Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja:07-02-2016 Uruchomiony przez Jakub (administrator) JAKUB-KOMPUTER (11-02-2016 09:57:33) Uruchomiony z C:\Users\Jakub\Desktop\Nowy folder (8) Załadowane profile: Jakub (Dostępne profile: Jakub) Platform: Windows 7 Ultimate Service Pack 1 (X64) Język: Polski (Polska) Internet Explorer Wersja 11 (Domyślna przeglądarka: Chrome) Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (Emsisoft Ltd) C:\Program Files\Emsisoft Anti-Malware\a2service.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (AVAST Software) E:\Avast\AvastSvc.exe (Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe () C:\Windows\System32\PnkBstrA.exe (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe (Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe (Emsisoft Ltd) C:\Program Files\Emsisoft Anti-Malware\a2guard.exe (BitTorrent Inc.) C:\Users\Jakub\AppData\Roaming\BitTorrent\BitTorrent.exe () C:\Program Files\WeiLiangHiFi\WeiLiangHiFiUSBAudio_Driver\WeiLiangHiFiAudioCpl.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (AVAST Software) E:\Avast\AvastUI.exe (BitTorrent Inc.) C:\Users\Jakub\AppData\Roaming\BitTorrent\updates\7.9.5_41713\utorrentie.exe (Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe () C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe (BitTorrent Inc.) C:\Users\Jakub\AppData\Roaming\BitTorrent\updates\7.9.5_41713\utorrentie.exe (GOG.com) C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe (GOG.com) C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe (GOG.com) C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe (GOG.com) C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Rejestr (filtrowane) =========================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-10-01] (Microsoft Corporation) HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2787264 2016-01-12] (NVIDIA Corporation) HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [10396440 2014-04-15] (Logitech Inc.) HKLM\...\Run: [emsisoft anti-malware] => c:\program files\emsisoft anti-malware\a2guard.exe [9235928 2016-01-27] (Emsisoft Ltd) HKLM-x32\...\Run: [AvastUI.exe] => E:\Avast\AvastUI.exe [7139768 2016-02-08] (AVAST Software) HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-13] (Logitech Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [594992 2016-01-29] (Oracle Corporation) HKU\S-1-5-21-2807787745-202846158-3995719364-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8551848 2015-10-19] (Piriform Ltd) HKU\S-1-5-21-2807787745-202846158-3995719364-1000\...\Run: [GalaxyClient] => C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe [7744568 2015-10-15] (GOG.com) HKU\S-1-5-21-2807787745-202846158-3995719364-1000\...\Run: [BitTorrent] => C:\Users\Jakub\AppData\Roaming\BitTorrent\BitTorrent.exe [1903648 2016-02-10] (BitTorrent Inc.) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => E:\Avast\ashShA64.dll [2016-02-08] (AVAST Software) ShellIconOverlayIdentifiers: [GGDriveOverlay1] -> {E68D0A50-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2012-06-05] (GG Network S.A.) ShellIconOverlayIdentifiers: [GGDriveOverlay2] -> {E68D0A51-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2012-06-05] (GG Network S.A.) ShellIconOverlayIdentifiers: [GGDriveOverlay3] -> {E68D0A52-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2012-06-05] (GG Network S.A.) ShellIconOverlayIdentifiers: [GGDriveOverlay4] -> {E68D0A53-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2012-06-05] (GG Network S.A.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WeiLiangHiFiAudio Control Panel Autostart.lnk [2014-08-01] ShortcutTarget: WeiLiangHiFiAudio Control Panel Autostart.lnk -> C:\Program Files\WeiLiangHiFi\WeiLiangHiFiUSBAudio_Driver\WeiLiangHiFiAudioCpl.exe () ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{32F846FD-34C3-4411-87AB-37EEBCFA7319}: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{36D8C4CD-7B9C-483B-BD7D-820B53A41F97}: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{7B7EDA50-E821-4D71-8FEB-DF71952B811C}: [DhcpNameServer] 10.1.1.30 10.1.1.32 Tcpip\..\Interfaces\{DE29F3F7-EDA9-4944-B348-00A82C40C012}: [DhcpNameServer] 192.168.42.129 Internet Explorer: ================== HKU\S-1-5-21-2807787745-202846158-3995719364-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-01-19] (Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_73\bin\ssv.dll [2016-02-06] (Oracle Corporation) BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> E:\Avast\aswWebRepIE64.dll [2016-02-08] (AVAST Software) BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation) BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL [2016-01-17] (Microsoft Corporation) BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-01-18] (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-02-06] (Oracle Corporation) BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2016-01-19] (Microsoft Corporation) BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> E:\Avast\aswWebRepIE.dll [2016-02-08] (AVAST Software) BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation) BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL [2016-01-17] (Microsoft Corporation) BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2016-01-17] (Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-01-17] (Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-01-17] (Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-01-17] (Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-01-17] (Microsoft Corporation) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies) Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation) Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation) Chrome: ======= CHR HomePage: Default -> hxxp://www.google.com CHR Plugin: (Widevine Content Decryption Module) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.8.866\_platform_specific\win_x86\widevinecdmadapter.dll (Google Inc.) CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.109\PepperFlash\pepflashplayer.dll () CHR Profile: C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Prezentacje Google) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-09-07] CHR Extension: (Dokumenty Google) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-09-07] CHR Extension: (Dysk Google) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21] CHR Extension: (YouTube) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25] CHR Extension: (Obudź ukrytą Moc) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\boeojddkbfhdgnnicgkgogjnbkdljibb [2016-02-02] CHR Extension: (Adblock Plus) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-02-04] CHR Extension: (Google Search) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27] CHR Extension: (Eliminator Slajdów) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\eplekpmdodlgejgogbojajncdlapamff [2015-09-17] CHR Extension: (Arkusze Google) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-09-07] CHR Extension: (Dokumenty Google offline) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-19] CHR Extension: (AdBlock) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-02-05] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-09-07] CHR Extension: (Gmail) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-09-07] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - E:\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-02-08] CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2016-01-08] ==================== Usługi (filtrowane) ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 a2AntiMalware; C:\Program Files\Emsisoft Anti-Malware\a2service.exe [10963864 2016-01-27] (Emsisoft Ltd) R2 avast! Antivirus; E:\Avast\AvastSvc.exe [237096 2016-02-08] (AVAST Software) R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2016-01-08] (Microsoft Corporation) R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-01-08] (Microsoft Corporation) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2772720 2016-01-17] (Microsoft Corporation) S3 GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [1616440 2015-10-15] (GOG.com) S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7220792 2016-01-30] (GOG.com) R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163200 2016-01-12] (NVIDIA Corporation) S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [Brak podpisu cyfrowego] R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [133632 2012-02-09] () R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2012-02-21] (Intel Corporation) S2 KMService; C:\Windows\SysWOW64\srvany.exe [8192 2012-12-03] () [Brak podpisu cyfrowego] S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [4702568 2012-10-24] (INCA Internet Co., Ltd.) [Brak podpisu cyfrowego] R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-01-12] (NVIDIA Corporation) R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [6308288 2016-01-12] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [4812736 2016-01-12] (NVIDIA Corporation) S3 Origin Client Service; E:\Origin\OriginClientService.exe [2104840 2016-02-03] (Electronic Arts) R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2015-10-24] () R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2015-10-23] () S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Brak podpisu cyfrowego] R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) U4 AvastVBoxSvc; "E:\Avast\ng\vbox\AvastVBoxSVC.exe" [X] ===================== Sterowniki (filtrowane) ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-02-08] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [107792 2016-02-08] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-02-08] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-02-08] (AVAST Software) R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1065720 2016-02-08] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [463744 2016-02-08] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [165344 2016-02-08] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [287016 2016-02-10] (AVAST Software) S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation) R1 epp; C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\epp.sys [124080 2016-02-09] (Emsisoft Ltd) S3 FNETTBOH_305; C:\Windows\System32\drivers\FNETTBOH_305.SYS [32320 2013-02-21] (FNet Co., Ltd.) R1 FNETURPX; C:\Windows\System32\drivers\FNETURPX.SYS [15936 2012-08-04] (FNet Co., Ltd.) R3 ikbevent; C:\Windows\System32\DRIVERS\ikbevent.sys [25536 2012-02-09] () R3 imsevent; C:\Windows\System32\DRIVERS\imsevent.sys [25536 2012-02-09] () R3 ISCT; C:\Windows\System32\DRIVERS\ISCTD64.sys [44992 2012-02-09] () R3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech Inc.) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-01-12] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [47760 2015-12-18] (NVIDIA Corporation) S3 s1018bus; C:\Windows\System32\DRIVERS\s1018bus.sys [113704 2009-03-25] (MCCI Corporation) S3 s1018mdfl; C:\Windows\System32\DRIVERS\s1018mdfl.sys [19496 2009-03-25] (MCCI Corporation) S3 s1018mdm; C:\Windows\System32\DRIVERS\s1018mdm.sys [153128 2009-03-25] (MCCI Corporation) S3 s1018mgmt; C:\Windows\System32\DRIVERS\s1018mgmt.sys [133160 2009-03-25] (MCCI Corporation) S3 s1018nd5; C:\Windows\System32\DRIVERS\s1018nd5.sys [34856 2009-03-25] (MCCI Corporation) S3 s1018obex; C:\Windows\System32\DRIVERS\s1018obex.sys [128552 2009-03-25] (MCCI Corporation) S3 s1018unic; C:\Windows\System32\DRIVERS\s1018unic.sys [146472 2009-03-25] (MCCI Corporation) S3 SaiH0506; C:\Windows\System32\DRIVERS\SaiH0506.sys [171144 2007-05-01] (Saitek) S3 SG762_64; C:\Windows\System32\DRIVERS\WlanBZ64.sys [493440 2006-01-19] (ZyDAS Technology Corporation) [Brak podpisu cyfrowego] R0 sptd; C:\Windows\System32\Drivers\sptd.sys [381608 2015-07-24] (Duplex Secure Ltd.) S3 usbrndis6; C:\Windows\System32\DRIVERS\usb80236.sys [19968 2013-02-12] (Microsoft Corporation) S3 VaneFltr; C:\Windows\System32\drivers\Lachesis.sys [29952 2009-10-16] (Razer (Asia-Pacific) Pte Ltd) R1 veracrypt; C:\Windows\System32\drivers\veracrypt.sys [195416 2016-02-08] (IDRIX) R3 WeiLiangHiFi; C:\Windows\System32\DRIVERS\WeiLiangHiFi_x64.sys [245408 2012-09-10] () R3 WeiLiangHiFiks; C:\Windows\System32\DRIVERS\WeiLiangHiFiks_x64.sys [53408 2012-09-10] () R3 WPRO_41_2001; C:\Windows\System32\drivers\WPRO_41_2001.sys [34752 2016-02-11] () S3 xmosusbaudiost2022; C:\Windows\System32\DRIVERS\xmosusbaudiost2022_x64.sys [236544 2013-10-21] () [Brak podpisu cyfrowego] S3 xmosusbaudiost2022ks; C:\Windows\System32\DRIVERS\xmosusbaudiost2022ks_x64.sys [45568 2013-10-21] () [Brak podpisu cyfrowego] S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X] S3 tsusbhub; system32\drivers\tsusbhub.sys [X] U4 VBoxAswDrv; \??\E:\Avast\ng\vbox\VBoxAswDrv.sys [X] S3 VGPU; System32\drivers\rdvgkmd.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc - utworzone pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2016-02-11 09:49 - 2016-02-11 09:49 - 00094656 _____ (CACE Technologies) C:\Windows\system32\WPRO_41_2001woem.tmp 2016-02-11 09:27 - 2016-02-11 09:27 - 00000000 _____ C:\Users\Jakub\Desktop\Nowy dokument tekstowy (2).txt 2016-02-11 09:25 - 2016-02-11 09:25 - 00118904 _____ C:\Users\Jakub\AppData\Local\GDIPFONTCACHEV1.DAT 2016-02-11 01:07 - 2016-02-11 01:07 - 00000000 ____D C:\ProgramData\Windows Genuine Advantage 2016-02-11 00:49 - 2016-02-11 00:50 - 00000000 ____D C:\Users\Jakub\Downloads\Nowy folder (2) 2016-02-11 00:07 - 2016-02-11 09:57 - 00000000 ____D C:\Users\Jakub\Desktop\Nowy folder (8) 2016-02-11 00:06 - 2016-02-11 00:06 - 02370560 _____ (Farbar) C:\Users\Jakub\Downloads\FRST64.exe 2016-02-11 00:02 - 2012-07-05 21:06 - 00772544 _____ (Oracle Corporation) C:\Windows\SysWOW64\npDeployJava1.dll 2016-02-11 00:02 - 2012-07-05 21:06 - 00687544 _____ (Oracle Corporation) C:\Windows\SysWOW64\deployJava1.dll 2016-02-10 14:51 - 2016-02-10 14:51 - 00000000 ____D C:\Users\Jakub\cminstaller 2016-02-10 14:19 - 2016-02-10 14:19 - 00000000 ____D C:\Users\Jakub\Desktop\Nowy folder (9) 2016-02-10 14:14 - 2016-02-10 14:14 - 17602387 _____ C:\Users\Jakub\Downloads\CF-Auto-Root-m0-m0xx-gti9300.zip 2016-02-10 12:24 - 2016-02-10 12:54 - 00000000 ____D C:\Users\Jakub\Desktop\Nowy folder (7) 2016-02-10 12:23 - 2016-02-10 13:04 - 00000000 ____D C:\Users\Jakub\Desktop\Nowy folder (6) 2016-02-09 22:58 - 2016-02-10 12:23 - 00000000 ____D C:\Users\Jakub\Desktop\Nowy folder (5) 2016-02-09 21:29 - 2016-02-09 21:29 - 00380416 _____ C:\Users\Jakub\Downloads\bn9i9386.exe 2016-02-09 21:26 - 2016-02-11 09:57 - 00000000 ____D C:\FRST 2016-02-08 15:44 - 2016-02-10 14:22 - 00000000 ____D C:\KMPlayer 2016-02-08 15:44 - 2016-02-08 15:44 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The KMPlayer 2016-02-08 11:35 - 2016-02-08 11:35 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\VeraCrypt 2016-02-08 11:28 - 2016-02-08 11:28 - 00195416 _____ (IDRIX) C:\Windows\system32\Drivers\veracrypt.sys 2016-02-08 11:28 - 2016-02-08 11:28 - 00000505 _____ C:\Users\Public\Desktop\VeraCrypt.lnk 2016-02-08 11:28 - 2016-02-08 11:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VeraCrypt 2016-02-08 00:30 - 2016-02-08 00:30 - 00398152 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2016-02-08 00:30 - 2016-02-08 00:30 - 00052184 _____ (AVAST Software) C:\Windows\avastSS.scr 2016-02-08 00:05 - 2016-02-08 00:05 - 00000859 _____ C:\Users\Jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk 2016-02-08 00:05 - 2016-02-08 00:05 - 00000811 _____ C:\Users\Jakub\Desktop\Start Tor Browser.lnk 2016-02-08 00:04 - 2016-02-08 00:04 - 00000000 ____D C:\Users\Jakub\Desktop\Tor Browser 2016-02-07 20:17 - 2016-02-07 20:17 - 00000000 ____D C:\ProgramData\Emsisoft 2016-02-07 18:37 - 2016-02-07 18:37 - 00000920 _____ C:\Users\Public\Desktop\Emsisoft Anti-Malware.lnk 2016-02-07 18:37 - 2016-02-07 18:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Emsisoft Anti-Malware 2016-02-07 18:36 - 2016-02-11 09:50 - 00000000 ____D C:\Program Files\Emsisoft Anti-Malware 2016-02-06 22:22 - 2016-02-06 22:23 - 00000000 ____D C:\Users\Jakub\Desktop\Nowy folder (4) 2016-02-04 18:56 - 2016-02-04 18:56 - 01583221 _____ C:\Users\Jakub\Downloads\WSI_01 101_C.pdf 2016-02-02 09:40 - 2016-02-02 09:40 - 00000383 _____ C:\DelFix.txt 2016-02-02 00:53 - 2016-02-02 00:53 - 00041784 _____ C:\Users\Jakub\Documents\cc_20160202_005302.reg 2016-01-31 18:44 - 2016-01-31 18:44 - 00002557 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype dla firm 2016.lnk 2016-01-31 18:44 - 2016-01-31 18:44 - 00002527 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive dla firm.lnk 2016-01-31 18:44 - 2016-01-31 18:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Narzędzia pakietu Microsoft Office 2016 2016-01-31 17:22 - 2016-01-31 17:25 - 00000000 ____D C:\Users\Jakub\Downloads\Nowy folder (3) 2016-01-28 23:43 - 2016-01-23 02:12 - 00110016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe 2016-01-28 23:40 - 2016-01-23 04:42 - 42983992 _____ C:\Windows\system32\nvcompiler.dll 2016-01-28 23:40 - 2016-01-23 04:42 - 37614528 _____ C:\Windows\SysWOW64\nvcompiler.dll 2016-01-28 23:40 - 2016-01-23 04:42 - 31079992 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll 2016-01-28 23:40 - 2016-01-23 04:42 - 24911296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2016-01-28 23:40 - 2016-01-23 04:42 - 21193544 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll 2016-01-28 23:40 - 2016-01-23 04:42 - 20733832 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2016-01-28 23:40 - 2016-01-23 04:42 - 17626352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll 2016-01-28 23:40 - 2016-01-23 04:42 - 17218792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2016-01-28 23:40 - 2016-01-23 04:42 - 12379072 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2016-01-28 23:40 - 2016-01-23 04:42 - 03145272 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2016-01-28 23:40 - 2016-01-23 04:42 - 02721216 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2016-01-28 23:40 - 2016-01-23 04:42 - 01924152 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6436175.dll 2016-01-28 23:40 - 2016-01-23 04:42 - 01573432 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6436175.dll 2016-01-28 23:40 - 2016-01-23 04:42 - 00948672 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2016-01-28 23:40 - 2016-01-23 04:42 - 00880576 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2016-01-28 23:40 - 2016-01-23 04:42 - 00747064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2016-01-28 23:40 - 2016-01-23 04:42 - 00689600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2016-01-28 23:40 - 2016-01-23 04:42 - 00501896 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2016-01-28 23:40 - 2016-01-23 04:42 - 00468960 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll 2016-01-28 23:40 - 2016-01-23 04:42 - 00425016 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll 2016-01-28 23:40 - 2016-01-23 04:42 - 00423080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2016-01-28 23:40 - 2016-01-23 04:42 - 00388560 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll 2016-01-28 23:40 - 2016-01-23 04:42 - 00377792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll 2016-01-28 23:40 - 2016-01-23 04:42 - 00175368 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll 2016-01-28 23:40 - 2016-01-23 04:42 - 00153392 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll 2016-01-28 23:40 - 2016-01-23 04:42 - 00151368 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll 2016-01-28 23:40 - 2016-01-23 04:42 - 00128512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll 2016-01-28 15:05 - 2015-12-18 07:11 - 00047760 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys 2016-01-28 15:05 - 2015-12-18 07:10 - 00099472 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll 2016-01-28 15:05 - 2015-12-18 07:10 - 00090768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll 2016-01-27 23:24 - 2016-01-27 23:24 - 00128043 _____ C:\Users\Jakub\Downloads\Faktura TILDE_Q21.PDF 2016-01-27 12:31 - 2016-01-27 12:31 - 00000000 ____D C:\ProgramData\SkidRow 2016-01-27 12:28 - 2016-01-27 12:28 - 00000745 _____ C:\Users\Public\Desktop\Europa Universalis IV The Cossacks.lnk 2016-01-27 12:28 - 2016-01-27 12:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Paradox Interactive 2016-01-27 12:16 - 2016-01-27 12:31 - 00000000 ____D C:\Users\Jakub\Documents\Paradox Interactive 2016-01-25 04:02 - 2016-01-25 04:02 - 00291815 _____ C:\Users\Jakub\Downloads\współczynniki 2015 (1).pdf 2016-01-25 01:17 - 2016-01-25 01:17 - 00061085 _____ C:\Users\Jakub\Downloads\WDZ_opt_1to6.zip 2016-01-23 01:31 - 2016-01-23 01:31 - 00046748 _____ C:\Users\Jakub\Desktop\Caribou.fpl 2016-01-21 16:03 - 2016-01-21 16:03 - 00006928 _____ C:\Users\Jakub\Downloads\cw27.zip 2016-01-20 20:46 - 2016-01-20 20:58 - 00000000 ____D C:\Users\Jakub\Documents\Assetto Corsa 2016-01-20 19:05 - 2016-02-11 09:51 - 00000000 ____D C:\Users\Jakub\AppData\LocalLow\BitTorrent 2016-01-14 14:21 - 2016-01-14 21:23 - 04333937 _____ C:\Users\Jakub\Desktop\Formacje kamikaze-Jakub Bondyra s13983 hkj.pptx 2016-01-14 14:12 - 2015-07-18 14:08 - 00984448 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00901264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-eventing-provider-l1-1-0.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-eventing-provider-l1-1-0.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll 2016-01-14 14:12 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll 2016-01-14 14:11 - 2016-01-20 18:53 - 00002230 _____ C:\Users\Jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk 2016-01-14 14:11 - 2016-01-20 18:53 - 00000000 ___RD C:\Users\Jakub\OneDrive 2016-01-14 14:11 - 2016-01-14 14:11 - 00002168 _____ C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk 2016-01-14 14:11 - 2016-01-14 14:11 - 00002168 _____ C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk 2016-01-14 14:11 - 2016-01-14 14:11 - 00000000 ____D C:\ProgramData\Microsoft OneDrive 2016-01-14 14:11 - 2016-01-14 14:11 - 00000000 ____D C:\Program Files (x86)\Microsoft OneDrive 2016-01-14 14:05 - 2016-01-31 18:44 - 00002460 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk 2016-01-14 14:05 - 2016-01-31 18:44 - 00002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk 2016-01-14 14:05 - 2016-01-31 18:44 - 00002433 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk 2016-01-14 14:05 - 2016-01-31 18:44 - 00002430 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk 2016-01-14 14:05 - 2016-01-31 18:44 - 00002427 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk 2016-01-14 14:05 - 2016-01-31 18:44 - 00002394 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk 2016-01-14 14:05 - 2016-01-31 18:44 - 00002384 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk 2016-01-14 14:03 - 2016-01-31 18:47 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2016-01-14 14:00 - 2016-01-14 14:00 - 00000000 ____D C:\Program Files\Microsoft Office 15 ==================== Jeden miesiąc - zmodyfikowane pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2016-02-11 09:56 - 2012-11-22 21:12 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\BitTorrent 2016-02-11 09:51 - 2013-03-10 00:34 - 00004124 _____ C:\Windows\System32\Tasks\avast! Emergency Update 2016-02-11 09:49 - 2013-08-05 10:15 - 00001044 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2016-02-11 09:49 - 2012-08-04 17:22 - 00034752 _____ C:\Windows\system32\Drivers\WPRO_41_2001.sys 2016-02-11 09:48 - 2012-08-04 17:30 - 00000000 ____D C:\ProgramData\NVIDIA 2016-02-11 09:48 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-02-11 09:47 - 2013-06-17 22:06 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\foobar2000 2016-02-11 09:33 - 2009-07-14 05:45 - 00010416 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2016-02-11 09:33 - 2009-07-14 05:45 - 00010416 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2016-02-11 02:02 - 2013-08-05 10:15 - 00001048 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2016-02-11 00:42 - 2012-08-04 17:41 - 00000000 ____D C:\Users\Jakub\AppData\Local\Google 2016-02-11 00:04 - 2013-08-05 10:16 - 00002242 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2016-02-11 00:01 - 2015-10-10 18:35 - 00000000 ____D C:\Program Files\Java 2016-02-11 00:01 - 2014-10-19 18:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2016-02-10 23:57 - 2012-08-04 17:23 - 00000000 ____D C:\Program Files (x86)\Adobe 2016-02-10 14:51 - 2012-08-04 17:11 - 00000000 ____D C:\Users\Jakub 2016-02-10 11:57 - 2013-08-05 10:15 - 00004044 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2016-02-10 11:56 - 2013-08-05 10:15 - 00003792 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2016-02-10 11:55 - 2013-03-10 00:34 - 00287016 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys 2016-02-10 01:17 - 2015-05-01 19:43 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\Curse Client 2016-02-09 21:35 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf 2016-02-09 19:16 - 2015-05-19 20:00 - 00000000 ____D C:\Users\Jakub\Documents\The Witcher 3 2016-02-09 17:46 - 2009-07-14 06:08 - 00032604 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2016-02-08 00:30 - 2014-04-21 11:33 - 00037656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys 2016-02-08 00:30 - 2014-01-04 02:20 - 00165344 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys 2016-02-08 00:30 - 2013-03-10 00:34 - 01065720 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys 2016-02-08 00:30 - 2013-03-10 00:34 - 00463744 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys 2016-02-08 00:30 - 2013-03-10 00:34 - 00107792 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys 2016-02-08 00:30 - 2013-03-10 00:34 - 00103064 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2016-02-08 00:30 - 2013-03-10 00:34 - 00074544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys 2016-02-07 18:27 - 2012-08-04 19:14 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\TS3Client 2016-02-07 01:21 - 2012-08-05 10:47 - 00000000 ____D C:\Users\Jakub\AppData\Local\CrashDumps 2016-02-07 00:57 - 2012-10-22 18:15 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\Skype 2016-02-06 17:26 - 2013-12-02 21:45 - 00000000 ____D C:\ProgramData\Oracle 2016-02-06 17:25 - 2015-10-10 18:36 - 00000000 ____D C:\Users\Jakub\.oracle_jre_usage 2016-02-06 17:24 - 2015-10-10 18:36 - 00110176 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll 2016-02-05 07:30 - 2013-02-12 23:15 - 00000000 ____D C:\Users\Jakub\Desktop\Nowy folder 2016-02-03 11:04 - 2012-08-04 18:20 - 00000000 ____D C:\ProgramData\Origin 2016-02-02 23:56 - 2009-07-14 18:55 - 00739944 _____ C:\Windows\system32\perfh015.dat 2016-02-02 23:56 - 2009-07-14 18:55 - 00155530 _____ C:\Windows\system32\perfc015.dat 2016-02-02 23:56 - 2009-07-14 06:13 - 01668894 _____ C:\Windows\system32\PerfStringBackup.INI 2016-02-02 18:24 - 2015-05-19 16:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com 2016-02-02 00:51 - 2012-08-05 07:52 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\DAEMON Tools Lite 2016-02-01 12:01 - 2009-07-14 05:45 - 05076312 _____ C:\Windows\system32\FNTCACHE.DAT 2016-01-31 18:44 - 2012-12-03 18:28 - 00000000 ____D C:\Program Files (x86)\Microsoft Office 2016-01-29 08:12 - 2015-11-08 13:41 - 00000000 ____D C:\Users\Jakub\Desktop\Nowy folder (3) 2016-01-28 23:43 - 2013-10-22 13:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2016-01-28 23:43 - 2012-08-04 17:30 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2016-01-28 23:41 - 2012-08-04 17:28 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2016-01-28 15:06 - 2015-09-26 23:14 - 00001401 _____ C:\Users\Public\Desktop\GeForce Experience.lnk 2016-01-28 15:06 - 2013-05-23 18:50 - 00000000 ____D C:\Users\Jakub\AppData\Local\NVIDIA 2016-01-23 04:42 - 2015-12-22 09:44 - 16327896 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2016-01-23 04:42 - 2015-09-26 23:11 - 14016576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll 2016-01-23 04:42 - 2014-11-11 12:43 - 03258664 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2016-01-23 04:42 - 2014-05-28 12:34 - 16995064 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll 2016-01-23 04:42 - 2013-03-30 13:07 - 00034905 _____ C:\Windows\system32\nvinfo.pb 2016-01-23 04:42 - 2012-08-04 18:08 - 18758400 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll 2016-01-23 04:42 - 2012-08-04 17:29 - 03683560 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2016-01-23 02:04 - 2015-12-22 09:46 - 00532024 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll 2016-01-23 02:04 - 2015-12-22 09:46 - 00083512 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll 2016-01-23 02:04 - 2012-08-04 17:30 - 06368312 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2016-01-23 02:04 - 2012-08-04 17:30 - 02992064 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll 2016-01-23 02:04 - 2012-08-04 17:30 - 02563128 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll 2016-01-23 02:04 - 2012-08-04 17:30 - 01263040 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe 2016-01-23 02:04 - 2012-08-04 17:30 - 00393784 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll 2016-01-23 02:04 - 2012-08-04 17:30 - 00071224 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll 2016-01-22 22:07 - 2012-08-04 17:30 - 06125650 _____ C:\Windows\system32\nvcoproc.bin 2016-01-21 15:59 - 2015-11-05 14:32 - 00000000 ____D C:\Users\Jakub\Downloads\Nowy folder 2016-01-21 13:31 - 2012-10-22 18:15 - 00000000 ____D C:\ProgramData\Skype 2016-01-17 12:13 - 2016-01-04 18:04 - 00000000 ____D C:\Users\Jakub\AppData\Local\UnrealEngine 2016-01-16 18:44 - 2012-12-02 11:36 - 00000000 ___RD C:\Program Files (x86)\Skype 2016-01-14 14:03 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared 2016-01-14 13:32 - 2009-07-14 19:09 - 00000000 ____D C:\Windows\ShellNew 2016-01-14 13:32 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files (x86)\MSBuild 2016-01-14 13:31 - 2009-07-14 03:34 - 00000387 _____ C:\Windows\win.ini 2016-01-12 05:41 - 2014-06-02 14:33 - 01316184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll 2016-01-12 05:41 - 2013-10-28 20:19 - 01542600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll 2016-01-12 05:40 - 2015-11-20 18:49 - 00112032 _____ C:\Windows\system32\NvRtmpStreamer64.dll 2016-01-12 05:40 - 2014-06-02 14:33 - 01756608 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll 2016-01-12 05:40 - 2013-10-28 20:19 - 01860120 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll ==================== Pliki w katalogu głównym wybranych folderów ======= 2014-09-30 14:46 - 2014-09-30 14:57 - 0000016 _____ () C:\ProgramData\autobk.inc ==================== Bamital & volsnap ================= (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) C:\Windows\system32\winlogon.exe => Plik podpisany cyfrowo C:\Windows\system32\wininit.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\wininit.exe => Plik podpisany cyfrowo C:\Windows\explorer.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\explorer.exe => Plik podpisany cyfrowo C:\Windows\system32\svchost.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\svchost.exe => Plik podpisany cyfrowo C:\Windows\system32\services.exe => Plik podpisany cyfrowo C:\Windows\system32\User32.dll => Plik podpisany cyfrowo C:\Windows\SysWOW64\User32.dll => Plik podpisany cyfrowo C:\Windows\system32\userinit.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\userinit.exe => Plik podpisany cyfrowo C:\Windows\system32\rpcss.dll => Plik podpisany cyfrowo C:\Windows\system32\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo LastRegBack: 2016-02-08 16:48 ==================== Koniec FRST.txt ============================