Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x86) Wersja: 15-07-2019 01 Uruchomiony przez domek (administrator) DOMEK-KOMPUTER (27-07-2019 16:24:47) Uruchomiony z C:\Users\domek\Downloads Załadowane profile: domek (Dostępne profile: domek) Platform: Microsoft Windows 7 Ultimate (X86) Język: Polski (Polska) Internet Explorer Wersja 8 (Domyślna przeglądarka: "C:\Users\domek\AppData\Local\Chromium\Application\chrome.exe" -- "%1") Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe (AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe (AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe (Microsoft Dynamic Code Publisher -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Raid\nvraidservice.exe (Opera Software AS -> Opera Software) C:\Program Files\Opera\assistant\browser_assistant.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe ==================== Rejestr (filtrowane) =========================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [] => [X] HKLM\...\Run: [Opera Browser Assistant] => c:\program files\opera\assistant\browser_assistant.exe [2299928 2019-07-24] (Opera Software AS -> Opera Software) HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [35184 2008-12-03] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [644552 2019-07-04] (Oracle America, Inc. -> Oracle Corporation) HKLM\...\Run: [NVRaidService] => C:\Program Files\NVIDIA Corporation\Raid\nvraidservice.exe [163944 2010-04-09] (NVIDIA Corporation -> NVIDIA Corporation) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [232840 2019-07-24] (AVAST Software s.r.o. -> AVAST Software) HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA HKU\S-1-5-21-277453888-570060768-2425459040-1000\...\Run: [Chromium] => "c:\users\domek\appdata\local\chromium\application\chrome.exe" --auto-launch-at-startup --profile-directory="Default" --restore-last-session HKU\S-1-5-21-277453888-570060768-2425459040-1000\...\Run: [GoogleChromeAutoLaunch_A3246F1F2E461CDFDB18962774438A23] => "C:\Users\domek\AppData\Local\chromium\Application\chrome.exe" --no-startup-window /prefetch:5 HKU\S-1-5-21-277453888-570060768-2425459040-1000\...\Run: [MinerGateGui] => C:\Program Files\MinerGate\minergate.exe --auto HKU\S-1-5-21-277453888-570060768-2425459040-1000\...\Run: [Spotify] => C:\Users\domek\AppData\Roaming\Spotify\Spotify.exe [25591712 2019-07-03] (Spotify AB -> Spotify Ltd) HKU\S-1-5-21-277453888-570060768-2425459040-1000\...\Run: [Steam] => "C:\Program Files\Steam\steam.exe" -silent HKU\S-1-5-21-277453888-570060768-2425459040-1000\...\Policies\Explorer: [DisallowCpl] 1 HKU\S-1-5-21-277453888-570060768-2425459040-1000\...\MountPoints2: {44e5c3ce-4303-11e9-adfd-001fc6d8d7e0} - F:\HiSuiteDownLoader.exe HKU\S-1-5-21-277453888-570060768-2425459040-1000\...\MountPoints2: {99596f90-8323-11e9-ab62-001fc6d8d7e0} - F:\HiSuiteDownLoader.exe HKU\S-1-5-21-277453888-570060768-2425459040-1000\...\MountPoints2: {db704227-264e-11e5-b06d-806e6f6e6963} - E:\autorun.exe HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\system32\frapsvid.dll [94208 2015-09-05] (Beepa P/L) [Brak podpisu cyfrowego] HKLM\...\Drivers32: [VIDC.FICV] => C:\Windows\system32\ficvdec_x86.dll [641024 2013-05-28] () [Brak podpisu cyfrowego] HKLM\...\Drivers32: [vidc.iv50] => C:\PROGRA~1\PWN\BIOLGEOE\Ir50_32.dll HKLM\...\Drivers32: [vidc.mjpg] => C:\Windows\system32\bdmjpeg.dll [71152 2017-01-26] (Bandicam Company -> ) HKLM\...\Drivers32: [vidc.mpeg] => C:\Windows\system32\bdmpegv.dll [71176 2017-01-26] (Bandicam Company -> ) HKLM\...\Drivers32: [msacm.bdmpeg] => C:\Windows\system32\bdmpega.acm [71176 2017-01-26] (Bandicam Company -> ) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\75.0.3770.100\Installer\chrmstp.exe [2019-06-19] (Google LLC -> Google LLC) FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {01224B97-6982-4875-B1E3-6C98032A1FDA} - System32\Tasks\{135ACD48-88B7-4181-84C2-5EC8EF5FEC10} => C:\ProgramData\Adobe\flashplayer32pp_xa_install (1).exe Task: {1751EC3E-1A2E-4A91-82EB-8E37B3BAF367} - System32\Tasks\{82A99231-BCC3-490B-8F5C-74982F29611E} => C:\Windows\system32\pcalua.exe -a C:\Windows\IsUn0415.exe -c -f"C:\Program Files\PWN\BIOLGEOE\Uninst.isu" Task: {34AD8183-51A5-463B-9504-5E9343A2633E} - System32\Tasks\{1CB127E7-151A-4318-AF57-E8533B60170D} => C:\Windows\system32\pcalua.exe -a C:\Users\domek\Downloads\chromeinstall-8u211.exe -d C:\Users\domek\Downloads Task: {3B66255F-8983-46F5-A598-21473EA6BF60} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Command(3): %windir%\system32\rundll32.exe -> aepdu.dll,AePduRunUpdate -nolegacy Task: {3EFEDE96-2009-4EC9-9D9C-B69A3284A2D1} - System32\Tasks\{655B04CE-341D-42B2-A5C6-1F62F9D99D1B} => C:\Games\MinecraftLauncher.exe [2179456 2019-07-16] (Mojang AB -> Mojang) Task: {477DF207-08FE-4968-8069-CCAB522D75F3} - System32\Tasks\Games\UpdateCheck_S-1-5-21-277453888-570060768-2425459040-1000 => {CA22F5B1-E06F-4A2B-94FC-21E87FE53781} C:\Windows\System32\gameux.dll [2576384 2009-07-14] (Microsoft Windows -> Microsoft Corporation) Task: {4D174C72-419B-4A6B-8846-7A48022F0BF4} - System32\Tasks\{BB66791D-083B-4B8E-9B0C-F893918DA4E7} => C:\Program Files\Minecraft\MinecraftLauncher.exe Task: {54D3BD35-7D37-4F39-9C68-D88F47347C89} - System32\Tasks\e-pity2017_styczen => C:\Program Files\e-file\e-pity\Assets\signxml.exe Task: {5ABFC129-049A-4AAB-97DF-6FC967FE1B10} - System32\Tasks\{929508E5-BE89-4EE1-92EE-6E62A1F0CCA0} => C:\ProgramData\Adobe\flashplayer32pp_xa_install (1).exe Task: {7F40A2CB-F5B9-4CAD-A7CF-D26AB236F0CC} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Command(1): %windir%\system32\rundll32.exe -> aepdu.dll,AePduRunUpdate Task: {7F40A2CB-F5B9-4CAD-A7CF-D26AB236F0CC} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Command(2): %windir%\system32\rundll32.exe -> invagent.dll,RunUpdate -noappraiser Task: {816F239F-9BAF-4BD9-A2B2-63B9F757051C} - System32\Tasks\{D0AEAB90-A22A-45F3-A8DE-6F67C7DF6A7A} => C:\Windows\system32\pcalua.exe -a C:\Users\domek\Downloads\GSAutoClicker-Setup.exe -d C:\Users\domek\Downloads Task: {8F4AFFFB-F0A0-4712-BCC9-2270DD99AE3E} - System32\Tasks\Opera scheduled assistant Autoupdate 1553601564 => c:\program files\opera\launcher.exe [1348120 2019-07-24] (Opera Software AS -> Opera Software) Task: {8FFA7CB4-F5A8-4ED8-B020-DA24CC3806D8} - System32\Tasks\e-pity2017_kwiecien => C:\Program Files\e-file\e-pity\Assets\signxml.exe Task: {984B442D-523E-4B89-8094-A10DF2AE43E4} - System32\Tasks\{76C7857B-4C95-4572-9076-2248E99D8DE6} => C:\Program Files\Steam\Steam.exe Task: {A268201E-EF7A-4CF0-9215-ABB77861D995} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [107848 2015-07-09] (Google Inc -> Google Inc.) Task: {A8E45FEE-E8D9-4137-90C3-7896BCB974D2} - System32\Tasks\Overwolf Updater Task => C:\Program Files\Overwolf\OverwolfUpdater.exe [1967432 2018-07-01] (Overwolf Ltd -> Overwolf LTD) Task: {AE7D2EC7-F9BC-437C-A14C-C6E72A84651A} - \TweakBit\PCRepairKit\Start PCRepairKit show scan results notification -> Brak pliku <==== UWAGA Task: {B2D44C92-9FEA-481D-9FAF-EA4C2EB9278C} - System32\Tasks\{DA17682B-EDFB-48FF-B5E7-37DD29AEFCA4} => C:\Windows\system32\pcalua.exe -a "C:\Users\domek\Downloads\ModLoader Installer (3).exe" -d C:\Users\domek\Downloads Task: {C5FE8C6E-6A82-4DCE-AF1B-EEADF08309D8} - System32\Tasks\CCleaner Update => C:\CCUpdate.exe [619416 2019-07-11] (Piriform Software Ltd -> Piriform Software Ltd) Task: {C63A2DDD-A0D4-4E2D-BEB7-395813FD1290} - System32\Tasks\{7E44BCD4-FFDC-4A94-8A18-E43EA6218A4C} => D:\gry\Sports Interactive\Football Manager 2015\fm.exe Task: {D49EFF5E-C30B-46B4-945E-C95198034789} - System32\Tasks\{4630EA9C-F509-4382-97F1-06657BAFC4EE} => C:\CCleaner.exe [16835256 2019-07-11] (Piriform Software Ltd -> Piriform Software Ltd) Task: {D58D5FA3-C3E1-4E22-81BC-F09D6C04E8E0} - System32\Tasks\{1B2A754D-D749-4D18-90AB-A5D7A9407BA1} => C:\CCleaner.exe [16835256 2019-07-11] (Piriform Software Ltd -> Piriform Software Ltd) Task: {DE21C0E8-EE2C-44EE-9368-DCBE92C99E57} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [107848 2015-07-09] (Google Inc -> Google Inc.) Task: {E2340924-D150-4321-8738-667820BD06BA} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3228552 2019-07-24] (AVAST Software s.r.o. -> AVAST Software) Task: {E4FC0C71-B639-4C48-AD4F-734CE192D36A} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe Task: {ED513BF5-C36D-4204-90DC-51CF31628BCB} - System32\Tasks\Opera scheduled Autoupdate 1471958112 => c:\program files\opera\launcher.exe [1348120 2019-07-24] (Opera Software AS -> Opera Software) Task: {F15FE21C-D5DD-4DE9-9753-F772B92EAE5A} - \Chromium metar -> Brak pliku <==== UWAGA Task: {F6A10084-E0B6-4C0C-B3C4-AD0A0954DD5D} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1913648 2019-07-24] (AVAST Software s.r.o. -> AVAST Software) Task: {F913DFAA-9B98-4E69-B9AC-A321B74BE22C} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 194.204.152.34 194.204.159.1 Tcpip\..\Interfaces\{D4C5DE6B-82BE-414F-92B2-D09C86125DB7}: [NameServer] 194.204.152.34,194.204.159.1 Tcpip\..\Interfaces\{D4C5DE6B-82BE-414F-92B2-D09C86125DB7}: [DhcpNameServer] 194.204.152.34 194.204.159.1 Internet Explorer: ================== HKU\S-1-5-21-277453888-570060768-2425459040-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.web-pl.com/ HKU\S-1-5-21-277453888-570060768-2425459040-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pl-pl/?ocid=iehp SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-277453888-570060768-2425459040-1000 -> DefaultScope {A7B030C1-8701-401F-A67B-52F157F8CAF9} URL = hxxp://www.web-pl.com/search?q={searchTerms} SearchScopes: HKU\S-1-5-21-277453888-570060768-2425459040-1000 -> {A7B030C1-8701-401F-A67B-52F157F8CAF9} URL = hxxp://www.web-pl.com/search?q={searchTerms} BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_221\bin\ssv.dll [2019-07-20] (Oracle America, Inc. -> Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_221\bin\jp2ssv.dll [2019-07-20] (Oracle America, Inc. -> Oracle Corporation) FireFox: ======== FF Plugin: @java.com/DTPlugin,version=11.221.2 -> C:\Program Files\Java\jre1.8.0_221\bin\dtplugin\npDeployJava1.dll [2019-07-20] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.221.2 -> C:\Program Files\Java\jre1.8.0_221\bin\plugin2\npjp2.dll [2019-07-20] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-16] (Google Inc -> Google LLC) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-16] (Google Inc -> Google LLC) FF Plugin HKU\S-1-5-21-277453888-570060768-2425459040-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\domek\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2017-05-18] (Unity Technologies SF -> Unity Technologies ApS) FF Plugin HKU\S-1-5-21-277453888-570060768-2425459040-1000: ubisoft.com/uplaypc -> C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [Brak pliku] Chrome: ======= CHR DefaultProfile: Profile 2 CHR Profile: C:\Users\domek\AppData\Local\Google\Chrome\User Data\Default [2019-06-22] CHR Extension: (Prezentacje Google) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-07-09] CHR Extension: (Dokumenty Google) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-07-09] CHR Extension: (Dysk Google) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-23] CHR Extension: (YouTube) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25] CHR Extension: (Google Search) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28] CHR Extension: (Arkusze Google) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-07-09] CHR Extension: (Dokumenty Google offline) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-17] CHR Extension: (Avast Online Security) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-03-04] CHR Extension: (Brak nazwy) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Default\Extensions\mallpejgeafdahhflmliiahjdpgbegpk [2017-02-09] CHR Extension: (PConverter) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen [2016-09-30] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-09] CHR Extension: (Gmail) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-07-09] CHR Extension: (Chrome Media Router) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-07] CHR Profile: C:\Users\domek\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-06-22] CHR Profile: C:\Users\domek\AppData\Local\Google\Chrome\User Data\Profile 1 [2019-06-22] CHR Extension: (Dokumenty Google) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2017-03-29] CHR Extension: (Dysk Google) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-03-29] CHR Extension: (YouTube) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-03-29] CHR Extension: (Dokumenty Google offline) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-03-29] CHR Extension: (Avast Online Security) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-03-29] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-29] CHR Extension: (Gmail) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-03-29] CHR Extension: (Chrome Media Router) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-03-29] CHR Profile: C:\Users\domek\AppData\Local\Google\Chrome\User Data\Profile 2 [2019-07-27] CHR Extension: (Prezentacje) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13] CHR Extension: (Dokumenty) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13] CHR Extension: (Dysk Google) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-03-29] CHR Extension: (YouTube) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-03-29] CHR Extension: (Adblock Plus - darmowy adblocker) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-06-01] CHR Extension: (Social Blade) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\cfidkbgamfhdgmedldkagjopnbobdmdn [2019-04-25] [UpdateUrl:hxxps://addon.socialblade.com/updates.json] <==== UWAGA CHR Extension: (Arkusze) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13] CHR Extension: (Dokumenty Google offline) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-21] CHR Extension: (Avast Online Security) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gomekmidlodglbbmalcneegieacbdmki [2019-07-16] CHR Extension: (Black red shards) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\jpjlkkaalgfbbegfnjoclhfidancjpch [2019-05-30] CHR Extension: (Discord Screen Sharing) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lcbhdgefieegnkbopmgklhlpjjdgmbog [2018-09-04] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03] CHR Extension: (Gmail) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-29] CHR Extension: (Chrome Media Router) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-06-06] CHR Profile: C:\Users\domek\AppData\Local\Google\Chrome\User Data\Profile 3 [2019-07-16] CHR Extension: (Prezentacje) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-09-08] CHR Extension: (Dokumenty) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake [2018-09-08] CHR Extension: (Dysk Google) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-09-08] CHR Extension: (YouTube) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-09-08] CHR Extension: (Avira Password Manager) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2019-07-16] CHR Extension: (Avast SafePrice | Porównania, promocje, kupony) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2019-07-16] CHR Extension: (MySearch) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\fcebahaopmklkfaaacddffiomjjldmkk [2019-02-05] CHR Extension: (Arkusze) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-09-08] CHR Extension: (Avira Browser Safety) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2019-07-16] CHR Extension: (Dokumenty Google offline) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-11-26] CHR Extension: (Avast Online Security) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\gomekmidlodglbbmalcneegieacbdmki [2019-07-16] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-09-08] CHR Extension: (e-pity - dodatek) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ofoeigeaodhbjogdigckajfhjbonaofg [2018-09-08] CHR Extension: (Gmail) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-07-16] CHR Extension: (Chrome Media Router) - C:\Users\domek\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-07-16] CHR Profile: C:\Users\domek\AppData\Local\Google\Chrome\User Data\System Profile [2019-06-22] CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx CHR HKLM\...\Chrome\Extension: [fcebahaopmklkfaaacddffiomjjldmkk] - hxxps://clients2.google.com/service/update2/crx CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx CHR HKLM\...\Chrome\Extension: [ofoeigeaodhbjogdigckajfhjbonaofg] - hxxps://clients2.google.com/service/update2/crx CHR HKU\S-1-5-21-277453888-570060768-2425459040-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcebahaopmklkfaaacddffiomjjldmkk] - hxxps://clients2.google.com/service/update2/crx ==================== Usługi (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5551168 2019-07-24] (AVAST Software s.r.o. -> AVAST Software) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [365048 2019-07-24] (AVAST Software s.r.o. -> AVAST Software) S3 EasyAntiCheat; C:\Program Files\EasyAntiCheat\EasyAntiCheat.exe [779392 2019-01-24] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) S3 OverwolfUpdater; C:\Program Files\Overwolf\OverwolfUpdater.exe [1967432 2018-07-01] (Overwolf Ltd -> Overwolf LTD) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-14] (Microsoft Windows -> Microsoft Corporation) S2 HiPatchService; C:\Program Files\Hi-Rez Studios\HiPatchService.exe [X] R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 ===================== Sterowniki (filtrowane) ====================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [34696 2019-07-24] (AVAST Software s.r.o. -> AVAST Software) R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [174472 2019-07-24] (AVAST Software s.r.o. -> AVAST Software) R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [225816 2019-07-24] (AVAST Software s.r.o. -> AVAST Software) R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [171216 2019-07-24] (AVAST Software s.r.o. -> AVAST Software) R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [56504 2019-07-24] (AVAST Software s.r.o. -> AVAST Software) R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [214944 2019-07-24] (AVAST Software s.r.o. -> AVAST Software) R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [40904 2019-07-24] (AVAST Software s.r.o. -> AVAST Software) R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [140080 2019-07-24] (AVAST Software s.r.o. -> AVAST Software) R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [101192 2019-07-24] (AVAST Software s.r.o. -> AVAST Software) R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [73008 2019-07-24] (AVAST Software s.r.o. -> AVAST Software) R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [783232 2019-07-24] (AVAST Software s.r.o. -> AVAST Software) R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [403952 2019-07-24] (AVAST Software s.r.o. -> AVAST Software) R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [167576 2019-07-24] (AVAST Software s.r.o. -> AVAST Software) R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [312976 2019-07-25] (AVAST Software s.r.o. -> AVAST Software) R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO32.SYS [23840 2019-07-09] (Martin Malik - REALiX -> REALiX(tm)) R1 ISODrive; C:\Program Files\UltraISO\drivers\ISODrive.sys [82168 2013-11-21] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.) R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [5810 2004-08-13] (Microsoft Windows Hardware Compatibility Publisher -> ) U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [48128 2009-07-14] (Microsoft Windows -> Microsoft Corporation) U1 aswbdisk; Brak ImagePath S3 BstkDrv; \??\C:\Program Files\BlueStacks\BstkDrv.sys [X] S4 nvvad_WaveExtensible; system32\drivers\nvvad32v.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-07-27 16:24 - 2019-07-27 16:26 - 000028910 _____ C:\Users\domek\Downloads\FRST.txt 2019-07-27 16:24 - 2019-07-27 16:24 - 000000000 ____D C:\FRST 2019-07-27 16:23 - 2019-07-27 16:23 - 001446912 _____ (Farbar) C:\Users\domek\Downloads\FRST.exe 2019-07-27 07:25 - 2019-07-27 07:25 - 002121708 _____ C:\Users\domek\Downloads\WorldEdit-Fabric-1.14.4.jar 2019-07-27 07:17 - 2019-07-27 07:17 - 070788584 _____ (Twitch Interactive, Inc.) C:\Users\domek\Downloads\TwitchSetup_[usher-414964160].exe 2019-07-27 07:14 - 2019-07-27 07:14 - 000000000 ____D C:\Users\domek\AppData\Local\CrystalLauncherInstaller 2019-07-27 06:47 - 2019-07-27 06:47 - 000003288 ____N C:\bootsqm.dat 2019-07-26 22:24 - 2019-07-26 22:29 - 000000000 ____D C:\Users\domek\AppData\Roaming\Steam 2019-07-26 22:24 - 2019-07-26 22:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam 2019-07-26 22:12 - 2019-07-26 22:12 - 000000000 ____D C:\Program Files\Common Files\Oracle 2019-07-26 18:53 - 2018-03-25 18:19 - 001102696 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco3239135.dll 2019-07-26 18:53 - 2018-03-25 18:19 - 000971352 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco3239135.dll 2019-07-26 18:53 - 2018-03-25 18:11 - 011132384 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll 2019-07-26 18:53 - 2018-03-25 18:11 - 000902096 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll 2019-07-26 18:30 - 2019-07-26 18:30 - 000000000 ____D C:\Users\Public\Documents\Downloaded Installers 2019-07-26 18:30 - 2019-07-26 18:30 - 000000000 ____D C:\Users\domek\AppData\Local\AVAST Software 2019-07-26 18:30 - 2019-07-26 18:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Driver Updater 2019-07-26 18:30 - 2019-07-26 18:30 - 000000000 ____D C:\Program Files\Avast Driver Updater 2019-07-26 18:26 - 2019-07-26 18:30 - 000000000 ____D C:\Users\domek\AppData\Roaming\Easeware 2019-07-26 17:51 - 2009-10-10 04:57 - 000012800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffp_sd.sys 2019-07-26 17:50 - 2010-10-16 06:36 - 000314368 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll 2019-07-26 17:50 - 2010-01-09 08:52 - 000132608 _____ (Microsoft Corporation) C:\Windows\system32\cabview.dll 2019-07-26 17:50 - 2009-12-29 08:55 - 000172032 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll 2019-07-25 16:40 - 2019-07-25 16:39 - 000312976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys 2019-07-24 23:27 - 2019-07-24 23:27 - 011543640 _____ (Adobe) C:\Users\domek\AdobeAIRInstaller.exe 2019-07-24 23:19 - 2019-07-24 23:19 - 000000000 ____D C:\Users\domek\AppData\Roaming\AVAST Software 2019-07-24 23:19 - 2019-07-24 23:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software 2019-07-24 23:17 - 2019-07-24 23:17 - 000783232 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys 2019-07-24 23:17 - 2019-07-24 23:17 - 000403952 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys 2019-07-24 23:17 - 2019-07-24 23:17 - 000312200 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2019-07-24 23:17 - 2019-07-24 23:17 - 000214944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHdsKe.sys 2019-07-24 23:17 - 2019-07-24 23:17 - 000174472 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys 2019-07-24 23:17 - 2019-07-24 23:17 - 000167576 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys 2019-07-24 23:17 - 2019-07-24 23:17 - 000140080 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys 2019-07-24 23:17 - 2019-07-24 23:17 - 000101192 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2019-07-24 23:17 - 2019-07-24 23:17 - 000073008 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys 2019-07-24 23:17 - 2019-07-24 23:17 - 000040904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys 2019-07-24 23:17 - 2019-07-24 23:17 - 000034696 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys 2019-07-24 23:17 - 2019-07-24 23:17 - 000000000 ____D C:\Program Files\Common Files\AVAST Software 2019-07-24 23:17 - 2019-07-24 23:16 - 000225816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys 2019-07-24 23:17 - 2019-07-24 23:16 - 000171216 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys 2019-07-24 23:17 - 2019-07-24 23:16 - 000056504 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys 2019-07-24 23:16 - 2019-07-24 23:16 - 000000000 ____D C:\Program Files\AVAST Software 2019-07-24 22:49 - 2019-07-24 23:08 - 000000121 _____ C:\Windows\Reimage.ini 2019-07-24 22:16 - 2019-07-24 22:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller 2019-07-24 22:16 - 2019-07-24 22:16 - 000000000 ____D C:\Program Files\VS Revo Group 2019-07-24 22:08 - 2019-07-25 02:37 - 000000000 ____D C:\Program Files\Epic Games 2019-07-24 22:08 - 2019-07-24 22:08 - 000001220 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk 2019-07-24 01:40 - 2019-07-24 01:40 - 000000000 ____D C:\Users\domek\MC 2019-07-23 22:53 - 2019-07-23 22:59 - 000000000 ____D C:\Users\domek\SP1 2019-07-23 21:19 - 2019-07-23 21:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2019-07-23 21:17 - 2009-11-11 15:16 - 000729600 _____ (NVIDIA Corporation) C:\Windows\system32\cohelper.dll 2019-07-23 21:17 - 2009-11-11 09:22 - 000009548 _____ C:\Windows\system32\Drivers\nvphy.bin 2019-07-23 21:16 - 2009-11-11 11:37 - 000592488 _____ (NVIDIA Corporation) C:\Windows\system32\NVUNINST.EXE 2019-07-20 20:57 - 2019-07-20 20:57 - 000000000 ____D C:\Program Files\Common Files\Java 2019-07-16 22:14 - 2019-07-16 22:16 - 000000000 ___HD C:\$WINDOWS.~BT 2019-07-15 20:03 - 2019-07-15 20:03 - 000001038 _____ C:\Users\Public\Desktop\Przeglądarka Opera.lnk 2019-07-11 21:15 - 2019-07-16 22:16 - 000001908 _____ C:\Windows\diagwrn.xml 2019-07-11 21:15 - 2019-07-16 22:16 - 000001908 _____ C:\Windows\diagerr.xml 2019-07-11 20:43 - 2019-07-11 20:43 - 000000000 ___HD C:\$Windows.~WS 2019-07-11 17:04 - 2019-07-11 17:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID 2019-07-11 17:04 - 2019-07-11 17:04 - 000000000 ____D C:\Program Files\CPUID 2019-07-11 13:32 - 2019-07-11 13:32 - 000950376 _____ (Piriform Software Ltd) C:\uninst.exe 2019-07-11 13:30 - 2019-07-11 13:30 - 000619416 _____ (Piriform Software Ltd) C:\CCUpdate.exe 2019-07-11 13:29 - 2019-07-11 13:29 - 016835256 _____ (Piriform Software Ltd) C:\CCleaner.exe 2019-07-10 16:44 - 2019-07-10 16:44 - 000000000 ____D C:\Users\domek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder 2019-07-09 21:06 - 2019-07-09 21:06 - 000000000 ____D C:\ProgramData\Microsoft Visual Studio 2019-07-09 20:55 - 2019-07-09 20:55 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 9.lnk 2019-07-09 20:55 - 2019-07-09 20:55 - 000000000 ____D C:\Program Files\Common Files\Adobe 2019-07-09 16:38 - 2019-07-09 16:38 - 000192328 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda32v.sys 2019-07-09 16:38 - 2019-07-09 16:38 - 000050168 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap32.dll 2019-07-09 16:27 - 2019-07-09 16:48 - 000000000 ____D C:\ProgramData\ProductData 2019-07-09 16:26 - 2019-07-09 16:27 - 000000000 ____D C:\Users\domek\AppData\LocalLow\IObit 2019-07-09 16:26 - 2019-07-09 16:26 - 000023840 _____ (REALiX(tm)) C:\Windows\system32\Drivers\HWiNFO32.SYS 2019-07-09 16:25 - 2019-07-24 12:19 - 000000000 ____D C:\ProgramData\IObit 2019-07-09 15:51 - 2019-07-09 15:51 - 000001124 _____ C:\Users\domek\Desktop\WoT EU.lnk 2019-07-07 00:07 - 2019-07-07 00:08 - 000000000 ___DC C:\Users\domek\AppData\Local\MigWiz 2019-07-04 17:54 - 2019-07-27 16:18 - 000000000 ____D C:\Users\domek\Desktop\MC 2019-07-04 15:01 - 2019-07-20 20:48 - 000000000 ___HD C:\Windows\msdownld.tmp 2019-07-04 15:01 - 2019-07-20 20:48 - 000000000 ____D C:\Windows\system32\directx 2019-07-04 14:44 - 2018-03-24 00:56 - 000469392 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll 2019-07-04 14:44 - 2018-03-24 00:56 - 000082560 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll 2019-07-04 14:43 - 2019-07-04 14:43 - 000000000 ____D C:\Windows\system32\Drivers\NVIDIA Corporation 2019-07-04 14:43 - 2018-03-24 01:50 - 000001951 _____ C:\Windows\NvContainerRecovery.bat 2019-07-04 14:27 - 2018-03-24 03:17 - 000000669 _____ C:\Windows\system32\nv-vk32.json 2019-07-04 14:11 - 2019-07-23 21:16 - 000000000 ____D C:\NVIDIA 2019-06-27 15:07 - 2012-10-15 16:46 - 000118784 _____ (Microsoft Corporation) C:\Windows\system32\MSSTDFMT.DLL 2019-06-27 11:55 - 2019-06-27 11:55 - 000000928 _____ C:\Users\domek\Desktop\EE-AOC.lnk ==================== Jeden miesiąc (zmodyfikowane) ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-07-27 16:10 - 2015-07-09 18:16 - 000000000 ____D C:\ProgramData\NVIDIA 2019-07-27 16:10 - 2009-07-14 06:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2019-07-27 12:53 - 2009-07-14 06:34 - 000009584 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2019-07-27 12:53 - 2009-07-14 06:34 - 000009584 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2019-07-27 10:54 - 2018-10-20 17:45 - 000000000 ____D C:\Users\domek\AppData\Local\Spotify 2019-07-27 10:53 - 2019-06-16 13:34 - 000000000 ____D C:\Users\domek\AppData\Roaming\Spotify 2019-07-27 06:53 - 2016-03-18 12:58 - 000007608 _____ C:\Users\domek\AppData\Local\Resmon.ResmonCfg 2019-07-26 22:12 - 2015-07-13 18:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2019-07-26 22:12 - 2015-07-13 18:42 - 000000000 ____D C:\Program Files\Java 2019-07-26 22:10 - 2018-02-08 22:36 - 000000000 ____D C:\Games 2019-07-26 21:30 - 2015-07-09 17:37 - 001642188 _____ C:\Windows\system32\PerfStringBackup.INI 2019-07-26 21:30 - 2009-07-19 13:23 - 000740422 _____ C:\Windows\system32\perfh015.dat 2019-07-26 21:30 - 2009-07-19 13:23 - 000155996 _____ C:\Windows\system32\perfc015.dat 2019-07-26 21:30 - 2009-07-14 04:37 - 000000000 ____D C:\Windows\inf 2019-07-26 18:58 - 2015-07-09 18:05 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2019-07-26 18:53 - 2015-07-09 18:06 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2019-07-25 16:54 - 2015-07-09 17:34 - 000000000 ____D C:\Users\domek 2019-07-24 23:23 - 2016-08-23 15:14 - 000000000 ____D C:\Program Files\Opera 2019-07-24 23:15 - 2015-07-09 18:31 - 000000000 ____D C:\ProgramData\AVAST Software 2019-07-24 22:08 - 2019-05-30 22:11 - 000000000 ____D C:\Users\domek\AppData\Local\EpicGamesLauncher 2019-07-24 01:40 - 2019-03-17 03:01 - 005701814 _____ (Shiginima) C:\Users\domek\Desktop\Minecraft S.exe 2019-07-23 22:03 - 2015-08-20 12:46 - 000000000 ____D C:\Users\domek\AppData\Local\ElevatedDiagnostics 2019-07-23 22:03 - 2009-07-14 04:37 - 000000000 ____D C:\Windows\system32\NDF 2019-07-23 21:19 - 2019-06-12 22:06 - 000000000 ___HD C:\Program Files\InstallShield Installation Information 2019-07-20 21:35 - 2009-07-14 04:37 - 000000000 ____D C:\Windows\system32\config\Journal 2019-07-20 21:30 - 2015-07-09 18:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip 2019-07-20 21:12 - 2015-09-27 13:10 - 000000000 ____D C:\Users\domek\AppData\Local\Adobe 2019-07-20 20:57 - 2015-07-13 18:43 - 000096240 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll 2019-07-16 22:27 - 2017-07-19 16:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com 2019-07-16 22:21 - 2019-03-23 23:54 - 000000000 ____D C:\GOG Games 2019-07-16 22:18 - 2016-05-29 08:46 - 000000000 ____D C:\Program Files\Common Files\Adobe AIR 2019-07-16 22:17 - 2015-09-27 13:10 - 000000000 ____D C:\Users\domek\AppData\Roaming\Adobe 2019-07-16 22:16 - 2015-07-10 03:05 - 000000000 ____D C:\Windows\Panther 2019-07-10 16:51 - 2015-07-23 17:10 - 133475400 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2019-07-10 16:51 - 2015-07-23 17:10 - 000000000 ____D C:\Windows\system32\MRT 2019-07-10 15:42 - 2015-07-09 18:25 - 000000000 ____D C:\Program Files\7-Zip 2019-07-09 21:42 - 2015-07-20 16:19 - 000000000 ____D C:\Users\domek\AppData\Roaming\MPC-HC 2019-07-09 20:56 - 2015-11-02 18:07 - 000000000 ____D C:\Program Files\Adobe 2019-07-09 20:55 - 2015-09-07 17:12 - 000000000 ____D C:\ProgramData\Adobe 2019-07-09 19:42 - 2015-07-11 14:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EasyBoot 2019-07-09 16:38 - 2015-07-09 18:06 - 000979456 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco3220103.dll 2019-07-09 14:44 - 2015-09-21 16:49 - 000000000 ____D C:\ProgramData\Package Cache 2019-07-09 14:36 - 2009-07-14 04:37 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2019-07-05 17:20 - 2015-07-11 13:45 - 000000000 ____D C:\Program Files\WinRAR 2019-07-04 14:28 - 2015-07-09 18:18 - 000000000 ____D C:\Users\domek\AppData\Local\NVIDIA 2019-07-04 14:27 - 2015-07-09 18:18 - 000000000 ____D C:\Users\domek\AppData\Local\NVIDIA Corporation 2019-07-04 13:42 - 2016-08-23 15:15 - 000001104 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Przeglądarka Opera.lnk 2019-07-04 13:40 - 2016-10-16 12:37 - 000000000 ____D C:\Users\domek\AppData\Local\CrashDumps 2019-06-27 15:18 - 2016-09-19 03:59 - 000004608 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll 2019-06-27 15:17 - 2016-09-09 19:21 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll 2019-06-27 15:16 - 2016-10-12 13:09 - 000014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll 2019-06-27 15:15 - 2017-05-15 15:28 - 000011168 _____ (Microsoft Corporation) C:\Windows\system32\API-MS-Win-core-file-l2-1-0.dll 2019-06-27 11:29 - 2015-11-13 17:18 - 000000000 ____D C:\Users\domek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam ==================== Pliki w katalogu głównym wybranych folderów ================ 2019-07-24 23:27 - 2019-07-24 23:27 - 011543640 _____ (Adobe) C:\Users\domek\AdobeAIRInstaller.exe 2019-01-30 13:40 - 2019-01-31 10:31 - 000000047 _____ () C:\Users\domek\AppData\Roaming\.crystalinst 2018-07-06 13:06 - 2018-10-17 17:41 - 000000140 _____ () C:\Users\domek\AppData\Roaming\WB.CFG 2018-07-30 15:22 - 2018-07-30 15:22 - 000000000 _____ () C:\Users\domek\AppData\Local\BIT96AA.tmp 2018-12-09 19:22 - 2018-12-09 19:22 - 000002271 _____ () C:\Users\domek\AppData\Local\recently-used.xbel 2016-03-18 12:58 - 2019-07-27 06:53 - 000007608 _____ () C:\Users\domek\AppData\Local\Resmon.ResmonCfg ==================== SigCheck =============================== (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) LastRegBack: 2019-07-15 21:15 ==================== Koniec FRST.txt ============================