - 000000283 _____ C:\Users\Dawid\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kosz.lnk 2019-10-15 19:51 - 2019-10-15 19:51 - 000000000 ____D C:\Program Files (x86)\Teams Installer 2019-10-15 19:49 - 2019-10-15 19:57 - 000002402 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk 2019-10-15 19:49 - 2019-10-15 19:49 - 000002511 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype dla firm.lnk 2019-10-15 19:49 - 2019-10-15 19:49 - 000002414 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk 2019-10-15 19:49 - 2019-10-15 19:49 - 000002387 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk 2019-10-15 19:49 - 2019-10-15 19:49 - 000002384 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk 2019-10-15 19:49 - 2019-10-15 19:49 - 000002381 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk 2019-10-15 19:49 - 2019-10-15 19:49 - 000002348 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk 2019-10-15 19:49 - 2019-10-15 19:49 - 000002338 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk 2019-10-15 19:49 - 2019-10-15 19:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Narzędzia pakietu Microsoft Office 2019-10-15 19:49 - 2019-10-15 19:49 - 000000000 ____D C:\Program Files\Common Files\DESIGNER 2019-10-15 19:42 - 2019-10-15 19:42 - 000000000 ____D C:\Program Files\Microsoft Office 15 ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-11-12 18:19 - 2018-11-10 11:47 - 000000000 ____D C:\Windows\SysWOW64\directx 2019-11-12 17:26 - 2018-09-04 22:15 - 000003598 _____ C:\Windows\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1072038117-1971277354-2335355041-1001 2019-11-12 17:22 - 2018-09-04 22:13 - 000000000 ____D C:\ProgramData\NVIDIA 2019-11-12 17:22 - 2013-08-22 14:36 - 000000000 ____D C:\Windows\Inf 2019-11-12 16:13 - 2018-09-04 22:11 - 000002250 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2019-11-12 16:13 - 2018-09-04 22:11 - 000002209 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2019-11-12 16:13 - 2018-09-04 22:11 - 000002209 _____ C:\ProgramData\Desktop\Google Chrome.lnk 2019-11-12 16:12 - 2014-11-21 05:46 - 001834486 _____ C:\Windows\system32\PerfStringBackup.INI 2019-11-12 16:12 - 2014-11-21 05:07 - 000806348 _____ C:\Windows\system32\perfh015.dat 2019-11-12 16:12 - 2014-11-21 05:07 - 000163142 _____ C:\Windows\system32\perfc015.dat 2019-11-12 16:04 - 2018-09-26 21:17 - 000000000 ____D C:\Users\Dawid\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASUS 2019-11-12 16:04 - 2018-09-26 21:17 - 000000000 ____D C:\ProgramData\ASUS Smart Gesture 2019-11-12 16:04 - 2018-09-04 22:09 - 000000000 ____D C:\Users\Dawid\OneDrive 2019-11-12 16:03 - 2013-08-22 14:25 - 000262144 ___SH C:\Windows\system32\config\ELAM 2019-11-12 16:02 - 2013-08-22 15:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2019-11-11 20:54 - 2013-08-22 14:25 - 000262144 ___SH C:\Windows\system32\config\BBI 2019-11-08 11:05 - 2018-09-04 22:18 - 000510208 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll 2019-11-08 11:03 - 2017-11-09 04:03 - 001492696 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcvadgenco64.dll 2019-11-08 11:02 - 2017-11-09 03:33 - 039825016 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll 2019-11-08 11:02 - 2017-11-09 03:32 - 004799872 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2019-11-07 16:11 - 2019-05-25 19:37 - 000004078 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1558809454 2019-11-07 16:11 - 2019-05-25 19:37 - 000001373 _____ C:\Users\Dawid\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Przeglądarka Opera.lnk 2019-11-07 03:36 - 2017-11-09 02:57 - 000052682 _____ C:\Windows\system32\nvinfo.pb 2019-11-07 01:35 - 2018-09-04 22:20 - 005549688 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2019-11-07 01:35 - 2018-09-04 22:20 - 002650992 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll 2019-11-07 01:35 - 2018-09-04 22:20 - 001767264 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll 2019-11-07 01:35 - 2018-09-04 22:20 - 000668016 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll 2019-11-07 01:35 - 2018-09-04 22:20 - 000454680 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll 2019-11-07 01:35 - 2018-09-04 22:20 - 000129576 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll 2019-11-07 01:35 - 2018-09-04 22:20 - 000083576 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll 2019-11-06 22:58 - 2018-09-08 15:51 - 000000000 ____D C:\Users\Dawid\AppData\Roaming\BitTorrent 2019-11-06 14:19 - 2018-09-04 22:20 - 008782162 _____ C:\Windows\system32\nvcoproc.bin 2019-11-05 18:34 - 2018-09-04 22:10 - 000003484 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA 2019-11-05 18:34 - 2018-09-04 22:10 - 000003356 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore 2019-11-05 18:34 - 2018-09-04 22:10 - 000000000 ____D C:\Program Files (x86)\Google 2019-11-04 21:41 - 2019-04-08 21:02 - 000000000 ____D C:\Users\Dawid\AppData\Roaming\TIDAL 2019-11-04 20:19 - 2019-09-26 16:49 - 000000000 ____D C:\Users\Dawid\AppData\Local\TIDAL 2019-11-04 16:55 - 2013-08-22 15:44 - 000476688 _____ C:\Windows\system32\FNTCACHE.DAT 2019-11-02 22:43 - 2019-04-19 22:45 - 000000000 ____D C:\Users\Dawid\Documents\Assassin's Creed Unity 2019-11-02 21:52 - 2019-04-18 19:31 - 000000000 ____D C:\Users\Dawid\AppData\Local\Ubisoft Game Launcher 2019-11-02 21:09 - 2018-09-04 22:12 - 000000000 ____D C:\ProgramData\Package Cache 2019-11-02 21:08 - 2018-12-15 15:57 - 000000000 ____D C:\Users\Dawid\Documents\My Games 2019-11-02 21:08 - 2018-09-04 22:13 - 000000000 ____D C:\Users\Dawid\AppData\Local\UnrealEngine 2019-11-02 13:48 - 2018-09-05 15:47 - 000003168 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1072038117-1971277354-2335355041-1001 2019-11-02 13:48 - 2018-09-04 22:26 - 000002381 _____ C:\Users\Dawid\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive dla Firm.lnk 2019-10-31 22:52 - 2018-09-04 22:05 - 000000000 ____D C:\Users\Dawid 2019-10-30 19:42 - 2018-09-04 22:05 - 000000000 ____D C:\Users\Dawid\AppData\Local\Packages 2019-10-30 19:37 - 2018-10-14 19:13 - 000162816 ___SH C:\Users\Dawid\Desktop\Thumbs.db 2019-10-29 16:12 - 2019-02-09 20:55 - 000000000 ____D C:\Users\Dawid\AppData\Local\ElevatedDiagnostics 2019-10-28 04:47 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\rescache 2019-10-27 16:09 - 2013-08-22 16:20 - 000000000 ____D C:\Windows\CbsTemp 2019-10-27 11:46 - 2018-09-05 21:38 - 000000000 ____D C:\Windows\system32\appraiser 2019-10-27 11:46 - 2013-08-22 14:36 - 000000000 ____D C:\Windows\SysWOW64\Dism 2019-10-27 11:46 - 2013-08-22 14:36 - 000000000 ____D C:\Windows\system32\oobe 2019-10-27 11:46 - 2013-08-22 14:36 - 000000000 ____D C:\Windows\system32\Dism 2019-10-27 10:20 - 2019-09-22 13:27 - 000000000 ____D C:\Users\Dawid\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rockstar Games 2019-10-27 10:20 - 2018-11-02 13:57 - 000000000 ____D C:\Program Files\Rockstar Games 2019-10-27 10:20 - 2018-11-02 13:57 - 000000000 ____D C:\Program Files (x86)\Rockstar Games 2019-10-25 10:39 - 2018-09-04 22:18 - 000510664 _____ (NVIDIA Corporation) C:\Windows\system32\SET3D8F.tmp 2019-10-25 10:38 - 2017-11-09 04:03 - 001491472 _____ (NVIDIA Corporation) C:\Windows\system32\SETBA12.tmp 2019-10-25 10:37 - 2017-11-09 03:33 - 039816512 _____ (NVIDIA Corporation) C:\Windows\system32\SET3EBA.tmp 2019-10-25 10:36 - 2017-11-09 03:32 - 004784872 _____ (NVIDIA Corporation) C:\Windows\system32\SET30CA.tmp 2019-10-19 10:42 - 2018-11-10 11:33 - 000000000 ____D C:\Users\Dawid\AppData\Local\CrashDumps 2019-10-18 15:25 - 2013-08-22 16:36 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2019-10-18 15:24 - 2018-09-04 22:18 - 000000000 ____D C:\Program Files\Microsoft Office 2019-10-18 15:24 - 2013-08-22 16:36 - 000000000 ____D C:\Program Files\Common Files\microsoft shared ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) UWAGA: ==> Nie można uzyskać dostępu do BCD. -> 0 LastRegBack: 2019-11-11 11:05 ==================== Koniec FRST.txt ========================