Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 23-09-2017 01 Uruchomiony przez Mateusz (administrator) MATEUSZ-KOMP (23-09-2017 12:29:55) Uruchomiony z C:\Users\Mateusz\Downloads Załadowane profile: Mateusz (Dostępne profile: Mateusz & .NET v4.5 & DefaultAppPool & .NET v4.5 Classic) Platform: Windows 10 Pro Wersja 1607 (X64) Język: Polski (Polska) Internet Explorer Wersja 11 (Domyślna przeglądarka: FF) Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe (Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe (Intel(R) Corporation) C:\Program Files\Intel\BCA\pabeSvc64.exe (Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe (Rivet Networks) C:\Program Files\Killer Networking\Network Manager\KillerService.exe (Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe () C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe (MSI) C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe (MSI) C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe (Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe (MSI) C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\ECO Center\ECO_Service.exe () C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe (MSI) C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe (Microsoft Corporation) C:\WINDOWS\System32\mqsvc.exe (Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe (Nero AG) F:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe (Micro-Star INT'L CO., LTD.) C:\MSI\Smart Utilities\SuperRAIDSvc.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe (McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe (Electronic Arts) F:\Programy\Origin\OriginWebHelperService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe (Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\VideoCardMonitorII.exe (Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\EyeRest.exe (Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\TriggerModeMonitor.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Microsoft Corporation) C:\WINDOWS\SysWOW64\wbem\WmiPrvSE.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe () F:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe (Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe (Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\OSD\x64\MsiGamingOSD_x64.exe (MSI) C:\WINDOWS\SysWOW64\muachost.exe (Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\OSD\x86\MsiGamingOSD_x86.exe (Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\Gaming APP\MSI_LED.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Microsoft Corporation) C:\WINDOWS\System32\rundll32.exe (Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\avgui.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe (Spotify Ltd) C:\Users\Mateusz\AppData\Roaming\Spotify\SpotifyWebHelper.exe (Rivet Networks) C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe (Creative Technology Ltd) C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe () C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe (Micro-Star INT'L CO.,LTD.) C:\Program Files (x86)\MSI\Fast Boot\FastBoot.exe (MSI) C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe (Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Live Update\Live Update.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe (Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (McAfee, Inc.) C:\Program Files\TrueKey\McTkSchedulerService.exe (Intel(R) Corporation) C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\SkypeHost.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\WINDOWS\System32\smartscreen.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\WINDOWS\System32\dllhost.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Rejestr (filtrowane) =========================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9198592 2017-02-10] (Realtek Semiconductor) HKLM\...\Run: [MBCfg64] => C:\Windows\system32\RunDLL32.exe C:\Windows\system32\MBCfg64.dll,RunDLLEntry MBCfg64 HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation) HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239592 2017-09-14] (AVG Technologies CZ, s.r.o.) HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [289248 2017-09-06] (AVG Technologies CZ, s.r.o.) HKLM-x32\...\Run: [Sound Blaster Cinema 2] => C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe [1442304 2014-05-29] (Creative Technology Ltd) HKLM-x32\...\Run: [UpdReg] => C:\WINDOWS\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.) HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation) HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239592 2017-09-14] (AVG Technologies CZ, s.r.o.) HKLM-x32\...\Run: [Command Center] => C:\Program Files (x86)\MSI\Command Center\StartCommandCenter.exe [835680 2016-06-14] (MSI) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation) HKLM-x32\...\Run: [Fast Boot] => C:\Program Files (x86)\MSI\Fast Boot\StartFastBoot.exe [759120 2015-04-22] () HKLM-x32\...\Run: [Super Charger] => C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe [1022928 2017-07-28] (MSI) HKLM-x32\...\Run: [Live Update] => C:\Program Files (x86)\MSI\Live Update\Live Update.exe [17315280 2017-08-23] (Micro-Star INT'L CO., LTD.) HKU\S-1-5-21-869193332-1809399853-2685877021-1000\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2015-11-18] (Google Inc.) HKU\S-1-5-21-869193332-1809399853-2685877021-1000\...\Run: [DAEMON Tools Lite Automount] => F:\Programy\DAEMON Tools Lite\DTAgent.exe [4179288 2015-11-18] (Disc Soft Ltd) HKU\S-1-5-21-869193332-1809399853-2685877021-1000\...\Run: [Steam] => F:\Program Files (x86)\Steam\steam.exe [3071776 2017-09-07] (Valve Corporation) HKU\S-1-5-21-869193332-1809399853-2685877021-1000\...\Run: [TSMApplication] => F:\Program Files (x86)\TradeSkillMaster Application\app\TSMApplication.exe [1623040 2016-08-16] () HKU\S-1-5-21-869193332-1809399853-2685877021-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9803992 2017-06-13] (Piriform Ltd) HKU\S-1-5-21-869193332-1809399853-2685877021-1000\...\Run: [Spotify Web Helper] => C:\Users\Mateusz\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1580144 2017-08-12] (Spotify Ltd) Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Network Manager.lnk [2016-11-14] ShortcutTarget: Killer Network Manager.lnk -> C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe (Rivet Networks) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TP-LINK Wireless Configuration Utility.lnk [2015-11-18] ShortcutTarget: TP-LINK Wireless Configuration Utility.lnk -> C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe () ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{91155f8f-05ab-4001-b5a0-5516413b5bb7}: [DhcpNameServer] 192.168.0.1 Internet Explorer: ================== HKU\S-1-5-21-869193332-1809399853-2685877021-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.bing.com/search?q={searchTerms} SearchScopes: HKLM-x32 -> ielnksrch URL = hxxp://www.bing.com/search?q={searchTerms} SearchScopes: HKU\S-1-5-21-869193332-1809399853-2685877021-1000 -> DefaultScope {ielnksrch} URL = hxxp://www.bing.com/search?q={searchTerms} SearchScopes: HKU\S-1-5-21-869193332-1809399853-2685877021-1000 -> {116D6551-1F81-46C0-AAE9-08051564B344} URL = hxxps://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=435371&p={searchTerms} SearchScopes: HKU\S-1-5-21-869193332-1809399853-2685877021-1000 -> {ielnksrch} URL = hxxp://www.bing.com/search?q={searchTerms} BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-27] (Google Inc.) BHO-x32: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-07-15] (Intel Security) BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\ssv.dll [2017-07-05] (Oracle Corporation) BHO-x32: ArcPluginIEBHO Class -> {84BFE29A-8139-402a-B2A4-C23AE9E1A75F} -> D:\Gry\Arc\Plugins\ArcPluginIE.dll [2016-03-10] (Perfect World Entertainment Inc) BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-27] (Google Inc.) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-07-05] (Oracle Corporation) Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-27] (Google Inc.) Toolbar: HKLM-x32 - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-07-15] (Intel Security) Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-27] (Google Inc.) FireFox: ======== FF ProfilePath: C:\Users\Mateusz\AppData\Roaming\Mozilla\Firefox\Profiles\muo9ripp.Mateusz [2017-09-23] FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_27_0_0_130.dll [2017-09-13] () FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_130.dll [2017-09-13] () FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-07-05] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-07-05] (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-06-27] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-06-27] (NVIDIA Corporation) FF Plugin-x32: @perfectworld.com/npArcPlayNowPlugin -> D:\Gry\Arc\Plugins\npArcPluginFF.dll [2016-03-10] (Perfect World Entertainment Inc) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-08-01] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-869193332-1809399853-2685877021-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Mateusz\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2016-05-08] (Unity Technologies ApS) Chrome: ======= CHR DefaultProfile: Default CHR DefaultSearchURL: Default -> hxxps://feed.safefinder.biz/?fext=true&publisherid=51218&publisher=extensiondefaultap&st=ed&q={searchTerms} CHR DefaultSearchKeyword: Default -> SafeFinder CHR Profile: C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default [2017-09-23] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-09-06] CHR Extension: (Chrome Media Router) - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-08-11] CHR Profile: C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\System Profile [2017-09-23] CHR HKLM-x32\...\Chrome\Extension: [jidkebcigjgheaahopdnlfaohgnocfai] - hxxps://clients2.google.com/service/update2/crx ==================== Usługi (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 ArcService; D:\Gry\Arc\ArcService.exe [88024 2016-03-10] (Perfect World Entertainment Inc) R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [276328 2017-09-06] (AVG Technologies CZ, s.r.o.) R3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe [7502936 2017-09-06] (AVG Technologies CZ, s.r.o.) R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1428656 2017-09-14] (AVG Technologies CZ, s.r.o.) S3 Disc Soft Lite Bus Service; F:\Programy\DAEMON Tools Lite\DiscSoftBusService.exe [1369432 2015-11-18] (Disc Soft Ltd) S3 GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [512576 2017-05-08] (GOG.com) S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7942208 2017-05-08] (GOG.com) R2 GamingApp_Service; C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe [47056 2017-08-23] (Micro-Star Int'l Co., Ltd.) R2 GamingHotkey_Service; C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe [2019792 2016-10-13] (Micro-Star INT'L CO., LTD.) R2 HTCMonitorService; F:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2014-06-27] (Nero AG) R3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation) S3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Brak podpisu cyfrowego] R2 IntelBCAsvc; C:\Program Files\Intel\BCA\pabeSvc64.exe [3026584 2016-05-06] (Intel(R) Corporation) R2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Brak podpisu cyfrowego] R2 jhi_service; C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [223520 2015-07-10] (Intel Corporation) R2 Killer Service V2; C:\Program Files\Killer Networking\Network Manager\KillerService.exe [454872 2016-01-28] (Rivet Networks) R2 LMS; C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [415520 2015-07-10] (Intel Corporation) S3 MSIClock_CC; C:\Program Files (x86)\MSI\Command Center\ClockGen\MSIClockService.exe [4163680 2016-09-09] (MSI) S3 MSICOMM_CC; C:\Program Files (x86)\MSI\Command Center\MSICommService.exe [2206304 2017-01-06] (MSI) S3 MSICPU_CC; C:\Program Files (x86)\MSI\Command Center\CPU\MSICPUService.exe [4172896 2016-12-14] (MSI) R2 MSICTL_CC; C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe [2102880 2017-02-15] (MSI) R2 MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe [2331744 2017-02-15] (MSI) S3 MSISMB_CC; C:\Program Files (x86)\MSI\Command Center\SMBus\MSISMBService.exe [2076768 2016-12-05] (MSI) S3 MSISuperIO_CC; C:\Program Files (x86)\MSI\Command Center\SuperIO\MSISuperIOService.exe [611936 2017-02-10] (MSI) R2 MSI_ActiveX_Service; C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe [81848 2017-08-24] (Micro-Star INT'L CO., LTD.) R2 MSI_ECOSERVICE; C:\Program Files (x86)\MSI\ECO Center\ECO_Service.exe [2266280 2015-03-27] (Micro-Star INT'L CO., LTD.) R2 MSI_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe [111568 2017-04-05] (MSI) R2 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [2292176 2017-08-23] (Micro-Star INT'L CO., LTD.) R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [174032 2017-07-28] (MSI) S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [3916368 2016-01-09] (INCA Internet Co., Ltd.) R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [512960 2017-08-18] (NVIDIA Corporation) S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [512960 2017-08-18] (NVIDIA Corporation) R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-06-27] (NVIDIA Corporation) R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [449984 2017-08-18] (NVIDIA Corporation) S3 Origin Client Service; F:\Programy\Origin\OriginClientService.exe [2098528 2017-08-23] (Electronic Arts) R2 Origin Web Helper Service; F:\Programy\Origin\OriginWebHelperService.exe [2977640 2017-08-23] (Electronic Arts) R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [166912 2013-10-17] () [Brak podpisu cyfrowego] S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889888 2017-08-01] (Microsoft Corporation) R2 SuperRAIDSvc; C:\MSI\Smart Utilities\SuperRAIDSvc.exe [29648 2015-02-09] (Micro-Star INT'L CO., LTD.) R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [908256 2016-07-22] (McAfee, Inc.) R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [15736 2016-07-22] (McAfee, Inc.) S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [86864 2016-07-22] (McAfee, Inc.) R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [5906704 2017-07-26] (AVG Technologies CZ, s.r.o.) S3 VSStandardCollectorService140; C:\Program Files (x86)\Microsoft Visual Studio 14.0\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [56552 2016-03-22] (Microsoft Corporation) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347320 2017-04-28] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103712 2017-08-01] (Microsoft Corporation) R2 XTU3SERVICE; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe [19192 2015-10-06] (Intel(R) Corporation) ===================== Sterowniki (filtrowane) ====================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 AcpiCtlDrv; C:\WINDOWS\System32\drivers\AcpiCtlDrv.sys [25880 2012-07-17] (Intel Corporation) R1 avgbdisk; C:\WINDOWS\system32\drivers\avgbdiska.sys [166624 2017-09-06] (AVG Technologies CZ, s.r.o.) R1 avgbidsdriver; C:\WINDOWS\system32\drivers\avgbidsdrivera.sys [314128 2017-09-06] (AVG Technologies CZ, s.r.o.) R0 avgbidsh; C:\WINDOWS\system32\drivers\avgbidsha.sys [192584 2017-09-06] (AVG Technologies CZ, s.r.o.) R0 avgblog; C:\WINDOWS\system32\drivers\avgbloga.sys [336896 2017-09-06] (AVG Technologies CZ, s.r.o.) R0 avgbuniv; C:\WINDOWS\system32\drivers\avgbuniva.sys [51336 2017-09-06] (AVG Technologies CZ, s.r.o.) S3 avgHwid; C:\WINDOWS\system32\drivers\avgHwid.sys [39424 2017-09-06] (AVG Technologies CZ, s.r.o.) R2 avgMonFlt; C:\WINDOWS\system32\drivers\avgMonFlt.sys [140192 2017-09-06] (AVG Technologies CZ, s.r.o.) R1 avgRdr; C:\WINDOWS\system32\drivers\avgRdr2.sys [102792 2017-09-06] (AVG Technologies CZ, s.r.o.) R0 avgRvrt; C:\WINDOWS\system32\drivers\avgRvrt.sys [76832 2017-09-06] (AVG Technologies CZ, s.r.o.) R1 avgSnx; C:\WINDOWS\system32\drivers\avgSnx.sys [1008800 2017-09-06] (AVG Technologies CZ, s.r.o.) R1 avgSP; C:\WINDOWS\system32\drivers\avgSP.sys [583288 2017-09-06] (AVG Technologies CZ, s.r.o.) R2 avgStm; C:\WINDOWS\system32\drivers\avgStm.sys [191720 2017-09-18] (AVG Technologies CZ, s.r.o.) R0 avgVmm; C:\WINDOWS\system32\drivers\avgVmm.sys [353744 2017-09-06] (AVG Technologies CZ, s.r.o.) R1 BfLwf; C:\WINDOWS\system32\DRIVERS\bwcW10x64.sys [144456 2016-01-22] (Rivet Networks, LLC.) R3 CMUSBDAC; C:\WINDOWS\system32\DRIVERS\CMUSBDAC.sys [3792904 2016-11-30] (C-MEDIA) R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2015-11-19] (Disc Soft Ltd) R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47160 2015-11-19] (Disc Soft Ltd) S3 Hamachi; C:\WINDOWS\System32\drivers\Hamdrv.sys [45680 2016-06-07] (LogMeIn Inc.) S3 HtcVCom32; C:\WINDOWS\system32\DRIVERS\HtcVComV64.sys [121800 2010-03-09] (QUALCOMM Incorporated) R3 I2cHkBurn; C:\WINDOWS\system32\drivers\I2cHkBurn.sys [41760 2015-07-27] (FINTEK Corp.) R3 ikbevent; C:\WINDOWS\System32\DRIVERS\ikbevent.sys [22216 2014-05-27] () R3 imsevent; C:\WINDOWS\System32\DRIVERS\imsevent.sys [22728 2014-05-27] () R2 iocbios2; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [30224 2015-05-28] (Intel Corporation) S3 Ke2200; C:\WINDOWS\System32\drivers\e22w7x64.sys [125488 2015-03-18] (Qualcomm Atheros, Inc.) R3 KillerEth; C:\WINDOWS\System32\drivers\e22w10x64.sys [156744 2015-10-07] (Qualcomm Atheros, Inc.) S3 MEMSWEEP2; C:\WINDOWS\system32\D0DE.tmp [6144 2010-05-26] (Sophos Plc) [Brak podpisu cyfrowego] S1 MpKsl60f5a5e2; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{5635A217-7097-400D-859B-983B9A71C3F5}\MpKsl60f5a5e2.sys [44928 2017-06-26] () [Brak podpisu cyfrowego] S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] () R3 NTIOLib_ECO; C:\Program Files (x86)\MSI\ECO Center\NTIOLib_X64.sys [13808 2014-01-06] (MSI) R3 NTIOLib_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\NTIOLib_X64.sys [14288 2017-03-29] (MSI) R3 NTIOLib_MBAPI; C:\Program Files (x86)\MSI\Gaming APP\Lib\NTIOLib_X64.sys [14288 2017-07-10] (MSI) R3 NTIOLib_MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\NTIOLib_X64.sys [13368 2012-11-26] (MSI) R3 NTIOLib_MSI_RAID; C:\MSI\Smart Utilities\NTIOLib_X64.sys [13808 2014-03-17] (MSI) R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_2386fda73b467ac8\nvlddmkm.sys [15625336 2017-06-28] (NVIDIA Corporation) S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30328 2017-06-21] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48064 2017-08-18] (NVIDIA Corporation) R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-06-28] (NVIDIA Corporation) R3 SensorsSimulatorDriver; C:\WINDOWS\System32\drivers\WUDFRd.sys [216064 2016-07-16] (Microsoft Corporation) R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [32304 2017-07-26] (AVG Netherlands B.V.) S3 uvhid; C:\WINDOWS\System32\drivers\uvhid.sys [25592 2015-11-11] (Windows (R) Win 7 DDK provider) R3 VBAudioVACMME; C:\WINDOWS\system32\DRIVERS\vbaudio_cable64_win7.sys [41192 2014-09-02] (Windows (R) Win 7 DDK provider) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation) S3 XtuAcpiDriver; C:\WINDOWS\System32\drivers\XtuAcpiDriver.sys [63840 2015-06-24] (Intel Corporation) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc - utworzone pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2017-09-23 12:28 - 2017-09-23 12:29 - 000000000 ____D C:\AdwCleaner 2017-09-23 12:28 - 2017-09-23 12:28 - 008182736 _____ (Malwarebytes) C:\Users\Mateusz\Downloads\AdwCleaner.exe 2017-09-23 12:24 - 2017-09-23 12:24 - 000000000 ____D C:\Users\Mateusz\Desktop\CrystalDiskInfo7_1_1 2017-09-23 12:23 - 2017-09-23 12:23 - 004803579 _____ C:\Users\Mateusz\Desktop\CrystalDiskInfo7_1_1.zip 2017-09-23 12:09 - 2017-09-23 12:10 - 000014699 _____ C:\Users\Mateusz\Downloads\Fixlog.txt 2017-09-23 12:08 - 2017-09-23 12:08 - 000000000 ____D C:\Users\Mateusz\Downloads\FRST-OlderVersion 2017-09-23 12:08 - 2017-09-23 12:08 - 000000000 ____D C:\Users\Mateusz\Desktop\dbxo26am.default 2017-09-22 17:33 - 2017-09-22 17:33 - 000000528 _____ C:\Users\Mateusz\Desktop\w3 opis.txt 2017-09-22 17:23 - 2017-09-22 17:23 - 000078978 _____ C:\Users\Mateusz\AppData\Local\recently-used.xbel 2017-09-22 15:50 - 2017-09-22 15:51 - 000066651 _____ C:\Users\Mateusz\Downloads\FAKTURA-F_30386929_09_17-KONTO_32123696.pdf 2017-09-21 16:26 - 2017-09-21 16:27 - 000153074 _____ C:\Users\Mateusz\Downloads\Gothic2_PlayerKit-2.8.exe 2017-09-21 16:25 - 2017-09-21 16:27 - 002415947 _____ (theMODDERS ORG - Community © 2017) C:\Users\Mateusz\Downloads\G2NoTR-SystemPack-1.7.exe 2017-09-21 16:25 - 2017-09-21 16:26 - 003031183 _____ (${MOD_COMP}) C:\Users\Mateusz\Downloads\gothic2_fix-2.6.0.0-rev2.exe 2017-09-21 15:45 - 2017-09-21 15:45 - 000221662 _____ C:\Users\Mateusz\Downloads\MicrosoftProgram_Install_and_Uninstall.meta.diagcab 2017-09-21 15:14 - 2017-09-21 15:14 - 000107839 _____ C:\Users\Mateusz\Downloads\Shortcut.txt 2017-09-21 15:14 - 2017-09-21 15:14 - 000082682 _____ C:\Users\Mateusz\Downloads\Addition.txt 2017-09-21 15:13 - 2017-09-23 12:30 - 000028910 _____ C:\Users\Mateusz\Downloads\FRST.txt 2017-09-21 15:12 - 2017-09-23 12:29 - 000000000 ____D C:\FRST 2017-09-21 15:10 - 2017-09-23 12:08 - 002399744 _____ (Farbar) C:\Users\Mateusz\Downloads\FRST64.exe 2017-09-20 15:25 - 2017-09-20 15:25 - 001931969 _____ C:\Users\Mateusz\Desktop\ProcessExplorer.zip 2017-09-20 15:25 - 2017-09-20 15:25 - 000000000 ____D C:\Users\Mateusz\Desktop\ProcessExplorer 2017-09-20 15:18 - 2010-05-26 10:39 - 000006144 ____N (Sophos Plc) C:\WINDOWS\system32\D0DE.tmp 2017-09-20 15:16 - 2017-09-20 15:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos 2017-09-20 15:16 - 2010-05-26 10:39 - 000006144 ____N (Sophos Plc) C:\WINDOWS\system32\9564.tmp 2017-09-20 15:15 - 2017-09-20 15:15 - 001376832 _____ C:\Users\Mateusz\Desktop\Sophos Anti-Rootkit 1.5.4 [1].exe 2017-09-20 15:14 - 2017-09-20 15:15 - 001548768 _____ ( ) C:\Users\Mateusz\Desktop\Sophos Anti-Rootkit 1.5.4.exe 2017-09-20 15:11 - 2017-09-20 15:11 - 000423736 _____ C:\Users\Mateusz\Downloads\avgarkt-setup-1.1.0.42.exe 2017-09-20 14:59 - 2017-09-20 14:59 - 006334880 _____ (AVAST Software) C:\Users\Mateusz\Downloads\avast_free_antivirus_setup_online.exe 2017-09-20 14:57 - 2017-09-20 14:57 - 000380928 _____ C:\Users\Mateusz\Downloads\us8ut476.exe 2017-09-19 22:52 - 2017-09-19 22:52 - 1588960797 _____ (Nordic Games GmbH ) C:\Users\Mateusz\Downloads\Gothic 3 Edycja Rozszerzona 1.75.14 Community Patch [1].exe 2017-09-19 22:46 - 2017-09-19 22:46 - 001548768 _____ ( ) C:\Users\Mateusz\Downloads\Gothic 3 Edycja Rozszerzona 1.75.14 Community Patch.exe 2017-09-19 22:43 - 2017-09-19 22:43 - 025170761 _____ C:\Users\Mateusz\Desktop\The Walking Dead Sezon 1 - spolszczenie.zip 2017-09-19 22:43 - 2017-09-19 22:43 - 000000000 ____D C:\Users\Mateusz\Desktop\The Walking Dead Sezon 1 - spolszczenie 2017-09-19 22:40 - 2017-09-19 22:57 - 000000000 ____D C:\Users\Mateusz\Documents\gothic3 2017-09-19 18:12 - 2017-09-19 18:12 - 000000221 _____ C:\Users\Mateusz\Desktop\Gothic 3.url 2017-09-19 18:10 - 2017-09-19 18:10 - 025672401 _____ C:\Users\Mateusz\Desktop\TWDS1_400.zip 2017-09-19 18:10 - 2017-09-19 18:10 - 000000000 ____D C:\Users\Mateusz\Desktop\TWDS1_400 2017-09-19 17:57 - 2017-09-19 17:57 - 000003190 _____ C:\WINDOWS\System32\Tasks\MSIGH_Host 2017-09-19 17:57 - 2017-09-19 17:57 - 000003132 _____ C:\WINDOWS\System32\Tasks\MSIOSDx86_Host 2017-09-19 17:57 - 2017-09-19 17:57 - 000003132 _____ C:\WINDOWS\System32\Tasks\MSIOSDx64_Host 2017-09-19 11:42 - 2017-09-19 17:07 - 000000000 ____D C:\WINDOWS\System32\Tasks\Remediation 2017-09-18 23:27 - 2017-09-18 23:27 - 000000000 ____D C:\Users\Mateusz\Documents\Telltale Games 2017-09-18 19:10 - 2017-09-18 19:10 - 000000222 _____ C:\Users\Mateusz\Desktop\The Walking Dead.url 2017-09-17 20:00 - 2017-09-17 20:00 - 000039202 _____ C:\Users\Mateusz\Downloads\Asul.zip 2017-09-17 20:00 - 2017-09-17 20:00 - 000000000 ____D C:\Users\Mateusz\Downloads\Asul 2017-09-17 13:24 - 2017-09-17 13:24 - 000000055 _____ C:\Users\Mateusz\Desktop\mbank.txt 2017-09-15 15:49 - 2017-09-15 15:49 - 000000169 _____ C:\Users\Mateusz\Desktop\Gothic opis.txt 2017-09-13 15:18 - 2017-09-13 15:19 - 000000000 ____D C:\Users\Mateusz\AppData\Roaming\streamlabels 2017-09-13 15:18 - 2017-09-13 15:18 - 000002393 _____ C:\Users\Mateusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StreamLabels.lnk 2017-09-13 15:18 - 2017-09-13 15:18 - 000002385 _____ C:\Users\Mateusz\Desktop\StreamLabels.lnk 2017-09-09 14:12 - 2017-09-09 14:12 - 000002904 _____ C:\WINDOWS\System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance 2017-09-06 16:35 - 2017-09-06 16:35 - 000402608 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe 2017-09-06 16:32 - 2017-09-06 16:32 - 000003798 _____ C:\WINDOWS\System32\Tasks\Java Platform SE Auto Updater 2017-09-06 16:25 - 2017-09-06 16:25 - 000002586 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp.lnk 2017-09-06 16:25 - 2017-07-26 09:15 - 000053008 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\TURegOpt.exe 2017-09-06 15:53 - 2017-09-06 15:53 - 000000072 _____ C:\Users\Mateusz\Desktop\windows update wylacz.txt 2017-09-03 18:42 - 2017-08-04 07:31 - 001564512 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2017-09-03 18:42 - 2017-08-04 07:31 - 001214816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll 2017-09-03 18:42 - 2017-08-04 07:31 - 000629088 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll 2017-09-03 18:42 - 2017-08-04 07:31 - 000544096 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll 2017-09-03 18:42 - 2017-08-04 07:31 - 000335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll 2017-09-03 18:42 - 2017-08-04 07:31 - 000334176 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll 2017-09-03 18:42 - 2017-08-04 07:31 - 000233824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll 2017-09-03 18:42 - 2017-08-04 07:31 - 000136032 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2017-09-03 18:42 - 2017-08-04 07:31 - 000096608 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe 2017-09-03 18:42 - 2017-08-04 07:31 - 000034656 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe 2017-09-03 18:42 - 2017-08-04 06:26 - 000192864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll 2017-08-28 00:41 - 2017-08-28 00:41 - 000011200 _____ C:\Users\Mateusz\Desktop\death of chromie 5.veg 2017-08-27 16:35 - 2017-08-27 20:17 - 000140136 _____ C:\Users\Mateusz\Desktop\Patch 73.veg.bak 2017-08-27 16:35 - 2017-08-27 20:17 - 000140136 _____ C:\Users\Mateusz\Desktop\Patch 73.veg 2017-08-27 02:46 - 2017-08-27 02:46 - 000004096 _____ C:\WINDOWS\d3dx.dat 2017-08-26 16:55 - 2017-08-26 16:55 - 000000221 _____ C:\Users\Mateusz\Desktop\Gothic II Gold Edition.url 2017-08-26 14:58 - 2017-08-26 14:58 - 000000221 _____ C:\Users\Mateusz\Desktop\Gothic.url ==================== Jeden miesiąc - zmodyfikowane pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2017-09-23 12:25 - 2016-04-25 15:10 - 000000000 ____D C:\ProgramData\NVIDIA 2017-09-23 12:20 - 2016-11-21 11:20 - 005884186 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2017-09-23 12:20 - 2016-11-21 10:34 - 002678530 _____ C:\WINDOWS\system32\perfh015.dat 2017-09-23 12:20 - 2016-11-21 10:34 - 000775620 _____ C:\WINDOWS\system32\perfc015.dat 2017-09-23 12:14 - 2017-01-22 15:43 - 000003668 _____ C:\WINDOWS\System32\Tasks\AVG EUpdate Task 2017-09-23 12:14 - 2016-11-21 11:10 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2017-09-23 12:14 - 2016-07-16 08:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2017-09-23 12:14 - 2016-02-06 23:08 - 000000000 ____D C:\Users\Mateusz\AppData\Local\HTC MediaHub 2017-09-23 12:10 - 2016-06-11 14:47 - 000000000 ____D C:\Users\Mateusz\AppData\LocalLow\Temp 2017-09-23 12:09 - 2015-11-19 01:12 - 000000000 ___RD C:\Users\Mateusz\Desktop\Programy 2017-09-23 11:05 - 2016-11-21 02:10 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2017-09-22 17:33 - 2017-04-24 11:22 - 000000000 ____D C:\Users\Mateusz\AppData\Roaming\obs-studio 2017-09-22 17:23 - 2016-02-28 23:57 - 000000000 ____D C:\Users\Mateusz\AppData\Local\gtk-2.0 2017-09-22 17:23 - 2016-02-28 23:55 - 000000000 ____D C:\Users\Mateusz\.gimp-2.8 2017-09-22 16:22 - 2015-11-23 00:44 - 000000000 ____D C:\Users\Mateusz\AppData\Roaming\vlc 2017-09-21 18:41 - 2017-07-27 15:48 - 000003374 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-869193332-1809399853-2685877021-1000 2017-09-21 18:41 - 2016-04-25 16:15 - 000002413 _____ C:\Users\Mateusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2017-09-21 18:41 - 2016-04-25 16:15 - 000000000 ___RD C:\Users\Mateusz\OneDrive 2017-09-21 15:47 - 2015-11-29 20:16 - 000000000 ____D C:\Users\Mateusz\AppData\Local\ElevatedDiagnostics 2017-09-21 14:58 - 2015-11-18 21:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive 2017-09-20 19:26 - 2017-01-22 15:33 - 000000000 ____D C:\Users\Mateusz 2017-09-20 15:44 - 2016-07-16 13:45 - 000000000 ____D C:\WINDOWS\INF 2017-09-20 15:14 - 2015-11-22 00:57 - 000000000 ____D C:\Users\Mateusz\AppData\Local\CrashDumps 2017-09-19 18:12 - 2015-12-31 16:30 - 000000000 ____D C:\Users\Mateusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2017-09-19 18:02 - 2015-11-18 21:54 - 000000000 ____D C:\ProgramData\Norton 2017-09-19 17:59 - 2016-05-06 13:11 - 000000000 ____D C:\Users\Mateusz\Desktop\Programy z procka i grafy 2017-09-19 17:58 - 2015-11-18 21:51 - 000000159 ___RH C:\WINDOWS\ctfile.rfc 2017-09-19 17:57 - 2015-11-18 21:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI 2017-09-19 17:57 - 2015-11-18 21:53 - 000000000 ____D C:\Program Files (x86)\MSI 2017-09-19 17:10 - 2016-01-03 15:59 - 000000000 ____D C:\Program Files\OBS 2017-09-19 17:10 - 2016-01-03 15:59 - 000000000 ____D C:\Program Files (x86)\OBS 2017-09-19 17:07 - 2016-07-16 13:47 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2017-09-19 17:07 - 2016-07-16 08:04 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2017-09-19 17:05 - 2016-01-01 19:03 - 000000000 ____D C:\Users\Mateusz\AppData\Roaming\Warner Bros. Interactive Entertainment 2017-09-19 17:05 - 2009-07-14 07:32 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2017-09-18 23:13 - 2017-07-06 22:33 - 000007601 _____ C:\Users\Mateusz\AppData\Local\Resmon.ResmonCfg 2017-09-18 23:05 - 2015-11-22 18:30 - 000000000 ____D C:\Users\Mateusz\AppData\Local\Battle.net 2017-09-18 18:08 - 2017-05-05 10:56 - 000191720 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgstm.sys 2017-09-18 18:00 - 2016-11-21 02:10 - 000351216 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2017-09-16 00:41 - 2016-08-30 17:10 - 000000000 ____D C:\Users\Mateusz\AppData\Roaming\Curse Client 2017-09-13 14:34 - 2016-07-16 13:47 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed 2017-09-13 14:34 - 2016-07-16 13:47 - 000000000 ____D C:\WINDOWS\system32\Macromed 2017-09-08 14:49 - 2015-11-20 12:12 - 000000000 ____D C:\Program Files\Common Files\AV 2017-09-06 20:38 - 2016-02-28 23:56 - 000000000 ____D C:\Users\Mateusz\.thumbnails 2017-09-06 16:35 - 2017-05-05 10:56 - 001008800 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSnx.sys 2017-09-06 16:35 - 2017-05-05 10:56 - 000583288 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSP.sys 2017-09-06 16:35 - 2017-05-05 10:56 - 000353744 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgVmm.sys 2017-09-06 16:35 - 2017-05-05 10:56 - 000336896 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbloga.sys 2017-09-06 16:35 - 2017-05-05 10:56 - 000314128 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsdrivera.sys 2017-09-06 16:35 - 2017-05-05 10:56 - 000192584 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsha.sys 2017-09-06 16:35 - 2017-05-05 10:56 - 000166624 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbdiska.sys 2017-09-06 16:35 - 2017-05-05 10:56 - 000140192 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgMonFlt.sys 2017-09-06 16:35 - 2017-05-05 10:56 - 000102792 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRdr2.sys 2017-09-06 16:35 - 2017-05-05 10:56 - 000076832 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRvrt.sys 2017-09-06 16:35 - 2017-05-05 10:56 - 000051336 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbuniva.sys 2017-09-06 16:35 - 2017-05-05 10:56 - 000039424 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgHwid.sys 2017-09-06 16:35 - 2017-05-05 10:56 - 000004008 _____ C:\WINDOWS\System32\Tasks\Antivirus Emergency Update 2017-09-06 16:32 - 2017-04-30 22:40 - 000000000 ____D C:\Users\Mateusz\AppData\Roaming\Sony 2017-09-06 16:32 - 2017-01-22 15:30 - 000000000 ___DC C:\WINDOWS\Panther 2017-09-06 16:32 - 2016-07-16 08:04 - 000000000 ____D C:\WINDOWS\system32\Sysprep 2017-09-06 16:32 - 2016-05-06 13:12 - 000000000 ____D C:\Users\Mateusz\Desktop\Gry 2017-09-06 16:25 - 2016-07-11 20:40 - 000000000 ____D C:\Program Files (x86)\AVG 2017-09-06 16:25 - 2016-07-11 20:39 - 000000000 ____D C:\Users\Mateusz\AppData\Local\AvgSetupLog 2017-09-06 16:25 - 2016-07-11 20:39 - 000000000 ____D C:\Users\Mateusz\AppData\Local\Avg 2017-09-06 16:25 - 2016-07-11 20:39 - 000000000 ____D C:\ProgramData\Avg 2017-09-06 11:36 - 2016-07-16 13:47 - 000000000 ___HD C:\Program Files\WindowsApps 2017-09-06 11:36 - 2016-07-16 13:47 - 000000000 ____D C:\WINDOWS\AppReadiness 2017-09-04 19:33 - 2017-07-17 17:53 - 000000955 _____ C:\Users\Public\Desktop\AVG.lnk 2017-09-04 19:33 - 2017-05-29 20:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG 2017-09-04 15:29 - 2016-10-23 16:53 - 000000000 ____D C:\Users\Mateusz\AppData\LocalLow\Mozilla 2017-09-04 12:10 - 2015-11-18 21:53 - 000000000 ____D C:\MSI 2017-09-03 18:42 - 2016-07-16 13:36 - 000000000 ____D C:\WINDOWS\CbsTemp 2017-09-03 18:42 - 2015-12-23 01:02 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2017-09-03 18:39 - 2015-11-18 21:51 - 000002278 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2017-09-03 18:39 - 2015-11-18 21:51 - 000002266 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2017-08-27 20:18 - 2017-05-26 19:02 - 000000000 ____D C:\Users\Mateusz\AppData\Roaming\audacity 2017-08-27 09:38 - 2016-11-18 12:32 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox 2017-08-27 09:38 - 2015-11-19 01:56 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2017-08-27 00:38 - 2015-11-18 21:07 - 000000000 ____D C:\Users\Mateusz\AppData\Local\VirtualStore 2017-08-24 16:20 - 2017-01-22 15:43 - 000003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-08-24 16:20 - 2017-01-22 15:43 - 000003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-08-24 16:20 - 2017-01-22 15:43 - 000003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-08-24 16:20 - 2017-01-22 15:43 - 000003696 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-08-24 16:20 - 2017-01-22 15:43 - 000003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} ==================== Pliki w katalogu głównym wybranych folderów ======= 2017-07-09 17:28 - 2017-07-09 17:28 - 000000000 ____H () C:\Users\Mateusz\AppData\Local\BIT223.tmp 2017-09-22 17:23 - 2017-09-22 17:23 - 000078978 _____ () C:\Users\Mateusz\AppData\Local\recently-used.xbel 2017-07-06 22:33 - 2017-09-18 23:13 - 000007601 _____ () C:\Users\Mateusz\AppData\Local\Resmon.ResmonCfg 2017-07-09 17:27 - 2017-07-09 17:27 - 000000000 _____ () C:\Users\Mateusz\AppData\Local\{2757D4B3-A8C4-46D4-AD65-E6D05A476A15} ==================== Bamital & volsnap ====================== (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) C:\WINDOWS\system32\winlogon.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\wininit.exe => Plik podpisany cyfrowo C:\WINDOWS\explorer.exe => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\explorer.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\svchost.exe => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\svchost.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\services.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\User32.dll => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\User32.dll => Plik podpisany cyfrowo C:\WINDOWS\system32\userinit.exe => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\userinit.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\rpcss.dll => Plik podpisany cyfrowo C:\WINDOWS\system32\dnsapi.dll => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo C:\WINDOWS\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo LastRegBack: 2017-09-17 12:43 ==================== Koniec FRST.txt ============================