Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 22-01-2021 Uruchomiony przez Admin (administrator) ADMIN01 (Gigabyte Technology Co., Ltd. B85M-D2V) (22-01-2021 17:38:34) Uruchomiony z C:\Users\Admin\Downloads\frst Załadowane profile: Admin Platform: Windows 7 Ultimate Service Pack 1 (X64) Język: Polski (Polska) Domyślna przeglądarka: FF Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (Discord Inc. -> Discord Inc.) C:\Users\Admin\AppData\Local\Discord\app-0.0.309\Discord.exe <6> (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Intel(R) Corporation) [Brak podpisu cyfrowego] C:\Program Files\Intel\iCLS Client\HeciServer.exe (LogMeIn, Inc. -> LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe (LogMeIn, Inc. -> LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2> (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16418560 2016-01-27] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [117352 2020-12-23] (Avast Software s.r.o. -> AVAST Software) HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2014-02-21] (Intel Corporation - Software and Firmware Products -> Intel Corporation) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [7992336 2021-01-14] (Dropbox, Inc -> Dropbox, Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-12-09] (Oracle America, Inc. -> Oracle Corporation) HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA HKU\S-1-5-21-3920829809-2158873225-4063753776-1000\...\Run: [Discord] => C:\Users\Admin\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub) HKU\S-1-5-21-3920829809-2158873225-4063753776-1000\...\Run: [Gaijin.Net Updater] => C:\Users\Admin\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2374376 2020-12-13] (Gaijin Network LTD -> Gaijin) HKU\S-1-5-21-3920829809-2158873225-4063753776-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2017-07-05] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\87.0.4280.141\Installer\chrmstp.exe [2021-01-11] (Google LLC -> Google LLC) HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA HKLM\SOFTWARE\Policies\Google: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {00543903-8814-499A-8034-1B59506EA0D9} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation) Task: {1EE26697-00F9-4AB8-A57C-297FB1F50EFE} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3301176 2020-10-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {25F2E322-651B-4BC7-B886-1155037F5DE2} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation) Task: {25F6DA93-F56E-4DA0-BAFA-7E00CFCAFA69} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646456 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation) Task: {4296C437-D636-4195-93FC-103B9D9B6A89} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-11-03] (Dropbox, Inc -> Dropbox, Inc.) Task: {480C7E7B-297E-4654-BEEA-1EFB354E4DAE} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.) Task: {57C4EAAB-C71F-4E82-9CB8-85036B45F445} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation) Task: {594A99A4-1872-4EFD-BC3D-D23C904C33AA} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation) Task: {60831E9E-3375-4955-B92D-B96DFEAFFB57} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation) Task: {65E5C02E-A5CC-4E4F-9852-93650DA55E33} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-10-17] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log Task: {75530C91-4AE6-4243-8BCD-32747C7B0F99} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd) Task: {8252E04B-CC48-4CFA-9576-5CE5170052BF} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation) Task: {A098CE9C-0EE1-429A-AEE8-BB27067FD890} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-11-03] (Dropbox, Inc -> Dropbox, Inc.) Task: {AFB0E597-FE42-4AFB-A2EA-F1EEEE0FF197} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4621920 2020-12-23] (Avast Software s.r.o. -> AVAST Software) Task: {B591BC96-6575-427C-8BC2-6AC237C4AD4C} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-10-17] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {CC295C37-3652-4E96-B564-C2374D3B0E1B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-10-24] (Google LLC -> Google LLC) Task: {CC428BF8-5FB9-425F-A61B-1CB05CE60995} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-07-02] (Adobe Inc. -> Adobe) Task: {CF16E2A0-8ABE-4004-89A6-DE18A127CC26} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1741416 2020-09-17] (Avast Software s.r.o. -> Avast Software) Task: {D8F2F986-5211-4A12-AD23-AC009D0FCB43} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-10-24] (Google LLC -> Google LLC) Task: {DAFAFBD2-40C0-4BC4-899D-E7E3536131F7} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [693216 2021-01-07] (Mozilla Corporation -> Mozilla Foundation) Task: {FFDD206D-0906-409D-A99C-42A290463C4A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26913848 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{17C5D2DA-26F0-482E-9D8F-2F33B3924268}: [DhcpNameServer] 192.168.0.1 FireFox: ======== FF DefaultProfile: gxfjndo9.default-1589894067611 FF ProfilePath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\gxfjndo9.default-1589894067611 [2021-01-22] FF Extension: (BetterTTV) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\gxfjndo9.default-1589894067611\Extensions\firefox@betterttv.net.xpi [2020-12-19] FF Extension: (uBlock Origin) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\gxfjndo9.default-1589894067611\Extensions\uBlock0@raymondhill.net.xpi [2021-01-05] FF Extension: (Avast Online Security) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\gxfjndo9.default-1589894067611\Extensions\wrc@avast.com.xpi [2020-10-02] FF ProfilePath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\mwj7z3f8.default-1513718992632 [2020-05-17] FF Extension: (Avast SafePrice | Porównania, promocje, kupony) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\mwj7z3f8.default-1513718992632\Extensions\sp@avast.com.xpi [2019-04-22] FF Extension: (Avast Online Security) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\mwj7z3f8.default-1513718992632\Extensions\wrc@avast.com.xpi [2018-07-17] FF Plugin: @java.com/DTPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\dtplugin\npDeployJava1.dll [2021-01-21] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\plugin2\npjp2.dll [2021-01-21] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default [2021-01-01] CHR Notifications: Default -> hxxps://www.onet.pl CHR Extension: (Prezentacje) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-12-08] CHR Extension: (Dokumenty) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-12-08] CHR Extension: (Dysk Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-12-08] CHR Extension: (YouTube) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-12-08] CHR Extension: (Avast SafePrice | Porównania, promocje, kupony) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-07-06] CHR Extension: (Arkusze) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-12-08] CHR Extension: (Dokumenty Google offline) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-01-01] CHR Extension: (Avast Online Security) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-06-04] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-12-08] CHR Extension: (Gmail) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-12-08] CHR Extension: (Chrome Media Router) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-09-09] CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.) S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-07-02] (Adobe Inc. -> Adobe) R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8477080 2020-12-23] (Avast Software s.r.o. -> AVAST Software) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [621728 2020-12-23] (Avast Software s.r.o. -> AVAST Software) R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [351848 2020-12-23] (Avast Software s.r.o. -> AVAST Software) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8895512 2020-12-20] (BattlEye Innovations e.K. -> ) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-11-03] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-11-03] (Dropbox, Inc -> Dropbox, Inc.) R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [44064 2021-01-14] (Dropbox, Inc -> Dropbox, Inc.) S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2289856 2017-07-03] (Disc Soft Ltd -> Disc Soft Ltd) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [777856 2020-08-05] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3361736 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.) R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [Brak podpisu cyfrowego] R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc. -> LogMeIn, Inc.) S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2020-12-14] (Malwarebytes Inc -> Malwarebytes) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2347824 2019-09-04] (Electronic Arts, Inc. -> Electronic Arts) S3 Rockstar Service; D:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1352832 2020-11-10] (Rockstar Games, Inc. -> Rockstar Games) S3 ucldr_battlegrounds_gl; C:\Program Files\Common Files\Uncheater\ucldr_battlegrounds_gl.exe [6995800 2020-08-06] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [36792 2020-12-23] (Avast Software s.r.o. -> AVAST Software) R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [208672 2020-12-23] (Avast Software s.r.o. -> AVAST Software) R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [332880 2020-12-23] (Avast Software s.r.o. -> AVAST Software) R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [247888 2020-12-23] (Avast Software s.r.o. -> AVAST Software) R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [97360 2020-12-23] (Avast Software s.r.o. -> AVAST Software) R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42424 2020-12-23] (Avast Software s.r.o. -> AVAST Software) R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [176384 2020-12-23] (Avast Software s.r.o. -> AVAST Software) R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [522480 2020-12-23] (Avast Software s.r.o. -> AVAST Software) R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2020-04-18] (AVAST Software s.r.o. -> AVAST Software) R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [108928 2020-12-23] (Avast Software s.r.o. -> AVAST Software) R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84496 2020-12-23] (Avast Software s.r.o. -> AVAST Software) R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851256 2020-12-23] (Avast Software s.r.o. -> AVAST Software) R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [468888 2021-01-08] (Avast Software s.r.o. -> AVAST Software) R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [214808 2021-01-07] (Avast Software s.r.o. -> AVAST Software) R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [324904 2021-01-07] (Avast Software s.r.o. -> AVAST Software) R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2017-07-08] (Disc Soft Ltd -> Disc Soft Ltd) R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2017-07-08] (Disc Soft Ltd -> Disc Soft Ltd) R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO64A.SYS [27552 2017-07-06] (Martin Malik - REALiX -> REALiX(tm)) R0 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248968 2020-12-14] (Malwarebytes Inc -> Malwarebytes) R3 ScpVBus; C:\Windows\System32\DRIVERS\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions) S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [166760 2019-09-26] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 xhunter1; \??\C:\Windows\xhunter1.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Trzy miesiące (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-01-20 21:09 - 2021-01-20 21:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2021-01-14 03:43 - 2021-01-14 03:43 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys 2021-01-14 03:43 - 2021-01-14 03:43 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys 2021-01-14 03:43 - 2021-01-14 03:43 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys 2021-01-14 03:43 - 2021-01-14 03:43 - 000044064 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe 2021-01-08 07:26 - 2021-01-08 07:26 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla 2021-01-07 23:32 - 2021-01-08 20:20 - 000000000 ____D C:\Program Files\Mozilla Firefox 2021-01-07 16:32 - 2021-01-04 15:33 - 001855192 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe 2021-01-07 16:32 - 2021-01-04 15:33 - 001855192 _____ C:\Windows\system32\vulkaninfo.exe 2021-01-07 16:32 - 2021-01-04 15:33 - 001435864 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2021-01-07 16:32 - 2021-01-04 15:33 - 001435864 _____ C:\Windows\SysWOW64\vulkaninfo.exe 2021-01-07 16:32 - 2021-01-04 15:33 - 001094880 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll 2021-01-07 16:32 - 2021-01-04 15:33 - 001094880 _____ C:\Windows\system32\vulkan-1.dll 2021-01-07 16:32 - 2021-01-04 15:33 - 000948952 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll 2021-01-07 16:32 - 2021-01-04 15:33 - 000948952 _____ C:\Windows\SysWOW64\vulkan-1.dll 2021-01-07 16:32 - 2021-01-04 15:32 - 062437272 _____ (NVIDIA Corporation) C:\Windows\system32\nvrtum64.dll 2021-01-07 16:32 - 2021-01-04 15:32 - 008388504 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler64.dll 2021-01-07 16:32 - 2021-01-04 15:32 - 007413656 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler32.dll 2021-01-07 16:32 - 2021-01-04 15:32 - 000452504 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2021-01-07 16:32 - 2021-01-04 15:32 - 000450456 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll 2021-01-07 16:32 - 2021-01-04 15:32 - 000352152 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2021-01-07 16:32 - 2021-01-04 15:31 - 158398872 _____ (NVIDIA Corporation) C:\Windows\system32\nvoptix.dll 2021-01-07 16:32 - 2021-01-04 15:31 - 042945944 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll 2021-01-07 16:32 - 2021-01-04 15:31 - 032197016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2021-01-07 16:32 - 2021-01-04 15:31 - 018705304 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl64.dll 2021-01-07 16:32 - 2021-01-04 15:31 - 016246168 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl32.dll 2021-01-07 16:32 - 2021-01-04 15:31 - 000431000 _____ C:\Windows\system32\nvofapi64.dll 2021-01-07 16:32 - 2021-01-04 15:31 - 000199576 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll 2021-01-07 16:32 - 2021-01-04 15:31 - 000168344 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll 2021-01-07 16:32 - 2021-01-04 15:25 - 037682688 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2021-01-07 16:31 - 2021-01-04 15:31 - 000384920 _____ C:\Windows\SysWOW64\nvofapi.dll 2021-01-07 16:31 - 2021-01-04 15:30 - 038580120 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2021-01-07 16:31 - 2021-01-04 15:30 - 002104728 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2021-01-07 16:31 - 2021-01-04 15:30 - 001733016 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6446109.dll 2021-01-07 16:31 - 2021-01-04 15:30 - 001588632 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2021-01-07 16:31 - 2021-01-04 15:30 - 001512856 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2021-01-07 16:31 - 2021-01-04 15:30 - 001492376 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6446109.dll 2021-01-07 16:31 - 2021-01-04 15:30 - 001165208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2021-01-07 16:31 - 2021-01-04 15:30 - 000673688 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll 2021-01-07 16:31 - 2021-01-04 15:30 - 000559000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll 2021-01-07 16:31 - 2021-01-04 15:30 - 000545688 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2021-01-07 16:31 - 2021-01-04 15:30 - 000220056 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll 2021-01-07 16:31 - 2021-01-04 15:30 - 000187800 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll 2021-01-07 16:31 - 2021-01-04 15:25 - 029605648 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll 2021-01-07 16:31 - 2021-01-04 15:25 - 024806376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll 2021-01-07 16:30 - 2021-01-04 15:30 - 007848856 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2021-01-07 16:30 - 2021-01-04 15:29 - 040704920 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler64.dll 2021-01-07 16:30 - 2021-01-04 15:29 - 035556248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler32.dll 2021-01-07 16:30 - 2021-01-04 15:29 - 022685080 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2021-01-07 16:30 - 2021-01-04 15:29 - 019800472 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2021-01-07 16:30 - 2021-01-04 15:29 - 007093144 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2021-01-07 16:30 - 2021-01-04 15:29 - 000683928 _____ (NVIDIA Corporation) C:\Windows\system32\nvcbl64.dll 2021-01-07 16:30 - 2021-01-04 15:25 - 006186376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2021-01-03 09:09 - 2021-01-03 09:09 - 000001560 _____ C:\Users\Admin\Desktop\Scan MB.txt 2021-01-01 02:19 - 2021-01-01 02:19 - 001505848 _____ (Adobe) C:\Users\Admin\Desktop\uninstall_flash_player.exe 2020-12-28 04:52 - 2020-12-28 04:52 - 005770052 _____ C:\Users\Admin\Desktop\OptiFine_1.16.4_HD_U_G5.jar 2020-12-28 04:49 - 2020-12-28 04:51 - 134087325 _____ C:\Users\Admin\Desktop\Primordial Pack.zip 2020-12-23 03:40 - 2020-12-23 03:39 - 000340576 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2020-12-23 03:39 - 2021-01-07 16:20 - 000214808 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys 2020-12-23 02:23 - 2020-12-23 02:23 - 000000000 __SHD C:\found.001 2020-12-22 21:06 - 2020-12-28 07:59 - 000000000 ____D C:\Users\Admin\Desktop\Impostor-Client-win-x64 2020-12-22 21:05 - 2020-12-22 21:05 - 000212662 _____ C:\Users\Admin\Desktop\Impostor-Client-win-x64.zip 2020-12-20 00:19 - 2020-12-12 15:23 - 001731824 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6446089.dll 2020-12-20 00:19 - 2020-12-12 15:23 - 001492376 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6446089.dll 2020-12-15 23:50 - 2020-12-15 23:50 - 000255928 _____ (Malwarebytes) C:\Windows\system32\Drivers\5261F3EC.sys 2020-12-14 17:56 - 2020-12-14 17:56 - 000248968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys 2020-12-13 22:13 - 2020-12-05 03:28 - 001733016 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6446079.dll 2020-12-13 22:13 - 2020-12-05 03:28 - 001492376 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6446079.dll 2020-12-13 22:13 - 2020-12-04 03:41 - 000135592 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys 2020-12-13 22:13 - 2020-12-04 03:41 - 000038640 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll 2020-12-13 22:13 - 2020-12-04 03:41 - 000000671 _____ C:\Windows\SysWOW64\nv-vk32.json 2020-12-13 22:13 - 2020-12-04 03:41 - 000000671 _____ C:\Windows\system32\nv-vk64.json 2020-11-29 02:08 - 2020-11-29 02:08 - 000000000 ____D C:\Users\Admin\AppData\Roaming\EasyAntiCheat 2020-11-28 23:32 - 2020-11-28 23:33 - 000004931 _____ C:\Users\Admin\Desktop\Tekst błędu.txt 2020-11-25 14:04 - 2020-11-25 14:04 - 000255928 _____ (Malwarebytes) C:\Windows\system32\Drivers\435285F8.sys 2020-11-19 04:11 - 2020-11-19 04:11 - 000255928 _____ (Malwarebytes) C:\Windows\system32\Drivers\33554854.sys 2020-11-15 23:06 - 2020-11-07 23:21 - 001731824 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6445730.dll 2020-11-15 23:06 - 2020-11-07 23:21 - 001482992 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6445730.dll 2020-11-15 00:53 - 2021-01-19 03:38 - 000000575 _____ C:\Users\Admin\Desktop\ESET Online Scanner.lnk 2020-11-15 00:51 - 2020-11-15 00:50 - 015012440 _____ (ESET spol. s r.o.) C:\Users\Admin\Desktop\esetonlinescanner(1).exe 2020-11-15 00:50 - 2020-11-15 00:50 - 015012440 _____ (ESET spol. s r.o.) C:\Users\Admin\Downloads\esetonlinescanner(1).exe 2020-11-12 00:18 - 2020-11-12 00:18 - 008447152 _____ (Malwarebytes) C:\Users\Admin\Downloads\adwcleaner_8.0.8.exe 2020-11-10 05:38 - 2021-01-22 17:38 - 000000000 ____D C:\Users\Admin\Downloads\frst 2020-11-04 18:49 - 2020-11-04 18:49 - 000000222 _____ C:\Users\Admin\Desktop\PLAYERUNKNOWN'S BATTLEGROUNDS.url 2020-11-01 23:35 - 2020-10-28 02:30 - 001731824 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6445709.dll 2020-11-01 23:35 - 2020-10-28 02:30 - 001484184 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6445709.dll 2020-10-24 06:08 - 2021-01-11 22:45 - 000002182 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2020-10-24 06:08 - 2021-01-11 22:45 - 000002141 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2020-10-24 06:08 - 2021-01-11 22:45 - 000002141 _____ C:\ProgramData\Desktop\Google Chrome.lnk 2020-10-24 06:08 - 2020-10-24 06:08 - 000000000 ____D C:\Program Files\Google 2020-10-24 06:07 - 2021-01-21 04:43 - 000003482 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA 2020-10-24 06:07 - 2021-01-21 04:43 - 000003354 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore 2020-10-24 06:07 - 2020-10-24 06:07 - 001317080 _____ (Google LLC) C:\Users\Admin\Downloads\ChromeSetup(2).exe 2020-10-24 05:48 - 2020-12-23 03:39 - 000176384 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys ==================== Trzy miesiące (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-01-22 17:42 - 2017-07-04 01:58 - 000000000 ____D C:\ProgramData\AVAST Software 2021-01-22 17:41 - 2020-05-17 04:54 - 000000000 ____D C:\FRST 2021-01-22 17:38 - 2017-11-20 21:36 - 000000000 ____D C:\Users\Admin\AppData\Roaming\discord 2021-01-22 17:36 - 2017-11-03 14:23 - 000004148 _____ C:\Windows\system32\Tasks\DropboxUpdateTaskMachineUA 2021-01-22 17:36 - 2017-11-03 14:23 - 000003896 _____ C:\Windows\system32\Tasks\DropboxUpdateTaskMachineCore 2021-01-22 17:36 - 2017-11-03 14:23 - 000001150 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job 2021-01-22 17:36 - 2017-11-03 14:23 - 000001146 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job 2021-01-22 17:34 - 2020-10-01 09:20 - 000000000 ____D C:\Program Files\CCleaner 2021-01-22 17:33 - 2017-07-05 22:37 - 000000000 ____D C:\ProgramData\NVIDIA 2021-01-22 17:31 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2021-01-21 05:02 - 2009-07-14 05:45 - 000017184 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2021-01-21 05:02 - 2009-07-14 05:45 - 000017184 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2021-01-21 04:43 - 2020-10-01 09:21 - 000003870 _____ C:\Windows\system32\Tasks\CCleaner Update 2021-01-21 04:43 - 2020-10-01 09:21 - 000002806 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC 2021-01-21 04:43 - 2019-09-30 20:37 - 000003704 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-01-21 04:43 - 2019-09-30 20:37 - 000003704 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-01-21 04:43 - 2019-09-30 20:37 - 000003704 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-01-21 04:43 - 2019-09-30 20:37 - 000003704 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-01-21 04:43 - 2018-12-05 16:20 - 000003798 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-01-21 04:43 - 2018-12-05 16:20 - 000003790 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-01-21 04:43 - 2018-12-05 16:19 - 000004146 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-01-21 04:43 - 2018-12-05 16:19 - 000003940 _____ C:\Windows\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-01-21 04:43 - 2018-01-14 22:17 - 000004476 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task 2021-01-21 04:43 - 2017-10-12 15:36 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software 2021-01-21 04:43 - 2017-07-06 06:06 - 000003738 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-01-21 04:43 - 2017-07-06 06:06 - 000003494 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-01-21 04:43 - 2017-07-04 01:55 - 000000000 ____D C:\Users\Admin\AppData\LocalLow\Mozilla 2021-01-21 02:26 - 2017-07-06 05:40 - 000000000 ____D C:\Users\Admin\AppData\Local\CrashDumps 2021-01-21 01:47 - 2017-08-07 20:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2021-01-21 01:47 - 2017-08-07 20:17 - 000000000 ____D C:\Program Files\Java 2021-01-21 01:46 - 2017-08-07 20:17 - 000192168 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll 2021-01-21 01:44 - 2017-08-07 20:17 - 000000000 ____D C:\ProgramData\Oracle 2021-01-21 00:53 - 2019-02-06 01:40 - 000000000 ____D C:\ProgramData\Mozilla 2021-01-20 21:10 - 2017-11-03 14:23 - 000000000 ____D C:\Program Files (x86)\Dropbox 2021-01-20 21:02 - 2017-07-04 01:46 - 000000000 __SHD C:\Users\Admin\IntelGraphicsProfiles 2021-01-14 20:56 - 2018-07-17 22:31 - 000000000 ____D C:\Users\Admin\AppData\Local\AVAST Software 2021-01-11 22:12 - 2018-03-03 02:23 - 000000000 ____D C:\Users\Admin\AppData\Local\Ubisoft Game Launcher 2021-01-08 20:27 - 2017-07-04 02:01 - 000468888 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys 2021-01-08 20:20 - 2017-12-19 22:33 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2021-01-07 16:48 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf 2021-01-07 16:46 - 2017-07-05 22:38 - 000000000 ____D C:\Users\Admin\AppData\Local\NVIDIA 2021-01-07 16:20 - 2017-07-04 02:01 - 000324904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys 2021-01-04 15:32 - 2017-07-06 06:04 - 000523672 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll 2021-01-04 15:30 - 2020-09-17 23:39 - 000474008 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2021-01-04 15:25 - 2017-07-06 06:04 - 076855672 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll 2021-01-04 15:25 - 2017-07-05 22:31 - 007312096 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2021-01-03 13:43 - 2017-08-16 22:38 - 000000000 ____D C:\Users\Admin\AppData\Roaming\.minecraft 2021-01-01 20:28 - 2020-06-03 22:30 - 000000864 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk 2021-01-01 20:28 - 2020-06-03 22:30 - 000000864 _____ C:\ProgramData\Desktop\Revo Uninstaller.lnk 2021-01-01 20:28 - 2020-06-03 22:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller 2021-01-01 02:23 - 2017-07-05 21:44 - 000000000 ____D C:\Windows\SysWOW64\Macromed 2020-12-31 14:49 - 2017-07-05 22:31 - 000058605 _____ C:\Windows\system32\nvinfo.pb 2020-12-31 10:48 - 2017-07-06 06:05 - 000992232 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll 2020-12-31 10:48 - 2017-07-06 06:05 - 000084456 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll 2020-12-31 10:48 - 2017-07-05 22:36 - 005623272 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2020-12-31 10:48 - 2017-07-05 22:36 - 002637800 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll 2020-12-31 10:48 - 2017-07-05 22:36 - 001760232 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll 2020-12-31 10:48 - 2017-07-05 22:36 - 000122344 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll 2020-12-29 23:56 - 2013-01-01 02:05 - 000000000 ____D C:\Users\Admin 2020-12-29 00:27 - 2017-07-05 22:36 - 009381947 _____ C:\Windows\system32\nvcoproc.bin 2020-12-28 07:59 - 2019-02-06 05:21 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat 2020-12-28 07:59 - 2017-11-03 14:31 - 000000000 ___RD C:\Users\Admin\Dropbox 2020-12-28 07:59 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\registration 2020-12-28 04:41 - 2017-07-04 02:01 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update 2020-12-23 03:39 - 2020-04-18 00:29 - 000522480 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys 2020-12-23 03:39 - 2019-01-16 23:24 - 000247888 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys 2020-12-23 03:39 - 2019-01-16 23:24 - 000097360 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys 2020-12-23 03:39 - 2018-10-23 16:38 - 000042424 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys 2020-12-23 03:39 - 2017-07-04 02:01 - 000108928 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2020-12-23 03:39 - 2017-07-04 02:01 - 000084496 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys 2020-12-23 03:38 - 2019-01-17 18:29 - 000332880 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys 2020-12-23 03:38 - 2019-01-16 23:24 - 000036792 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys 2020-12-23 03:38 - 2017-11-17 22:35 - 000208672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys 2020-12-23 03:38 - 2017-07-04 02:01 - 000851256 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys ==================== Pliki w katalogu głównym wybranych folderów ======== 2018-03-31 23:56 - 2018-03-31 23:56 - 000079982 _____ () C:\Program Files\hatsunemichu.jpg 2019-01-10 08:25 - 2019-01-10 08:25 - 000000867 _____ () C:\Users\Admin\AppData\Local\recently-used.xbel 2019-10-01 23:52 - 2019-10-01 23:52 - 000007605 _____ () C:\Users\Admin\AppData\Local\Resmon.ResmonCfg ==================== SigCheckExt ========================= 2017-07-04 01:38 - 2013-08-21 14:16 - 000053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll 2013-08-27 13:00 - 2013-08-27 13:00 - 000001536 _____ C:\Windows\SysWOW64\IusEventLog.dll 2017-07-04 01:41 - 2014-02-21 06:56 - 000041984 _____ (Intel Corporation) C:\Windows\system32\Drivers\USB3Ver.dll 2019-04-04 15:10 - 2019-04-04 15:11 - 149444743 _____ (Aslain ) C:\Users\Admin\Downloads\Aslains_WoT_Modpack_Installer_v.1.4.1.1_05.exe 2018-02-19 17:28 - 2018-02-19 17:30 - 135057754 _____ (Aslain ) C:\Users\Admin\Downloads\Aslains_WoT_Modpack_Installer_v.9.22.0.1_05.exe 2019-04-23 20:05 - 2019-04-23 20:05 - 019701636 _____ C:\Users\Admin\Downloads\citra-setup-windows.exe 2018-11-11 16:43 - 2018-11-11 16:43 - 004953534 _____ C:\Users\Admin\Downloads\forge-1.12.2-14.23.5.2768-installer-win.exe 2019-01-04 01:25 - 2019-01-04 01:32 - 422887526 _____ C:\Users\Admin\Downloads\install_ds_doa-v1-05.exe-1524-1-05-1546474845.exe 2019-03-20 21:19 - 2019-03-20 21:19 - 006465721 _____ (Black Tree Gaming ) C:\Users\Admin\Downloads\Nexus.Mod.Manager-0.65.4.exe ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== BCD ================================ Mened�er rozruchu systemu Windows --------------------------------- Identyfikator {bootmgr} device partition=\Device\HarddiskVolume1 description Windows Boot Manager locale pl-PL inherit {globalsettings} default {current} resumeobject {0ff7bde3-53ae-11e2-ad0e-bd69fa607300} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Modu� �aduj�cy rozruchu systemu Windows --------------------------------------- Identyfikator {current} device partition=C: path \Windows\system32\winload.exe description Windows 7 locale pl-PL inherit {bootloadersettings} recoverysequence {0ff7bde5-53ae-11e2-ad0e-bd69fa607300} recoveryenabled Yes osdevice partition=C: systemroot \Windows resumeobject {0ff7bde3-53ae-11e2-ad0e-bd69fa607300} nx OptIn Modu� �aduj�cy rozruchu systemu Windows --------------------------------------- Identyfikator {0ff7bde5-53ae-11e2-ad0e-bd69fa607300} device ramdisk=[C:]\Recovery\0ff7bde5-53ae-11e2-ad0e-bd69fa607300\Winre.wim,{0ff7bde6-53ae-11e2-ad0e-bd69fa607300} path \windows\system32\winload.exe description Windows Recovery Environment inherit {bootloadersettings} osdevice ramdisk=[C:]\Recovery\0ff7bde5-53ae-11e2-ad0e-bd69fa607300\Winre.wim,{0ff7bde6-53ae-11e2-ad0e-bd69fa607300} systemroot \windows nx OptIn winpe Yes Wznawianie ze stanu hibernacji ------------------------------ Identyfikator {0ff7bde3-53ae-11e2-ad0e-bd69fa607300} device partition=C: path \Windows\system32\winresume.exe description Windows Resume Application locale pl-PL inherit {resumeloadersettings} filedevice partition=C: filepath \hiberfil.sys debugoptionenabled No Modu� testuj�cy pami�� systemu Windows -------------------------------------- Identyfikator {memdiag} device partition=\Device\HarddiskVolume1 path \boot\memtest.exe description Diagnostyka pami�ci systemu Windows locale pl-PL inherit {globalsettings} badmemoryaccess Yes Ustawienia us�ug EMS -------------------- Identyfikator {emssettings} bootems Yes Ustawienia debugera ------------------- Identyfikator {dbgsettings} debugtype Serial debugport 1 baudrate 115200 Uszkodzenia pami�ci RAM ----------------------- Identyfikator {badmemory} Ustawienia globalne ------------------- Identyfikator {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} Ustawienia modu�u �aduj�cego rozruchu ------------------------------------- Identyfikator {bootloadersettings} inherit {globalsettings} {hypervisorsettings} Ustawienia funkcji hypervisor ----------------------------- Identyfikator {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 Ustawienia modu�u �aduj�cego wznawiania --------------------------------------- Identyfikator {resumeloadersettings} inherit {globalsettings} Opcje urz�dzenia ---------------- Identyfikator {0ff7bde6-53ae-11e2-ad0e-bd69fa607300} description Ramdisk Options ramdisksdidevice partition=C: ramdisksdipath \Recovery\0ff7bde5-53ae-11e2-ad0e-bd69fa607300\boot.sdi LastRegBack: 2021-01-12 00:51 ==================== Koniec FRST.txt ========================