Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 14-11-2019 Uruchomiony przez piotr (administrator) DESKTOP-GABFVLC (ASUSTeK COMPUTER INC. X542UQ) (16-11-2019 19:10:01) Uruchomiony z C:\Users\piotr\Downloads Załadowane profile: piotr (Dostępne profile: piotr & Paulina) Platform: Windows 10 Pro Wersja 1903 18362.418 (X64) Język: Polski (Polska) Domyślna przeglądarka: Chrome Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Battery Health Charging\AsBhcSrv.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Battery Health Charging\BhcMgr.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Touchpad Handwriting\Exe\x64\AsusHWCenter64.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe (BitTorrent Inc -> BitTorrent Inc.) C:\Users\piotr\AppData\Roaming\uTorrent Web\helper.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe (Intel Corporation -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_d7d738457dbea1f2\igfxCUIService.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_d7d738457dbea1f2\igfxEM.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_d7d738457dbea1f2\IntelCpHDCPSvc.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_d7d738457dbea1f2\IntelCpHeciSvc.exe (Jenkins Win Client Build SPC -> BitTorrent Inc.) [Brak podpisu cyfrowego] C:\Users\piotr\AppData\Roaming\uTorrent Web\utweb.exe (Microsoft Corporation -> Microsoft Corporation) C:\Users\piotr\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SrTasks.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\usocoreworker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.471_none_5f12f35059003107\TiWorker.exe (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1910.4-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1910.4-0\NisSrv.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Piriform Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation -> Microsoft Corporation) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645648 2019-10-05] (Oracle America, Inc. -> Oracle Corporation) HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-21-3263289190-3195042681-1667729281-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [18630056 2018-09-10] (Piriform Ltd -> Piriform Ltd) HKU\S-1-5-21-3263289190-3195042681-1667729281-1001\...\Run: [utweb] => C:\Users\piotr\AppData\Roaming\uTorrent Web\utweb.exe [5400280 2019-10-19] (Jenkins Win Client Build SPC -> BitTorrent Inc.) [Brak podpisu cyfrowego] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.97\Installer\chrmstp.exe [2019-11-07] (Google LLC -> Google LLC) ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0DBB3D5F-3316-40BA-9794-0F32488564EF} - System32\Tasks\ASUS Battery Health Charging Notification => C:\Program Files (x86)\ASUS\ASUS Battery Health Charging\BhcMgr.exe [2480504 2017-04-26] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) Task: {17F90C27-220F-449F-B109-62567D0CDAFA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [469928 2019-11-03] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {29B93355-0981-4F65-8227-FE1A11290CDD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-01-19] (Google Inc -> Google Inc.) Task: {3317DFF8-5D56-481B-A78C-DDC64D017161} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122008 2015-09-22] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) Task: {3BB5435F-62D8-4C51-BAB2-26D00DCE3615} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-01-19] (Google Inc -> Google Inc.) Task: {43B4B564-4B6E-4C93-A262-6CD5B05126C5} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [13797712 2018-09-10] (Piriform Ltd -> Piriform Ltd) Task: {7B727F6A-33BD-449A-B453-742561EE5A02} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [469928 2019-11-03] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {9D1CA403-0B02-4477-957B-2078F1C23A73} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1493984 2017-07-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {A06F2123-7A3F-48ED-A02C-D2AFC3A1BAA1} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1493984 2017-07-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor) Task: {B2010BAA-6588-4BEC-869B-ED5A36DF18F1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems) Task: {B30EEF23-EB3D-464D-9B85-10A3C94B028F} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [143160 2019-03-12] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.) Task: {B6DCF1CD-A0FC-4F79-AD5B-744E1792B589} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [469928 2019-11-03] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {C09794EF-07CF-4718-B624-679F602266E3} - System32\Tasks\HPCustParticipation HP ColorLaserJet MFP M278-M281 => C:\Program Files\HP\HP ColorLaserJet MFP M278-M281\Bin\HPCustPartic.exe [6659488 2019-06-11] (HP Inc -> HP Inc.) Task: {C720F748-C975-4DE3-A1CA-98E9BF606729} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [19967504 2016-11-14] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) Task: {DD1B4EBE-3EB7-4914-866B-1A3F1A988BA3} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122008 2015-09-22] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) Task: {E2886D7D-24BC-41CB-852D-4BAFF4298F35} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-02-04] (Piriform Software Ltd -> Piriform Software Ltd) Task: {E352D973-53C1-4286-97F7-FD3E746A4E84} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [543536 2016-10-13] (Intel(R) Trust Services -> Intel(R) Corporation) Task: {F772B641-B436-4D2E-82E9-CA434A08E6B9} - System32\Tasks\ASUS Touchpad Handwriting (x64) => C:\Program Files (x86)\ASUS\ASUS Touchpad Handwriting\Exe\x64\AsusHWLaunch64.exe [490480 2017-03-10] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) Task: {FC40DB30-ABAD-42AB-93C3-A4D8D503B799} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [469928 2019-11-03] (Microsoft Windows Publisher -> Microsoft Corporation) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.8.1 Tcpip\..\Interfaces\{1f9e4c16-180c-4f55-8735-7323621fab66}: [DhcpNameServer] 192.168.0.1 192.168.0.2 Tcpip\..\Interfaces\{54dfe408-3116-4fc2-b9a8-ac3c5cddad17}: [DhcpNameServer] 192.168.8.1 Internet Explorer: ================== BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\ssv.dll [2019-10-27] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\jp2ssv.dll [2019-10-27] (Oracle America, Inc. -> Oracle Corporation) FireFox: ======== FF DefaultProfile: lo3tzlvt.default FF ProfilePath: C:\Users\piotr\AppData\Roaming\Mozilla\Firefox\Profiles\lo3tzlvt.default [2019-11-16] FF Plugin-x32: @java.com/DTPlugin,version=11.231.2 -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\dtplugin\npDeployJava1.dll [2019-10-27] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.231.2 -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\plugin2\npjp2.dll [2019-10-27] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-11-05] (Google Inc -> Google LLC) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-11-05] (Google Inc -> Google LLC) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-10-16] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR Profile: C:\Users\piotr\AppData\Local\Google\Chrome\User Data\Default [2019-11-16] CHR Extension: (Prezentacje) - C:\Users\piotr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-01-19] CHR Extension: (Dokumenty) - C:\Users\piotr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-01-19] CHR Extension: (Dysk Google) - C:\Users\piotr\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-01-19] CHR Extension: (YouTube) - C:\Users\piotr\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-01-19] CHR Extension: (Arkusze) - C:\Users\piotr\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-01-19] CHR Extension: (Dokumenty Google offline) - C:\Users\piotr\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-06-09] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\piotr\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03] CHR Extension: (Gmail) - C:\Users\piotr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-06-09] CHR Extension: (Chrome Media Router) - C:\Users\piotr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-11-06] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AsBhcService; C:\Program Files (x86)\ASUS\ASUS Battery Health Charging\AsBhcSrv.exe [114360 2016-10-20] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) R2 AtherosSvc; C:\WINDOWS\System32\drivers\AdminService.exe [414728 2017-11-08] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) S3 DevActSvc; C:\Program Files (x86)\ASUS\ASUS Device Activation\DevActSvc.exe [326032 2018-06-05] (ASUSTeK Computer Inc. -> ) R2 esifsvc; C:\WINDOWS\system32\Intel\DPTF\esif_uf.exe [2218552 2017-01-12] (Intel Corporation -> Intel Corporation) S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [630048 2016-10-13] (Intel(R) Trust Services -> Intel(R) Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [177440 2016-12-05] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5796168 2019-09-13] (Microsoft Windows Publisher -> Microsoft Corporation) R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12054872 2019-10-10] (TeamViewer GmbH -> TeamViewer GmbH) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\NisSrv.exe [3201616 2019-11-03] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MsMpEng.exe [103168 2019-11-03] (Microsoft Windows Publisher -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 AiCharger; C:\WINDOWS\system32\DRIVERS\AiCharger.sys [29312 2016-11-14] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.) R3 AsusPTPDrv; C:\WINDOWS\System32\drivers\AsusPTPFilter.sys [108504 2019-04-24] (ASUSTek Computer Inc. -> ASUSTek COMPUTER INC.) R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.) R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [67976 2017-02-06] (Intel Corporation -> Intel Corporation) R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [355208 2017-01-12] (Intel Corporation -> Intel Corporation) R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32680 2019-08-07] (ASUSTek Computer Inc. -> ASUS) R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvam.inf_amd64_1aae4f19e68d0780\nvlddmkm.sys [17003280 2017-12-12] (NVIDIA Corporation -> NVIDIA Corporation) R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [943112 2016-08-01] (Realtek Semiconductor Corp. -> Realtek ) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46472 2019-11-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [351968 2019-11-03] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2019-11-03] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) =================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-11-16 19:10 - 2019-11-16 19:17 - 000020588 _____ C:\Users\piotr\Downloads\FRST.txt 2019-11-16 19:07 - 2019-11-16 19:14 - 000000000 ____D C:\FRST 2019-11-16 19:04 - 2019-11-16 19:05 - 002260480 _____ (Farbar) C:\Users\piotr\Downloads\FRST64.exe 2019-11-16 18:56 - 2019-11-16 18:56 - 000029704 _____ C:\Users\piotr\Desktop\cc_20191116_185553.reg 2019-11-14 00:45 - 2019-11-14 00:45 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe 2019-11-14 00:44 - 2019-11-14 00:46 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe 2019-11-14 00:09 - 2019-11-14 00:10 - 004306455 _____ C:\Users\piotr\Downloads\LF_KAT_EBook_Busse_LuF_2013_IN (2).pdf 2019-11-13 23:22 - 2019-11-13 23:22 - 004306455 _____ C:\Users\piotr\Downloads\LF_KAT_EBook_Busse_LuF_2013_IN (1).pdf 2019-11-13 23:21 - 2019-11-13 23:22 - 004306455 _____ C:\Users\piotr\Downloads\LF_KAT_EBook_Busse_LuF_2013_IN.pdf 2019-11-13 21:38 - 2019-11-14 00:47 - 000011639 _____ C:\Users\piotr\Desktop\Setra S4 gthd.xlsx 2019-11-12 23:36 - 2019-11-12 23:36 - 110205715 _____ C:\Users\piotr\Downloads\Catalogue-ATS_2019-2022.pdf 2019-11-12 19:53 - 2017-07-12 08:09 - 007394956 _____ C:\Users\piotr\Desktop\Carrosserie Global 2014.pdf 2019-11-12 19:25 - 2019-11-12 19:25 - 002854866 _____ C:\Users\piotr\Downloads\Częśći.xls 2019-11-12 18:30 - 2019-11-12 18:31 - 000700471 _____ C:\Users\piotr\Downloads\invoice-FV_67_11_2019 (1).pdf 2019-11-12 18:30 - 2019-11-12 18:30 - 000700471 _____ C:\Users\piotr\Downloads\invoice-FV_67_11_2019.pdf 2019-11-11 23:02 - 2019-11-12 13:47 - 000000000 ____D C:\The Sims 3 2019-11-11 23:02 - 2019-11-11 23:02 - 000001511 _____ C:\Users\Public\Desktop\The Sims 3.lnk 2019-11-11 19:22 - 2019-11-16 18:54 - 000000000 ____D C:\Users\piotr\AppData\Roaming\uTorrent 2019-11-11 19:22 - 2019-11-11 19:22 - 000000941 _____ C:\Users\piotr\Desktop\µTorrent.lnk 2019-11-11 19:22 - 2019-11-11 19:22 - 000000921 _____ C:\Users\piotr\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk 2019-11-11 19:21 - 2019-11-11 19:21 - 003350648 _____ (BitTorrent Inc.) C:\Users\piotr\Downloads\uTorrent.exe 2019-11-11 19:17 - 2019-11-11 19:17 - 000159047 _____ C:\Users\piotr\Downloads\[EX-TORRENTY.ORG] The Sims 3_ Complete Edition 2009 - V1.67.2.024037 [All DLCs & Add-Ons + Bonus Content] [MULTi21-PL] [REPACK-FITGIRL] [SELECTIVE DOWNLOAD FROM 10.82 GB] [EXE].torrent 2019-11-11 14:04 - 2019-11-11 14:04 - 000003517 _____ C:\Users\piotr\Downloads\12829-STA014.pfx 2019-11-11 14:00 - 2019-11-11 14:00 - 000000000 ___HD C:\OneDriveTemp 2019-11-10 19:56 - 2019-11-10 19:56 - 000039612 _____ C:\Users\piotr\Downloads\VINY 08.2019 (1).xlsx 2019-11-05 21:05 - 2019-11-05 21:05 - 000000000 ____D C:\Users\piotr\AppData\Local\OneDrive 2019-11-05 20:46 - 2019-11-05 20:46 - 000629392 _____ (PROGINOV) C:\Users\piotr\Downloads\ProginovAuthenticator (1).exe 2019-11-05 20:45 - 2019-11-05 20:45 - 000629392 _____ (PROGINOV) C:\Users\piotr\Downloads\ProginovAuthenticator.exe 2019-11-05 19:26 - 2019-11-05 19:26 - 000064369 _____ C:\Users\piotr\Downloads\cd24bad9-5986-44f1-b3be-5aa3401c08db.pdf 2019-10-22 16:55 - 2019-10-22 16:55 - 000700517 _____ C:\Users\piotr\Downloads\invoice-FV_62_10_2019 (1).pdf 2019-10-22 16:54 - 2019-10-22 16:54 - 000700437 _____ C:\Users\piotr\Downloads\invoice-FV_62_10_2019.pdf 2019-10-22 16:51 - 2019-10-22 16:51 - 000700535 _____ C:\Users\piotr\Downloads\invoice- (1).pdf 2019-10-21 20:26 - 2019-10-21 20:26 - 000701547 _____ C:\Users\piotr\Downloads\Inter Cars 56_09_2019 (2).pdf 2019-10-21 20:26 - 2019-10-21 20:26 - 000701547 _____ C:\Users\piotr\Downloads\Inter Cars 56_09_2019 (2) (1).pdf 2019-10-21 20:18 - 2019-10-21 20:18 - 000701547 _____ C:\Users\piotr\Downloads\invoice-FV_56_09_2019 (2).pdf 2019-10-21 20:18 - 2019-10-21 20:18 - 000701547 _____ C:\Users\piotr\Desktop\Inter Cars 56_09_2019 (2).pdf 2019-10-21 20:16 - 2019-10-21 20:16 - 000701552 _____ C:\Users\piotr\Downloads\invoice-FV_56_09_2019.pdf 2019-10-21 20:16 - 2019-10-21 20:16 - 000701549 _____ C:\Users\piotr\Downloads\invoice-FV_56_09_2019 (1).pdf 2019-10-18 19:02 - 2019-10-18 19:02 - 001318984 _____ C:\Users\piotr\Downloads\md-013-led.pdf 2019-10-18 18:57 - 2019-10-18 18:58 - 007913620 _____ C:\Users\piotr\Downloads\FT-170 LED - karty PL.pdf 2019-10-18 18:55 - 2019-10-18 18:55 - 028415185 _____ C:\Users\piotr\Downloads\Fristom katalog polski 09.2019_PL.pdf 2019-10-17 21:10 - 2019-10-17 21:10 - 000385500 _____ C:\Users\Paulina\Desktop\formularzzwrotu.pdf 2019-10-17 20:54 - 2019-10-17 20:54 - 000000000 ____D C:\Users\Paulina\AppData\Local\HP ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-11-16 19:23 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2019-11-16 18:51 - 2019-06-21 08:12 - 000000000 ___DC C:\WINDOWS\Panther 2019-11-16 18:51 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2019-11-16 18:51 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF 2019-11-16 18:49 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\CbsTemp 2019-11-16 18:47 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\AppReadiness 2019-11-16 18:47 - 2018-01-19 19:47 - 000000000 ___RD C:\Users\piotr\OneDrive 2019-11-16 18:46 - 2019-09-23 11:41 - 000000000 ____D C:\Users\piotr\AppData\Local\BitTorrentHelper 2019-11-16 18:45 - 2018-09-24 20:01 - 000000000 ____D C:\Program Files (x86)\TeamViewer 2019-11-16 18:45 - 2018-01-19 19:44 - 000000000 __SHD C:\Users\piotr\IntelGraphicsProfiles 2019-11-16 18:42 - 2018-01-19 19:53 - 000000000 ____D C:\ProgramData\NVIDIA 2019-11-14 00:45 - 2019-06-21 22:44 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2019-11-14 00:19 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps 2019-11-13 23:50 - 2019-07-29 11:01 - 000000000 ____D C:\Users\piotr\AppData\Local\Deployment 2019-11-13 21:43 - 2019-02-27 21:11 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2019-11-13 17:25 - 2018-01-19 21:27 - 000748816 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe 2019-11-13 00:06 - 2018-01-19 21:18 - 000000000 ____D C:\Users\Paulina\AppData\Local\Packages 2019-11-12 18:21 - 2018-01-19 21:18 - 000000000 __SHD C:\Users\Paulina\IntelGraphicsProfiles 2019-11-11 19:24 - 2018-03-14 21:50 - 000000000 ____D C:\Downolads 2019-11-11 19:20 - 2019-09-22 20:24 - 000000000 ____D C:\Users\piotr\AppData\Roaming\uTorrent Web 2019-11-07 17:21 - 2018-01-19 20:28 - 000002307 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2019-11-05 19:08 - 2019-06-21 23:17 - 000003570 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2019-11-05 19:08 - 2019-06-21 23:17 - 000003446 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2019-11-05 19:07 - 2018-01-19 20:27 - 000000000 ____D C:\Program Files (x86)\Google 2019-11-04 18:20 - 2018-07-10 12:08 - 000000000 ____D C:\ProgramData\Packages 2019-11-04 17:56 - 2019-09-22 20:25 - 000001910 _____ C:\Users\piotr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent Web.lnk 2019-11-03 18:17 - 2018-02-28 01:26 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2019-10-27 13:37 - 2018-02-09 19:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2019-10-27 13:37 - 2018-02-09 19:13 - 000000000 ____D C:\Program Files (x86)\Java 2019-10-27 13:35 - 2018-02-09 19:13 - 000114232 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll 2019-10-24 21:04 - 2018-10-25 06:03 - 000001040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 14.lnk 2019-10-22 20:13 - 2019-06-21 23:17 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3263289190-3195042681-1667729281-1001 2019-10-22 20:13 - 2019-06-21 16:25 - 000002456 _____ C:\Users\piotr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2019-10-17 21:00 - 2018-02-27 19:55 - 000000000 ____D C:\Users\Paulina\AppData\Local\Adobe 2019-10-17 20:52 - 2018-06-05 23:24 - 000000000 ____D C:\Users\Paulina\AppData\Local\PlaceholderTileLogoFolder 2019-10-17 20:49 - 2018-01-19 21:18 - 000000000 ___RD C:\Users\Paulina\3D Objects 2019-10-17 20:49 - 2018-01-19 19:45 - 000000000 __RHD C:\Users\Public\AccountPictures 2019-10-17 19:33 - 2019-06-21 23:17 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2019-10-17 19:16 - 2018-02-09 18:50 - 000000000 ____D C:\Users\piotr\AppData\Local\Adobe ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================