Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 05.04.2024 Uruchomiony przez Grzechu (administrator) VICEK (06-04-2024 06:33:37) Uruchomiony z C:\Users\Grzechu\Downloads\FRST64.exe Załadowane profile: Grzechu Platforma: Microsoft Windows 7 Ultimate Service Pack 1 (X64) Język: Polski (Polska) Domyślna przeglądarka: FF Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\AVGUI.exe <4> (C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe ->) (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe (C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe ->) (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe (C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe ->) (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) C:\Program Files (x86)\360\Total Security\safemon\PopWndLog.exe (C:\Program Files (x86)\Dell\Dell Display Manager\ddm.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler.exe (C:\Program Files (x86)\Dell\Dell Display Manager\ddm.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler64.exe (C:\Program Files\AVG\Antivirus\AVGSvc.exe ->) (AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\aswEngSrv.exe (C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (C:\Users\Grzechu\AppData\Local\GG\Application\gghub.exe ->) (Xevin Consulting -> GG Network S.A.) C:\Users\Grzechu\AppData\Local\GG\Application\ggapp.exe (explorer.exe ->) (EnTech Taiwan -> EnTech Taiwan) C:\Program Files (x86)\Dell\Dell Display Manager\ddm.exe (explorer.exe ->) (GG Network S.A. -> GG Network S.A.) C:\Users\Grzechu\AppData\Local\GG\Application\gghub.exe (explorer.exe ->) (IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe (explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (explorer.exe ->) (SocialChain Inc -> Socialchain Inc.) C:\Users\Grzechu\AppData\Local\Programs\pi-network-desktop\Pi Network.exe <4> (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <19> (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe (services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe (services.exe ->) (AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\afwServ.exe (services.exe ->) (AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\AVGSvc.exe (services.exe ->) (AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\avgToolsSvc.exe (services.exe ->) (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe (services.exe ->) (DEVGURU CO LTD -> DEVGURU Co., LTD.) C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe (services.exe ->) (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe (services.exe ->) (IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe (services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (StarWind Software) [Brak podpisu cyfrowego] C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe (services.exe ->) (voidtools -> voidtools) C:\Program Files\Everything\Everything.exe (Vimicro Corporation) [Brak podpisu cyfrowego] C:\Program Files (x86)\Vimicro Corporation\VMUVC\VMonitor.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9068040 2016-11-09] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [460216 2024-03-19] (AVG Technologies USA, LLC -> Gen Digital Inc.) HKLM-x32\...\Run: [VMonitorVMUVC] => C:\Program Files (x86)\Vimicro Corporation\VMUVC\VMonitor.exe [143360 2008-08-29] (Vimicro Corporation) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-12-09] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [QHSafeTray] => C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe [1928424 2024-01-12] (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Ograniczenia <==== UWAGA HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA HKU\S-1-5-21-4221292836-327784557-341189516-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45285792 2024-03-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) HKU\S-1-5-21-4221292836-327784557-341189516-1000\...\Run: [AlcoholAutomount] => C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [39376 2015-03-12] (Alcohol Soft -> Alcohol Soft Development Team) HKU\S-1-5-21-4221292836-327784557-341189516-1000\...\Run: [electron.app.Pi Network] => C:\Users\Grzechu\AppData\Local\Programs\pi-network-desktop\Pi Network.exe [110817064 2021-06-10] (SocialChain Inc -> Socialchain Inc.) HKU\S-1-5-21-4221292836-327784557-341189516-1000\...\Run: [Napisy24Update] => C:\Program Files\Napisy24\Napisy24Update.exe [3990528 2018-02-02] (Napisy24.pl) [Brak podpisu cyfrowego] HKU\S-1-5-21-4221292836-327784557-341189516-1000\...\Run: [GG] => C:\Users\Grzechu\AppData\Local\GG\Application\gghub.exe [4078144 2023-09-25] (GG Network S.A. -> GG Network S.A.) HKU\S-1-5-21-4221292836-327784557-341189516-1000\...\Run: [Advanced SystemCare] => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe [5348480 2022-04-20] (IObit CO., LTD -> IObit) HKU\S-1-5-21-4221292836-327784557-341189516-1000\...\Policies\Explorer: [NolowDiskSpaceChecks] 1 HKLM\...\Windows x64\Print Processors\HP1100PrintProc: C:\Windows\System32\spool\prtprocs\x64\HP1100PP.DLL [74240 2012-08-31] () [Brak podpisu cyfrowego] HKLM\...\Print\Monitors\HP1100LM: C:\Windows\system32\HP1100LM.DLL [288768 2012-08-31] () [Brak podpisu cyfrowego] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\109.0.5414.120\Installer\chrmstp.exe [2023-01-27] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2009-08-18] (Microsoft Corporation -> Microsoft Corporation) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Dell Display Manager.lnk [2017-12-19] ShortcutTarget: Dell Display Manager.lnk -> C:\Program Files (x86)\Dell\Dell Display Manager\ddm.exe (EnTech Taiwan -> EnTech Taiwan) GroupPolicy: Ograniczenia - Chrome <==== UWAGA GroupPolicy-Firefox: Ograniczenia <==== UWAGA Policies: C:\ProgramData\NTUSER.pol: Ograniczenia <==== UWAGA HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA HKLM\SOFTWARE\Policies\Google: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {1C96F473-7425-4826-A102-9E53E6AC33F3} - \PingBooster -> Brak pliku <==== UWAGA Task: {F66C35C5-D9E8-431C-8632-9AD80E51464A} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [5204416 2024-03-19] (AVG Technologies USA, LLC -> Gen Digital Inc.) Task: {C29A3C51-FDDF-492C-AFBC-78E14BBE9D90} - System32\Tasks\ASC_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe [4959360 2022-04-20] (IObit CO., LTD -> IObit) -> C:\Program Files (x86)\IObit\Advanced SystemCare\\/Task Task: {5A71729E-E1FD-4789-9B9F-0814DC969E88} - System32\Tasks\ASC_SkipUac_Grzechu => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe [10905216 2022-04-20] (IObit CO., LTD -> IObit) -> C:\Program Files (x86)\IObit\Advanced SystemCare\\/SkipUac Task: {CEED9650-5FBC-45D7-9FFB-F51B046059DB} - System32\Tasks\ASR-Startup => C:\Program Files (x86)\Advanced System Repair Pro 2.0.0.8.0\AdvancedSystemRepairPro.exe /minimize (Brak pliku) Task: {11C39E17-D5CA-474A-9E0B-342B5EC89540} - System32\Tasks\AVG\AVG Antivirus Patcher => C:\Program Files\Common Files\AVG\Icarus\avg-av\icarus.exe [7811512 2024-03-05] (AVG Technologies USA, LLC -> AVG Technologies) Task: {E6168A37-071B-4DFA-870E-5D7DA87EEF2A} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2181560 2023-12-16] (AVG Technologies USA, LLC -> AVG Technologies) Task: {62BEEFFD-917F-4D1A-85A8-9E26B121D923} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2024-03-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {DB07422A-29D0-4227-A79F-B11AB3A0401F} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5074848 2024-03-11] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc. All rights reserved.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "3a606967-5d94-43fd-9825-09055102ec46" --version "6.22.10977" --silent Task: {63427C3D-B9C0-4721-9F79-50AAD00B519C} - System32\Tasks\CCleanerSkipUAC - Grzechu => C:\Program Files\CCleaner\CCleaner.exe [39024544 2024-03-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {C446D7D5-4497-4A0F-B47F-84A05A91DB1B} - System32\Tasks\cFos\Registration Tasks\Open Browser => c:\program files (x86)\google\chrome\application\chrome.exe [3151128 2023-01-24] (Google LLC -> Google LLC) -> "hxxp://localhost:1487/cfosspeed/preferences.htm" Task: {DF004183-8E58-4A3D-AD28-61557CF83337} - System32\Tasks\Games\UpdateCheck_S-1-5-21-4221292836-327784557-341189516-1000 => {CA22F5B1-E06F-4A2B-94FC-21E87FE53781} C:\Windows\System32\gameux.dll [2746368 2012-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {94F48F61-DB3E-4FC9-AD33-AF39FB1EF6EB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-08-28] (Google Inc -> Google Inc.) Task: {12AF1E73-B127-4649-9098-D290550A9918} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-08-28] (Google Inc -> Google Inc.) Task: {366A1A51-8EA7-422C-8261-EDC3AE02AB7E} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [686496 2024-03-23] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (dane wartości zawierają 6 znaków więcej). Task: {18AA61F8-8247-4126-A2E4-FE95FD4EF39D} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [724384 2024-03-23] (Mozilla Corporation -> Mozilla Foundation) Task: {BE4A1C01-4772-4331-9FE3-7827F928BA2C} - System32\Tasks\Sump Task (One-Time) => "C:\Program Files (x86)\IObit\Advanced SystemCare\sump.exe" -> C:\Program Files (x86)\IObit\Advanced SystemCare\\/sup2 Task: {FE9B1B46-EFF1-4C80-94FA-0DC1EC22E695} - System32\Tasks\WiseCleaner\WRCSkipUAC => C:\Program Files (x86)\Wise\Wise Registry Cleaner\WiseRegCleaner.exe [10779544 2023-11-23] (Lespeed Technology Co., Ltd -> WiseCleaner.com) -> C:\Program Files (x86)\Wise\Wise Registry Cleaner\\$UAC (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Winsock: Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528 2009-08-18] (Microsoft Corporation -> Microsoft Corporation) Winsock: Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528 2009-08-18] (Microsoft Corporation -> Microsoft Corporation) Winsock: Catalog5-x64 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304 2009-08-18] (Microsoft Corporation -> Microsoft Corporation) Winsock: Catalog5-x64 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304 2009-08-18] (Microsoft Corporation -> Microsoft Corporation) Tcpip\Parameters: [DhcpNameServer] 192.168.42.129 Tcpip\..\Interfaces\{1185DD9F-DA96-4228-8B06-01B68B43E80F}: [DhcpNameServer] 192.168.42.129 Tcpip\..\Interfaces\{7568DBBF-09F1-4628-858C-1D5876601723}: [DhcpNameServer] 192.168.42.129 Tcpip\..\Interfaces\{9329B1C3-DE07-4526-950D-BA431831D546}: [NameServer] 4.2.2.2,4.2.2.1 Tcpip\..\Interfaces\{C9CE426E-65C1-4ED2-AF40-703D96CD67F7}: [NameServer] 8.8.8.8,8.8.4.4,192.168.42.129 Tcpip\..\Interfaces\{C9CE426E-65C1-4ED2-AF40-703D96CD67F7}: [DhcpNameServer] 192.168.42.129 Tcpip\..\Interfaces\{DFA8897F-A0B4-4A15-9BCC-4DF622361511}: [DhcpNameServer] 192.168.42.129 FireFox: ======== FF DefaultProfile: u7mhvrna.default FF ProfilePath: C:\Users\Grzechu\AppData\Roaming\Mozilla\Firefox\Profiles\u7mhvrna.default [2024-01-27] FF user.js: detected! => C:\Users\Grzechu\AppData\Roaming\Mozilla\Firefox\Profiles\u7mhvrna.default\user.js [2024-04-05] FF ProfilePath: C:\Users\Grzechu\AppData\Roaming\Mozilla\Firefox\Profiles\0w3ct1v8.default-esr [2024-04-06] FF user.js: detected! => C:\Users\Grzechu\AppData\Roaming\Mozilla\Firefox\Profiles\0w3ct1v8.default-esr\user.js [2024-04-05] FF Notifications: Mozilla\Firefox\Profiles\0w3ct1v8.default-esr -> hxxps://www.facebook.com; hxxps://sk.lendup.pl; hxxps://ratado.pl; hxxps://fotka.com; hxxps://tinder.com; hxxps://mf77945.brucebetwin.com; hxxps://1wintopia.com; hxxps://energycasino.com; hxxps://gangsta-1.casino; hxxps://3flappycasino.com FF Extension: (DuckDuckGo Privacy Essentials) - C:\Users\Grzechu\AppData\Roaming\Mozilla\Firefox\Profiles\0w3ct1v8.default-esr\Extensions\jid1-ZAdIEUB7XOzOJw@jetpack.xpi [2024-03-15] FF Plugin: @java.com/DTPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\dtplugin\npDeployJava1.dll [2021-01-19] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\plugin2\npjp2.dll [2021-01-19] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-08-22] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Brak podpisu cyfrowego] FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-08-22] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Brak podpisu cyfrowego] Chrome: ======= CHR Profile: C:\Users\Grzechu\AppData\Local\Google\Chrome\User Data\Default [2024-04-05] CHR Notifications: Default -> hxxps://app.surveoo.com; hxxps://fr1.badoo.com CHR StartupUrls: Default -> "hxxp://google.pl/" CHR NewTab: Default -> Not-active:"chrome-extension://ohahpmcamnjffnbjbjmjmmkkfajhaeag/data/redirect.html" CHR DefaultSearchURL: Default -> hxxps://duckduckgo.com/?q={searchTerms} CHR DefaultSearchKeyword: Default -> duckduckgo.com CHR DefaultNewTabURL: Default -> hxxps://duckduckgo.com/chrome_newtab CHR DefaultSuggestURL: Default -> hxxps://duckduckgo.com/ac/?q={searchTerms}&type=list CHR Extension: (DuckDuckGo) - C:\Users\Grzechu\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkdgflcldnnnapblkhphbgpggdiikppg [2024-03-25] CHR Extension: (uBlock Origin) - C:\Users\Grzechu\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2024-03-16] CHR Extension: (Avast SafePrice | Porównania, okazje, kupony) - C:\Users\Grzechu\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2023-04-22] CHR Extension: (Urban VPN Proxy) - C:\Users\Grzechu\AppData\Local\Google\Chrome\User Data\Default\Extensions\eppiocemhmnlbhjplcgkofciiegomcon [2024-04-02] CHR Extension: (Dokumenty Google offline) - C:\Users\Grzechu\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-06-01] CHR Extension: (Picodi.com Cashback) - C:\Users\Grzechu\AppData\Local\Google\Chrome\User Data\Default\Extensions\kafpjghdfockenndmdalblagbonhemkf [2023-12-04] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Grzechu\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-04] CHR Extension: (ShadowPay Trademanager) - C:\Users\Grzechu\AppData\Local\Google\Chrome\User Data\Default\Extensions\obhadkdgdffnnbdfpigjklinjhbkinfh [2024-04-02] CHR Extension: (Kamera) - C:\Users\Grzechu\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofmpffnppnlgkgmbgidhhjcglloeejpg [2020-02-25] CHR Extension: (WowApp SmartWeb) - C:\Users\Grzechu\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohahpmcamnjffnbjbjmjmmkkfajhaeag [2023-05-18] CHR Profile: C:\Users\Grzechu\AppData\Local\Google\Chrome\User Data\System Profile [2023-01-27] CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] CHR HKLM\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh] CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] CHR HKLM\...\Chrome\Extension: [kaebhgioafceeldhgjmendlfhbfjefmo] - CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh] CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] CHR HKLM-x32\...\Chrome\Extension: [glcimepnljoholdmjchkloafkggfoijh] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-03-17] (Adobe Inc. -> Adobe) R2 AdvancedSystemCareService15; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [1300096 2022-04-20] (IObit CO., LTD -> IObit) R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [802232 2024-03-19] (AVG Technologies USA, LLC -> Gen Digital Inc.) R2 AVG Firewall; C:\Program Files\AVG\Antivirus\afwServ.exe [2316728 2024-03-19] (AVG Technologies USA, LLC -> Gen Digital Inc.) R2 AVG Tools; C:\Program Files\AVG\Antivirus\avgToolsSvc.exe [1217464 2024-03-30] (AVG Technologies USA, LLC -> Gen Digital Inc.) R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [9162680 2024-03-19] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R2 AVGWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [109480 2023-12-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) S2 AxAutoMntSrv; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [39376 2015-03-12] (Alcohol Soft -> Alcohol Soft Development Team) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1522184 2018-02-20] (BattlEye Innovations e.K. -> ) S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1081248 2024-03-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) R2 Everything; C:\Program Files\Everything\Everything.exe [2265096 2022-10-10] (voidtools -> voidtools) R2 FoxitReaderUpdateService; C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe [2358800 2022-05-19] (FOXIT SOFTWARE INC. -> Foxit Software Inc.) S3 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2018-12-12] (Huawei Technologies Co., Ltd. -> ) [Brak podpisu cyfrowego] R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9423680 2024-03-26] (Malwarebytes Inc. -> Malwarebytes) S2 pr2anj2b; C:\Windows\system32\pr2anj2b.exe [781192 2007-10-10] (Protection Technology, Ltd. -> City Interactive) R2 QHActiveDefense; C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe [1102080 2023-03-15] (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) S3 rkrtservice; C:\Program Files\RogueKiller\RogueKillerSvc.exe [14715824 2022-11-15] (ADLICE -> ) R2 ss_conn_service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [741640 2014-06-16] (DEVGURU CO LTD -> DEVGURU Co., LTD.) R2 StarWindServiceAE; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [370688 2009-12-23] (StarWind Software) [Brak podpisu cyfrowego] S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation) R2 wlidsvc; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2291568 2009-08-18] (Microsoft Corporation -> Microsoft Corporation) R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin" ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S1 amsdk; Brak ImagePath S3 AscFileFilter; C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win7_amd64\AscFileFilter.sys [29616 2022-03-23] (IObit CO., LTD -> IObit) R3 AscRegistryFilter; C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win7_amd64\AscRegistryFilter.sys [28592 2021-07-07] (IObit CO., LTD -> IObit) R2 asrscan; C:\Windows\System32\DRIVERS\asrscan.sys [22104 2024-01-28] (Microsoft Windows Hardware Compatibility Publisher -> Advanced System Repair Inc.) S3 atikmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [5020672 2009-07-13] (Microsoft Windows -> ATI Technologies Inc.) R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [88480 2020-04-21] (Tages SAS -> ) R0 avgArDisk; C:\Windows\System32\drivers\avgArDisk.sys [20424 2024-03-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) R1 avgArPot; C:\Windows\System32\drivers\avgArPot.sys [230968 2024-03-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) R1 avgbidsdriver; C:\Windows\System32\drivers\avgbidsdriver.sys [379960 2024-03-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) R0 avgbidsh; C:\Windows\System32\drivers\avgbidsh.sys [292920 2024-03-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) R0 avgbuniv; C:\Windows\System32\drivers\avgbuniv.sys [84536 2024-03-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) R1 avgKbd; C:\Windows\System32\drivers\avgKbd.sys [28728 2024-03-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) R1 avgMonFlt; C:\Windows\System32\drivers\avgMonFlt.sys [264760 2024-03-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) R1 avgNetHub; C:\Windows\System32\drivers\avgNetHub.sys [548920 2024-03-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) R3 avgNetNd6; C:\Windows\System32\DRIVERS\avgNetNd6.sys [23472 2023-12-16] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.) R1 avgRdr; C:\Windows\System32\drivers\avgRdr2.sys [93752 2024-03-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) R0 avgRvrt; C:\Windows\System32\drivers\avgRvrt.sys [69176 2024-03-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) R1 avgSnx; C:\Windows\System32\drivers\avgSnx.sys [935480 2024-03-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) R1 avgSP; C:\Windows\System32\drivers\avgSP.sys [694728 2024-03-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) R3 avgStm; C:\Windows\System32\drivers\avgStm.sys [201680 2024-03-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) R0 avgVmm; C:\Windows\System32\drivers\avgVmm.sys [306120 2024-03-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.) R3 cpuz150; C:\Windows\temp\cpuz150\cpuz150_x64.sys [35672 2024-04-06] (CPUID S.A.R.L.U. -> CPUID) <==== UWAGA S3 eagleGet; C:\Windows\System32\Drivers\eagleGet.sys [76280 2019-08-03] (Beijing Pu Technology Limited -> eagleGet) R1 epp; C:\EEK\BIN64\epp.sys [155112 2020-03-02] (Microsoft Windows Hardware Compatibility Publisher -> Emsisoft Ltd) S3 ew_usbccgpfilter; C:\Windows\System32\DRIVERS\ew_usbccgpfilter.sys [18944 2018-12-12] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.) R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-01-28] (Martin Malik - REALiX -> REALiX(tm)) U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2018-12-12] (Huawei Technologies Co., Ltd.) [Brak podpisu cyfrowego] R3 iobit_monitor_server2021; C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\Monitor_win7_x64.sys [15280 2021-08-11] (IObit CO., LTD -> IObit) R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [46400 2020-04-21] (Tages SA -> ) R2 mbamchameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [223296 2024-04-06] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239576 2024-04-05] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S3 MFE_RR; Brak ImagePath R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2018-01-28] (ASUSTeK Computer Inc. -> ) R0 pe3anj2b; C:\Windows\System32\drivers\pe3anj2b.sys [72840 2007-10-10] (Protection Technology, Ltd. -> City Interactive) S3 phantomtap; C:\Windows\System32\DRIVERS\phantomtap.sys [35664 2020-01-08] (Avira Operations GmbH & Co. KG -> The OpenVPN Project) R0 ps7anj2b; C:\Windows\System32\drivers\ps7anj2b.sys [102544 2007-10-10] (Protection Technology, Ltd. -> City Interactive) R1 SBRE; C:\Windows\system32\drivers\SBREdrv.sys [49752 2010-03-22] (Sunbelt Software, Inc. -> Sunbelt Software) S4 secdrv; C:\Windows\SysWow64\Drivers\secdrv.sys [28400 2023-12-13] () [Brak podpisu cyfrowego] R0 sptd; C:\Windows\System32\Drivers\sptd.sys [393880 2024-01-31] (Disc Soft Ltd -> Duplex Secure Ltd.) S3 ssudserd; C:\Windows\System32\DRIVERS\ssudserd.sys [206080 2014-06-16] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr)) S3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [28160 2019-04-23] (OpenVPN Inc. -> The OpenVPN Project) S3 VMUVC; C:\Windows\System32\Drivers\VMUVC.sys [198784 2009-05-25] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro Corporation) S3 vvftUVC; C:\Windows\System32\drivers\vvftUVC.sys [303616 2008-07-01] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro Corporation) U3 a1vxrvbv; C:\Windows\System32\Drivers\a1vxrvbv.sys [0 0000-00-00] (Advanced Micro Devices) <==== UWAGA [zerobajtowy plik/folder] U1 360FsFlt; system32\DRIVERS\360FsFlt.sys [X] U3 AVG Business Console Client Antivirus Service; Brak ImagePath U3 avgBcc; Brak ImagePath U3 avgbdisk; Brak ImagePath S1 BAPIDRV; system32\DRIVERS\BAPIDRV64.sys [X] S3 cpuz154; \??\C:\Windows\temp\cpuz154\cpuz154_x64.sys [X] <==== UWAGA U3 iswSvc; Brak ImagePath ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (Wszystkie) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2024-04-06 06:33 - 2024-04-06 06:35 - 000030173 _____ C:\Users\Grzechu\Downloads\FRST.txt 2024-04-06 06:24 - 2024-04-06 06:24 - 002393600 _____ (Farbar) C:\Users\Grzechu\Downloads\FRST64.exe 2024-04-06 06:05 - 2024-04-06 06:05 - 000223296 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys 2024-04-05 13:35 - 2020-12-12 14:14 - 000000000 ____D C:\Users\Grzechu\Downloads\DnsJumper 2024-04-05 10:59 - 2024-04-05 11:03 - 000001235 _____ C:\Users\Public\Desktop\Advanced SystemCare.lnk 2024-04-05 10:57 - 2024-04-05 11:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 2024-04-05 10:43 - 2024-04-05 10:45 - 054126768 _____ (IObit ) C:\Users\Grzechu\Downloads\advanced-systemcare-setup(1).exe 2024-04-05 10:38 - 2024-04-05 10:41 - 317496592 _____ C:\Users\Grzechu\Downloads\t9zdoi8p.exe 2024-04-05 06:22 - 2024-04-05 06:22 - 000000000 ____D C:\ProgramData\360sd 2024-04-05 06:18 - 2024-04-05 07:27 - 000000000 ____D C:\Users\Grzechu\AppData\Roaming\360safe 2024-04-05 06:18 - 2024-04-05 06:24 - 000000000 ____D C:\ProgramData\360Quarant 2024-04-05 06:11 - 2024-04-05 06:11 - 000001157 _____ C:\Users\Public\Desktop\360 Total Security.lnk 2024-04-05 06:11 - 2024-04-05 06:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\360 Security Center 2024-04-05 06:09 - 2024-04-05 07:30 - 000000000 ____D C:\Users\Grzechu\AppData\Roaming\360TotalSecurity 2024-04-05 06:09 - 2024-04-05 06:15 - 000000000 ____D C:\ProgramData\360TotalSecurity 2024-04-05 06:09 - 2024-04-05 06:12 - 000000000 ____D C:\ProgramData\360Safe 2024-04-05 06:09 - 2024-04-05 06:09 - 000000000 ____D C:\Program Files (x86)\360 2024-04-02 08:25 - 2024-04-02 08:27 - 000006893 _____ C:\Users\Grzechu\Downloads\netadapter-log-2024-04-02-8-25-50.txt 2024-04-02 08:04 - 2024-04-02 08:25 - 000007148 _____ C:\Users\Grzechu\Downloads\netadapter-log-2024-04-02-8-04-49.txt 2024-04-02 08:04 - 2024-04-02 08:04 - 002091520 _____ (Conner Bernhard) C:\Users\Grzechu\Downloads\NetAdapterRepair1.2.exe 2024-04-02 08:04 - 2024-04-02 08:04 - 002091520 _____ (Conner Bernhard) C:\Users\Grzechu\Downloads\NetAdapterRepair1.2(1).exe 2024-03-31 09:05 - 2013-11-20 20:44 - 000000000 ____D C:\Users\Grzechu\Desktop\DA_Spol 2024-03-31 09:04 - 2024-03-31 09:04 - 003535128 _____ C:\Users\Grzechu\Downloads\DA_Spol.rar 2024-03-30 08:44 - 2024-03-30 08:45 - 000000000 ___SD C:\ComboFix191123971C 2024-03-30 07:54 - 2024-03-19 08:36 - 000314296 _____ (Gen Digital Inc.) C:\Windows\system32\avgBoot.exe 2024-03-29 15:33 - 2024-04-02 13:43 - 000000033 _____ C:\Users\Grzechu\Desktop\Nowy dokument tekstowy.txt 2024-03-23 20:36 - 2024-03-25 09:20 - 000000000 ____D C:\Program Files\Mozilla Firefox 2024-03-19 08:37 - 2024-03-19 08:36 - 000201680 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\avgStm.sys ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2024-04-06 06:36 - 2020-04-16 12:10 - 000000000 ____D C:\Users\Grzechu\AppData\Roaming\Pi Network 2024-04-06 06:34 - 2015-04-21 10:00 - 000000000 ____D C:\FRST 2024-04-06 06:27 - 2009-07-14 06:45 - 000032720 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2024-04-06 06:27 - 2009-07-14 06:45 - 000032720 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2024-04-06 06:24 - 2017-08-28 20:47 - 000000000 ____D C:\Program Files (x86)\Google 2024-04-06 06:10 - 2023-11-27 10:12 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2024-04-06 06:09 - 2018-03-17 18:32 - 000000000 ____D C:\Users\Grzechu\AppData\Local\CrashDumps 2024-04-06 06:06 - 2023-05-14 11:33 - 000000000 ____D C:\Users\Grzechu\AppData\Local\Malwarebytes 2024-04-06 06:05 - 2021-05-03 14:53 - 000004128 _____ C:\Windows\system32\Tasks\CCleaner Update 2024-04-06 06:04 - 2024-02-22 12:24 - 000000000 ____D C:\Users\Grzechu\AppData\Roaming\GG 2024-04-06 06:04 - 2017-08-28 21:43 - 000000000 ____D C:\Program Files\CCleaner 2024-04-06 06:03 - 2017-08-28 19:35 - 000000000 ____D C:\Users\Grzechu 2024-04-06 06:02 - 2020-04-01 17:52 - 000000000 ____D C:\ProgramData\AVG 2024-04-06 06:02 - 2017-08-28 21:10 - 000000000 ____D C:\ProgramData\NVIDIA 2024-04-06 06:02 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2024-04-05 18:36 - 2017-08-28 21:31 - 000000000 ____D C:\Users\Grzechu\AppData\Roaming\foobar2000 2024-04-05 16:57 - 2023-12-16 12:01 - 000004162 _____ C:\Windows\system32\Tasks\Antivirus Emergency Update 2024-04-05 13:39 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf 2024-04-05 13:28 - 2022-11-19 09:34 - 000000666 _____ C:\Windows\Tasks\CCleanerCrashReporting.job 2024-04-05 11:06 - 2017-09-03 14:00 - 000000000 ____D C:\Users\Grzechu\AppData\Roaming\MPC-HC 2024-04-05 11:03 - 2023-11-24 22:15 - 000003210 _____ C:\Windows\system32\Tasks\ASC_PerformanceMonitor 2024-04-05 11:03 - 2022-04-02 11:08 - 000003010 _____ C:\Windows\system32\Tasks\ASC_SkipUac_Grzechu 2024-04-05 10:58 - 2020-01-21 10:00 - 000000000 ____D C:\ProgramData\ProductData 2024-04-05 10:57 - 2020-11-10 10:22 - 000000000 ____D C:\Program Files (x86)\IObit 2024-04-05 10:57 - 2017-10-29 10:20 - 000000000 ____D C:\Users\Grzechu\AppData\LocalLow\IObit 2024-04-05 10:57 - 2017-10-29 10:19 - 000000000 ____D C:\Users\Grzechu\AppData\Roaming\IObit 2024-04-05 10:57 - 2017-10-29 10:19 - 000000000 ____D C:\ProgramData\IObit 2024-04-05 10:53 - 2024-02-04 10:28 - 000239576 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys 2024-04-05 10:20 - 2020-02-29 23:34 - 000290304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\subinacl.exe 2024-04-05 06:24 - 2023-01-27 11:11 - 000000000 ____D C:\Users\Grzechu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameCenter 2024-04-05 06:24 - 2022-12-08 11:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Starcraft 2024-04-05 06:24 - 2016-06-18 13:35 - 000000000 ____D C:\$360Section 2024-04-05 06:20 - 2020-02-29 22:25 - 000058464 __RSH C:\ProgramData\ntuser.pol 2024-04-05 06:15 - 2019-06-20 14:49 - 000000000 ____D C:\Users\Grzechu\AppData\Roaming\360DesktopLite 2024-04-04 06:13 - 2023-12-05 11:26 - 000003466 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA{A0B32CA3-243C-4123-AB4B-5292314ADC16} 2024-04-04 06:13 - 2023-12-05 11:26 - 000003338 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore{EB2815FE-6406-4FAD-B730-23A34A7DB6C4} 2024-04-04 06:08 - 2011-02-04 19:55 - 000740098 _____ C:\Windows\system32\perfh015.dat 2024-04-04 06:08 - 2011-02-04 19:55 - 000155672 _____ C:\Windows\system32\perfc015.dat 2024-04-04 06:08 - 2009-07-14 07:13 - 001669190 _____ C:\Windows\system32\PerfStringBackup.INI 2024-04-03 18:03 - 2024-01-29 12:15 - 000003220 _____ C:\Windows\system32\Tasks\ASR-Startup 2024-04-03 18:03 - 2023-12-22 20:11 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software 2024-04-03 18:03 - 2022-11-19 09:34 - 000003256 _____ C:\Windows\system32\Tasks\CCleanerCrashReporting 2024-04-03 18:03 - 2022-06-25 06:15 - 000003264 _____ C:\Windows\system32\Tasks\Sump Task (One-Time) 2024-04-03 18:03 - 2022-03-10 08:55 - 000002806 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC - Grzechu 2024-04-03 18:03 - 2020-10-16 20:13 - 000003778 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA 2024-04-03 18:03 - 2020-10-16 20:13 - 000003650 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore 2024-04-03 17:06 - 2024-03-02 06:47 - 000000000 ____D C:\Users\Grzechu\Desktop\tsars 2024-04-01 08:43 - 2020-04-01 18:02 - 000000000 ____D C:\Users\Grzechu\AppData\Local\Avg 2024-03-31 18:14 - 2021-01-19 12:14 - 000000000 ____D C:\SteamLibrary 2024-03-31 15:33 - 2023-11-25 13:08 - 000000000 ____D C:\Users\Grzechu\Downloads\HostsXpert 2024-03-30 08:44 - 2023-12-15 10:42 - 000000000 ___SD C:\ComboFix 2024-03-30 07:55 - 2023-12-16 12:02 - 000001914 _____ C:\Users\Public\Desktop\AVG AntiVirus Free.lnk 2024-03-25 09:20 - 2017-12-10 23:35 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2024-03-24 06:34 - 2023-12-03 22:09 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla 2024-03-19 08:36 - 2023-12-16 12:01 - 000935480 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\avgSnx.sys 2024-03-19 08:36 - 2023-12-16 12:01 - 000694728 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\avgSP.sys 2024-03-19 08:36 - 2023-12-16 12:01 - 000548920 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\avgNetHub.sys 2024-03-19 08:36 - 2023-12-16 12:01 - 000379960 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\avgbidsdriver.sys 2024-03-19 08:36 - 2023-12-16 12:01 - 000306120 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\avgVmm.sys 2024-03-19 08:36 - 2023-12-16 12:01 - 000292920 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\avgbidsh.sys 2024-03-19 08:36 - 2023-12-16 12:01 - 000264760 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\avgMonFlt.sys 2024-03-19 08:36 - 2023-12-16 12:01 - 000230968 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\avgArPot.sys 2024-03-19 08:36 - 2023-12-16 12:01 - 000093752 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\avgRdr2.sys 2024-03-19 08:36 - 2023-12-16 12:01 - 000084536 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\avgbuniv.sys 2024-03-19 08:36 - 2023-12-16 12:01 - 000069176 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\avgRvrt.sys 2024-03-19 08:36 - 2023-12-16 12:01 - 000028728 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\avgKbd.sys 2024-03-19 08:36 - 2023-12-16 12:01 - 000020424 _____ (Gen Digital Inc.) C:\Windows\system32\Drivers\avgArDisk.sys 2024-03-16 17:24 - 2023-03-09 10:45 - 000000000 ____D C:\Odyseja ==================== Pliki w katalogu głównym wybranych folderów ======== 2023-11-28 07:13 - 2022-03-09 11:08 - 000001024 _____ () C:\Users\Grzechu\AppData\Roaming\HBEDV.KEY 2002-08-08 06:11 - 2002-08-08 06:11 - 000319488 ____R () C:\Users\Grzechu\AppData\Roaming\MafiaSetup.exe 2020-04-20 18:43 - 2023-03-06 22:36 - 000000091 _____ () C:\Users\Grzechu\AppData\Roaming\netstat.bat 2023-11-28 07:13 - 2023-11-28 07:13 - 000000048 _____ () C:\Users\Grzechu\AppData\Local\computerid 2018-02-15 12:50 - 2018-02-15 12:50 - 000000036 _____ () C:\Users\Grzechu\AppData\Local\housecall.guid.cache 2024-03-05 12:51 - 2024-03-05 12:52 - 000015859 _____ () C:\Users\Grzechu\AppData\Local\PlariumPlay.log ==================== FLock ============================== 2013-09-19 01:09 C:\DrWeb Quarantine ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) LastRegBack: 2024-03-28 10:30 ==================== Koniec FRST.txt ========================