Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Fixlist for FRST - windows script host


  • Please log in to reply

#1
StallHater

StallHater

    New Member

  • Member
  • Pip
  • 3 posts

Hi

I have a problem related to windows script host, I get the acces denied message on the Checker.vbs. I read online that I should use FRST to fix it, but I'm not sure how to proceed after scanning. I wouldn't want to delete or disable something that I need and break my PC even more.

I would therefore really appreciate if somebody could help me with the fixlist to the attached FRST and Addition.

 

Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 23.08.2018
Uruchomiony przez Komputer (administrator)  DESKTOP-4TLDO2E (31-08-2018 20:41:58)
Uruchomiony z D:\FRST
Załadowane profile: Komputer (Dostępne profile: defaultuser0 & Komputer)
Platform: Windows 10 Home Wersja 1709 16299.611 (X64) Język: Polski (Polska)
Internet Explorer Wersja 11 (Domyślna przeglądarka: "D:\mozilla\firefox.exe" -osint -url "%1")
Tryb startu: Normal
Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/

==================== Procesy (filtrowane) =================

(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)

(ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(ESET) C:\Program Files\ESET\ESET Security\egui.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Mozilla Corporation) D:\mozilla\firefox.exe
(Mozilla Corporation) D:\mozilla\firefox.exe
(Mozilla Corporation) D:\mozilla\firefox.exe
(Mozilla Corporation) D:\mozilla\firefox.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Malwarebytes) D:\malwarebytes\Anti-Malware\MBAMWsc.exe

==================== Rejestr (filtrowane) ===========================

(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [630168 2017-09-29] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8521968 2015-08-05] (Realtek Semiconductor)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163800 2016-07-30] (IvoSoft)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [324352 2017-12-18] (ESET)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-12-19] (Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA
HKU\S-1-5-21-1856911157-4074417350-1105685870-1001\...\Run: [ALLUpdate] => D:\AllPlayer\ALLPlayer\ALLUpdate.exe [3670472 2015-07-28] (ALLPlayer Group Ltd.)
HKU\S-1-5-21-1856911157-4074417350-1105685870-1001\...\Run: [DAEMON Tools Lite Automount] => D:\Daemon\DAEMON Tools Lite\DTAgent.exe [4958912 2016-11-17] (Disc Soft Ltd)

==================== Internet (filtrowane) ====================

(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)

Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c57feb10-1dbb-40c0-8cf5-75a7c4b95909}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-1856911157-4074417350-1105685870-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
HKU\S-1-5-21-1856911157-4074417350-1105685870-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pl-pl/?ocid=iehp
SearchScopes: HKU\S-1-5-21-1856911157-4074417350-1105685870-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={sear
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2016-07-30] (IvoSoft)
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_161\bin\ssv.dll [2018-01-22] (Oracle Corporation)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_161\bin\jp2ssv.dll [2018-01-22] (Oracle Corporation)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2016-07-30] (IvoSoft)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2016-07-30] (IvoSoft)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2016-07-30] (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2016-07-30] (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2016-07-30] (IvoSoft)

FireFox:
========
FF DefaultProfile: zdldjcll.default
FF ProfilePath: C:\Users\Komputer\AppData\Roaming\Mozilla\Firefox\Profiles\zdldjcll.default [2018-08-31]
FF Homepage: Mozilla\Firefox\Profiles\zdldjcll.default -> hxxps://www.google.pl/?gws_rd=ssl
FF Extension: (Session Manager) - C:\Users\Komputer\AppData\Roaming\Mozilla\Firefox\Profiles\zdldjcll.default\Extensions\{1280606b-2510-4fe0-97ef-9b5a22eafe30}.xpi [2017-01-31] [Przestarzałe]
FF Extension: (Adblock Plus) - C:\Users\Komputer\AppData\Roaming\Mozilla\Firefox\Profiles\zdldjcll.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2018-08-31]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_30_0_0_154.dll [2018-08-15] ()
FF Plugin: @java.com/DTPlugin,version=11.161.2 -> C:\Program Files\Java\jre1.8.0_161\bin\dtplugin\npDeployJava1.dll [2018-01-22] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.161.2 -> C:\Program Files\Java\jre1.8.0_161\bin\plugin2\npjp2.dll [2018-01-22] (Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_30_0_0_154.dll [2018-08-15] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1225195.dll [2016-09-20] (Adobe Systems, Inc.)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-24] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-08-24] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll [2013-05-13] ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-10-27] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-10-27] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems Inc.)
StartMenuInternet: Firefox-4C9645D3F78E3125 - D:\mozilla\firefox.exe

Chrome:
=======
CHR Profile: C:\Users\Komputer\AppData\Local\Google\Chrome\User Data\Default [2018-04-18]
CHR Extension: (Prezentacje) - C:\Users\Komputer\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-04-02]
CHR Extension: (Dokumenty) - C:\Users\Komputer\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-04-02]
CHR Extension: (Dysk Google) - C:\Users\Komputer\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-06-05]
CHR Extension: (YouTube) - C:\Users\Komputer\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-06-05]
CHR Extension: (Arkusze) - C:\Users\Komputer\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-04-02]
CHR Extension: (Dokumenty Google offline) - C:\Users\Komputer\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-06-05]
CHR Extension: (NetBeans Connector) - C:\Users\Komputer\AppData\Local\Google\Chrome\User Data\Default\Extensions\hafdlehgocfcodbgjnpecfajgkeejnaa [2017-06-05]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Komputer\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-18]
CHR Extension: (Gmail) - C:\Users\Komputer\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-06-05]
CHR Extension: (Chrome Media Router) - C:\Users\Komputer\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-04-05]

==================== Usługi (filtrowane) ====================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

S2 ASGT; C:\Windows\SysWOW64\ASGT.exe [48640 2016-05-27] () [Brak podpisu cyfrowego]
S3 Disc Soft Lite Bus Service; D:\Daemon\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1473216 2016-11-17] (Disc Soft Ltd)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [1940584 2017-12-18] (ESET)
S3 fussvc; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [142336 2014-02-20] (Microsoft Corporation) [Brak podpisu cyfrowego]
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel® Corporation)
R3 Intel® Security Assist; C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Brak podpisu cyfrowego]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel® Security Assist\isaHelperService.exe [7680 2015-05-19] () [Brak podpisu cyfrowego]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [207648 2015-10-16] (Intel Corporation)
S2 MBAMService; D:\malwarebytes\Anti-Malware\mbamservice.exe [6541008 2018-05-09] (Malwarebytes)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Brak podpisu cyfrowego]
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [271920 2007-05-08] (Nero AG)
S2 NVU; C:\Windows\nvidia\wintask.exe [329728 2014-08-31] () [Brak podpisu cyfrowego]
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Brak podpisu cyfrowego]
S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [119808 2013-08-22] (Microsoft Corporation) [Brak podpisu cyfrowego]
S3 VSStandardCollectorService140; D:\Studia\Visual Studio\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [108776 2016-06-20] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [355304 2017-09-29] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [105944 2017-09-29] (Microsoft Corporation)
S2 WMS; C:\Windows\wmu\wnetmon.exe [329728 2014-08-31] () [Brak podpisu cyfrowego]
R2 NvContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000
S3 NvContainerNetworkService; "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerNetworkService -f "C:\ProgramData\NVIDIA\NvContainerNetworkService.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\NetworkService" -r -p 30000
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"

===================== Sterowniki (filtrowane) ======================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-09-09] ()
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-12-10] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-12-10] (Disc Soft Ltd)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [134368 2017-11-07] (ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [241368 2014-10-10] (ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15872 2018-02-19] (ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [180088 2017-11-07] (ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [106304 2017-11-07] (ESET)
S1 epfwwfpr; C:\WINDOWS\system32\DRIVERS\epfwwfpr.sys [70960 2017-01-17] (ESET)
R4 IOMap; C:\WINDOWS\system32\drivers\IOMap64.sys [24824 2014-10-24] (ASUSTeK Computer Inc.)
R3 Neo_VPN; C:\WINDOWS\System32\drivers\Neo6_x64_VPN.sys [49424 2018-03-02] (SoftEther Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_ref_pubwu.inf_amd64_2e7fa54192fe16d0\nvlddmkm.sys [16936048 2017-11-09] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2017-01-20] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [46016 2017-01-20] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-01-20] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [887552 2015-07-15] (Realtek )
R3 SensorsSimulatorDriver; C:\WINDOWS\System32\drivers\WUDFRd.sys [259584 2017-09-29] (Microsoft Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44608 2017-09-29] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [309144 2017-09-29] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [119192 2017-09-29] (Microsoft Corporation)

==================== NetSvcs (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)


==================== Jeden miesiąc - utworzone pliki i foldery ========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2018-08-31 20:21 - 2018-08-31 20:41 - 000000000 ____D C:\FRST
2018-08-31 19:33 - 2018-08-31 19:33 - 000000000 ____D C:\Users\Komputer\AppData\Local\mbam
2018-08-31 19:33 - 2018-08-31 19:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2018-08-31 19:33 - 2018-08-31 19:33 - 000000000 ____D C:\ProgramData\Malwarebytes
2018-08-31 19:33 - 2018-07-12 08:42 - 000152688 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2018-08-25 17:55 - 2018-08-25 17:55 - 000000072 ___SH C:\bootTel.dat
2018-08-20 08:47 - 2018-08-20 08:47 - 000000279 _____ C:\Users\Komputer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kosz (22).lnk
2018-08-15 23:25 - 2018-08-07 10:40 - 003077272 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2018-08-15 23:25 - 2018-08-07 10:32 - 001574912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2018-08-15 23:25 - 2018-08-07 10:28 - 001238016 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2018-08-15 23:25 - 2018-08-07 10:28 - 000432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2018-08-15 23:25 - 2018-08-07 08:21 - 000076584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpci.sys
2018-08-15 23:25 - 2018-08-07 08:19 - 001252768 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2018-08-15 23:25 - 2018-08-07 08:19 - 001068960 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2018-08-15 23:25 - 2018-08-07 08:19 - 000599456 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2018-08-15 23:25 - 2018-08-07 08:19 - 000118688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scmbus.sys
2018-08-15 23:25 - 2018-08-07 08:18 - 000075680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2018-08-15 23:25 - 2018-08-07 08:18 - 000060320 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvhostsvc.dll
2018-08-15 23:25 - 2018-08-07 08:17 - 002870056 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2018-08-15 23:25 - 2018-08-07 08:17 - 001612072 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2018-08-15 23:25 - 2018-08-07 08:17 - 000793896 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2018-08-15 23:25 - 2018-08-07 08:17 - 000781384 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2018-08-15 23:25 - 2018-08-07 08:17 - 000690984 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2018-08-15 23:25 - 2018-08-07 08:17 - 000613672 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2018-08-15 23:25 - 2018-08-07 08:17 - 000482088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2018-08-15 23:25 - 2018-08-07 08:17 - 000453416 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2018-08-15 23:25 - 2018-08-07 08:17 - 000447272 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2018-08-15 23:25 - 2018-08-07 08:17 - 000383784 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2018-08-15 23:25 - 2018-08-07 08:17 - 000311080 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2018-08-15 23:25 - 2018-08-07 08:17 - 000159120 _____ (Microsoft Corporation) C:\WINDOWS\system32\vertdll.dll
2018-08-15 23:25 - 2018-08-07 08:17 - 000146216 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2018-08-15 23:25 - 2018-08-07 08:17 - 000079656 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2018-08-15 23:25 - 2018-08-07 08:17 - 000071464 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2018-08-15 23:25 - 2018-08-07 08:17 - 000036648 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2018-08-15 23:25 - 2018-08-07 08:13 - 008618392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-08-15 23:25 - 2018-08-07 08:13 - 002515464 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2018-08-15 23:25 - 2018-08-07 08:13 - 001954056 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2018-08-15 23:25 - 2018-08-07 08:13 - 001416872 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-08-15 23:25 - 2018-08-07 08:13 - 001210784 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-08-15 23:25 - 2018-08-07 08:13 - 001093040 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-08-15 23:25 - 2018-08-07 08:13 - 000925168 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-08-15 23:25 - 2018-08-07 08:13 - 000138656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2018-08-15 23:25 - 2018-08-07 08:13 - 000110008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys
2018-08-15 23:25 - 2018-08-07 08:12 - 000114984 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll
2018-08-15 23:25 - 2018-08-07 08:11 - 001279272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2018-08-15 23:25 - 2018-08-07 08:11 - 000544040 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2018-08-15 23:25 - 2018-08-07 08:11 - 000172328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2018-08-15 23:25 - 2018-08-07 08:10 - 006281736 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2018-08-15 23:25 - 2018-08-07 08:10 - 002735528 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-08-15 23:25 - 2018-08-07 08:10 - 002573728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2018-08-15 23:25 - 2018-08-07 08:10 - 000749984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2018-08-15 23:25 - 2018-08-07 08:10 - 000687560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2018-08-15 23:25 - 2018-08-07 08:10 - 000408992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2018-08-15 23:25 - 2018-08-07 08:08 - 021356824 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2018-08-15 23:25 - 2018-08-07 08:08 - 000070864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2018-08-15 23:25 - 2018-08-07 08:08 - 000031672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhv.sys
2018-08-15 23:25 - 2018-08-07 08:07 - 007385096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-08-15 23:25 - 2018-08-07 08:06 - 002775336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2018-08-15 23:25 - 2018-08-07 08:06 - 001102120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2018-08-15 23:25 - 2018-08-07 08:05 - 000058888 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2018-08-15 23:25 - 2018-08-07 07:12 - 025257472 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2018-08-15 23:25 - 2018-08-07 07:05 - 001933224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2018-08-15 23:25 - 2018-08-07 07:05 - 001616080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2018-08-15 23:25 - 2018-08-07 07:05 - 000368936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2018-08-15 23:25 - 2018-08-07 07:05 - 000312616 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2018-08-15 23:25 - 2018-08-07 07:04 - 000650728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2018-08-15 23:25 - 2018-08-07 06:54 - 003663872 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2018-08-15 23:25 - 2018-08-07 06:53 - 001664512 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2018-08-15 23:25 - 2018-08-07 06:53 - 000206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2018-08-15 23:25 - 2018-08-07 06:53 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2018-08-15 23:25 - 2018-08-07 06:53 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2018-08-15 23:25 - 2018-08-07 06:53 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2018-08-15 23:25 - 2018-08-07 06:52 - 002316440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2018-08-15 23:25 - 2018-08-07 06:52 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmgid.sys
2018-08-15 23:25 - 2018-08-07 06:51 - 023678464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-08-15 23:25 - 2018-08-07 06:51 - 000200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2018-08-15 23:25 - 2018-08-07 06:51 - 000104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2018-08-15 23:25 - 2018-08-07 06:51 - 000047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\tokenbinding.dll
2018-08-15 23:25 - 2018-08-07 06:50 - 008033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-08-15 23:25 - 2018-08-07 06:50 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovs.dll
2018-08-15 23:25 - 2018-08-07 06:50 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll
2018-08-15 23:25 - 2018-08-07 06:49 - 002216400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2018-08-15 23:25 - 2018-08-07 06:49 - 000675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2018-08-15 23:25 - 2018-08-07 06:49 - 000559984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2018-08-15 23:25 - 2018-08-07 06:49 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\hlink.dll
2018-08-15 23:25 - 2018-08-07 06:48 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2018-08-15 23:25 - 2018-08-07 06:47 - 020290256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2018-08-15 23:25 - 2018-08-07 06:47 - 000837632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2018-08-15 23:25 - 2018-08-07 06:47 - 000672768 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-08-15 23:25 - 2018-08-07 06:47 - 000591360 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2018-08-15 23:25 - 2018-08-07 06:47 - 000061032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2018-08-15 23:25 - 2018-08-07 06:47 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe
2018-08-15 23:25 - 2018-08-07 06:46 - 006480112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2018-08-15 23:25 - 2018-08-07 06:46 - 000331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2018-08-15 23:25 - 2018-08-07 06:45 - 008064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2018-08-15 23:25 - 2018-08-07 06:45 - 004724736 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-08-15 23:25 - 2018-08-07 06:44 - 005833216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2018-08-15 23:25 - 2018-08-07 06:44 - 004509184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-08-15 23:25 - 2018-08-07 06:44 - 002086912 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2018-08-15 23:25 - 2018-08-07 06:44 - 001236992 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2018-08-15 23:25 - 2018-08-07 06:44 - 000808960 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2018-08-15 23:25 - 2018-08-07 06:41 - 004052480 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2018-08-15 23:25 - 2018-08-07 06:40 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2018-08-15 23:25 - 2018-08-07 06:39 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcadm.dll
2018-08-15 23:25 - 2018-08-07 06:39 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe
2018-08-15 23:25 - 2018-08-07 06:39 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaevts.dll
2018-08-15 23:25 - 2018-08-07 06:28 - 002902528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2018-08-15 23:25 - 2018-08-07 06:27 - 001470976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2018-08-15 23:25 - 2018-08-07 06:27 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2018-08-15 23:25 - 2018-08-07 06:27 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2018-08-15 23:25 - 2018-08-07 06:27 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2018-08-15 23:25 - 2018-08-07 06:27 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2018-08-15 23:25 - 2018-08-07 06:25 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2018-08-15 23:25 - 2018-08-07 06:25 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tokenbinding.dll
2018-08-15 23:25 - 2018-08-07 06:24 - 018933760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2018-08-15 23:25 - 2018-08-07 06:24 - 000099840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hlink.dll
2018-08-15 23:25 - 2018-08-07 06:24 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2018-08-15 23:25 - 2018-08-07 06:23 - 000459776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2018-08-15 23:25 - 2018-08-07 06:23 - 000192512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovs.dll
2018-08-15 23:25 - 2018-08-07 06:22 - 000981504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2018-08-15 23:25 - 2018-08-07 06:22 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2018-08-15 23:25 - 2018-08-07 06:22 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe
2018-08-15 23:25 - 2018-08-07 06:21 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll
2018-08-15 23:25 - 2018-08-07 06:20 - 000539136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2018-08-15 23:25 - 2018-08-07 06:19 - 019360256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2018-08-15 23:25 - 2018-08-07 06:19 - 000405504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2018-08-15 23:25 - 2018-08-07 06:18 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2018-08-15 23:25 - 2018-08-07 06:18 - 000598528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2018-08-15 23:25 - 2018-08-07 06:18 - 000463360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2018-08-15 23:25 - 2018-08-07 06:17 - 006582272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2018-08-15 23:25 - 2018-08-07 06:16 - 006013952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2018-08-15 23:25 - 2018-08-07 06:16 - 003662848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2018-08-15 23:25 - 2018-08-07 06:16 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll
2018-08-15 23:25 - 2018-08-07 06:15 - 004839424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2018-08-15 23:25 - 2018-08-07 06:15 - 004044800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2018-08-15 23:25 - 2018-08-07 06:15 - 000920064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2018-08-15 23:25 - 2018-08-07 06:14 - 000955392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2018-08-15 23:25 - 2018-08-07 06:12 - 004053504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2018-08-15 23:25 - 2018-08-07 06:11 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2018-08-15 23:25 - 2018-07-18 09:53 - 021754880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2018-08-15 23:25 - 2018-07-18 09:53 - 017084928 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2018-08-15 23:25 - 2018-07-18 09:21 - 000230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloShellRuntime.dll
2018-08-15 23:25 - 2018-07-18 05:26 - 001849760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2018-08-15 23:25 - 2018-07-18 05:26 - 000939304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2018-08-15 23:25 - 2018-07-18 05:26 - 000111544 _____ (Microsoft Corporation) C:\WINDOWS\system32\apisetschema.dll
2018-08-15 23:25 - 2018-07-18 05:23 - 000891288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2018-08-15 23:25 - 2018-07-18 05:22 - 000677280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2018-08-15 23:25 - 2018-07-18 05:22 - 000437664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2018-08-15 23:25 - 2018-07-18 05:22 - 000118360 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2018-08-15 23:25 - 2018-07-18 05:21 - 000428448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2018-08-15 23:25 - 2018-07-18 05:21 - 000204072 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll
2018-08-15 23:25 - 2018-07-18 05:20 - 006793408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2018-08-15 23:25 - 2018-07-18 05:20 - 004508512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2018-08-15 23:25 - 2018-07-18 05:20 - 002712592 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2018-08-15 23:25 - 2018-07-18 05:20 - 002269448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2018-08-15 23:25 - 2018-07-18 05:20 - 001971944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2018-08-15 23:25 - 2018-07-18 05:20 - 001781360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2018-08-15 23:25 - 2018-07-18 05:20 - 001695136 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2018-08-15 23:25 - 2018-07-18 05:20 - 001633632 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2018-08-15 23:25 - 2018-07-18 05:20 - 001507624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2018-08-15 23:25 - 2018-07-18 05:20 - 001338792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2018-08-15 23:25 - 2018-07-18 05:20 - 001255056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2018-08-15 23:25 - 2018-07-18 05:20 - 001207520 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2018-08-15 23:25 - 2018-07-18 05:20 - 001055696 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2018-08-15 23:25 - 2018-07-18 05:20 - 000595472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2018-08-15 23:25 - 2018-07-18 05:20 - 000479232 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2018-08-15 23:25 - 2018-07-18 05:20 - 000325832 _____ (Microsoft Corporation) C:\WINDOWS\system32\HdcpHandler.dll
2018-08-15 23:25 - 2018-07-18 05:20 - 000262320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2018-08-15 23:25 - 2018-07-18 05:20 - 000089288 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSup.dll
2018-08-15 23:25 - 2018-07-18 05:19 - 000157592 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2018-08-15 23:25 - 2018-07-18 04:46 - 000793384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2018-08-15 23:25 - 2018-07-18 04:45 - 000184472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll
2018-08-15 23:25 - 2018-07-18 04:45 - 000105384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2018-08-15 23:25 - 2018-07-18 04:44 - 006014688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2018-08-15 23:25 - 2018-07-18 04:44 - 004668192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2018-08-15 23:25 - 2018-07-18 04:44 - 002462704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2018-08-15 23:25 - 2018-07-18 04:44 - 001652872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2018-08-15 23:25 - 2018-07-18 04:44 - 001558856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2018-08-15 23:25 - 2018-07-18 04:44 - 001524776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2018-08-15 23:25 - 2018-07-18 04:44 - 001456104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2018-08-15 23:25 - 2018-07-18 04:44 - 001377088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2018-08-15 23:25 - 2018-07-18 04:44 - 001149280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2018-08-15 23:25 - 2018-07-18 04:44 - 001131688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2018-08-15 23:25 - 2018-07-18 04:44 - 001057824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2018-08-15 23:25 - 2018-07-18 04:44 - 001017056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2018-08-15 23:25 - 2018-07-18 04:44 - 001002640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2018-08-15 23:25 - 2018-07-18 04:44 - 000551696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2018-08-15 23:25 - 2018-07-18 04:44 - 000454080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2018-08-15 23:25 - 2018-07-18 04:44 - 000225288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HdcpHandler.dll
2018-08-15 23:25 - 2018-07-18 04:44 - 000129184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2018-08-15 23:25 - 2018-07-18 04:44 - 000073424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CompPkgSup.dll
2018-08-15 23:25 - 2018-07-18 04:27 - 002393600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2018-08-15 23:25 - 2018-07-18 04:27 - 000372736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcLayers.dll
2018-08-15 23:25 - 2018-07-18 04:27 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2018-08-15 23:25 - 2018-07-18 04:27 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2018-08-15 23:25 - 2018-07-18 04:27 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2018-08-15 23:25 - 2018-07-18 04:25 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2018-08-15 23:25 - 2018-07-18 04:24 - 008962560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmploc.DLL
2018-08-15 23:25 - 2018-07-18 04:23 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.XamlHost.dll
2018-08-15 23:25 - 2018-07-18 04:23 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2018-08-15 23:25 - 2018-07-18 04:22 - 000374272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2018-08-15 23:25 - 2018-07-18 04:22 - 000369664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2018-08-15 23:25 - 2018-07-18 04:22 - 000218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll
2018-08-15 23:25 - 2018-07-18 04:22 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\raschap.dll
2018-08-15 23:25 - 2018-07-18 04:21 - 001486336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2018-08-15 23:25 - 2018-07-18 04:21 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll
2018-08-15 23:25 - 2018-07-18 04:21 - 000420352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2018-08-15 23:25 - 2018-07-18 04:19 - 012729856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2018-08-15 23:25 - 2018-07-18 04:16 - 002465792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2018-08-15 23:25 - 2018-07-18 04:16 - 001546752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2018-08-15 23:25 - 2018-07-18 04:15 - 004248064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2018-08-15 23:25 - 2018-07-18 04:15 - 000440832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2018-08-15 23:25 - 2018-07-18 04:14 - 001328640 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2018-08-15 23:25 - 2018-07-18 04:13 - 001510912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2018-08-15 23:25 - 2018-07-18 04:13 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2018-08-15 23:25 - 2018-07-18 04:13 - 000621568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2018-08-15 23:25 - 2018-07-18 04:13 - 000620544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2018-08-15 23:25 - 2018-07-18 04:13 - 000604672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.MediaPlayer.dll
2018-08-15 23:25 - 2018-07-18 04:12 - 000858112 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2018-08-15 23:25 - 2018-07-18 04:12 - 000536064 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2018-08-15 23:25 - 2018-07-18 04:12 - 000526848 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2018-08-15 23:25 - 2018-07-18 04:12 - 000400896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2018-08-15 23:25 - 2018-07-18 04:12 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2018-08-15 23:25 - 2018-07-18 04:12 - 000301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcLayers.dll
2018-08-15 23:25 - 2018-07-18 04:12 - 000250368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2018-08-15 23:25 - 2018-07-18 04:12 - 000249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2018-08-15 23:25 - 2018-07-18 04:12 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2018-08-15 23:25 - 2018-07-18 04:12 - 000039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe
2018-08-15 23:25 - 2018-07-18 04:10 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2018-08-15 23:25 - 2018-07-18 04:10 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2018-08-15 23:25 - 2018-07-18 04:09 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedPCCSP.dll
2018-08-15 23:25 - 2018-07-18 04:09 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2018-08-15 23:25 - 2018-07-18 04:09 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\EasPolicyManagerBrokerPS.dll
2018-08-15 23:25 - 2018-07-18 04:07 - 008962560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmploc.DLL
2018-08-15 23:25 - 2018-07-18 04:07 - 000535040 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2018-08-15 23:25 - 2018-07-18 04:06 - 000200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\CourtesyEngine.dll
2018-08-15 23:25 - 2018-07-18 04:06 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2018-08-15 23:25 - 2018-07-18 04:05 - 000457728 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2018-08-15 23:25 - 2018-07-18 04:05 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2018-08-15 23:25 - 2018-07-18 04:05 - 000167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.XamlHost.dll
2018-08-15 23:25 - 2018-07-18 04:05 - 000144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2018-08-15 23:25 - 2018-07-18 04:05 - 000137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\raschap.dll
2018-08-15 23:25 - 2018-07-18 04:05 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmclient.exe
2018-08-15 23:25 - 2018-07-18 04:03 - 000580608 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2018-08-15 23:25 - 2018-07-18 04:03 - 000262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll
2018-08-15 23:25 - 2018-07-18 04:03 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\EASPolicyManagerBrokerHost.exe
2018-08-15 23:25 - 2018-07-18 04:02 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2018-08-15 23:25 - 2018-07-18 04:01 - 001659904 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2018-08-15 23:25 - 2018-07-18 04:01 - 001496064 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-08-15 23:25 - 2018-07-18 04:01 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2018-08-15 23:25 - 2018-07-18 03:59 - 000837120 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2018-08-15 23:25 - 2018-07-18 03:58 - 013711360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2018-08-15 23:25 - 2018-07-18 03:58 - 003180544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-08-15 23:25 - 2018-07-18 03:58 - 002836992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2018-08-15 23:25 - 2018-07-18 03:58 - 002212352 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-08-15 23:25 - 2018-07-18 03:58 - 001777664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2018-08-15 23:25 - 2018-07-18 03:57 - 002786816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2018-08-15 23:25 - 2018-07-18 03:57 - 001157120 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2018-08-15 23:25 - 2018-07-18 03:56 - 004814336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2018-08-15 23:25 - 2018-07-18 03:56 - 002858496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2018-08-15 23:25 - 2018-07-18 03:56 - 001760768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2018-08-15 23:25 - 2018-07-18 03:56 - 000462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2018-08-15 23:25 - 2018-07-18 03:55 - 000518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2018-08-15 23:25 - 2018-07-18 03:54 - 001717760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2018-08-15 23:25 - 2018-07-18 03:54 - 001348608 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2018-08-15 23:25 - 2018-07-18 03:54 - 000943104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2018-08-15 23:25 - 2018-07-18 03:54 - 000941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2018-08-15 23:25 - 2018-07-18 03:54 - 000259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2018-08-15 23:25 - 2018-07-18 03:54 - 000215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2018-08-15 23:25 - 2018-07-18 03:54 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys
2018-08-15 23:25 - 2018-07-18 03:53 - 000971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2018-08-15 23:25 - 2018-07-18 03:53 - 000918528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2018-08-15 23:25 - 2018-07-18 03:53 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2018-08-15 23:25 - 2018-07-18 03:51 - 000159744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cdrom.sys
2018-08-15 23:25 - 2018-07-13 07:16 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadauthhelper.dll
2018-08-15 23:25 - 2018-07-13 07:11 - 011925504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2018-08-15 23:25 - 2018-07-13 06:38 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadauthhelper.dll
2018-08-15 23:25 - 2018-07-13 06:35 - 000623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2018-08-15 23:25 - 2018-07-13 06:33 - 012832768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-08-12 11:17 - 2018-08-12 11:17 - 000000022 _____ C:\WINDOWS\GPU-Z.INI
2018-08-07 19:59 - 2018-08-07 19:59 - 000000279 _____ C:\Users\Komputer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kosz (21).lnk
2018-08-05 19:20 - 2018-08-05 19:20 - 000000203 _____ C:\Users\Komputer\Desktop\Counter-Strike Global Offensive.url

==================== Jeden miesiąc - zmodyfikowane pliki i foldery ========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2018-08-31 20:32 - 2016-12-10 16:35 - 000000000 ____D C:\Users\Komputer\AppData\Local\ClassicShell
2018-08-31 20:30 - 2018-01-21 20:32 - 000004232 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{3F9886F6-F058-481F-B699-E0441FD69C97}
2018-08-31 20:20 - 2016-12-13 10:18 - 000000000 ____D C:\Users\Komputer\AppData\Roaming\uTorrent
2018-08-31 19:50 - 2018-02-28 15:10 - 000000000 ____D C:\Program Files (x86)\DISpurity 0.0.32
2018-08-31 19:50 - 2018-02-22 21:38 - 000000000 ____D C:\WINDOWS\wmi
2018-08-31 18:27 - 2018-01-21 20:27 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-08-31 17:34 - 2016-12-10 16:29 - 000000000 ____D C:\Users\Komputer\AppData\Roaming\AIMP3
2018-08-31 16:11 - 2018-01-12 13:57 - 000031744 _____ C:\Users\Komputer\Desktop\praca.xls
2018-08-31 14:30 - 2016-12-10 16:32 - 000000000 ____D C:\Users\Komputer\AppData\LocalLow\Mozilla
2018-08-31 14:27 - 2018-01-21 20:28 - 002727420 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-08-31 14:27 - 2017-09-30 16:29 - 001232226 _____ C:\WINDOWS\system32\perfh015.dat
2018-08-31 14:27 - 2017-09-30 16:29 - 000299094 _____ C:\WINDOWS\system32\perfc015.dat
2018-08-31 14:23 - 2016-12-10 16:40 - 000000000 ____D C:\ProgramData\NVIDIA
2018-08-31 14:22 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\DeliveryOptimization
2018-08-31 14:20 - 2018-01-21 20:32 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-08-30 21:42 - 2018-01-21 20:29 - 000000000 ____D C:\Users\Komputer
2018-08-30 03:51 - 2017-09-29 15:46 - 000000000 ___HD C:\Program Files\WindowsApps
2018-08-30 03:51 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-08-25 22:42 - 2016-12-10 16:08 - 000003544 _____ C:\Users\Komputer\Desktop\date.txt
2018-08-19 18:54 - 2017-02-01 00:11 - 000000000 ____D C:\Users\Komputer\AppData\Roaming\Ahead
2018-08-17 17:26 - 2017-09-29 20:31 - 000000000 ____D C:\Program Files\rempl
2018-08-17 14:34 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\rescache
2018-08-16 12:40 - 2017-09-29 15:44 - 000000000 ____D C:\WINDOWS\INF
2018-08-16 12:33 - 2018-01-21 20:37 - 000000000 ___RD C:\Users\Komputer\3D Objects
2018-08-16 12:33 - 2016-12-10 01:04 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-08-16 12:32 - 2018-01-21 20:27 - 000317624 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-08-16 03:03 - 2017-09-29 15:46 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2018-08-16 03:03 - 2017-09-29 15:46 - 000000000 ___SD C:\WINDOWS\system32\F12
2018-08-16 03:03 - 2017-09-29 15:46 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2018-08-16 03:03 - 2017-09-29 15:46 - 000000000 ___RD C:\WINDOWS\PrintDialog
2018-08-16 03:03 - 2017-09-29 15:46 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2018-08-16 03:03 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\TextInput
2018-08-16 03:03 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2018-08-16 03:03 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\ShellExperiences
2018-08-16 03:03 - 2017-09-29 10:45 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2018-08-16 03:03 - 2017-09-29 10:45 - 000000000 ____D C:\WINDOWS\system32\Dism
2018-08-15 23:27 - 2017-09-29 15:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-08-15 06:10 - 2018-03-13 15:18 - 000004694 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2018-08-15 06:10 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2018-08-15 06:10 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-08-14 02:58 - 2018-01-22 09:36 - 000003384 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1856911157-4074417350-1105685870-1001
2018-08-14 02:58 - 2016-12-10 01:06 - 000002420 _____ C:\Users\Komputer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-08-14 02:58 - 2016-12-10 01:06 - 000000000 ___RD C:\Users\Komputer\OneDrive
2018-08-12 11:17 - 2017-09-10 12:47 - 000000000 ____D C:\Users\Komputer\AppData\Roaming\NVIDIA
2018-08-11 13:03 - 2018-07-28 15:36 - 000000000 ____D C:\Users\Komputer\Desktop\zdj
2018-08-09 00:36 - 2017-06-05 10:19 - 000002307 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-08-09 00:36 - 2017-06-05 10:19 - 000002266 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-08-06 17:31 - 2017-09-29 15:49 - 000836480 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2018-08-06 17:31 - 2017-09-29 15:49 - 000181120 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2018-08-02 10:46 - 2018-07-10 22:25 - 000000000 ____D C:\ProgramData\Packages

==================== Bamital & volsnap ======================

(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)

C:\WINDOWS\system32\winlogon.exe => Plik podpisany cyfrowo
C:\WINDOWS\system32\wininit.exe => Plik podpisany cyfrowo
C:\WINDOWS\explorer.exe => Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\explorer.exe => Plik podpisany cyfrowo
C:\WINDOWS\system32\svchost.exe => Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\svchost.exe => Plik podpisany cyfrowo
C:\WINDOWS\system32\services.exe => Plik podpisany cyfrowo
C:\WINDOWS\system32\User32.dll => Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\User32.dll => Plik podpisany cyfrowo
C:\WINDOWS\system32\userinit.exe => Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\userinit.exe => Plik podpisany cyfrowo
C:\WINDOWS\system32\rpcss.dll => Plik podpisany cyfrowo
C:\WINDOWS\system32\dnsapi.dll => Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo
C:\WINDOWS\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo

LastRegBack: 2018-08-25 08:52

==================== Koniec  FRST.txt ============================

Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 23.08.2018
Uruchomiony przez Komputer (31-08-2018 20:42:15)
Uruchomiony z D:\FRST
Windows 10 Home Wersja 1709 16299.611 (X64) (2018-01-21 18:37:21)
Tryb startu: Normal
==========================================================


==================== Konta użytkowników: =============================

Administrator (S-1-5-21-1856911157-4074417350-1105685870-500 - Administrator - Disabled)
defaultuser0 (S-1-5-21-1856911157-4074417350-1105685870-1000 - Limited - Disabled) => C:\Users\defaultuser0
Gość (S-1-5-21-1856911157-4074417350-1105685870-501 - Limited - Disabled)
Komputer (S-1-5-21-1856911157-4074417350-1105685870-1001 - Administrator - Enabled) => C:\Users\Komputer
Konto domyślne (S-1-5-21-1856911157-4074417350-1105685870-503 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-1856911157-4074417350-1105685870-504 - Limited - Disabled)

==================== Centrum zabezpieczeń ========================

(Załączenie wejścia w fixlist spowoduje jego usunięcie.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AV: ESET NOD32 Antivirus (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET NOD32 Antivirus (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Zainstalowane programy ======================

(W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.)

µTorrent (HKU\S-1-5-21-1856911157-4074417350-1105685870-1001\...\uTorrent) (Version: 3.4.9.43085 - BitTorrent Inc.)
64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden
Active Directory Authentication Library for SQL Server (HKLM\...\{32C0D7B2-1046-43AC-98AD-B748E1910916}) (Version: 13.0.1601.5 - Microsoft Corporation) Hidden
Active Directory Authentication Library for SQL Server (x86) (HKLM-x32\...\{F40FA676-46B1-4609-85EF-D2F1F79E0C0E}) (Version: 13.0.1601.5 - Microsoft Corporation) Hidden
Adobe Flash Player 30 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 30.0.0.154 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.23) - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AB0000000001}) (Version: 11.0.23 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.5.195 - Adobe Systems, Inc.)
AIMP3 (HKLM-x32\...\AIMP3) (Version: v3.60.1470, 16.01.2015 - AIMP DevTeam)
Aktualizacje NVIDIA 23.23.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 23.23.0.0 - NVIDIA Corporation) Hidden
ALLPlayer V7.X (HKLM-x32\...\ALLPlayer_is1) (Version:  - ALLPlayer Group, Ltd.)
Application Insights Tools for Visual Studio 2015 (HKLM-x32\...\{0E4C791E-B78E-477D-BD5A-CDD0985BA6EC}) (Version: 7.0.20622.1 - Microsoft Corporation)
ASUS GPU TweakII (HKLM-x32\...\{0075AAC2-EA9F-490E-83F7-5D5F81EB2A43}) (Version: 1.2.8.2 - ASUSTek COMPUTER INC.) Hidden
ASUS GPU TweakII (HKLM-x32\...\InstallShield_{0075AAC2-EA9F-490E-83F7-5D5F81EB2A43}) (Version: 1.2.8.2 - ASUSTek COMPUTER INC.)
ASUS Product Register Program (HKLM-x32\...\{C87D79F6-F813-4812-B7A9-CCCAAB8B1188}) (Version: 1.0.030 - ASUSTek Computer Inc.)
Azure AD Authentication Connected Service (HKLM-x32\...\{8A1AD070-269F-4A15-AAB5-76AB896EF195}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
AzureTools.Notifications (HKLM-x32\...\{1E5CA362-39B6-4BD0-B9C0-69CF15F0FEA2}) (Version: 2.7.30611.1601 - Microsoft Corporation) Hidden
Blend for Visual Studio SDK for .NET 4.5 (HKLM-x32\...\{37E53780-3944-4A6A-842F-727128E8616E}) (Version: 3.0.40218.0 - Microsoft Corporation) Hidden
BufferChm (HKLM-x32\...\{FA0FF682-CC70-4C57-93CD-E276F3E7537E}) (Version: 140.0.298.000 - Hewlett-Packard) Hidden
Classic Shell (HKLM\...\{383BB30A-B4A7-4666-9A83-22CFA8640097}) (Version: 4.3.0 - IvoSoft)
CodeBlocks (HKU\S-1-5-21-1856911157-4074417350-1105685870-1001\...\CodeBlocks) (Version: 16.01 - The Code::Blocks Team)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.5.0.0220 - Disc Soft Ltd)
DJ_SF_06_K109a-z_SW_Min (HKLM-x32\...\{5753A37B-0515-4183-BEE1-11FE4F652BE6}) (Version: 140.0.851.000 - Hewlett-Packard) Hidden
Dotfuscator and Analytics Community Edition 5.22.0 (HKLM-x32\...\{60018889-9E0F-43E8-9B89-29E8C828B40A}) (Version: 5.22.0.3788 - PreEmptive Solutions) Hidden
Entity Framework 6.1.3 Tools  for Visual Studio 2015 Update 1 (HKLM-x32\...\{2A56910C-69C8-495D-8ED8-9080F0A14E58}) (Version: 14.0.41103.0 - Microsoft Corporation)
ESET Security (HKLM\...\{37E67F0A-50BB-430A-A2A5-F5E2F6EE96DB}) (Version: 11.0.159.0 - ESET, spol. s r.o.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 68.0.3440.106 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
GPBaseService2 (HKLM-x32\...\{BB3447F6-9553-4AA9-960E-0DB5310C5779}) (Version: 140.0.297.000 - Hewlett-Packard) Hidden
HP Deskjet Ink Advant K109a-z Printer Driver Software 14.0 Rel. 6 (HKLM\...\{1B555BE1-8503-43BC-9534-40CCB08ADDEE}) (Version: 14.0 - HP)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HPPhotoGadget (HKLM-x32\...\{CAE4213F-F797-439D-BD9E-79B71D115BE3}) (Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (HKLM-x32\...\{150B6201-E9E6-4DFB-960E-CCBD53FBDDED}) (Version: 140.0.298.000 - Hewlett-Packard) Hidden
IIS 10.0 Express (HKLM\...\{13FD7E30-D2F1-498D-ABC2-A4242DB6610E}) (Version: 10.0.1736 - Microsoft Corporation)
IIS Express Application Compatibility Database for x64 (HKLM\...\{08274920-8908-45c2-9258-8ad67ff77b09}.sdb) (Version:  - )
IIS Express Application Compatibility Database for x86 (HKLM\...\{ad846bae-d44b-4722-abad-f7420e08bcd9}.sdb) (Version:  - )
Intel® Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1173 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
Java 8 Update 161 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180161F0}) (Version: 8.0.1610.12 - Oracle Corporation)
Java SE Development Kit 8 Update 121 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180121}) (Version: 8.0.1210.13 - Oracle Corporation)
K109a-z (HKLM-x32\...\{F591DA5A-E060-44C9-B3DD-2A8AF2A0B43F}) (Version: 140.0.851.000 - Hewlett-Packard) Hidden
K-Lite Mega Codec Pack 12.6.5 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 12.6.5 - KLCP)
Malwarebytes (wersja 3.5.1.2522) (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.5.1.2522 - Malwarebytes)
MediaInfo 18.05 (HKLM\...\MediaInfo) (Version: 18.05 - MediaArea.net)
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (ENU) (HKLM-x32\...\{290FC320-2F5A-329E-8840-C4193BD7A9EE}) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (HKLM-x32\...\{19E8AE59-4D4A-3534-B567-6CC08FA4102E}) (Version: 4.5.51651 - Microsoft Corporation)
Microsoft .NET Framework 4.6 SDK (HKLM-x32\...\{B5915D37-0637-4A26-A3AA-C5DC9F856370}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6 Targeting Pack (ENU) (HKLM-x32\...\{034547E9-D8FA-49E7-8B9C-4C9861FB9146}) (Version: 4.6.00127 - Microsoft Corporation)
Microsoft .NET Framework 4.6 Targeting Pack (HKLM-x32\...\{2CC6A4A7-AAC2-46C9-9DBB-3727B5954F65}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 SDK (HKLM-x32\...\{2F0ECC80-B9E4-4485-8083-CD32F22ABD92}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 SDK (Polski) (HKLM-x32\...\{A9D7F21C-C602-46C5-A080-4E44E440F249}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 Targeting Pack (ENU) (HKLM-x32\...\{8EEB28EE-5141-411C-9CF0-9952264FE4AF}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 Targeting Pack (HKLM-x32\...\{8BC3EEC9-090F-4C53-A8DA-1BEC913040F9}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 z dodatkiem Targeting Pack (Polski) (HKLM-x32\...\{EDC3FD45-C9CE-483F-8013-D18C69EF3F85}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Version Manager (x64) 1.0.0-beta5 (HKLM\...\{c5a4aba3-1aba-3ef8-b2d5-c3fa37f59738}) (Version: 1.0.10609.0 - Microsoft Corporation)
Microsoft Help Viewer 2.2 (HKLM-x32\...\Microsoft Help Viewer 2.2) (Version: 2.2.25420 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1856911157-4074417350-1105685870-1001\...\OneDriveSetup.exe) (Version: 18.131.0701.0007 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20513.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Command Line Utilities  (HKLM\...\{9D573E71-1077-4C7E-B4DB-4E22A5D2B48B}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client  (HKLM\...\{49D665A2-4C2A-476E-9AB8-FCC425F526FC}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects  (HKLM-x32\...\{2774595F-BC2A-4B12-A25B-0C37A37049B0}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects  (x64) (HKLM\...\{1F9EB3B6-AED7-4AA7-B8F1-8E314B74B2A5}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom  (HKLM\...\{020CDFE0-C127-4047-B571-37C82396B662}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 T-SQL Language Service  (HKLM-x32\...\{47D08E7A-92A1-489B-B0BF-415516497BCE}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2016 LocalDB  (HKLM\...\{E359515A-92E6-4FA3-A2C9-E1BA02D8DE6E}) (Version: 13.0.1601.5 - Microsoft Corporation)
Microsoft SQL Server 2016 Management Objects  (HKLM-x32\...\{0F1C8E2F-199A-4946-B3BF-0906DACFD032}) (Version: 13.0.1601.5 - Microsoft Corporation)
Microsoft SQL Server 2016 Management Objects  (x64) (HKLM\...\{20EA85AA-2A1D-4F11-B09F-4BA2BF3C8989}) (Version: 13.0.1601.5 - Microsoft Corporation)
Microsoft SQL Server 2016 T-SQL Language Service  (HKLM-x32\...\{8BFDE775-C5B8-46DB-84EF-43FFC8A2E8AD}) (Version: 13.0.14500.10 - Microsoft Corporation)
Microsoft SQL Server 2016 T-SQL ScriptDom  (HKLM\...\{D091DE8C-EA0F-49AF-8DE3-BD6C79737C6E}) (Version: 13.0.1601.5 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools - enu (14.0.60519.0) (HKLM-x32\...\{4E27B0EF-7BAB-432A-AF3D-3FC8F3F7353F}) (Version: 14.0.60519.0 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{FC3BB979-AA54-4B60-BBA3-2C4DA6E08D80}) (Version: 12.0.2402.29 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM-x32\...\{091CE6AA-2753-4F6E-AD1C-0E875744EB54}) (Version: 12.0.2402.29 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2016 (HKLM\...\{96EB5054-C775-4BEF-B7B9-AA96A295EDCD}) (Version: 13.0.1601.5 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2016 (HKLM-x32\...\{84C23ECA-FE4D-494F-9247-3EBAD57E7F0C}) (Version: 13.0.1601.5 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24210 (HKLM-x32\...\{23658c02-145e-483d-ba6b-1eb82c580529}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual Studio Community 2015 with Updates (HKLM-x32\...\{79b486b9-c5f0-4096-a00c-8351f59587c2}) (Version: 14.0.25420.1 - Microsoft Corporation)
Microsoft Web Deploy 3.6 (HKLM\...\{94E1227C-08A9-4962-B388-1F05D89AEA75}) (Version: 3.1238.1962 - Microsoft Corporation)
Mozilla Firefox 56.0.2 (x64 en-US) (HKLM\...\Mozilla Firefox 56.0.2 (x64 en-US)) (Version: 56.0.2 - Mozilla)
Mozilla Firefox 57.0 (x64 pl) (HKLM\...\Mozilla Firefox 57.0 (x64 pl)) (Version: 57.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 56.0.2 - Mozilla)
MSBuild/NuGet Integration 14.0 (x86) (HKLM-x32\...\{128C1654-3B9E-4959-8BFB-CE6F09C0A01D}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Multi-Device Hybrid Apps using C# - Templates - ENU (HKLM-x32\...\{12D99739-FFD3-3761-8AA6-F929E0FE407E}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
MySQL Workbench 6.3 CE (HKLM\...\{E90FE565-E4A2-49E7-94D9-5B8025C972A1}) (Version: 6.3.10 - Oracle Corporation)
Nero 7 Essentials (HKLM-x32\...\{9B4E6CB9-E54D-47F7-A414-E2D5740E1045}) (Version: 7.02.8507 - Nero AG)
NetBeans IDE 8.2 (HKLM\...\nbi-nb-base-8.2.0.0.201609300101) (Version: 8.2 - NetBeans.org)
NVIDIA GeForce Experience 3.3.0.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.3.0.95 - NVIDIA Corporation)
NVIDIA Oprogramowanie systemu PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NVIDIA Sterownik 3D Vision 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 388.13 - NVIDIA Corporation)
NVIDIA Sterownik dźwięku HD 1.3.35.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.35.1 - NVIDIA Corporation)
NVIDIA Sterownik graficzny 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.13 - NVIDIA Corporation)
NVIDIA Sterownik kontrolera 3D Vision 364.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 364.44 - NVIDIA Corporation)
NvNodejs (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvNodejs) (Version: 3.3.0.95 - NVIDIA Corporation) Hidden
NvTelemetry (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetry) (Version: 2.3.5.0 - NVIDIA Corporation) Hidden
NvvHci (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvvHci) (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
Oprogramowanie mikroukładu Intel® (HKLM-x32\...\{fb610cea-ba50-4d4b-a717-cf025419035c}) (Version: 10.1.1.13 - Intel® Corporation) Hidden
Panel sterowania NVIDIA 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 388.13 - NVIDIA Corporation) Hidden
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.259 - Google, Inc.)
PokerStars.eu (HKLM-x32\...\PokerStars.eu) (Version:  - PokerStars.eu)
PreEmptive Analytics Visual Studio Components (HKLM-x32\...\{436A18DD-5F2C-4B3C-985E-AD3C13B0CC25}) (Version: 1.2.5134.1 - PreEmptive Solutions) Hidden
Prerequisites for SSDT  (HKLM-x32\...\{21373064-AD95-48DB-A32E-0D9E08EF7355}) (Version: 12.0.2000.8 - Microsoft Corporation)
Prerequisites for SSDT  (HKLM-x32\...\{B7E94916-7AE6-4F7F-A377-7A410A42BA19}) (Version: 13.0.1601.5 - Microsoft Corporation)
PSpice Student 9.1 (HKLM-x32\...\PSpice Student) (Version:  - )
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.2.703.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7576 - Realtek Semiconductor Corp.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.1.0 - Rockstar Games)
Roslyn Language Services - x86 (HKLM-x32\...\{6C1985E7-E1C5-3A95-86EF-2C62465F15C3}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Roslyn Language Services - x86 (HKLM-x32\...\{C24A057B-EB58-34D8-B99E-E98899FE31CF}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
SceneBuilder (HKU\S-1-5-21-1856911157-4074417350-1105685870-1001\...\{com.oracle.javafx.scenebuilder.app}}_is1) (Version: 10.0.0 - Gluon)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0351 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 3.3.0.95 - NVIDIA Corporation) Hidden
Sid Meier's Civilization 4 - Beyond the Sword (HKLM-x32\...\{32E4F0D2-C135-475E-A841-1D59A0D22989}) (Version: 3.19 - Firaxis Games)
Sid Meier's Civilization 4 (HKLM-x32\...\{4377F918-E6C9-4ECA-A7F5-754B310B7ED8}) (Version: 1.00.0000 - Firaxis Games) Hidden
Sid Meier's Civilization 4 (HKLM-x32\...\{CFBCE791-2D53-4FCE-B3FB-D6E01F4112E8}) (Version: 1.74 - Firaxis Games)
SolutionCenter (HKLM-x32\...\{BC5DD87B-0143-4D14-AAE6-97109614DC6B}) (Version: 140.0.299.000 - Hewlett-Packard) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Sublime Text Build 3176 (HKLM\...\Sublime Text 3_is1) (Version:  - Sublime HQ Pty Ltd)
SWF Player version 3 (HKLM-x32\...\{6E0D82FD-960E-4B83-83BD-E441F27BCD66}_is1) (Version: 3 - TerSoft)
SWI-Prolog (remove only) (HKLM\...\SWI-Prolog) (Version:  - )
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Team Explorer for Microsoft Visual Studio 2015 Update 3 CTP1 (HKLM-x32\...\{C0402801-37B7-30B1-A678-AE3E73E4C4F6}) (Version: 14.98.25331 - Microsoft) Hidden
Test Tools for Microsoft Visual Studio 2015 (HKLM-x32\...\{9EABBFE1-7EED-47D9-8FB8-21D7E4808057}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
The Imaginarium 1.0 (HKLM-x32\...\The Imaginarium 1.0) (Version: 1.0 - Game)
Toolbox (HKLM-x32\...\{292F0F52-B62D-4E71-921B-89A682402201}) (Version: 140.0.596.000 - Hewlett-Packard) Hidden
TypeScript Power Tool (HKLM-x32\...\{465ACA24-B8D6-4FEC-A42D-9EFCB92CD560}) (Version: 1.8.34.0 - Microsoft Corporation) Hidden
TypeScript Tools for Microsoft Visual Studio 2015 (HKLM-x32\...\{BDB33BE7-73D0-4C02-A576-78FD17C95A8D}) (Version: 1.8.34.0 - Microsoft Corporation) Hidden
Universal CRT Extension SDK (HKLM-x32\...\{1FBCBC17-4527-2340-0832-B1D49C41FF67}) (Version: 10.0.26624 - Microsoft Corporation) Hidden
Universal CRT Extension SDK (HKLM-x32\...\{284FA9A0-CEDD-81D3-5A19-5858E95FD0C4}) (Version: 10.0.10150 - Microsoft Corporation) Hidden
Universal CRT Headers Libraries and Sources (HKLM-x32\...\{8BFBEC30-33CC-13B4-849F-3B036F27466A}) (Version: 10.0.26624 - Microsoft Corporation) Hidden
Universal CRT Headers Libraries and Sources (HKLM-x32\...\{ABD37F71-FC3F-F525-C7B3-BDD95F684C51}) (Version: 10.0.10150 - Microsoft Corporation) Hidden
Universal CRT Redistributable (HKLM-x32\...\{0460C87B-7F4C-3170-FAC9-B7A6AE5CE4E9}) (Version: 10.0.26624 - Microsoft Corporation) Hidden
Universal CRT Tools x64 (HKLM\...\{33952D66-D503-10CA-DD8E-E365C15EB4E0}) (Version: 10.0.26624 - Microsoft Corporation) Hidden
Universal CRT Tools x86 (HKLM-x32\...\{B048B812-32DE-3474-FA64-223B6A63AD47}) (Version: 10.0.26624 - Microsoft Corporation) Hidden
Update for  (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{A6F2ADC4-12C4-41E8-B90B-3BE018F5787C}) (Version: 2.48.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM-x32\...\{B7AFAF92-D1C8-49A0-B34A-B5DAF9C9D5C6}) (Version: 1.9.0.0 - Microsoft Corporation) Hidden
Visual Studio 2015 Update 3 (KB3022398) (HKLM-x32\...\{7a68448b-9cf2-4049-bd73-5875f1aa7ba2}) (Version: 14.0.25420 - Microsoft Corporation)
VS Update core components (HKLM-x32\...\{579B7F13-BCE2-3FCC-9273-40DC54D0B281}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
vs_update3notification (HKLM-x32\...\{F152E951-440E-3B0F-AB63-2D8674C50092}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
WCF Data Services 5.6.4 Runtime (HKLM-x32\...\{DB85E7BD-B2DD-43D4-B3C0-23D7B527B597}) (Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2015 (HKLM-x32\...\{0A3B508E-5638-4471-BCC9-954E1868CB86}) (Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WebReg (HKLM-x32\...\{8EE94FD8-5F52-4463-A340-185D16328158}) (Version: 140.0.297.017 - Hewlett-Packard) Hidden
WinRAR 5.31 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
XAMPP (HKLM-x32\...\xampp) (Version: 7.2.3-0 - Bitnami)
XSplit Gamecaster (HKLM-x32\...\{8915913F-E4AF-46C5-B4EF-3535D83BFFDE}) (Version: 2.5.1507.3018 - SplitmediaLabs)

==================== Niestandardowe rejestracje CLSID (filtrowane): ==========================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2016-07-30] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2016-07-30] (IvoSoft)
ContextMenuHandlers1: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP3\System\aimp_menu64.dll [2016-12-10] (AIMP DevTeam)
ContextMenuHandlers1-x32: [Cover Designer] -> {73FCA462-9BD5-4065-A73F-A8E5F6904EF7} => C:\Program Files (x86)\Nero\Nero 7\Nero CoverDesigner\CoverEdExtension.dll [2007-05-04] (Nero AG)
ContextMenuHandlers1-x32: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2017-12-18] (ESET)
ContextMenuHandlers1-x32: [ESET Smart Security - Context Menu Shell Extension] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2017-12-18] (ESET)
ContextMenuHandlers1-x32: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-08] (Alexander Roshal)
ContextMenuHandlers1-x32-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-02-08] (Alexander Roshal)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2017-12-18] (ESET)
ContextMenuHandlers2: [ESET Smart Security - Context Menu Shell Extension] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2017-12-18] (ESET)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => D:\malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes)
ContextMenuHandlers4: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP3\System\aimp_menu64.dll [2016-12-10] (AIMP DevTeam)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-10-27] (NVIDIA Corporation)
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2017-12-18] (ESET)
ContextMenuHandlers6: [ESET Smart Security - Context Menu Shell Extension] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2017-12-18] (ESET)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => D:\malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes)
ContextMenuHandlers6: [StartMenuExt] -> {E595F05F-903F-4318-8B0A-7F633B520D2B} => C:\WINDOWS\System32\StartMenuHelper64.dll [2016-07-30] (IvoSoft)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-08] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-02-08] (Alexander Roshal)

==================== Zaplanowane zadania (filtrowane) =============

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

Task: {029576F7-86AA-4843-BCA4-CCAC9F933E04} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-01-20] (NVIDIA Corporation)
Task: {0EF8C338-92DF-456D-9827-807DB6580077} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-01-20] (NVIDIA Corporation)
Task: {1233475C-303D-447E-B085-05ACB5C52AC3} - System32\Tasks\S-1-5-21-1856911157-4074417350-1105685870-1001\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe [2017-09-29] (Microsoft Corporation)
Task: {227F2761-961D-4664-8400-8A926F7ABF34} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-01-20] (NVIDIA Corporation)
Task: {2661BF72-F739-4330-8020-08EC0FA0B927} - System32\Tasks\Microsoft\VisualStudio\VSIX Auto Update 14 => D:\Studia\Visual Studio\Common7\IDE\VSIXAutoUpdate.exe [2016-06-20] (Microsoft Corporation)
Task: {40EBE6FA-B1A5-40C8-AEF5-6003667A4AE6} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-08-15] (Adobe Systems Incorporated)
Task: {4F93E2E9-FD8A-41E1-8060-43BE6789E323} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-03-21] (Adobe Systems Incorporated)
Task: {9CD73B28-D385-4C86-BB11-A5F7FD4BE285} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-06-05] (Google Inc.)
Task: {A5F72390-A68F-4DEE-B361-D0AADDF69474} - \Microsoft\Windows\UNP\RunCampaignManager -> Brak pliku <==== UWAGA
Task: {A6CD1BA9-5749-4B91-AB14-2CDA6A4C1E0F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-06-05] (Google Inc.)
Task: {A8EB9E32-15B2-4BD9-94B0-7CA27AD527B3} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-01-20] (NVIDIA Corporation)
Task: {B5CEBCE8-EF0F-429C-9AF2-F9DF63E8AB28} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_30_0_0_154_Plugin.exe [2018-08-15] (Adobe Systems Incorporated)
Task: {B8D53935-91A6-42FD-A046-B09F83B73485} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-01-20] (NVIDIA Corporation)
Task: {C2B667C5-D7E5-49FA-AB75-76377B51FFE9} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-01-20] (NVIDIA Corporation)
Task: {CF31BF33-EAA0-41F7-BC62-46D108F5D942} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-01-20] (NVIDIA Corporation)
Task: {DAD2E831-B992-4AB6-8EEA-7D0B33B562CA} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2015-05-14] ()

(Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.)


==================== Skróty & WMI ========================

(Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.)


==================== Załadowane moduły (filtrowane) ==============

2017-09-29 15:41 - 2017-09-29 15:41 - 000184432 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2016-12-11 22:50 - 2017-01-20 20:39 - 004489152 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2016-12-11 22:50 - 2017-01-20 20:39 - 001147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2018-08-15 23:25 - 2018-08-07 10:34 - 011044864 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2018-08-15 23:25 - 2018-08-07 10:32 - 001804288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-07-18 18:20 - 2018-07-18 18:25 - 000086528 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2018-07-18 18:20 - 2018-07-18 18:25 - 000195072 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2018-07-18 18:20 - 2018-07-18 18:25 - 022373888 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2018-07-18 18:20 - 2018-07-18 18:25 - 002610176 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\skypert.dll
2016-12-11 22:50 - 2017-01-20 20:39 - 000018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-12-11 22:50 - 2017-01-20 20:39 - 000900032 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-12-11 22:50 - 2017-01-20 20:39 - 003774400 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll
2015-10-16 07:14 - 2015-10-16 07:14 - 001243936 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll
2016-12-11 22:50 - 2017-01-20 15:36 - 000338488 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node
2016-12-11 22:50 - 2017-01-20 15:36 - 000254008 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node
2016-12-11 22:50 - 2017-01-20 15:36 - 002808888 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node
2016-12-11 22:50 - 2017-01-20 15:36 - 000384568 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node
2016-12-11 22:50 - 2017-01-20 15:36 - 000537656 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node
2016-12-11 22:50 - 2017-01-20 15:36 - 000468024 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node
2016-12-11 22:50 - 2017-01-20 15:36 - 001066552 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvCameraAPINode.node
2017-02-05 20:29 - 2017-01-20 15:36 - 001014840 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSDKAPINode.node

==================== Alternate Data Streams (filtrowane) =========

(Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.)


==================== Tryb awaryjny (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Powiązania plików (filtrowane) ===============

(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.)


==================== Internet Explorer - Witryny zaufane i z ograniczeniami ===============

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.)


==================== Hosts - zawartość: ==========================

(Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.)

2016-07-16 13:47 - 2016-12-10 16:27 - 000003435 _____ C:\WINDOWS\system32\Drivers\etc\hosts

0.0.0.0 statsfe2.update.microsoft.com.akadns.net
0.0.0.0 fe2.update.microsoft.com.akadns.net
0.0.0.0 s0.2mdn.net
0.0.0.0 survey.watson.microsoft.com
0.0.0.0 view.atdmt.com
0.0.0.0 watson.microsoft.com
0.0.0.0 watson.ppe.telemetry.microsoft.com
0.0.0.0 vortex.data.microsoft.com
0.0.0.0 vortex-win.data.microsoft.com
0.0.0.0 telecommand.telemetry.microsoft.com
0.0.0.0 telecommand.telemetry.microsoft.com.nsatc.net
0.0.0.0 oca.telemetry.microsoft.com
0.0.0.0 sqm.telemetry.microsoft.com
0.0.0.0 sqm.telemetry.microsoft.com.nsatc.net
0.0.0.0 watson.telemetry.microsoft.com
0.0.0.0 watson.telemetry.microsoft.com.nsatc.net
0.0.0.0 redir.metaservices.microsoft.com
0.0.0.0 choice.microsoft.com
0.0.0.0 choice.microsoft.com.nsatc.net
0.0.0.0 wes.df.telemetry.microsoft.com
0.0.0.0 services.wes.df.telemetry.microsoft.com
0.0.0.0 sqm.df.telemetry.microsoft.com
0.0.0.0 telemetry.microsoft.com
0.0.0.0 telemetry.appex.bing.net
0.0.0.0 telemetry.urs.microsoft.com
0.0.0.0 settings-sandbox.data.microsoft.com
0.0.0.0 watson.live.com
0.0.0.0 statsfe2.ws.microsoft.com
0.0.0.0 corpext.msitadfs.glbdns2.microsoft.com
0.0.0.0 compatexchange.cloudapp.net

==================== Inne obszary ============================

(Obecnie brak automatycznej naprawy dla tej sekcji.)

HKU\S-1-5-21-1856911157-4074417350-1105685870-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Zapora systemu Windows [funkcja włączona]

==================== MSCONFIG/TASK MANAGER - Wyłączone elementy ==

HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run: => "NvBackend"
HKLM\...\StartupApproved\Run: => "ShadowPlay"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKU\S-1-5-21-1856911157-4074417350-1105685870-1001\...\StartupApproved\Run: => "Google Update"
HKU\S-1-5-21-1856911157-4074417350-1105685870-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1856911157-4074417350-1105685870-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-1856911157-4074417350-1105685870-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-1856911157-4074417350-1105685870-1001\...\StartupApproved\Run: => "ALLUpdate"

==================== Reguły Zapory systemu Windows (filtrowane) ===============

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

FirewallRules: [UDP Query User{A6A4EC10-B1C9-48A1-9974-92598D1C895C}D:\gry\disciples 2 gold\disciples 2 - rise of the elves\discipl2.exe] => (Block) D:\gry\disciples 2 gold\disciples 2 - rise of the elves\discipl2.exe
FirewallRules: [TCP Query User{2FB7415A-13D4-4313-8D74-4ACCBDDF7DDC}D:\gry\disciples 2 gold\disciples 2 - rise of the elves\discipl2.exe] => (Block) D:\gry\disciples 2 gold\disciples 2 - rise of the elves\discipl2.exe
FirewallRules: [{D4602C52-8DD5-4066-AB8D-6FBB6BEA5C80}] => (Allow) D:\Studia\Visual Studio\Common7\IDE\devenv.exe
FirewallRules: [{9D50D839-39DF-4D63-A379-4113FB0CC81E}] => (Allow) D:\mozilla\firefox.exe
FirewallRules: [{AB9C3D3B-283A-4CAF-83D3-7DDA59D07204}] => (Allow) D:\mozilla\firefox.exe
FirewallRules: [UDP Query User{E9451981-81D9-4193-ACFA-A713D4DD18C6}D:\studia\java\netbeans\netbeans 8.2\bin\netbeans64.exe] => (Allow) D:\studia\java\netbeans\netbeans 8.2\bin\netbeans64.exe
FirewallRules: [TCP Query User{C6984932-1771-4AF9-B844-0CA3AFA29939}D:\studia\java\netbeans\netbeans 8.2\bin\netbeans64.exe] => (Allow) D:\studia\java\netbeans\netbeans 8.2\bin\netbeans64.exe
FirewallRules: [UDP Query User{FEA9264A-9E54-417E-82B8-990277E59378}C:\gry\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\gry\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [TCP Query User{C73634E1-2A4E-4253-A987-FB237CB99512}C:\gry\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\gry\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [{B7DEBBE7-A680-4BA1-A917-63B962DF890E}] => (Allow) C:\Gry\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{A755A927-E6E4-4F29-BC8E-5B9BDE94F80F}] => (Allow) C:\Gry\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{01934201-F0BC-49D1-B9CE-164455FBF786}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{67C0C1D4-EC62-49F7-9E26-0B99081C3AF0}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{8D94D6BF-CD5B-479C-A346-ED5F824CD066}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{220A1FF4-CC8F-4C1F-962F-9B82B2660715}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{DEFDBE0E-AB8E-4568-8701-610D41BDF5F1}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{A60B0E59-62DB-4F23-9D81-6605F17DB2F4}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe
FirewallRules: [{52201547-4437-4807-A5B6-ADDE547B2BB7}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{A2566D16-6888-4587-B607-A562C021E042}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{3C88DE6F-1331-41CA-992A-C33FC6F98753}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{48E9D7D4-2C4E-4853-BAE4-DD799D8F59EB}] => (Allow) C:\Users\Komputer\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{B0C67D07-B0CE-4A6C-8B14-CB036A068443}] => (Allow) C:\Users\Komputer\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{5F14DE5E-ADE7-49B0-A7FA-8DDBDDCEE34E}] => (Allow) C:\Users\Komputer\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{E1516DAB-98D0-4271-B524-38CAAC03ED3F}] => (Allow) C:\Users\Komputer\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{18DCE76A-E7D0-400D-BF32-19DCFA80F1C2}] => (Allow) C:\Users\Komputer\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{6783C594-D699-4FB1-81A5-00FDF62ABBE3}] => (Allow) C:\Users\Komputer\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{0343FA9A-4FBE-4CDB-8D52-3465D67B7B98}] => (Allow) C:\Gry\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{3570D4CB-398D-401E-8519-1289AC6ED3CD}] => (Allow) C:\Gry\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{FC764141-846F-4547-9761-369CBD9F5940}] => (Allow) C:\Gry\Civ 4\Beyond the Sword\Civ4BeyondSword_PitBoss.exe
FirewallRules: [{58ADB24B-1436-4529-8247-81616E8AA800}] => (Allow) C:\Gry\Civ 4\Beyond the Sword\Civ4BeyondSword_PitBoss.exe
FirewallRules: [{C52DB084-7915-407F-B702-E6F86293FCE2}] => (Allow) C:\Gry\Civ 4\Beyond the Sword\Civ4BeyondSword.exe
FirewallRules: [{688B6647-65A1-4760-B310-CB9F31AB3D4F}] => (Allow) C:\Gry\Civ 4\Beyond the Sword\Civ4BeyondSword.exe
FirewallRules: [{D0CDE3E1-201F-4AD2-B085-F8C7A41CEEB9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{91F286A2-2CD8-41D9-8266-6A9936EE8783}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{069E4B8F-AE34-4786-ACF5-AFA7330FCB91}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{9232C28D-7F76-4E7C-B25F-E020FA84B5F9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{9B891557-8E6E-4BA9-BE9D-A47F319673E5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{4682AC3C-1F61-47E8-B5F6-0BEBEE87E1A3}] => (Allow) C:\Gry\Steam\Steam.exe
FirewallRules: [{D4AE4669-3594-4EA9-BB7A-684602629A28}] => (Allow) C:\Gry\Steam\Steam.exe
FirewallRules: [{99EC497E-260D-45BB-9FDC-104109D74363}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{08DA0F93-EFCD-486E-BD6C-7FE1933576EE}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{B477BEA5-DD81-4B82-93E1-41FB91B5931B}] => (Block) C:\Windows\explorer.exe
FirewallRules: [{2B3C3363-06F9-494E-9112-4C6DD4C96DD6}] => (Allow) C:\Users\Komputer\AppData\Local\Temp\is-GAEVJ.tmp\XStoryPlayer 3.5 Crack by megalol777\vpnclient.exe
FirewallRules: [{313C9F5F-F253-488F-9D97-7AF1B6B981DA}] => (Allow) C:\Users\Komputer\AppData\Local\Temp\is-GAEVJ.tmp\XStoryPlayer 3.5 Crack by megalol777\vpnclient_x64.exe
FirewallRules: [{30D5071E-5329-450E-9FB4-21094DD7ADF6}] => (Allow) C:\Users\Komputer\AppData\Local\Temp\is-GAEVJ.tmp\XStoryPlayer 3.5 Crack by megalol777\vpncmgr.exe
FirewallRules: [{B1BFED22-7C4C-4C32-B42F-86C463F13DB0}] => (Allow) C:\Users\Komputer\AppData\Local\Temp\is-GAEVJ.tmp\XStoryPlayer 3.5 Crack by megalol777\vpncmgr_x64.exe
FirewallRules: [{7CF1FE9C-B888-4AE6-A7AB-AEC0427FAB50}] => (Allow) C:\Users\Komputer\AppData\Local\Temp\is-GAEVJ.tmp\XStoryPlayer 3.5 Crack by megalol777\vpncmd.exe
FirewallRules: [{BB98F3EE-8706-406A-B8E2-4E3F1A4D0052}] => (Allow) C:\Users\Komputer\AppData\Local\Temp\is-GAEVJ.tmp\XStoryPlayer 3.5 Crack by megalol777\vpncmd_x64.exe
FirewallRules: [TCP Query User{8744452B-6E76-47F9-BAB8-6124923224C8}D:\studia\java\bin\java.exe] => (Allow) D:\studia\java\bin\java.exe
FirewallRules: [UDP Query User{7271CA7D-40BF-4C5A-B6D9-C1F7F51E6D92}D:\studia\java\bin\java.exe] => (Allow) D:\studia\java\bin\java.exe
FirewallRules: [{D38597FB-64BC-4953-A47E-D2C9012080F4}] => (Block) D:\studia\java\bin\java.exe
FirewallRules: [{38327C69-E979-4B7B-91A9-633D8CC188AB}] => (Block) D:\studia\java\bin\java.exe
FirewallRules: [TCP Query User{1DE3848A-A689-4206-B7E7-A78413C43C62}D:\studia\bd\xampp\mysql\bin\mysqld.exe] => (Allow) D:\studia\bd\xampp\mysql\bin\mysqld.exe
FirewallRules: [UDP Query User{D58C9DB3-A480-4DC3-A2D1-5F6C73061ACD}D:\studia\bd\xampp\mysql\bin\mysqld.exe] => (Allow) D:\studia\bd\xampp\mysql\bin\mysqld.exe
FirewallRules: [{CCD680B1-D045-4FF6-9D42-8DCF391C7363}] => (Block) D:\studia\bd\xampp\mysql\bin\mysqld.exe
FirewallRules: [{3F1F918D-2062-4E72-9F86-B8C0A1255522}] => (Block) D:\studia\bd\xampp\mysql\bin\mysqld.exe
FirewallRules: [TCP Query User{6CC45411-A387-4BE3-9E7A-AEA957211142}D:\studia\bd\xampp\apache\bin\httpd.exe] => (Allow) D:\studia\bd\xampp\apache\bin\httpd.exe
FirewallRules: [UDP Query User{9D087956-9BD7-4571-992B-155ACA565A59}D:\studia\bd\xampp\apache\bin\httpd.exe] => (Allow) D:\studia\bd\xampp\apache\bin\httpd.exe
FirewallRules: [{9481A731-EC68-47EB-9814-B76BBDD6DBCC}] => (Block) D:\studia\bd\xampp\apache\bin\httpd.exe
FirewallRules: [{513D1D3F-F4BC-4BC4-BD43-7A80EFA2D687}] => (Block) D:\studia\bd\xampp\apache\bin\httpd.exe
FirewallRules: [TCP Query User{BA67B75A-6DE3-493F-AACC-7762D99A9F5F}D:\studia\xampp\mysql\bin\mysqld.exe] => (Allow) D:\studia\xampp\mysql\bin\mysqld.exe
FirewallRules: [UDP Query User{7EB51A86-3309-4531-8F73-D77A5631E57F}D:\studia\xampp\mysql\bin\mysqld.exe] => (Allow) D:\studia\xampp\mysql\bin\mysqld.exe
FirewallRules: [{A6C89E71-9400-409F-9148-F10B16ECC08F}] => (Block) D:\studia\xampp\mysql\bin\mysqld.exe
FirewallRules: [{4316399B-E109-4E5F-B38C-D28358FF453C}] => (Block) D:\studia\xampp\mysql\bin\mysqld.exe
FirewallRules: [{4292FE2E-2223-42C6-AE63-B0CFEA7F9BD8}] => (Allow) C:\Gry\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{85A9552E-5C70-424C-AF5E-C071181ECCC6}] => (Allow) C:\Gry\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{D617A6E3-2A19-4762-A427-3E12A00C1B3D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Punkty Przywracania systemu =========================

24-08-2018 13:25:54 Zaplanowany punkt kontrolny

==================== Wadliwe urządzenia w Menedżerze urządzeń =============


==================== Błędy w Dzienniku zdarzeń: =========================

Dziennik Aplikacja:
==================
Error: (08/31/2018 08:42:05 PM) (Source: nssm) (EventID: 1010) (User: )
Description: Failed to start service NVU.  Program C:\Windows\nvidia\NvUpdater64.exe couldn't be launched.
CreateProcess() failed:
Nie można odnaleźć określonego pliku.

Error: (08/31/2018 08:42:05 PM) (Source: nssm) (EventID: 1010) (User: )
Description: Failed to start service WMS.  Program C:\Windows\wmu\unsecapp.exe couldn't be launched.
CreateProcess() failed:
Nie można odnaleźć określonego pliku.

Error: (08/31/2018 08:41:05 PM) (Source: nssm) (EventID: 1010) (User: )
Description: Failed to start service WMS.  Program C:\Windows\wmu\unsecapp.exe couldn't be launched.
CreateProcess() failed:
Nie można odnaleźć określonego pliku.

Error: (08/31/2018 08:41:05 PM) (Source: nssm) (EventID: 1010) (User: )
Description: Failed to start service NVU.  Program C:\Windows\nvidia\NvUpdater64.exe couldn't be launched.
CreateProcess() failed:
Nie można odnaleźć określonego pliku.

Error: (08/31/2018 08:40:05 PM) (Source: nssm) (EventID: 1010) (User: )
Description: Failed to start service WMS.  Program C:\Windows\wmu\unsecapp.exe couldn't be launched.
CreateProcess() failed:
Nie można odnaleźć określonego pliku.

Error: (08/31/2018 08:40:05 PM) (Source: nssm) (EventID: 1010) (User: )
Description: Failed to start service NVU.  Program C:\Windows\nvidia\NvUpdater64.exe couldn't be launched.
CreateProcess() failed:
Nie można odnaleźć określonego pliku.

Error: (08/31/2018 08:39:05 PM) (Source: nssm) (EventID: 1010) (User: )
Description: Failed to start service NVU.  Program C:\Windows\nvidia\NvUpdater64.exe couldn't be launched.
CreateProcess() failed:
Nie można odnaleźć określonego pliku.

Error: (08/31/2018 08:39:05 PM) (Source: nssm) (EventID: 1010) (User: )
Description: Failed to start service WMS.  Program C:\Windows\wmu\unsecapp.exe couldn't be launched.
CreateProcess() failed:
Nie można odnaleźć określonego pliku.


Dziennik System:
=============
Error: (08/31/2018 08:42:05 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Usługa NVU niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 60000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie.

Error: (08/31/2018 08:42:05 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Usługa NVU zakończyła działanie; wystąpił następujący specyficzny dla niej błąd:
System nie może odnaleźć określonej ścieżki.

Error: (08/31/2018 08:42:05 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Usługa WMI niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 60000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie.

Error: (08/31/2018 08:42:05 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Usługa WMI zakończyła działanie; wystąpił następujący specyficzny dla niej błąd:
System nie może odnaleźć określonej ścieżki.

Error: (08/31/2018 08:41:05 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Usługa WMI niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 60000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie.

Error: (08/31/2018 08:41:05 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Usługa WMI zakończyła działanie; wystąpił następujący specyficzny dla niej błąd:
System nie może odnaleźć określonej ścieżki.

Error: (08/31/2018 08:41:05 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Usługa NVU niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 60000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie.

Error: (08/31/2018 08:41:05 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Usługa NVU zakończyła działanie; wystąpił następujący specyficzny dla niej błąd:
System nie może odnaleźć określonej ścieżki.


==================== Statystyki pamięci ===========================

Procesor: Intel® Core™ i7-6700K CPU @ 4.00GHz
Procent pamięci w użyciu: 28%
Całkowita pamięć fizyczna: 16320.27 MB
Dostępna pamięć fizyczna: 11589.23 MB
Całkowita pamięć wirtualna: 18752.27 MB
Dostępna pamięć wirtualna: 13408.29 MB

==================== Dyski ================================

Drive c: () (Fixed) (Total:223.02 GB) (Free:27.67 GB) NTFS
Drive d: (Data) (Fixed) (Total:1863.01 GB) (Free:1181.91 GB) NTFS

\\?\Volume{6c88d669-aed9-42a6-8cac-331792110e63}\ () (Fixed) (Total:0.44 GB) (Free:0.04 GB) NTFS
\\?\Volume{acd939cd-19b5-45fd-ad06-75e261869cb3}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Tablica partycji ==================

========================================================
Disk: 0 (Size: 223.6 GB) (Disk ID: E5A68201)

Partition: GPT.

========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: E5A68219)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)

==================== Koniec  Addition.txt ============================


  • 0

Advertisements


#2
RKinner

RKinner

    Malware Expert

  • Expert
  • 21,016 posts
  • MVP

Are you trying to run the Windows App Certification Kit  and getting the error or are you just trying to get rid of it?

 

You have two malware entries where the files were removed but the registry entries remain so you get a couple of errors each boot:

 

Error: (08/31/2018 08:42:05 PM) (Source: nssm) (EventID: 1010) (User: )
Description: Failed to start service NVU.  Program C:\Windows\nvidia\NvUpdater64.exe couldn't be launched.
CreateProcess() failed:
Nie można odnaleźć określonego pliku.

Error: (08/31/2018 08:42:05 PM) (Source: nssm) (EventID: 1010) (User: )
Description: Failed to start service WMS.  Program C:\Windows\wmu\unsecapp.exe couldn't be launched.
CreateProcess() failed:
Nie można odnaleźć określonego pliku.

 

These are caused by:

 

S2 NVU; C:\Windows\nvidia\wintask.exe [329728 2014-08-31] () [Brak podpisu cyfrowego]
S2 WMS; C:\Windows\wmu\wnetmon.exe [329728 2014-08-31] () [Brak podpisu cyfrowego]

 

We can remove these with a Fixlist but I want to understand what you want with the checker.vbs file first.


  • 0

#3
StallHater

StallHater

    New Member

  • Topic Starter
  • Member
  • Pip
  • 3 posts

I'm not trying to run it, tbh I don't even know what exactly it is for. It autoruns, I get this error every 10 minutes or so. I tried disabling Windows Script Host but it resulted in different error so I gave up on that. I thought that by using FRST I will get rid of this problem too. I tried scanning my PC with Antivirus and used Malwarebytes and they both found some errors but it didn't help with this issue.


  • 0

#4
RKinner

RKinner

    Malware Expert

  • Expert
  • 21,016 posts
  • MVP

Download the attached fixlist.txt to the same location as FRST

Attached File  fixlist.txt   2.39KB   3 downloads

Run FRST and press Fix
A fix log will be generated please post that

Reboot if the fix doesn't reboot it for you

Run FRST again as before.  Make sure Addition.txt is checked and hit Scan.  Post both logs.

 


  • 0

#5
StallHater

StallHater

    New Member

  • Topic Starter
  • Member
  • Pip
  • 3 posts

All three attached. I doesn't seem to appear anymore.

Thank you very much for your help.

Attached Files


  • 0

#6
RKinner

RKinner

    Malware Expert

  • Expert
  • 21,016 posts
  • MVP
Error: (09/01/2018 02:50:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nazwa aplikacji powodującej błąd: ASGT.exe, wersja: 0.0.0.0, sygnatura czasowa: 0x574819c7
Nazwa modułu powodującego błąd: ntdll.dll, wersja: 10.0.16299.611, sygnatura czasowa: 0x0fcf8c71
Kod wyjątku: 0xc0000374
Przesunięcie błędu: 0x000da2a9
Identyfikator procesu powodującego błąd: 0xce4
Godzina uruchomienia aplikacji powodującej błąd: 0x01d441f258b21ca3
Ścieżka aplikacji powodującej błąd: C:\Windows\SysWOW64\ASGT.exe
Ścieżka modułu powodującego błąd: C:\WINDOWS\SYSTEM32\ntdll.dll
Identyfikator raportu: 68379456-ed2a-4573-b479-ad0775a5a18c
Pełna nazwa pakietu powodującego błąd:
Identyfikator aplikacji względem pakietu powodującego błąd:

 

 

ASGT.exe is part of ASUS GPU TweakII.  If you don't need it then uninstall it - otherwise there is a newer version: 

 

https://www.asus.com...pDesk_Download/

(You need Win 10 64-bit)

 

Version 1.6.5.0 2018/08/2744.12 MBytesGPUTweak2_Ver1650
Fixed Issues
1. Resolved Hardware Monitor stability issue during system shutdown
2. Resolved issue regarding windows insertion between GPU Tweak main window and Hardware Monitor

 

Time to clean up:
If we used FRST to clean your PC:

right click on FRST.exe or FRST64.exe (whichever you used) and rename it to uninstall.exe.  Then right click on uninstall.exe and Run as Admin.

 
If we installed Speccy it needs to be uninstalled.  Process Explorer, VEW, AdwCleaner, JRT  and their logs and Speccy's log can just be deleted.

Also make sure you have the latest versions of any adobe.com products you use like Shockwave, Flash or Acrobat.  Flash is now the most malware targeted program so it must be kept up to date.  Be careful with Adobe.  They are fond of offering optional downloads like yahoo or Ask toolbars or that worthless McAfee Security Scan.  Go slow and uncheck the optional stuff.

Whether you use adobe reader, acrobat or fox-it to read pdf files you need to disable Javascript in the program.  There is an exploit out there now that can use it to get on your PC.  For Adobe Reader:  Start, All Programs, Adobe Reader, Edit, Preferences, Click on Javascript in the left column and uncheck Enable Acrobat Javascript.  OK Close program.  It's the same for Foxit reader except you uncheck Enable Javascript Actions.


If you use Chrome/Firefox/Edge then get the Ublock Origin extension.  For IE go to adblockplus.org  and get the program.
If Chrome/Firefox is slow loading make sure it only has the current Java add-on.  Then download and run Speedy Fox.
http://www.crystalidea.com/speedyfox. Close Chrome/Firefox/Skpe. Hit Optimize.   You can run it any time that Chrome/Firefox seems slow starting..

If you use Facebook you need FB Purity: http://www.fbpurity.com/

To prevent a relatively new phishing attack:  In Firefox, type:

https://www.xn--80ak6aa92e.com/

If the URL changes to https://www.apple.cominstead of the correct value
type:
about:config

in the URL box and hit Enter.  You should get a new page of options (if you get a notice about voiding the warranty just cancel the warning).  In the Search box put in

puny

You should only get 2 options:
"network.IDN_show_punycode"
We want it to say True but by default it is False so double click on it to toggle from False to True.


 "network.standard-url.punycode-host" Leave this one at default of False.
Close and restart firefox.

If you are a Facebook user get the FB Purity extension for your browser:
http://www.fbpurity.com/
This will stop all of the suggested pages and ads so that Facebook loads much quicker.


Be warned:  If you use Limewire, utorrent or any of the other P2P programs you will probably be coming back to the Malware Removal forum.  If you must use P2P then submit any files you get to http://virustotal.combeforeyou open them.


If you have a router, log on to it today and change the default password!  If using a Wireless router you really should be using encryption on the link.  Use the strongest (newest) encryption method that your router and PC wireless adapter support especially if you own a business.  See http://www.king5.com...0637284.htmlandhttp://www.seattlepi...ted-1344185.php for why encryption is important.  If you don't know how, visit the router maker's website.  They all have detailed step by step instructions or a wizard you can download.

Special note on Java.  Old Java versions should be removed after first clearing the Java Cache by following the instructions in:
http://www.java.com/...lugin_cache.xml
Then remove the old versions by going to Control Panel, Programs and Features and Uninstall all Java programs which are not Java Version 7 update 25 or better.  These may call themselves: Java Runtime, Runtime Environment, Runtime, JRE, Java Virtual Machine, Virtual Machine, Java VM, JVM, VM, J2RE, J2SE.  Get the latest version from Java.com.  They will usually attempt to foist some garbage like the Ask toolbar, Yahoo toolbar or McAfee Security Scan on you as part of the download.  Just uncheck the garbage before the download (or install) starts.  If you use a 64-bit browser and want the 64-bit version of Java you need to use it to visit java.com.
Due to multiple security problems with Java we are now recommending that it not be installed unless you absolutely know you need it.  IF that is the case then go to Control Panel, Java, Security and slide it up to the highest level.  OK.


Recommended software: (I'm not saying you should download these just that if you have a need for a new program these are safe and work)  
Compression:  7-zip.  Avoid WinRar and WinZip as the free versions have adware.
Video Player:  VLC  Unlike Windows Medi Player it never seems to need extra files to work.
Photo organizer and editor:  Google's Picasa.  While it has been discontinued by Google you can still get it at:
http://techfilehippo...-free-download/
Office like free program:  Open Office: https://www.openoffice.org/download/
or
LibreOffice: https://www.libreoffice.org/
Free Anti-Virus:  Avast
Free Malware prevention:  MBAM: Free version at https://www.malwareb...m/mwb-download/
Can run with your anti-virus.
Paid Anti-Virus:  Kaspersky or BitDefender
Utilities:
Root Kit Detector:  MBAR: https://www.malwareb...om/antirootkit/
Process Explorer:  Show you what is running on the PC.  Like Task manager but better:  http://live.sysinter...com/procexp.exe
WhoCrashed: Why did your system crash?
http://www.resplendence.com/downloads
Then click on Download free home edition
where it says:
WhoCrashed 5.51
Comprehensible crash dump analysis tool
for Windows 10/8.1/8/7/Vista/XP/2012/2008/2003 (x86 and x64)
System Health:
Speccy:  
http://www.filehippo.com/download_speccy (Look in the upper right for the Download
Latest Version button  - Do NOT press the large Start Download button on the upper left!)  Decline CCleaner if offered.  Pay attention to SMART info on your hard drives and to temps.  If in doubt about temps try:
SpeedFan:  Try speedfan
http://www.filehippo...nload_speedfan/
Download, save and Install it (Win 7 or Vista right click and Run As Admin.) then run it.
Download Flash and Video.  To save flash video.  Works with Firefox.  https://addons.mozil...lash-and-video/This allows you to start a recording and then switch to a different window and record another video.

With Win 10 only there is a new Game recorder program.  It's supposed to only work for games but it works nicely to record any video you watch.  Hit the Win key + Alt + r to start the recorder.  The first time it asks you if it is looking at a game.  Just tell it yes.  After that it starts recording whenever you bring it up.  Videos are saved to the Captures folder under Videos.  You can only record what you watch so limited to only one video at a time.  Best to go to full screen before starting the recorder.

Avoid:  
Advanced System Care
SuperAntiSpyware
HitmanPro
Spybot S&D
Any P2P software especially if it comes from Conduit.
Registry Cleaners
Driver updating software.
PC fixing or Speed up software.
Running more than one anti-virus.
Seagate hard drives.  If you have one it's going to fail on you so backup your data now!
 


  • 0






Similar Topics

1 user(s) are reading this topic

0 members, 1 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP