Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 22-03-2020 Uruchomiony przez Wojciech (administrator) WOJTEK (Gigabyte Technology Co., Ltd. GA-A75-D3H) (24-03-2020 08:18:15) Uruchomiony z C:\Users\Wojciech\Desktop Załadowane profile: Wojciech (Dostępne profile: Wojciech) Platform: Windows 7 Professional Service Pack 1 (X64) Język: Polski (Polska) Internet Explorer Wersja 11 (Domyślna przeglądarka: Opera) Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (Apple Inc. -> Apple, Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Discord Inc. -> Discord Inc.) C:\Users\Wojciech\AppData\Local\Discord\app-0.0.306\Discord.exe (Discord Inc. -> Discord Inc.) C:\Users\Wojciech\AppData\Local\Discord\app-0.0.306\Discord.exe (Discord Inc. -> Discord Inc.) C:\Users\Wojciech\AppData\Local\Discord\app-0.0.306\Discord.exe (Discord Inc. -> Discord Inc.) C:\Users\Wojciech\AppData\Local\Discord\app-0.0.306\Discord.exe (Discord Inc. -> Discord Inc.) C:\Users\Wojciech\AppData\Local\Discord\app-0.0.306\Discord.exe (Discord Inc. -> Discord Inc.) C:\Users\Wojciech\AppData\Local\Discord\app-0.0.306\Discord.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe (Opera Software AS -> Opera Software) C:\Program Files\Opera\67.0.3575.97\opera.exe (Opera Software AS -> Opera Software) C:\Program Files\Opera\67.0.3575.97\opera.exe (Opera Software AS -> Opera Software) C:\Program Files\Opera\67.0.3575.97\opera.exe (Opera Software AS -> Opera Software) C:\Program Files\Opera\67.0.3575.97\opera.exe (Opera Software AS -> Opera Software) C:\Program Files\Opera\67.0.3575.97\opera.exe (Opera Software AS -> Opera Software) C:\Program Files\Opera\67.0.3575.97\opera.exe (Opera Software AS -> Opera Software) C:\Program Files\Opera\67.0.3575.97\opera.exe (Opera Software AS -> Opera Software) C:\Program Files\Opera\67.0.3575.97\opera.exe (Opera Software AS -> Opera Software) C:\Program Files\Opera\67.0.3575.97\opera.exe (Opera Software AS -> Opera Software) C:\Program Files\Opera\67.0.3575.97\opera.exe (Opera Software AS -> Opera Software) C:\Program Files\Opera\67.0.3575.97\opera.exe (Opera Software AS -> Opera Software) C:\Program Files\Opera\67.0.3575.97\opera.exe (Opera Software AS -> Opera Software) C:\Program Files\Opera\67.0.3575.97\opera.exe (Opera Software AS -> Opera Software) C:\Program Files\Opera\67.0.3575.97\opera.exe (Opera Software AS -> Opera Software) C:\Program Files\Opera\67.0.3575.97\opera.exe (Opera Software AS -> Opera Software) C:\Program Files\Opera\67.0.3575.97\opera.exe (Opera Software AS -> Opera Software) C:\Program Files\Opera\67.0.3575.97\opera.exe (Opera Software AS -> Opera Software) C:\Program Files\Opera\67.0.3575.97\opera.exe (Opera Software AS -> Opera Software) C:\Program Files\Opera\67.0.3575.97\opera.exe (Opera Software AS -> Opera Software) C:\Program Files\Opera\67.0.3575.97\opera.exe (Opera Software AS -> Opera Software) C:\Program Files\Opera\67.0.3575.97\opera_crashreporter.exe (Opera Software AS -> Opera Software) C:\Program Files\Opera\assistant\browser_assistant.exe (Opera Software AS -> Opera Software) C:\Program Files\Opera\assistant\browser_assistant.exe (Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13662936 2013-12-13] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [277664 2020-03-03] (Avast Software s.r.o. -> AVAST Software) HKLM\...\Run: [iTunesHelper] => D:\Programy\iTunes\iTunesHelper.exe [302904 2019-08-27] (Apple Inc. -> Apple Inc.) HKLM-x32\...\Run: [Opera Browser Assistant] => C:\Program Files\Opera\assistant\browser_assistant.exe [3024408 2020-03-19] (Opera Software AS -> Opera Software) HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA HKU\S-1-5-21-321819135-3942462207-3232105479-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2019-07-22] (Apple Inc. -> Apple Inc.) HKU\S-1-5-21-321819135-3942462207-3232105479-1000\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2019-07-22] (Apple Inc. -> Apple Inc.) HKU\S-1-5-21-321819135-3942462207-3232105479-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-16] (Piriform Software Ltd -> Piriform Ltd) HKU\S-1-5-21-321819135-3942462207-3232105479-1000\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2019-07-22] (Apple Inc. -> Apple Inc.) HKU\S-1-5-21-321819135-3942462207-3232105479-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 HKU\S-1-5-21-321819135-3942462207-3232105479-1000\...\MountPoints2: G - G:\setup.exe HKU\S-1-5-21-321819135-3942462207-3232105479-1000\...\MountPoints2: {5bc3d1d2-3da4-11e9-a7fb-50e54956b160} - K:\setup_the_witcher_2_ee_3.0.1.17.exe HKU\S-1-5-21-321819135-3942462207-3232105479-1000\...\MountPoints2: {8ced47e5-1f59-11e7-9858-50e54956b160} - G:\setup.exe HKLM\Software\Microsoft\Active Setup\Installed Components: [OpenVPN_UserSetup] -> reg delete HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v OPENVPN-GUI /f HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\80.0.3987.149\Installer\chrmstp.exe [2020-03-18] (Google LLC -> Google LLC) FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0226F072-1A56-42FB-84C3-4B3674D05DBA} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation) Task: {036B1A50-1ACF-41AD-99C6-CD281FAAB944} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3894664 2020-03-03] (Avast Software s.r.o. -> AVAST Software) Task: {0B4DC878-063F-47C5-9417-0FD031FCD47A} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation) Task: {0FBA3B7B-789A-406A-ADCF-8BC10753A305} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-12-25] (Google Inc -> Google Inc.) Task: {15E440DF-57D3-48FC-804E-FBE171D837F1} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation) Task: {1CDBA40E-E5F0-4B81-AD4E-632A1CB804DF} - System32\Tasks\{B5668375-ECBC-44EC-82CE-B40A2A596F6E} => C:\Windows\system32\pcalua.exe -a C:\Users\Wojciech\Desktop\vcredist_x64.exe -d C:\Users\Wojciech\Desktop Task: {220BB524-3167-4C3B-ABD1-EB26E709F302} - System32\Tasks\Opera scheduled Autoupdate 1514641723 => C:\Program Files\Opera\launcher.exe [1538584 2020-03-19] (Opera Software AS -> Opera Software) Task: {333C9EAA-38C8-4AB5-8FC2-1F97258AC60E} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [653848 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation) Task: {3E410D62-63A4-4E35-B7F5-9A3C044F9239} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-16] (Piriform Software Ltd -> Piriform Software Ltd) Task: {4187B845-D240-45C5-B042-B8B3FA080288} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158544 2020-03-15] (Microsoft Corporation -> Microsoft Corporation) Task: {42FD605D-0215-47DB-82E2-4A96DB00BB31} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe Task: {480BFE50-1D9D-4328-A095-EE63562F194D} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation) Task: {48835059-5A07-4AED-A4E1-E70406296A89} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_344_pepper.exe [1453624 2020-03-11] (Adobe Inc. -> Adobe) Task: {4B5CFCBE-0A3F-4C99-851B-C8ABFDE4EC6E} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation) Task: {59FFF84F-6E8E-421A-883E-E54004C1F295} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302880 2019-12-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {66EA1BCC-E3D0-42DD-B29A-C30B00095919} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24600440 2020-03-05] (Microsoft Corporation -> Microsoft Corporation) Task: {6A738F8A-7242-4FE9-915A-E723B07FF8BB} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.) Task: {72CAC2B9-6A0E-417B-835C-B53864BF09DD} - System32\Tasks\Opera scheduled assistant Autoupdate 1553438806 => C:\Program Files\Opera\launcher.exe [1538584 2020-03-19] (Opera Software AS -> Opera Software) Task: {7DB8CAB8-D59B-470D-9B72-27174844CCE1} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation) Task: {7E6F3B3B-D6E5-47C8-88EA-DC1D4AE69646} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-12-25] (Google Inc -> Google Inc.) Task: {866F7C81-2F74-42F6-9450-6C6EF47E59F0} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation) Task: {A2FA212C-420D-4D69-B9CB-0A069829FDED} - System32\Tasks\{B8BCDCB6-D7C8-4438-A7D3-65F4F8AB782B} => C:\Windows\system32\pcalua.exe -a C:\Users\Wojciech\Desktop\GSAutoClicker-Setup.exe -d C:\Users\Wojciech\Desktop Task: {B7BA1775-5853-46B4-8DB2-CAE27AD0D048} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158544 2020-03-15] (Microsoft Corporation -> Microsoft Corporation) Task: {B8D3D242-840B-423D-A283-B91A188DCB29} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1660520 2020-02-27] (Avast Software s.r.o. -> Avast Software) Task: {BD053968-7FA6-44B1-8C92-F36FCB96A687} - System32\Tasks\{53D26A4F-43AB-43D1-9E7E-16307655573C} => C:\Program Files (x86)\Skype\\Phone\Skype.exe [27832264 2017-10-06] (Skype Software Sarl -> Skype Technologies S.A.) Task: {BD950D0C-3978-47AE-A986-961CACF00975} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation) Task: {D305AC6A-6DD1-4D31-AC75-775E90976371} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_344_Plugin.exe [1458232 2020-03-11] (Adobe Inc. -> Adobe) Task: {D82A70B8-5C7C-48A4-9A40-CB7B90590967} - System32\Tasks\{1019C388-5B90-486F-A681-A0C85CBDC27A} => C:\Windows\system32\pcalua.exe -a "D:\Programy\MailShare\Downloads\Grand Theft Auto - San Andreas\Grand Theft Auto - San Andreas spolszczenie.exe" -d "D:\Programy\MailShare\Downloads\Grand Theft Auto - San Andreas" Task: {E3E69E7C-D412-43B8-8A4B-2593C7D258CF} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24600440 2020-03-05] (Microsoft Corporation -> Microsoft Corporation) Task: {EB1F8F1C-FDB6-45D0-B6C2-968C8E5CC7A1} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-16] (Piriform Software Ltd -> Piriform Ltd) Task: {F3042746-7844-44E4-8DCE-2B1F4F5880A6} - System32\Tasks\{477BF7E8-8836-44B4-AAD7-E333F4550FF9} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxps://ui.skype.com/ui/0/7.33.0.105/pl/abandoninstall?source=lightinstaller&page=tsMain Task: {F50BC509-0587-41F9-8EA2-EA0B023BBC9E} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-03-11] (Adobe Inc. -> Adobe) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Winsock: Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.) Winsock: Catalog5-x64 07 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{B00A5ADB-E13A-4E9E-92FA-4A704A7E5219}: [DhcpNameServer] 192.168.1.1 Internet Explorer: ================== BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_211\bin\ssv.dll [2019-04-19] (Oracle America, Inc. -> Oracle Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\Office16\URLREDIR.DLL [2020-03-07] (Microsoft Corporation -> Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_211\bin\jp2ssv.dll [2019-04-19] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-01-13] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\URLREDIR.DLL [2020-03-07] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Brak nazwy -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> Brak pliku Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-07] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-03-07] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-07] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-03-07] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-07] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-03-07] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-07] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-03-07] (Microsoft Corporation -> Microsoft Corporation) FireFox: ======== FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\coFFPlgn => nie znaleziono FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\IPSFFPlgn => nie znaleziono FF HKU\S-1-5-21-321819135-3942462207-3232105479-1000\...\Firefox\Extensions: [acewebextension_unlisted@acestream.org] - C:\Users\Wojciech\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi => nie znaleziono FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_344.dll [2020-03-11] (Adobe Inc. -> ) FF Plugin: @java.com/DTPlugin,version=11.211.2 -> C:\Program Files\Java\jre1.8.0_211\bin\dtplugin\npDeployJava1.dll [2019-04-19] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.211.2 -> C:\Program Files\Java\jre1.8.0_211\bin\plugin2\npjp2.dll [2019-04-19] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @microsoft.com/GENUINE -> disabled [Brak pliku] FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-13] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_344.dll [2020-03-11] (Adobe Inc. -> ) FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Brak pliku] FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-01-13] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Brak podpisu cyfrowego] FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Brak podpisu cyfrowego] Chrome: ======= CHR Profile: C:\Users\Wojciech\AppData\Local\Google\Chrome\User Data\Default [2020-03-05] CHR DownloadDir: C:\Users\Wojciech\Desktop CHR HomePage: Default -> hxxp://www.google.com CHR StartupUrls: Default -> "hxxp://www.google.com","hxxps://www.google.com/","hxxp://www.hxxps://www.google.com//?affID=119828&tt=gc_&babsrc=HP_ss&mntrId=444050E54956B160","hxxp://www.hxxps://www.google.com//?type=hp&ts=1414607934&from=smt&uid=WDCXWD5000AAKX-603CA0_WD-WCAYUDZ3497534975","hxxps://www.google.com/" CHR Extension: (Prezentacje) - C:\Users\Wojciech\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13] CHR Extension: (Magic Actions for YouTube™) - C:\Users\Wojciech\AppData\Local\Google\Chrome\User Data\Default\Extensions\abjcfabbhafbcdfjoecdgepllmpfceif [2019-12-16] CHR Extension: (Dokumenty) - C:\Users\Wojciech\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13] CHR Extension: (Dysk Google) - C:\Users\Wojciech\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-04-11] CHR Extension: (Norton Security Toolbar) - C:\Users\Wojciech\AppData\Local\Google\Chrome\User Data\Default\Extensions\bejnhdlplbjhffionohbdnpcbobfejcc [2017-04-30] CHR Extension: (YouTube) - C:\Users\Wojciech\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-04-11] CHR Extension: (Adblock Plus - darmowy adblocker) - C:\Users\Wojciech\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-03-02] CHR Extension: (Tpay.com) - C:\Users\Wojciech\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmbhnokcfchfkdgechgkhcfekdfpdjld [2017-07-12] CHR Extension: (Krople deszczu(Non-Aero)) - C:\Users\Wojciech\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpagcfbbmlebfnkeogkigellbgmfkjfg [2017-04-11] CHR Extension: (Avast SafePrice | Porównania, promocje, kupony) - C:\Users\Wojciech\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-01-05] CHR Extension: (Arkusze) - C:\Users\Wojciech\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13] CHR Extension: (Pulpit zdalny Chrome) - C:\Users\Wojciech\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2019-07-21] CHR Extension: (Dokumenty Google offline) - C:\Users\Wojciech\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-02-25] CHR Extension: (Avast Online Security) - C:\Users\Wojciech\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-03-02] CHR Extension: (Mauf - Custom Messenger Colors) - C:\Users\Wojciech\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfjnmganegfpajpgchndgfjbljnehink [2017-04-28] CHR Extension: (Hide My IP VPN) - C:\Users\Wojciech\AppData\Local\Google\Chrome\User Data\Default\Extensions\keodbianoliadkoelloecbhllnpiocoi [2019-03-02] CHR Extension: (The Fancy Pants Adventure: World 2) - C:\Users\Wojciech\AppData\Local\Google\Chrome\User Data\Default\Extensions\loamdenijebhollnjgehcfbnpeelfhlk [2017-04-11] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Wojciech\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-06] CHR Extension: (Gmail) - C:\Users\Wojciech\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-01] CHR Extension: (Chrome Media Router) - C:\Users\Wojciech\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-03-02] CHR HKU\S-1-5-21-321819135-3942462207-3232105479-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo] CHR HKLM-x32\...\Chrome\Extension: [bejnhdlplbjhffionohbdnpcbobfejcc] - C:\Program Files (x86)\Norton 360\Engine\20.6.0.27\Exts\Chrome.crx CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] Opera: ======= OPR DownloadDir: C:\Users\Wojciech\Desktop OPR Session Restore: -> [funkcja włączona] OPR Extension: (Magic Actions for YouTube™) - C:\Users\Wojciech\AppData\Roaming\Opera Software\Opera Stable\Extensions\nlffnljnicbkfhnlomjhjlebndachaka [2019-05-27] OPR Extension: (Adblock Plus - free ad blocker) - C:\Users\Wojciech\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2020-02-26] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S4 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2013-03-07] (Advanced Micro Devices, Inc.) [Brak podpisu cyfrowego] S4 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2019-08-26] (Apple Inc. -> Apple Inc.) R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6046624 2020-03-03] (Avast Software s.r.o. -> AVAST Software) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [413472 2020-03-03] (Avast Software s.r.o. -> AVAST Software) S4 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8395968 2019-11-12] (BattlEye Innovations e.K. -> ) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11091224 2020-03-05] (Microsoft Corporation -> Microsoft Corporation) S4 Disc Soft Lite Bus Service; D:\Programy\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1471168 2017-02-06] (Disc Soft Ltd -> Disc Soft Ltd) S4 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2019-11-12] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) S4 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6933272 2020-03-12] (Malwarebytes Inc -> Malwarebytes) S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [7987104 2017-04-10] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.) S4 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation) S4 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation) S4 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2466608 2019-11-19] (Electronic Arts, Inc. -> Electronic Arts) S4 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3344176 2019-11-19] (Electronic Arts, Inc. -> Electronic Arts) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation) S4 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 amdhub30; C:\Windows\System32\DRIVERS\amdhub30.sys [107688 2012-11-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, INC.) R3 amdxhc; C:\Windows\System32\DRIVERS\amdxhc.sys [228008 2012-11-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, INC.) R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37864 2020-03-03] (Avast Software s.r.o. -> AVAST Software) R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [205576 2020-03-03] (Avast Software s.r.o. -> AVAST Software) R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [271120 2020-03-03] (Avast Software s.r.o. -> AVAST Software) R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [206608 2020-03-03] (Avast Software s.r.o. -> AVAST Software) R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [64272 2020-03-03] (Avast Software s.r.o. -> AVAST Software) R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [279360 2020-03-03] (Avast Software s.r.o. -> AVAST Software) R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42976 2020-03-03] (Avast Software s.r.o. -> AVAST Software) R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [175400 2020-03-03] (Avast Software s.r.o. -> AVAST Software) R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [110560 2020-03-03] (Avast Software s.r.o. -> AVAST Software) R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84056 2020-03-03] (Avast Software s.r.o. -> AVAST Software) R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [848672 2020-03-03] (Avast Software s.r.o. -> AVAST Software) R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [458584 2020-03-11] (Avast Software s.r.o. -> AVAST Software) R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [235184 2020-03-03] (Avast Software s.r.o. -> AVAST Software) R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [316256 2020-03-03] (Avast Software s.r.o. -> AVAST Software) R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2017-04-12] (Disc Soft Ltd -> Disc Soft Ltd) R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2017-04-12] (Disc Soft Ltd -> Disc Soft Ltd) R3 EtronHub3; C:\Windows\System32\Drivers\EtronHub3.sys [65408 2013-08-05] (Microsoft Windows Hardware Compatibility Publisher -> Etron Technology Inc) R3 EtronXHCI; C:\Windows\System32\Drivers\EtronXHCI.sys [94208 2013-08-05] (Microsoft Windows Hardware Compatibility Publisher -> Etron Technology Inc) R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [214496 2020-03-21] (Malwarebytes Inc -> Malwarebytes) S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248968 2020-03-21] (Malwarebytes Inc -> Malwarebytes) S3 Netaapl; C:\Windows\System32\DRIVERS\netaapl64.sys [23040 2016-12-21] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.) S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-12-07] (NVIDIA Corporation -> NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [69840 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation) R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [58816 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) R0 sptd; C:\Windows\System32\Drivers\sptd.sys [394296 2017-04-11] (Disc Soft Ltd -> Duplex Secure Ltd.) S3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [40664 2013-08-22] (OpenVPN Technologies, Inc. -> The OpenVPN Project) S3 tapnordvpn; C:\Windows\System32\DRIVERS\tapnordvpn.sys [35592 2018-07-24] (TEFINCOM S.A. -> The OpenVPN Project) S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2016-12-21] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.) R3 usbfilter; C:\Windows\System32\DRIVERS\usbfilter.sys [58536 2012-08-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices) S3 FairplayKD; \??\C:\ProgramData\MTA San Andreas All\Common\temp\FairplayKD.sys [X] S3 NAVENG; \??\C:\Program Files (x86)\Norton 360\NortonData\22.9.1.12\Definitions\SDSDefs\20170505.008\NAVENG.SYS [X] S3 NAVEX15; \??\C:\Program Files (x86)\Norton 360\NortonData\22.9.1.12\Definitions\SDSDefs\20170505.008\NAVEX15.SYS [X] S3 xhunter1; \??\C:\Windows\xhunter1.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) =================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2020-03-24 08:18 - 2020-03-24 08:23 - 000032928 _____ C:\Users\Wojciech\Desktop\FRST.txt 2020-03-24 08:18 - 2020-03-24 08:18 - 000000000 ____D C:\Users\Wojciech\Desktop\FRST-OlderVersion 2020-03-24 08:14 - 2020-03-24 08:18 - 002279936 _____ (Farbar) C:\Users\Wojciech\Desktop\FRST64.exe 2020-03-21 10:43 - 2020-03-21 10:43 - 000248968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys 2020-03-21 10:43 - 2020-03-21 10:43 - 000214496 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys 2020-03-21 09:59 - 2020-03-21 09:59 - 000000000 ____D C:\Program Files (x86)\VulkanRT 2020-03-21 09:59 - 2018-03-24 00:05 - 000138120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe 2020-03-21 09:59 - 2017-12-08 23:25 - 000798520 _____ C:\Windows\SysWOW64\vulkan-1.dll 2020-03-21 09:59 - 2017-12-08 23:25 - 000490808 _____ C:\Windows\SysWOW64\vulkaninfo.exe 2020-03-21 09:59 - 2017-12-08 23:24 - 000928568 _____ C:\Windows\system32\vulkan-1.dll 2020-03-21 09:59 - 2017-12-08 23:24 - 000591672 _____ C:\Windows\system32\vulkaninfo.exe 2020-03-21 09:21 - 2020-03-21 22:21 - 000003798 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-03-21 09:18 - 2020-03-21 22:21 - 000003940 _____ C:\Windows\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-03-21 09:18 - 2020-03-21 22:21 - 000003704 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-03-21 09:18 - 2020-03-21 22:21 - 000003704 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-03-21 09:18 - 2020-03-21 22:21 - 000003704 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-03-21 09:18 - 2020-03-21 22:21 - 000003704 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-03-21 09:14 - 2020-03-21 22:21 - 000003738 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-03-21 09:09 - 2019-04-17 08:42 - 000069840 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys 2020-03-20 14:38 - 2020-03-20 14:38 - 001891665 _____ C:\Users\Wojciech\Desktop\Badania-biochemiczne-krwi-2 (1).pptx 2020-03-18 19:44 - 2020-03-18 19:44 - 000060697 _____ C:\Users\Wojciech\Desktop\Dokument 7.pdf 2020-03-18 09:10 - 2020-03-18 09:10 - 000002137 _____ C:\Users\Wojciech\Desktop\Discord.lnk 2020-03-18 09:09 - 2020-03-18 09:09 - 000000000 ____D C:\Users\Wojciech\AppData\Local\Discord 2020-03-16 09:21 - 2020-03-16 09:23 - 091702157 _____ C:\Users\Wojciech\Desktop\Marecki - Anatomia funkcjonalna TOM 1.pdf 2020-03-16 08:59 - 2020-03-24 08:07 - 000000000 ____D C:\Users\Wojciech\Desktop\anatomia 2020-03-14 19:59 - 2020-03-14 20:17 - 000002726 _____ C:\Users\Wojciech\Desktop\Nowy dokument tekstowy.txt 2020-03-10 21:42 - 2020-03-10 21:42 - 002813793 _____ C:\Users\Wojciech\Desktop\Psychologia rozwoju człowieka - Harwas-Napierała Trempała. II.pdf 2020-03-09 20:12 - 2020-03-09 20:12 - 001092728 _____ C:\Users\Wojciech\Desktop\AMINOKWASY wstęp teoretyczny.pdf 2020-03-07 17:16 - 2020-03-19 16:28 - 000000210 _____ C:\Users\Wojciech\Desktop\passy.txt 2020-03-03 15:31 - 2020-03-03 15:37 - 047358500 _____ C:\Users\Wojciech\Desktop\Tyszkowa M. - Psychologia rozwoju człowieka Tom 1.pdf 2020-03-03 11:28 - 2020-03-03 11:28 - 000368056 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2020-03-03 11:28 - 2020-03-03 11:28 - 000235184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys 2020-03-03 11:28 - 2020-03-03 11:28 - 000175400 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys 2020-03-01 10:28 - 2020-03-01 10:30 - 000000000 ____D C:\Users\Wojciech\AppData\LocalLow\Adobe 2020-03-01 10:27 - 2020-03-01 10:36 - 000000000 ____D C:\Program Files (x86)\Adobe 2020-03-01 10:26 - 2020-03-01 10:31 - 000000000 ____D C:\ProgramData\Adobe 2020-02-25 17:27 - 2020-02-25 17:27 - 000001079 _____ C:\Users\Wojciech\Desktop\easd.txt ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2020-03-24 08:21 - 2014-11-05 22:11 - 000000000 ____D C:\FRST 2020-03-24 08:17 - 2009-07-14 05:45 - 000031312 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2020-03-24 08:17 - 2009-07-14 05:45 - 000031312 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2020-03-24 08:08 - 2018-04-30 12:23 - 000000000 ____D C:\Users\Wojciech\AppData\Roaming\discord 2020-03-24 08:05 - 2017-04-11 17:16 - 000000000 ____D C:\ProgramData\NVIDIA 2020-03-24 08:03 - 2017-04-14 23:20 - 000000000 ___RD C:\Users\Wojciech\iCloudDrive 2020-03-24 08:01 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2020-03-23 13:32 - 2019-10-13 20:52 - 000000000 ____D C:\Users\Wojciech\Desktop\PDF 2020-03-22 16:08 - 2019-11-23 17:00 - 000000000 ____D C:\Users\Wojciech\Desktop\PDF STUDIA 2020-03-22 11:31 - 2020-01-10 15:15 - 000003176 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-321819135-3942462207-3232105479-1000 2020-03-22 11:31 - 2020-01-10 15:15 - 000000000 ___RD C:\Users\Wojciech\OneDrive 2020-03-22 11:30 - 2020-01-10 15:15 - 000002171 _____ C:\Users\Wojciech\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk 2020-03-21 22:21 - 2019-10-09 17:06 - 000004022 _____ C:\Windows\system32\Tasks\Opera scheduled assistant Autoupdate 1553438806 2020-03-21 22:21 - 2018-11-17 15:50 - 000003790 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-03-21 22:21 - 2018-11-17 15:48 - 000004146 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-03-21 22:21 - 2018-11-17 15:47 - 000003494 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-03-21 22:21 - 2018-07-01 19:37 - 000004128 _____ C:\Windows\system32\Tasks\CCleaner Update 2020-03-21 22:21 - 2018-07-01 14:09 - 000003138 _____ C:\Windows\system32\Tasks\{B5668375-ECBC-44EC-82CE-B40A2A596F6E} 2020-03-21 22:21 - 2018-03-13 17:34 - 000004564 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier 2020-03-21 22:21 - 2017-12-30 14:48 - 000003872 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1514641723 2020-03-21 22:21 - 2017-12-25 12:51 - 000003484 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA 2020-03-21 22:21 - 2017-12-25 12:51 - 000003356 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore 2020-03-21 22:21 - 2017-08-23 19:45 - 000003356 _____ C:\Windows\system32\Tasks\{1019C388-5B90-486F-A681-A0C85CBDC27A} 2020-03-21 22:21 - 2017-08-08 14:34 - 000004576 _____ C:\Windows\system32\Tasks\Adobe Flash Player PPAPI Notifier 2020-03-21 22:21 - 2017-07-23 15:40 - 000004424 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater 2020-03-21 22:21 - 2017-07-06 18:26 - 000003152 _____ C:\Windows\system32\Tasks\{B8BCDCB6-D7C8-4438-A7D3-65F4F8AB782B} 2020-03-21 22:21 - 2017-07-06 11:16 - 000002792 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC 2020-03-21 22:21 - 2017-05-09 15:01 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software 2020-03-21 22:21 - 2017-04-18 17:06 - 000003156 _____ C:\Windows\system32\Tasks\{477BF7E8-8836-44B4-AAD7-E333F4550FF9} 2020-03-21 22:21 - 2017-04-12 10:25 - 000002868 _____ C:\Windows\system32\Tasks\{53D26A4F-43AB-43D1-9E7E-16307655573C} 2020-03-21 12:25 - 2017-04-12 10:25 - 000000000 ____D C:\Users\Wojciech\AppData\Local\NVIDIA Corporation 2020-03-21 10:10 - 2011-04-12 14:21 - 000740324 _____ C:\Windows\system32\perfh015.dat 2020-03-21 10:10 - 2011-04-12 14:21 - 000155898 _____ C:\Windows\system32\perfc015.dat 2020-03-21 10:10 - 2009-07-14 06:13 - 001670102 _____ C:\Windows\system32\PerfStringBackup.INI 2020-03-21 10:10 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf 2020-03-21 10:00 - 2017-04-11 17:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2020-03-21 10:00 - 2017-04-11 17:15 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2020-03-21 09:59 - 2017-04-12 10:25 - 000000000 ____D C:\Users\Wojciech\AppData\Local\NVIDIA 2020-03-21 09:59 - 2017-04-11 17:15 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2020-03-21 09:53 - 2015-01-19 20:48 - 000000000 ___RD C:\Users\Wojciech\Desktop\Programy 2020-03-21 09:17 - 2017-04-11 17:10 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2020-03-21 09:05 - 2017-04-12 13:55 - 000000000 ____D C:\Users\Wojciech\AppData\Local\ElevatedDiagnostics 2020-03-21 08:42 - 2017-12-30 14:47 - 000000000 ____D C:\Program Files\Opera 2020-03-20 15:30 - 2019-07-07 12:56 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys 2020-03-18 19:56 - 2014-12-31 20:09 - 000000000 ___RD C:\Users\Wojciech\Desktop\Wszystko 2020-03-18 09:17 - 2017-12-25 12:52 - 000002230 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2020-03-18 09:17 - 2017-12-25 12:52 - 000002189 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2020-03-18 09:17 - 2017-12-25 12:52 - 000002189 _____ C:\ProgramData\Desktop\Google Chrome.lnk 2020-03-18 09:10 - 2018-04-30 12:23 - 000000000 ____D C:\Users\Wojciech\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc 2020-03-18 09:10 - 2018-04-30 12:22 - 000000000 ____D C:\Users\Wojciech\AppData\Local\SquirrelTemp 2020-03-16 22:32 - 2017-04-12 09:42 - 000000000 ____D C:\Program Files (x86)\Steam 2020-03-16 19:04 - 2017-05-11 16:58 - 000000000 ____D C:\Users\Wojciech\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2020-03-15 21:37 - 2017-04-11 17:43 - 000000000 ____D C:\Users\Wojciech\AppData\Roaming\DAEMON Tools Lite 2020-03-15 08:57 - 2020-01-10 14:59 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2020-03-15 08:57 - 2009-07-14 04:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared 2020-03-15 08:56 - 2020-01-10 14:43 - 000000000 ____D C:\Program Files\Microsoft Office 2020-03-12 10:03 - 2019-07-07 12:56 - 000001948 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2020-03-12 10:03 - 2019-07-07 12:56 - 000001948 _____ C:\ProgramData\Desktop\Malwarebytes.lnk 2020-03-11 12:34 - 2017-07-23 15:36 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe 2020-03-11 12:34 - 2017-07-23 15:36 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2020-03-11 12:34 - 2017-07-23 15:36 - 000000000 ____D C:\Windows\SysWOW64\Macromed 2020-03-11 12:34 - 2017-07-23 15:36 - 000000000 ____D C:\Windows\system32\Macromed 2020-03-11 11:54 - 2017-05-09 15:00 - 000458584 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys 2020-03-10 15:44 - 2019-01-05 13:30 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update 2020-03-10 15:41 - 2009-07-14 06:08 - 000032608 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2020-03-04 23:59 - 2019-12-19 15:29 - 000000000 ____D C:\Users\Wojciech\Desktop\TEKSTY 2020-03-04 23:59 - 2019-12-19 15:27 - 000000000 ____D C:\Users\Wojciech\Desktop\BITY 2020-03-04 23:59 - 2019-12-01 18:56 - 000000000 ____D C:\Users\Wojciech\Desktop\PRÓBKI NAGRAŃ 2020-03-04 23:58 - 2019-12-19 15:37 - 000000000 ____D C:\Users\Wojciech\Desktop\TRACKI 2020-03-04 21:35 - 2017-04-14 13:00 - 000000000 ____D C:\Users\Wojciech\AppData\Roaming\AIMP 2020-03-03 11:28 - 2019-08-07 17:52 - 000279360 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHdsKe.sys 2020-03-03 11:28 - 2019-08-07 17:52 - 000037864 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys 2020-03-03 11:28 - 2018-10-19 14:08 - 000042976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys 2020-03-03 11:28 - 2017-11-11 17:25 - 000205576 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys 2020-03-03 11:28 - 2017-05-09 15:00 - 000848672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys 2020-03-03 11:28 - 2017-05-09 15:00 - 000316256 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys 2020-03-03 11:28 - 2017-05-09 15:00 - 000110560 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2020-03-03 11:28 - 2017-05-09 15:00 - 000084056 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys 2020-03-03 11:27 - 2019-01-14 17:30 - 000271120 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys 2020-03-03 11:27 - 2019-01-05 13:28 - 000206608 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys 2020-03-03 11:27 - 2019-01-05 13:28 - 000064272 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys 2020-03-01 22:49 - 2019-11-22 13:07 - 000000000 ____D C:\Users\Wojciech\AppData\Local\cache 2020-03-01 10:28 - 2017-07-23 15:35 - 000000000 ____D C:\Users\Wojciech\AppData\Local\Adobe 2020-03-01 10:28 - 2017-04-13 18:27 - 000000000 ____D C:\Users\Wojciech\AppData\Roaming\Adobe 2020-02-28 12:30 - 2017-06-20 14:16 - 000000000 ____D C:\Users\Wojciech\AppData\Roaming\.minecraft ==================== Pliki w katalogu głównym wybranych folderów ======== 2019-10-01 22:46 - 2019-10-01 22:46 - 000000884 _____ () C:\Users\Wojciech\AppData\Local\recently-used.xbel 2019-06-23 13:03 - 2019-06-23 13:03 - 000000000 _____ () C:\Users\Wojciech\AppData\Local\{9376FCAF-1A00-4CF0-BFE5-61EF8D4246DF} ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) C:\Windows\system32\User32.dll [2017-04-12 19:13] - [2016-11-10 17:32] - 001008640 _____ (Microsoft Corporation) E573BD9AB55C8E333C202B9E255F972E C:\Windows\SysWOW64\User32.dll [2018-09-13 15:59] - [2018-09-13 15:59] - 000833024 _____ (Microsoft Corporation) 2C9CC9F492CA596B1B9FC1AE5E916356 LastRegBack: 2020-03-09 10:28 ==================== Koniec FRST.txt ========================