Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 09.03.2019 Uruchomiony przez Dell (administrator) RIO (09-03-2019 16:19:53) Uruchomiony z C:\Users\Dell\Downloads Załadowane profile: Dell (Dostępne profile: Dell) Platform: Windows 10 Pro Wersja 1803 17134.590 (X64) Język: Polski (Polska) Domyślna przeglądarka: Chrome Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki125177.inf_amd64_d9d520fc51d8a7f4\igfxCUIService.exe (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe (Autodesk, Inc. -> Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\ProtectedService.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\HidMonitorSvc.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Audinate Pty Ltd -> Audinate Pty. Ltd.) C:\Program Files (x86)\Audinate\Shared Files\mDNSResponder.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki125177.inf_amd64_d9d520fc51d8a7f4\IntelCpHDCPSvc.exe () [Brak podpisu cyfrowego] C:\Program Files (x86)\CrSSL\bin\crssladmmgr.exe (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe (Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Flexera Software LLC -> Flexera Software LLC) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe (Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe () [Brak podpisu cyfrowego] C:\Program Files (x86)\Kramer Electronics\Kramer K-Config3\MaestroService.exe (Intel(R) Trust Services -> Intel(R) Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe (LogMeIn, Inc. -> LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe (Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (Huawei Technologies Co., Ltd. -> ) C:\ProgramData\MobileBrServ\mbbService.exe (NetSetMan GmbH -> NetSetMan GmbH) C:\Program Files (x86)\NetSetMan\nsmservice.exe (MATROX GRAPHICS INC. -> Matrox Graphics Inc) C:\Program Files (x86)\Matrox Graphics\PowerDesk\Matrox.PDesk.Services.exe (Splashtop Inc. -> Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe (LogMeIn, Inc. -> LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe (Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe (TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (Audinate Pty Ltd -> Audinate Pty Ltd) C:\Program Files (x86)\Audinate\Shared Files\conmon_cmm_service.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki125177.inf_amd64_d9d520fc51d8a7f4\IntelCpHeciSvc.exe () [Brak podpisu cyfrowego] C:\Program Files (x86)\Kramer Electronics\Kramer K-Config3\MaestroServerApplication.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avscan.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avscan.exe (ALPS ELECTRIC CO., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe (Intel Corporation -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe (ALPS ELECTRIC CO., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki125177.inf_amd64_d9d520fc51d8a7f4\igfxEM.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) [Brak podpisu cyfrowego] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.40.70.0_x64__kzf8qxf38zg5c\SkypeApp.exe () [Brak podpisu cyfrowego] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.40.70.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.10314.31700.1000_x64__8wekyb3d8bbwe\Office16\OfficeHubTaskHost.exe (Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler.exe (Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler64.exe (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe (Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Microsoft Corporation) [Brak podpisu cyfrowego] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.40.70.0_x64__kzf8qxf38zg5c\SkypeBridge\SkypeBridge.exe (Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe (Bose Corporation -> Bose Corporation) C:\Program Files (x86)\Bose Updater\BOSEUPDATER.EXE (Delta Electronics, Inc. -> ) C:\Users\Dell\AppData\Local\Novo\LauncherDetect.exe () [Brak podpisu cyfrowego] C:\Users\Dell\pwo5\svchost.exe (Sophos Limited -> Cyberoam Technologies Pvt. Ltd.) C:\Program Files (x86)\CrSSL\bin\crssl-client.exe (Apple Inc. -> Apple, Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe (PI Engineering) [Brak podpisu cyfrowego] C:\Program Files (x86)\PI Engineering\MacroWorks 3.1\MacroWorks3r.exe (Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe (NetSetMan GmbH -> NetSetMan GmbH) C:\Program Files (x86)\NetSetMan\netsetman.exe (LogMeIn, Inc. -> LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.11.961\SSScheduler.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\AcWebBrowser.exe (Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\AcWebBrowser.exe (Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\AcWebBrowser.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe () [Brak podpisu cyfrowego] C:\Users\Dell\AppData\Local\Temp\_MEI9482\bin\winlogon.exe (Panasonic System Networks Co., Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Panasonic\Panasonic-DMS\Port Controller\Mfpscdl.exe (Evernote Corporation -> Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe (Intel Corporation-Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe (Dell Inc -> Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe (PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.6992.1466\DSAPI.exe (PC-Doctor, Inc. -> PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.6992.1466\pcdrwi.exe (FPT USA Corp. -> ) C:\Dell\Sytem64Folder\DellRctlService.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Microsoft Windows -> Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe (Dell Inc. -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe (Dell Inc -> Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Dell Inc -> Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Source Engine\OSE.EXE (Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Rejestr (filtrowane) =========================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9230280 2017-06-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_MAXX6] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1489384 2017-06-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [WavesSvc] => C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [723928 2017-01-26] (Waves Inc -> Waves Audio Ltd.) HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [773760 2016-10-20] (ALPS ELECTRIC CO., LTD. -> Alps Electric Co., Ltd.) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [302904 2019-01-18] (Apple Inc. -> Apple Inc.) HKLM\...\Run: [] => [X] HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [98024 2019-02-13] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) HKLM-x32\...\Run: [NetSetMan] => C:\Program Files (x86)\NetSetMan\netsetman.exe [7449792 2018-08-16] (NetSetMan GmbH -> NetSetMan GmbH) HKLM-x32\...\Run: [Autodesk Desktop App] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [708904 2018-05-09] (Autodesk, Inc. -> Autodesk, Inc.) HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5890504 2019-02-11] (LogMeIn, Inc. -> LogMeIn Inc.) HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-21-390228454-3208798693-3760494196-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [67896 2019-01-15] (Apple Inc. -> Apple Inc.) HKU\S-1-5-21-390228454-3208798693-3760494196-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2018-11-26] (Apple Inc. -> Apple Inc.) HKU\S-1-5-21-390228454-3208798693-3760494196-1001\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2018-11-26] (Apple Inc. -> Apple Inc.) HKU\S-1-5-21-390228454-3208798693-3760494196-1001\...\Run: [Bose Updater] => C:\Program Files (x86)\Bose Updater\BOSEUPDATER.EXE [1473968 2018-07-06] (Bose Corporation -> Bose Corporation) HKU\S-1-5-21-390228454-3208798693-3760494196-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2018-11-26] (Apple Inc. -> Apple Inc.) HKU\S-1-5-21-390228454-3208798693-3760494196-1001\...\Run: [Akamai NetSession Interface] => "C:\Users\Dell\AppData\Local\Akamai\netsession_win.exe" HKU\S-1-5-21-390228454-3208798693-3760494196-1001\...\Run: [DSALauncherDet] => C:\Users\Dell\AppData\Local\Novo\LauncherDetect.exe [78240 2017-02-13] (Delta Electronics, Inc. -> ) HKU\S-1-5-21-390228454-3208798693-3760494196-1001\...\Run: [pwo5] => C:\Users\Dell\pwo5\svchost.exe [7691285 2019-02-19] () [Brak podpisu cyfrowego] <==== UWAGA HKU\S-1-5-21-390228454-3208798693-3760494196-1001\...\Run: [] => [X] HKU\S-1-5-21-390228454-3208798693-3760494196-1001\...\Policies\Explorer: [] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\72.0.3626.121\Installer\chrmstp.exe [2019-03-08] (Google LLC -> Google Inc.) HKLM\Software\...\Authentication\Credential Providers: [{FBF75A60-F408-4e8e-905A-FB8F7A8BBC78}] -> C:\WINDOWS\system32\Matrox.Pdesk.LogonRelocator64.dll [2015-11-11] (Matrox Graphics Inc.) [Brak podpisu cyfrowego] Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Cyberoam SSL Client.lnk [2017-12-27] ShortcutTarget: Cyberoam SSL Client.lnk -> C:\Program Files (x86)\CrSSL\bin\crssl-client.exe (Sophos Limited -> Cyberoam Technologies Pvt. Ltd.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\MacroWorks 3 Runtime.lnk [2018-03-29] ShortcutTarget: MacroWorks 3 Runtime.lnk -> C:\Program Files (x86)\PI Engineering\MacroWorks 3.1\MacroWorks3r.exe (PI Engineering) [Brak podpisu cyfrowego] Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2019-02-18] ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.961\SSScheduler.exe (McAfee, Inc. -> McAfee, Inc.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NS Unified Web-MC.lnk [2018-04-12] ShortcutTarget: NS Unified Web-MC.lnk -> C:\Program Files (x86)\Panasonic\KX-NS Unified Web Maintenance Console\launcher\WebMaintenance.exe () [Brak podpisu cyfrowego] Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Panasonic Communications Utility.lnk [2018-05-28] ShortcutTarget: Panasonic Communications Utility.lnk -> C:\Program Files (x86)\Panasonic\Panasonic-DMS\Port Controller\Mfpscdl.exe (Panasonic System Networks Co., Ltd.) [Brak podpisu cyfrowego] Startup: C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk [2018-05-26] ShortcutTarget: EvernoteClipper.lnk -> C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corporation -> Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Winsock: Catalog5 08 C:\Program Files (x86)\Audinate\Shared Files\mdnsNSP.dll [171480 2016-05-04] (Audinate Pty. Ltd.) Winsock: Catalog5-x64 08 C:\Program Files\Audinate\Shared Files\mdnsNSP.dll [179712 2016-05-04] (Audinate Pty. Ltd.) Tcpip\Parameters: [DhcpNameServer] 8.8.8.8 4.4.4.4 Tcpip\..\Interfaces\{2af0edf7-c9a0-4c3e-b337-5e5c31a198a8}: [DhcpNameServer] 192.168.0.1 89.188.222.2 185.38.224.7 192.168.1.1 Tcpip\..\Interfaces\{4c4c7805-310c-4830-a1d1-00197f62dbd2}: [NameServer] 8.8.8.8 Tcpip\..\Interfaces\{4c4c7805-310c-4830-a1d1-00197f62dbd2}: [DhcpNameServer] 192.168.2.1 Tcpip\..\Interfaces\{75bca9cc-7989-4526-a393-105ea1180238}: [DhcpNameServer] 10.0.0.22 10.0.0.16 Tcpip\..\Interfaces\{c43f1f67-4c47-4aa6-bd7b-66c398118f25}: [DhcpNameServer] 8.8.8.8 4.4.4.4 Tcpip\..\Interfaces\{f5d45c1b-0be3-4a4f-afd8-65128abcdb52}: [DhcpNameServer] 192.168.8.1 192.168.8.1 Internet Explorer: ================== HKU\S-1-5-21-390228454-3208798693-3760494196-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://dell15.msn.com/?pc=DCTE HKU\S-1-5-21-390228454-3208798693-3760494196-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell15.msn.com/?pc=DCTE SearchScopes: HKU\S-1-5-21-390228454-3208798693-3760494196-1001 -> DefaultScope {4896CD15-4C3F-4990-A5DA-114671AD4D7B} URL = SearchScopes: HKU\S-1-5-21-390228454-3208798693-3760494196-1001 -> {4896CD15-4C3F-4990-A5DA-114671AD4D7B} URL = BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2019-01-15] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\ssv.dll [2017-07-07] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2018-03-30] (Evernote Corporation -> Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-07-07] (Oracle America, Inc. -> Oracle Corporation) DPF: HKLM-x32 {96ADD1E5-1B8D-41BB-AB80-2C69FFB82E4A} hxxp://192.168.1.10/nwcv4Ssetup.cab Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-01-15] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-02-23] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-01-15] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-02-23] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-01-15] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-02-23] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-01-15] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-02-23] (Microsoft Corporation -> Microsoft Corporation) FireFox: ======== FF DefaultProfile: lnax4jtq.default FF ProfilePath: C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\lnax4jtq.default [2019-02-24] FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-01-15] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-07-07] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-07-07] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2019-01-15] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-20] (Google Inc -> Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-20] (Google Inc -> Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN -> VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-02-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.) FF Plugin-x32: Web Components -> C:\Program Files (x86)\Web Components\npWebVideoPlugin.dll [2016-07-12] () [Brak podpisu cyfrowego] FF Plugin HKU\S-1-5-21-390228454-3208798693-3760494196-1001: LWAPlugin15.8 -> C:\Users\Dell\AppData\Roaming\Mozilla\Plugins\npLWAPlugin15.8.dll [2013-03-13] (Microsoft Corporation -> Microsoft Corporation) FF Plugin ProgramFiles/Appdata: C:\Users\Dell\AppData\Roaming\mozilla\plugins\npatgpc.dll [2017-08-24] FF Plugin ProgramFiles/Appdata: C:\Users\Dell\AppData\Roaming\mozilla\plugins\npLWAPlugin15.8.dll [2017-08-24] Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default [2019-03-09] CHR Extension: (Prezentacje) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-12] CHR Extension: (Dokumenty) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-12] CHR Extension: (Dysk Google) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-17] CHR Extension: (YouTube) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-04-22] CHR Extension: (Adobe Acrobat) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-09-18] CHR Extension: (Arkusze) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-12] CHR Extension: (Pulpit zdalny Chrome) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2019-03-05] CHR Extension: (Dokumenty Google offline) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-20] CHR Extension: (IE Tab) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\hehijbfgiekmjfkfjpbkbammjbdenadd [2019-02-19] CHR Extension: (Ubiquiti Device Discovery Tool) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmpigflbjeapnknladcfphgkemopofig [2019-01-24] CHR Extension: (Cisco Webex Extension) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlhmfgmfgeifomenelglieieghnjghma [2018-07-05] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03] CHR Extension: (Gmail) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-04-22] CHR Extension: (Chrome Media Router) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-02-08] CHR Profile: C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-02-18] CHR Profile: C:\Users\Dell\AppData\Local\Google\Chrome\User Data\System Profile [2019-02-18] CHR HKU\S-1-5-21-390228454-3208798693-3760494196-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx ==================== Usługi (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1388920 2018-05-09] (Autodesk, Inc. -> Autodesk Inc.) S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [893008 2019-02-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R2 AntivirProtectedService; C:\Program Files (x86)\Avira\Antivirus\ProtectedService.exe [314264 2019-02-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [248312 2019-02-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [248312 2019-02-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1191152 2019-02-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R2 ApHidMonitorService; C:\Program Files\DellTPad\HidMonitorSvc.exe [104744 2016-10-20] (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [85304 2018-10-16] (Apple Inc. -> Apple Inc.) R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [453888 2019-02-13] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9678624 2019-02-07] (Microsoft Corporation -> Microsoft Corporation) R2 conmon; C:\Program Files (x86)\Audinate\Shared Files\conmon_cmm_service.exe [329200 2016-05-04] (Audinate Pty Ltd -> Audinate Pty Ltd) R2 Cyberoam SSL VPN Helper; C:\Program Files (x86)\CrSSL\bin\crssladmmgr.exe [158208 2014-05-12] () [Brak podpisu cyfrowego] R2 DanteDiscovery; C:\Program Files (x86)\Audinate\Shared Files\mDNSResponder.exe [428504 2016-05-04] (Audinate Pty Ltd -> Audinate Pty. Ltd.) R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [209392 2018-10-22] (Dell Inc -> Dell Inc.) R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3347440 2018-10-22] (Dell Inc -> Dell Inc.) R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [218096 2018-10-22] (Dell Inc -> Dell Inc.) R2 Dell Hardware Support; C:\Program Files\Dell\SupportAssistAgent\PCDr\SupportAssist\6.0.6992.1466\DSAPI.exe [1035072 2019-01-10] (PC-Doctor, Inc. -> PC-Doctor, Inc.) R2 DellRctlService; C:\Dell\Sytem64Folder\DellRctlService.exe [520256 2016-12-19] (FPT USA Corp. -> ) R2 esifsvc; C:\WINDOWS\System32\Intel\DPTF\esif_uf.exe [1585784 2016-06-03] (Intel Corporation - pGFX -> Intel Corporation) R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3361736 2019-02-11] (LogMeIn, Inc. -> LogMeIn Inc.) R2 Huawei E3372; C:\ProgramData\MobileBrServ\mbbservice.exe [240720 2014-03-07] (Huawei Technologies Co., Ltd. -> ) S3 iaStorAfsService; C:\WINDOWS\IAStorAfsService\iaStorAfsService.exe [2413752 2017-08-18] (Intel(R) Rapid Storage Technology -> Intel Corporation) R2 ibtsiva; C:\WINDOWS\system32\ibtsiva.exe [190208 2016-10-14] (Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation) S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe [742704 2017-10-11] (Intel(R) Trust Services -> Intel(R) Corporation) R2 Intel(R) TPM Provisioning Service; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe [668472 2017-10-11] (Intel(R) Trust Services -> Intel(R) Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [213648 2017-11-09] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) R2 Kramer Maestro; C:\Program Files (x86)\Kramer Electronics\Kramer K-Config3\MaestroService.exe [12288 2018-10-03] () [Brak podpisu cyfrowego] R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc. -> LogMeIn, Inc.) R2 Matrox.Pdesk3.ServicesHost; C:\Program Files (x86)\Matrox Graphics\PowerDesk\Matrox.PDesk.Services.exe [3880784 2015-11-11] (MATROX GRAPHICS INC. -> Matrox Graphics Inc) S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.961\McCHSvc.exe [405392 2019-02-08] (McAfee, Inc. -> McAfee, Inc.) S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268704 2016-06-23] (Intel Corporation-Wireless Connectivity Solutions -> ) R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2013-05-16] (Hewlett-Packard) [Brak podpisu cyfrowego] R2 nsmService; C:\Program Files (x86)\NetSetMan\nsmservice.exe [1782976 2017-04-24] (NetSetMan GmbH -> NetSetMan GmbH) R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2013-05-16] (Hewlett-Packard) [Brak podpisu cyfrowego] S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.) R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [309984 2017-06-21] (Realtek Semiconductor Corp -> Realtek Semiconductor) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4737448 2018-07-15] (Microsoft Windows Publisher -> Microsoft Corporation) R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [39384 2018-12-12] (Dell Inc. -> Dell Inc.) R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11665136 2019-01-16] (TeamViewer GmbH -> TeamViewer GmbH) R2 WavesSysSvc; C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe [615384 2017-02-07] (Waves Inc -> Waves Audio Ltd.) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4403496 2019-01-09] (Microsoft Corporation -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [107136 2018-09-21] (Microsoft Corporation -> Microsoft Corporation) R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3732896 2016-06-23] (Intel Corporation-Wireless Connectivity Solutions -> Intel® Corporation) ===================== Sterowniki (filtrowane) ====================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R0 avdevprot; C:\WINDOWS\System32\DRIVERS\avdevprot.sys [75432 2019-02-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) S0 avelam; C:\WINDOWS\System32\drivers\avelam.sys [22336 2019-02-27] (Microsoft Windows Early Launch Anti-malware Publisher -> Avira Operations GmbH & Co. KG) R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [188008 2019-02-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [175104 2019-02-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [46704 2019-02-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R3 AVMCOWAN; C:\WINDOWS\system32\DRIVERS\AVMCOWAN.sys [79872 2010-11-28] (Microsoft Windows Hardware Compatibility Publisher -> AVM GmbH) R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [89736 2019-02-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) R0 avusbflt; C:\WINDOWS\System32\Drivers\avusbflt.sys [45472 2019-02-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) S3 CH341SER_A64; C:\WINDOWS\System32\Drivers\CH341S64.SYS [59904 2015-02-06] (Microsoft Windows Hardware Compatibility Publisher -> www.winchiphead.com) R3 com0com; C:\WINDOWS\System32\drivers\com0com.sys [90544 2017-07-13] (CyberCircuits -> Vyacheslav Frolov) R3 DDDriver; C:\WINDOWS\system32\drivers\DDDriver64Dcsa.sys [36400 2018-10-20] (Microsoft Windows Hardware Compatibility Publisher -> Dell Inc.) S3 DellProf; C:\WINDOWS\system32\drivers\DellProf.sys [41208 2018-05-08] (Techporch Incorporated -> Dell Computer Corporation) R3 DellRbtn; C:\WINDOWS\System32\drivers\DellRbtn.sys [19440 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> OSR Open Systems Resources, Inc.) R3 DellRctl; C:\WINDOWS\System32\drivers\DellRctl.sys [33608 2017-01-04] (FPT USA Corp. -> ) R3 dptf_acpi; C:\WINDOWS\System32\drivers\dptf_acpi.sys [70208 2016-05-19] (Intel Corporation -> Intel Corporation) R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [65088 2016-05-19] (Intel Corporation -> Intel Corporation) R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [515792 2019-01-25] (Symantec Corporation -> Symantec Corporation) R3 esif_lf; C:\WINDOWS\System32\drivers\esif_lf.sys [343608 2016-05-19] (Intel Corporation -> Intel Corporation) S3 evserial7; C:\WINDOWS\System32\DRIVERS\evserial7.sys [75008 2017-03-26] (Eltima Software -> ELTIMA Software) S3 evserial9; C:\WINDOWS\system32\DRIVERS\evserial9.sys [40632 2017-07-24] (Element 5 Limited Liability Company -> ELTIMA Software) S3 FTDIBUS; C:\WINDOWS\system32\drivers\ftdibus.sys [118160 2016-10-04] (Future Technology Devices International Ltd -> Future Technology Devices International Ltd.) S3 FTSER2K; C:\WINDOWS\system32\drivers\ftser2k.sys [88752 2016-10-04] (Future Technology Devices International Ltd -> ) S3 fus2base; C:\WINDOWS\system32\DRIVERS\fus2base.sys [696832 2010-11-28] (Microsoft Windows Hardware Compatibility Publisher -> AVM Berlin) S3 Hamachi; C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [45680 2019-02-11] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.) S3 HidEventFilter; C:\WINDOWS\System32\drivers\HidEventFilter.sys [26112 2015-06-25] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) S3 HID_PCI; C:\WINDOWS\System32\drivers\HID_PCI.sys [47928 2015-08-24] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel) S3 iaStorAfs; C:\WINDOWS\System32\drivers\iaStorAfs.sys [70664 2017-08-18] (Intel(R) Rapid Storage Technology -> Intel Corporation) R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [732416 2016-10-14] (Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation) R3 IntcAzAudAddService; C:\WINDOWS\system32\drivers\RTDVHD64.sys [2682824 2017-06-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) S3 ISH; C:\WINDOWS\System32\drivers\ISH.sys [133944 2015-08-23] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel) S3 ISH_BusDriver; C:\WINDOWS\System32\drivers\ISH_BusDriver.sys [69936 2015-08-24] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel) S3 libusb0; C:\WINDOWS\system32\DRIVERS\libusb0.sys [56576 2018-03-21] (SZ DJI Technology Co., Ltd -> hxxp://libusb-win32.sourceforge.net) S3 Netwtw02; C:\WINDOWS\System32\drivers\Netwtw02.sys [7075568 2015-08-24] (Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation) R3 Netwtw04; C:\WINDOWS\System32\drivers\Netwtw04.sys [7689728 2018-04-12] (Microsoft Windows -> Intel Corporation) S3 nfcgpiomanager; C:\WINDOWS\System32\drivers\nfcgpiomanager.sys [29160 2015-07-07] (NXP Semiconductors India Pvt Ltd. -> Nfc GPIO Driver) R2 NPF; C:\WINDOWS\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.) R2 NPF; C:\Windows\SysWOW64\drivers\npf.sys [36600 2017-01-09] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.) R3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [779232 2016-08-04] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation) R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [41584 2016-05-25] (Microsoft Windows Hardware Compatibility Publisher -> Cyberoam Technologies Pvt. Ltd.) S3 TDAUSBMU; C:\WINDOWS\System32\Drivers\TDAUSBMU.sys [27392 2010-07-21] (Panasonic System Networks Co., Ltd. -> Panasonic System Networks Co., Ltd.) S3 TXEIx64; C:\WINDOWS\System32\drivers\TXEIx64.sys [148280 2015-06-27] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) S3 usbaudio2; C:\WINDOWS\system32\DRIVERS\usbaudio2.sys [229888 2018-04-12] (Microsoft Windows -> Microsoft Corporation) R3 USBPcap; C:\WINDOWS\system32\DRIVERS\USBPcap.sys [50224 2017-08-21] (Tomasz Moń -> USBPcap) S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [22016 2018-04-12] (Microsoft Windows -> Microsoft Corporation) R3 VSBC9; C:\WINDOWS\System32\drivers\evsbc9.sys [127160 2017-07-24] (Element 5 Limited Liability Company -> ELTIMA Software) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44616 2018-04-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [26880 2015-11-12] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [331680 2018-04-12] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [44032 2018-04-12] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-03-09 16:19 - 2019-03-09 16:19 - 000000000 ____D C:\FRST 2019-03-09 16:18 - 2019-03-09 16:19 - 002434560 _____ (Farbar) C:\Users\Dell\Downloads\FRST64.exe 2019-03-09 15:48 - 2019-03-09 16:20 - 000044619 _____ C:\Users\Dell\Downloads\FRST.txt 2019-03-09 15:01 - 2019-03-09 15:01 - 000000000 ____D C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell 2019-03-09 14:39 - 2019-03-09 14:39 - 005808920 _____ (Avira Operations GmbH & Co. KG) C:\Users\Dell\Downloads\avira_en_aes00_3037284926_n6hhb4m7e53dn007pxfo_wd.exe 2019-03-08 13:18 - 2019-03-08 13:18 - 000000109 _____ C:\Users\Dell\Downloads\listen (8).pls 2019-03-08 13:18 - 2019-03-08 13:18 - 000000034 _____ C:\Users\Dell\Downloads\rn.mp3 (7).m3u 2019-03-04 08:44 - 2019-03-04 08:44 - 000545712 _____ C:\Users\Dell\Documents\sieć szkieletowa Caritas.pdf 2019-03-04 08:28 - 2019-03-04 08:28 - 000550703 _____ C:\Users\Dell\Documents\rejestracja czasu pracy dla oddziałów Caritas.pdf 2019-03-04 08:06 - 2019-03-04 08:06 - 000560027 _____ C:\Users\Dell\Documents\Monitoring dla oddziałów Caritas.pdf 2019-03-01 20:05 - 2019-03-01 20:05 - 000009591 _____ C:\Users\Dell\Documents\Zeszyt1 (Automatycznie zapisany).xlsx 2019-03-01 02:14 - 2019-03-01 02:14 - 000403891 _____ C:\Users\Dell\Downloads\ip-control-lcd (1).stl 2019-03-01 02:13 - 2019-03-01 02:13 - 000379480 _____ C:\Users\Dell\Downloads\ip-relay-driver-din.stl 2019-02-27 19:06 - 2019-03-09 15:02 - 000000000 ____D C:\Users\Dell\AppData\Local\LogMeIn Hamachi 2019-02-27 19:06 - 2019-02-27 19:06 - 000000995 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk 2019-02-27 19:06 - 2019-02-27 19:06 - 000000000 ____D C:\Users\Dell\AppData\Local\LogMeIn 2019-02-27 19:06 - 2019-02-27 19:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi 2019-02-27 19:06 - 2019-02-27 19:06 - 000000000 ____D C:\ProgramData\LogMeIn 2019-02-27 19:06 - 2019-02-27 19:06 - 000000000 ____D C:\Program Files (x86)\LogMeIn Hamachi 2019-02-27 19:04 - 2019-02-27 19:05 - 009142272 _____ C:\Users\Dell\Downloads\hamachi.msi 2019-02-27 15:40 - 2019-02-27 15:40 - 000022336 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avelam.sys 2019-02-26 21:32 - 2019-03-04 08:44 - 000000000 ____D C:\Users\Dell\Documents\Caritas odzziały wycena 2019-02-25 17:12 - 2019-02-25 17:13 - 000000000 ____D C:\Users\Dell\Documents\GSM Brzozowa 8A 2019-02-25 08:16 - 2019-02-25 08:16 - 000000124 _____ C:\Users\Dell\Desktop\HiZet.url 2019-02-22 16:01 - 2019-02-22 16:01 - 000287588 _____ C:\Users\Dell\Downloads\WS1W_3x2H.pdf 2019-02-22 15:48 - 2019-02-22 15:48 - 000993985 _____ C:\Users\Dell\Downloads\SE_DS_Fronius_Symo_PL (1).pdf 2019-02-22 15:42 - 2019-02-22 15:51 - 000000000 ____D C:\Users\Dell\Documents\Piotr Klata 2019-02-22 14:01 - 2019-02-22 14:01 - 000000000 ____D C:\WINDOWS\PCHEALTH 2019-02-22 13:16 - 2019-02-22 13:25 - 000113140 _____ C:\Users\Dell\Documents\Schemat instalacji PV Rawa Mazowiecka.pdf 2019-02-22 12:56 - 2019-02-22 12:56 - 000001189 _____ C:\Users\Public\Desktop\Avira.lnk 2019-02-22 12:55 - 2019-02-22 12:55 - 000001040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 14.lnk 2019-02-20 20:52 - 2019-02-20 21:04 - 000000204 _____ C:\Users\Dell\Documents\wycena na router dla Klasztoru Kapucynów.txt 2019-02-19 20:19 - 2019-02-19 20:19 - 000110954 _____ C:\Users\Dell\Documents\Plan klasztoru w Lublinie.vsdx 2019-02-19 08:42 - 2019-02-19 08:42 - 027637416 _____ (Xirrus ) C:\Users\Dell\Downloads\XirrusWiFiInspectorSetup.1.2.0.exe 2019-02-19 08:40 - 2019-02-19 08:40 - 022222848 _____ (Xirrus) C:\Users\Dell\Downloads\WiFiInspector-Setup-1-2-1-4.exe 2019-02-19 08:39 - 2019-03-09 16:20 - 000000000 ____D C:\Users\Dell\pwo5 2019-02-19 08:38 - 2019-02-19 08:39 - 030083072 _____ (Microsoft Corporation) C:\Users\Dell\Downloads\Xirrus Wi-Fi Inspector 1.2.1.4 FULL VERSION.exe 2019-02-18 07:06 - 2019-02-24 23:32 - 000000000 ____D C:\ProgramData\McAfee Security Scan 2019-02-18 07:06 - 2019-02-18 07:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus 2019-02-15 21:36 - 2019-02-15 21:36 - 000000000 ____D C:\Users\Dell\Downloads\Helion 2019-02-15 21:34 - 2019-02-15 21:34 - 000000000 ____D C:\Users\Dell\Documents\EAGLE 2019-02-15 21:29 - 2019-02-15 21:38 - 000000000 ____D C:\Users\Dell\AppData\Roaming\Eagle 2019-02-15 21:29 - 2019-02-15 21:29 - 000000659 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EAGLE.lnk 2019-02-15 21:29 - 2019-02-15 21:29 - 000000647 _____ C:\Users\Public\Desktop\EAGLE.lnk 2019-02-15 21:29 - 2019-02-15 21:29 - 000000000 ____D C:\Users\Dell\AppData\Roaming\CadSoft 2019-02-15 21:28 - 2019-02-15 21:29 - 000000000 ____D C:\EAGLE 9.3.0 2019-02-15 21:08 - 2019-02-15 21:11 - 128328576 _____ (Autodesk, Inc. ) C:\Users\Dell\Downloads\Autodesk_EAGLE_9.3.0_English_Win_64bit.exe 2019-02-15 20:48 - 2019-02-15 20:48 - 000000000 ____D C:\Users\Dell\Documents\OpenSCAD 2019-02-15 20:30 - 2019-02-15 20:30 - 000174454 _____ C:\Users\Dell\Downloads\ardaud.zip 2019-02-15 20:21 - 2019-02-15 20:21 - 000000000 ____D C:\Users\Dell\AppData\Local\fontconfig 2019-02-15 20:20 - 2019-02-15 20:20 - 000001200 _____ C:\Users\Dell\Desktop\TOTALCMD64 — skrót (2).lnk 2019-02-15 20:19 - 2019-02-15 20:19 - 000000883 _____ C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenSCAD.lnk 2019-02-15 20:19 - 2019-02-15 20:19 - 000000000 ____D C:\Program Files\OpenSCAD 2019-02-15 20:09 - 2019-02-15 20:09 - 014406718 _____ C:\Users\Dell\Downloads\OpenSCAD-2015.03-2-x86-64-Installer.exe 2019-02-15 16:17 - 2019-02-15 16:17 - 000125664 _____ C:\Users\Dell\Downloads\5.6.37.unf 2019-02-15 12:52 - 2019-02-18 16:43 - 000000000 ____D C:\Users\Dell\Ubiquiti UniFi 2019-02-15 12:52 - 2019-02-15 12:52 - 000001888 _____ C:\Users\Dell\Desktop\UniFi.lnk 2019-02-15 12:52 - 2019-02-15 12:52 - 000000000 ____D C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubiquiti UniFi 2019-02-15 11:55 - 2019-02-15 11:55 - 000291606 _____ C:\Users\Dell\Downloads\TCPView.zip 2019-02-15 11:55 - 2019-02-15 11:55 - 000000000 ____D C:\Users\Dell\Downloads\TCPView 2019-02-14 20:32 - 2019-02-06 08:54 - 004527584 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe 2019-02-14 20:32 - 2019-02-06 08:32 - 003648512 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2019-02-14 20:32 - 2019-02-06 07:52 - 002891776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2019-02-14 20:32 - 2019-02-06 04:01 - 001221432 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2019-02-14 20:32 - 2019-02-06 04:00 - 009084432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2019-02-14 20:32 - 2019-02-06 04:00 - 007520112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2019-02-14 20:32 - 2019-02-06 04:00 - 006572416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2019-02-14 20:32 - 2019-02-06 04:00 - 002465792 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll 2019-02-14 20:32 - 2019-02-06 03:52 - 022014464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2019-02-14 20:32 - 2019-02-06 03:45 - 019404288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2019-02-14 20:32 - 2019-02-06 03:42 - 003711488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2019-02-14 20:32 - 2019-02-06 03:41 - 025853952 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2019-02-14 20:32 - 2019-02-06 03:40 - 005792256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2019-02-14 20:32 - 2019-02-06 03:37 - 004515840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2019-02-14 20:32 - 2019-02-06 03:33 - 022714880 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2019-02-14 20:32 - 2019-02-06 03:29 - 004865536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2019-02-14 20:32 - 2019-02-06 03:26 - 007599616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2019-02-14 20:32 - 2019-02-06 03:24 - 004937728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2019-02-14 20:31 - 2019-02-06 08:53 - 001634704 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll 2019-02-14 20:31 - 2019-02-06 08:35 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll 2019-02-14 20:31 - 2019-02-06 08:30 - 004052992 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll 2019-02-14 20:31 - 2019-02-06 08:30 - 001662464 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll 2019-02-14 20:31 - 2019-02-06 08:30 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll 2019-02-14 20:31 - 2019-02-06 08:11 - 001454648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll 2019-02-14 20:31 - 2019-02-06 07:57 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll 2019-02-14 20:31 - 2019-02-06 07:52 - 004053504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll 2019-02-14 20:31 - 2019-02-06 07:52 - 001470976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll 2019-02-14 20:31 - 2019-02-06 04:01 - 001989040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll 2019-02-14 20:31 - 2019-02-06 04:01 - 001029944 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2019-02-14 20:31 - 2019-02-06 04:01 - 000720480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll 2019-02-14 20:31 - 2019-02-06 04:01 - 000566568 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe 2019-02-14 20:31 - 2019-02-06 04:01 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll 2019-02-14 20:31 - 2019-02-06 04:01 - 000076088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys 2019-02-14 20:31 - 2019-02-06 04:01 - 000033576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NtlmShared.dll 2019-02-14 20:31 - 2019-02-06 04:00 - 002719760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2019-02-14 20:31 - 2019-02-06 04:00 - 002421264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys 2019-02-14 20:31 - 2019-02-06 04:00 - 001257904 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2019-02-14 20:31 - 2019-02-06 04:00 - 001140680 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2019-02-14 20:31 - 2019-02-06 04:00 - 001130568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll 2019-02-14 20:31 - 2019-02-06 04:00 - 001098272 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll 2019-02-14 20:31 - 2019-02-06 04:00 - 000945680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys 2019-02-14 20:31 - 2019-02-06 04:00 - 000899728 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll 2019-02-14 20:31 - 2019-02-06 04:00 - 000466960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS 2019-02-14 20:31 - 2019-02-06 04:00 - 000376120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys 2019-02-14 20:31 - 2019-02-06 04:00 - 000043536 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe 2019-02-14 20:31 - 2019-02-06 04:00 - 000038792 _____ (Microsoft Corporation) C:\WINDOWS\system32\NtlmShared.dll 2019-02-14 20:31 - 2019-02-06 03:59 - 001922064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys 2019-02-14 20:31 - 2019-02-06 03:59 - 001457248 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2019-02-14 20:31 - 2019-02-06 03:59 - 000983128 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2019-02-14 20:31 - 2019-02-06 03:59 - 000144288 _____ (Microsoft Corporation) C:\WINDOWS\system32\smss.exe 2019-02-14 20:31 - 2019-02-06 03:41 - 005307392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll 2019-02-14 20:31 - 2019-02-06 03:40 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\npmproxy.dll 2019-02-14 20:31 - 2019-02-06 03:38 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll 2019-02-14 20:31 - 2019-02-06 03:38 - 000561152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll 2019-02-14 20:31 - 2019-02-06 03:37 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll 2019-02-14 20:31 - 2019-02-06 03:28 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\hidparse.sys 2019-02-14 20:31 - 2019-02-06 03:28 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys 2019-02-14 20:31 - 2019-02-06 03:28 - 000039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll 2019-02-14 20:31 - 2019-02-06 03:27 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll 2019-02-14 20:31 - 2019-02-06 03:27 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll 2019-02-14 20:31 - 2019-02-06 03:27 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\exfat.sys 2019-02-14 20:31 - 2019-02-06 03:27 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys 2019-02-14 20:31 - 2019-02-06 03:26 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll 2019-02-14 20:31 - 2019-02-06 03:26 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys 2019-02-14 20:31 - 2019-02-06 03:26 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll 2019-02-14 20:31 - 2019-02-06 03:26 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2019-02-14 20:31 - 2019-02-06 03:25 - 000736256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys 2019-02-14 20:31 - 2019-02-06 03:25 - 000507392 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll 2019-02-14 20:31 - 2019-02-06 03:24 - 000466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll 2019-02-14 20:31 - 2019-02-06 03:23 - 000393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll 2019-02-14 20:31 - 2019-02-06 03:22 - 000960512 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll 2019-02-14 20:31 - 2019-02-06 03:22 - 000885760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll 2019-02-14 20:31 - 2019-02-06 03:21 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cdfs.sys 2019-02-14 20:31 - 2019-02-06 02:04 - 000001314 _____ C:\WINDOWS\system32\tcbres.wim 2019-02-14 20:31 - 2019-01-12 09:56 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll 2019-02-14 20:31 - 2019-01-12 03:28 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll 2019-02-14 20:31 - 2019-01-08 10:08 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll 2019-02-14 20:31 - 2019-01-08 04:06 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll 2019-02-14 20:31 - 2019-01-08 04:06 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll 2019-02-14 20:31 - 2019-01-08 04:06 - 000000072 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin 2019-02-12 17:43 - 2019-02-12 17:43 - 000134464 _____ C:\Users\Dell\AppData\Local\GDIPFONTCACHEV1.DAT 2019-02-12 17:42 - 2019-02-12 17:42 - 000631296 _____ C:\Users\Dell\Downloads\zpascennik_wyrobow_grupy_zpas_2017_pl_pln.xls 2019-02-12 16:50 - 2019-02-12 16:51 - 000000000 ____D C:\Users\Dell\Desktop\backupy 2019-02-12 16:41 - 2019-02-12 16:41 - 000001184 _____ C:\Users\Dell\Desktop\N1MM Logger+.lnk 2019-02-12 15:52 - 2019-02-12 15:52 - 000000000 ____D C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\com0com 2019-02-12 15:51 - 2019-02-12 15:51 - 000000000 ____D C:\Users\Dell\Downloads\com0com 2019-02-12 15:51 - 2019-02-12 15:51 - 000000000 ____D C:\Program Files (x86)\com0com 2019-02-12 15:50 - 2019-02-12 15:50 - 000475063 _____ C:\Users\Dell\Downloads\com0com-3.0.0.0-i386-and-x64-signed.zip 2019-02-12 15:34 - 2019-02-12 15:34 - 000325824 _____ C:\Users\Dell\Downloads\Instrukcja-instalacji-sterownika-Virtual-COM.pdf 2019-02-12 13:31 - 2019-02-12 13:31 - 003591431 _____ C:\Users\Dell\Downloads\selekcjoner76.zip 2019-02-12 13:31 - 2019-02-12 13:31 - 000000000 ____D C:\Users\Dell\Downloads\selekcjoner76 2019-02-12 13:30 - 2019-02-12 13:30 - 000000000 ____D C:\Users\Dell\Downloads\s_demo 2019-02-12 13:29 - 2019-02-12 13:29 - 004102908 _____ C:\Users\Dell\Downloads\s_demo.zip 2019-02-12 13:05 - 2019-02-12 13:05 - 000875812 _____ C:\Users\Dell\Downloads\selekcjoner_npr (1).zip 2019-02-12 13:04 - 2019-02-12 13:04 - 000875812 _____ C:\Users\Dell\Downloads\selekcjoner_npr.zip 2019-02-12 11:00 - 2019-02-12 11:00 - 000001733 _____ C:\Users\Public\Desktop\Huawei E3372.lnk 2019-02-12 11:00 - 2019-02-12 11:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Huawei E3372 2019-02-12 10:59 - 2019-02-12 11:00 - 000000000 ____D C:\ProgramData\MobileBrServ 2019-02-11 10:14 - 2019-02-11 10:14 - 000045680 _____ (LogMeIn Inc.) C:\WINDOWS\system32\Drivers\Hamdrv.sys 2019-02-07 18:12 - 2019-02-07 18:15 - 1118593656 _____ (KiCad) C:\Users\Dell\Downloads\kicad-5.0.2_1-x86_64.exe ==================== Jeden miesiąc (zmodyfikowane) ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-03-09 16:19 - 2017-04-07 21:41 - 000000000 ____D C:\Users\Dell\Documents\Pliki programu Outlook 2019-03-09 16:15 - 2018-04-12 00:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2019-03-09 15:06 - 2018-06-06 07:37 - 001763504 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2019-03-09 15:06 - 2018-04-12 16:54 - 000785012 _____ C:\WINDOWS\system32\perfh015.dat 2019-03-09 15:06 - 2018-04-12 16:54 - 000152122 _____ C:\WINDOWS\system32\perfc015.dat 2019-03-09 15:06 - 2018-04-12 00:36 - 000000000 ____D C:\WINDOWS\INF 2019-03-09 15:02 - 2017-05-08 11:54 - 000000000 ___RD C:\Users\Dell\iCloudDrive 2019-03-09 15:01 - 2018-06-06 07:34 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2019-03-09 15:01 - 2017-04-28 14:09 - 000000000 ____D C:\Program Files (x86)\TeamViewer 2019-03-09 15:01 - 2017-04-07 17:09 - 000000000 __SHD C:\Users\Dell\IntelGraphicsProfiles 2019-03-09 15:00 - 2018-04-11 22:04 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2019-03-09 14:57 - 2018-06-06 07:28 - 000000000 ____D C:\Users\Dell 2019-03-09 14:49 - 2017-05-09 10:42 - 000000000 ____D C:\Users\Dell\AppData\Local\ConnectedDevicesPlatform 2019-03-09 14:48 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\AppReadiness 2019-03-09 14:42 - 2018-06-06 07:34 - 000003350 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-390228454-3208798693-3760494196-1001 2019-03-09 14:42 - 2018-06-06 07:28 - 000002437 _____ C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2019-03-09 14:42 - 2017-04-07 17:27 - 000000000 ___RD C:\Users\Dell\OneDrive 2019-03-09 14:32 - 2018-06-06 07:25 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2019-03-09 09:37 - 2017-04-18 14:20 - 000000000 ____D C:\Users\Dell\AppData\Roaming\WhatsApp 2019-03-09 09:36 - 2017-04-18 14:20 - 000002289 _____ C:\Users\Dell\Desktop\WhatsApp.lnk 2019-03-09 09:36 - 2017-04-18 14:20 - 000000000 ____D C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp 2019-03-09 09:36 - 2017-04-18 14:19 - 000000000 ____D C:\Users\Dell\AppData\Local\WhatsApp 2019-03-08 13:18 - 2017-09-09 15:16 - 000000000 ____D C:\Users\Dell\AppData\Roaming\vlc 2019-03-08 12:23 - 2017-04-22 08:49 - 000002307 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2019-03-08 12:23 - 2017-04-22 08:49 - 000002266 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2019-03-08 12:08 - 2018-04-12 00:38 - 000000000 ___HD C:\Program Files\WindowsApps 2019-03-06 09:59 - 2018-12-07 19:20 - 000004210 _____ C:\WINDOWS\System32\Tasks\CCleaner Update 2019-03-05 14:51 - 2017-04-07 17:25 - 000000000 ____D C:\Users\Dell\AppData\Local\VirtualStore 2019-03-05 14:11 - 2017-05-30 19:23 - 000000000 ____D C:\Users\Dell\Documents\N1MM Logger+ 2019-03-02 21:46 - 2018-11-16 09:51 - 000000000 ____D C:\Program Files\rempl 2019-03-01 01:01 - 2017-06-05 14:32 - 000000000 ____D C:\Users\Dell\Downloads\sh5 2019-03-01 00:00 - 2017-06-14 21:42 - 000000000 ____D C:\Users\Dell\AppData\Local\Arduino15 2019-02-28 23:33 - 2017-05-04 10:29 - 000000000 ____D C:\Users\Dell\AppData\Local\RCForb_Client_v08 2019-02-28 23:33 - 2017-05-02 10:31 - 000000000 ____D C:\ProgramData\TEMP 2019-02-27 15:41 - 2018-04-12 00:38 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2019-02-27 15:41 - 2017-09-17 11:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira 2019-02-27 15:40 - 2017-06-20 11:19 - 000075432 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avdevprot.sys 2019-02-27 15:40 - 2017-04-07 21:17 - 000188008 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys 2019-02-27 15:40 - 2017-04-07 21:17 - 000175104 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys 2019-02-27 15:40 - 2017-04-07 21:17 - 000089736 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys 2019-02-27 15:40 - 2017-04-07 21:17 - 000046704 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys 2019-02-27 15:40 - 2017-04-07 21:17 - 000045472 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avusbflt.sys 2019-02-25 17:30 - 2017-04-22 08:55 - 000002294 ____H C:\Users\Dell\Documents\Default.rdp 2019-02-24 23:29 - 2018-06-06 07:25 - 000541416 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2019-02-23 18:01 - 2018-04-12 00:38 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2019-02-23 18:01 - 2017-04-18 13:43 - 000000000 ____D C:\Program Files\Common Files\DESIGNER 2019-02-23 18:01 - 2017-04-07 21:25 - 000000000 ____D C:\Program Files\Microsoft Office 2019-02-22 12:56 - 2017-04-07 17:21 - 000000000 ____D C:\ProgramData\Package Cache 2019-02-22 12:50 - 2017-09-16 19:27 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2019-02-21 16:00 - 2017-06-27 11:24 - 000000000 ____D C:\Users\Dell\AppData\LocalLow\Mozilla 2019-02-20 21:20 - 2018-11-26 00:58 - 000000000 ____D C:\Users\Dell\Documents\SN5M 2019-02-20 21:20 - 2017-09-15 20:47 - 000000000 ____D C:\Users\Dell\Documents\SQ5M 2019-02-20 20:43 - 2017-04-18 09:28 - 000000000 ____D C:\Users\Dell\Documents\Fotowoltaika dokumenty 2019-02-20 20:41 - 2017-04-07 21:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2019-02-20 20:39 - 2018-06-06 08:17 - 000000000 ____D C:\Program Files (x86)\MSBuild 2019-02-20 20:39 - 2017-04-07 21:25 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2019-02-20 20:39 - 2016-02-13 13:59 - 000000000 ____D C:\WINDOWS\ShellNew 2019-02-20 20:36 - 2015-10-30 08:24 - 000000076 _____ C:\WINDOWS\win.ini 2019-02-19 08:42 - 2017-04-23 09:05 - 000000000 ____D C:\Users\Dell\AppData\Local\Downloaded Installations 2019-02-18 16:28 - 2018-02-28 21:58 - 000004980 _____ C:\Users\Dell\advanced_ip_scanner_MAC.bin 2019-02-18 16:28 - 2018-02-28 21:58 - 000000015 _____ C:\Users\Dell\advanced_ip_scanner_Comments.bin 2019-02-18 16:28 - 2018-02-28 21:58 - 000000015 _____ C:\Users\Dell\advanced_ip_scanner_Aliases.bin 2019-02-18 07:06 - 2017-09-16 19:58 - 000000000 ____D C:\Program Files\McAfee Security Scan 2019-02-18 07:06 - 2017-09-16 19:28 - 000002009 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk 2019-02-16 18:33 - 2018-06-12 11:03 - 000000000 ____D C:\Users\Dell\AppData\Local\D3DSCache 2019-02-15 11:23 - 2018-06-06 07:34 - 000004562 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task 2019-02-14 20:38 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\TextInput 2019-02-14 20:38 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\bcastdvr 2019-02-14 20:35 - 2018-04-12 00:30 - 000000000 ____D C:\WINDOWS\CbsTemp 2019-02-14 20:31 - 2017-04-18 13:55 - 000000000 ____D C:\WINDOWS\system32\MRT 2019-02-14 16:08 - 2017-04-18 13:55 - 129330784 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2019-02-13 15:39 - 2018-01-05 19:22 - 000000000 ____D C:\Users\Dell\AppData\Local\IE Tab 2019-02-12 10:57 - 2018-11-11 10:28 - 000000074 _____ C:\WINDOWS\SysWOW64\SmartFlow.txt 2019-02-12 10:50 - 2018-11-11 10:24 - 000000000 _____ C:\WINDOWS\SysWOW64\SpyWareFolderstoFilter.txt 2019-02-10 13:36 - 2017-05-30 18:04 - 000000000 ____D C:\Program Files (x86)\N1MM Logger+ 2019-02-08 11:02 - 2017-12-28 12:41 - 000000000 ____D C:\ProgramData\boost_interprocess 2019-02-08 08:54 - 2018-07-03 21:09 - 000000000 ____D C:\ProgramData\Packages ==================== Pliki w katalogu głównym wybranych folderów ======= 2018-01-06 19:49 - 2018-01-06 20:05 - 000000838 _____ () C:\Users\Dell\AppData\Roaming\buttrc 2017-05-24 21:38 - 2018-11-27 22:42 - 000000600 _____ () C:\Users\Dell\AppData\Local\PUTTY.RND 2018-04-23 19:41 - 2018-04-23 19:41 - 000002845 _____ () C:\Users\Dell\AppData\Local\recently-used.xbel 2017-11-18 16:56 - 2018-11-16 16:12 - 000007604 _____ () C:\Users\Dell\AppData\Local\Resmon.ResmonCfg ==================== Bamital & volsnap ====================== (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) C:\WINDOWS\system32\winlogon.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\wininit.exe => Plik podpisany cyfrowo C:\WINDOWS\explorer.exe => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\explorer.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\svchost.exe => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\svchost.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\services.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\User32.dll => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\User32.dll => Plik podpisany cyfrowo C:\WINDOWS\system32\userinit.exe => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\userinit.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\rpcss.dll => Plik podpisany cyfrowo C:\WINDOWS\system32\dnsapi.dll => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo C:\WINDOWS\system32\dllhost.exe => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\dllhost.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo LastRegBack: 2018-06-06 07:25 ==================== Koniec FRST.txt ============================